SUSE Linux has recently released a series of important security updates affecting various components, including Webkit2GTK, Go, Mozilla Thunderbird, govulncheck-vulndb, and Xen. These updates aim to address several vulnerabilities and enhance security across the platform.
1. Webkit2GTK (SUSE-SU-2025:1149-1):
- Severity: Moderate
- Details: Fixed multiple vulnerabilities (CVE-2024-44192, CVE-2024-54467, CVE-2025-24201) which included issues like process crashes due to malicious web content and information disclosure through cookie management faults. An upgrade to version 2.48.0 included various enhancements, such as improved rendering capabilities and new functions in JavaScriptCore GLib API.
2. Go (SUSE-SU-2025:1153-1):
- Severity: Important
- Details: Updated to Go version 1.24.2, addressing a critical vulnerability (CVE-2025-22871) related to request smuggling via erroneous chunked data.
3. Mozilla Thunderbird (SUSE-SU-2025:1157-1):
- Severity: Important
- Details: This update resolves three vulnerabilities (CVE-2025-3028, CVE-2025-3029, CVE-2025-3030) including use-after-free issues and memory safety bugs, alongside various functional improvements like a new notification system for desktop alerts.
4. Govulncheck-Vulndb (SUSE-SU-2025:1155-1):
- Severity: Moderate
- Details: Updated to a new version that includes several improvements and fixes related to vulnerability checks.
5. Xen (SUSE-SU-2025:1162-1):
- Severity: Moderate
- Details: Fixed a vulnerability (CVE-2025-1713) potentially leading to deadlocks when using VT-d with legacy PCI device pass-through and addressed several operational issues related to Xen channels and virtual machines.
Key Updates:
1. Webkit2GTK (SUSE-SU-2025:1149-1):
- Severity: Moderate
- Details: Fixed multiple vulnerabilities (CVE-2024-44192, CVE-2024-54467, CVE-2025-24201) which included issues like process crashes due to malicious web content and information disclosure through cookie management faults. An upgrade to version 2.48.0 included various enhancements, such as improved rendering capabilities and new functions in JavaScriptCore GLib API.
2. Go (SUSE-SU-2025:1153-1):
- Severity: Important
- Details: Updated to Go version 1.24.2, addressing a critical vulnerability (CVE-2025-22871) related to request smuggling via erroneous chunked data.
3. Mozilla Thunderbird (SUSE-SU-2025:1157-1):
- Severity: Important
- Details: This update resolves three vulnerabilities (CVE-2025-3028, CVE-2025-3029, CVE-2025-3030) including use-after-free issues and memory safety bugs, alongside various functional improvements like a new notification system for desktop alerts.
4. Govulncheck-Vulndb (SUSE-SU-2025:1155-1):
- Severity: Moderate
- Details: Updated to a new version that includes several improvements and fixes related to vulnerability checks.
5. Xen (SUSE-SU-2025:1162-1):
- Severity: Moderate
- Details: Fixed a vulnerability (CVE-2025-1713) potentially leading to deadlocks when using VT-d with legacy PCI device pass-through and addressed several operational issues related to Xen channels and virtual machines.
Installation Instructions:
Users are encouraged to apply these updates promptly using SUSE's recommended methods such as YaST online_update or the `zypper patch` command. Specific commands for different products and modules are provided for users to follow based on their respective systems.Conclusion:
These updates reflect SUSE's commitment to maintaining the security and reliability of its Linux distribution. Users are advised to keep their systems updated regularly to mitigate potential vulnerabilities and ensure the best performance from their applications and services. For further details, users can reference the CVE links and bug tracking numbers provided alongside each updateWebkit2GTK, Go, Thunderbird, Govulncheck-Vulndb, Xen updates for SUSE
SUSE Linux has been updated with several security enhancements, including moderate updates for webkit2gtk3, go1.24, Mozilla Thunderbird, govulncheck-vulndb, and xen:
SUSE-SU-2025:1149-1: moderate: Security update for webkit2gtk3
SUSE-SU-2025:1153-1: important: Security update for go1.24
SUSE-SU-2025:1157-1: important: Security update for MozillaThunderbird
SUSE-SU-2025:1155-1: moderate: Security update for govulncheck-vulndb
SUSE-SU-2025:1162-1: moderate: Security update for xenWebkit2GTK, Go, Thunderbird, Govulncheck-Vulndb, Xen updates for SUSE @ Linux Compatible
