SUSE Linux Enterprise Server is a technology platform tracked across 19 threat clusters and 23 intelligence report mentions on ThreatCluster. First observed November 3, 2025; most recent activity July 1, 2026.
SUSE Linux Enterprise Server (SLES) is SUSE's enterprise-grade Linux platform designed for servers and data centers, emphasizing stability, security, and long-term support. The recent advisories illustrate active vulnerability management across core components (kernel Real-Time TLS issues, container runtimes, TIFF libraries, and VPN software), underscoring the need for timely patching and secure configurations to protect SLES deployments.
A critical heap buffer overflow vulnerability, CVE-2025-14905, was identified in the 389-ds directory server, impacting multiple SUSE and openSUSE systems. This flaw arises from improper size calculations in the…
A critical vulnerability, CVE-2026-6893, has been identified in SUSE's dracut, allowing root code execution through DHCP options command injection. This flaw affects multiple SUSE Linux Enterprise products, including…
A significant vulnerability (CVE-2026-34352) affecting tigervnc has been identified and patched across various SUSE Linux distributions. The flaw allows unauthorized users to observe screens and manipulate data sent to…
On June 2, 2026, SUSE announced three important security updates for the xorg-x11-server, identified as SUSE-SU-2026:2224-1, SUSE-SU-2026:2225-1, and SUSE-SU-2026:2226-1. Each update addresses nine critical…
On March 12, 2026, important security updates were released for MozillaFirefox and MozillaThunderbird in openSUSE Leap 15.6. The updates address multiple vulnerabilities, including CVE-2026-2757, CVE-2026-2758,…
openSUSE Leap 15.6 has released an update for PostgreSQL 13 to address critical vulnerabilities, specifically CVE-2025-12817 and CVE-2025-12818. These vulnerabilities include a missing privilege check in CREATE…
A security update for smc-tools in openSUSE Leap 15.6 addresses a local denial of service (DoS) vulnerability caused by a predictable /tmp file. This vulnerability, identified as bsc#1230052, allows an attacker with…
SUSE and openSUSE have released updates for grub2 to address multiple vulnerabilities, including use-after-free and out-of-bounds write issues. The updates fix specific CVEs, including CVE-2025-54771 and CVE-2025-61661,…
Multiple vulnerabilities have been identified in the java-1_8_0-ibm package, allowing unauthenticated attackers to gain unauthorized access to critical data. The issues include unauthorized creation, deletion,…
Recent updates for FreeRDP address multiple heap buffer overflow vulnerabilities identified as CVE-2026-22852, CVE-2026-22854, CVE-2026-22856, and CVE-2026-22859. These vulnerabilities can be exploited by malicious RDP…