SUSE Package Hub - SUSE Package Hub Updates

Update ID	Severity	Type	Issued	Description	Packages
SUSE-PackageHub-16.0-745	moderate	recommended	2026-05-14	This update for gdm fixes the following issues: _ Fix: Plymouth enabled causes a race condition between gdm and getty@tty1, leading to GUI startup failure (bsc#1252888): * the greeter session r ...	gdm-48.0-160000.4.1
SUSE-PackageHub-16.0-744	moderate	security	2026-05-14	This update for ibus-rime and librime fixes the following issues: ibus-rime is built against the current opencc version.	librime-1.10.0+git20240229.4ee471e-160000.1.3
SUSE-PackageHub-16.0-743	important	security	2026-05-14	This update for tree-sitter fixes the following issues Security issues: - CVE-2026-34941: wasmtime: crafted input string can lead to an out-of-bound read (bsc#1261871). - CVE-2026-34942: wasmtime: u ...	tree-sitter-0.26.8-160000.1.1
SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1845	moderate	security	2026-05-13	This update for Mesa fixes the following issue: - CVE-2026-40393: out-of-bounds memory access can occur in WebGPU because the amount of to-be-allocated data depends on an untrusted party (bsc#12619 ...	Mesa-24.3.3-150700.93.8.1 Mesa-drivers-24.3.3-150700.93.8.1
SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1842	important	security	2026-05-13	This update for python-Pillow fixes the following issue - CVE-2026-42310: infinite loop and resource exhaustion when processing specially crafted PDFs (bsc#1265154).	python-Pillow-7.2.0-150300.3.21.1
SUSE-PackageHub-16.0-packagehub-251	moderate	security	2026-05-13	This update for ffmpeg-4 fixes the following issues: Changes in ffmpeg-4: - CVE-2026-40962: Fixed inadequate CENC subsample bounds checks that could lead to an integer overflow (bsc#1262237).	ffmpeg-4-4.4.6-bp160.2.1
SUSE-PackageHub-16.0-packagehub-250	moderate	recommended	2026-05-13	This update for rmw fixes the following issues: Changes in rmw: - Use system-installed canfigger instead of the bundled copy - rmw 0.9.5: * bugfix: Get path to 'mv' at runtime (used for btrfs)(fi ...	rmw-0.9.5-bp160.1.1
SUSE-PackageHub-16.0-packagehub-249	moderate	recommended	2026-05-13	This update for yt-dlp fixes the following issues: Changes in yt-dlp: - Update to release 2026.03.17 * Always respect webpage_client extractor-arg * Fix --live-from-start support - Update to ve ...	yt-dlp-2026.03.17-bp160.1.1
SUSE-PackageHub-16.0-packagehub-248	important	security	2026-05-13	This update for kdenlive fixes the following issues: Changes in kdenlive: - CVE-2026-45184: Fixed a remote code execution through opening a malicious project file (boo#1264711).	kdenlive-25.04.3-bp160.2.1
SUSE-PackageHub-16.0-packagehub-247	moderate	recommended	2026-05-13	This update for perl-YAML-PP fixes the following issues: Changes in perl-YAML-PP: - updated to 0.40.0 (v0.40.0) - Security: Limit default allowed maximum nesting level. Set it via new option ' ...	perl-YAML-PP-0.40.0-bp160.1.1

moderate

recommended

2026-05-14

This update for gdm fixes the following issues: _ Fix: Plymouth enabled causes a race condition between gdm and getty@tty1, leading to GUI startup failure (bsc#1252888): * the greeter session r ...

gdm-48.0-160000.4.1

SUSE-PackageHub-16.0-744

moderate

security

2026-05-14

This update for ibus-rime and librime fixes the following issues: ibus-rime is built against the current opencc version.

librime-1.10.0+git20240229.4ee471e-160000.1.3

SUSE-PackageHub-16.0-743

important

security

2026-05-14

This update for tree-sitter fixes the following issues Security issues: - CVE-2026-34941: wasmtime: crafted input string can lead to an out-of-bound read (bsc#1261871). - CVE-2026-34942: wasmtime: u ...

tree-sitter-0.26.8-160000.1.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1845

moderate

security

2026-05-13

This update for Mesa fixes the following issue: - CVE-2026-40393: out-of-bounds memory access can occur in WebGPU because the amount of to-be-allocated data depends on an untrusted party (bsc#12619 ...

Mesa-24.3.3-150700.93.8.1
Mesa-drivers-24.3.3-150700.93.8.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1842

important

security

2026-05-13

This update for python-Pillow fixes the following issue - CVE-2026-42310: infinite loop and resource exhaustion when processing specially crafted PDFs (bsc#1265154).

python-Pillow-7.2.0-150300.3.21.1

SUSE-PackageHub-16.0-packagehub-251

moderate

security

2026-05-13

This update for ffmpeg-4 fixes the following issues: Changes in ffmpeg-4: - CVE-2026-40962: Fixed inadequate CENC subsample bounds checks that could lead to an integer overflow (bsc#1262237).

ffmpeg-4-4.4.6-bp160.2.1

SUSE-PackageHub-16.0-packagehub-250

moderate

recommended

2026-05-13

This update for rmw fixes the following issues: Changes in rmw: - Use system-installed canfigger instead of the bundled copy - rmw 0.9.5: * bugfix: Get path to 'mv' at runtime (used for btrfs)(fi ...

rmw-0.9.5-bp160.1.1

SUSE-PackageHub-16.0-packagehub-249

moderate

recommended

2026-05-13

This update for yt-dlp fixes the following issues: Changes in yt-dlp: - Update to release 2026.03.17 * Always respect webpage_client extractor-arg * Fix --live-from-start support - Update to ve ...

yt-dlp-2026.03.17-bp160.1.1

SUSE-PackageHub-16.0-packagehub-248

important

security

2026-05-13

This update for kdenlive fixes the following issues: Changes in kdenlive: - CVE-2026-45184: Fixed a remote code execution through opening a malicious project file (boo#1264711).

kdenlive-25.04.3-bp160.2.1

SUSE-PackageHub-16.0-packagehub-247

moderate

recommended

2026-05-13

This update for perl-YAML-PP fixes the following issues: Changes in perl-YAML-PP: - updated to 0.40.0 (v0.40.0) - Security: Limit default allowed maximum nesting level. Set it via new option ' ...

perl-YAML-PP-0.40.0-bp160.1.1