SUSE Package Hub - SUSE Package Hub Updates

Update ID	Severity	Type	Issued	Description	Packages
SUSE-PackageHub-16.0-727	moderate	recommended	2026-05-08	This update for ibus-anthy, ibus-cangjie, ibus-skk, mozc, presage fixes the following issues: Changes in ibus-anthy,ibus-cangjie,ibus-skk,mozc,presage: - Update the package .spec file to get rid of ...	ibus-anthy-1.5.17-160000.2.1 presage-0.9.1-160000.3.1 presage-doc-0.9.1-160000.3.1
SUSE-PackageHub-16.0-726	moderate	recommended	2026-05-08	This update for libplacebo fixes the following issues: Changes in libplacebo: * fix build with current python 3.13.6	libplacebo-7.351.0-160000.3.1
SUSE-PackageHub-16.0-725	moderate	recommended	2026-05-08	This update for lkl fixes the following issues: Changes in lkl: - lkl: systemd: fix udev rule to properly filter for USB devs (bsc#1246536) - lkl: fix default build target to include progs - kabi: d ...	lkl-0.6.4+git.3163.6cd41567ebe-160000.1.1
SUSE-PackageHub-16.0-724	important	security	2026-05-08	This update for cpp-httplib fixes the following issues - CVE-2026-21428: server-side request forgery via header injection (bsc#1255835). - CVE-2026-22776: unsafe handling of compressed HTTP request c ...	cpp-httplib-0.22.0-160000.5.1
SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1751	important	security	2026-05-07	This update for jetty-minimal fixes the following issues: - CVE-2026-2332: In Eclipse Jetty, the HTTP/1.1 parser is vulnerable to request smuggling when chunk extensions are used, similar to the "fun ...	jetty-minimal-9.4.58-150200.3.40.1
SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1742	important	security	2026-05-07	This update for mozjs52 fixes the following issues - CVE-2026-32776: libexpat: NULL pointer dereference when processing empty external parameter entities inside an entity declaration value (bsc#125 ...	mozjs52-52.6.0-150000.3.12.1
SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1740	moderate	security	2026-05-07	This update for python-Django fixes the following issues - CVE-2026-3902: headers spoofing by exploiting an ambiguous mapping of two header variants in `ASGIRequest` requests (bsc#1261729). - CVE-2 ...	python-Django-4.2.11-150600.3.56.1
SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1731	important	security	2026-05-07	This update for java-11-openjdk fixes the following issues: Upgrade to upstream tag jdk-11.0.31+11 (April 2026 CPU). Security issues fixed: - CVE-2026-22007: Security: unauthenticated attac ...	java-11-openjdk-11.0.31.0-150000.3.138.1
SUSE-PackageHub-16.0-packagehub-235	moderate	security	2026-05-07	This update for log4cxx fixes the following issues: Changes in log4cxx: - update to 1.7.0 (bsc#1261994, CVE-2026-40023): * Non-ascii characters incorrectly encoded in JSON output [#615] * XML ou ...	log4cxx-1.7.0-bp160.1.1
SUSE-PackageHub-16.0-721	moderate	recommended	2026-05-07	This update for elemental-toolkit fixes the following issues: Changes in elemental-toolkit: - Drop upstream reproducible build patch.	elemental-toolkit-2.3.2-160000.2.1

moderate

recommended

2026-05-08

This update for ibus-anthy, ibus-cangjie, ibus-skk, mozc, presage fixes the following issues: Changes in ibus-anthy,ibus-cangjie,ibus-skk,mozc,presage: - Update the package .spec file to get rid of ...

ibus-anthy-1.5.17-160000.2.1
presage-0.9.1-160000.3.1
presage-doc-0.9.1-160000.3.1

SUSE-PackageHub-16.0-726

moderate

recommended

2026-05-08

This update for libplacebo fixes the following issues: Changes in libplacebo: * fix build with current python 3.13.6

libplacebo-7.351.0-160000.3.1

SUSE-PackageHub-16.0-725

moderate

recommended

2026-05-08

This update for lkl fixes the following issues: Changes in lkl: - lkl: systemd: fix udev rule to properly filter for USB devs (bsc#1246536) - lkl: fix default build target to include progs - kabi: d ...

lkl-0.6.4+git.3163.6cd41567ebe-160000.1.1

SUSE-PackageHub-16.0-724

important

security

2026-05-08

This update for cpp-httplib fixes the following issues - CVE-2026-21428: server-side request forgery via header injection (bsc#1255835). - CVE-2026-22776: unsafe handling of compressed HTTP request c ...

cpp-httplib-0.22.0-160000.5.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1751

important

security

2026-05-07

This update for jetty-minimal fixes the following issues: - CVE-2026-2332: In Eclipse Jetty, the HTTP/1.1 parser is vulnerable to request smuggling when chunk extensions are used, similar to the "fun ...

jetty-minimal-9.4.58-150200.3.40.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1742

important

security

2026-05-07

This update for mozjs52 fixes the following issues - CVE-2026-32776: libexpat: NULL pointer dereference when processing empty external parameter entities inside an entity declaration value (bsc#125 ...

mozjs52-52.6.0-150000.3.12.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1740

moderate

security

2026-05-07

This update for python-Django fixes the following issues - CVE-2026-3902: headers spoofing by exploiting an ambiguous mapping of two header variants in `ASGIRequest` requests (bsc#1261729). - CVE-2 ...

python-Django-4.2.11-150600.3.56.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1731

important

security

2026-05-07

This update for java-11-openjdk fixes the following issues: Upgrade to upstream tag jdk-11.0.31+11 (April 2026 CPU). Security issues fixed: - CVE-2026-22007: Security: unauthenticated attac ...

java-11-openjdk-11.0.31.0-150000.3.138.1

SUSE-PackageHub-16.0-packagehub-235

moderate

security

2026-05-07

This update for log4cxx fixes the following issues: Changes in log4cxx: - update to 1.7.0 (bsc#1261994, CVE-2026-40023): * Non-ascii characters incorrectly encoded in JSON output [#615] * XML ou ...

log4cxx-1.7.0-bp160.1.1

SUSE-PackageHub-16.0-721

moderate

recommended

2026-05-07

This update for elemental-toolkit fixes the following issues: Changes in elemental-toolkit: - Drop upstream reproducible build patch.

elemental-toolkit-2.3.2-160000.2.1