SUSE Package Hub - SUSE Package Hub Updates

Update ID	Severity	Type	Issued	Description	Packages
SUSE-PackageHub-16.0-514	moderate	security	2026-04-09	This update for ovmf fixes the following issue: - CVE-2025-59438: mbedtls: padding oracle attack possible through timing of cipher error reporting (bsc#1252441).	ovmf-202502-160000.4.1
SUSE-PackageHub-16.0-513	moderate	recommended	2026-04-09	This update for linux-glibc-devel fixes the following issues: Changes in linux-glibc-devel: - Sync with SLES 16.0 update kernel (6.12.0-160000.6) (bsc#1253334)	linux-glibc-devel-6.12-160000.3.1
SUSE-PackageHub-16.0-510	moderate	security	2026-04-09	This update for util-linux fixes the following issues: Security issues: - CVE-2025-14104: heap buffer overread in setpwnam() when processing 256-byte usernames (bsc#1254666). - CVE-2026-3184: access ...	util-linux-2.41.1-160000.3.1
SUSE-PackageHub-16.0-508	moderate	optional	2026-04-09	This update for synce4l, gpsd fixes the following issues: synce4l and gpsd are shipped to SLES and SL Micro. (jsc#PED-15929)	gpsd-3.27.5-160000.1.1 synce4l-1.1.1-160000.1.1
SUSE-PackageHub-16.0-507	moderate	recommended	2026-04-09	This update for PackageKit fixes the following issues: Changes in PackageKit: - Add PackageKit zypp parallel package downloads. zypp: Implement parallel downloading (bsc#1244920).	PackageKit-1.2.8-160000.3.1
SUSE-PackageHub-16.0-506	moderate	recommended	2026-04-09	This update for perf fixes the following issues: - perf list: Add IBM z17 event descriptions (jsc#PED-13611) - perf hwmon_pmu: Fix uninitialized variable warning - perf test: Fix a build error in x8 ...	perf-6.12.0.git15644.f62e448821-160000.1.1
SUSE-PackageHub-16.0-505	moderate	recommended	2026-04-09	This update for llvm17 fixes the following issues: - Fix build with glibc 2.42 (bsc#1247576) - Disable ASLR during build to make libomp.so reproducible (bsc#1199076) - Replace usage of %jobs for repr ...	llvm17-17.0.6-160000.3.1
SUSE-PackageHub-16.0-502	moderate	security	2026-04-09	This update for zlib fixes the following issues: - CVE-2026-27171: Fixed an infinite loop via the crc32_combine64 and crc32_combine_gen64 functions due to missing checks for negative lengths. (bsc#1 ...	zlib-1.2.13-160000.3.1
SUSE-PackageHub-16.0-500	moderate	recommended	2026-04-09	This update for patterns-base fixes the following issues: Changes in patterns-base: - Drop biosdevname, this is being replaced by systemd predictable network interface naming (jsc#PED-262).	patterns-base-20241218-160000.3.1
SUSE-PackageHub-16.0-495	moderate	security	2026-04-09	This update for perl-Authen-SASL fixes the following issues: Changes in perl-Authen-SASL: - CVE-2025-40918: use Crypt:URandom for generating nonces (bsc#1246623)	perl-Crypt-URandom-0.550.0-160000.1.1

moderate

security

2026-04-09

This update for ovmf fixes the following issue: - CVE-2025-59438: mbedtls: padding oracle attack possible through timing of cipher error reporting (bsc#1252441).

ovmf-202502-160000.4.1

SUSE-PackageHub-16.0-513

moderate

recommended

2026-04-09

This update for linux-glibc-devel fixes the following issues: Changes in linux-glibc-devel: - Sync with SLES 16.0 update kernel (6.12.0-160000.6) (bsc#1253334)

linux-glibc-devel-6.12-160000.3.1

SUSE-PackageHub-16.0-510

moderate

security

2026-04-09

This update for util-linux fixes the following issues: Security issues: - CVE-2025-14104: heap buffer overread in setpwnam() when processing 256-byte usernames (bsc#1254666). - CVE-2026-3184: access ...

util-linux-2.41.1-160000.3.1

SUSE-PackageHub-16.0-508

moderate

optional

2026-04-09

This update for synce4l, gpsd fixes the following issues: synce4l and gpsd are shipped to SLES and SL Micro. (jsc#PED-15929)

gpsd-3.27.5-160000.1.1
synce4l-1.1.1-160000.1.1

SUSE-PackageHub-16.0-507

moderate

recommended

2026-04-09

This update for PackageKit fixes the following issues: Changes in PackageKit: - Add PackageKit zypp parallel package downloads. zypp: Implement parallel downloading (bsc#1244920).

PackageKit-1.2.8-160000.3.1

SUSE-PackageHub-16.0-506

moderate

recommended

2026-04-09

This update for perf fixes the following issues: - perf list: Add IBM z17 event descriptions (jsc#PED-13611) - perf hwmon_pmu: Fix uninitialized variable warning - perf test: Fix a build error in x8 ...

perf-6.12.0.git15644.f62e448821-160000.1.1

SUSE-PackageHub-16.0-505

moderate

recommended

2026-04-09

This update for llvm17 fixes the following issues: - Fix build with glibc 2.42 (bsc#1247576) - Disable ASLR during build to make libomp.so reproducible (bsc#1199076) - Replace usage of %jobs for repr ...

llvm17-17.0.6-160000.3.1

SUSE-PackageHub-16.0-502

moderate

security

2026-04-09

This update for zlib fixes the following issues: - CVE-2026-27171: Fixed an infinite loop via the crc32_combine64 and crc32_combine_gen64 functions due to missing checks for negative lengths. (bsc#1 ...

zlib-1.2.13-160000.3.1

SUSE-PackageHub-16.0-500

moderate

recommended

2026-04-09

This update for patterns-base fixes the following issues: Changes in patterns-base: - Drop biosdevname, this is being replaced by systemd predictable network interface naming (jsc#PED-262).

patterns-base-20241218-160000.3.1

SUSE-PackageHub-16.0-495

moderate

security

2026-04-09

This update for perl-Authen-SASL fixes the following issues: Changes in perl-Authen-SASL: - CVE-2025-40918: use Crypt:URandom for generating nonces (bsc#1246623)

perl-Crypt-URandom-0.550.0-160000.1.1