SUSE Package Hub - SUSE Package Hub Updates

Update ID	Severity	Type	Issued	Description	Packages
SUSE-PackageHub-16.0-165	moderate	security	2026-01-22	This update for libheif fixes the following issues: - CVE-2025-68431: heap buffer over-read in `HeifPixelImage::overlay()` via crafted HEIF file that exercises the overlay image item path (bsc#1255 ...	libheif-1.19.7-160000.3.1
SUSE-PackageHub-16.0-164	low	security	2026-01-22	This update for libpcap fixes the following issues: - CVE-2025-11961: missing validation of provided MAC-48 address string in `pcap_ether_aton()` can lead to out-of-bounds read and write (bsc#12557 ...	libpcap-1.10.5-160000.4.1
SUSE-PackageHub-16.0-163	important	recommended	2026-01-22	This update for mdadm fixes the following issues: - fix crash with homehost=none (bsc#1254541) - mdcheck: workaround for bash 5.3 bug (bsc#1254087)	mdadm-4.4+31.g541b40d3-160000.1.1
SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-201	moderate	recommended	2026-01-21	This update for libheif fixes the following issue: - missing aom, jpeg, dav1d, ffmpeg plugins are shipped to the Desktop Applications module (bsc#1249446).	libheif-1.19.5-150700.3.5.1
SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-199	moderate	security	2026-01-21	This update for python-FontTools fixes the following issues: - CVE-2025-66034: Fixed arbitrary file write vulnerability that could lead to remote code execution (bsc#1254366).	python-FontTools-4.47.2-150600.3.3.1
SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-198	important	security	2026-01-21	This update for ffmpeg-4 fixes the following issues: - CVE-2023-6601: Fixed HLS Unsafe File Extension Bypass (bsc#1220545). - CVE-2025-63757: Fixed integer overflow in yuv2ya16_X_c_template() (bsc#12 ...	ffmpeg-4-4.4.6-150600.13.38.1
SUSE-PackageHub-16.0-packagehub-89	moderate	recommended	2026-01-21	This update for helmfile fixes the following issues: Changes in helmfile: - Update to version 1.2.3: * build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.32.2 to 1.32.3 by @dependabo ...	helmfile-1.2.3-bp160.1.1
SUSE-PackageHub-16.0-packagehub-88	important	security	2026-01-21	This update for gimp fixes the following issues: Changes in gimp: - CVE-2025-14422: Fixed PNM File Parsing Integer Overflow (bsc#1255293) - CVE-2025-14423: Fixed LBM File Parsing Stack-based Buffer ...	gimp-3.0.6-bp160.2.1
SUSE-PackageHub-16.0-packagehub-86	important	security	2026-01-21	This update for python-weasyprint fixes the following issues: Changes in python-weasyprint: - CVE-2025-68616: Fixed a server-side request forgery in default fetcher (boo#1256936).	python-weasyprint-65.1-bp160.2.1
SUSE-PackageHub-16.0-160	moderate	recommended	2026-01-21	This update for resource-agents fixes the following issues: - Fix: OCF Resource Agents for vsftpd failure: No PID found (bsc#1249819)	resource-agents-4.16.0+git90.968ad701-160000.2.1

moderate

security

2026-01-22

This update for libheif fixes the following issues: - CVE-2025-68431: heap buffer over-read in `HeifPixelImage::overlay()` via crafted HEIF file that exercises the overlay image item path (bsc#1255 ...

libheif-1.19.7-160000.3.1

SUSE-PackageHub-16.0-164

low

security

2026-01-22

This update for libpcap fixes the following issues: - CVE-2025-11961: missing validation of provided MAC-48 address string in `pcap_ether_aton()` can lead to out-of-bounds read and write (bsc#12557 ...

libpcap-1.10.5-160000.4.1

SUSE-PackageHub-16.0-163

important

recommended

2026-01-22

This update for mdadm fixes the following issues: - fix crash with homehost=none (bsc#1254541) - mdcheck: workaround for bash 5.3 bug (bsc#1254087)

mdadm-4.4+31.g541b40d3-160000.1.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-201

moderate

recommended

2026-01-21

This update for libheif fixes the following issue: - missing aom, jpeg, dav1d, ffmpeg plugins are shipped to the Desktop Applications module (bsc#1249446).

libheif-1.19.5-150700.3.5.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-199

moderate

security

2026-01-21

This update for python-FontTools fixes the following issues: - CVE-2025-66034: Fixed arbitrary file write vulnerability that could lead to remote code execution (bsc#1254366).

python-FontTools-4.47.2-150600.3.3.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-198

important

security

2026-01-21

This update for ffmpeg-4 fixes the following issues: - CVE-2023-6601: Fixed HLS Unsafe File Extension Bypass (bsc#1220545). - CVE-2025-63757: Fixed integer overflow in yuv2ya16_X_c_template() (bsc#12 ...

ffmpeg-4-4.4.6-150600.13.38.1

SUSE-PackageHub-16.0-packagehub-89

moderate

recommended

2026-01-21

This update for helmfile fixes the following issues: Changes in helmfile: - Update to version 1.2.3: * build(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.32.2 to 1.32.3 by @dependabo ...

helmfile-1.2.3-bp160.1.1

SUSE-PackageHub-16.0-packagehub-88

important

security

2026-01-21

This update for gimp fixes the following issues: Changes in gimp: - CVE-2025-14422: Fixed PNM File Parsing Integer Overflow (bsc#1255293) - CVE-2025-14423: Fixed LBM File Parsing Stack-based Buffer ...

gimp-3.0.6-bp160.2.1

SUSE-PackageHub-16.0-packagehub-86

important

security

2026-01-21

This update for python-weasyprint fixes the following issues: Changes in python-weasyprint: - CVE-2025-68616: Fixed a server-side request forgery in default fetcher (boo#1256936).

python-weasyprint-65.1-bp160.2.1

SUSE-PackageHub-16.0-160

moderate

recommended

2026-01-21

This update for resource-agents fixes the following issues: - Fix: OCF Resource Agents for vsftpd failure: No PID found (bsc#1249819)

resource-agents-4.16.0+git90.968ad701-160000.2.1