libmupen64plus-devel-2.6.0-2.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2025:15513-1 Final 1 1 2025-09-02T00:00:00Z current 2025-09-02T00:00:00Z 2025-09-02T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z libmupen64plus-devel-2.6.0-2.1 on GA media These are all security issues fixed in the libmupen64plus-devel-2.6.0-2.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2025-15513 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2025-9688/ SUSE CVE CVE-2025-9688 page openSUSE Tumbleweed libmupen64plus-devel-2.6.0-2.1 libmupen64plus2-2.6.0-2.1 mupen64plus-plugin-audio-sdl-2.6.0-2.1 mupen64plus-plugin-input-sdl-2.6.0-2.1 mupen64plus-plugin-rsp-hle-2.6.0-2.1 mupen64plus-plugin-video-glide64mk2-2.6.0-2.1 mupen64plus-plugin-video-rice-2.6.0-2.1 mupen64plus-ui-console-2.6.0-2.1 libmupen64plus-devel-2.6.0-2.1 as a component of openSUSE Tumbleweed libmupen64plus2-2.6.0-2.1 as a component of openSUSE Tumbleweed mupen64plus-plugin-audio-sdl-2.6.0-2.1 as a component of openSUSE Tumbleweed mupen64plus-plugin-input-sdl-2.6.0-2.1 as a component of openSUSE Tumbleweed mupen64plus-plugin-rsp-hle-2.6.0-2.1 as a component of openSUSE Tumbleweed mupen64plus-plugin-video-glide64mk2-2.6.0-2.1 as a component of openSUSE Tumbleweed mupen64plus-plugin-video-rice-2.6.0-2.1 as a component of openSUSE Tumbleweed mupen64plus-ui-console-2.6.0-2.1 as a component of openSUSE Tumbleweed A security vulnerability has been detected in Mupen64Plus up to 2.6.0. The affected element is the function write_is_viewer of the file src/device/cart/is_viewer.c. The manipulation leads to integer overflow. It is possible to initiate the attack remotely. The attack is considered to have high complexity. The exploitability is described as difficult. The exploit has been disclosed publicly and may be used. The identifier of the patch is 3984137fc0c44110f1ef876adb008885b05a6e18. To fix this issue, it is recommended to deploy a patch. CVE-2025-9688 openSUSE Tumbleweed:libmupen64plus-devel-2.6.0-2.1 openSUSE Tumbleweed:libmupen64plus2-2.6.0-2.1 openSUSE Tumbleweed:mupen64plus-plugin-audio-sdl-2.6.0-2.1 openSUSE Tumbleweed:mupen64plus-plugin-input-sdl-2.6.0-2.1 openSUSE Tumbleweed:mupen64plus-plugin-rsp-hle-2.6.0-2.1 openSUSE Tumbleweed:mupen64plus-plugin-video-glide64mk2-2.6.0-2.1 openSUSE Tumbleweed:mupen64plus-plugin-video-rice-2.6.0-2.1 openSUSE Tumbleweed:mupen64plus-ui-console-2.6.0-2.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2025-9688.html CVE-2025-9688 https://bugzilla.suse.com/1249035 SUSE Bug 1249035