libmatio-devel-1.5.29-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2026:10002-1 Final 1 1 2026-01-01T00:00:00Z current 2026-01-01T00:00:00Z 2026-01-01T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z libmatio-devel-1.5.29-1.1 on GA media These are all security issues fixed in the libmatio-devel-1.5.29-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2026-10002 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2025-2337/ SUSE CVE CVE-2025-2337 page https://www.suse.com/security/cve/CVE-2025-2338/ SUSE CVE CVE-2025-2338 page openSUSE Tumbleweed libmatio-devel-1.5.29-1.1 libmatio13-1.5.29-1.1 matio-tools-1.5.29-1.1 libmatio-devel-1.5.29-1.1 as a component of openSUSE Tumbleweed libmatio13-1.5.29-1.1 as a component of openSUSE Tumbleweed matio-tools-1.5.29-1.1 as a component of openSUSE Tumbleweed A vulnerability, which was classified as critical, has been found in tbeu matio 1.5.28. This issue affects the function Mat_VarPrint of the file src/mat.c. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. CVE-2025-2337 openSUSE Tumbleweed:libmatio-devel-1.5.29-1.1 openSUSE Tumbleweed:libmatio13-1.5.29-1.1 openSUSE Tumbleweed:matio-tools-1.5.29-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2025-2337.html CVE-2025-2337 https://bugzilla.suse.com/1239678 SUSE Bug 1239678 A vulnerability, which was classified as critical, was found in tbeu matio 1.5.28. Affected is the function strdup_vprintf of the file src/io.c. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. CVE-2025-2338 openSUSE Tumbleweed:libmatio-devel-1.5.29-1.1 openSUSE Tumbleweed:libmatio13-1.5.29-1.1 openSUSE Tumbleweed:matio-tools-1.5.29-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2025-2338.html CVE-2025-2338 https://bugzilla.suse.com/1239677 SUSE Bug 1239677