Security update for MozillaThunderbird SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:01946-1 Final 1 1 2025-06-13T10:17:01Z current 2025-06-13T10:17:01Z 2025-06-13T10:17:01Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for MozillaThunderbird This update for MozillaThunderbird fixes the following issues: Update to Mozilla Thunderbird 128.11 (MFSA 2025-46, bsc#1243353): - CVE-2025-5262: Double-free in libvpx encoder (bmo#1962421) - CVE-2025-5263: Error handling for script execution was incorrectly isolated from web content (bmo#1960745) - CVE-2025-5264: Potential local code execution in 'Copy as cURL' command (bmo#1950001) - CVE-2025-5265: Potential local code execution in 'Copy as cURL' command (bmo#1962301) - CVE-2025-5266: Script element events leaked cross-origin resource status (bmo#1965628) - CVE-2025-5267: Clickjacking vulnerability could have led to leaking saved payment card details (bmo#1954137) - CVE-2025-5268: Memory safety bugs fixed in Firefox 139, Thunderbird 139, Firefox ESR 128.11, and Thunderbird 128.11 (bmo#1950136, bmo#1958121, bmo#1960499, bmo#1962634) - CVE-2025-5269: Memory safety bug fixed in Firefox ESR 128.11 and Thunderbird 128.11 (bmo#1924108) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2025-1946,SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-1946,SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2025-1946,SUSE-SLE-Product-WE-15-SP6-2025-1946,SUSE-SLE-Product-WE-15-SP7-2025-1946,openSUSE-SLE-15.6-2025-1946 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-202501946-1/ Link for SUSE-SU-2025:01946-1 https://lists.suse.com/pipermail/sle-updates/2025-June/040281.html E-Mail link for SUSE-SU-2025:01946-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1243353 SUSE Bug 1243353 https://www.suse.com/security/cve/CVE-2025-5262/ SUSE CVE CVE-2025-5262 page https://www.suse.com/security/cve/CVE-2025-5263/ SUSE CVE CVE-2025-5263 page https://www.suse.com/security/cve/CVE-2025-5264/ SUSE CVE CVE-2025-5264 page https://www.suse.com/security/cve/CVE-2025-5265/ SUSE CVE CVE-2025-5265 page https://www.suse.com/security/cve/CVE-2025-5266/ SUSE CVE CVE-2025-5266 page https://www.suse.com/security/cve/CVE-2025-5267/ SUSE CVE CVE-2025-5267 page https://www.suse.com/security/cve/CVE-2025-5268/ SUSE CVE CVE-2025-5268 page https://www.suse.com/security/cve/CVE-2025-5269/ SUSE CVE CVE-2025-5269 page SUSE Linux Enterprise Module for Package Hub 15 SP6 SUSE Linux Enterprise Module for Package Hub 15 SP7 SUSE Linux Enterprise Workstation Extension 15 SP6 SUSE Linux Enterprise Workstation Extension 15 SP7 openSUSE Leap 15.6 MozillaThunderbird-128.11.0-150200.8.221.1 MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 MozillaThunderbird-128.11.0-150200.8.221.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP6 MozillaThunderbird-128.11.0-150200.8.221.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 as a component of SUSE Linux Enterprise Module for Package Hub 15 SP7 MozillaThunderbird-128.11.0-150200.8.221.1 as a component of SUSE Linux Enterprise Workstation Extension 15 SP6 MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 as a component of SUSE Linux Enterprise Workstation Extension 15 SP6 MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 as a component of SUSE Linux Enterprise Workstation Extension 15 SP6 MozillaThunderbird-128.11.0-150200.8.221.1 as a component of SUSE Linux Enterprise Workstation Extension 15 SP7 MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 as a component of SUSE Linux Enterprise Workstation Extension 15 SP7 MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 as a component of SUSE Linux Enterprise Workstation Extension 15 SP7 MozillaThunderbird-128.11.0-150200.8.221.1 as a component of openSUSE Leap 15.6 MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 as a component of openSUSE Leap 15.6 MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 as a component of openSUSE Leap 15.6 ** REJECT ** This CVE was accidentally assigned by Mozilla but should be assigned by another CNA. When the correct CVE is available, Mozilla's advisories will be updated to reflect that identifier. CVE-2025-5262 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202501946-1/ https://www.suse.com/security/cve/CVE-2025-5262.html CVE-2025-5262 https://bugzilla.suse.com/1243353 SUSE Bug 1243353 Error handling for script execution was incorrectly isolated from web content, which could have allowed cross-origin leak attacks. This vulnerability affects Firefox < 139, Firefox ESR < 115.24, and Firefox ESR < 128.11. CVE-2025-5263 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202501946-1/ https://www.suse.com/security/cve/CVE-2025-5263.html CVE-2025-5263 https://bugzilla.suse.com/1243353 SUSE Bug 1243353 Due to insufficient escaping of the newline character in the "Copy as cURL" feature, an attacker could trick a user into using this command, potentially leading to local code execution on the user's system. This vulnerability affects Firefox < 139, Firefox ESR < 115.24, and Firefox ESR < 128.11. CVE-2025-5264 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202501946-1/ https://www.suse.com/security/cve/CVE-2025-5264.html CVE-2025-5264 https://bugzilla.suse.com/1243353 SUSE Bug 1243353 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVE-2025-5265 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202501946-1/ https://www.suse.com/security/cve/CVE-2025-5265.html CVE-2025-5265 https://bugzilla.suse.com/1243353 SUSE Bug 1243353 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVE-2025-5266 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202501946-1/ https://www.suse.com/security/cve/CVE-2025-5266.html CVE-2025-5266 https://bugzilla.suse.com/1243353 SUSE Bug 1243353 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVE-2025-5267 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202501946-1/ https://www.suse.com/security/cve/CVE-2025-5267.html CVE-2025-5267 https://bugzilla.suse.com/1243353 SUSE Bug 1243353 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVE-2025-5268 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202501946-1/ https://www.suse.com/security/cve/CVE-2025-5268.html CVE-2025-5268 https://bugzilla.suse.com/1243353 SUSE Bug 1243353 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVE-2025-5269 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Module for Package Hub 15 SP7:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 SUSE Linux Enterprise Workstation Extension 15 SP7:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-translations-common-128.11.0-150200.8.221.1 openSUSE Leap 15.6:MozillaThunderbird-translations-other-128.11.0-150200.8.221.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-202501946-1/ https://www.suse.com/security/cve/CVE-2025-5269.html CVE-2025-5269 https://bugzilla.suse.com/1243353 SUSE Bug 1243353