Security update for libxkbfile SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:0758-1 Final 1 1 2025-02-28T18:23:02Z current 2025-02-28T18:23:02Z 2025-02-28T18:23:02Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for libxkbfile This update for libxkbfile fixes the following issues: - CVE-2025-26595: Fixed buffer overflow in XkbVModMaskText() (bsc#1237429). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Image SLES15-SP3-SAP-Azure-LI-BYOS-Production-2025-758,Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production-2025-758,SUSE-2025-758,SUSE-SLE-Module-Basesystem-15-SP6-2025-758,SUSE-SLE-Product-HPC-15-SP3-LTSS-2025-758,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2025-758,SUSE-SLE-Product-HPC-15-SP4-LTSS-2025-758,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-758,SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-758,SUSE-SLE-Product-SLES-15-SP3-LTSS-2025-758,SUSE-SLE-Product-SLES-15-SP4-LTSS-2025-758,SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-758,SUSE-SLE-Product-SLES_SAP-15-SP3-2025-758,SUSE-SLE-Product-SLES_SAP-15-SP4-2025-758,SUSE-SLE-Product-SLES_SAP-15-SP5-2025-758,SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2025-758,SUSE-SLE-Product-SUSE-Manager-Server-4.3-2025-758,SUSE-Storage-7.1-2025-758,openSUSE-SLE-15.6-2025-758 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-20250758-1/ Link for SUSE-SU-2025:0758-1 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/27GANBYQW25DQC6LDPTKCLJHEVLSI5SU/ E-Mail link for SUSE-SU-2025:0758-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1237429 SUSE Bug 1237429 https://www.suse.com/security/cve/CVE-2025-26595/ SUSE CVE CVE-2025-26595 page Image SLES15-SP3-SAP-Azure-LI-BYOS-Production Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production SUSE Enterprise Storage 7.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS SUSE Linux Enterprise Module for Basesystem 15 SP6 SUSE Linux Enterprise Server 15 SP3-LTSS SUSE Linux Enterprise Server 15 SP4-LTSS SUSE Linux Enterprise Server 15 SP5-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SP5 SUSE Manager Proxy 4.3 SUSE Manager Server 4.3 openSUSE Leap 15.6 libxkbfile1-1.0.9-150000.3.3.1 libxkbfile-devel-1.0.9-150000.3.3.1 libxkbfile-devel-32bit-1.0.9-150000.3.3.1 libxkbfile-devel-64bit-1.0.9-150000.3.3.1 libxkbfile1-32bit-1.0.9-150000.3.3.1 libxkbfile1-64bit-1.0.9-150000.3.3.1 libxkbfile1-1.0.9-150000.3.3.1 as a component of Image SLES15-SP3-SAP-Azure-LI-BYOS-Production libxkbfile1-1.0.9-150000.3.3.1 as a component of Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production libxkbfile-devel-1.0.9-150000.3.3.1 as a component of SUSE Enterprise Storage 7.1 libxkbfile1-1.0.9-150000.3.3.1 as a component of SUSE Enterprise Storage 7.1 libxkbfile-devel-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS libxkbfile1-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS libxkbfile-devel-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS libxkbfile1-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS libxkbfile-devel-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS libxkbfile1-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS libxkbfile-devel-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS libxkbfile1-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS libxkbfile-devel-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS libxkbfile1-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS libxkbfile-devel-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 libxkbfile1-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 libxkbfile-devel-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS libxkbfile1-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS libxkbfile-devel-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS libxkbfile1-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise Server 15 SP4-LTSS libxkbfile-devel-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise Server 15 SP5-LTSS libxkbfile1-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise Server 15 SP5-LTSS libxkbfile-devel-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 libxkbfile1-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 libxkbfile-devel-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 libxkbfile1-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP4 libxkbfile-devel-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP5 libxkbfile1-1.0.9-150000.3.3.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP5 libxkbfile-devel-1.0.9-150000.3.3.1 as a component of SUSE Manager Proxy 4.3 libxkbfile1-1.0.9-150000.3.3.1 as a component of SUSE Manager Proxy 4.3 libxkbfile-devel-1.0.9-150000.3.3.1 as a component of SUSE Manager Server 4.3 libxkbfile1-1.0.9-150000.3.3.1 as a component of SUSE Manager Server 4.3 libxkbfile-devel-1.0.9-150000.3.3.1 as a component of openSUSE Leap 15.6 libxkbfile-devel-32bit-1.0.9-150000.3.3.1 as a component of openSUSE Leap 15.6 libxkbfile1-1.0.9-150000.3.3.1 as a component of openSUSE Leap 15.6 libxkbfile1-32bit-1.0.9-150000.3.3.1 as a component of openSUSE Leap 15.6 A buffer overflow flaw was found in X.Org and Xwayland. The code in XkbVModMaskText() allocates a fixed-sized buffer on the stack and copies the names of the virtual modifiers to that buffer. The code fails to check the bounds of the buffer and would copy the data regardless of the size. CVE-2025-26595 Image SLES15-SP3-SAP-Azure-LI-BYOS-Production:libxkbfile1-1.0.9-150000.3.3.1 Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production:libxkbfile1-1.0.9-150000.3.3.1 SUSE Enterprise Storage 7.1:libxkbfile-devel-1.0.9-150000.3.3.1 SUSE Enterprise Storage 7.1:libxkbfile1-1.0.9-150000.3.3.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:libxkbfile-devel-1.0.9-150000.3.3.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:libxkbfile1-1.0.9-150000.3.3.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libxkbfile-devel-1.0.9-150000.3.3.1 SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libxkbfile1-1.0.9-150000.3.3.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libxkbfile-devel-1.0.9-150000.3.3.1 SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libxkbfile1-1.0.9-150000.3.3.1 SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libxkbfile-devel-1.0.9-150000.3.3.1 SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libxkbfile1-1.0.9-150000.3.3.1 SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libxkbfile-devel-1.0.9-150000.3.3.1 SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libxkbfile1-1.0.9-150000.3.3.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libxkbfile-devel-1.0.9-150000.3.3.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:libxkbfile1-1.0.9-150000.3.3.1 SUSE Linux Enterprise Server 15 SP3-LTSS:libxkbfile-devel-1.0.9-150000.3.3.1 SUSE Linux Enterprise Server 15 SP3-LTSS:libxkbfile1-1.0.9-150000.3.3.1 SUSE Linux Enterprise Server 15 SP4-LTSS:libxkbfile-devel-1.0.9-150000.3.3.1 SUSE Linux Enterprise Server 15 SP4-LTSS:libxkbfile1-1.0.9-150000.3.3.1 SUSE Linux Enterprise Server 15 SP5-LTSS:libxkbfile-devel-1.0.9-150000.3.3.1 SUSE Linux Enterprise Server 15 SP5-LTSS:libxkbfile1-1.0.9-150000.3.3.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:libxkbfile-devel-1.0.9-150000.3.3.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:libxkbfile1-1.0.9-150000.3.3.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:libxkbfile-devel-1.0.9-150000.3.3.1 SUSE Linux Enterprise Server for SAP Applications 15 SP4:libxkbfile1-1.0.9-150000.3.3.1 SUSE Linux Enterprise Server for SAP Applications 15 SP5:libxkbfile-devel-1.0.9-150000.3.3.1 SUSE Linux Enterprise Server for SAP Applications 15 SP5:libxkbfile1-1.0.9-150000.3.3.1 SUSE Manager Proxy 4.3:libxkbfile-devel-1.0.9-150000.3.3.1 SUSE Manager Proxy 4.3:libxkbfile1-1.0.9-150000.3.3.1 SUSE Manager Server 4.3:libxkbfile-devel-1.0.9-150000.3.3.1 SUSE Manager Server 4.3:libxkbfile1-1.0.9-150000.3.3.1 openSUSE Leap 15.6:libxkbfile-devel-1.0.9-150000.3.3.1 openSUSE Leap 15.6:libxkbfile-devel-32bit-1.0.9-150000.3.3.1 openSUSE Leap 15.6:libxkbfile1-1.0.9-150000.3.3.1 openSUSE Leap 15.6:libxkbfile1-32bit-1.0.9-150000.3.3.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20250758-1/ https://www.suse.com/security/cve/CVE-2025-26595.html CVE-2025-26595 https://bugzilla.suse.com/1237429 SUSE Bug 1237429