FERRAMENTAS LINUX: Critical libpulp Update: Security Patches & Performance Fixes for SUSE Linux Systems

sexta-feira, 16 de maio de 2025

Critical libpulp Update: Security Patches & Performance Fixes for SUSE Linux Systems

 

SUSE


SUSE’s latest libpulp update (0.3.14) fixes critical security flaws & boosts stability for Linux Enterprise, SAP, and HPC systems. Learn installation steps and patch impacts for openSUSE Leap 15.4/15.6 and SLE 15 SP4-SP6


Release Date: May 16, 2025 | Severity: Moderate

SUSE has released an essential update for libpulp, addressing critical stability and security vulnerabilities affecting multiple enterprise and open-source Linux distributions. 

This patch is mandatory for system administrators managing SUSE Linux Enterprise (SLE), openSUSE Leap, and specialized deployments like SAP, Real-Time, and High-Performance Computing (HPC) environments.

Affected Products

The update impacts:

  • openSUSE Leap 15.4, 15.6

  • SUSE Linux Enterprise Server (SLES) 15 SP4-SP6

  • SUSE Linux Enterprise Live Patching 15-SP4 to SP6

  • SUSE Linux Enterprise Micro 5.3–5.5

  • SUSE Linux Enterprise Real Time 15 SP4-SP6

  • SUSE Linux Enterprise Server for SAP Applications 15 SP4-SP6


Affected Linux Distributions & Patch Requirements

DistributionVersionPatch CommandCriticalityUse Case
openSUSE Leap15.4zypper in -t patch SUSE-2025-1563=1ModerateGeneral-purpose Linux
openSUSE Leap15.6zypper in -t patch openSUSE-SLE-15.6-2025-1563=1ModerateDeveloper/Desktop
SUSE Linux Enterprise Server (SLES)15 SP4-SP6zypper in -t patch SUSE-SLE-Server-15-SP[4-6]-2025-1563=1HighEnterprise workloads
SUSE Linux Enterprise Live Patching15-SP4 to SP6zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP[4-6]-2025-1563=1CriticalZero-downtime updates
SUSE Linux Enterprise Micro5.3–5.5Included in transactional-updateModerateLightweight/Containerized
SUSE Linux Enterprise Real Time15 SP4-SP6zypper in -t patch SUSE-SLE-RealTime-15-SP[4-6]-2025-1563=1HighLow-latency applications
SUSE Linux Enterprise for SAP Applications15 SP4-SP6zypper in -t patch SUSE-SLE-SAP-15-SP[4-6]-2025-1563=1CriticalSAP mission-critical systems

Key Fixes in libpulp 0.3.14 & 0.3.13

This update resolves:
✔ Security Enhancement: Removes risky linking to GLIBC_PRIVATE symbols.
✔ Improved Compatibility: Better detection of -msplit-patch-nops flag (Bug #1240031).
✔ Crash Prevention: Fixes instability when calling libc.so.6 (Bug #1241897).
✔ Live Patching Optimization: Allows temporary seccomp disabling during patching.

How to Install the Update

Recommended Methods:

  • YaST Online Update (GUI)

  • Zypper Patch (CLI)

Terminal Commands by OS:

bash
Copy
Download
# openSUSE Leap 15.4  
zypper in -t patch SUSE-2025-1563=1  

# openSUSE Leap 15.6  
zypper in -t patch openSUSE-SLE-15.6-2025-1563=1  

# SUSE Live Patching 15-SP4/SP5/SP6  
zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP[4-6]-2025-1563=1

Why This Update Matters for Enterprise Security

This patch mitigates potential privilege escalation risks and improves system reliability—critical for:

  • SAP workloads requiring zero downtime

  • Real-time systems where crashes are unacceptable

  • HPC clusters demanding peak performance

Full Package List & References

For detailed package versions and debug symbols, see the SUSE Security Portal.

Cezar Henrique at
Marcadores: Linux, Android, Segurança , , , , , ,

Nenhum comentário:

Postar um comentário

Assinar: Postar comentários (Atom)