Skip to main content
Services
How We Work
Technology
Results
Resources
Company
Log in
Get Assessment
SUSE-SU-2026:1413-1 | Mondoo Vulnerability Intelligence
Vulnerability Intelligence
SUSE-SU-2026:1413-1
SUSE-SU-2026:1413-1
UNKNOWN
Security update for ovmf
Published Apr 16, 2026
Modified 3 days ago
Fix available
Details
This update for ovmf fixes the following issue:
CVE-2025-59438: mbedtls: padding oracle attack possible through timing of cipher error reporting (bsc#1252441).
Affected Packages
ovmf
SUSE Linux Enterprise Module for Package Hub 15 SP7
SUSE Linux Enterprise Module for Server Applications 15 SP7
Fixed in:
202408-150700.3.15.1
qemu-ovmf-x86_64
SUSE Linux Enterprise Module for Package Hub 15 SP7
SUSE Linux Enterprise Module for Server Applications 15 SP7
Fixed in:
202408-150700.3.15.1
qemu-ovmf-x86_64-debug
SUSE Linux Enterprise Module for Package Hub 15 SP7
Fixed in:
202408-150700.3.15.1
qemu-uefi-aarch32
SUSE Linux Enterprise Module for Package Hub 15 SP7
Fixed in:
202408-150700.3.15.1
qemu-uefi-aarch64
SUSE Linux Enterprise Module for Package Hub 15 SP7
SUSE Linux Enterprise Module for Server Applications 15 SP7
Fixed in:
202408-150700.3.15.1
ovmf-tools
SUSE Linux Enterprise Module for Server Applications 15 SP7
Fixed in:
202408-150700.3.15.1
References
REPORT
https://bugzilla.suse.com/1252441
WEB
https://www.suse.com/security/cve/CVE-2025-59438
ADVISORY
https://www.suse.com/support/update/announcement/2026/suse-su-20261413-1/
Upstream
CVE-2025-59438
Related
CVE-2025-59438
Ecosystems
SUSE Linux Enterprise Module for Package Hub 15 SP7
SUSE Linux Enterprise Module for Server Applications 15 SP7
Timeline
Published
Apr 16, 2026
Modified
Apr 16, 2026