Skip to main content

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

Vulnerability IntelligenceSUSE-SU-2025:2169-1

SUSE-SU-2025:2169-1

UNKNOWN

Security update for yelp

Published Nov 26, 2025

Modified 1 months ago

Fix available

Details

This update for yelp fixes the following issues:

CVE-2025-3155: JavaScript code execution and arbitrary file read through specially crafted help files and ghelp scheme URLs (bsc#1240688).

Affected Packages

libyelp0

SUSE Linux Enterprise Server 12 SP5-LTSS

Fixed in:

3.20.1-7.3.1

yelp

SUSE Linux Enterprise Server 12 SP5-LTSS

Fixed in:

3.20.1-7.3.1

yelp-devel

SUSE Linux Enterprise Server 12 SP5-LTSS

Fixed in:

3.20.1-7.3.1

yelp-lang

SUSE Linux Enterprise Server 12 SP5-LTSS

Fixed in:

3.20.1-7.3.1

References

REPORThttps://bugzilla.suse.com/1240688 WEBhttps://www.suse.com/security/cve/CVE-2025-3155 ADVISORYhttps://www.suse.com/support/update/announcement/2025/suse-su-20252169-1/

Upstream

Related

Ecosystems

SUSE Linux Enterprise Server 12 SP5-LTSS

Timeline

PublishedNov 26, 2025

ModifiedNov 26, 2025

SUSE-SU-2025:2169-1 | Mondoo Vulnerability Intelligence