28 matches found
CLSA-2026-1777389615 Fix CVE(s): CVE-2024-45802
SECURITY UPDATE: multiple vulnerabilities in Edge Side Includes ESI processing - debian/rules: build with --disable-esi to remove the vulnerable ESI response processor matches the upstream Squid 6.10 default, where ESI support is disabled by default. - debian/control: drop libexpat1-dev and...
MAL-2026-2115 Malicious code in nspack (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 7741f090145e1e4bbd7998edba9c8151bd5dd3380adaa430e8f05cb2c814396f These packages are used as build dependencies of malicious packages in newer waves of the campaign 2026-02-urllib-slim. They are used to split the malicious...
SUSE-SU-2025:3825-1 Recommended update 5.0.5.1 for Multi-Linux Manager Server
This update fixes the following issues: server-attestation-image: - CVE-2025-53192: Do not use apache-commons-ognl but its successor ognl bsc1248252 - Image rebuilt to the newest version and updated build dependencies server-hub-xmlrpc-api-image, server-image, server-migration-14-16-image: - Imag...
SUSE-SU-2025:3786-1 Security update for afterburn
This update for afterburn fixes the following issues: Update to version 5.9.0.git21.a73f509. Security issues fixed: - CVE-2022-24713: regex: no proper complexity limitation when parsing untrusted regular expressions with large repetitions on empty sub-expressions can lead to excessive resource...
SUSE-SU-2025:3784-1 Security update for afterburn
This update for afterburn fixes the following issues: Update to version 5.9.0.git21.a73f509. Security issues fixed: - CVE-2022-24713: regex: no proper complexity limitation when parsing untrusted regular expressions with large repetitions on empty sub-expressions can lead to excessive resource...
Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP7)
This update for the Linux Kernel 6.4.0-1507005311 fixes several issues. The following security issues were fixed: CVE-2025-38678: netfilter: nftables: reject duplicate device on updates bsc1249534. CVE-2025-38499: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns...
SUSE-SU-2025:3770-1 Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP7)
This update for the Linux Kernel 6.4.0-1507005311 fixes several issues. The following security issues were fixed: - CVE-2025-38678: netfilter: nftables: reject duplicate device on updates bsc1249534. - CVE-2025-38499: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns...
SUSE-SU-2025:03643-1 Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP7)
This update for the Linux Kernel 6.4.0-150700713 fixes several issues. The following security issues were fixed: - CVE-2025-38678: netfilter: nftables: reject duplicate device on updates bsc1249534. - CVE-2025-38499: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns...
EUVD-2023-38320
Malicious code in bioql PyPI...
java-1.8.0-openjdk security update
1.8.0.422.b05-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:1.8.0.422.b05-1.1 - Update to shenandoah-jdk8u422-b05 GA - Update release notes for shenandoah-8u422-b05. - Rebase PR2462 patch following patched hunk being removed by JDK-8322106 - Switch to GA mode. - Sync the copy of the portab...
CLSA-2024-1720547899 Update of alt-php
Resolve multiple test failures - debian/rules: re-build test certificates before dhautotest, remove silencing of failing tests - debian/control: build-depend on libnsspem to be able to read PEM certificates in build-nss - debian/patches/update-test-certs-generation.patch: update keysize and diges...
SUSE-SU-2023:4496-1 Security update for libreoffice
This update for fixes the following issues: libreoffice was updated rom 7.5.4.1 to 7.6.2.1 jscPED-6799, jscPED-6800: - For the highlights of changes of version 7.6 please consult the official release notes: https://wiki.documentfoundation.org/ReleaseNotes/7.6 - You can check for each minor releas...
OPENSUSE-SU-2023:0216-1 Security update for chromium
This update for chromium fixes the following issues: Chromium 115.0.5790.170 boo1213920 CVE-2023-4068: Type Confusion in V8 CVE-2023-4069: Type Confusion in V8 CVE-2023-4070: Type Confusion in V8 CVE-2023-4071: Heap buffer overflow in Visuals CVE-2023-4072: Out of bounds read and write in WebGL...
CVE-2023-34223
In JetBrains TeamCity before 2023.05 parameters of the "password" type from build dependencies could be logged in some cases...
CVE-2023-34223
In JetBrains TeamCity before 2023.05 parameters of the "password" type from build dependencies could be logged in some cases...
CVE-2023-34223
In JetBrains TeamCity before 2023.05 parameters of the "password" type from build dependencies could be logged in some cases...
JetBrains TeamCity 日志信息泄露漏洞
JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains. The tool provides features such as continuous unit testing, code quality analysis and build issue analysis reports. A logging information disclosure vulnerability exists ...
PT-2023-24748 · Jetbrains · Teamcity
Name of the Vulnerable Software and Affected Versions: JetBrains TeamCity versions prior to 2023.05 Description: The issue concerns the logging of parameters of the password type from build dependencies in certain cases. Recommendations: For versions prior to 2023.05, update to version 2023.05 or...
OPENSUSE-SU-2022:10014-1 Security update for tensorflow2
This update for tensorflow fixes the following issues: Update to TF2 2.6.0 which fixes multiple CVEs boo1189423. - Introduction of bazel6.3 and basel-skylib1.0.3 as build dependencies. The latter has been adapted to all a version in its package name if %setversuffix is set to 1. This allows...
Security update for tensorflow2 (moderate)
openSUSE Security Update: Security update for tensorflow2 Announcement ID: openSUSE-SU-2022:10014-1 Rating: moderate References: 1173128 1173314 1178287 1178564 1179455 1181864 1186860 1189423 Cross-References: CVE-2020-26266 CVE-2020-26267 CVE-2020-26268 CVE-2020-26270 CVE-2020-26271...