OPENSUSE-SU-2026:20000-1 Security update for salt

This update for salt fixes the following issues: Changes in salt: - Add minimumauthversion to enforce security CVE-2025-62349 - Backport security fixes for vendored tornado BDSA-2024-3438 BDSA-2024-3439 BDSA-2024-9026 - Junos module yaml loader fix CVE-2025-62348 - Require Python dependencies onl...

SUSE-SU-2025:4006-1 Security update for MozillaThunderbird

This update for MozillaThunderbird fixes the following issue: Mozilla Thunderbird is updated to 140.4. changed: Account Hub is now disabled by default for second email account bmo1992027 changed: Flatpak runtime has been updated to Freedesktop SDK 24.08 bmo1952100 fixed: Users could not read mail...

thunderbird security update

CentOS Errata and Security Advisory CESA-2023:0600 An update for thunderbird is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

SUSE-SU-2022:2533-2 Security update for mozilla-nss

This update for mozilla-nss fixes the following issues: Various FIPS 140-3 related fixes were backported from SUSE Linux Enterprise 15 SP4: - Makes the PBKDF known answer test compliant with NIST SP800-132. bsc1192079. - FIPS: Add on-demand integrity tests through sftkFIPSRepeatIntegrityCheck...

Unbreakable Enterprise kernel security update

5.4.17-2136.308.7 - uek-rpm: Update OL7/8 Secureboot certificate and shim versions Sherry Yang Orabug: 34248329 5.4.17-2136.308.6 - mac80211hwsim: call ieee80211txprepareskb under RCU protection Johannes Berg - arm: remove CONFIGARCHHASHOLESMEMORYMODEL Mike Rapoport - x86/cpu: Load microcode duri...

SUSE-SU-2020:1569-1 Security update for java-1_8_0-openjdk

This update for java-180-openjdk to version jdk8u252 fixes the following issues: - CVE-2020-2754: Forward references to Nashorn bsc1169511 - CVE-2020-2755: Improve Nashorn matching bsc1169511 - CVE-2020-2756: Better mapping of serial ENUMs bsc1169511 - CVE-2020-2757: Less Blocking Array Queues...

Gratipay: Hijacking user session by forcing the use of invalid HTTPs Certificate on images.gratipay.com

I found that the domain images.gratipay.com is just a reverse proxy for gratipay.com and HTTPS works throughtout the site flawlessly except in one case, that it when we try to open user's profile: POC: https://images.gratipay.com/asdlfz/ Https Warning Page: http://i.imgur.com/XHsXJEvr.png?1 Risks...

Stable Channel Update

The Stable channel has been updated to 15.0.874.120 for Windows, Mac, Linux and Chrome Frame platforms All Updated V8 - 3.5.10.23 Fix small print sizing issues issues: 102186, 82472, 102154 This new build also contains a new version of Flash which contains security fixes. Release Notes Mac Fixed...