19 matches found
Security update for python-requests
This update for python-requests fixes the following issues: Avoid problems with certificate caching in sslcontext. bsc1246104, ghpsf/requests6767 Update to 2.32.4: CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted environment will retrieve credentials for the wrong...
Security update for pam_u2f
This update for pamu2f fixes the following issues: update to 1.3.2: Relax authfile permission check to a warning instead of an error to prevent a breaking change locking existing users out of their systems. update to 1.3.1: CVE-2025-23013: Fixed problematic PAMIGNORE return values in...
SUSE-SU-2025:0719-1 Recommended update for Maven
This update for Maven fixes the following issues: maven-dependency-analyzer was updated from version 1.13.2 to 1.15.1: - Key changes across versions: Bug fixes and improved support of dynamic types Dependency upgrades ASM, Maven core, and notably the removal of commons-io Improved error handling ...
SUSE-SU-2024:0430-1 Security update for cosign
This update for cosign fixes the following issues: Updated to 2.2.3 jscSLE-23879: Bug Fixes: Fix race condition on verification with multiple signatures attached to image 3486 fixclean: Fix clean cmd for private registries 3446 Fixed BYO PKI verification 3427 Features: Allow for option in cosign...
OPENSUSE-SU-2024:0017-1 Security update for python-django-grappelli
This update for python-django-grappelli fixes the following issues: Update to 2.14.4: - CVE-2021-46898: Fixed views/switch.py vulnerable to protocol-relative URL attacks boo1216481 - Fixed: Redirect with switch user. - Improved: Remove extra filtering in AutocompleteLookup. - Improved: Added impo...
OPENSUSE-SU-2023:0384-1 Security update for python-django-grappelli
This update for python-django-grappelli fixes the following issues: Update to 2.14.4: - CVE-2021-46898: Fixed views/switch.py vulnerable to protocol-relative URL attacks boo1216481 - Fixed: Redirect with switch user. - Improved: Remove extra filtering in AutocompleteLookup. - Improved: Added impo...
SUSE-SU-2023:4060-1 Security update for rage-encryption
This update for rage-encryption fixes the following issues: -CVE-2023-42811: chosen ciphertext attack possible against aes-gcm bsc1215657 update vendor.tar.zst to contain aes-gcm = 0.10.3 - Update to version 0.9.2+0: CI: Ensure apt repository is up-to-date before installing build deps CI: Build...
SUSE-FU-2023:2119-1 Feature update for haproxy
This update for haproxy fixes the following issues: Update to version 2.0.31 jscPED-3821: BUG/CRITICAL: http: properly reject empty http header field names CI: github: don't warn on deprecated openssl functions on windows DOC: proxy-protocol: fix wrong byte in provided example DOC: config:...
SUSE-SU-2023:1970-2 Security update for giflib
This update for giflib fixes the following issues: - CVE-2019-15133: Fixed a divide-by-zero exception in the decoder function DGifSlurp in dgiflib.c if the height field of the ImageSize data structure is equal to zero bsc1146299. - CVE-2018-11490: Fixed a heap-based buffer overflow in...
SUSE-SU-2023:0794-1 Security update for python-PyJWT
This update for python-PyJWT fixes the following issues: - CVE-2022-29217: Fixed Key confusion through non-blocklisted public key formats bsc1199756. - Update in SLE-15 bsc1199282, jscPM-3243, jscSLE-24629 - Update to 2.4.0 bsc1199756 - Explicit check the key for ECAlgorithm - Don't use implicit...
OPENSUSE-SU-2023:0041-1 Security update for EternalTerminal
This update for EternalTerminal fixes the following issues: EternalTerminal was updated to 6.2.4: CVE-2022-48257, CVE-2022-48258 remedied fix readme regarding port forwarding 522 Fix test failures that started appearing in CI 526 Add documentation for the EternalTerminal protocol 523 ssh-et: appl...
OPENSUSE-SU-2022:10094-1 Security update for trivy
This update for trivy fixes the following issues: Update to version 0.30.4: fix: remove the first arg when running as a plugin 2595 fix: k8s controlplaner scanning 2593 fixvuln: GitLab report template 2578 Update to version 0.30.3: fixserver: use a new db worker for hot updates 2581 docs: add tri...
OPENSUSE-SU-2022:10081-1 Security update for trivy
This update for trivy fixes the following issues: trivy was updated to version 0.30.4: fix: remove the first arg when running as a plugin 2595 fix: k8s controlplaner scanning 2593 fixvuln: GitLab report template 2578 Update to version 0.30.3: fixserver: use a new db worker for hot updates 2581...
OPENSUSE-SU-2021:3665-1 Security update for drbd-utils
This update for drbd-utils fixes the following issues: - make all binaries position independent basc1185132. - Upgrade to 9.0.18 bsc1189363 build: remove rpm related targets drbdsetup,v84: fix minor compile warnings systemd: resource specific activation systemd: drbd-reactor promoter templates do...
OPENSUSE-SU-2021:1148-1 Security update for grafana
This update for grafana fixes the following issues: - CVE-2021-27358: unauthenticated remote attackers to trigger a Denial of Service via a remote API call bsc1183803 - Update to version 7.5.7: Updated relref to 'Configuring exemplars' section 34240 34243 Added exemplar topic 34147 34226 Quota: D...
OPENSUSE-SU-2020:0785-1 Security update for axel
This update for axel fixes the following issues: axel was updated to 2.17.8: CVE-2020-13614: SSL Certificate Hostnames were not verified boo1172159 Replaced progressbar line clearing with terminal control sequence Fixed parsing of Content-Disposition HTTP header Fixed User-Agent HTTP header never...
OPENSUSE-SU-2019:1895-1 Security update for ledger
This update for ledger fixes the following issues: ledger was updated to 3.1.3: + Properly reject postings with a comment right after the flag bug 1753 + Make sorting order of lot information deterministic bug 1747 + Fix bug in tag value parsing bug 1702 + Remove the org command, which was always...
openSUSE Security Update : ledger (openSUSE-2019-1779)
This update for ledger fixes the following issues : ledger was updated to 3.1.3 : + Properly reject postings with a comment right after the flag bug 1753 + Make sorting order of lot information deterministic bug 1747 + Fix bug in tag value parsing bug 1702 + Remove the org command, which was alwa...
OPENSUSE-SU-2019:1779-1 Security update for ledger
This update for ledger fixes the following issues: ledger was updated to 3.1.3: + Properly reject postings with a comment right after the flag bug 1753 + Make sorting order of lot information deterministic bug 1747 + Fix bug in tag value parsing bug 1702 + Remove the org command, which was always...