SUSE SLES15 Security Update : qemu (SUSE-SU-2026:0043-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0043-1 advisory. Security issues fixed: - CVE-2023-1544: out-of-bounds read in VMWare's paravirtual RDMA device operations can be exploited through ...

PT-2024-4247

Name of the Vulnerable Software and Affected Versions: Alma Linux affected versions not specified Debian firefox-esr versions 115.11.0esr-1deb10u1 Mozilla Firefox affected versions not specified Mozilla Thunderbird affected versions not specified Network Security Services NSS affected versions no...

Vulnerabilities fixed in node.js

Vulnerabilities have been fixed in node.js. The vulnerabilities allow a malicious party to launch attacks that lead to the following categories of damage: Denial-of-Service DoS. Remote code execution User Rights Access to system data For the vulnerability with attribute CVE-2021-44906,...

Vulnerability fixed in libgcrypt

The developers of GnuPG have fixed a vulnerability in libgcrypt. The vulnerability is caused by an insecure implementation of ElGamal cryptography. A malicious person could potentially exploit the vulnerability to perform a side-channel attack against data encrypted using ElGamal. Few substantive...

Vulnerabilities fixed in WebKitGTK

Vulnerabilities have been fixed in WebKitGTK. The vulnerabilities allow a malicious person to execute arbitrary code execute under the user's privileges. The malicious party must victim to open a rogue page to exploit these vulnerabilities to be exploited. The developers of WebKitGTK have release...

openSUSE Security Update : libvirt (openSUSE-SU-2015:0006-1)

CVE-2014-8136: libvirt: local denial of service in qemu driver 2bdcd29c-CVE-2014-8136.patch bsc910862 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2015-2. The text description of...

openSUSE Security Update : libreoffice (openSUSE-SU-2014:1412-1)

libreoffice was updated to fix two security issues. These security issues were fixed : - 'Document as E-mail' vulnerability bnc900218. - Impress Remote Control Use-after-Free Vulnerability CVE-2014-3693. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks ...

openSUSE Security Update : dhcp (openSUSE-SU-2012:1254-1)

Update to ISC dhcp-4.2.4-P2 release, providing a security fix for an issue with the use of lease times was found and fixed. Making certain changes to the end time of an IPv6 lease could cause the server to abort. Thanks to Glen Eustace of Massey University, New Zealand for finding this issue...

openSUSE Security Update : lcms2 (openSUSE-SU-2013:1236-1)

This version update of lcms2 to release 2.5 fixes several security issues plus several other color management bugs. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-602. The text...

openSUSE Security Update : jasper (openSUSE-SU-2011:1328-1)

Specially crafted JPEG2000 files could cause a heap buffer overflow in jasper CVE-2011-4516, CVE-2011-4517 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update jasper-5543. The text description of...

openSUSE Security Update : rubygem-i18n / rubygem-i18n-0_6 (openSUSE-SU-2013:1930-1)

This update fixes the following security issue with rubygem-i18n : - fix bnc854166: CVE-2013-4492: rubygem-i18n: missing translation XSS. File CVE-2013-4492.patch.i18n.0.6.x contains the fix. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plug...

openSUSE Security Update : python-tornado (openSUSE-SU-2012:0755-1)

This update includes several security fixes added in version 2.2.1 and 2.3 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-330. The text description of this plugin is C SUSE LLC...

openSUSE Security Update : opera (openSUSE-SU-2011:1314-1)

opera was updated to version 11.60 to fix several security issues %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update opera-5529. The text description of this plugin is C SUSE LLC...

openSUSE Security Update : python-keystoneclient (openSUSE-SU-2013:1090-1)

This update of python-keystoneclient fixes a security vulnerability. - Add CVE-2013-2013.patch: allow secure user password update CVE-2013-2013, bnc817415. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...

openSUSE Security Update : clamav (openSUSE-SU-2011:1177-1)

This version update of clamav fixes a recursion level crash. CVE-2011-3627 was assigned to this issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update clamav-5308. The text description of this...

openSUSE Security Update : sudo (openSUSE-SU-2012:0652-1)

sudo did not always honor the HostList setting in /etc/sudoers properly %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-293. The text description of this plugin is C SUSE LLC...

openSUSE Security Update : libxslt / libxslt-python (openSUSE-SU-2012:0883-1)

Changes in libxslt, libxslt-python : - fixing an incorrect read operation in the XSL implementation CVE-2012-2825, bnc769182 that could cause a DoS condition %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...

openSUSE Security Update : libxml2 / python-libxml2 (openSUSE-SU-2014:0716-1)

Updated fix for openSUSE-SU-2014:0645-1 because of a regression that caused xmllint to break. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2014-394. The text description of this...

openSUSE Security Update : python-suds (openSUSE-SU-2013:1208-1)

Python SUDS was updated to create a create random cache tempdir to avoid other local user access bnc827568 CVE-2013-2217 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2013-590. The...

openSUSE Security Update : python-pymongo / python3-pymongo (openSUSE-SU-2013:1064-1)

This update of pymongo fixes a NULL pointer issue. - Add Fix-null-pointer-when-decoding-invalid-DBRef.patch - Fixed user-triggerable NULL pointer dereference due to utter plebbery CVE-2013-2132, bnc822798 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks...