Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2022:10151-1 Rating: important References: 1204223 Cross-References: CVE-2022-3445 CVE-2022-3446 CVE-2022-3447 CVE-2022-3448 CVE-2022-3449 CVE-2022-3450 Affected Products: openSUSE Backports SLE-15-SP3 An update...

Security update for connman (critical)

openSUSE Security Update: Security update for connman Announcement ID: openSUSE-SU-2022:10134-1 Rating: critical References: 1200189 1200190 Cross-References: CVE-2022-32292 CVE-2022-32293 CVSS scores: CVE-2022-32292 NVD : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-32293 NVD : 8.1...

Security update for mupdf (moderate)

openSUSE Security Update: Security update for mupdf Announcement ID: openSUSE-SU-2022:10125-1 Rating: moderate References: 1202858 Cross-References: CVE-2021-4216 CVSS scores: CVE-2021-4216 NVD : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Backports SLE-15-SP3 An...

Improper access control

A Improper Access Control vulnerability in the systemd service of cana in openSUSE Backports SLE-15-SP3, openSUSE Backports SLE-15-SP4 allows local users to hijack the UNIX domain socket This issue affects: openSUSE Backports SLE-15-SP3 canna versions prior to canna-3.7p3-bp153.2.3.1. openSUSE...

CVE-2022-21950

CVE-2022-21950 is an improper access-control vulnerability in the canna package’s systemd service on openSUSE Backports SLE-15-SP3/SP4 (and affected Factory). The issue allows local users to hijack the UNIX domain socket due to unsafe handling of the /tmp-based socket directory. Affected canna ve...

CVE-2022-21950 canna: unsafe handling of /tmp/.iroha_unix directory

A Improper Access Control vulnerability in the systemd service of cana in openSUSE Backports SLE-15-SP3, openSUSE Backports SLE-15-SP4 allows local users to hijack the UNIX domain socket This issue affects: openSUSE Backports SLE-15-SP3 canna versions prior to canna-3.7p3-bp153.2.3.1. openSUSE...

Security update for chafa (moderate)

openSUSE Security Update: Security update for chafa Announcement ID: openSUSE-SU-2022:10044-1 Rating: moderate References: 1201211 Cross-References: CVE-2022-2301 Affected Products: openSUSE Backports SLE-15-SP3 An update that fixes one vulnerability is now available. Description: This update for...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2022:10036-1 Rating: important References: 1200783 Cross-References: CVE-2022-2156 CVE-2022-2157 CVE-2022-2158 CVE-2022-2160 CVE-2022-2161 CVE-2022-2162 CVE-2022-2163 CVE-2022-2164 CVE-2022-2165 Affected Products:...

Security update for atheme (important)

openSUSE Security Update: Security update for atheme Announcement ID: openSUSE-SU-2022:10018-1 Rating: important References: 1174075 1195989 Cross-References: CVE-2022-24976 CVSS scores: CVE-2022-24976 NVD : 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: openSUSE Backports...

Security update for tensorflow2 (moderate)

openSUSE Security Update: Security update for tensorflow2 Announcement ID: openSUSE-SU-2022:10014-1 Rating: moderate References: 1173128 1173314 1178287 1178564 1179455 1181864 1186860 1189423 Cross-References: CVE-2020-26266 CVE-2020-26267 CVE-2020-26268 CVE-2020-26270 CVE-2020-26271...

Security update for libxls (moderate)

openSUSE Security Update: Security update for libxls Announcement ID: openSUSE-SU-2022:0142-1 Rating: moderate References: 1192323 Cross-References: CVE-2021-27836 Affected Products: openSUSE Backports SLE-15-SP3 An update that fixes one vulnerability is now available. Description: This update fo...

Security update for abcm2ps (moderate)

openSUSE Security Update: Security update for abcm2ps Announcement ID: openSUSE-SU-2022:0100-1 Rating: moderate References: 1197355 Cross-References: CVE-2021-32434 CVE-2021-32435 CVE-2021-32436 CVSS scores: CVE-2021-32434 NVD : 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-32435 NVD ...

Security update for nextcloud (moderate)

openSUSE Security Update: Security update for nextcloud Announcement ID: openSUSE-SU-2022:0098-1 Rating: moderate References: 1196905 1196908 1196952 Cross-References: CVE-2021-41239 CVE-2021-41241 CVE-2021-41741 CVSS scores: CVE-2021-41239 NVD : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N...

Security update for shapelib (important)

openSUSE Security Update: Security update for shapelib Announcement ID: openSUSE-SU-2022:0068-1 Rating: important References: 1196236 Cross-References: CVE-2022-0699 Affected Products: openSUSE Backports SLE-15-SP3 An update that fixes one vulnerability is now available. Description: This update...

Security update for mc (moderate)

openSUSE Security Update: Security update for mc Announcement ID: openSUSE-SU-2022:0061-1 Rating: moderate References: 1190180 Cross-References: CVE-2021-36370 CVSS scores: CVE-2021-36370 SUSE: 4.6 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N Affected Products: openSUSE Backports SLE-15-SP3 An...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2022:0042-1 Rating: important References: 1195986 Cross-References: CVE-2022-0603 CVE-2022-0604 CVE-2022-0605 CVE-2022-0606 CVE-2022-0607 CVE-2022-0608 CVE-2022-0609 CVE-2022-0610 Affected Products: openSUSE...

CVE-2022-21944

A UNIX Symbolic Link Symlink Following vulnerability in the systemd service file for watchman of openSUSE Backports SLE-15-SP3, Factory allows local attackers to escalate to root. This issue affects: openSUSE Backports SLE-15-SP3 watchman versions prior to 4.9.0. openSUSE Factory watchman version...

CVE-2022-21944

CVE-2022-21944 is a local privilege-escalation flaw in the watchman systemd unit on openSUSE Backports SLE-15-SP3 and openSUSE Factory. The Unix Symbolic Link (Symlink) Following issue concerns the [email protected] unit, enabling local attackers to escalate to root due to a symlink-related vulne...

Security update for stb (important)

openSUSE Security Update: Security update for stb Announcement ID: openSUSE-SU-2022:0018-1 Rating: important References: 1191743 Cross-References: CVE-2021-42716 CVSS scores: CVE-2021-42716 NVD : 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H Affected Products: openSUSE Backports SLE-15-SP3 An...

Security update for postrsd (moderate)

openSUSE Security Update: Security update for postrsd Announcement ID: openSUSE-SU-2021:1642-1 Rating: moderate References: 1180251 Cross-References: CVE-2020-35573 CVSS scores: CVE-2020-35573 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Backports SLE-15-SP3 ...