openSUSE Security Update : libevent (openSUSE-2018-95)

This update for libevent fixes the following security issues : - CVE-2016-10195: DNS remote stack overread vulnerability bsc1022917 - CVE-2016-10196: stack/buffer overflow in evutilparsesockaddrport bsc1022918 - CVE-2016-10197: out-of-bounds read in searchmakenew bsc1022919 This update was import...

openSUSE Security Update : clamav-database (openSUSE-2018-6)

This update refreshes the clamav-database. This update was imported from the SUSE:SLE-12:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2018-6. The text...

openSUSE Security Update : python-PyJWT (openSUSE-2017-1408)

This update for python-PyJWT fixes the following issues : - CVE-2017-12880: fix symmetric/asymmetric confusion when handling PKCS1 public keys bsc1054106 This update was imported from the SUSE:SLE-12-SP1:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...

openSUSE Security Update : opensaml (openSUSE-2017-1350)

This update for opensaml fixes the following issues : Security issue fixed : - CVE-2017-16853: Fix the DynamicMetadataProvider class to properly configure itself with the MetadataFilter plugins, to avoid possible MITM attacks bsc1068685. This update was imported from the SUSE:SLE-12-SP1:Update...

openSUSE Security Update : libgcrypt (openSUSE-2017-796)

This update for libgcrypt fixes the following issues : - CVE-2017-7526: Hardening against a local side-channel attack in RSA key handling has been added bsc1046607 This update was imported from the SUSE:SLE-12:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

openSUSE Security Update : slrn (openSUSE-2017-459) (POODLE)

This update for slrn contains one security improvement : - CVE-2014-3566: Disable SSLv3 to prevent POODLE attack boo1031023 The version 1.0.3 also contains a number of display and message processing improvements. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and packag...

openSUSE Security Update : clamav-database (openSUSE-2017-444)

This update for clamav-database refreshes the database. This update was imported from the SUSE:SLE-12:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2017-444...

openSUSE Security Update : tigervnc (openSUSE-2017-243)

This update for tigervnc fixes the following issues : This security issue was fixed : - CVE-2016-10207: Prevent crash caused by failed TLS connection bnc1023012 This non-security issue was fixed : - Fix random client disconnections boo1022432 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. T...

openSUSE Security Update : dnsmasq (openSUSE-2017-10)

This update for dnsmasq fixes the following issues : - CVE-2015-8899: Denial of service between local and remote dns entries bsc983273 This update was imported from the SUSE:SLE-12-SP1:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

openSUSE Security Update : otrs (openSUSE-2016-1316)

This update for otrs fixes the following security issues : - CVE-2016-9139: execution of JavaScript in OTRS context by opening malicious attachment OSA-2016-02, bsc1008017 In addition, OTRS was updated to 3.3.16, containing all upstream improvements and bug fixes. %NASLMINLEVEL 70300 C Tenable...