7581 matches found
Security update for rubygem-loofah (moderate)
This update for rubygem-loofah fixes the following issues: Security issue fixed: - CVE-2018-16468: Fixed XXS by removing the svg animate attribute from from the allowlist bsc1113969. This update was imported from the SUSE:SLE-15:Update update project...
Security update for python3 (moderate)
This update for python3 provides the following fixes: These security issues were fixed: - CVE-2018-1061: Prevent catastrophic backtracking in the difflib.ISLINEJUNK method. An attacker could have used this flaw to cause denial of service bsc1088004. - CVE-2018-1060: Prevent catastrophic...
Security update for python-Django (moderate)
This update for python-Django to 1.11.15 fixes the following issues: This security issue was fixed: - CVE-2018-14574: Prevent open redirect in django.middleware.common.CommonMiddleware bsc1102680. These non-security issues were fixed: - Fixed WKBWriter.write and writehex for empty polygons on GEO...
Security update for clamav (moderate)
This update for clamav to version 0.100.1 fixes the following issues: The following security vulnerabilities were addressed: - CVE-2018-0360: HWP integer overflow, infinite loop vulnerability bsc1101410 - CVE-2018-0361: PDF object length check, unreasonably long time to parse relatively small fil...
Security update for MozillaFirefox (important)
This security update for MozillaFirefox to version 60.1.0esr fixes multiple issues. Security issues fixed MFSA 2018-16, boo1098998: - CVE-2018-12359: Buffer overflow using computed size of canvas element - CVE-2018-12360: Use-after-free when using focus - CVE-2018-12361: Integer overflow in...
Security update for Mozilla Firefox (important)
This update for Mozilla Firefox to 52.8.0 ESR fixes the following issues: Security issssue fixed: bsc1092548, MFSA 2018-12: - CVE-2018-5183: Backport critical security fixes in Skia - CVE-2018-5154: Use-after-free with SVG animations and clip paths - CVE-2018-5155: Use-after-free with SVG...
Security update for the Linux Kernel (important)
The openSUSE Leap 42.3 kernel was updated to 4.4.79 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-7542: The ip6find1stfragopt function in net/ipv6/outputcore.c in the Linux kernel allowed local users to cause a denial of service integer overflow and...
Security update for chromium (important)
This update Chromium to version 60.0.3112.78 fixes security issue and bugs. The following security issues were fixed: CVE-2017-5091: Use after free in IndexedDB CVE-2017-5092: Use after free in PPAPI CVE-2017-5093: UI spoofing in Blink CVE-2017-5094: Type confusion in extensions CVE-2017-5095:...
Security update for java-11-openjdk (important)
openSUSE Security Update: Security update for java-11-openjdk Announcement ID: openSUSE-SU-2021:2952-1 Rating: important References: 1185476 1188564 1188565 1188566 SLE-5715 Cross-References: CVE-2021-2341 CVE-2021-2369 CVE-2021-2388 CVSS scores: CVE-2021-2341 NVD : 3.1...
Security update for salt (critical)
openSUSE Security Update: Security update for salt Announcement ID: openSUSE-SU-2020:0564-1 Rating: critical References: 1170595 Cross-References: CVE-2020-11651 CVE-2020-11652 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Description: This updat...
Security update for inn (moderate)
openSUSE Security Update: Security update for inn Announcement ID: openSUSE-SU-2020:0242-1 Rating: moderate References: 1154302 Cross-References: CVE-2019-3692 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This update for in...
Security update for docker-runc (moderate)
openSUSE Security Update: Security update for docker-runc Announcement ID: openSUSE-SU-2020:0219-1 Rating: moderate References: 1160452 Cross-References: CVE-2019-19921 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...
Security update for nfs-utils (moderate)
openSUSE Security Update: Security update for nfs-utils Announcement ID: openSUSE-SU-2019:2435-1 Rating: moderate References: 1150733 Cross-References: CVE-2019-3689 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for nfs-uti...
Security update for util-linux and shadow (moderate)
openSUSE Security Update: Security update for util-linux and shadow Announcement ID: openSUSE-SU-2019:2175-1 Rating: moderate References: 1081947 1082293 1085196 1106214 1121197 1122417 1125886 1135534 1135708 353876 Affected Products: openSUSE Leap 15.0 An update that contains security fixes can...
Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork (important)
openSUSE Security Update: Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork Announcement ID: openSUSE-SU-2019:2021-1 Rating: important References: 1100331 1121967 1138920 1139649 1142160 1142413 1143409 Cross-References: CVE-2018-10892 CVE-2019-13509...
Security update for hylafax+ (critical)
This update for hylafax+ fixes the following issues: Security issues fixed in 5.6.1: - CVE-2018-17141: multiple vulnerabilities affecting fax page reception in JPEG format Specially crafted input may have allowed remote execution of arbitrary code boo1109084 Additionally, this update also contain...
Security update for GraphicsMagick (low)
This update for GraphicsMagick fixes the following security issue: - CVE-2018-16323: ReadXBMImage left data uninitialized when processing an XBM file that has a negative pixel value. If the affected code was used as a library loaded into a process that includes sensitive information, that...
Security update for java-10-openjdk (important)
This update for OpenJDK 10.0.2 fixes the following security issues: - CVE-2018-2940: the libraries sub-component contained an easily exploitable vulnerability that allowed attackers to compromise Java SE or Java SE Embedded over the network, potentially gaining unauthorized read access to data...
Firefox update to 31.1esr (important)
This patch contains security updates for mozilla-nss 3.16.4 - The following 1024-bit root CA certificate was restored to allow more time to develop a better transition strategy for affected sites. It was removed in NSS 3.16.3, but discussion in the mozilla.dev.security.policy forum led to the...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2022:0755-1 Rating: important References: 1089644 1154353 1156395 1157038 1157923 1176447 1176940 1178134 1181147 1181588 1183872 1187716 1188404 1189126 1190812 1190972 1191580 1191655 1191741 1192210...
Security update for nodejs-electron (important)
openSUSE Security Update: Security update for nodejs-electron Announcement ID: openSUSE-SU-2022:0070-1 Rating: important References: Cross-References: CVE-2021-30625 CVE-2021-30626 CVE-2021-30627 CVE-2021-30628 CVE-2021-30630 CVE-2021-30631 CVE-2021-30632 CVE-2021-30633 CVE-2021-37981...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:3179-1 Rating: important References: 1040364 1127650 1135481 1152489 1160010 1168202 1171420 1174969 1175052 1175543 1177399 1180100 1180141 1180347 1181006 1181148 1181972 1184180 1185902 1186264...
Security update for MozillaFirefox (important)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2021:2393-1 Rating: important References: 1188275 Cross-References: CVE-2021-29970 CVE-2021-29976 CVE-2021-30547 CVSS scores: CVE-2021-30547 NVD : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected...
Security update for lua53 (moderate)
openSUSE Security Update: Security update for lua53 Announcement ID: openSUSE-SU-2021:0962-1 Rating: moderate References: 1175448 1175449 Cross-References: CVE-2020-24370 CVE-2020-24371 CVSS scores: CVE-2020-24370 NVD : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2020-24370 SUSE: 4...
Security update for samba (important)
openSUSE Security Update: Security update for samba Announcement ID: openSUSE-SU-2020:1513-1 Rating: important References: 1176579 Cross-References: CVE-2020-1472 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for samba fixe...
Security update for java-11-openjdk (important)
openSUSE Security Update: Security update for java-11-openjdk Announcement ID: openSUSE-SU-2020:0757-1 Rating: important References: 1167462 1169511 Cross-References: CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2767 CVE-2020-2773 CVE-2020-2778 CVE-2020-2781 CVE-2020-2800...
Recommended update for otrs (moderate)
openSUSE Security Update: Recommended update for otrs Announcement ID: openSUSE-SU-2020:0551-1 Rating: moderate References: 1122560 1137614 1137615 1139406 1141430 1141431 1141432 1156431 1157001 1160663 1168029 1168030 1168031 1168032 Cross-References: CVE-2019-10067 CVE-2019-12248 CVE-2019-1249...
Security update for nextcloud (moderate)
openSUSE Security Update: Security update for nextcloud Announcement ID: openSUSE-SU-2020:0229-1 Rating: moderate References: 1162766 1162775 1162776 1162781 1162782 1162784 Cross-References: CVE-2019-15613 CVE-2019-15621 CVE-2019-15623 CVE-2019-15624 CVE-2020-8118 CVE-2020-8119 Affected Products...
Security update for libseccomp (moderate)
openSUSE Security Update: Security update for libseccomp Announcement ID: openSUSE-SU-2019:2283-1 Rating: moderate References: 1082318 1128828 1142614 Cross-References: CVE-2019-9893 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has two fixes is now available...
Security update for openexr (moderate)
openSUSE Security Update: Security update for openexr Announcement ID: openSUSE-SU-2019:1954-1 Rating: moderate References: 1061305 Cross-References: CVE-2017-14988 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description: This...
Security update for openexr (low)
openSUSE Security Update: Security update for openexr Announcement ID: openSUSE-SU-2019:1265-1 Rating: low References: 1113455 Cross-References: CVE-2018-18444 Affected Products: openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description: This update for openexr fixes...
Security update for webkit2gtk3 (moderate)
openSUSE Security Update: Security update for webkit2gtk3 Announcement ID: openSUSE-SU-2019:0308-1 Rating: moderate References: 1119553 1119554 1119555 1119556 1119557 1119558 1124937 Cross-References: CVE-2018-4437 CVE-2018-4438 CVE-2018-4441 CVE-2018-4442 CVE-2018-4443 CVE-2018-4464 CVE-2019-62...
Security update for git (important)
This update for git fixes the following issues: - CVE-2018-17456: Git allowed remote code execution during processing of a recursive "git clone" of a superproject if a .gitmodules file has a URL field beginning with a '-' character. boo1110949...
Security update for python (moderate)
This update for python fixes the following issue: - CVE-2018-1000802: Prevent command injection in shutil module makearchive function via passage of unfiltered user input bsc1109663 This update was imported from the SUSE:SLE-15:Update update project...
Security update for dovecot22 (important)
This update for dovecot22 fixes the following issues: Security issue fixed: - CVE-2017-15130: Fixed a potential denial of service via TLS SNI config lookups, which would slow the process down and could have led to exhaustive memory allocation and/or process restarts bsc1082828 This update was...
Security update for virtualbox (important)
This update for virtualbox to version 5.2.16 fixes the following issues: The following security vulnerabilities were fixed boo1101667: - CVE-2018-3005: Fixed an easily exploitable vulnerability that allowed unauthenticated attacker with logon to the infrastructure where Oracle VM VirtualBox...
Security update for virtualbox (important)
This update for virtualbox to version 5.1.32 fixes the following issues: The following vulnerabilities were fixed boo1076372: - CVE-2017-5715: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacke...
Security update for chromium (important)
This update to Chromium 63.0.3239.84 fixes the following security issues: - CVE-2017-15408: Heap buffer overflow in PDFium - CVE-2017-15409: Out of bounds write in Skia - CVE-2017-15410: Use after free in PDFium - CVE-2017-15411: Use after free in PDFium - CVE-2017-15412: Use after free in libXML...
Security update for shibboleth-sp (important)
This update for shibboleth-sp fixes the following issues: Security issue fixed: - CVE-2017-16852: Fix critical security checks in the Dynamic MetadataProvider plugin in Shibboleth Service bsc1068689. This update was imported from the SUSE:SLE-12-SP1:Update update project...
Security update for the Linux Kernel (important)
SUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2022:0131-1 Rating: important References: 1139944 1151927 1152489 1153275 1154353 1154355 1161907 1164565 1166780 1169514 1176242 1176447 1176536 1176544 1176545 1176546 1176548 1176558 1176559 1176774 1176940...
Security update for log4j (important)
openSUSE Security Update: Security update for log4j Announcement ID: openSUSE-SU-2021:3999-1 Rating: important References: 1193611 Cross-References: CVE-2021-44228 CVSS scores: CVE-2021-44228 SUSE: 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.3 An update th...
Security update for git (moderate)
openSUSE Security Update: Security update for git Announcement ID: openSUSE-SU-2021:2555-1 Rating: moderate References: 1168930 1183026 1183580 SLE-17838 SLE-18152 Cross-References: CVE-2021-21300 CVSS scores: CVE-2021-21300 NVD : 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-21300...
Security update for containerd (moderate)
openSUSE Security Update: Security update for containerd Announcement ID: openSUSE-SU-2021:1081-1 Rating: moderate References: 1188282 Cross-References: CVE-2021-32760 CVSS scores: CVE-2021-32760 SUSE: 3 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:N/A:L Affected Products: openSUSE Leap 15.2 An update...
Security update for grafana (moderate)
openSUSE Security Update: Security update for grafana Announcement ID: openSUSE-SU-2020:1611-1 Rating: moderate References: 1044444 1044933 1115960 1170557 Cross-References: CVE-2018-19039 CVE-2019-15043 CVE-2020-12245 CVE-2020-13379 Affected Products: openSUSE Backports SLE-15-SP1 An update that...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2020:1325-1 Rating: important References: 1065600 1065729 1071995 1083548 1085030 1085308 1087082 1111666 1112178 1113956 1133021 1144333 1152148 1163524 1165629 1166965 1169790 1170232 1171688 1172073...
Security update for mcpp (moderate)
openSUSE Security Update: Security update for mcpp Announcement ID: openSUSE-SU-2020:0391-1 Rating: moderate References: 1143032 Cross-References: CVE-2019-14274 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This update for...
Security update for git (important)
openSUSE Security Update: Security update for git Announcement ID: openSUSE-SU-2020:0123-1 Rating: important References: 1082023 1149792 1158785 1158787 1158788 1158789 1158790 1158791 1158792 1158793 1158795 Cross-References: CVE-2019-1348 CVE-2019-1349 CVE-2019-1350 CVE-2019-1351 CVE-2019-1352...
Security update for rust (moderate)
openSUSE Security Update: Security update for rust Announcement ID: openSUSE-SU-2019:2244-1 Rating: moderate References: 1096945 1100691 1133283 1134978 Cross-References: CVE-2018-1000622 CVE-2019-12083 Affected Products: openSUSE Leap 15.1 An update that solves two vulnerabilities and has two...
Security update for zstd (moderate)
openSUSE Security Update: Security update for zstd Announcement ID: openSUSE-SU-2019:1952-1 Rating: moderate References: 1082318 1133297 1142941 Cross-References: CVE-2019-11922 Affected Products: openSUSE Leap 15.0 An update that solves one vulnerability and has two fixes is now available...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2019:1849-1 Rating: important References: 1143492 1144625 Cross-References: CVE-2019-5850 CVE-2019-5851 CVE-2019-5852 CVE-2019-5853 CVE-2019-5854 CVE-2019-5855 CVE-2019-5856 CVE-2019-5857 CVE-2019-5858 CVE-2019-58...