7849 matches found
Security update for MozillaFirefox (important)
This security update for MozillaFirefox to version 60.1.0esr fixes multiple issues. Security issues fixed MFSA 2018-16, boo1098998: - CVE-2018-12359: Buffer overflow using computed size of canvas element - CVE-2018-12360: Use-after-free when using focus - CVE-2018-12361: Integer overflow in...
Security update for virtualbox (important)
This update for virtualbox to version 5.1.32 fixes the following issues: The following vulnerabilities were fixed boo1076372: - CVE-2017-5715: Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacke...
Security update for chromium (important)
This update to Chromium 63.0.3239.84 fixes the following security issues: - CVE-2017-15408: Heap buffer overflow in PDFium - CVE-2017-15409: Out of bounds write in Skia - CVE-2017-15410: Use after free in PDFium - CVE-2017-15411: Use after free in PDFium - CVE-2017-15412: Use after free in libXML...
openssh-10.0p2-2.1 on GA media (moderate)
openssh-10.0p2-2.1 on GA media Announcement ID: openSUSE-SU-2025:15091-1 Rating: moderate Cross-References: CVE-2025-32728 CVSS scores: CVE-2025-32728 SUSE : 4.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N CVE-2025-32728 SUSE : 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N...
Security update for the Linux Kernel (important)
SUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2022:0131-1 Rating: important References: 1139944 1151927 1152489 1153275 1154353 1154355 1161907 1164565 1166780 1169514 1176242 1176447 1176536 1176544 1176545 1176546 1176548 1176558 1176559 1176774 1176940...
Security update for java-11-openjdk (important)
openSUSE Security Update: Security update for java-11-openjdk Announcement ID: openSUSE-SU-2021:2952-1 Rating: important References: 1185476 1188564 1188565 1188566 SLE-5715 Cross-References: CVE-2021-2341 CVE-2021-2369 CVE-2021-2388 CVSS scores: CVE-2021-2341 NVD : 3.1...
Security update for spice-vdagent (important)
openSUSE Security Update: Security update for spice-vdagent Announcement ID: openSUSE-SU-2021:2614-1 Rating: important References: 1173749 1177780 1177781 1177782 1177783 Cross-References: CVE-2020-25650 CVE-2020-25651 CVE-2020-25652 CVE-2020-25653 CVSS scores: CVE-2020-25650 NVD : 5.5...
Security update for mariadb (important)
openSUSE Security Update: Security update for mariadb Announcement ID: openSUSE-SU-2021:2616-1 Rating: important References: 1182739 1183770 1185870 1185872 Cross-References: CVE-2021-2154 CVE-2021-2166 CVE-2021-27928 CVSS scores: CVE-2021-2154 NVD : 4.9 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A...
Security update for freetype2 (important)
openSUSE Security Update: Security update for freetype2 Announcement ID: openSUSE-SU-2020:1734-1 Rating: important References: 1177914 Cross-References: CVE-2020-15999 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...
Security update for salt (critical)
openSUSE Security Update: Security update for salt Announcement ID: openSUSE-SU-2020:0564-1 Rating: critical References: 1170595 Cross-References: CVE-2020-11651 CVE-2020-11652 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Description: This updat...
Security update for java-1_8_0-openjdk (important)
openSUSE Security Update: Security update for java-180-openjdk Announcement ID: openSUSE-SU-2020:0147-1 Rating: important References: 1160968 Cross-References: CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2654 CVE-2020-2659 Affected Products: openSUSE Leap 15.1 A...
Security update for glusterfs (moderate)
openSUSE Security Update: Security update for glusterfs Announcement ID: openSUSE-SU-2020:0079-1 Rating: moderate References: 1090084 1105776 1107018 1107019 1107020 1107021 1107022 1107023 1107024 1107025 1107026 1107027 1107028 1107029 Cross-References: CVE-2018-1088 CVE-2018-10904 CVE-2018-109...
Security update for dovecot23 (important)
openSUSE Security Update: Security update for dovecot23 Announcement ID: openSUSE-SU-2019:2278-1 Rating: important References: 1133624 1133625 1145559 Cross-References: CVE-2019-11494 CVE-2019-11499 CVE-2019-11500 Affected Products: openSUSE Leap 15.0 An update that fixes three vulnerabilities is...
Security update for libseccomp (moderate)
openSUSE Security Update: Security update for libseccomp Announcement ID: openSUSE-SU-2019:2283-1 Rating: moderate References: 1082318 1128828 1142614 Cross-References: CVE-2019-9893 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has two fixes is now available...
Security update for util-linux and shadow (moderate)
openSUSE Security Update: Security update for util-linux and shadow Announcement ID: openSUSE-SU-2019:2175-1 Rating: moderate References: 1081947 1082293 1085196 1106214 1121197 1122417 1125886 1135534 1135708 353876 Affected Products: openSUSE Leap 15.0 An update that contains security fixes can...
Security update for zstd (moderate)
openSUSE Security Update: Security update for zstd Announcement ID: openSUSE-SU-2019:1952-1 Rating: moderate References: 1082318 1133297 1142941 Cross-References: CVE-2019-11922 Affected Products: openSUSE Leap 15.0 An update that solves one vulnerability and has two fixes is now available...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2019:1849-1 Rating: important References: 1143492 1144625 Cross-References: CVE-2019-5850 CVE-2019-5851 CVE-2019-5852 CVE-2019-5853 CVE-2019-5854 CVE-2019-5855 CVE-2019-5856 CVE-2019-5857 CVE-2019-5858 CVE-2019-58...
Security update for openexr (low)
openSUSE Security Update: Security update for openexr Announcement ID: openSUSE-SU-2019:1265-1 Rating: low References: 1113455 Cross-References: CVE-2018-18444 Affected Products: openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description: This update for openexr fixes...
Security update for pdns-recursor (important)
openSUSE Security Update: Security update for pdns-recursor Announcement ID: openSUSE-SU-2019:0100-1 Rating: important References: 1121889 Cross-References: CVE-2019-3807 Affected Products: openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description: This update for...
Security update for dom4j (moderate)
This update for dom4j fixes the following issues: - CVE-2018-1000632: Prevent XML injection that could have resulted in an attacker tampering with XML documents bsc1105443. This update was imported from the SUSE:SLE-15:Update update project. This update was imported from the...
Security update for python (moderate)
This update for python fixes the following issue: - CVE-2018-1000802: Prevent command injection in shutil module makearchive function via passage of unfiltered user input bsc1109663 This update was imported from the SUSE:SLE-15:Update update project...
Security update for python-Django1 (important)
This update for python-Django1 to version 1.11.15 fixes the following issues: The following security vulnerability was fixed: - CVE-2018-14574: Fixed an open redirect possibility in CommonMiddleware boo1102680 The following other bugs were fixed: - Fixed WKBWriter.write and writehex for empty...
Security update for hylafax+ (critical)
This update for hylafax+ fixes the following issues: Security issues fixed in 5.6.1: - CVE-2018-17141: multiple vulnerabilities affecting fax page reception in JPEG format Specially crafted input may have allowed remote execution of arbitrary code boo1109084 Additionally, this update also contain...
Security update for dovecot22 (important)
This update for dovecot22 fixes the following issues: Security issue fixed: - CVE-2017-15130: Fixed a potential denial of service via TLS SNI config lookups, which would slow the process down and could have led to exhaustive memory allocation and/or process restarts bsc1082828 This update was...
Security update for openssl (moderate)
This update for openssl fixes the following issues: - CVE-2018-0732: During key agreement in a TLS handshake using a DHE based ciphersuite a malicious server could have sent a very large prime value to the client. This caused the client to spend an unreasonably long period of time generating a ke...
Security update for phpMyAdmin (important)
This update for phpMyAdmin fixes multiple issues. Security issues fixed: CVE-2018-12613: File inclusion and remote code execution attack boo1098751 CVE-2018-12581: XSS in Designer feature boo1098752 This update to version 4.8.2 also contains number of upstream bug fixes and improvements...
Security update for glibc (important)
This update for glibc fixes the following issues: - CVE-2017-18269: Fix SSE2 memmove issue when crossing 2GB boundary bsc1094150 - CVE-2018-11236: Fix overflow in path length computation bsc1094161 - CVE-2018-11237: Don't write beyond buffer destination in mempcpyavx512novzeroupper bsc1094154 Non...
Security update for ghostscript (moderate)
This update for ghostscript fixes the following issues: - CVE-2018-10194: A stack-based buffer overflow was fixed in gdevpdts.c bsc1090099 This update was imported from the SUSE:SLE-12:Update update project...
Security update for libvorbis (moderate)
This update for libvorbis fixes the following issues: Security issues fixed: - CVE-2018-10393: Fixed stack-based buffer over-read in barknoisehybridm bsc1091072. - CVE-2017-14160: Fixed out-of-bounds access inside barknoisehybridmp function bsc1059812. This update was imported from the...
Security update for wpa_supplicant (important)
This update for wpasupplicant fixes the security issues: - Several vulnerabilities in standard conforming implementations of the WPA2 protocol have been discovered and published under the code name KRACK. This update remedies those issues in a backwards compatible manner, i.e. the updated...
Security update for xen (important)
This update for xen fixes several issues. These security issues were fixed: - CVE-2017-14316: Missing bound check in function allocheappages for an internal array allowed attackers using crafted hypercalls to execute arbitrary code within Xen XSA-231, bsc1056278 - CVE-2017-14318: The function...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2022:0755-1 Rating: important References: 1089644 1154353 1156395 1157038 1157923 1176447 1176940 1178134 1181147 1181588 1183872 1187716 1188404 1189126 1190812 1190972 1191580 1191655 1191741 1192210...
Security update for nodejs8 (important)
openSUSE Security Update: Security update for nodejs8 Announcement ID: openSUSE-SU-2022:0704-1 Rating: important References: 1191962 1191963 1192153 1192154 1192696 Cross-References: CVE-2021-23343 CVE-2021-32803 CVE-2021-32804 CVE-2021-3807 CVE-2021-3918 CVSS scores: CVE-2021-23343 NVD : 7.5...
Security update for kafka (important)
openSUSE Security Update: Security update for kafka Announcement ID: openSUSE-SU-2021:1631-1 Rating: important References: 1193662 Cross-References: CVE-2021-4104 CVSS scores: CVE-2021-4104 SUSE: 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Backports SLE-15-SP3 An...
Security update for singularity (moderate)
openSUSE Security Update: Security update for singularity Announcement ID: openSUSE-SU-2021:1525-1 Rating: moderate References: 1193273 Cross-References: CVE-2021-41190 CVSS scores: CVE-2021-41190 NVD : 3 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N Affected Products: openSUSE Backports SLE-15-SP...
Security update for git (moderate)
openSUSE Security Update: Security update for git Announcement ID: openSUSE-SU-2021:2555-1 Rating: moderate References: 1168930 1183026 1183580 SLE-17838 SLE-18152 Cross-References: CVE-2021-21300 CVSS scores: CVE-2021-21300 NVD : 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-21300...
Security update for icinga2 (moderate)
openSUSE Security Update: Security update for icinga2 Announcement ID: openSUSE-SU-2021:1089-1 Rating: moderate References: Cross-References: CVE-2020-29663 CVE-2021-32739 CVE-2021-32743 CVSS scores: CVE-2020-29663 NVD : 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N CVE-2020-29663 SUSE: 5.3...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:1731-1 Rating: important References: 1177936 Cross-References: CVE-2020-15999 CVE-2020-16000 CVE-2020-16001 CVE-2020-16002 CVE-2020-16003 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes ...
Security update for samba (important)
openSUSE Security Update: Security update for samba Announcement ID: openSUSE-SU-2020:1513-1 Rating: important References: 1176579 Cross-References: CVE-2020-1472 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for samba fixe...
Security update for firejail (moderate)
openSUSE Security Update: Security update for firejail Announcement ID: openSUSE-SU-2020:1208-1 Rating: moderate References: 1174986 Cross-References: CVE-2020-17367 CVE-2020-17368 Affected Products: openSUSE Leap 15.2 An update that fixes two vulnerabilities is now available. Description: This...
Security update for slirp4netns (important)
openSUSE Security Update: Security update for slirp4netns Announcement ID: openSUSE-SU-2020:0636-1 Rating: important References: 1170940 Cross-References: CVE-2020-1983 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...
Security update for python-nltk (moderate)
openSUSE Security Update: Security update for python-nltk Announcement ID: openSUSE-SU-2020:0440-1 Rating: moderate References: 1146427 Cross-References: CVE-2019-14751 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This upda...
Security update for tor (moderate)
openSUSE Security Update: Security update for tor Announcement ID: openSUSE-SU-2020:0406-1 Rating: moderate References: 1167013 1167014 Cross-References: CVE-2020-10592 CVE-2020-10593 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Description: Thi...
Security update for libredwg (moderate)
openSUSE Security Update: Security update for libredwg Announcement ID: openSUSE-SU-2020:0068-1 Rating: moderate References: 1129868 1129869 1129870 1129873 1129874 1129875 1129876 1129878 1129879 1129881 1154080 1159824 1159825 1159826 1159827 1159828 1159831 1159832 Cross-References:...
Security update for libssh (important)
openSUSE Security Update: Security update for libssh Announcement ID: openSUSE-SU-2019:2689-1 Rating: important References: 1158095 Cross-References: CVE-2019-14889 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for libssh...
Security update for php7 (moderate)
openSUSE Security Update: Security update for php7 Announcement ID: openSUSE-SU-2019:1293-1 Rating: moderate References: 1126711 1126713 1126821 1126823 1127122 1128722 1128883 1128886 1128887 1128889 1128892 1129032 Cross-References: CVE-2018-20783 CVE-2019-9020 CVE-2019-9021 CVE-2019-9023...
Security update for ovmf (moderate)
openSUSE Security Update: Security update for ovmf Announcement ID: openSUSE-SU-2019:1172-1 Rating: moderate References: 1128503 1130267 Cross-References: CVE-2018-12181 CVE-2019-0160 Affected Products: openSUSE Leap 15.0 An update that fixes two vulnerabilities is now available. Description: Thi...
Security update for singularity (moderate)
openSUSE Security Update: Security update for singularity Announcement ID: openSUSE-SU-2019:0095-1 Rating: moderate References: 1100333 1111411 Cross-References: CVE-2018-12021 CVE-2018-19295 Affected Products: SUSE Package Hub for SUSE Linux Enterprise 12 An update that fixes two vulnerabilities...
Security update for xen (important)
This update for xen fixes the following issues: Security issues fixed: - CVE-2018-18849: Fixed an out of bounds memory access issue was found in the LSI53C895A SCSI Host Bus Adapter emulation while writing a message in lsidomsgin bsc1114423. - CVE-2018-18883: Fixed a NULL pointer dereference that...
Security update for apache2 (important)
This update for apache2 fixes the following issues: Security issues fixed: - CVE-2018-11763: In Apache HTTP Server by sending continuous, large SETTINGS frames a client can occupy a connection, server thread and CPU time without any connection timeout coming to effect. This affects only HTTP/2...