7581 matches found
Security update for ovmf (moderate)
openSUSE Security Update: Security update for ovmf Announcement ID: openSUSE-SU-2019:1172-1 Rating: moderate References: 1128503 1130267 Cross-References: CVE-2018-12181 CVE-2019-0160 Affected Products: openSUSE Leap 15.0 An update that fixes two vulnerabilities is now available. Description: Thi...
Security update for apache2 (important)
This update for apache2 fixes the following issues: Security issues fixed: - CVE-2018-11763: In Apache HTTP Server by sending continuous, large SETTINGS frames a client can occupy a connection, server thread and CPU time without any connection timeout coming to effect. This affects only HTTP/2...
Security update for apache2 (moderate)
This update for apache2 fixes the following issues: Security issues fixed: - CVE-2016-8743: Fixed liberal whitespace interpretation accepted from requests and sent in response lines and headers. Accepting these different behaviors represented a security concern when httpd participates in any chai...
Security update for jhead (moderate)
This update for jhead fixes the following security issues: - CVE-2016-3822: jhead remote attackers to execute arbitrary code or cause a denial of service out-of-bounds access via crafted EXIF data bsc1108480. - CVE-2018-16554: The ProcessGpsInfo function may have allowed a remote attacker to caus...
Security update for MozillaFirefox (important)
This update to Mozilla Firefox 60.2.0esr fixes the following issues: Security issues fixed MFSA 2018-21, boo1107343: - CVE-2018-12377: Use-after-free in refresh driver timers - CVE-2018-12378: Use-after-free in IndexedDB - CVE-2017-16541: Proxy bypass using automount and autofs boo1066489 -...
Security update for the Linux Kernel (important)
The openSUSE 42.3 was updated to 4.4.140 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2018-13053: The alarmtimernsleep function had an integer overflow via a large relative timeout because ktimeaddsafe was not used bnc1099924. - CVE-2018-9385: Prevent...
Security update for libvorbis (moderate)
This update for libvorbis fixes the following issues: Security issues fixed: - CVE-2018-10393: Fixed stack-based buffer over-read in barknoisehybridm bsc1091072. - CVE-2017-14160: Fixed out-of-bounds access inside barknoisehybridmp function bsc1059812. This update was imported from the...
Security update for wpa_supplicant (important)
This update for wpasupplicant fixes the security issues: - Several vulnerabilities in standard conforming implementations of the WPA2 protocol have been discovered and published under the code name KRACK. This update remedies those issues in a backwards compatible manner, i.e. the updated...
Security update for exim (critical)
openSUSE Security Update: Security update for exim Announcement ID: openSUSE-SU-2021:0753-1 Rating: critical References: 1079832 1136587 1142207 1154183 1160726 1171490 1171877 1173693 1185631 Cross-References: CVE-2017-1000369 CVE-2017-16943 CVE-2017-16944 CVE-2018-6789 CVE-2019-10149...
Security update for freetype2 (important)
openSUSE Security Update: Security update for freetype2 Announcement ID: openSUSE-SU-2020:1734-1 Rating: important References: 1177914 Cross-References: CVE-2020-15999 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...
Security update for wireshark (moderate)
openSUSE Security Update: Security update for wireshark Announcement ID: openSUSE-SU-2020:1199-1 Rating: moderate References: 1169063 1171899 1173606 Cross-References: CVE-2020-11647 CVE-2020-13164 CVE-2020-15466 Affected Products: openSUSE Leap 15.2 An update that fixes three vulnerabilities is...
Security update for firejail (moderate)
openSUSE Security Update: Security update for firejail Announcement ID: openSUSE-SU-2020:1208-1 Rating: moderate References: 1174986 Cross-References: CVE-2020-17367 CVE-2020-17368 Affected Products: openSUSE Leap 15.2 An update that fixes two vulnerabilities is now available. Description: This...
Security update for chromium (critical)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:0541-1 Rating: critical References: 1169729 Cross-References: CVE-2020-6457 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for chromium...
Security update for MozillaFirefox (critical)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2020:0461-1 Rating: critical References: 1168630 Cross-References: CVE-2020-6819 CVE-2020-6820 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Description:...
Security update for tor (moderate)
openSUSE Security Update: Security update for tor Announcement ID: openSUSE-SU-2020:0406-1 Rating: moderate References: 1167013 1167014 Cross-References: CVE-2020-10592 CVE-2020-10593 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Description: Thi...
Security update for python-mysql-connector-python (moderate)
openSUSE Security Update: Security update for python-mysql-connector-python Announcement ID: openSUSE-SU-2020:0409-1 Rating: moderate References: 1122204 Cross-References: CVE-2019-2435 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: Thi...
Security update for python-azure-agent (moderate)
openSUSE Security Update: Security update for python-azure-agent Announcement ID: openSUSE-SU-2020:0261-1 Rating: moderate References: 1127838 Cross-References: CVE-2019-0804 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update fo...
Security update for e2fsprogs (moderate)
openSUSE Security Update: Security update for e2fsprogs Announcement ID: openSUSE-SU-2020:0166-1 Rating: moderate References: 1160571 Cross-References: CVE-2019-5188 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for e2fspro...
Security update for java-1_8_0-openjdk (important)
openSUSE Security Update: Security update for java-180-openjdk Announcement ID: openSUSE-SU-2020:0147-1 Rating: important References: 1160968 Cross-References: CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2654 CVE-2020-2659 Affected Products: openSUSE Leap 15.1 A...
Security update for libredwg (moderate)
openSUSE Security Update: Security update for libredwg Announcement ID: openSUSE-SU-2020:0068-1 Rating: moderate References: 1129868 1129869 1129870 1129873 1129874 1129875 1129876 1129878 1129879 1129881 1154080 1159824 1159825 1159826 1159827 1159828 1159831 1159832 Cross-References:...
Security update for djvulibre (moderate)
openSUSE Security Update: Security update for djvulibre Announcement ID: openSUSE-SU-2019:2217-1 Rating: moderate References: 1146569 1146571 1146572 1146702 Cross-References: CVE-2019-15142 CVE-2019-15143 CVE-2019-15144 CVE-2019-15145 Affected Products: openSUSE Leap 15.0 An update that fixes fo...
Security update for zstd (moderate)
openSUSE Security Update: Security update for zstd Announcement ID: openSUSE-SU-2019:1845-1 Rating: moderate References: 1082318 1133297 1142941 Cross-References: CVE-2019-11922 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has two fixes is now available...
Security update for proftpd (important)
openSUSE Security Update: Security update for proftpd Announcement ID: openSUSE-SU-2019:1836-1 Rating: important References: 1142281 Cross-References: CVE-2017-7418 CVE-2019-12815 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 openSUSE Backports SLE-15 An update that fixes two...
Security update for dovecot22 (important)
openSUSE Security Update: Security update for dovecot22 Announcement ID: openSUSE-SU-2019:1220-1 Rating: important References: 1111789 1123022 1130116 Cross-References: CVE-2019-3814 CVE-2019-7524 Affected Products: openSUSE Leap 42.3 An update that solves two vulnerabilities and has one errata i...
Security update for singularity (moderate)
openSUSE Security Update: Security update for singularity Announcement ID: openSUSE-SU-2019:0095-1 Rating: moderate References: 1100333 1111411 Cross-References: CVE-2018-12021 CVE-2018-19295 Affected Products: SUSE Package Hub for SUSE Linux Enterprise 12 An update that fixes two vulnerabilities...
Security update for ovmf (moderate)
This update for ovmf provide the following fix: Security issues fixed: - CVE-2018-0739: Update openssl to 1.0.2o to limit ASN.1 constructed types recursive definition depth bsc1094290, bsc1094291. Bug fixes: - Only use SLES-UEFI-CA-Certificate-2048.crt for the SUSE flavor to provide the better...
Security update for memcached (important)
This update for memcached fixes the following issues: - CVE-2017-9951: Fixed heap-based buffer over-read in tryreadcommand function which allowed remote attackers to cause a denial of service attack bsc1056865. This update was imported from the SUSE:SLE-12:Update update project...
Security update for Mozilla Thunderbird (important)
This update for Mozilla Thunderbird to version 52.5.2 fixes the following vulnerabilities: - CVE-2017-7846: JavaScript Execution via RSS in mailbox:// origin bsc1074043 - CVE-2017-7847: Local path string can be leaked from RSS feed bsc1074044 - CVE-2017-7848: RSS Feed vulnerable to new line...
Security update for qemu (important)
This update for qemu fixes several issues. These security issues were fixed: - CVE-2017-15268: Qemu allowed remote attackers to cause a memory leak by triggering slow data-channel read operations, related to io/channel-websock.c bsc1062942. - CVE-2017-9524: The qemu-nbd server when built with the...
kernel: security and bugfix update. (important)
The openSUSE 11.4 kernel was updated to fix bugs and security issues. Following security issues have been fixed: CVE-2011-4604: If root does read on a specific socket, it's possible to corrupt kernel memory over network, with an ICMP packet, if the B.A.T.M.A.N. mesh protocol is used. CVE-2011-269...
Security update for trivy (moderate)
openSUSE Security Update: Security update for trivy Announcement ID: openSUSE-SU-2022:10094-1 Rating: moderate References: 1199760 Cross-References: CVE-2022-1996 CVE-2022-23648 CVE-2022-28946 CVSS scores: CVE-2022-1996 NVD : 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N CVE-2022-1996 SUSE: 7....
Security update for samba (important)
openSUSE Security Update: Security update for samba Announcement ID: openSUSE-SU-2022:0283-1 Rating: important References: 1139519 1183572 1183574 1188571 1191227 1191532 1192684 1193690 1194859 1195048 SLE-23329 Cross-References: CVE-2020-27840 CVE-2021-20277 CVE-2021-20316 CVE-2021-36222...
Security update for apache2 (important)
openSUSE Security Update: Security update for apache2 Announcement ID: openSUSE-SU-2021:1438-1 Rating: important References: 1190666 1190669 1190702 1190703 Cross-References: CVE-2021-34798 CVE-2021-36160 CVE-2021-39275 CVE-2021-40438 CVSS scores: CVE-2021-34798 SUSE: 7.5...
Security update for spice-vdagent (important)
openSUSE Security Update: Security update for spice-vdagent Announcement ID: openSUSE-SU-2021:2614-1 Rating: important References: 1173749 1177780 1177781 1177782 1177783 Cross-References: CVE-2020-25650 CVE-2020-25651 CVE-2020-25652 CVE-2020-25653 CVSS scores: CVE-2020-25650 NVD : 5.5...
Security update for python (moderate)
openSUSE Security Update: Security update for python Announcement ID: openSUSE-SU-2020:1859-1 Rating: moderate References: 1177211 Cross-References: CVE-2020-26116 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for python...
Security update for apache2 (important)
openSUSE Security Update: Security update for apache2 Announcement ID: openSUSE-SU-2020:1792-1 Rating: important References: 1175070 1175071 1178074 Cross-References: CVE-2020-11993 CVE-2020-9490 Affected Products: openSUSE Leap 15.1 An update that solves two vulnerabilities and has one errata is...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:1731-1 Rating: important References: 1177936 Cross-References: CVE-2020-15999 CVE-2020-16000 CVE-2020-16001 CVE-2020-16002 CVE-2020-16003 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes ...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2020:1698-1 Rating: important References: 1065600 1065729 1155798 1165692 1168468 1171675 1171688 1174003 1174098 1175599 1175621 1175718 1175807 1176019 1176381 1176400 1176588 1176907 1176979 1177090...
Security update for chromium, re2 (important)
openSUSE Security Update: Security update for chromium, re2 Announcement ID: openSUSE-SU-2020:0233-1 Rating: important References: 1162833 Cross-References: CVE-2019-18197 CVE-2019-19880 CVE-2019-19923 CVE-2019-19925 CVE-2019-19926 CVE-2020-6381 CVE-2020-6382 CVE-2020-6385 CVE-2020-6387...
Security update for systemd (important)
openSUSE Security Update: Security update for systemd Announcement ID: openSUSE-SU-2020:0208-1 Rating: important References: 1084671 1092920 1106383 1133495 1151377 1154256 1155207 1155574 1156213 1156482 1158485 1159814 1161436 1162108 Cross-References: CVE-2019-20386 CVE-2020-1712 Affected...
Security update for slurm (important)
openSUSE Security Update: Security update for slurm Announcement ID: openSUSE-SU-2020:0085-1 Rating: important References: 1140709 1153095 1153259 1155784 1158696 1159692 Cross-References: CVE-2019-12838 CVE-2019-19727 CVE-2019-19728 Affected Products: openSUSE Leap 15.1 An update that solves thr...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:0009-1 Rating: important References: 1160337 Cross-References: CVE-2019-5844 CVE-2019-5845 CVE-2019-5846 CVE-2020-6377 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes four vulnerabilitie...
Security update for libjpeg-turbo (important)
openSUSE Security Update: Security update for libjpeg-turbo Announcement ID: openSUSE-SU-2019:2529-1 Rating: important References: 1156402 Cross-References: CVE-2019-2201 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...
Security update for ImageMagick (moderate)
openSUSE Security Update: Security update for ImageMagick Announcement ID: openSUSE-SU-2019:2519-1 Rating: moderate References: 1146065 1146068 1146211 1146212 1146213 1151781 1151782 1151783 1151784 1151785 1151786 Cross-References: CVE-2019-14980 CVE-2019-14981 CVE-2019-15139 CVE-2019-15140...
Security update for openconnect (moderate)
openSUSE Security Update: Security update for openconnect Announcement ID: openSUSE-SU-2019:2385-1 Rating: moderate References: 1151178 Cross-References: CVE-2019-16239 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...
Security update for dovecot23 (important)
openSUSE Security Update: Security update for dovecot23 Announcement ID: openSUSE-SU-2019:2281-1 Rating: important References: 1133624 1133625 1145559 Cross-References: CVE-2019-11494 CVE-2019-11499 CVE-2019-11500 Affected Products: openSUSE Leap 15.1 An update that fixes three vulnerabilities is...
Security update for vlc (important)
openSUSE Security Update: Security update for vlc Announcement ID: openSUSE-SU-2019:1897-1 Rating: important References: 1118586 1138354 1138933 1141522 1142161 1143547 1143549 Cross-References: CVE-2018-19857 CVE-2019-12874 CVE-2019-13602 CVE-2019-13962 CVE-2019-5439 CVE-2019-5459 CVE-2019-5460...
Security update for tryton (moderate)
This update for tryton to version 4.2.19 fixes the following issues: Security issue fixed: - CVE-2018-19443: Fixed an information leakage by attemping to initiate an unencrypted connection, which would fail eventually, but might leak session information of the user boo1117105 This update also...
Security update for pdns-recursor (moderate)
This update for pdns-recursor fixes the following issues: Security issues fixed: - CVE-2018-10851: Fixed denial of service via crafted zone record or crafted answer bsc1114157. - CVE-2018-14644: Fixed denial of service via crafted query for meta-types bsc1114170. - CVE-2018-14626: Fixed packet...
Security update for postgresql10 (moderate)
This update for postgresql10 fixes the following issues: Security issue fixed: - CVE-2018-16850: Fixed improper quoting of transition table names when pgdump emits CREATE TRIGGER could have caused privilege escalation bsc1114837. Non-security issues fixed: - Update to release 10.6:...