7849 matches found
Security update for cobbler (important)
This update for cobbler fixes the following issues: Security issues fixed: - Forbid exposure of private methods in the API CVE-2018-10931, CVE-2018-1000225, bsc1104287, bsc1104189, bsc1105442 - Check access token when calling 'modifysetting' API endpoint bsc1104190, bsc1105440, CVE-2018-1000226...
Security update for the Linux Kernel (important)
The openSUSE 42.3 was updated to 4.4.140 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2018-13053: The alarmtimernsleep function had an integer overflow via a large relative timeout because ktimeaddsafe was not used bnc1099924. - CVE-2018-9385: Prevent...
Security update for Mozilla Thunderbird (moderate)
This update for Mozilla Thunderbird to version 52.9.0 fixes multiple issues. Security issues fixed, inherited from the Mozilla common code base MFSA 2018-16, bsc1098998: - CVE-2018-12359: Buffer overflow using computed size of canvas element - CVE-2018-12360: Use-after-free when using focus -...
Security update for MozillaFirefox, mozilla-nss (important)
This update for MozillaFirefox, mozilla-nss fixes the following issues: Security issue fixed in Mozilla Firefox 60.0.2 ESR: - CVE-2018-6126: Heap buffer overflow rasterizing paths in SVG with Skia MFSA 2018-14, boo1096449 The following bugs were fixed: - In KDE Open with option in download dialog...
Security update for opencv (important)
This update for opencv fixes the following issues: Security issues fixed: - CVE-2016-1516: OpenCV had a double free issue that allowed attackers to execute arbitrary code. boo1033152 - CVE-2017-14136: OpenCV had an out-of-bounds write error in the function FillColorRow1 in utils.cpp when reading ...
Security update for bind (important)
This update for bind fixes several issues. This security issue was fixed: - CVE-2017-3145: Improper sequencing during cleanup could have lead to a use-after-free error that triggered an assertion failure and crash in named bsc1076118. These non-security issues were fixed: - Updated named.root fil...
Security update for exim (important)
This update for exim fixes the following issues: Changes in exim: - specify users with ref:mail, to make them dynamic. boo1046971 - CVE-2017-1000369: Fixed memory leaks that could be exploited to "stack crash" local privilege escalation boo1044692 - Require usermail groupmail to meet new users...
Security update for java-1_8_0-openjdk (important)
openSUSE Security Update: Security update for java-180-openjdk Announcement ID: openSUSE-SU-2021:1176-1 Rating: important References: 1185056 1188564 1188565 1188566 Cross-References: CVE-2021-2161 CVE-2021-2341 CVE-2021-2369 CVE-2021-2388 CVSS scores: CVE-2021-2161 NVD : 5.9...
Security update for containerd (moderate)
openSUSE Security Update: Security update for containerd Announcement ID: openSUSE-SU-2021:1081-1 Rating: moderate References: 1188282 Cross-References: CVE-2021-32760 CVSS scores: CVE-2021-32760 SUSE: 3 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:N/A:L Affected Products: openSUSE Leap 15.2 An update...
Security update for bind (moderate)
openSUSE Security Update: Security update for bind Announcement ID: openSUSE-SU-2020:1701-1 Rating: moderate References: 1100369 1109160 1118367 1118368 1128220 1156205 1157051 1161168 1170667 1170713 1171313 1171740 1172958 1173307 1173311 1173983 1175443 1176092 1176674 906079 Cross-References:...
Security update for qemu (important)
openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2020:1664-1 Rating: important References: 1174386 1174641 1174863 1175370 1175441 1176494 Cross-References: CVE-2020-14364 CVE-2020-15863 CVE-2020-16092 CVE-2020-24352 Affected Products: openSUSE Leap 15.2 An update...
Security update for nodejs8 (moderate)
openSUSE Security Update: Security update for nodejs8 Announcement ID: openSUSE-SU-2020:1644-1 Rating: moderate References: 1172686 1173937 Cross-References: CVE-2020-15095 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available...
Security update for python (moderate)
openSUSE Security Update: Security update for python Announcement ID: openSUSE-SU-2020:1257-1 Rating: moderate References: 1174091 Cross-References: CVE-2019-20907 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for python...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:0615-1 Rating: important References: 1170107 Cross-References: CVE-2020-0561 CVE-2020-6458 CVE-2020-6459 CVE-2020-6460 CVE-2020-6462 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes 5...
Security update for MozillaFirefox (critical)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2020:0461-1 Rating: critical References: 1168630 Cross-References: CVE-2020-6819 CVE-2020-6820 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Description:...
Security update for python-mysql-connector-python (moderate)
openSUSE Security Update: Security update for python-mysql-connector-python Announcement ID: openSUSE-SU-2020:0409-1 Rating: moderate References: 1122204 Cross-References: CVE-2019-2435 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: Thi...
Security update for mcpp (moderate)
openSUSE Security Update: Security update for mcpp Announcement ID: openSUSE-SU-2020:0391-1 Rating: moderate References: 1143032 Cross-References: CVE-2019-14274 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This update for...
Security update for e2fsprogs (moderate)
openSUSE Security Update: Security update for e2fsprogs Announcement ID: openSUSE-SU-2020:0166-1 Rating: moderate References: 1160571 Cross-References: CVE-2019-5188 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for e2fspro...
Security update for slurm (important)
openSUSE Security Update: Security update for slurm Announcement ID: openSUSE-SU-2020:0085-1 Rating: important References: 1140709 1153095 1153259 1155784 1158696 1159692 Cross-References: CVE-2019-12838 CVE-2019-19727 CVE-2019-19728 Affected Products: openSUSE Leap 15.1 An update that solves thr...
Security update for ghostscript (important)
openSUSE Security Update: Security update for ghostscript Announcement ID: openSUSE-SU-2019:2535-1 Rating: important References: 1156275 Cross-References: CVE-2019-14869 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...
Security update for libjpeg-turbo (important)
openSUSE Security Update: Security update for libjpeg-turbo Announcement ID: openSUSE-SU-2019:2530-1 Rating: important References: 1156402 Cross-References: CVE-2019-2201 Affected Products: openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description: This update for...
Security update for openconnect (moderate)
openSUSE Security Update: Security update for openconnect Announcement ID: openSUSE-SU-2019:2388-1 Rating: moderate References: 1151178 Cross-References: CVE-2019-16239 Affected Products: openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description: This update for...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2019:2314-1 Rating: important References: 1146219 1153660 Cross-References: CVE-2019-13693 CVE-2019-13694 CVE-2019-13695 CVE-2019-13696 CVE-2019-13697 Affected Products: openSUSE Backports SLE-15-SP1 An update tha...
Security update for wireshark (moderate)
openSUSE Security Update: Security update for wireshark Announcement ID: openSUSE-SU-2019:1965-1 Rating: moderate References: 1141980 Cross-References: CVE-2019-13619 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description: Thi...
Security update for zstd (moderate)
openSUSE Security Update: Security update for zstd Announcement ID: openSUSE-SU-2019:1845-1 Rating: moderate References: 1082318 1133297 1142941 Cross-References: CVE-2019-11922 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has two fixes is now available...
Security update for proftpd (important)
openSUSE Security Update: Security update for proftpd Announcement ID: openSUSE-SU-2019:1836-1 Rating: important References: 1142281 Cross-References: CVE-2017-7418 CVE-2019-12815 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 openSUSE Backports SLE-15 An update that fixes two...
Security update for dovecot22 (important)
openSUSE Security Update: Security update for dovecot22 Announcement ID: openSUSE-SU-2019:1220-1 Rating: important References: 1111789 1123022 1130116 Cross-References: CVE-2019-3814 CVE-2019-7524 Affected Products: openSUSE Leap 42.3 An update that solves two vulnerabilities and has one errata i...
Security update for tryton (moderate)
This update for tryton to version 4.2.19 fixes the following issues: Security issue fixed: - CVE-2018-19443: Fixed an information leakage by attemping to initiate an unencrypted connection, which would fail eventually, but might leak session information of the user boo1117105 This update also...
Security update for apache2 (moderate)
This update for apache2 fixes the following issues: Security issues fixed: - CVE-2016-8743: Fixed liberal whitespace interpretation accepted from requests and sent in response lines and headers. Accepting these different behaviors represented a security concern when httpd participates in any chai...
Security update for jhead (moderate)
This update for jhead fixes the following security issues: - CVE-2016-3822: jhead remote attackers to execute arbitrary code or cause a denial of service out-of-bounds access via crafted EXIF data bsc1108480. - CVE-2018-16554: The ProcessGpsInfo function may have allowed a remote attacker to caus...
Security update for MozillaFirefox (important)
This update to Mozilla Firefox 60.2.0esr fixes the following issues: Security issues fixed MFSA 2018-21, boo1107343: - CVE-2018-12377: Use-after-free in refresh driver timers - CVE-2018-12378: Use-after-free in IndexedDB - CVE-2017-16541: Proxy bypass using automount and autofs boo1066489 -...
Security update for libvirt (moderate)
This update for libvirt fixes the following issues: Security issue fixed: - CVE-2018-3639: Add support for 'ssbd' and 'virt-ssbd' CPUID feature bits to address V4 Speculative Store Bypass aka "Memory Disambiguation" bsc1092885. Bug fixes: - bsc1094325: Enable virsh blockresize for XEN guests...
Security update for ovmf (moderate)
This update for ovmf provide the following fix: Security issues fixed: - CVE-2018-0739: Update openssl to 1.0.2o to limit ASN.1 constructed types recursive definition depth bsc1094290, bsc1094291. Bug fixes: - Only use SLES-UEFI-CA-Certificate-2048.crt for the SUSE flavor to provide the better...
Security update for samba (important)
This update for samba fixes the following issues: Security issues fixed: - CVE-2017-14746: Use-after-free vulnerability bsc1060427. - CVE-2017-15275: Server heap memory information leak bsc1063008. Bug fixes: - Update 'winbind expand groups' doc in smb.conf man page bsc1027593. This update was...
Security update for qemu (important)
This update for qemu fixes several issues. These security issues were fixed: - CVE-2017-15268: Qemu allowed remote attackers to cause a memory leak by triggering slow data-channel read operations, related to io/channel-websock.c bsc1062942. - CVE-2017-9524: The qemu-nbd server when built with the...
Security update for mariadb (important)
This MariaDB update to version 10.0.31 GA fixes the following issues: Security issues fixed: - CVE-2017-3308: Subcomponent: Server: DML: Easily "exploitable" vulnerability allows low privileged attacker with network access via multiple protocols to compromise MariaDB Server. Successful attacks of...
Security update for go1.15 (moderate)
openSUSE Security Update: Security update for go1.15 Announcement ID: openSUSE-SU-2021:1079-1 Rating: moderate References: 1175132 1188229 Cross-References: CVE-2021-34558 CVSS scores: CVE-2021-34558 SUSE: 5.3 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Leap 15.2 An...
Security update for crmsh (moderate)
openSUSE Security Update: Security update for crmsh Announcement ID: openSUSE-SU-2020:1688-1 Rating: moderate References: 1163581 1176569 Affected Products: openSUSE Leap 15.1 An update that contains security fixes can now be installed. Description: This update for crmsh fixes the following issue...
Security update for wireshark (moderate)
openSUSE Security Update: Security update for wireshark Announcement ID: openSUSE-SU-2020:1199-1 Rating: moderate References: 1169063 1171899 1173606 Cross-References: CVE-2020-11647 CVE-2020-13164 CVE-2020-15466 Affected Products: openSUSE Leap 15.2 An update that fixes three vulnerabilities is...
Security update for chromium (critical)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:0541-1 Rating: critical References: 1169729 Cross-References: CVE-2020-6457 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for chromium...
Security update for permissions (moderate)
openSUSE Security Update: Security update for permissions Announcement ID: openSUSE-SU-2020:0511-1 Rating: moderate References: 1168364 Affected Products: openSUSE Leap 15.1 An update that contains security fixes can now be installed. Description: This update for permissions fixes the following...
Security update for cacti, cacti-spine (important)
openSUSE Security Update: Security update for cacti, cacti-spine Announcement ID: openSUSE-SU-2020:0272-1 Rating: important References: 1082318 1101024 1101139 1122242 1122243 1122244 1122245 1122535 1158990 1158992 1161297 1163749 Cross-References: CVE-2009-4112 CVE-2018-20723 CVE-2018-20724...
Security update for chromium, re2 (important)
openSUSE Security Update: Security update for chromium, re2 Announcement ID: openSUSE-SU-2020:0233-1 Rating: important References: 1162833 Cross-References: CVE-2019-18197 CVE-2019-19880 CVE-2019-19923 CVE-2019-19925 CVE-2019-19926 CVE-2020-6381 CVE-2020-6382 CVE-2020-6385 CVE-2020-6387...
Security update for php7 (moderate)
openSUSE Security Update: Security update for php7 Announcement ID: openSUSE-SU-2020:0080-1 Rating: moderate References: 1159922 1159923 1159924 1159927 Cross-References: CVE-2019-11045 CVE-2019-11046 CVE-2019-11047 CVE-2019-11050 Affected Products: openSUSE Leap 15.1 An update that fixes four...
Security update for ImageMagick (moderate)
openSUSE Security Update: Security update for ImageMagick Announcement ID: openSUSE-SU-2019:2519-1 Rating: moderate References: 1146065 1146068 1146211 1146212 1146213 1151781 1151782 1151783 1151784 1151785 1151786 Cross-References: CVE-2019-14980 CVE-2019-14981 CVE-2019-15139 CVE-2019-15140...
Security update for libseccomp (moderate)
openSUSE Security Update: Security update for libseccomp Announcement ID: openSUSE-SU-2019:2280-1 Rating: moderate References: 1082318 1128828 1142614 Cross-References: CVE-2019-9893 Affected Products: openSUSE Leap 15.0 An update that solves one vulnerability and has two fixes is now available...
Security update for dovecot23 (important)
openSUSE Security Update: Security update for dovecot23 Announcement ID: openSUSE-SU-2019:2281-1 Rating: important References: 1133624 1133625 1145559 Cross-References: CVE-2019-11494 CVE-2019-11499 CVE-2019-11500 Affected Products: openSUSE Leap 15.1 An update that fixes three vulnerabilities is...
Security update for singularity (moderate)
openSUSE Security Update: Security update for singularity Announcement ID: openSUSE-SU-2019:2288-1 Rating: moderate References: 1125369 1128598 Cross-References: CVE-2019-11328 Affected Products: openSUSE Backports SLE-15-SP1 openSUSE Backports SLE-15 An update that solves one vulnerability and h...
Security update for djvulibre (moderate)
openSUSE Security Update: Security update for djvulibre Announcement ID: openSUSE-SU-2019:2217-1 Rating: moderate References: 1146569 1146571 1146572 1146702 Cross-References: CVE-2019-15142 CVE-2019-15143 CVE-2019-15144 CVE-2019-15145 Affected Products: openSUSE Leap 15.0 An update that fixes fo...
Security update for postgresql10 (moderate)
This update for postgresql10 fixes the following issues: Security issue fixed: - CVE-2018-16850: Fixed improper quoting of transition table names when pgdump emits CREATE TRIGGER could have caused privilege escalation bsc1114837. Non-security issues fixed: - Update to release 10.6:...