7849 matches found
Security update for unzip (moderate)
This update for unzip fixes the following security issues: - CVE-2014-9913: Specially crafted zip files could trigger invalid memory writes possibly resulting in DoS or corruption bsc1013993 - CVE-2015-7696: Specially crafted zip files with password protection could trigger a crash and lead to...
Security update for openssl-1_0_0 (moderate)
This update for openssl-100 to 1.0.2p fixes the following issues: These security issues were fixed: - Prevent One&Done side-channel attack on RSA that allowed physically near attackers to use EM emanations to recover information bsc1104789 - CVE-2018-0737: The RSA Key generation algorithm has bee...
Security update for apache-pdfbox (moderate)
This update for apache-pdfbox fixes the following issues: Security issue fixed: - CVE-2018-8036: Fix infinite loop while parsing files that leads to an out of memory issue bsc1099721. This update was imported from the SUSE:SLE-15:Update update project...
Security update for GraphicsMagick (low)
This update for GraphicsMagick fixes the following issues: The following security issue was fixed: - CVE-2018-14435: Fixed a memory leak in DecodeImage in coders/pcd.c boo1102007...
Security update for curl (moderate)
This update for curl fixes the following issues: Security issue fixed: - CVE-2018-0500: Fix a SMTP send heap buffer overflow bsc1099793. This update was imported from the SUSE:SLE-15:Update update project...
Security update for samba (important)
This update for samba fixes the following issues: The following security vulnerability was fixed: - CVE-2018-10858: Fixed insufficient input validation on client directory listing in libsmbclient; bsc1103411; The following other change was made: - s3: winbind: Fix 'winbind normalize names' in...
Security update for java-1_7_0-openjdk (important)
This update for java-170-openjdk to version 7u181 fixes the following issues: + S8162488: JDK should be updated to use LittleCMS 2.8 + S8180881: Better packaging of deserialization + S8182362: Update CipherOutputStream Usage + S8183032: Upgrade to LittleCMS 2.9 + S8189123: More consistent...
Security update for the Linux Kernel (important)
The openSUSE Leap 42.2 kernel was updated to 4.4.104 to receive various security and bugfixes. This update adds mitigations for various side channel attacks against modern CPUs that could disclose content of otherwise unreadable memory bnc1068032. - CVE-2017-5753 / "SpectreAttack": Local attacker...
Security update for samba and resource-agents (important)
This update provides Samba 4.6.7, which fixes the following issues: - CVE-2017-11103: Metadata were being taken from the unauthenticated plaintext the Ticket rather than the authenticated and encrypted KDC response. bsc1048278 - Fix cephwrapchdir. bsc1048790 - Fix ctdb logs to /var/log/log.ctdb...
Security update for subversion (important)
This update for subversion to 1.9.7 fixes security issues and bugs. The following vulnerabilities were fixed: - CVE-2017-9800: A remote attacker could have caused svn clients to execute arbitrary code via specially crafted URLs in svn:externals and svn:sync-from-url properties. boo1051362 -...
Security update for rubygem-puppet (important)
This update for rubygem-puppet fixes the following issues: - CVE-2017-2295: A remote attacker could have forced unsafe YAML deserialization which could have led to code execution bsc1040151...
Security update for log4j (important)
openSUSE Security Update: Security update for log4j Announcement ID: openSUSE-SU-2021:1577-1 Rating: important References: 1193611 Cross-References: CVE-2021-44228 CVSS scores: CVE-2021-44228 SUSE: 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.2 An update th...
Security update for java-11-openjdk (important)
openSUSE Security Update: Security update for java-11-openjdk Announcement ID: openSUSE-SU-2021:3671-1 Rating: important References: 1191901 1191903 1191904 1191906 1191909 1191910 1191911 1191912 1191913 1191914 Cross-References: CVE-2021-35550 CVE-2021-35556 CVE-2021-35559 CVE-2021-35561...
Security update for xen (important)
openSUSE Security Update: Security update for xen Announcement ID: openSUSE-SU-2021:2923-1 Rating: important References: 1027519 1176189 1179246 1183243 1183877 1185682 1186428 1186429 1186433 1186434 1187406 1188050 1189373 1189376 1189378 1189380 1189381 1189882 Cross-References: CVE-2021-0089...
Security update for dovecot23 (moderate)
openSUSE Security Update: Security update for dovecot23 Announcement ID: openSUSE-SU-2021:2892-1 Rating: moderate References: 1187418 1187419 1187420 SLE-19970 Cross-References: CVE-2020-28200 CVE-2021-29157 CVSS scores: CVE-2020-28200 NVD : 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L...
Security update for MozillaThunderbird and mozilla-nspr (important)
openSUSE Security Update: Security update for MozillaThunderbird and mozilla-nspr Announcement ID: openSUSE-SU-2020:1780-1 Rating: important References: 1174230 1176384 1176756 1176899 1177977 Cross-References: CVE-2020-15673 CVE-2020-15676 CVE-2020-15677 CVE-2020-15678 CVE-2020-15683...
Security update for MozillaFirefox (important)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2020:1732-1 Rating: important References: 1176756 1177872 Cross-References: CVE-2020-15683 CVE-2020-15969 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available...
Security update for hylafax+ (moderate)
openSUSE Security Update: Security update for hylafax+ Announcement ID: openSUSE-SU-2020:1209-1 Rating: moderate References: 1173519 1173521 Cross-References: CVE-2020-15396 CVE-2020-15397 Affected Products: openSUSE Leap 15.2 An update that fixes two vulnerabilities is now available. Description...
Security update for SUSE Manager Client Tools (moderate)
openSUSE Security Update: Security update for SUSE Manager Client Tools Announcement ID: openSUSE-SU-2020:1105-1 Rating: moderate References: 1113160 1138822 1142038 1148177 1153090 1153277 1154940 1154968 1155372 1163871 1165921 1168310 1170231 1170557 1170824 1171687 1172462 Cross-References:...
Security update for opera (moderate)
openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2019:2154-1 Rating: moderate References: Affected Products: openSUSE Leap 15.2:NonFree An update that contains security fixes can now be installed. Description: This update for opera fixes the following issues: Opera...
Security update for webkit2gtk3 (important)
openSUSE Security Update: Security update for webkit2gtk3 Announcement ID: openSUSE-SU-2020:0602-1 Rating: important References: 1165528 1169658 Cross-References: CVE-2020-10018 CVE-2020-11793 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available...
Security update for MozillaThunderbird (important)
openSUSE Security Update: Security update for MozillaThunderbird Announcement ID: openSUSE-SU-2020:0520-1 Rating: important References: 1168630 1168874 Cross-References: CVE-2020-6819 CVE-2020-6820 CVE-2020-6821 CVE-2020-6822 CVE-2020-6825 Affected Products: openSUSE Leap 15.1 An update that fixe...
Security update for squid (moderate)
openSUSE Security Update: Security update for squid Announcement ID: openSUSE-SU-2020:0307-1 Rating: moderate References: 1162687 1162689 1162691 Cross-References: CVE-2019-12528 CVE-2020-8449 CVE-2020-8450 CVE-2020-8517 Affected Products: openSUSE Leap 15.1 An update that fixes four...
Security update for virglrenderer (important)
openSUSE Security Update: Security update for virglrenderer Announcement ID: openSUSE-SU-2020:0058-1 Rating: important References: 1159478 1159479 1159482 1159486 Cross-References: CVE-2019-18388 CVE-2019-18389 CVE-2019-18390 CVE-2019-18391 Affected Products: openSUSE Leap 15.1 An update that fix...
Security update for calamares (moderate)
openSUSE Security Update: Security update for calamares Announcement ID: openSUSE-SU-2019:2655-1 Rating: moderate References: 1140256 1152377 Cross-References: CVE-2019-13178 Affected Products: openSUSE Backports SLE-15-SP1 An update that solves one vulnerability and has one errata is now...
Security update for ImageMagick (moderate)
openSUSE Security Update: Security update for ImageMagick Announcement ID: openSUSE-SU-2019:2515-1 Rating: moderate References: 1146065 1146068 1146211 1146212 1146213 1151781 1151782 1151783 1151784 1151785 1151786 Cross-References: CVE-2019-14980 CVE-2019-14981 CVE-2019-15139 CVE-2019-15140...
Security update for kauth (moderate)
openSUSE Security Update: Security update for kauth Announcement ID: openSUSE-SU-2019:1051-1 Rating: moderate References: 1124863 Cross-References: CVE-2019-7443 Affected Products: openSUSE Backports SLE-15 An update that fixes one vulnerability is now available. Description: This update for kaut...
Security update for rpm (moderate)
This update for rpm fixes the following issues: This security vulnerability was fixed: - CVE-2017-7500: Fixed symlink attacks during RPM installation bsc943457 This update was imported from the SUSE:SLE-15:Update update project...
Security update for libgcrypt (moderate)
This update for libgcrypt fixes the following issues: The following security vulnerability was addressed: - CVE-2018-0495: Mitigate a novel side-channel attack by enabling blinding for ECDSA signatures bsc1097410. The following other issues were fixed: - Extended the fipsdrv dsa-sign and dsa-veri...
Security update for SDL2, SDL2_image (important)
This update for SDL2 and SDL2image fixes the following issues: - CVE-2017-14441: Code execution in the ICO image rendering bsc1084282. - CVE-2017-14440: Potential code execution in the ILBM image rendering functionality bsc1084257. - CVE-2017-12122: Potential code execution in the ILBM image...
Security update for p7zip (important)
This update for p7zip fixes the following security issues: - CVE-2016-1372: Fixed multiple vulnerabilities when processing crafted 7z files bsc984650 - CVE-2017-17969: Fixed a heap-based buffer overflow in a shrink decoder bsc1077725 - CVE-2018-5996: Fixed memory corruption in RAR decompression...
Security update for quagga (important)
This update for quagga fixes the following issues: - CVE-2017-16227: Fixed bgpd DoS via specially crafted BGP UPDATE messages boo1065641 - CVE-2018-5378: Fixed bgpd bounds check issue via attribute length Quagga-2018-0543,boo1079798 - CVE-2018-5379: Fixed bgpd double free when processing UPDATE...
Security update for java-1_8_0-openjdk (important)
This update for java-180-openjdk fixes the following issues: Oracle Critical Patch Update of January 2017 bsc1020905 Upgrade to version jdk8u121 icedtea 3.3.0: - S8138725: Add options for Javadoc generation - S8140353: Improve signature checking - S8151934, CVE-2017-3231: Resolve class resolution...
Security update for the Linux Kernel (important)
The openSUSE 13.1 kernel was updated to fix bugs and security issues. The following security bugs were fixed: - CVE-2016-8666: The IP stack in the Linux kernel allowed remote attackers to cause a denial of service stack consumption and panic or possibly have unspecified other impact by triggering...
Security update for virtualbox (important)
openSUSE Security Update: Security update for virtualbox Announcement ID: openSUSE-SU-2021:1114-1 Rating: important References: 1188045 1188105 1188535 1188536 1188537 1188538 Cross-References: CVE-2021-2409 CVE-2021-2442 CVE-2021-2443 CVE-2021-2454 CVSS scores: CVE-2021-2409 NVD : 8.2...
Security update for apache-commons-compress (important)
openSUSE Security Update: Security update for apache-commons-compress Announcement ID: openSUSE-SU-2021:2612-1 Rating: important References: 1188463 1188464 1188465 1188466 Cross-References: CVE-2021-35515 CVE-2021-35516 CVE-2021-35517 CVE-2021-36090 CVSS scores: CVE-2021-35515 NVD : 7.5...
Security update for wireshark (moderate)
openSUSE Security Update: Security update for wireshark Announcement ID: openSUSE-SU-2021:2457-1 Rating: moderate References: 1186790 Affected Products: openSUSE Leap 15.3 An update that contains security fixes can now be installed. Description: This update for wireshark fixes the following issue...
Security update for bluez (moderate)
openSUSE Security Update: Security update for bluez Announcement ID: openSUSE-SU-2021:2459-1 Rating: moderate References: 1187165 Cross-References: CVE-2021-3588 CVSS scores: CVE-2021-3588 NVD : 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N CVE-2021-3588 SUSE: 3.3...
Security update for glibc (important)
openSUSE Security Update: Security update for glibc Announcement ID: openSUSE-SU-2021:0358-1 Rating: important References: 1178386 1179694 1179721 1180038 1181505 1182117 Cross-References: CVE-2019-25013 CVE-2020-27618 CVE-2020-29562 CVE-2020-29573 CVE-2021-3326 CVSS scores: CVE-2019-25013 NVD :...
Security update for u-boot (important)
openSUSE Security Update: Security update for u-boot Announcement ID: openSUSE-SU-2020:1869-1 Rating: important References: 1162198 1167209 Cross-References: CVE-2020-10648 CVE-2020-8432 Affected Products: openSUSE Leap 15.2 An update that fixes two vulnerabilities is now available. Description:...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:1737-1 Rating: important References: 1177936 Cross-References: CVE-2020-15999 CVE-2020-16000 CVE-2020-16001 CVE-2020-16002 CVE-2020-16003 Affected Products: openSUSE Leap 15.2 An update that fixes 5...
Security update for webkit2gtk3 (important)
openSUSE Security Update: Security update for webkit2gtk3 Announcement ID: openSUSE-SU-2020:1275-1 Rating: important References: 1174662 Cross-References: CVE-2020-9862 CVE-2020-9893 CVE-2020-9894 CVE-2020-9895 CVE-2020-9915 CVE-2020-9925 Affected Products: openSUSE Leap 15.2 An update that fixes...
Security update for webkit2gtk3 (important)
openSUSE Security Update: Security update for webkit2gtk3 Announcement ID: openSUSE-SU-2020:1256-1 Rating: important References: 1174662 Cross-References: CVE-2020-9862 CVE-2020-9893 CVE-2020-9894 CVE-2020-9895 CVE-2020-9915 CVE-2020-9925 Affected Products: openSUSE Leap 15.1 An update that fixes...
Security update for rust, rust-cbindgen (moderate)
openSUSE Security Update: Security update for rust, rust-cbindgen Announcement ID: openSUSE-SU-2020:0945-1 Rating: moderate References: 1115645 1154817 1173202 Cross-References: CVE-2020-1967 Affected Products: openSUSE Leap 15.2 An update that solves one vulnerability and has two fixes is now...
Security update for java-1_8_0-openj9 (important)
openSUSE Security Update: Security update for java-180-openj9 Announcement ID: openSUSE-SU-2020:0841-1 Rating: important References: 1169511 1171352 Cross-References: CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2773 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805...
Security update for nextcloud (moderate)
openSUSE Security Update: Security update for nextcloud Announcement ID: openSUSE-SU-2020:0668-1 Rating: moderate References: 1171572 1171579 Cross-References: CVE-2020-8154 CVE-2020-8155 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes two vulnerabilities is now available...
Security update for GraphicsMagick (moderate)
openSUSE Security Update: Security update for GraphicsMagick Announcement ID: openSUSE-SU-2020:0429-1 Rating: moderate References: 1167208 1167623 Cross-References: CVE-2019-12921 CVE-2020-10938 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes two vulnerabilities is now...
Security update for skopeo (moderate)
openSUSE Security Update: Security update for skopeo Announcement ID: openSUSE-SU-2020:0377-1 Rating: moderate References: 1159530 1165715 Cross-References: CVE-2019-10214 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available.Description...
Security update for MozillaFirefox (important)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2020:0060-1 Rating: important References: 1160305 1160498 Cross-References: CVE-2019-17015 CVE-2019-17016 CVE-2019-17017 CVE-2019-17021 CVE-2019-17022 CVE-2019-17024 CVE-2019-17026 Affected Products: openSUS...
Security update for MozillaThunderbird (important)
openSUSE Security Update: Security update for MozillaThunderbird Announcement ID: openSUSE-SU-2020:0003-1 Rating: important References: Affected Products: openSUSE Leap 15.1 An update that contains security fixes can now be installed. Description: This update for MozillaThunderbird fixes the...