7849 matches found
Security update for libssh (moderate)
openSUSE Security Update: Security update for libssh Announcement ID: openSUSE-SU-2020:0510-1 Rating: moderate References: 1168699 Cross-References: CVE-2020-1730 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for libssh fix...
Security update for GraphicsMagick (moderate)
openSUSE Security Update: Security update for GraphicsMagick Announcement ID: openSUSE-SU-2020:0416-1 Rating: moderate References: 1167208 1167623 Cross-References: CVE-2019-12921 CVE-2020-10938 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available...
Security update for sudo (important)
openSUSE Security Update: Security update for sudo Announcement ID: openSUSE-SU-2020:0244-1 Rating: important References: 1162202 1162675 Cross-References: CVE-2019-18634 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available. Description...
Security update for libqt5-qtbase (important)
openSUSE Security Update: Security update for libqt5-qtbase Announcement ID: openSUSE-SU-2020:0209-1 Rating: important References: 1158667 1161167 Cross-References: CVE-2020-0569 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available...
Security update for ImageMagick (moderate)
openSUSE Security Update: Security update for ImageMagick Announcement ID: openSUSE-SU-2020:0170-1 Rating: moderate References: 1159861 1160369 1161194 Cross-References: CVE-2019-19948 CVE-2019-19949 Affected Products: openSUSE Leap 15.1 An update that solves two vulnerabilities and has one errat...
Security update for qbittorrent (moderate)
openSUSE Security Update: Security update for qbittorrent Announcement ID: openSUSE-SU-2019:2024-1 Rating: moderate References: 1141967 Cross-References: CVE-2019-13640 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This upda...
Security update for rubygem-activejob-5_1 (low)
This update for rubygem-activejob-51 fixes the following issues: Security issue fixed: - CVE-2018-16476: Fixed broken access control vulnerability bsc1117632. This update was imported from the SUSE:SLE-15:Update update project...
Security update for spice-gtk (important)
This update for spice-gtk fixes the following issues: Security issues fixed: - CVE-2018-10873: Fix potential heap corruption when demarshalling bsc1104448 - CVE-2018-10893: Avoid buffer overflow on image lz checks bsc1101295 Other bugs fixed: - Add setuid bit to spice-client-glib-usb-acl-helper...
Security update for phpMyAdmin (moderate)
This update for phpMyAdmin to version 4.8.3 addresses multiple issues. Security issues fixed: - CVE-2018-15605: vulnerability in the file import feature allowed cross-site scripting via importing a specially-crafted file PMASA-2018-5, boo1105726 This update also contains a number of upstream bug...
Security update for libsndfile (moderate)
This update for libsndfile fixes the following issues: Security issues fixed: - CVE-2018-13139: Fix a stack-based buffer overflow in psfmemset in common.c that allows remote attackers to cause a denial of service bsc1100167. - CVE-2017-17456: Prevent segmentation fault in the function d2alawarray...
Security update for redis (important)
This update for redis to 4.0.10 fixes the following issues: These security issues were fixed: - CVE-2018-11218: Prevent heap corruption vulnerability in cmsgpack bsc1097430. - CVE-2018-11219: Prevent integer overflow in Lua scripting bsc1097768. For Leap 42.3 and openSUSE SLE 12 backports this is...
Security update for libreoffice (moderate)
This update for libreoffice to 6.0.4.2 fixes lots of bugs and also the following issues: Security issues fixed: - CVE-2018-10120: The SwCTBWrapper::Read function in sw/source/filter/ww8/ww8toolbar.cxx did not validate a customizations index, which allowed remote attackers to cause a denial of...
Security update for chromium (important)
This update for chromium to version 64.0.3282.167 fixes the following issue: CVE-2018-6056: Incorrect derived class instantiation in V8 bsc1080920...
Security update for ucode-intel (important)
This update for ucode-intel fixes the following issues: Update to Intel CPU Microcode version 20180108 boo1075262 - The pre-released microcode fixing some important security issues is now officially published and included in the added tarball. New firmware updates since last version 20170707 are...
Security update for ImageMagick (important)
This update for ImageMagick fixes the following issues: Security issues fixed: - CVE-2017-9439: A memory leak was found in the function ReadPDBImage incoders/pdb.c bsc1042826 - CVE-2017-9440: A memory leak was found in the function ReadPSDChannelin coders/psd.c bsc1042812 - CVE-2017-9501: An...
Security update for libzypp, zypper (important)
The Software Update Stack was updated to receive fixes and enhancements. libzypp: Security issues fixed: - CVE-2017-7435, CVE-2017-7436, CVE-2017-9269: Fix GPG check workflows, mainly for unsigned repositories and packages. bsc1045735, bsc1038984 Bug fixes: - Re-probe on refresh if the repository...
Security update for java-1_7_0-openjdk (important)
This update for java-170-openjdk fixes the following issues: - Update to 2.6.7 - OpenJDK 7u111 Security fixes - S8079718, CVE-2016-3458: IIOP Input Stream Hooking bsc989732 - S8145446, CVE-2016-3485: Perfect pipe placement Windows only bsc989734 - S8147771: Construction of static protection domai...
Security update for php5 (important)
This update for php5 fixes the following issues: - CVE-2013-7456: imagescale out-of-bounds read bnc982009. - CVE-2016-5093: geticuvalueinternal out-of-bounds read bnc982010. - CVE-2016-5094: Don't create strings with lengths outside int range bnc982011. - CVE-2016-5095: Don't create strings with...
Security update for the Linux Kernel (important)
The openSUSE 13.1 kernel was updated to receive various security and bugfixes. Following security bugs were fixed: - CVE-2016-0728: A reference leak in keyring handling with joinsessionkeyring could lead to local attackers gain root privileges. bsc962075. - CVE-2015-7550: A local user could have...
Security update for python-lxml (important)
openSUSE Security Update: Security update for python-lxml Announcement ID: openSUSE-SU-2022:0803-1 Rating: important References: 1118088 1179534 1184177 1193752 Cross-References: CVE-2018-19787 CVE-2020-27783 CVE-2021-28957 CVE-2021-43818 CVSS scores: CVE-2018-19787 NVD : 6.1...
Security update for opera (important)
openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2022:0047-1 Rating: important References: Cross-References: CVE-2021-37980 CVE-2021-37997 CVE-2021-37998 CVE-2021-37999 CVE-2021-38001 CVE-2021-38002 CVE-2021-38003 CVE-2021-38004 CVE-2021-38005 CVE-2021-38006...
Security update for ssh-audit (moderate)
openSUSE Security Update: Security update for ssh-audit Announcement ID: openSUSE-SU-2021:1383-1 Rating: moderate References: Cross-References: CVE-2018-15473 CVSS scores: CVE-2018-15473 NVD : 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2018-15473 SUSE: 5.8...
Security update for dovecot23 (moderate)
openSUSE Security Update: Security update for dovecot23 Announcement ID: openSUSE-SU-2021:1225-1 Rating: moderate References: 1187418 1187419 1187420 SLE-19970 Cross-References: CVE-2020-28200 CVE-2021-29157 CVSS scores: CVE-2020-28200 NVD : 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L...
Security update for rpm (important)
openSUSE Security Update: Security update for rpm Announcement ID: openSUSE-SU-2021:2682-1 Rating: important References: 1179416 1181805 1183543 1183545 ECO-3622 SLE-17817 Cross-References: CVE-2021-20266 CVE-2021-20271 CVE-2021-3421 CVSS scores: CVE-2021-20266 NVD : 4.9...
Security update for virtualbox (important)
openSUSE Security Update: Security update for virtualbox Announcement ID: openSUSE-SU-2021:1092-1 Rating: important References: 1188045 1188105 1188535 1188536 1188537 1188538 Cross-References: CVE-2021-2409 CVE-2021-2442 CVE-2021-2443 CVE-2021-2454 CVSS scores: CVE-2021-2409 NVD : 8.2...
Security update for openssl-1_1 (important)
openSUSE Security Update: Security update for openssl-11 Announcement ID: openSUSE-SU-2021:0476-1 Rating: important References: 1183852 Cross-References: CVE-2021-3449 CVSS scores: CVE-2021-3449 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Leap 15.2 An update...
Security update for xrdp (important)
openSUSE Security Update: Security update for xrdp Announcement ID: openSUSE-SU-2020:1200-1 Rating: important References: 1173580 Cross-References: CVE-2020-4044 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for xrdp fixes...
Security update for MozillaFirefox (important)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2020:1017-1 Rating: important References: 1166238 1173576 1173613 Cross-References: CVE-2020-12402 CVE-2020-12415 CVE-2020-12416 CVE-2020-12417 CVE-2020-12418 CVE-2020-12419 CVE-2020-12420 CVE-2020-12421...
Security update for opera (important)
openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2020:0917-1 Rating: important References: Cross-References: CVE-2020-6464 CVE-2020-6831 Affected Products: openSUSE Leap 15.2:NonFree An update that fixes two vulnerabilities is now available. Description: This updat...
Security update for perl (important)
openSUSE Security Update: Security update for perl Announcement ID: openSUSE-SU-2020:0850-1 Rating: important References: 1171863 1171864 1171866 1172348 Cross-References: CVE-2020-10543 CVE-2020-10878 CVE-2020-12723 Affected Products: openSUSE Leap 15.1 An update that solves three vulnerabilitie...
Security update for MozillaFirefox (important)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2020:0789-1 Rating: important References: 1172402 Cross-References: CVE-2020-12405 CVE-2020-12406 CVE-2020-12410 Affected Products: openSUSE Leap 15.1 An update that fixes three vulnerabilities is now...
Security update for GraphicsMagick (moderate)
openSUSE Security Update: Security update for GraphicsMagick Announcement ID: openSUSE-SU-2020:0779-1 Rating: moderate References: 1171271 Cross-References: CVE-2020-12672 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...
Security update for dovecot23 (important)
openSUSE Security Update: Security update for dovecot23 Announcement ID: openSUSE-SU-2020:0720-1 Rating: important References: 1171456 1171457 1171458 Cross-References: CVE-2020-10957 CVE-2020-10958 CVE-2020-10967 Affected Products: openSUSE Leap 15.1 An update that fixes three vulnerabilities is...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:0604-1 Rating: important References: 1170107 Cross-References: CVE-2020-0561 CVE-2020-6458 CVE-2020-6459 CVE-2020-6460 CVE-2020-6462 Affected Products: openSUSE Leap 15.1 openSUSE Backports SLE-15-SP1 An upda...
Security update for teeworlds (moderate)
openSUSE Security Update: Security update for teeworlds Announcement ID: openSUSE-SU-2020:0563-1 Rating: moderate References: 1170252 1170253 Cross-References: CVE-2019-20787 CVE-2020-12066 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes two vulnerabilities is now available...
Security update for teeworlds (moderate)
openSUSE Security Update: Security update for teeworlds Announcement ID: openSUSE-SU-2020:0557-1 Rating: moderate References: 1170252 1170253 Cross-References: CVE-2019-20787 CVE-2020-12066 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Descriptio...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:0519-1 Rating: important References: 1167465 1168421 1168911 Cross-References: CVE-2020-6423 CVE-2020-6430 CVE-2020-6431 CVE-2020-6432 CVE-2020-6433 CVE-2020-6434 CVE-2020-6435 CVE-2020-6436 CVE-2020-6437...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:0512-1 Rating: important References: 1167465 1168421 Cross-References: CVE-2020-6450 CVE-2020-6451 CVE-2020-6452 Affected Products: SUSE Package Hub for SUSE Linux Enterprise 12 An update that fixes three...
Security update for salt (moderate)
openSUSE Security Update: Security update for salt Announcement ID: openSUSE-SU-2020:0357-1 Rating: moderate References: 1135656 1153611 1157465 1158940 1159118 1160931 1162327 1162504 1165425 Cross-References: CVE-2019-17361 CVE-2019-18897 Affected Products: openSUSE Leap 15.1 An update that...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:0259-1 Rating: important References: 1163484 1163588 1164828 Cross-References: CVE-2020-6407 CVE-2020-6418 Affected Products: openSUSE Leap 15.1 An update that solves two vulnerabilities and has one errata is...
Security update for upx (moderate)
openSUSE Security Update: Security update for upx Announcement ID: openSUSE-SU-2020:0180-1 Rating: moderate References: 1094138 1141777 1143839 1159833 1159920 Cross-References: CVE-2018-11243 CVE-2019-1010048 CVE-2019-14296 CVE-2019-20021 CVE-2019-20053 Affected Products: openSUSE Backports...
Security update for MozillaFirefox (important)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2020:0002-1 Rating: important References: 1157652 1158328 Cross-References: CVE-2019-11745 CVE-2019-13722 CVE-2019-17005 CVE-2019-17008 CVE-2019-17009 CVE-2019-17010 CVE-2019-17011 CVE-2019-17012 Affected...
Security update for ghostscript (moderate)
openSUSE Security Update: Security update for ghostscript Announcement ID: openSUSE-SU-2019:2139-1 Rating: moderate References: 1144621 Cross-References: CVE-2019-10216 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...
Security update for buildah (important)
openSUSE Security Update: Security update for buildah Announcement ID: openSUSE-SU-2019:2137-1 Rating: important References: 1144065 Cross-References: CVE-2019-10214 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for buildah...
Security update for enigmail (moderate)
This update for enigmail to version 2.0.4 fixes multiple issues. Security issues fixed: - CVE-2017-17688: CFB gadget attacks allowed to exfiltrate plaintext out of encrypted emails. enigmail now fails on GnuPG integrity check warnings for old Algorithms bsc1093151 - CVE-2017-17689: CBC gadget...
Security update for enigmail (moderate)
This update for enigmail to version 2.0.4 fixes multiple issues. Security issues fixed: - CVE-2017-17688: CFB gadget attacks allowed to exfiltrate plaintext out of encrypted emails. enigmail now fails on GnuPG integrity check warnings for old Algorithms bsc1093151 - CVE-2017-17689: CBC gadget...
Security update for java-1_8_0-openjdk (important)
This update for java-180-openjdk fixes the following issues: Security issues fix in jdk8u161 icedtea 3.7.0bsc1076366: - CVE-2018-2579: Improve key keying case - CVE-2018-2582: Better interface invocations - CVE-2018-2588: Improve LDAP logins - CVE-2018-2599: Improve reliability of DNS lookups -...
Security update for qemu (important)
This update for qemu fixes the following issues: This update for qemu fixes the following issues: A mitigation for a security flaw has been applied: - CVE-2017-5715: QEMU was updated to allow passing through new MSR and CPUID flags from the host VM to the CPU, to allow enabling/disabling branch...
Security update for libzypp, zypper (important)
The Software Update Stack was updated to receive fixes and enhancements. libzypp: - Adapt to work with GnuPG 2.1.23. bsc1054088 - Support signing with subkeys. bsc1008325 - Enhance sort order for media.1/products. bsc1054671 zypper: - Also show a gpg key's subkeys. bsc1008325 - Improve signature...
Security update for the Linux Kernel (important)
The openSUSE Leap 42.2 kernel was updated to 4.4.56 fix various security issues and bugs. The following security bugs were fixed: - CVE-2017-7184: The xfrmreplayverifylen function in net/xfrm/xfrmuser.c in the Linux kernel did not validate certain size data after an XFRMMSGNEWAE update, which...