7581 matches found
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:0512-1 Rating: important References: 1167465 1168421 Cross-References: CVE-2020-6450 CVE-2020-6451 CVE-2020-6452 Affected Products: SUSE Package Hub for SUSE Linux Enterprise 12 An update that fixes three...
Security update for clamav (important)
openSUSE Security Update: Security update for clamav Announcement ID: openSUSE-SU-2019:2668-1 Rating: important References: 1157763 Cross-References: CVE-2019-15961 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for clamav...
Security update for rubygem-activejob-5_1 (low)
This update for rubygem-activejob-51 fixes the following issues: Security issue fixed: - CVE-2018-16476: Fixed broken access control vulnerability bsc1117632. This update was imported from the SUSE:SLE-15:Update update project...
Security update for spice-gtk (important)
This update for spice-gtk fixes the following issues: Security issues fixed: - CVE-2018-10873: Fix potential heap corruption when demarshalling bsc1104448 - CVE-2018-10893: Avoid buffer overflow on image lz checks bsc1101295 Other bugs fixed: - Add setuid bit to spice-client-glib-usb-acl-helper...
Security update for libofx (important)
This update for libofx fixes the following issues: The following security vulnerabilities have been addressed: - CVE-2017-2920: Fixed an exploitable buffer overflow in the tag parsing functionality, which could result in an out of bounds write and could be triggered via a specially crafted OFX fi...
Security update for git-annex (moderate)
This update for git-annex to version 6.20180626 fixes the following issues: - CVE-2018-10857: Prevent file content disclosure by refusing to download content that cannot be verified with a hash, from encrypted special remotes and glacier bsc1098062. - CVE-2018-10859: Prevent local gpg encrypted...
Security update for redis (important)
This update for redis to 4.0.10 fixes the following issues: These security issues were fixed: - CVE-2018-11218: Prevent heap corruption vulnerability in cmsgpack bsc1097430. - CVE-2018-11219: Prevent integer overflow in Lua scripting bsc1097768. For Leap 42.3 and openSUSE SLE 12 backports this is...
Security update for kernel modules (moderate)
This update provides rebuilt kernel modules for openSUSE Leap 42.3 with retpoline enablement to address Spectre Variant 2 CVE-2017-5715 bsc1068032...
Security update for enigmail (moderate)
This update for enigmail to version 2.0.4 fixes multiple issues. Security issues fixed: - CVE-2017-17688: CFB gadget attacks allowed to exfiltrate plaintext out of encrypted emails. enigmail now fails on GnuPG integrity check warnings for old Algorithms bsc1093151 - CVE-2017-17689: CBC gadget...
Security update for libreoffice (moderate)
This update for libreoffice to 6.0.4.2 fixes lots of bugs and also the following issues: Security issues fixed: - CVE-2018-10120: The SwCTBWrapper::Read function in sw/source/filter/ww8/ww8toolbar.cxx did not validate a customizations index, which allowed remote attackers to cause a denial of...
Security update for java-1_8_0-openjdk (important)
This update for java-180-openjdk fixes the following issues: Security issues fix in jdk8u161 icedtea 3.7.0bsc1076366: - CVE-2018-2579: Improve key keying case - CVE-2018-2582: Better interface invocations - CVE-2018-2588: Improve LDAP logins - CVE-2018-2599: Improve reliability of DNS lookups -...
Security update for chromium (important)
This update for chromium to version 64.0.3282.167 fixes the following issue: CVE-2018-6056: Incorrect derived class instantiation in V8 bsc1080920...
Security update for ucode-intel (important)
This update for ucode-intel fixes the following issues: Update to Intel CPU Microcode version 20180108 boo1075262 - The pre-released microcode fixing some important security issues is now officially published and included in the added tarball. New firmware updates since last version 20170707 are...
Security update for the Linux Kernel (important)
The openSUSE Leap 42.3 kernel was updated to 4.4.90 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-1000252: The KVM subsystem in the Linux kernel allowed guest OS users to cause a denial of service assertion failure, and hypervisor hang or crash via a...
Security update for openjpeg2 (important)
This update for openjpeg2 fixes the following issues: - CVE 2016-7163: Integer Overflow could lead to remote code execution bsc997857 - CVE 2015-8871: Use-after-free in opjj2kwritemco function could lead to denial of service bsc979907 This update was imported from the SUSE:SLE-12-SP2:Update updat...
Security update for libzypp, zypper (important)
The Software Update Stack was updated to receive fixes and enhancements. libzypp: Security issues fixed: - CVE-2017-7435, CVE-2017-7436, CVE-2017-9269: Fix GPG check workflows, mainly for unsigned repositories and packages. bsc1045735, bsc1038984 Bug fixes: - Re-probe on refresh if the repository...
Security update for varnish (moderate)
SUSE Security Update: Security update for varnish Announcement ID: openSUSE-SU-2022:0144-1 Rating: moderate References: 1194469 1195188 Cross-References: CVE-2021-4122 CVE-2022-23959 CVSS scores: CVE-2021-4122 SUSE: 5.9 CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N CVE-2022-23959 NVD : 9.1...
Security update for log4j12 (important)
openSUSE Security Update: Security update for log4j12 Announcement ID: openSUSE-SU-2022:0226-1 Rating: important References: 1193184 1194842 1194843 1194844 Cross-References: CVE-2022-23302 CVE-2022-23305 CVE-2022-23307 CVSS scores: CVE-2022-23302 NVD : 8.8...
Security update for log4j (moderate)
openSUSE Security Update: Security update for log4j Announcement ID: openSUSE-SU-2022:0002-1 Rating: moderate References: 1194127 Cross-References: CVE-2021-44832 CVSS scores: CVE-2021-44832 NVD : 6.6 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H CVE-2021-44832 SUSE: 6.6...
Security update for umoci (important)
openSUSE Security Update: Security update for umoci Announcement ID: openSUSE-SU-2021:1863-1 Rating: important References: 1184147 Cross-References: CVE-2021-29136 CVSS scores: CVE-2021-29136 NVD : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N CVE-2021-29136 SUSE: 7.3...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:1214-1 Rating: important References: 1174497 1175044 1175085 Cross-References: CVE-2020-6542 CVE-2020-6543 CVE-2020-6544 CVE-2020-6545 CVE-2020-6546 CVE-2020-6547 CVE-2020-6548 CVE-2020-6549 CVE-2020-6550...
Security update for slirp4netns (important)
openSUSE Security Update: Security update for slirp4netns Announcement ID: openSUSE-SU-2020:0994-1 Rating: important References: 1172380 Cross-References: CVE-2020-10756 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for...
Security update for perl (important)
openSUSE Security Update: Security update for perl Announcement ID: openSUSE-SU-2020:0850-1 Rating: important References: 1171863 1171864 1171866 1172348 Cross-References: CVE-2020-10543 CVE-2020-10878 CVE-2020-12723 Affected Products: openSUSE Leap 15.1 An update that solves three vulnerabilitie...
Security update for dovecot23 (important)
openSUSE Security Update: Security update for dovecot23 Announcement ID: openSUSE-SU-2020:0720-1 Rating: important References: 1171456 1171457 1171458 Cross-References: CVE-2020-10957 CVE-2020-10958 CVE-2020-10967 Affected Products: openSUSE Leap 15.1 An update that fixes three vulnerabilities is...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:0620-1 Rating: important References: 1171247 Cross-References: CVE-2020-6464 CVE-2020-6831 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Description: This...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:0604-1 Rating: important References: 1170107 Cross-References: CVE-2020-0561 CVE-2020-6458 CVE-2020-6459 CVE-2020-6460 CVE-2020-6462 Affected Products: openSUSE Leap 15.1 openSUSE Backports SLE-15-SP1 An upda...
Security update for teeworlds (moderate)
openSUSE Security Update: Security update for teeworlds Announcement ID: openSUSE-SU-2020:0557-1 Rating: moderate References: 1170252 1170253 Cross-References: CVE-2019-20787 CVE-2020-12066 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Descriptio...
Security update for ansible (moderate)
openSUSE Security Update: Security update for ansible Announcement ID: openSUSE-SU-2020:0523-1 Rating: moderate References: 1137479 1142542 1142690 1144453 1153452 1154231 1154232 1154830 1157968 1157969 Cross-References: CVE-2019-10206 CVE-2019-10217 CVE-2019-14846 CVE-2019-14856 CVE-2019-14858...
Security update for salt (moderate)
openSUSE Security Update: Security update for salt Announcement ID: openSUSE-SU-2020:0357-1 Rating: moderate References: 1135656 1153611 1157465 1158940 1159118 1160931 1162327 1162504 1165425 Cross-References: CVE-2019-17361 CVE-2019-18897 Affected Products: openSUSE Leap 15.1 An update that...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:0259-1 Rating: important References: 1163484 1163588 1164828 Cross-References: CVE-2020-6407 CVE-2020-6418 Affected Products: openSUSE Leap 15.1 An update that solves two vulnerabilities and has one errata is...
Security update for sudo (important)
openSUSE Security Update: Security update for sudo Announcement ID: openSUSE-SU-2020:0244-1 Rating: important References: 1162202 1162675 Cross-References: CVE-2019-18634 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available. Description...
Security update for upx (moderate)
openSUSE Security Update: Security update for upx Announcement ID: openSUSE-SU-2020:0180-1 Rating: moderate References: 1094138 1141777 1143839 1159833 1159920 Cross-References: CVE-2018-11243 CVE-2019-1010048 CVE-2019-14296 CVE-2019-20021 CVE-2019-20053 Affected Products: openSUSE Backports...
Security update for GraphicsMagick (moderate)
openSUSE Security Update: Security update for GraphicsMagick Announcement ID: openSUSE-SU-2020:0145-1 Rating: moderate References: 1159852 1160321 1160364 Cross-References: CVE-2019-19950 CVE-2019-19951 CVE-2019-19953 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes three...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:0093-1 Rating: important References: 1161252 Cross-References: CVE-2020-6378 CVE-2020-6379 CVE-2020-6380 Affected Products: openSUSE Leap 15.1 openSUSE Backports SLE-15-SP1 SUSE Package Hub for SUSE Linux...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:0004-1 Rating: important References: 1160337 Cross-References: CVE-2019-5844 CVE-2019-5845 CVE-2019-5846 CVE-2020-6377 Affected Products: openSUSE Backports SLE-15-SP1 SUSE Package Hub for SUSE Linux Enterpri...
Security update for freerdp (moderate)
openSUSE Security Update: Security update for freerdp Announcement ID: openSUSE-SU-2019:2608-1 Rating: moderate References: 1153163 1153164 Cross-References: CVE-2019-17177 CVE-2019-17178 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Description:...
Security update for go1.12 (moderate)
openSUSE Security Update: Security update for go1.12 Announcement ID: openSUSE-SU-2019:2521-1 Rating: moderate References: 1141689 1152082 1154402 Cross-References: CVE-2019-16276 CVE-2019-17596 Affected Products: openSUSE Leap 15.0 An update that solves two vulnerabilities and has one errata is...
Security update for aubio (moderate)
This update for aubio fixes the following issues: - CVE-2018-14522: Fixed a crash in aubiopitchsetunit bsc1102359 - CVE-2018-14523: Fixed a buffer overrread resulting in crash or information leakage in newaubiopitchyinfft bsc1102364 This update was imported from the openSUSE:Leap:15.0:Update upda...
Security update for spice (important)
This update for spice fixes the following issues: Security issues fixed: - CVE-2018-10873: Fix potential heap corruption when demarshalling bsc1104448 - CVE-2018-10893: Avoid buffer overflow on image lz checks bsc1101295 This update was imported from the SUSE:SLE-12-SP3:Update update project...
Security update for phpMyAdmin (moderate)
This update for phpMyAdmin to version 4.8.3 addresses multiple issues. Security issues fixed: - CVE-2018-15605: vulnerability in the file import feature allowed cross-site scripting via importing a specially-crafted file PMASA-2018-5, boo1105726 This update also contains a number of upstream bug...
Security update for postgresql96 (moderate)
PostgreSQL was updated to 9.6.9 fixing bugs and security issues: Release notes: - https://www.postgresql.org/about/news/1851/ - https://www.postgresql.org/docs/current/static/release-9-6-9.html A dump/restore is not required for those running 9.6.X. However, if you use the adminpack extension, yo...
Security update for chromium (important)
This update for chromium to version 64.0.3282.167 fixes the following issue: CVE-2018-6056: Incorrect derived class instantiation in V8 bsc1080920...
Security update for libzypp, zypper (important)
The Software Update Stack was updated to receive fixes and enhancements. libzypp: - Adapt to work with GnuPG 2.1.23. bsc1054088 - Support signing with subkeys. bsc1008325 - Enhance sort order for media.1/products. bsc1054671 zypper: - Also show a gpg key's subkeys. bsc1008325 - Improve signature...
Security update for freeradius-server (important)
This update for freeradius-server fixes the following issues: - update to 3.0.15 bsc1049086 Bind the lifetime of program name and python path to the module CVE-2017-10978: FR-GV-201: Check input / output length in makesecret bsc1049086 CVE-2017-10983: FR-GV-206: Fix read overflow when decoding DH...
Security update for sudo (important)
This update for sudo fixes the following issues: CVE-2017-1000367: - Due to incorrect assumptions in /proc/pid/stat parsing, a local attacker can pretend that his tty is any file on the filesystem, thus gaining arbitrary file write access on SELinux-enabled systems. bsc1039361 - Fix FQDN for...
Security update for the Linux Kernel (important)
The openSUSE Leap 42.2 kernel was updated to 4.4.56 fix various security issues and bugs. The following security bugs were fixed: - CVE-2017-7184: The xfrmreplayverifylen function in net/xfrm/xfrmuser.c in the Linux kernel did not validate certain size data after an XFRMMSGNEWAE update, which...
Security update for java-1_8_0-openjdk (important)
This update for java-180-openjdk fixes the following issues: Oracle Critical Patch Update of January 2017 bsc1020905 Upgrade to version jdk8u121 icedtea 3.3.0: - S8138725: Add options for Javadoc generation - S8140353: Improve signature checking - S8151934, CVE-2017-3231: Resolve class resolution...
Security update for qemu (important)
qemu was updated to fix 29 security issues. These security issues were fixed: - CVE-2016-4439: Avoid OOB access in 53C9X emulation bsc980711 - CVE-2016-4441: Avoid OOB access in 53C9X emulation bsc980723 - CVE-2016-4952: Avoid OOB access in Vmware PV SCSI emulation bsc981266 - CVE-2015-8817: Avoi...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2022:1039-1 Rating: important References: 1176447 1176774 1178134 1179439 1181147 1191428 1192273 1193731 1193787 1193864 1194463 1194516 1194943 1195051 1195211 1195254 1195353 1195403 1195612 1195897...
Security update for python-lxml (important)
openSUSE Security Update: Security update for python-lxml Announcement ID: openSUSE-SU-2022:0803-1 Rating: important References: 1118088 1179534 1184177 1193752 Cross-References: CVE-2018-19787 CVE-2020-27783 CVE-2021-28957 CVE-2021-43818 CVSS scores: CVE-2018-19787 NVD : 6.1...