7581 matches found
Security update for the Linux Kernel (important)
The openSUSE Leap 42.2 kernel was updated to 4.4.62 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-7618: crypto/ahash.c in the Linux kernel allowed attackers to cause a denial of service API operation calling its own callback, and infinite recursion b...
Security update for php7 (important)
This update for php7 fixes the following security issues: - CVE-2016-7480: The SplObjectStorage unserialize implementation in ext/spl/splobserver.c in PHP did not verify that a key is an object, which allowed remote attackers to execute arbitrary code or cause a denial of service uninitialized...
Security update for java-1_8_0-openjdk (important)
OpenJDK Java was updated to jdk8u111 icedtea 3.2.0 to fix the following issues: Security fixes + S8146490: Direct indirect CRL checks + S8151921: Improved page resolution + S8155968: Update command line options + S8155973, CVE-2016-5542: Tighten jar checks bsc1005522 + S8156794: Extend data shari...
Security update for flash-player (important)
This security update for flash-player to 11.2.202.621 fixes the following issues boo979422: A critical vulnerability CVE-2016-4117 exists in Adobe Flash Player 21.0.0.226 and earlier versions for Windows, Macintosh, Linux, and Chrome OS. Successful exploitation could cause a crash and potentially...
Security update for openssl (important)
This update for compat-openssl098 fixes various security issues and bugs: Security issues fixed: - CVE-2016-0800 aka the "DROWN" attack bsc968046: OpenSSL was vulnerable to a cross-protocol attack that could lead to decryption of TLS sessions by using a server supporting SSLv2 and EXPORT cipher...
openssl: update to version 1.0.1h (critical)
The openssl library was updated to version 1.0.1h fixing various security issues and bugs: Security issues fixed: - CVE-2014-0224: Fix for SSL/TLS MITM flaw. An attacker using a carefully crafted handshake can force the use of weak keying material in OpenSSL SSL/TLS clients and servers. -...
Security update for opera (important)
openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2022:10087-1 Rating: important References: Cross-References: CVE-2022-2163 CVE-2022-2294 CVE-2022-2295 CVE-2022-2296 CVE-2022-2477 CVE-2022-2478 CVE-2022-2479 CVE-2022-2480 CVE-2022-2481 CVSS scores: CVE-2022-2163 NV...
Security update for python-numpy (important)
openSUSE Security Update: Security update for python-numpy Announcement ID: openSUSE-SU-2022:0134-1 Rating: important References: 1190345 1193907 1193913 Cross-References: CVE-2021-21897 CVE-2021-33430 CVE-2021-41496 CVSS scores: CVE-2021-21897 NVD : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A...
Security update for icingaweb2 (important)
openSUSE Security Update: Security update for icingaweb2 Announcement ID: openSUSE-SU-2022:0087-1 Rating: important References: 1196911 1196913 Cross-References: CVE-2022-24714 CVE-2022-24715 CVSS scores: CVE-2022-24714 NVD : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2022-24715 NVD : 8...
Security update for log4j (important)
openSUSE Security Update: Security update for log4j Announcement ID: openSUSE-SU-2021:4118-1 Rating: important References: 1193887 1193888 Cross-References: CVE-2021-45105 CVSS scores: CVE-2021-45105 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Leap 15.3 An...
Security update for python-Pygments (important)
openSUSE Security Update: Security update for python-Pygments Announcement ID: openSUSE-SU-2021:3839-1 Rating: important References: 1184812 Cross-References: CVE-2021-27291 CVSS scores: CVE-2021-27291 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-27291 SUSE: 7.5...
Security update for nodejs12 (important)
openSUSE Security Update: Security update for nodejs12 Announcement ID: openSUSE-SU-2021:1214-1 Rating: important References: 1188881 1188917 1189368 1189369 1189370 Cross-References: CVE-2021-22930 CVE-2021-22931 CVE-2021-22939 CVE-2021-22940 CVE-2021-3672 CVSS scores: CVE-2021-22930 SUSE: 9.1...
Security update for aws-cli, python-boto3, python-botocore, python-service_identity, python-trustme, python-urllib3 (moderate)
openSUSE Security Update: Security update for aws-cli, python-boto3, python-botocore, python-serviceidentity, python-trustme, python-urllib3 Announcement ID: openSUSE-SU-2021:1206-1 Rating: moderate References: 1102408 1138715 1138746 1176389 1177120 1182421 1182422 ECO-3352 PM-2485...
Security update for lasso (important)
openSUSE Security Update: Security update for lasso Announcement ID: openSUSE-SU-2021:1057-1 Rating: important References: 1186768 Cross-References: CVE-2021-28091 CVSS scores: CVE-2021-28091 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVE-2021-28091 SUSE: 8.8...
Security update for rmt-server (important)
openSUSE Security Update: Security update for rmt-server Announcement ID: openSUSE-SU-2020:2000-1 Rating: important References: 1172177 1172182 1172184 1172186 1173351 Cross-References: CVE-2019-16770 CVE-2019-5418 CVE-2019-5419 CVE-2019-5420 CVE-2020-11076 CVE-2020-11077 CVE-2020-15169...
Security update for apache-commons-httpclient (important)
openSUSE Security Update: Security update for apache-commons-httpclient Announcement ID: openSUSE-SU-2020:1873-1 Rating: important References: 1178171 945190 Cross-References: CVE-2014-3577 CVE-2015-5262 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now...
Security update for go1.14 (moderate)
openSUSE Security Update: Security update for go1.14 Announcement ID: openSUSE-SU-2020:1587-1 Rating: moderate References: 1164903 1176031 Cross-References: CVE-2020-24553 Affected Products: openSUSE Leap 15.2 An update that solves one vulnerability and has one errata is now available.Description...
Security update for squid (critical)
openSUSE Security Update: Security update for squid Announcement ID: openSUSE-SU-2020:1346-1 Rating: critical References: 1173455 1175664 1175665 1175671 Cross-References: CVE-2020-15049 CVE-2020-15810 CVE-2020-15811 CVE-2020-24606 Affected Products: openSUSE Leap 15.1 An update that fixes four...
Security update for mozilla-nss (moderate)
openSUSE Security Update: Security update for mozilla-nss Announcement ID: openSUSE-SU-2020:0955-1 Rating: moderate References: 1168669 1173032 Cross-References: CVE-2020-12402 Affected Products: openSUSE Leap 15.2 An update that solves one vulnerability and has one errata is now available...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:0322-1 Rating: important References: 1165826 Cross-References: CVE-2020-6420 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for chromiu...
Security update for rmt-server (important)
openSUSE Security Update: Security update for rmt-server Announcement ID: openSUSE-SU-2020:0235-1 Rating: important References: 1141122 1157119 1160673 1160922 Cross-References: CVE-2019-18904 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has three fixes is now...
Security update for wicked (important)
openSUSE Security Update: Security update for wicked Announcement ID: openSUSE-SU-2020:0207-1 Rating: important References: 1160904 1160906 Cross-References: CVE-2019-18903 CVE-2020-7217 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Description:...
Security update for rubygem-excon (moderate)
openSUSE Security Update: Security update for rubygem-excon Announcement ID: openSUSE-SU-2020:0139-1 Rating: moderate References: 1159342 Cross-References: CVE-2019-16779 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This...
Security update for kconfig, kdelibs4 (important)
openSUSE Security Update: Security update for kconfig, kdelibs4 Announcement ID: openSUSE-SU-2019:1898-1 Rating: important References: 1144600 Cross-References: CVE-2019-14744 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: Th...
Security update for sysstat (low)
openSUSE Security Update: Security update for sysstat Announcement ID: openSUSE-SU-2019:1176-1 Rating: low References: 1117001 1117260 Cross-References: CVE-2018-19416 CVE-2018-19517 Affected Products: openSUSE Leap 15.0 An update that fixes two vulnerabilities is now available. Description: This...
Security update for GraphicsMagick (low)
This update for GraphicsMagick fixes the following issues: - CVE-2018-16644: Added missing check for length in the functions ReadDCMImage and ReadPICTImage, which allowed remote attackers to cause a denial of service via a crafted image bsc1107609 - CVE-2018-16645: Prevent excessive memory...
Security update for seamonkey (important)
This update for seamonkey fixes the following issues: Mozilla Seamonkey was updated to 2.49.4: Now uses Gecko 52.9.1esr boo1098998. Security issues fixed with MFSA 2018-16 boo1098998: CVE-2018-12359: Buffer overflow using computed size of canvas element CVE-2018-12360: Use-after-free when using...
Security update for libcgroup (moderate)
This update for libcgroup fixes the following issues: The following security vulnerability was fixed: - CVE-2018-14348: Fixed a permission issue with /var/log/cgred. The permissions were not restrictive enough beforehand and ignored any umask setting. boo1100365...
Security update for mutt (important)
This update for mutt fixes the following issues: Security issues fixed: - bsc1101428: Mutt 1.10.1 security release update. - CVE-2018-14351: Fix imap/command.c that mishandles long IMAP status mailbox literal count size bsc1101583. - CVE-2018-14353: Fix imapquotestring in imap/util.c that has an...
Security update for php7 (moderate)
This update for php7 fixes the following issues: - CVE-2018-12882: exifreadfromimpl allowed attackers to trigger a use-after-free in exifreadfromfile because it closed a stream that it is not responsible for closing bsc1099098 This update was imported from the SUSE:SLE-12:Update update project...
Security update for the Linux Kernel (important)
The openSUSE Leap 42.3 kernel was updated to 4.4.104 to receive various security and bugfixes. This update adds mitigations for various side channel attacks against modern CPUs that could disclose content of otherwise unreadable memory bnc1068032. - CVE-2017-5753 / "SpectreAttack": Local attacker...
Security update for the Linux Kernel (important)
The openSUSE Leap 42.1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-6074: The dccprcvstateprocess function in net/dccp/input.c in the Linux kernel mishandled DCCPPKTREQUEST packet data structures in the LISTEN state, which allowed...
Security update for php5 (important)
This update for php5 fixes the following security issues: CVE-2016-6128: Invalid color index not properly handled bsc987580 CVE-2016-6161: global out of bounds read when encoding gif from malformed input withgd2togif bsc988032 CVE-2016-6292: Null pointer dereference in exifprocessusercomment...
Security update for php5 (important)
This update for php5 fixes the following security issues: - CVE-2015-8838: mysqlnd was vulnerable to BACKRONYM bnc973792. - CVE-2015-8835: SoapClient scall method suffered from a type confusion issue that could have lead to crashes bsc973351 - CVE-2016-2554: A NULL pointer dereference in...
Security update for php5 (important)
The PHP5 script interpreter was updated to fix various security issues: CVE-2015-6831: A use after free vulnerability in unserialize has been fixed which could be used to crash php or potentially execute code. bnc942291 bnc942294 bnc942295 CVE-2015-6832: A dangling pointer in the unserialization ...
Mozilla (Firefox/Thunderbird) updates to 31.8.0 (important)
Combined Mozilla update: - Update Firefox to 31.8.0 - Update Thunderbird to 31.8.0 - Update mozilla-nspr to 4.10.6 - Update mozilla-nss to 3.19.2 to fix several security issues...
update for openssl (important)
This openssl update fixes one security issue: - bnc872299: Fixed missing bounds checks for heartbeat messages CVE-2014-0160...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2022:10055-1 Rating: important References: 1201216 Cross-References: CVE-2022-2294 CVE-2022-2295 CVE-2022-2296 Affected Products: openSUSE Backports SLE-15-SP3 openSUSE Backports SLE-15-SP4 An update that fixes...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:1501-1 Rating: important References: 1094840 1133021 1152489 1169263 1170269 1188601 1190523 1190795 1191790 1191851 1191958 1191961 1191980 1192045 1192229 1192267 1192273 1192328 1192718 1192740...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:3641-1 Rating: important References: 1065729 1085030 1152472 1152489 1156395 1172073 1173604 1176447 1176774 1176914 1178134 1180100 1181147 1184673 1185762 1186063 1186109 1187167 1188563 1189841...
Security update for busybox (important)
openSUSE Security Update: Security update for busybox Announcement ID: openSUSE-SU-2021:1408-1 Rating: important References: 1099260 1099263 1121426 1184522 951562 Cross-References: CVE-2011-5325 CVE-2018-1000500 CVE-2018-1000517 CVE-2018-20679 CVE-2021-28831 CVSS scores: CVE-2011-5325 NVD : 7.5...
Security update for containerd, docker, runc (important)
openSUSE Security Update: Security update for containerd, docker, runc Announcement ID: openSUSE-SU-2021:3506-1 Rating: important References: 1102408 1185405 1187704 1188282 1190826 1191015 1191121 1191334 1191355 1191434 Cross-References: CVE-2021-30465 CVE-2021-32760 CVE-2021-41089 CVE-2021-410...
Security update for libcryptopp (moderate)
openSUSE Security Update: Security update for libcryptopp Announcement ID: openSUSE-SU-2021:3301-1 Rating: moderate References: 1015243 Cross-References: CVE-2016-9939 CVSS scores: CVE-2016-9939 NVD : 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Leap 15.3 An update...
Security update for libcroco (moderate)
openSUSE Security Update: Security update for libcroco Announcement ID: openSUSE-SU-2021:1294-1 Rating: moderate References: 1171685 Cross-References: CVE-2020-12825 CVSS scores: CVE-2020-12825 NVD : 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H CVE-2020-12825 SUSE: 2.8...
Security update for openssl-1_1 (important)
openSUSE Security Update: Security update for openssl-11 Announcement ID: openSUSE-SU-2021:1188-1 Rating: important References: 1189520 1189521 Cross-References: CVE-2021-3711 CVE-2021-3712 CVSS scores: CVE-2021-3711 SUSE: 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-3712 SUSE: 5.3...
Security update for linuxptp (important)
openSUSE Security Update: Security update for linuxptp Announcement ID: openSUSE-SU-2021:1102-1 Rating: important References: 1187646 Cross-References: CVE-2021-3570 CVSS scores: CVE-2021-3570 NVD : 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2021-3570 SUSE: 8.8...
Security update for zabbix (moderate)
openSUSE Security Update: Security update for zabbix Announcement ID: openSUSE-SU-2020:1604-1 Rating: moderate References: 1174253 Cross-References: CVE-2020-11800 CVE-2020-15803 Affected Products: openSUSE Leap 15.2 openSUSE Leap 15.1 openSUSE Backports SLE-15-SP2 openSUSE Backports SLE-15-SP1 A...
Security update for virtualbox (moderate)
openSUSE Security Update: Security update for virtualbox Announcement ID: openSUSE-SU-2020:1486-1 Rating: moderate References: 1114605 1174075 1174159 1175201 Cross-References: CVE-2020-14628 CVE-2020-14629 CVE-2020-14646 CVE-2020-14647 CVE-2020-14648 CVE-2020-14649 CVE-2020-14650 CVE-2020-14673...
Security update for curl (moderate)
openSUSE Security Update: Security update for curl Announcement ID: openSUSE-SU-2020:1345-1 Rating: moderate References: 1175109 Cross-References: CVE-2020-8231 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for curl fixes t...
Security update for go1.13 (moderate)
openSUSE Security Update: Security update for go1.13 Announcement ID: openSUSE-SU-2020:1194-1 Rating: moderate References: 1149259 1174977 Cross-References: CVE-2020-16845 Affected Products: openSUSE Leap 15.2 An update that solves one vulnerability and has one errata is now available. Descriptio...