7585 matches found
Security update for LibVNCServer (important)
openSUSE Security Update: Security update for LibVNCServer Announcement ID: openSUSE-SU-2020:0624-1 Rating: important References: 1155419 1160471 1170441 Cross-References: CVE-2019-15681 CVE-2019-15690 CVE-2019-20788 Affected Products: openSUSE Leap 15.1 An update that fixes three vulnerabilities...
Security update for shadowsocks-libev (moderate)
openSUSE Security Update: Security update for shadowsocks-libev Announcement ID: openSUSE-SU-2020:0142-1 Rating: moderate References: 1158251 1158365 Cross-References: CVE-2019-5163 CVE-2019-5164 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes two vulnerabilities is now...
Security update for libredwg (moderate)
openSUSE Security Update: Security update for libredwg Announcement ID: openSUSE-SU-2020:0115-1 Rating: moderate References: 1160520 1160522 1160523 1160524 1160525 1160526 1160527 Cross-References: CVE-2020-6609 CVE-2020-6610 CVE-2020-6611 CVE-2020-6612 CVE-2020-6613 CVE-2020-6614 CVE-2020-6615...
Security update for tigervnc (important)
openSUSE Security Update: Security update for tigervnc Announcement ID: openSUSE-SU-2020:0087-1 Rating: important References: 1159856 1159858 1159860 1160250 1160251 Cross-References: CVE-2019-15691 CVE-2019-15692 CVE-2019-15693 CVE-2019-15694 CVE-2019-15695 Affected Products: openSUSE Leap 15.1 ...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2019:2544-1 Rating: important References: 1157269 Cross-References: CVE-2019-13723 CVE-2019-13724 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Description: This...
Security update for GraphicsMagick (moderate)
This update for GraphicsMagick fixes the following issues: - CVE-2018-18024: Fixed an infinite loop in the ReadBMPImage function of the coders/bmp.c file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file. bsc1111069...
Security update for seamonkey (important)
This update for seamonkey fixes the following issues: Mozilla Seamonkey was updated to 2.49.4: Now uses Gecko 52.9.1esr boo1098998. Security issues fixed with MFSA 2018-16 boo1098998: CVE-2018-12359: Buffer overflow using computed size of canvas element CVE-2018-12360: Use-after-free when using...
Security update for pango (moderate)
This update for pango fixes the following issue: Security issue fixed: - CVE-2018-15120: Fixed a denial of service when parsing emoji bsc1103877 This update was imported from the SUSE:SLE-15:Update update project...
Security update for libreoffice (moderate)
This update for libreoffice to 6.0.5.2 fixes the following issues: Security issues fixed: - CVE-2018-10583: An information disclosure vulnerability occurs during automatic processing and initiating an SMB connection embedded in a malicious file, as demonstrated by...
Security update for openvpn (moderate)
This update for openvpn fixes the following issues: - CVE-2018-9336: Fix potential double-free in Interactive Service could lead to denial of service bsc1090839. This update was imported from the SUSE:SLE-15:Update update project...
Security update for samba (important)
This update for samba fixes the following issue: - An unprivileged user with access to the samba server could cause smbd to load a specially crafted shared library, which then had the ability to execute arbitrary code on the server as 'root'. CVE-2017-7494, bso12780, bsc1038231 This update was...
Security update for tomcat (important)
This update for Tomcat provides the following fixes: Feature changes: The embedded Apache Commons DBCP component was updated to version 2.0. bsc1010893 fate321029 Security fixes: - CVE-2016-0762: Realm Timing Attack bsc1007854 - CVE-2016-5018: Security Manager Bypass bsc1007855 - CVE-2016-6794:...
Security update for MozillaThunderbird (important)
This update for MozillaThunderbird fixes some potential security issues and bugs. The following security flaws cannot be exploited through email because scripting is disabled when reading mail, but are potentially risks in browser or browser-like contexts: - CVE-2016-9079: SVG Animation Remote Co...
Security update for htmldoc (important)
openSUSE Security Update: Security update for htmldoc Announcement ID: openSUSE-SU-2022:0088-1 Rating: important References: 1192357 1194303 1194304 1194487 1195758 Cross-References: CVE-2021-40985 CVE-2021-43579 CVE-2021-45944 CVE-2021-45949 CVE-2022-0534 CVSS scores: CVE-2021-40985 NVD : 5.5...
Security update for java-1_8_0-openj9 (important)
openSUSE Security Update: Security update for java-180-openj9 Announcement ID: openSUSE-SU-2022:0870-1 Rating: important References: 1194925 1194926 1194927 1194928 1194929 1194930 1194931 1194932 1194933 1194934 1194935 1194939 1194940 1194941 Cross-References: CVE-2022-21248 CVE-2022-21277...
Security update for ansible (important)
openSUSE Security Update: Security update for ansible Announcement ID: openSUSE-SU-2022:0081-1 Rating: important References: 1099808 1112959 1118896 1126503 1137528 1157968 1157969 1164133 1164134 1164135 1164136 1164137 1164138 1164139 1164140 1165393 1166389 1167440 1167532 1167873 1171162...
Security update for envoy-proxy (important)
openSUSE Security Update: Security update for envoy-proxy Announcement ID: openSUSE-SU-2022:0065-1 Rating: important References: 1167073 1173559 1180121 Cross-References: CVE-2020-12603 CVE-2020-12604 CVE-2020-12605 CVE-2020-35471 CVE-2020-8663 CVSS scores: CVE-2020-12603 NVD : 7.5...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:3655-1 Rating: important References: 1065729 1085030 1152472 1152489 1156395 1172073 1173604 1176447 1176774 1176914 1178134 1180100 1181147 1184673 1185762 1186063 1186109 1187167 1188563 1189841...
Security update for go1.17 (moderate)
openSUSE Security Update: Security update for go1.17 Announcement ID: openSUSE-SU-2021:3488-1 Rating: moderate References: 1190649 1191468 Cross-References: CVE-2021-38297 CVSS scores: CVE-2021-38297 SUSE: 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N Affected Products: openSUSE Leap 15.3 An...
Security update for MozillaFirefox (important)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2021:3331-1 Rating: important References: 1188891 1189547 1190269 1190274 1190710 1191332 Cross-References: CVE-2021-29980 CVE-2021-29981 CVE-2021-29982 CVE-2021-29983 CVE-2021-29984 CVE-2021-29985...
Security update for python-reportlab (moderate)
openSUSE Security Update: Security update for python-reportlab Announcement ID: openSUSE-SU-2021:2641-1 Rating: moderate References: 1182503 Cross-References: CVE-2020-28463 CVSS scores: CVE-2020-28463 NVD : 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVE-2020-28463 SUSE: 5...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:1977-1 Rating: important References: 1055117 1065729 1087082 1113295 1133021 1152457 1152472 1152489 1153274 1154353 1155518 1156395 1160634 1164648 1167260 1167574 1167773 1168777 1168838 1169709...
Security update for gstreamer, gstreamer-plugins-bad, gstreamer-plugins-base, gstreamer-plugins-good, gstreamer-plugins-ugly (important)
openSUSE Security Update: Security update for gstreamer, gstreamer-plugins-bad, gstreamer-plugins-base, gstreamer-plugins-good, gstreamer-plugins-ugly Announcement ID: openSUSE-SU-2021:1819-1 Rating: important References: 1181255 SLE-13843 Cross-References: CVE-2021-3185 CVSS scores: CVE-2021-318...
Security update for nginx (important)
openSUSE Security Update: Security update for nginx Announcement ID: openSUSE-SU-2021:0835-1 Rating: important References: 1186126 Cross-References: CVE-2021-23017 CVSS scores: CVE-2021-23017 SUSE: 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.2 An update th...
Security update for clamav (moderate)
openSUSE Security Update: Security update for clamav Announcement ID: openSUSE-SU-2020:2276-1 Rating: moderate References: 1104457 1118459 1130721 1144504 1149458 1157763 Cross-References: CVE-2019-12625 CVE-2019-12900 CVE-2019-15961 CVE-2019-1785 CVE-2019-1786 CVE-2019-1787 CVE-2019-1788...
Security update for libqt4 (moderate)
openSUSE Security Update: Security update for libqt4 Announcement ID: openSUSE-SU-2020:1452-1 Rating: moderate References: 1118595 1118596 1118599 1121214 1176315 Cross-References: CVE-2018-15518 CVE-2018-19869 CVE-2018-19873 CVE-2020-17507 Affected Products: openSUSE Leap 15.1 An update that...
Security update for MozillaFirefox (moderate)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2020:1391-1 Rating: moderate References: 1173991 1174284 1175686 Cross-References: CVE-2020-15663 CVE-2020-15664 CVE-2020-15670 Affected Products: openSUSE Leap 15.2 An update that fixes three vulnerabilitie...
Security update for go1.13 (moderate)
openSUSE Security Update: Security update for go1.13 Announcement ID: openSUSE-SU-2020:1178-1 Rating: moderate References: 1149259 1174977 Cross-References: CVE-2020-16845 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available.Description...
Security update for python-ipaddress (important)
openSUSE Security Update: Security update for python-ipaddress Announcement ID: openSUSE-SU-2020:1002-1 Rating: important References: 1173274 Cross-References: CVE-2020-14422 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update fo...
Security update for Mesa (moderate)
openSUSE Security Update: Security update for Mesa Announcement ID: openSUSE-SU-2020:0084-1 Rating: moderate References: 1156015 Cross-References: CVE-2019-5068 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for Mesa fixes t...
Security update for shadowsocks-libev (moderate)
openSUSE Security Update: Security update for shadowsocks-libev Announcement ID: openSUSE-SU-2019:2667-1 Rating: moderate References: 1158251 1158365 Cross-References: CVE-2019-5163 CVE-2019-5164 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available...
Security update for libidn2 (moderate)
openSUSE Security Update: Security update for libidn2 Announcement ID: openSUSE-SU-2019:2613-1 Rating: moderate References: 1154884 1154887 Cross-References: CVE-2019-12290 CVE-2019-18224 Affected Products: openSUSE Leap 15.0 An update that fixes two vulnerabilities is now available. Description:...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2019:2539-1 Rating: important References: 1157269 Cross-References: CVE-2019-13723 CVE-2019-13724 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes two vulnerabilities is now available...
Security update for polkit (important)
openSUSE Security Update: Security update for polkit Announcement ID: openSUSE-SU-2019:1914-1 Rating: important References: 1121826 Cross-References: CVE-2019-6133 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description: This...
Security update for nodejs10 (important)
openSUSE Security Update: Security update for nodejs10 Announcement ID: openSUSE-SU-2019:1846-1 Rating: important References: 1134208 1140290 Cross-References: CVE-2019-13173 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available...
Security update for dbus-1 (important)
openSUSE Security Update: Security update for dbus-1 Announcement ID: openSUSE-SU-2019:1671-1 Rating: important References: 1137832 Cross-References: CVE-2019-12749 Affected Products: openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description: This update for dbus-1...
Security update for libxml2 (moderate)
This update for libxml2 fixes the following security issues: - CVE-2018-9251: The xzdecomp function allowed remote attackers to cause a denial of service infinite loop via a crafted XML file that triggers LZMAMEMLIMITERROR, as demonstrated by xmllint bsc1088279. - CVE-2018-14567: Prevent denial o...
Security update for zutils (moderate)
This update for zutils to version 1.7 fixes one security issue: - CVE-2018-1000637: buffer overrun in zcat utility boo1103878 Please note that the zutils zcat utility is distinct from the default gzip zcat utility...
Security update for perl-Archive-Zip (moderate)
This update for perl-Archive-Zip fixes the following security issue: - CVE-2018-10860: Prevent directory traversal caused by not properly sanitizing paths while extracting zip files. An attacker able to provide a specially crafted archive for processing could have used this flaw to write or...
Security update for tiff (moderate)
This update for tiff fixes the following security issues: These security issues were fixed: - CVE-2017-18013: Fixed a NULL pointer dereference in the tifprint.cTIFFPrintDirectory function that could have lead to denial of service bsc1074317. - CVE-2018-10963: Fixed an assertion failure in the...
Security update for redis (important)
This update for redis to 4.0.10 fixes the following issues: These security issues were fixed: - CVE-2018-11218: Prevent heap corruption vulnerability in cmsgpack bsc1097430. - CVE-2018-11219: Prevent integer overflow in Lua scripting bsc1097768. For Leap 42.3 and openSUSE SLE 12 backports this is...
Security update for cups (important)
This update for cups fixes the following issues: - CVE-2017-18190: Removed localhost.localdomain from list of trustworthy hosts in scheduler/client.c to avoid arbitrary IPP command execution in conjunction with DNS rebinding. bsc1081557 This update was imported from the SUSE:SLE-12:Update update...
Security update for opensaml (important)
This update for opensaml fixes the following issues: Security issue fixed: - CVE-2017-16853: Fix the DynamicMetadataProvider class to properly configure itself with the MetadataFilter plugins, to avoid possible MITM attacks bsc1068685. This update was imported from the SUSE:SLE-12-SP1:Update upda...
Security update for tboot (important)
This update for tboot fixes the following issues: Security issues fixed: - CVE-2017-16837: Fix tbootfailed to validate a number of immutable function pointers, which could allow an attacker to bypass the chain of trust and execute arbitrary code boo1068390. - Make tboot package compatible with...
Security update for libwpd (important)
This update for libwpd fixes the following issues: Security issue fixed: - CVE-2017-14226: WP1StylesListener.cpp, WP5StylesListener.cpp, and WP42StylesListener.cpp in libwpd 0.10.1 mishandle iterators, which allows remote attackers to cause a denial of service heap-based buffer over-read in the...
Security update for qemu (important)
This update for qemu fixes several issues. These security issues were fixed: - CVE-2017-5898: The CCID Card device emulator support was vulnerable to an integer overflow flaw allowing a privileged user to crash the Qemu process on the host resulting in DoS bsc1023907. - CVE-2017-5857: The Virtio...
Security update for mysql-community-server (important)
mysql-community-server was updated to version 5.6.35 to fix bugs and security issues: Changes http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-35.html Fixed CVEs: CVE-2016-8318 boo1020872, CVE-2017-3312 boo1020873, CVE-2017-3258 boo1020875, CVE-2017-3273 boo1020876, CVE-2017-3244 boo102087...
Security update for openjpeg2 (important)
This update for openjpeg2 fixes the following issues: CVE-2016-9572 CVE-2016-9573: Insuficient check in imagetopnm could lead to heap buffer overflow bsc1014543 CVE-2016-9580, CVE-2016-9581: Possible Heap buffer overflow via integer overflow and infite loop bsc1014975 CVE-2016-7445: Null pointer...
Security update for ImageMagick (important)
This update for ImageMagick fixes the following issues: CVE-2016-9556 Possible Heap-overflow found by fuzzing bsc1011130 CVE-2016-9559 Possible Null pointer access found by fuzzing bsc1011136 CVE-2016-8707 Possible code execution in Tiff conver utility bsc1014159 CVE-2016-8866 Memory allocation...
Security update for the Linux Kernel (important)
The openSUSE 13.1 kernel was updated to receive various critical security fixes. The following security bugs were fixed: - CVE-2016-8655: A race condition in the afpacket packetsetring function could be used by local attackers to crash the kernel or gain privileges bsc1012754. - CVE-2016-8632: Th...