7849 matches found
Security update for redis (important)
This update for redis to 4.0.10 fixes the following issues: These security issues were fixed: - CVE-2018-11218: Prevent heap corruption vulnerability in cmsgpack bsc1097430. - CVE-2018-11219: Prevent integer overflow in Lua scripting bsc1097768. For Leap 42.3 and openSUSE SLE 12 backports this is...
Security update for MozillaFirefox (important)
This update for MozillaFirefox fixes the following issues: - update to Firefox 52.6esr boo1077291 MFSA 2018-01 Speculative execution side-channel attack "Spectre" MFSA 2018-03 CVE-2018-5091 bmo1423086 Use-after-free with DTMF timers CVE-2018-5095 bmo1418447 Integer overflow in Skia library during...
Security update for cacti, cacti-spine (important)
This update for cacti, cacti-spine to version 1.1.28 fixes the following issues: - CVE-2017-16641: Potential code execution vulnerability in RRDtool functions boo1067166 - CVE-2017-16660: Remote execution vulnerability in logging function boo1067164 - CVE-2017-16661: Arbitrary file read...
Security update for libwpd (important)
This update for libwpd fixes the following issues: Security issue fixed: - CVE-2017-14226: WP1StylesListener.cpp, WP5StylesListener.cpp, and WP42StylesListener.cpp in libwpd 0.10.1 mishandle iterators, which allows remote attackers to cause a denial of service heap-based buffer over-read in the...
Security update for samba (important)
This update for samba fixes the following issue: - An unprivileged user with access to the samba server could cause smbd to load a specially crafted shared library, which then had the ability to execute arbitrary code on the server as 'root'. CVE-2017-7494, bso12780, bsc1038231 This update was...
Security update for mysql-community-server (important)
mysql-community-server was updated to version 5.6.35 to fix bugs and security issues: Changes http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-35.html Fixed CVEs: CVE-2016-8318 boo1020872, CVE-2017-3312 boo1020873, CVE-2017-3258 boo1020875, CVE-2017-3273 boo1020876, CVE-2017-3244 boo102087...
Security update for MozillaFirefox, mozilla-nss (important)
This update to Mozilla Firefox 50.0 fixes a number of security issues. The following vulnerabilities were fixed in Mozilla Firefox MFSA 2016-89: - CVE-2016-5296: Heap-buffer-overflow WRITE in rasterizeedges1 bmo1292443 - CVE-2016-5292: URL parsing causes crash bmo1288482 - CVE-2016-5297: Incorrec...
Security update for the Linux Kernel (important)
The openSUSE Leap 42.1 kernel was updated to 4.1.34, fixing bugs and security issues. The following security bugs were fixed: - CVE-2016-5195: A local privilege escalation using MAPPRIVATE was fixed, which is reportedly exploited in the wild bsc1004418. - CVE-2016-8658: Stack-based buffer overflo...
Security update for java-1_8_0-openjdk (important)
java-180-openjdk was updated to fix 24 security issues. These security issues were fixed: - CVE-2015-4734: A remote user can exploit a flaw in the Embedded JGSS component to partially access data - CVE-2015-4803: A remote user can exploit a flaw in the JRockit JAXP component to cause partial deni...
ruby on rails to 2.3.16 (important)
This update updates the RubyOnRails 2.3 stack to 2.3.16. Security and bugfixes were done, foremost: CVE-2013-0333: A JSON sql/code injection problem was fixed. CVE-2012-5664: A SQL Injection Vulnerability in Active Record was fixed. CVE-2012-2695: A SQL injection via nested hashes in conditions w...
Security update for python-numpy (important)
openSUSE Security Update: Security update for python-numpy Announcement ID: openSUSE-SU-2022:0134-1 Rating: important References: 1190345 1193907 1193913 Cross-References: CVE-2021-21897 CVE-2021-33430 CVE-2021-41496 CVSS scores: CVE-2021-21897 NVD : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A...
Security update for icingaweb2 (important)
openSUSE Security Update: Security update for icingaweb2 Announcement ID: openSUSE-SU-2022:0087-1 Rating: important References: 1196911 1196913 Cross-References: CVE-2022-24714 CVE-2022-24715 CVSS scores: CVE-2022-24714 NVD : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2022-24715 NVD : 8...
Security update for go1.17 (moderate)
openSUSE Security Update: Security update for go1.17 Announcement ID: openSUSE-SU-2021:3488-1 Rating: moderate References: 1190649 1191468 Cross-References: CVE-2021-38297 CVSS scores: CVE-2021-38297 SUSE: 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N Affected Products: openSUSE Leap 15.3 An...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:0881-1 Rating: important References: 1187141 Cross-References: CVE-2021-30544 CVE-2021-30545 CVE-2021-30546 CVE-2021-30547 CVE-2021-30548 CVE-2021-30549 CVE-2021-30550 CVE-2021-30551 CVE-2021-30552...
Security update for nginx (important)
openSUSE Security Update: Security update for nginx Announcement ID: openSUSE-SU-2021:0835-1 Rating: important References: 1186126 Cross-References: CVE-2021-23017 CVSS scores: CVE-2021-23017 SUSE: 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.2 An update th...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2020:2161-1 Rating: important References: 1149032 1152489 1153274 1154353 1155518 1160634 1167773 1170139 1171073 1171558 1172873 1173504 1174852 1175721 1175918 1176109 1176180 1176200 1176481 1176586...
Security update for podman (moderate)
openSUSE Security Update: Security update for podman Announcement ID: openSUSE-SU-2020:2063-1 Rating: moderate References: 1176804 1178122 1178392 Cross-References: CVE-2020-14370 Affected Products: openSUSE Leap 15.2 An update that solves one vulnerability and has two fixes is now available...
Security update for binutils (moderate)
openSUSE Security Update: Security update for binutils Announcement ID: openSUSE-SU-2020:1804-1 Rating: moderate References: 1126826 1126829 1126831 1140126 1142649 1143609 1153768 1153770 1157755 1160254 1160590 1163333 1163744 Cross-References: CVE-2019-12972 CVE-2019-14250 CVE-2019-14444...
Security update for MozillaFirefox (moderate)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2020:1391-1 Rating: moderate References: 1173991 1174284 1175686 Cross-References: CVE-2020-15663 CVE-2020-15664 CVE-2020-15670 Affected Products: openSUSE Leap 15.2 An update that fixes three vulnerabilitie...
Security update for curl (moderate)
openSUSE Security Update: Security update for curl Announcement ID: openSUSE-SU-2020:1345-1 Rating: moderate References: 1175109 Cross-References: CVE-2020-8231 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for curl fixes t...
Security update for python3 (important)
openSUSE Security Update: Security update for python3 Announcement ID: openSUSE-SU-2020:0931-1 Rating: important References: 1173274 Cross-References: CVE-2020-14422 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for python3...
Security update for webkit2gtk3 (important)
openSUSE Security Update: Security update for webkit2gtk3 Announcement ID: openSUSE-SU-2020:0646-1 Rating: important References: 1170643 Cross-References: CVE-2020-3899 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...
Security update for bouncycastle (moderate)
openSUSE Security Update: Security update for bouncycastle Announcement ID: openSUSE-SU-2020:0607-1 Rating: moderate References: 1072697 1100694 Cross-References: CVE-2017-13098 CVE-2018-1000613 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available...
Security update for git (important)
openSUSE Security Update: Security update for git Announcement ID: openSUSE-SU-2020:0524-1 Rating: important References: 1168930 Cross-References: CVE-2020-5260 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for git fixes th...
Security update for sarg (important)
openSUSE Security Update: Security update for sarg Announcement ID: openSUSE-SU-2020:0117-1 Rating: important References: 1156643 Cross-References: CVE-2019-18932 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for sarg fixes...
Security update for libgcrypt (moderate)
openSUSE Security Update: Security update for libgcrypt Announcement ID: openSUSE-SU-2020:0022-1 Rating: moderate References: 1148987 1155338 1155339 Cross-References: CVE-2019-13627 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has two fixes is now available...
Security update for libidn2 (moderate)
openSUSE Security Update: Security update for libidn2 Announcement ID: openSUSE-SU-2019:2613-1 Rating: moderate References: 1154884 1154887 Cross-References: CVE-2019-12290 CVE-2019-18224 Affected Products: openSUSE Leap 15.0 An update that fixes two vulnerabilities is now available. Description:...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2019:2539-1 Rating: important References: 1157269 Cross-References: CVE-2019-13723 CVE-2019-13724 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes two vulnerabilities is now available...
Security update for libxml2 (moderate)
This update for libxml2 fixes the following security issues: - CVE-2018-9251: The xzdecomp function allowed remote attackers to cause a denial of service infinite loop via a crafted XML file that triggers LZMAMEMLIMITERROR, as demonstrated by xmllint bsc1088279. - CVE-2018-14567: Prevent denial o...
Security update for chromium (moderate)
This update for Chromium to version 69.0.3497.92 fixes the following issues: Security issues fixed boo1108114: - Function signature mismatch in WebAssembly - URL Spoofing in Omnibox The following tracked packaging issues were fixed: - the chromium package incorrectly provied swiftshader resolvabl...
Security update for librsvg (moderate)
This update for librsvg fixes the following issues: - CVE-2018-1000041: Input validation issue could lead to credentials leak. bsc1083232 Update to version 2.40.20: + Except for emergencies, this will be the LAST RELEASE of the librsvg-2.40.x series. We are moving to 2.41, which is vastly improve...
Security update for cups (important)
This update for cups fixes the following issues: - CVE-2017-18190: Removed localhost.localdomain from list of trustworthy hosts in scheduler/client.c to avoid arbitrary IPP command execution in conjunction with DNS rebinding. bsc1081557 This update was imported from the SUSE:SLE-12:Update update...
Security update for samba (important)
This update for samba fixes the following issue: - An unprivileged user with access to the samba server could cause smbd to load a specially crafted shared library, which then had the ability to execute arbitrary code on the server as 'root'. CVE-2017-7494, bso12780, bsc1038231 This update was...
Security update for ImageMagick (important)
This update for ImageMagick fixes the following issues: CVE-2016-9556 Possible Heap-overflow found by fuzzing bsc1011130 CVE-2016-9559 Possible Null pointer access found by fuzzing bsc1011136 CVE-2016-8707 Possible code execution in Tiff conver utility bsc1014159 CVE-2016-8866 Memory allocation...
Security update for java-1_7_0-openjdk (important)
This update for java-170-openjdk to version 2.6.6 fixes five security issues. These security issues were fixed: - CVE-2016-0686: Ensure thread consistency bsc976340. - CVE-2016-0687: Better byte behavior bsc976340. - CVE-2016-0695: Make DSA more fair bsc976340. - CVE-2016-3425: Better buffering o...
Security update for MozillaFirefox, mozilla-nss (important)
MozillaFirefox was updated to version 39.0 to fix 21 security issues. These security issues were fixed: - CVE-2015-2724/CVE-2015-2725/CVE-2015-2726: Miscellaneous memory safety hazards bsc935979. - CVE-2015-2727: Local files or privileged URLs in pages can be opened into new tabs bsc935979. -...
update for openssl (important)
This openssl update fixes one security issue: - bnc872299: Fixed missing bounds checks for heartbeat messages CVE-2014-0160...
Security update for htmldoc (important)
openSUSE Security Update: Security update for htmldoc Announcement ID: openSUSE-SU-2022:0088-1 Rating: important References: 1192357 1194303 1194304 1194487 1195758 Cross-References: CVE-2021-40985 CVE-2021-43579 CVE-2021-45944 CVE-2021-45949 CVE-2022-0534 CVSS scores: CVE-2021-40985 NVD : 5.5...
Security update for java-1_8_0-openjdk (important)
openSUSE Security Update: Security update for java-180-openjdk Announcement ID: openSUSE-SU-2021:3770-1 Rating: important References: 1191901 1191903 1191904 1191905 1191906 1191909 1191910 1191911 1191912 1191913 1191914 Cross-References: CVE-2021-35550 CVE-2021-35556 CVE-2021-35559 CVE-2021-355...
Security update for busybox (important)
openSUSE Security Update: Security update for busybox Announcement ID: openSUSE-SU-2021:3531-1 Rating: important References: 1099260 1099263 1121426 1184522 951562 Cross-References: CVE-2011-5325 CVE-2018-1000500 CVE-2018-1000517 CVE-2018-20679 CVE-2021-28831 CVSS scores: CVE-2011-5325 NVD : 7.5...
Security update for nodejs14 (important)
openSUSE Security Update: Security update for nodejs14 Announcement ID: openSUSE-SU-2021:1313-1 Rating: important References: 1188881 1188917 1189368 1189369 1189370 Cross-References: CVE-2021-22930 CVE-2021-22931 CVE-2021-22939 CVE-2021-22940 CVE-2021-3672 CVSS scores: CVE-2021-22930 SUSE: 9.1...
Security update for libcroco (moderate)
openSUSE Security Update: Security update for libcroco Announcement ID: openSUSE-SU-2021:1294-1 Rating: moderate References: 1171685 Cross-References: CVE-2020-12825 CVSS scores: CVE-2020-12825 NVD : 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H CVE-2020-12825 SUSE: 2.8...
Security update for nodejs10 (moderate)
openSUSE Security Update: Security update for nodejs10 Announcement ID: openSUSE-SU-2021:2953-1 Rating: moderate References: 1188881 1188917 1189369 1189370 Cross-References: CVE-2021-22930 CVE-2021-22931 CVE-2021-22939 CVE-2021-3672 CVSS scores: CVE-2021-22930 SUSE: 9.1...
Security update for linuxptp (important)
openSUSE Security Update: Security update for linuxptp Announcement ID: openSUSE-SU-2021:1102-1 Rating: important References: 1187646 Cross-References: CVE-2021-3570 CVSS scores: CVE-2021-3570 NVD : 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2021-3570 SUSE: 8.8...
Security update for qemu (important)
openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2021:1942-1 Rating: important References: 1149813 1163019 1175144 1175534 1176681 1178683 1178935 1179477 1179484 1179686 1181103 1182282 1182425 1182968 1182975 1183373 1186290 Cross-References: CVE-2019-15890...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:0758-1 Rating: important References: 1047233 1065729 1113295 1152472 1152489 1153274 1154353 1155518 1156256 1156395 1159280 1160634 1167773 1168777 1169514 1169709 1171295 1173485 1177326 1178163...
Security update for binutils (moderate)
openSUSE Security Update: Security update for binutils Announcement ID: openSUSE-SU-2020:1790-1 Rating: moderate References: 1126826 1126829 1126831 1140126 1142649 1143609 1153768 1153770 1157755 1160254 1160590 1163333 1163744 Cross-References: CVE-2019-12972 CVE-2019-14250 CVE-2019-14444...
Security update for zabbix (moderate)
openSUSE Security Update: Security update for zabbix Announcement ID: openSUSE-SU-2020:1604-1 Rating: moderate References: 1174253 Cross-References: CVE-2020-11800 CVE-2020-15803 Affected Products: openSUSE Leap 15.2 openSUSE Leap 15.1 openSUSE Backports SLE-15-SP2 openSUSE Backports SLE-15-SP1 A...
Recommended update for otrs (moderate)
openSUSE Security Update: Recommended update for otrs Announcement ID: openSUSE-SU-2020:1509-1 Rating: moderate References: 1122560 1137614 1137615 1139406 1141430 1141431 1141432 1156431 1157001 1160663 1168029 1168030 1168031 1168032 Cross-References: CVE-2019-10067 CVE-2019-12248 CVE-2019-1249...
Security update for virtualbox (moderate)
openSUSE Security Update: Security update for virtualbox Announcement ID: openSUSE-SU-2020:1486-1 Rating: moderate References: 1114605 1174075 1174159 1175201 Cross-References: CVE-2020-14628 CVE-2020-14629 CVE-2020-14646 CVE-2020-14647 CVE-2020-14648 CVE-2020-14649 CVE-2020-14650 CVE-2020-14673...