7849 matches found
Security update for libvirt (important)
openSUSE Security Update: Security update for libvirt Announcement ID: openSUSE-SU-2020:1455-1 Rating: important References: 1161883 1174458 Cross-References: CVE-2020-14339 Affected Products: openSUSE Leap 15.2 An update that solves one vulnerability and has one errata is now available...
Security update of chromium (low)
openSUSE Security Update: Security update of chromium Announcement ID: openSUSE-SU-2020:1154-1 Rating: low References: 1174582 Cross-References: CVE-2020-6532 CVE-2020-6537 CVE-2020-6538 CVE-2020-6539 CVE-2020-6540 CVE-2020-6541 Affected Products: openSUSE Leap 15.2 openSUSE Leap 15.1 An update...
Security update for MozillaFirefox (important)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2020:1147-1 Rating: important References: 1174538 Cross-References: CVE-2020-15652 CVE-2020-15653 CVE-2020-15654 CVE-2020-15655 CVE-2020-15656 CVE-2020-15657 CVE-2020-15658 CVE-2020-15659 CVE-2020-6463...
Security update for tomcat (important)
openSUSE Security Update: Security update for tomcat Announcement ID: openSUSE-SU-2020:1111-1 Rating: important References: 1174117 1174121 Cross-References: CVE-2020-13934 CVE-2020-13935 Affected Products: openSUSE Leap 15.2 An update that fixes two vulnerabilities is now available. Description:...
Security update for mozilla-nspr, mozilla-nss (important)
openSUSE Security Update: Security update for mozilla-nspr, mozilla-nss Announcement ID: openSUSE-SU-2020:0854-1 Rating: important References: 1159819 1169746 1171978 Cross-References: CVE-2019-17006 CVE-2020-12399 Affected Products: openSUSE Leap 15.1 An update that solves two vulnerabilities an...
Security update for java-1_8_0-openjdk (important)
openSUSE Security Update: Security update for java-180-openjdk Announcement ID: openSUSE-SU-2020:0800-1 Rating: important References: 1160398 1169511 1171352 Cross-References: CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2773 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803...
Security update for nodejs8 (critical)
openSUSE Security Update: Security update for nodejs8 Announcement ID: openSUSE-SU-2020:0802-1 Rating: critical References: 1166916 1172442 1172443 Cross-References: CVE-2020-11080 CVE-2020-7598 CVE-2020-8174 Affected Products: openSUSE Leap 15.1 An update that fixes three vulnerabilities is now...
Security update for squid (moderate)
openSUSE Security Update: Security update for squid Announcement ID: openSUSE-SU-2020:0606-1 Rating: moderate References: 1162687 1162689 1162691 Cross-References: CVE-2019-12528 CVE-2020-8449 CVE-2020-8450 CVE-2020-8517 Affected Products: openSUSE Leap 15.1 An update that fixes four...
Security update for apache2-mod_auth_openidc (moderate)
openSUSE Security Update: Security update for apache2-modauthopenidc Announcement ID: openSUSE-SU-2020:0376-1 Rating: moderate References: 1164459 Cross-References: CVE-2019-20479 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This upda...
Security update for icingaweb2 (moderate)
openSUSE Security Update: Security update for icingaweb2 Announcement ID: openSUSE-SU-2020:0067-1 Rating: moderate References: 1101357 1119784 1119785 1119799 1119800 1119801 Cross-References: CVE-2018-18246 CVE-2018-18247 CVE-2018-18248 CVE-2018-18249 CVE-2018-18250 Affected Products: openSUSE...
Security update for opera (important)
openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2019:2664-1 Rating: important References: Cross-References: CVE-2019-13720 CVE-2019-13721 Affected Products: openSUSE Leap 15.1:NonFree An update that fixes two vulnerabilities is now available. Description: This...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2019:2538-1 Rating: important References: 1157269 Cross-References: CVE-2019-13723 CVE-2019-13724 Affected Products: SUSE Package Hub for SUSE Linux Enterprise 12 An update that fixes two vulnerabilities is now...
Security update for GraphicsMagick (moderate)
openSUSE Security Update: Security update for GraphicsMagick Announcement ID: openSUSE-SU-2019:2317-1 Rating: moderate References: 1151782 Cross-References: CVE-2019-16709 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description...
Security update for GraphicsMagick (moderate)
This update for GraphicsMagick fixes the following issues: - CVE-2018-18024: Fixed an infinite loop in the ReadBMPImage function of the coders/bmp.c file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file. bsc1111069...
Security update for cups (moderate)
This update for cups fixes the following issues: The following security vulnerabilities were fixed: - Fixed a local privilege escalation to root and sandbox bypasses in the scheduler - CVE-2018-4180: Fixed a local privilege escalation to root in dnssd backend bsc1096405 - CVE-2018-4181: Limited...
Security update for ceph (important)
This update for ceph fixes the following issues: Security issues fixed: - CVE-2018-10861: Ensure that ceph-mon does perform authorization on all OSD pool ops bsc1099162 - CVE-2018-1129: cephx signature check bypass bsc1096748 - CVE-2018-1128: cephx protocol was vulnerable to replay attack...
Security update for rubygem-yard (important)
This update for rubygem-yard fixes the following issues: - CVE-2017-17042: The server in YARD did not block relative paths with an initial ../ sequence, which allowed attackers to conduct directory traversal attacks and read arbitrary files bsc1070263. This update was imported from the...
Security update for opensaml (important)
This update for opensaml fixes the following issues: Security issue fixed: - CVE-2017-16853: Fix the DynamicMetadataProvider class to properly configure itself with the MetadataFilter plugins, to avoid possible MITM attacks bsc1068685. This update was imported from the SUSE:SLE-12-SP1:Update upda...
Security update for MozillaFirefox (important)
MozillaFirefox was updated to 52.5.0esr boo1068101 MFSA 2017-25 CVE-2017-7828: Fixed a use-after-free of PressShell while restyling layout CVE-2017-7830: Cross-origin URL information leak through Resource Timing API CVE-2017-7826: Memory safety bugs fixed in Firefox 57 and Firefox ESR 52.5 Also...
Security update for glibc (important)
This update for glibc fixes the following issues: - CVE-2017-1000366: Fix a potential privilege escalation vulnerability that allowed unprivileged system users to manipulate the stack of setuid binaries to gain special privileges. bsc1039357 - A bug in glibc that could result in deadlocks between...
Security update for Mozilla based packages (important)
This update for Mozilla Firefox, Thunderbird, and NSS fixes the following issues: Mozilla Firefox was updated to 52.2esr boo1043960 MFSA 2017-16: CVE-2017-5472 bmo1365602 Use-after-free using destroyed node when regenerating trees CVE-2017-7749 bmo1355039 Use-after-free during docshell reloading...
Security update for xen (important)
This update for xen fixes several issues. These security issues were fixed: - A malicious 64-bit PV guest may be able to access all of system memory, allowing for all of privilege escalation, host crashes, and information leaks by placing a IRET hypercall in the middle of a multicall batch XSA-21...
Security update for qemu (important)
This update for qemu fixes several issues. These security issues were fixed: - CVE-2017-5898: The CCID Card device emulator support was vulnerable to an integer overflow flaw allowing a privileged user to crash the Qemu process on the host resulting in DoS bsc1023907. - CVE-2017-5857: The Virtio...
Security update for tomcat (important)
This update for Tomcat provides the following fixes: Feature changes: The embedded Apache Commons DBCP component was updated to version 2.0. bsc1010893 fate321029 Security fixes: - CVE-2016-0762: Realm Timing Attack bsc1007854 - CVE-2016-5018: Security Manager Bypass bsc1007855 - CVE-2016-6794:...
Security update for the Linux Kernel (important)
The openSUSE Leap 42.1 kernel was updated to 4.1.26 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2016-1583: Prevent the usage of mmap when the lower file system does not allow it. This could have lead to local privilege escalation when ecryptfs-utils was...
Security update for flash-player (important)
This security update for flash-player to 11.2.202.621 fixes the following issues boo979422: A critical vulnerability CVE-2016-4117 exists in Adobe Flash Player 21.0.0.226 and earlier versions for Windows, Macintosh, Linux, and Chrome OS. Successful exploitation could cause a crash and potentially...
Security update for openssl (important)
This update for openssl fixes the following issues: - CVE-2016-2105: EVPEncodeUpdate overflow bsc977614 - CVE-2016-2106: EVPEncryptUpdate overflow bsc977615 - CVE-2016-2107: Padding oracle in AES-NI CBC MAC check bsc977616 - CVE-2016-2108: Memory corruption in the ASN.1 encoder bsc977617 -...
Security update to MariaDB 5.5.46 (important)
MariaDB was updated to 5.5.46 to fix security issues and bugs. The following vulnerabilities were fixed in the upstream release: CVE-2015-4802, CVE-2015-4807, CVE-2015-4815, CVE-2015-4826, CVE-2015-4830, CVE-2015-4836, CVE-2015-4858, CVE-2015-4861, CVE-2015-4870, CVE-2015-4913, CVE-2015-4792 A li...
bash (important)
The command-line shell 'bash' evaluates environment variables, which allows the injection of characters and might be used to access files on the system in some circumstances CVE-2014-7169. Please note that this issue is different from a previously fixed vulnerability tracked under CVE-2014-6271 a...
apache2: Fixed a remote denial of service via byte-ranges (important)
This update fixes a remote denial of service bug memory exhaustion in the Apache 2 HTTP server, that could be triggered by remote attackers using multiple overlapping Request Ranges . CVE-2011-3192...
Security update for gdcm, orthanc, orthanc-gdcm, orthanc-webviewer (important)
openSUSE Security Update: Security update for gdcm, orthanc, orthanc-gdcm, orthanc-webviewer Announcement ID: openSUSE-SU-2022:10145-1 Rating: important References: Cross-References: CVE-2022-2119 CVE-2022-2120 CVSS scores: CVE-2022-2119 NVD : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H...
Security update for python (moderate)
openSUSE Security Update: Security update for python Announcement ID: openSUSE-SU-2022:1091-1 Rating: moderate References: 1175619 1186819 1194146 1195396 Cross-References: CVE-2021-3572 CVE-2021-4189 CVE-2022-0391 CVSS scores: CVE-2021-3572 SUSE: 4.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2022:1037-1 Rating: important References: 1176447 1176774 1178134 1179439 1181147 1191428 1192273 1193731 1193787 1193864 1194463 1194516 1195211 1195254 1195403 1195612 1195897 1195905 1195939 1195949...
Security update for java-1_8_0-openj9 (important)
openSUSE Security Update: Security update for java-180-openj9 Announcement ID: openSUSE-SU-2022:0870-1 Rating: important References: 1194925 1194926 1194927 1194928 1194929 1194930 1194931 1194932 1194933 1194934 1194935 1194939 1194940 1194941 Cross-References: CVE-2022-21248 CVE-2022-21277...
Security update for nodejs8 (important)
openSUSE Security Update: Security update for nodejs8 Announcement ID: openSUSE-SU-22022:20000-2 Rating: important References: 1038980 1191962 1191963 1192153 1192154 1192696 Cross-References: CVE-2017-8923 CVE-2021-23343 CVE-2021-32803 CVE-2021-32804 CVE-2021-3807 CVE-2021-3918 CVSS scores:...
Security update for java-1_8_0-openjdk (important)
openSUSE Security Update: Security update for java-180-openjdk Announcement ID: openSUSE-SU-2021:1500-1 Rating: important References: 1191901 1191903 1191904 1191905 1191906 1191909 1191910 1191911 1191912 1191913 1191914 Cross-References: CVE-2021-35550 CVE-2021-35556 CVE-2021-35559 CVE-2021-355...
Security update for drbd-utils (low)
openSUSE Security Update: Security update for drbd-utils Announcement ID: openSUSE-SU-2021:3665-1 Rating: low References: 1029961 1185132 1189363 SLE-21057 Affected Products: openSUSE Leap 15.3 An update that contains security fixes and contains one feature can now be installed. Description: This...
Security update for opera (important)
openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2021:1434-1 Rating: important References: Cross-References: CVE-2021-37974 CVE-2021-37975 CVE-2021-37976 CVE-2021-37977 CVE-2021-37978 CVE-2021-37979 CVE-2021-37980 Affected Products: openSUSE Leap 15.3:NonFree An...
Security update for flatpak (important)
openSUSE Security Update: Security update for flatpak Announcement ID: openSUSE-SU-2021:3472-1 Rating: important References: 1191507 Cross-References: CVE-2021-41133 CVSS scores: CVE-2021-41133 SUSE: 8.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: openSUSE Leap 15.3 An update...
Security update for glibc (moderate)
openSUSE Security Update: Security update for glibc Announcement ID: openSUSE-SU-2021:3291-1 Rating: moderate References: 1186489 1187911 Cross-References: CVE-2021-33574 CVE-2021-35942 CVSS scores: CVE-2021-33574 NVD : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-33574 SUSE: 5.9...
Security update for php-composer (important)
openSUSE Security Update: Security update for php-composer Announcement ID: openSUSE-SU-2021:1289-1 Rating: important References: 1185376 1187416 Cross-References: CVE-2021-29472 CVSS scores: CVE-2021-29472 NVD : 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15...
Security update for qemu (moderate)
openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2021:2858-1 Rating: moderate References: 1180432 1180433 1180434 1180435 1182651 1186012 1188299 1189145 Cross-References: CVE-2020-35503 CVE-2020-35504 CVE-2020-35505 CVE-2020-35506 CVE-2021-20255 CVE-2021-3527...
Security update for icinga2 (moderate)
openSUSE Security Update: Security update for icinga2 Announcement ID: openSUSE-SU-2021:1053-1 Rating: moderate References: 1180147 Cross-References: CVE-2020-29663 CVSS scores: CVE-2020-29663 NVD : 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N CVE-2020-29663 SUSE: 5.3...
Security update for postgresql12 (moderate)
openSUSE Security Update: Security update for postgresql12 Announcement ID: openSUSE-SU-2021:1994-1 Rating: moderate References: 1179945 1183118 1183168 1185924 1185925 1185926 Cross-References: CVE-2021-32027 CVE-2021-32028 CVE-2021-32029 CVSS scores: CVE-2021-32027 NVD : 8.8...
Security update for pdns-recursor (important)
openSUSE Security Update: Security update for pdns-recursor Announcement ID: openSUSE-SU-2020:1687-1 Rating: important References: 1173302 1177383 Cross-References: CVE-2020-14196 CVE-2020-25829 Affected Products: openSUSE Leap 15.2 openSUSE Leap 15.1 openSUSE Backports SLE-15-SP2 openSUSE...
Security update for libproxy (important)
openSUSE Security Update: Security update for libproxy Announcement ID: openSUSE-SU-2020:1676-1 Rating: important References: 1176410 1177143 Cross-References: CVE-2020-25219 CVE-2020-26154 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Descriptio...
Security update for python-pip (moderate)
openSUSE Security Update: Security update for python-pip Announcement ID: openSUSE-SU-2020:1613-1 Rating: moderate References: 1176262 Cross-References: CVE-2019-20916 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...
Security update for rubygem-puma (moderate)
openSUSE Security Update: Security update for rubygem-puma Announcement ID: openSUSE-SU-2020:1001-1 Rating: moderate References: 1172175 1172176 Cross-References: CVE-2020-11076 CVE-2020-11077 Affected Products: openSUSE Leap 15.2 An update that fixes two vulnerabilities is now...
Security update for Virtualbox (moderate)
openSUSE Security Update: Security update for Virtualbox Announcement ID: openSUSE-SU-2020:0925-1 Rating: moderate References: 1169628 Cross-References: CVE-2020-2741 CVE-2020-2742 CVE-2020-2743 CVE-2020-2748 CVE-2020-2758 CVE-2020-2894 CVE-2020-2902 CVE-2020-2905 CVE-2020-2907 CVE-2020-2908...
Security update for python-rpyc (moderate)
openSUSE Security Update: Security update for python-rpyc Announcement ID: openSUSE-SU-2020:0763-1 Rating: moderate References: 1152987 Cross-References: CVE-2019-16328 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This upda...