7849 matches found
Security update for apt-cacher-ng (important)
openSUSE Security Update: Security update for apt-cacher-ng Announcement ID: openSUSE-SU-2020:0146-1 Rating: important References: 1157703 1157706 Cross-References: CVE-2019-18899 CVE-2020-5202 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes two vulnerabilities is now...
Security update for polkit (important)
openSUSE Security Update: Security update for polkit Announcement ID: openSUSE-SU-2019:1914-1 Rating: important References: 1121826 Cross-References: CVE-2019-6133 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description: This...
Security update for nodejs10 (important)
openSUSE Security Update: Security update for nodejs10 Announcement ID: openSUSE-SU-2019:1846-1 Rating: important References: 1134208 1140290 Cross-References: CVE-2019-13173 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available...
Security update for dbus-1 (important)
openSUSE Security Update: Security update for dbus-1 Announcement ID: openSUSE-SU-2019:1671-1 Rating: important References: 1137832 Cross-References: CVE-2019-12749 Affected Products: openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description: This update for dbus-1...
Security update for libzypp, zypper (important)
This update for libzypp, zypper fixes the following issues: Update libzypp to version 16.17.20: Security issues fixed: - PackageProvider: Validate delta rpms before caching bsc1091624, bsc1088705, CVE-2018-7685 - PackageProvider: Validate downloaded rpm package signatures before caching bsc109162...
Security update for GraphicsMagick (low)
This update for GraphicsMagick fixes the following security issue: - CVE-2018-16750: Prevent memory leak in the formatIPTCfromBuffer function bsc1108283. An earlier update added a change that also fixed this issues that was unknown at the time of release: - CVE-2018-16749: Added missing NULL chec...
Security update for postgresql10 (moderate)
This update for postgresql10 fixes the following issues: PostgreSQL 10 was updated to 10.5: - https://www.postgresql.org/about/news/1851/ - https://www.postgresql.org/docs/current/static/release-10-5.html A dump/restore is not required for those running 10.X. However, if you use the adminpack...
Security update for zutils (moderate)
This update for zutils to version 1.7 fixes one security issue: - CVE-2018-1000637: buffer overrun in zcat utility boo1103878 Please note that the zutils zcat utility is distinct from the default gzip zcat utility...
Security update for phpMyAdmin (moderate)
This update for phpMyAdmin to version 4.8.3 addresses multiple issues. Security issues fixed: - CVE-2018-15605: vulnerability in the file import feature allowed cross-site scripting via importing a specially-crafted file PMASA-2018-5, boo1105726 This update also contains a number of upstream bug...
Security update for libheimdal (important)
This update for libheimdal to version 7.5.0 fixes the following issues: The following security vulnerability was fixed: - CVE-2017-17439: Fixed a remote denial of service vulnerability through which remote unauthenticated attackers were able to crash the KDC by sending a crafted UDP packet...
Security update for sssd (moderate)
This update for sssd fixes the following security issue: - CVE-2018-10852: Set stricter permissions on /var/lib/sss/pipes/sudo to prevent the disclosure of sudo rules for arbitrary users bsc1098377. This update was imported from the SUSE:SLE-15:Update update project...
Security update for polkit (moderate)
This update for polkit fixes the following issues: - CVE-2018-1116: Fixed trusting the client-supplied UID which could lead to a denial of service too many dialogs caused by local attackers boo1099031...
Security update for libvorbis (moderate)
This update for libvorbis fixes the following issues: The following security issue was fixed: - Fixed the validation of channels in mapping0forward, which previously allowed remote attackers to cause a denial of service via specially crafted files CVE-2018-10392, bsc1091070 This update was import...
Security update for graphite2 (important)
This update for graphite2 fixes one issue. This security issues was fixed: - CVE-2017-5436: An out-of-bounds write triggered with a maliciously crafted Graphite font could lead to a crash or potentially code execution bsc1035204. This update was imported from the SUSE:SLE-12:Update update project...
Security update for Chromium (important)
Chromium was updated to 57.0.2987.98 to fix security issues and bugs. The following vulnerabilities were fixed bsc1028848: - CVE-2017-5030: Memory corruption in V8 - CVE-2017-5031: Use after free in ANGLE - CVE-2017-5032: Out of bounds write in PDFium - CVE-2017-5029: Integer overflow in libxslt ...
Security update for mariadb (important)
This mariadb version update to 10.0.29 fixes the following issues: - CVE-2017-3318: unspecified vulnerability affecting Error Handling bsc1020896 - CVE-2017-3317: unspecified vulnerability affecting Logging bsc1020894 - CVE-2017-3312: insecure error log file handling in mysqldsafe, incomplete...
Security update for virtualbox (important)
This update for virtualbox to version 5.0.32 fixes the following issues: These security issues were fixed: - CVE-2016-5545: Vulnerability in the GUI subcomponent of virtualbox allows unauthenticated attacker unauthorized update, insert or delete access to some data as well as unauthorized read...
Security update for the Linux Kernel (important)
The openSUSE 13.2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2015-8962: Double free vulnerability in the sgcommonwrite function in drivers/scsi/sg.c in the Linux kernel allowed local users to gain privileges or cause a denial of...
Security update for expat (important)
This update for expat fixes the following security issues: - CVE-2015-1283: Fixed multiple integer overflows that could lead to buffer overflows boo980391 - CVE-2016-0718: Fixed Expat XML parser that mishandles certain kinds of malformed input documents boo979441...
Security update for libopenssl0_9_8 (important)
This update for libopenssl098 fixes the following issues: - CVE-2016-2105: EVPEncodeUpdate overflow bsc977614 - CVE-2016-2106: EVPEncryptUpdate overflow bsc977615 - CVE-2016-2108: Memory corruption in the ASN.1 encoder bsc977617 - CVE-2016-2109: ASN.1 BIO excessive memory allocation bsc976942 -...
Security update for libopenssl0_9_8 (important)
This update for libopenssl098 fixes the following issues: - CVE-2016-0800 aka the "DROWN" attack bsc968046: OpenSSL was vulnerable to a cross-protocol attack that could lead to decryption of TLS sessions by using a server supporting SSLv2 and EXPORT cipher suites as a Bleichenbacher RSA padding...
Security update for the Linux Kernel (important)
The openSUSE 13.2 kernel was updated to receive security and bugfixes. It also fixes a regression that caused the Chromium sandbox to no longer work bsc965356. Following security bugs were fixed: - CVE-2016-2069: A flaw was discovered in a way the Linux deals with paging structures. When Linux...
Security update for java-1_7_0-openjdk (important)
java-170-openjdk was updated to fix 17 security issues. These security issues were fixed: - CVE-2015-4843: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allowed remote attackers to affect confidentiality, integrity, and availability via unknown...
Firefox update to latest 31ESR release (important)
This update lifts Firefox to the latest 31 ESR release to fix known security issues...
mozilla-xulrunner192: Update to Mozilla XULRunner 1.9.2.23 (important)
Mozilla XULRunner was updated to version 1.9.2.23, fixing various bugs and security issues. MFSA 2011-36: Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory...
Security update for nim (important)
openSUSE Security Update: Security update for nim Announcement ID: openSUSE-SU-2022:10095-1 Rating: important References: 1175332 1175333 1175334 1181705 1185083 1185084 1185085 1185948 1192712 Cross-References: CVE-2020-15690 CVE-2020-15692 CVE-2020-15693 CVE-2020-15694 CVE-2021-21372...
Security update for seamonkey (important)
openSUSE Security Update: Security update for seamonkey Announcement ID: openSUSE-SU-2022:0108-1 Rating: important References: 1185055 1188564 1188565 1191902 1191904 1191905 1191909 1191910 1191911 1191913 1191914 1192052 1194198 1194232 1197518 Cross-References: CVE-2021-2163 CVE-2021-2341...
Security update for containerd, docker (moderate)
openSUSE Security Update: Security update for containerd, docker Announcement ID: openSUSE-SU-2022:0334-1 Rating: moderate References: 1191015 1191121 1191334 1191434 1193273 Cross-References: CVE-2021-41089 CVE-2021-41091 CVE-2021-41092 CVE-2021-41103 CVE-2021-41190 CVSS scores: CVE-2021-41089 N...
Security update for squid (moderate)
openSUSE Security Update: Security update for squid Announcement ID: openSUSE-SU-2021:3485-1 Rating: moderate References: 1189403 Cross-References: CVE-2021-28116 CVSS scores: CVE-2021-28116 NVD : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2021-28116 SUSE: 5.3...
Security update for glibc (moderate)
openSUSE Security Update: Security update for glibc Announcement ID: openSUSE-SU-2021:1374-1 Rating: moderate References: 1186489 1187911 Cross-References: CVE-2021-33574 CVE-2021-35942 CVSS scores: CVE-2021-33574 NVD : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-33574 SUSE: 5.9...
Security update for nextcloud (important)
openSUSE Security Update: Security update for nextcloud Announcement ID: openSUSE-SU-2021:1253-1 Rating: important References: 1190291 Cross-References: CVE-2021-32766 CVE-2021-32800 CVE-2021-32801 CVE-2021-32802 CVSS scores: CVE-2021-32800 NVD : 8.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N...
Security update for apache2 (important)
openSUSE Security Update: Security update for apache2 Announcement ID: openSUSE-SU-2021:1234-1 Rating: important References: 1189387 Cross-References: CVE-2021-33193 CVSS scores: CVE-2021-33193 SUSE: 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: openSUSE Leap 15.2 An update...
Security update for ntfs-3g_ntfsprogs (important)
openSUSE Security Update: Security update for ntfs-3gntfsprogs Announcement ID: openSUSE-SU-2021:2971-1 Rating: important References: 1189720 Cross-References: CVE-2019-9755 CVE-2021-33285 CVE-2021-33286 CVE-2021-33287 CVE-2021-33289 CVE-2021-35266 CVE-2021-35267 CVE-2021-35268 CVE-2021-35269...
Security update for go1.16 (moderate)
openSUSE Security Update: Security update for go1.16 Announcement ID: openSUSE-SU-2021:1199-1 Rating: moderate References: 1182345 1189162 Cross-References: CVE-2021-36221 Affected Products: openSUSE Leap 15.2 An update that solves one vulnerability and has one errata is now available.Description...
Security update for php7 (important)
openSUSE Security Update: Security update for php7 Announcement ID: openSUSE-SU-2021:1130-1 Rating: important References: 1188035 1188037 Cross-References: CVE-2021-21704 CVE-2021-21705 CVSS scores: CVE-2021-21704 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-21705 SUSE: 5.3...
Security update for caribou (important)
openSUSE Security Update: Security update for caribou Announcement ID: openSUSE-SU-2021:1071-1 Rating: important References: 1186617 1187112 Cross-References: CVE-2021-3567 CVSS scores: CVE-2021-3567 SUSE: 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.2 An...
Security update for go1.15 (moderate)
openSUSE Security Update: Security update for go1.15 Announcement ID: openSUSE-SU-2021:2398-1 Rating: moderate References: 1175132 1188229 Cross-References: CVE-2021-34558 CVSS scores: CVE-2021-34558 SUSE: 5.3 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Leap 15.3 An...
Security update for MozillaFirefox (important)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2021:0621-1 Rating: important References: 1184960 Cross-References: CVE-2021-23961 CVE-2021-23994 CVE-2021-23995 CVE-2021-23998 CVE-2021-23999 CVE-2021-24002 CVE-2021-29945 CVE-2021-29946 CVSS scores:...
Security update for qemu (important)
openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2021:0363-1 Rating: important References: 1178049 1178565 1179717 1179719 1180523 1181639 1181933 1182137 Cross-References: CVE-2020-11947 CVE-2021-20181 CVE-2021-20203 CVE-2021-20221 CVSS scores: CVE-2020-11947 NVD :...
Security update for phpMyAdmin (important)
openSUSE Security Update: Security update for phpMyAdmin Announcement ID: openSUSE-SU-2020:1806-1 Rating: important References: 1167335 1167336 1167337 1177561 1177562 1177842 Cross-References: CVE-2020-10802 CVE-2020-10803 CVE-2020-10804 CVE-2020-26934 CVE-2020-26935 Affected Products: openSUSE...
Security update for libvirt (important)
openSUSE Security Update: Security update for libvirt Announcement ID: openSUSE-SU-2020:1778-1 Rating: important References: 1174955 1175465 1175574 1176430 1177155 1177480 Cross-References: CVE-2020-15708 CVE-2020-25637 Affected Products: openSUSE Leap 15.1 An update that solves two...
Security update for kleopatra (moderate)
openSUSE Security Update: Security update for kleopatra Announcement ID: openSUSE-SU-2020:1723-1 Rating: moderate References: 1177932 Cross-References: CVE-2020-24972 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...
Security update for dpdk (critical)
openSUSE Security Update: Security update for dpdk Announcement ID: openSUSE-SU-2020:1599-1 Rating: critical References: 1176590 Cross-References: CVE-2020-14374 CVE-2020-14375 CVE-2020-14376 CVE-2020-14377 CVE-2020-14378 Affected Products: openSUSE Leap 15.2 An update that fixes 5 vulnerabilitie...
Security update for singularity (moderate)
openSUSE Security Update: Security update for singularity Announcement ID: openSUSE-SU-2020:1497-1 Rating: moderate References: 1176705 1176707 Cross-References: CVE-2020-25039 CVE-2020-25040 Affected Products: openSUSE Leap 15.2 openSUSE Leap 15.1 An update that fixes two vulnerabilities is now...
Security update for postgresql12 (important)
openSUSE Security Update: Security update for postgresql12 Announcement ID: openSUSE-SU-2020:1243-1 Rating: important References: 1175193 1175194 Cross-References: CVE-2020-14349 CVE-2020-14350 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available...
Security update for opera (moderate)
openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2020:1172-1 Rating: moderate References: Cross-References: CVE-2020-6510 CVE-2020-6511 CVE-2020-6512 CVE-2020-6513 CVE-2020-6514 CVE-2020-6515 CVE-2020-6516 CVE-2020-6517 CVE-2020-6518 CVE-2020-6519 CVE-2020-6520...
Security update for ldb (moderate)
openSUSE Security Update: Security update for ldb Announcement ID: openSUSE-SU-2020:1121-1 Rating: moderate References: 1173159 Cross-References: CVE-2020-10730 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for ldb fixes th...
Security update for memcached (moderate)
openSUSE Security Update: Security update for memcached Announcement ID: openSUSE-SU-2020:0721-1 Rating: moderate References: 1133817 1149110 Cross-References: CVE-2019-11596 CVE-2019-15026 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Descriptio...
Security update for ovmf (moderate)
openSUSE Security Update: Security update for ovmf Announcement ID: openSUSE-SU-2020:0622-1 Rating: moderate References: 1163927 Cross-References: CVE-2019-14559 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for ovmf fixes...
Security update for ghostscript (important)
openSUSE Security Update: Security update for ghostscript Announcement ID: openSUSE-SU-2020:0653-1 Rating: important References: 1170603 Cross-References: CVE-2020-12268 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...