Security update for the Linux Kernel (important)

openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2022:1037-1 Rating: important References: 1176447 1176774 1178134 1179439 1181147 1191428 1192273 1193731 1193787 1193864 1194463 1194516 1195211 1195254 1195403 1195612 1195897 1195905 1195939 1195949...

Security update for java-1_8_0-openjdk (important)

openSUSE Security Update: Security update for java-180-openjdk Announcement ID: openSUSE-SU-2021:1500-1 Rating: important References: 1191901 1191903 1191904 1191905 1191906 1191909 1191910 1191911 1191912 1191913 1191914 Cross-References: CVE-2021-35550 CVE-2021-35556 CVE-2021-35559 CVE-2021-355...

Security update for samba (important)

openSUSE Security Update: Security update for samba Announcement ID: openSUSE-SU-2021:3674-1 Rating: important References: 1014440 1192284 Cross-References: CVE-2016-2124 CVE-2020-25717 CVSS scores: CVE-2020-25717 SUSE: 8.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N Affected Products: openSUSE...

Security update for opera (important)

openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2021:1434-1 Rating: important References: Cross-References: CVE-2021-37974 CVE-2021-37975 CVE-2021-37976 CVE-2021-37977 CVE-2021-37978 CVE-2021-37979 CVE-2021-37980 Affected Products: openSUSE Leap 15.3:NonFree An...

Security update for php-composer (important)

openSUSE Security Update: Security update for php-composer Announcement ID: openSUSE-SU-2021:1289-1 Rating: important References: 1185376 1187416 Cross-References: CVE-2021-29472 CVSS scores: CVE-2021-29472 NVD : 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15...

Security update for nextcloud (important)

openSUSE Security Update: Security update for nextcloud Announcement ID: openSUSE-SU-2021:1253-1 Rating: important References: 1190291 Cross-References: CVE-2021-32766 CVE-2021-32800 CVE-2021-32801 CVE-2021-32802 CVSS scores: CVE-2021-32800 NVD : 8.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N...

Security update for php7 (important)

openSUSE Security Update: Security update for php7 Announcement ID: openSUSE-SU-2021:1130-1 Rating: important References: 1188035 1188037 Cross-References: CVE-2021-21704 CVE-2021-21705 CVSS scores: CVE-2021-21704 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-21705 SUSE: 5.3...

Security update for caribou (important)

openSUSE Security Update: Security update for caribou Announcement ID: openSUSE-SU-2021:1071-1 Rating: important References: 1186617 1187112 Cross-References: CVE-2021-3567 CVSS scores: CVE-2021-3567 SUSE: 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.2 An...

Security update for fossil (moderate)

openSUSE Security Update: Security update for fossil Announcement ID: openSUSE-SU-2021:1052-1 Rating: moderate References: 1187988 Affected Products: openSUSE Backports SLE-15-SP1 An update that contains security fixes can now be installed. Description: This update for fossil fixes the following...

Security update for qemu (important)

openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2021:1942-1 Rating: important References: 1149813 1163019 1175144 1175534 1176681 1178683 1178935 1179477 1179484 1179686 1181103 1182282 1182425 1182968 1182975 1183373 1186290 Cross-References: CVE-2019-15890...

Security update for postgresql12 (moderate)

openSUSE Security Update: Security update for postgresql12 Announcement ID: openSUSE-SU-2021:1994-1 Rating: moderate References: 1179945 1183118 1183168 1185924 1185925 1185926 Cross-References: CVE-2021-32027 CVE-2021-32028 CVE-2021-32029 CVSS scores: CVE-2021-32027 NVD : 8.8...

Security update for Chromium (critical)

openSUSE Security Update: Security update for Chromium Announcement ID: openSUSE-SU-2021:0629-1 Rating: critical References: 11845047 1184764 1185398 Cross-References: CVE-2021-21201 CVE-2021-21202 CVE-2021-21203 CVE-2021-21204 CVE-2021-21205 CVE-2021-21207 CVE-2021-21208 CVE-2021-21209...

Security update for phpMyAdmin (important)

openSUSE Security Update: Security update for phpMyAdmin Announcement ID: openSUSE-SU-2020:1806-1 Rating: important References: 1167335 1167336 1167337 1177561 1177562 1177842 Cross-References: CVE-2020-10802 CVE-2020-10803 CVE-2020-10804 CVE-2020-26934 CVE-2020-26935 Affected Products: openSUSE...

Security update for freetype2 (important)

openSUSE Security Update: Security update for freetype2 Announcement ID: openSUSE-SU-2020:1744-1 Rating: important References: 1177914 Cross-References: CVE-2020-15999 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for...

Security update for pdns-recursor (important)

openSUSE Security Update: Security update for pdns-recursor Announcement ID: openSUSE-SU-2020:1687-1 Rating: important References: 1173302 1177383 Cross-References: CVE-2020-14196 CVE-2020-25829 Affected Products: openSUSE Leap 15.2 openSUSE Leap 15.1 openSUSE Backports SLE-15-SP2 openSUSE...

Security update for python-pip (moderate)

openSUSE Security Update: Security update for python-pip Announcement ID: openSUSE-SU-2020:1613-1 Rating: moderate References: 1176262 Cross-References: CVE-2019-20916 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...

Security update for brotli (moderate)

openSUSE Security Update: Security update for brotli Announcement ID: openSUSE-SU-2020:1578-1 Rating: moderate References: 1175825 Cross-References: CVE-2020-8927 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for brotli fix...

Recommended update for otrs (moderate)

openSUSE Security Update: Recommended update for otrs Announcement ID: openSUSE-SU-2020:1509-1 Rating: moderate References: 1122560 1137614 1137615 1139406 1141430 1141431 1141432 1156431 1157001 1160663 1168029 1168030 1168031 1168032 Cross-References: CVE-2019-10067 CVE-2019-12248 CVE-2019-1249...

Security update for slurm (moderate)

openSUSE Security Update: Security update for slurm Announcement ID: openSUSE-SU-2020:1421-1 Rating: moderate References: 1172004 Cross-References: CVE-2020-12693 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for slurm fixe...

Security update for opera (moderate)

openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2020:1172-1 Rating: moderate References: Cross-References: CVE-2020-6510 CVE-2020-6511 CVE-2020-6512 CVE-2020-6513 CVE-2020-6514 CVE-2020-6515 CVE-2020-6516 CVE-2020-6517 CVE-2020-6518 CVE-2020-6519 CVE-2020-6520...

Security update for rubygem-puma (moderate)

openSUSE Security Update: Security update for rubygem-puma Announcement ID: openSUSE-SU-2020:0990-1 Rating: moderate References: 1172175 1172176 Cross-References: CVE-2020-11076 CVE-2020-11077 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available...

Security update for nodejs8 (critical)

openSUSE Security Update: Security update for nodejs8 Announcement ID: openSUSE-SU-2020:0802-1 Rating: critical References: 1166916 1172442 1172443 Cross-References: CVE-2020-11080 CVE-2020-7598 CVE-2020-8174 Affected Products: openSUSE Leap 15.1 An update that fixes three vulnerabilities is now...

Security update for java-1_8_0-openjdk (important)

openSUSE Security Update: Security update for java-180-openjdk Announcement ID: openSUSE-SU-2020:0800-1 Rating: important References: 1160398 1169511 1171352 Cross-References: CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2773 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803...

Security update for xawtv (moderate)

openSUSE Security Update: Security update for xawtv Announcement ID: openSUSE-SU-2020:0784-1 Rating: moderate References: 1171655 Cross-References: CVE-2020-13696 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for xawtv fixe...

Security update for mailman (moderate)

openSUSE Security Update: Security update for mailman Announcement ID: openSUSE-SU-2020:0764-1 Rating: moderate References: 1171363 682920 Cross-References: CVE-2020-12108 Affected Products: openSUSE Backports SLE-15-SP1 An update that solves one vulnerability and has one errata is now available...

Security update for ghostscript (important)

openSUSE Security Update: Security update for ghostscript Announcement ID: openSUSE-SU-2020:0653-1 Rating: important References: 1170603 Cross-References: CVE-2020-12268 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...

Security update for trousers (moderate)

openSUSE Security Update: Security update for trousers Announcement ID: openSUSE-SU-2020:0015-1 Rating: moderate References: 1157651 Cross-References: CVE-2019-18898 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for trouser...

Security update for ucode-intel (important)

openSUSE Security Update: Security update for ucode-intel Announcement ID: openSUSE-SU-2019:2620-1 Rating: important References: 1157004 Affected Products: openSUSE Leap 15.0 An update that contains security fixes can now be installed. Description: This update for ucode-intel fixes the following...

Security update for libidn2 (moderate)

openSUSE Security Update: Security update for libidn2 Announcement ID: openSUSE-SU-2019:2611-1 Rating: moderate References: 1154884 1154887 Cross-References: CVE-2019-12290 CVE-2019-18224 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Description:...

Security update for xen (important)

This update for xen fixes the following issues: Update to Xen 4.10.2 bug fix release bsc1027519. Security vulnerabilities fixed: - CVE-2018-19961, CVE-2018-19962: Fixed an issue related to insufficient TLB flushing with AMD IOMMUs, which potentially allowed a guest to escalate its privileges, may...

Security update for pdns (moderate)

This update for pdns fixes the following issues: Security issues fixed: - CVE-2018-10851: Fixed denial of service via crafted zone record or crafted answer bsc1114157. - CVE-2018-14626: Fixed packet cache pollution via crafted query bsc1114169...

Security update for obs-service-refresh_patches (moderate)

This update for obs-service-refreshpatches fixes the following security issue: - An attacker creating a specially formated archive could have tricked the service in deleting directories that shouldn't be deleted boo1108189...

Security update for GraphicsMagick (important)

This update for GraphicsMagick fixes the following issues: Security issue fixed: - Disable PS, PS2, PS3 and PDF coders by default, remove gs calls from delegates.mgk boo1105592...

Security update for rubygem-yard (important)

This update for rubygem-yard fixes the following issues: - CVE-2017-17042: The server in YARD did not block relative paths with an initial ../ sequence, which allowed attackers to conduct directory traversal attacks and read arbitrary files bsc1070263. This update was imported from the...

Security update for xen (important)

This update for xen fixes several issues. These security issues were fixed: - CVE-2017-14316: Missing bound check in function allocheappages for an internal array allowed attackers using crafted hypercalls to execute arbitrary code within Xen XSA-231, bsc1056278 - CVE-2017-14318: The function...

Security update for Chromium (important)

Chromium was updated to 57.0.2987.98 to fix security issues and bugs. The following vulnerabilities were fixed bsc1028848: - CVE-2017-5030: Memory corruption in V8 - CVE-2017-5031: Use after free in ANGLE - CVE-2017-5032: Out of bounds write in PDFium - CVE-2017-5029: Integer overflow in libxslt ...

Security update for nodejs (important)

This update brings the new upstream nodejs LTS version 4.6.0, fixing bugs and security issues: Nodejs embedded openssl version update + upgrade to 1.0.2j CVE-2016-6304, CVE-2016-2183, CVE-2016-2178, CVE-2016-6306, CVE-2016-7052 + remove support for dynamic 3rd party engine modules http: Properly...

Security update for the Linux Kernel (important)

The openSUSE Leap 42.1 kernel was updated to 4.1.26 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2016-1583: Prevent the usage of mmap when the lower file system does not allow it. This could have lead to local privilege escalation when ecryptfs-utils was...

Security update for the Linux Kernel (important)

The openSUSE Leap 42.1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2016-2847: Limit the per-user amount of pages allocated in pipes bsc970948. - CVE-2016-3136: mctu232: add sanity checking in probe bnc970955. - CVE-2016-2188: iowarrio...

Security update for samba (important)

samba was updated to version 4.2.4 to fix 14 security issues. These security issues were fixed: - CVE-2015-5370: DCERPC server and client were vulnerable to DOS and MITM attacks bsc936862. - CVE-2016-2110: A man-in-the-middle could have downgraded NTLMSSP authentication bsc973031. - CVE-2016-2111...

Security update for the Linux Kernel (important)

The openSUSE 13.2 kernel was updated to receive security and bugfixes. It also fixes a regression that caused the Chromium sandbox to no longer work bsc965356. Following security bugs were fixed: - CVE-2016-2069: A flaw was discovered in a way the Linux deals with paging structures. When Linux...

update for samba (critical)

Add the ldapsmb sources as else patches against them have no chance to apply. - Samba pre-3.6.4 are affected by a vulnerability that allows remote code exe- cution as the "root" user; PIDL based autogenerated code allows overwriting beyond of allocated array; CVE-2012-1182; bso8815; bnc752797. -...

mozilla-xulrunner192: Update to Mozilla XULRunner 1.9.2.23 (important)

Mozilla XULRunner was updated to version 1.9.2.23, fixing various bugs and security issues. MFSA 2011-36: Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory...

Security update for openssh (important)

openSUSE Security Update: Security update for openssh Announcement ID: openSUSE-SU-2021:3950-1 Rating: important References: 1190975 Cross-References: CVE-2021-41617 CVSS scores: CVE-2021-41617 NVD : 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2021-41617 SUSE: 7...

Security update for glibc (moderate)

openSUSE Security Update: Security update for glibc Announcement ID: openSUSE-SU-2021:1374-1 Rating: moderate References: 1186489 1187911 Cross-References: CVE-2021-33574 CVE-2021-35942 CVSS scores: CVE-2021-33574 NVD : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-33574 SUSE: 5.9...

Security update for glibc (moderate)

openSUSE Security Update: Security update for glibc Announcement ID: openSUSE-SU-2021:3291-1 Rating: moderate References: 1186489 1187911 Cross-References: CVE-2021-33574 CVE-2021-35942 CVSS scores: CVE-2021-33574 NVD : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-33574 SUSE: 5.9...

Security update for openssl-1_0_0 (low)

openSUSE Security Update: Security update for openssl-100 Announcement ID: openSUSE-SU-2021:2994-1 Rating: low References: 1189521 Cross-References: CVE-2021-3712 CVSS scores: CVE-2021-3712 SUSE: 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: openSUSE Leap 15.3 An update that...

Security update for the Linux Kernel (important)

openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:1076-1 Rating: important References: 1065729 1085224 1094840 1152472 1152489 1155518 1170511 1176940 1179243 1180092 1183871 1184114 1184804 1185308 1185791 1186206 1187215 1187585 1188036 1188062...

Security update for MozillaFirefox (important)

openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2021:0621-1 Rating: important References: 1184960 Cross-References: CVE-2021-23961 CVE-2021-23994 CVE-2021-23995 CVE-2021-23998 CVE-2021-23999 CVE-2021-24002 CVE-2021-29945 CVE-2021-29946 CVSS scores:...

Security update for mariadb (moderate)

openSUSE Security Update: Security update for mariadb Announcement ID: openSUSE-SU-2020:2149-1 Rating: moderate References: 1175596 1177472 1178428 Cross-References: CVE-2020-14765 CVE-2020-14776 CVE-2020-14789 CVE-2020-14812 CVE-2020-15180 Affected Products: openSUSE Leap 15.1 An update that fix...