7585 matches found
Security update for podman (moderate)
openSUSE Security Update: Security update for podman Announcement ID: openSUSE-SU-2020:2063-1 Rating: moderate References: 1176804 1178122 1178392 Cross-References: CVE-2020-14370 Affected Products: openSUSE Leap 15.2 An update that solves one vulnerability and has two fixes is now available...
Security update for sddm (moderate)
openSUSE Security Update: Security update for sddm Announcement ID: openSUSE-SU-2020:1870-1 Rating: moderate References: 1177201 Cross-References: CVE-2020-28049 Affected Products: openSUSE Leap 15.2 openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This...
Security update for libvirt (important)
openSUSE Security Update: Security update for libvirt Announcement ID: openSUSE-SU-2020:1778-1 Rating: important References: 1174955 1175465 1175574 1176430 1177155 1177480 Cross-References: CVE-2020-15708 CVE-2020-25637 Affected Products: openSUSE Leap 15.1 An update that solves two...
Security update for dpdk (critical)
openSUSE Security Update: Security update for dpdk Announcement ID: openSUSE-SU-2020:1599-1 Rating: critical References: 1176590 Cross-References: CVE-2020-14374 CVE-2020-14375 CVE-2020-14376 CVE-2020-14377 CVE-2020-14378 Affected Products: openSUSE Leap 15.2 An update that fixes 5 vulnerabilitie...
Security update for go1.14 (moderate)
openSUSE Security Update: Security update for go1.14 Announcement ID: openSUSE-SU-2020:1584-1 Rating: moderate References: 1164903 1176031 Cross-References: CVE-2020-24553 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available. Descriptio...
Security update for cifs-utils (moderate)
openSUSE Security Update: Security update for cifs-utils Announcement ID: openSUSE-SU-2020:1579-1 Rating: moderate References: 1152930 1174477 Cross-References: CVE-2020-14342 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available...
Security update for singularity (moderate)
openSUSE Security Update: Security update for singularity Announcement ID: openSUSE-SU-2020:1497-1 Rating: moderate References: 1176705 1176707 Cross-References: CVE-2020-25039 CVE-2020-25040 Affected Products: openSUSE Leap 15.2 openSUSE Leap 15.1 An update that fixes two vulnerabilities is now...
Security update for wireshark (moderate)
openSUSE Security Update: Security update for wireshark Announcement ID: openSUSE-SU-2020:1188-1 Rating: moderate References: 1169063 1171899 1173606 Cross-References: CVE-2020-11647 CVE-2020-13164 CVE-2020-15466 Affected Products: openSUSE Leap 15.1 An update that fixes three vulnerabilities is...
Security update for tomcat (important)
openSUSE Security Update: Security update for tomcat Announcement ID: openSUSE-SU-2020:1051-1 Rating: important References: 1173389 Cross-References: CVE-2020-11996 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for tomcat...
Security update for LibVNCServer (important)
openSUSE Security Update: Security update for LibVNCServer Announcement ID: openSUSE-SU-2020:0988-1 Rating: important References: 1173477 1173691 1173694 1173700 1173701 1173743 1173874 1173875 1173876 1173880 Cross-References: CVE-2017-18922 CVE-2018-21247 CVE-2019-20839 CVE-2019-20840...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:0324-1 Rating: important References: 1165826 Cross-References: CVE-2020-6420 Affected Products: SUSE Package Hub for SUSE Linux Enterprise 12 An update that fixes one vulnerability is now available...
Security update for mumble (moderate)
openSUSE Security Update: Security update for mumble Announcement ID: openSUSE-SU-2020:0137-1 Rating: moderate References: 1123334 Cross-References: CVE-2018-20743 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This update fo...
Security update for icedtea-web (important)
openSUSE Security Update: Security update for icedtea-web Announcement ID: openSUSE-SU-2019:1911-1 Rating: important References: 1142825 1142832 1142835 Cross-References: CVE-2019-10181 CVE-2019-10182 CVE-2019-10185 Affected Products: openSUSE Leap 15.0 An update that fixes three vulnerabilities ...
Security update for samba (moderate)
openSUSE Security Update: Security update for samba Announcement ID: openSUSE-SU-2019:1292-1 Rating: moderate References: 1099590 1123755 1124223 1127153 1131060 Cross-References: CVE-2019-3880 Affected Products: openSUSE Leap 42.3 An update that solves one vulnerability and has four fixes is now...
Security update for chromium (moderate)
This update for Chromium to version 69.0.3497.100 fixes the following issues: - Security relevant fixes from internal audits, fuzzing and other initiatives booboo1108774...
Security update for python-Django (moderate)
This update for python-Django to version 2.08 fixes the following issues: The following security vulnerability was fixed: - CVE-2018-14574: Fixed an redirection vulnerability in CommonMiddleware boo1102680 The following other bugs were fixed: - Fixed a regression in Django 2.0.7 that broke the...
Security update for znc (moderate)
This update for znc fixes the following issues: - Update to version 1.7.1 CVE-2018-14055: non-admin user could gain admin privileges and shell access by injecting values into znc.conf bnc1101281 CVE-2018-14056: path traversal in HTTP handler via ../ in a web skin name. bnc1101280 - Update to...
Security update for openssl-1_0_0 (moderate)
This update for openssl-100 fixes the following issues: - CVE-2018-0732: During key agreement in a TLS handshake using a DHE based ciphersuite a malicious server could have sent a very large prime value to the client. This caused the client to spend an unreasonably long period of time generating ...
Security update for nodejs6 (moderate)
This update for nodejs6 to version 6.14.3 fixes the following issues: The following security vulnerability was addressed: - Fixed a denial of service DoS vulnerability in Buffer.fill, which could hang when being called CVE-2018-7167, bsc1097375. The following other changes were made: - Use absolu...
Security update for openjpeg2 (moderate)
This update for openjpeg2 fixes the following security issues: - CVE-2015-1239: A double free vulnerability in the j2kreadppmv3 function allowed remote attackers to cause a denial of service crash bsc1066713 - CVE-2017-17479: A stack-based buffer overflow in the pgxtoimage function in...
Security update for hdf5 (important)
This update for hdf5 fixes the following issues: - fix security issues arbitary code execution: CVE-2016-4330: H5TARRAY Code Execution boo1011201 CVE-2016-4331: H5ZNBIT Code Execution boo1011204 CVE-2016-4332: Shareable Message Type Code Execution boo1011205 CVE-2016-4333: Array index bounds issu...
Security update for java-1_7_0-openjdk (important)
This update for java-170-openjdk fixes the following issues: Security issues fixed in OpenJDK 7u171 January 2018 CPUbsc1076366: - CVE-2018-2579: Improve key keying case - CVE-2018-2588: Improve LDAP logins - CVE-2018-2599: Improve reliability of DNS lookups - CVE-2018-2602: Improve usage messages...
Security update for Mozilla based packages (important)
This update for Mozilla Firefox, Thunderbird, and NSS fixes the following issues: Mozilla Firefox was updated to 52.2esr boo1043960 MFSA 2017-16: CVE-2017-5472 bmo1365602 Use-after-free using destroyed node when regenerating trees CVE-2017-7749 bmo1355039 Use-after-free during docshell reloading...
Security update of chromium (important)
Google chromium was updated to 56.0.2924.87: Various small fixes Disabled option to enable/disable plugins in the chrome://plugins - Changed the build requirement of libavformat to library version 57.41.100, as included in ffmpeg 3.1.1, as only this version properly supports the public AVStream A...
Security update for MozillaFirefox (important)
MozillaFirefox is updated to version 50.0.2 which fixes the following issues: Firefox crashed with 3rd party Chinese IME when using IME text fixed in version 50.0.1 Redirection from an HTTP connection to a data: URL could inherit wrong origin after an HTTP redirect fixed in version 50.0.1,...
Security update for mariadb (important)
This update for mariadb to 10.0.27 fixes the following issues: release notes: https://kb.askmonty.org/en/mariadb-10027-release-notes https://kb.askmonty.org/en/mariadb-10026-release-notes changelog: https://kb.askmonty.org/en/mariadb-10027-changelog...
Security update for the Linux Kernel (important)
The openSUSE Leap 42.1 kernel was updated to 4.1.31 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2016-2847: fs/pipe.c in the Linux kernel did not limit the amount of unread data in pipes, which allowed local users to cause a denial of service memory...
Security update for php5 (important)
The PHP script interpreter was updated to receive various security fixes: CVE-2015-4602 bnc935224: Fixed an incomplete Class unserialization type confusion. CVE-2015-4599, CVE-2015-4600, CVE-2015-4601 bnc935226: Fixed type confusion issues in unserialize with various SOAP methods. CVE-2015-4603...
kernel update for Evergreen 11.4, includes leap second deadlock fix (important)
kernel update for Evergreen 11.4, includes leap second deadlock fix and fixes for other security and stability issues...
Security update for php5 (important)
php5 was updated to fix two security issues. These security issues were fixed: - CVE-2014-9652: Out of bounds read in mconvert bnc917150. - CVE-2015-0273: Use after free vulnerability in unserialize with DateTimeZone bnc918768...
bash (critical)
bash was updated to fix command injection via environment variables. CVE-2014-6271,CVE-2014-7169 Also a hardening patch was applied that only imports functions over BASHFUNC prefixed environment variables. Also fixed: CVE-2014-7186, CVE-2014-7187: bad handling of HERE documents and for loop issue...
java-1_6_0-openjdk (important)
Icedtea as included in java-160-openjdk was updated to fix several security issues: S6213702, CVE-2011-0872: so non-blocking sockets with TCP urgent disabled get still selected for read ops win S6618658, CVE-2011-0865: Vulnerability in deserialization S7012520, CVE-2011-0815: Heap overflow...
Security update for libqt5-qtwebengine (moderate)
openSUSE Security Update: Security update for libqt5-qtwebengine Announcement ID: openSUSE-SU-2022:10049-1 Rating: moderate References: Cross-References: CVE-2022-0797 CVE-2022-1125 CVE-2022-1138 CVE-2022-1305 CVE-2022-1310 CVE-2022-1314 CVE-2022-1493 CVSS scores: CVE-2022-0797 NVD : 8.8...
Security update for MozillaFirefox (moderate)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-42022-1 Rating: moderate References: 1038980 1191962 1191963 1192153 1192154 1192696 1195230 1195682 Cross-References: CVE-2017-8923 CVE-2021-23343 CVE-2021-32803 CVE-2021-32804 CVE-2021-3807 CVE-2021-3918...
Security update for ucode-intel (important)
openSUSE Security Update: Security update for ucode-intel Announcement ID: openSUSE-SU-2022:0574-1 Rating: important References: 1192615 1195779 1195780 1195781 Cross-References: CVE-2021-0127 CVE-2021-0145 CVE-2021-0146 CVE-2021-33120 CVSS scores: CVE-2021-0127 NVD : 5.5...
Security update for curl (moderate)
openSUSE Security Update: Security update for curl Announcement ID: openSUSE-SU-2021:3298-1 Rating: moderate References: 1190373 1190374 Cross-References: CVE-2021-22946 CVE-2021-22947 CVSS scores: CVE-2021-22946 SUSE: 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2021-22947 SUSE: 5.9...
Security update for apache2 (important)
openSUSE Security Update: Security update for apache2 Announcement ID: openSUSE-SU-2021:1234-1 Rating: important References: 1189387 Cross-References: CVE-2021-33193 CVSS scores: CVE-2021-33193 SUSE: 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: openSUSE Leap 15.2 An update...
Security update for spectre-meltdown-checker (moderate)
openSUSE Security Update: Security update for spectre-meltdown-checker Announcement ID: openSUSE-SU-2021:2861-1 Rating: moderate References: 1189477 Cross-References: CVE-2017-5753 CVSS scores: CVE-2017-5753 NVD : 5.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N CVE-2017-5753 SUSE: 7.1...
Security update for go1.16 (moderate)
openSUSE Security Update: Security update for go1.16 Announcement ID: openSUSE-SU-2021:1199-1 Rating: moderate References: 1182345 1189162 Cross-References: CVE-2021-36221 Affected Products: openSUSE Leap 15.2 An update that solves one vulnerability and has one errata is now available. Descriptio...
Security update for krb5 (important)
openSUSE Security Update: Security update for krb5 Announcement ID: openSUSE-SU-2021:2800-1 Rating: important References: 1188571 Cross-References: CVE-2021-36222 CVSS scores: CVE-2021-36222 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Leap 15.3 An update tha...
Security update for balsa (moderate)
openSUSE Security Update: Security update for balsa Announcement ID: openSUSE-SU-2021:1094-1 Rating: moderate References: 1172460 Cross-References: CVE-2020-13645 CVSS scores: CVE-2020-13645 NVD : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N CVE-2020-13645 SUSE: 6.5...
Security update for MozillaFirefox (critical)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2020:2325-1 Rating: critical References: 1180039 Cross-References: CVE-2020-16042 CVE-2020-26971 CVE-2020-26973 CVE-2020-26974 CVE-2020-26978 CVE-2020-35111 CVE-2020-35112 CVE-2020-35113 Affected Products:...
Security update for java-1_8_0-openjdk (moderate)
openSUSE Security Update: Security update for java-180-openjdk Announcement ID: openSUSE-SU-2020:2048-1 Rating: moderate References: 1174157 1177943 Cross-References: CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621...
Security update for bluez (moderate)
openSUSE Security Update: Security update for bluez Announcement ID: openSUSE-SU-2020:1876-1 Rating: moderate References: 1177895 Cross-References: CVE-2020-27153 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for bluez fixe...
Security update for apache-commons-httpclient (important)
openSUSE Security Update: Security update for apache-commons-httpclient Announcement ID: openSUSE-SU-2020:1875-1 Rating: important References: 1178171 945190 Cross-References: CVE-2014-3577 CVE-2015-5262 Affected Products: openSUSE Leap 15.2 An update that fixes two vulnerabilities is now...
Security update for tigervnc (critical)
openSUSE Security Update: Security update for tigervnc Announcement ID: openSUSE-SU-2020:1841-1 Rating: critical References: 1176733 Cross-References: CVE-2020-26117 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for tigervn...
Security update for hunspell (low)
openSUSE Security Update: Security update for hunspell Announcement ID: openSUSE-SU-2020:1719-1 Rating: low References: 1151867 Cross-References: CVE-2019-16707 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for hunspell fix...
Security update for chromium (critical)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:1715-1 Rating: critical References: 1177408 Cross-References: CVE-2020-15967 CVE-2020-15968 CVE-2020-15969 CVE-2020-15970 CVE-2020-15971 CVE-2020-15972 CVE-2020-15973 CVE-2020-15974 CVE-2020-15975...
Security update for rubygem-activesupport-5_1 (critical)
openSUSE Security Update: Security update for rubygem-activesupport-51 Announcement ID: openSUSE-SU-2020:1679-1 Rating: critical References: 1172186 Cross-References: CVE-2020-8165 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:1032-1 Rating: important References: 1173107 1173187 1173188 1173251 1173254 1173292 Cross-References: CVE-2020-6509 Affected Products: openSUSE Backports SLE-15-SP2 An update that solves one vulnerability an...