7850 matches found
Security update for tomcat (important)
openSUSE Security Update: Security update for tomcat Announcement ID: openSUSE-SU-2020:1051-1 Rating: important References: 1173389 Cross-References: CVE-2020-11996 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for tomcat...
Security update for rubygem-puma (moderate)
openSUSE Security Update: Security update for rubygem-puma Announcement ID: openSUSE-SU-2020:0990-1 Rating: moderate References: 1172175 1172176 Cross-References: CVE-2020-11076 CVE-2020-11077 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available...
Security update for LibVNCServer (important)
openSUSE Security Update: Security update for LibVNCServer Announcement ID: openSUSE-SU-2020:0978-1 Rating: important References: 1173477 Cross-References: CVE-2017-18922 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for...
Security update for rmt-server (moderate)
openSUSE Security Update: Security update for rmt-server Announcement ID: openSUSE-SU-2020:0836-1 Rating: moderate References: 1165548 Affected Products: openSUSE Leap 15.1 An update that contains security fixes can now be installed. Description: This update for rmt-server to version 2.5.7 fixes...
Security update for xen (important)
openSUSE Security Update: Security update for xen Announcement ID: openSUSE-SU-2020:0818-1 Rating: important References: 1027519 1157490 1167007 1172205 Cross-References: CVE-2020-0543 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has three fixes is now...
Security update for xawtv (moderate)
openSUSE Security Update: Security update for xawtv Announcement ID: openSUSE-SU-2020:0784-1 Rating: moderate References: 1171655 Cross-References: CVE-2020-13696 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for xawtv fixe...
Security update for axel (moderate)
openSUSE Security Update: Security update for axel Announcement ID: openSUSE-SU-2020:0778-1 Rating: moderate References: 1172159 Cross-References: CVE-2020-13614 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for axel fixes...
Security update for mailman (moderate)
openSUSE Security Update: Security update for mailman Announcement ID: openSUSE-SU-2020:0764-1 Rating: moderate References: 1171363 682920 Cross-References: CVE-2020-12108 Affected Products: openSUSE Backports SLE-15-SP1 An update that solves one vulnerability and has one errata is now available...
Security update for ucode-intel (important)
openSUSE Security Update: Security update for ucode-intel Announcement ID: openSUSE-SU-2019:2620-1 Rating: important References: 1157004 Affected Products: openSUSE Leap 15.0 An update that contains security fixes can now be installed. Description: This update for ucode-intel fixes the following...
Security update for dosbox (important)
openSUSE Security Update: Security update for dosbox Announcement ID: openSUSE-SU-2019:1905-1 Rating: important References: 1140254 Cross-References: CVE-2019-12594 CVE-2019-7165 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 openSUSE Backports SLE-15 An update that fixes two...
Security update for xen (important)
This update for xen fixes the following issues: Update to Xen 4.10.2 bug fix release bsc1027519. Security vulnerabilities fixed: - CVE-2018-19961, CVE-2018-19962: Fixed an issue related to insufficient TLB flushing with AMD IOMMUs, which potentially allowed a guest to escalate its privileges, may...
Security update for go (important)
This update for go fixes the following issues: - golang: arbitrary command execution via VCS path bsc1081495, CVE-2018-7187 - Make profile.d/go.sh no longer set GOROOT=, in order to make switching between versions no longer break. This ends up removing the need for go.sh entirely because GOPATH i...
Security update for obs-service-refresh_patches (moderate)
This update for obs-service-refreshpatches fixes the following security issue: - An attacker creating a specially formated archive could have tricked the service in deleting directories that shouldn't be deleted boo1108189...
Security update for nextcloud (moderate)
This update for nextcloud to version 13.0.5 fixes the following issues: Security issues fixed: - CVE-2018-3780: Fixed a missing sanitization of search results for an autocomplete field that could lead to a stored XSS requiring user-interaction. The missing sanitization only affected user names,...
Security update for clamav (moderate)
This update for clamav to version 0.100.1 fixes the following issues: The following security vulnerabilities were addressed: - CVE-2018-0360: HWP integer overflow, infinite loop vulnerability bsc1101410 - CVE-2018-0361: PDF object length check, unreasonably long time to parse relatively small fil...
Security update for znc (moderate)
This update for znc fixes the following issues: - Update to version 1.7.1 CVE-2018-14055: non-admin user could gain admin privileges and shell access by injecting values into znc.conf bnc1101281 CVE-2018-14056: path traversal in HTTP handler via ../ in a web skin name. bnc1101280 - Update to...
Security update for openssl-1_0_0 (moderate)
This update for openssl-100 fixes the following issues: - CVE-2018-0732: During key agreement in a TLS handshake using a DHE based ciphersuite a malicious server could have sent a very large prime value to the client. This caused the client to spend an unreasonably long period of time generating ...
Security update for singularity (moderate)
This update for singularity fixes the following issues: - CVE-2018-12021: A race condition might have allowed malicious users to bypass directory image restrictions, like mounting the host root filesystem as a container image boo1100333...
Security update for nodejs6 (moderate)
This update for nodejs6 to version 6.14.3 fixes the following issues: The following security vulnerability was addressed: - Fixed a denial of service DoS vulnerability in Buffer.fill, which could hang when being called CVE-2018-7167, bsc1097375. The following other changes were made: - Use absolu...
Security update for slurm (moderate)
This update for slurm to version 17.11.7 fixes the following issues: This security issue was fixed: - CVE-2018-10995: Ensure correct handling of user names and group ids bsc1095508. These non-security issues were fixed: - CRAY - Add slurmsmwd to the contribs/cray dir - PMIX - Added the direct...
Security update for dpdk-thunderxdpdk (moderate)
This update fixes the following issues: - CVE-2018-1059: The DPDK vhost-user interface did not check to verify that all the requested guest physical range was mapped and contiguous when performing Guest Physical Addresses to Host Virtual Addresses translations. This may have lead to a malicious...
Security update for wget (moderate)
This update for wget fixes the following issues: - CVE-2018-0494: Fixed a cookie injection vulnerability by checking for and joining continuation lines. bsc1092061 This update was imported from the SUSE:SLE-12:Update update project...
Security update for hdf5 (important)
This update for hdf5 fixes the following issues: - fix security issues arbitary code execution: CVE-2016-4330: H5TARRAY Code Execution boo1011201 CVE-2016-4331: H5ZNBIT Code Execution boo1011204 CVE-2016-4332: Shareable Message Type Code Execution boo1011205 CVE-2016-4333: Array index bounds issu...
Security update for kernel-firmware (important)
This update for kernel-firmware fixes the following issues: - Add microcodeamdfam17h.bin bsc1068032 CVE-2017-5715 This new firmware disables branch prediction on AMD family 17h processor to mitigate a attack on the branch predictor that could lead to information disclosure from e.g. kernel memory...
Security update for the Linux Kernel (important)
The openSUSE 42.2 kernel was updated to 4.4.42 stable release. The following security bugs were fixed: - CVE-2016-7117: Use-after-free vulnerability in the sysrecvmmsg function in net/socket.c in the Linux kernel allowed remote attackers to execute arbitrary code via vectors involving a recvmmsg...
Security update for openssl (important)
This update for openssl fixes the following issues: OpenSSL Security Advisory 22 Sep 2016 bsc999665 Severity: High OCSP Status Request extension unbounded memory growth CVE-2016-6304 bsc999666 Severity: Low Pointer arithmetic undefined behaviour CVE-2016-2177 bsc982575 Constant time flag not...
Security update for java-1_7_0-openjdk (important)
This update for java-170-openjdk fixes the following issues: - Update to 2.6.7 - OpenJDK 7u111 Security fixes - S8079718, CVE-2016-3458: IIOP Input Stream Hooking bsc989732 - S8145446, CVE-2016-3485: Perfect pipe placement Windows only bsc989734 - S8147771: Construction of static protection domai...
Update SSL CA certificates (important)
This updates includes the latest SSL root certificates trusted by Mozilla as of 2011-08-31. This includes removing the DigiNotar CA...
Security update for MozillaFirefox (moderate)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-42022-1 Rating: moderate References: 1038980 1191962 1191963 1192153 1192154 1192696 1195230 1195682 Cross-References: CVE-2017-8923 CVE-2021-23343 CVE-2021-32803 CVE-2021-32804 CVE-2021-3807 CVE-2021-3918...
Security update for ldns (moderate)
openSUSE Security Update: Security update for ldns Announcement ID: openSUSE-SU-2022:0675-1 Rating: moderate References: 1195057 1195058 Cross-References: CVE-2020-19860 CVE-2020-19861 CVSS scores: CVE-2020-19860 NVD : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVE-2020-19860 SUSE: 4.4...
Security update for webkit2gtk3 (important)
openSUSE Security Update: Security update for webkit2gtk3 Announcement ID: openSUSE-SU-2022:0182-2 Rating: important References: 1194019 Cross-References: CVE-2019-8766 CVE-2019-8782 CVE-2019-8808 CVE-2019-8815 CVE-2020-13753 CVE-2020-27918 CVE-2020-29623 CVE-2020-3902 CVE-2020-9802 CVE-2020-9803...
Security update for log4j (important)
openSUSE Security Update: Security update for log4j Announcement ID: openSUSE-SU-2021:4111-1 Rating: important References: 1193662 Cross-References: CVE-2021-4104 CVSS scores: CVE-2021-4104 SUSE: 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.3 An update that...
Security update for log4j (important)
openSUSE Security Update: Security update for log4j Announcement ID: openSUSE-SU-2021:4094-1 Rating: important References: 1193611 Cross-References: CVE-2021-44228 CVSS scores: CVE-2021-44228 NVD : 10 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H CVE-2021-44228 SUSE: 9.8...
Security update for tomcat (moderate)
openSUSE Security Update: Security update for tomcat Announcement ID: openSUSE-SU-2021:3672-1 Rating: moderate References: 1188278 1188279 1190558 Cross-References: CVE-2021-30640 CVE-2021-33037 CVE-2021-41079 CVSS scores: CVE-2021-30640 NVD : 6.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N...
Security update for MozillaFirefox (important)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2021:1367-1 Rating: important References: 1188891 1189547 1190269 1190274 1190710 1191332 Cross-References: CVE-2021-29980 CVE-2021-29981 CVE-2021-29982 CVE-2021-29983 CVE-2021-29984 CVE-2021-29985...
Security update for curl (moderate)
openSUSE Security Update: Security update for curl Announcement ID: openSUSE-SU-2021:3298-1 Rating: moderate References: 1190373 1190374 Cross-References: CVE-2021-22946 CVE-2021-22947 CVSS scores: CVE-2021-22946 SUSE: 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2021-22947 SUSE: 5.9...
Security update for MozillaFirefox (important)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2021:1184-1 Rating: important References: 1188891 SLE-18626 Cross-References: CVE-2021-29980 CVE-2021-29984 CVE-2021-29985 CVE-2021-29986 CVE-2021-29988 CVE-2021-29989 CVSS scores: CVE-2021-29980 SUSE: 7.5...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:1172-1 Rating: important References: 1189490 Cross-References: CVE-2021-30598 CVE-2021-30599 CVE-2021-30600 CVE-2021-30601 CVE-2021-30602 CVE-2021-30603 CVE-2021-30604 Affected Products: openSUSE Leap 15.2 An...
Security update for cpio (important)
openSUSE Security Update: Security update for cpio Announcement ID: openSUSE-SU-2021:2689-1 Rating: important References: 1189206 Cross-References: CVE-2021-38185 CVSS scores: CVE-2021-38185 SUSE: 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.3 An update tha...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:1076-1 Rating: important References: 1065729 1085224 1094840 1152472 1152489 1155518 1170511 1176940 1179243 1180092 1183871 1184114 1184804 1185308 1185791 1186206 1187215 1187585 1188036 1188062...
Security update for xstream (important)
openSUSE Security Update: Security update for xstream Announcement ID: openSUSE-SU-2021:0832-1 Rating: important References: 1184372 1184373 1184374 1184375 1184376 1184377 1184378 1184379 1184380 1184796 1184797 Cross-References: CVE-2021-21341 CVE-2021-21342 CVE-2021-21343 CVE-2021-21344...
Security update for webkit2gtk3 (important)
openSUSE Security Update: Security update for webkit2gtk3 Announcement ID: openSUSE-SU-2020:2304-1 Rating: important References: 1171531 1177087 1179122 1179451 Cross-References: CVE-2020-13543 CVE-2020-13584 CVE-2020-9948 CVE-2020-9951 CVE-2020-9983 Affected Products: openSUSE Leap 15.1 An updat...
Security update for samba (important)
openSUSE Security Update: Security update for samba Announcement ID: openSUSE-SU-2020:1819-1 Rating: important References: 1173902 1173994 1177613 Cross-References: CVE-2020-14318 CVE-2020-14323 CVE-2020-14383 Affected Products: openSUSE Leap 15.2 An update that fixes three vulnerabilities is now...
Security update for cifs-utils (moderate)
openSUSE Security Update: Security update for cifs-utils Announcement ID: openSUSE-SU-2020:1579-1 Rating: moderate References: 1152930 1174477 Cross-References: CVE-2020-14342 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available...
Security update for ghostscript (important)
openSUSE Security Update: Security update for ghostscript Announcement ID: openSUSE-SU-2020:1146-1 Rating: important References: 1174415 Cross-References: CVE-2020-15900 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for...
Security update for MozillaThunderbird (important)
openSUSE Security Update: Security update for MozillaThunderbird Announcement ID: openSUSE-SU-2020:0982-1 Rating: important References: 1173576 Cross-References: CVE-2020-12417 CVE-2020-12418 CVE-2020-12419 CVE-2020-12420 CVE-2020-12421 Affected Products: openSUSE Leap 15.2 An update that fixes 5...
Security update for unbound (important)
openSUSE Security Update: Security update for unbound Announcement ID: openSUSE-SU-2020:0912-1 Rating: important References: 1157268 1171889 Cross-References: CVE-2019-18934 CVE-2020-12662 CVE-2020-12663 Affected Products: openSUSE Leap 15.1 An update that fixes three vulnerabilities is now...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:0823-1 Rating: important References: 1170107 1171910 1171975 1172496 Cross-References: CVE-2020-6463 CVE-2020-6465 CVE-2020-6466 CVE-2020-6467 CVE-2020-6468 CVE-2020-6469 CVE-2020-6470 CVE-2020-6471...
Security update for sqliteodbc (important)
openSUSE Security Update: Security update for sqliteodbc Announcement ID: openSUSE-SU-2020:0612-1 Rating: important References: 1171041 Cross-References: CVE-2020-12050 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This upda...
Security update for exim (moderate)
openSUSE Security Update: Security update for exim Announcement ID: openSUSE-SU-2020:0491-1 Rating: moderate References: 1154183 1160726 Cross-References: CVE-2020-8015 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available. Description:...