7585 matches found
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:2202-1 Rating: important References: 1152489 1154353 1174978 1176447 1176771 1178134 1178612 1179610 1183712 1184259 1184436 1184631 1185195 1185570 1185589 1185675 1185701 1186155 1186286 1186463...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:0532-1 Rating: important References: 1152472 1152489 1153274 1154353 1155518 1156256 1159280 1160634 1167773 1168777 1169514 1169709 1171295 1173485 1177326 1178163 1178330 1179454 1180197 1180980...
Security update for grub2 (important)
openSUSE Security Update: Security update for grub2 Announcement ID: openSUSE-SU-2021:0462-1 Rating: important References: 1175970 1176711 1177883 1179264 1179265 1182057 1182262 1182263 1183073 Cross-References: CVE-2020-14372 CVE-2020-25632 CVE-2020-25647 CVE-2020-27749 CVE-2020-27779...
Security update for java-1_8_0-openjdk (moderate)
openSUSE Security Update: Security update for java-180-openjdk Announcement ID: openSUSE-SU-2021:0374-1 Rating: moderate References: 1181239 Cross-References: CVE-2020-14803 CVSS scores: CVE-2020-14803 NVD : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2020-14803 SUSE: 5.3...
Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork (important)
openSUSE Security Update: Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork Announcement ID: openSUSE-SU-2021:0278-1 Rating: important References: 1174075 1176708 1178801 1178969 1180243 1180401 1181730 1181732 Cross-References: CVE-2020-15257 CVE-2021-21284...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2020:2193-1 Rating: important References: 1050242 1050536 1050545 1056653 1056657 1056787 1064802 1066129 1103990 1103992 1104389 1104393 1109837 1110096 1111666 1112178 1112374 1118657 1122971 1136460...
Security update for libvirt (important)
openSUSE Security Update: Security update for libvirt Announcement ID: openSUSE-SU-2020:1777-1 Rating: important References: 1173157 1174139 1174955 1175465 1176430 1177155 Cross-References: CVE-2020-15708 CVE-2020-25637 Affected Products: openSUSE Leap 15.2 An update that solves two...
Security update for singularity (important)
openSUSE Security Update: Security update for singularity Announcement ID: openSUSE-SU-2020:1769-1 Rating: important References: 1177901 Cross-References: CVE-2020-15229 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...
Security update for libqt5-qtbase (important)
openSUSE Security Update: Security update for libqt5-qtbase Announcement ID: openSUSE-SU-2020:1568-1 Rating: important References: 1172515 1176315 Cross-References: CVE-2020-17507 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available...
Security update for MozillaFirefox (important)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2020:1555-1 Rating: important References: 1167976 1173986 1174420 1176756 Cross-References: CVE-2020-15673 CVE-2020-15676 CVE-2020-15677 CVE-2020-15678 Affected Products: openSUSE Leap 15.1 An update that...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:1542-1 Rating: important References: 1176791 Cross-References: CVE-2020-15960 CVE-2020-15961 CVE-2020-15962 CVE-2020-15963 CVE-2020-15964 CVE-2020-15965 CVE-2020-15966 Affected Products: openSUSE Backports...
Security update for jasper (moderate)
openSUSE Security Update: Security update for jasper Announcement ID: openSUSE-SU-2020:1523-1 Rating: moderate References: 1010979 1010980 1020451 1020456 1020458 1020460 1045450 1057152 1088278 1114498 1115637 1117328 1120805 1120807 Cross-References: CVE-2016-9398 CVE-2016-9399 CVE-2017-14132...
Security update for gettext-runtime (moderate)
openSUSE Security Update: Security update for gettext-runtime Announcement ID: openSUSE-SU-2020:1270-1 Rating: moderate References: 1106843 1113719 941629 Cross-References: CVE-2018-18751 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has two fixes is now...
Security update for cni-plugins (moderate)
openSUSE Security Update: Security update for cni-plugins Announcement ID: openSUSE-SU-2020:1050-1 Rating: moderate References: 1172410 Cross-References: CVE-2020-10749 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for...
Security update for ant (moderate)
openSUSE Security Update: Security update for ant Announcement ID: openSUSE-SU-2020:1022-1 Rating: moderate References: 1171696 Cross-References: CVE-2020-1945 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for ant fixes the...
Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork (moderate)
openSUSE Security Update: Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork Announcement ID: openSUSE-SU-2020:0846-1 Rating: moderate References: 1172377 Cross-References: CVE-2020-13401 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerabilit...
Security update for squid (important)
openSUSE Security Update: Security update for squid Announcement ID: openSUSE-SU-2020:0623-1 Rating: important References: 1162689 1162691 1167373 1169659 1170313 Cross-References: CVE-2019-12519 CVE-2019-12521 CVE-2019-12528 CVE-2019-18860 CVE-2020-11945 CVE-2020-8517 Affected Products: openSUSE...
Security update for permissions (moderate)
openSUSE Security Update: Security update for permissions Announcement ID: openSUSE-SU-2020:0511-1 Rating: moderate References: 1168364 Affected Products: openSUSE Leap 15.1 An update that contains security fixes can now be installed. Description: This update for permissions fixes the following...
Security update for weechat (important)
openSUSE Security Update: Security update for weechat Announcement ID: openSUSE-SU-2020:0248-1 Rating: important References: 1163889 Cross-References: CVE-2020-8955 Affected Products: openSUSE Leap 15.1 openSUSE Backports SLE-15-SP1 openSUSE Backports SLE-15 An update that fixes one vulnerability...
Security update for rubygem-rack (moderate)
openSUSE Security Update: Security update for rubygem-rack Announcement ID: openSUSE-SU-2020:0214-1 Rating: moderate References: 1114828 1116600 1159548 Cross-References: CVE-2018-16471 CVE-2019-16782 Affected Products: openSUSE Leap 15.1 An update that solves two vulnerabilities and has one erra...
Security update for sarg (important)
openSUSE Security Update: Security update for sarg Announcement ID: openSUSE-SU-2020:0140-1 Rating: important References: 1156643 Cross-References: CVE-2019-18932 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This update for...
Security update for libtomcrypt (moderate)
openSUSE Security Update: Security update for libtomcrypt Announcement ID: openSUSE-SU-2019:2514-1 Rating: moderate References: 1153433 Cross-References: CVE-2019-17362 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...
Security update for MozillaThunderbird (important)
openSUSE Security Update: Security update for MozillaThunderbird Announcement ID: openSUSE-SU-2019:1664-1 Rating: important References: 1130694 1133267 1135824 1137595 1138872 Cross-References: CVE-2018-18511 CVE-2019-11691 CVE-2019-11692 CVE-2019-11693 CVE-2019-11694 CVE-2019-11698 CVE-2019-1170...
Security update for mozilla-nss (moderate)
This update for mozilla-nss to version 3.36.6 fixes the following issues: Security issues fixed: - CVE-2018-12384: NSS responded to an SSLv2-compatible ClientHello with a ServerHello that had an all-zero random bmo1483128, boo1106873 - CVE-2018-12404: Cache side-channel variant of the...
Security update for ant (moderate)
This update for ant fixes the following issues: Security issue fixed: - CVE-2018-10886: Fixed a path traversal vulnerability in malformed zip file paths, which allowed arbitrary file writes and could potentially lead to code execution bsc1100053 This update was imported from the SUSE:SLE-15:Updat...
Security update for rsyslog (moderate)
This update for rsyslog fixes the following security issue: - CVE-2015-3243: Prevent weak permissions for generated log files, which allowed local users to obtain sensitive information bsc935393. This update was imported from the SUSE:SLE-15:Update update project...
Security update for lame (important)
This update for lame fixes the following issues: Lame was updated to version 3.100: Improved detection of MPEG audio data in RIFF WAVE files. sf3545112 Invalid sampling detection New switch --gain decibel, range -20.0 to +12.0, a more convenient way to apply Gain adjustment in decibels, than the...
Security update for kernel-firmware (important)
This update for kernel-firmware fixes the following issues: - Add microcodeamdfam17h.bin bsc1068032 CVE-2017-5715 This new firmware disables branch prediction on AMD family 17h processor to mitigate a attack on the branch predictor that could lead to information disclosure from e.g. kernel memory...
Security update for webkit2gtk3 (important)
This update for webkit2gtk3 to version 2.18.0 fixes the following issues: These security issues were fixed: - CVE-2017-7039: An issue was fixed that allowed remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted web site...
Security update for xen (important)
This update for xen fixes several issues: These security issues were fixed: - CVE-2017-5526: The ES1370 audio device emulation support was vulnerable to a memory leakage issue allowing a privileged user inside the guest to cause a DoS and/or potentially crash the Qemu process on the host bsc10597...
Security update for the Linux Kernel (important)
The openSUSE Leap 42.2 kernel was updated to 4.4.72 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-1000364: An issue was discovered in the size of the stack guard page on Linux, specifically a 4k stack guard page is not sufficiently large and can be...
Security update for icinga (important)
This update for icinga includes various upstream fixes and the following security security fixes: - icinga was updated to version 1.14.0 - the classic-UI was vulnerable to a cross site scripting attack CVE-2015-8010, boo952777 - A user with nagios privileges could have gained root privileges by...
Security update for the Linux Kernel (important)
The openSUSE 13.1 kernel was updated to fix two security issues. The following security bugs were fixed: - CVE-2016-9576: A use-after-free vulnerability in the SCSI generic driver allows users with write access to /dev/sg or /dev/bsg to elevate their privileges bsc1013604. - CVE-2016-9794: A...
Security update for qemu (important)
This update for qemu fixes the following issues: - Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE12-SP1 - Change package post script udevadm trigger calls to be device specific bsc1002116 - Address various security/stability issues Fix OOB access in...
Security update for mariadb (important)
This mariadb update to version 10.0.28 fixes the following issues bsc1008318: Security fixes: - CVE-2016-8283: Unspecified vulnerability in subcomponent Types bsc1005582 - CVE-2016-7440: Unspecified vulnerability in subcomponent Encryption bsc1005581 - CVE-2016-5629: Unspecified vulnerability in...
Security update for vim (important)
This update for vim fixes the following security issues: - Fixed CVE-2016-1248 an arbitrary command execution vulnerability bsc1010685...
Security update for mariadb (important)
mariadb was updated to version 10.0.25 to fix 25 security issues. These security issues were fixed: - CVE-2016-0505: Unspecified vulnerability allowed remote authenticated users to affect availability via unknown vectors related to Options bsc980904. - CVE-2016-0546: Unspecified vulnerability...
Security update for ImageMagick (important)
This update for ImageMagick fixes the following issues: Security issues fixed: - Several coders were vulnerable to remote code execution attacks, these coders have now been disabled by default but can be re-enabled by editing "/etc/ImageMagick-/policy.xml" bsc978061 - CVE-2016-3714: Insufficient...
Security update for the Linux Kernel (important)
The openSUSE Leap 42.1 kernel was updated to 4.1.20 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2015-1339: A memory leak in cuse could be used to exhaust kernel memory. bsc969356. - CVE-2015-7799: The slhcinit function in drivers/net/slip/slhc.c in the...
Security update for the Linux Kernel (important)
The openSUSE 13.2 kernel was updated to receive various security and bugfixes. Following security bugs were fixed: - CVE-2015-3290: A flaw was found in the way the Linux kernels nested NMI handler and espfix64 functionalities interacted during NMI processing. A local, unprivileged user could use...
Security update for java-1_7_0-openjdk (important)
OpenJDK was updated to 2.5.4 - OpenJDK 7u75 to fix security issues and bugs: Security fixes - S8046656: Update protocol support - S8047125, CVE-2015-0395: ref More phantom object references - S8047130: Fewer escapes from escape analysis - S8048035, CVE-2015-0400: Ensure proper proxy protocols -...
bash (important)
The command-line shell 'bash' evaluates environment variables, which allows the injection of characters and might be used to access files on the system in some circumstances CVE-2014-7169. Please note that this issue is different from a previously fixed vulnerability tracked under CVE-2014-6271 a...
kernel: security and bugfix update (important)
The Linux kernel was updated to fix various bugs and security issues: CVE-2013-0871: Race condition in the ptrace functionality in the Linux kernel allowed local users to gain privileges via a PTRACESETREGS ptrace system call in a crafted application, as demonstrated by ptracedeath. CVE-2013-0160...
java-1_7_0-openjdk: update to 2.3.6 (critical)
java-170-openjdk was updated to icedtea-2.3.6 bnc803379 containing various security and bugfixes: Security fixes - S6563318, CVE-2013-0424: RMI data sanitization - S6664509, CVE-2013-0425: Add logging context - S6664528, CVE-2013-0426: Find log level matching its name or value given at constructi...
ruby on rails to 2.3.16 (important)
This update updates the RubyOnRails 2.3 stack to 2.3.16, also this update updates the RubyOnRails 3.2 stack to 3.2.11. Security and bugfixes were done, foremost: CVE-2013-0333: A JSON sql/code injection problem was fixed. CVE-2012-5664: A SQL Injection Vulnerability in Active Record was fixed...
MozillaFirefox: update to Firefox 16.0.1 (important)
The Mozilla suite received following security updates bnc783533: Mozilla Firefox was updated to 16.0.1. Mozilla Seamonkey was updated to 2.13.1. Mozilla Thunderbird was updated to 16.0.1. Mozilla XULRunner was updated to 16.0.1. MFSA 2012-88/CVE-2012-4191 bmo798045 Miscellaneous memory safety...
java-1_6_0-openjdk: critical (critical)
This version upgrade of java-160-openjdk fixes multiple security flaws: - S7079902, CVE-2012-1711: Refine CORBA data models - S7143606, CVE-2012-1717: File.createTempFile should be improved for temporary files created by the platform. - S7143614, CVE-2012-1716: SynthLookAndFeel stability...
libvorbis: fixed a heap based buffer overflow (important)
Specially crafted ogg files could cause a heap-based buffer overflow in the vorbis audio compression library that could potentially be exploited by attackers to cause a crash or execute arbitrary code CVE-2012-0444...
apache2: Fixed several security issues (important)
This update fixes several security issues in the Apache webserver. The patch for the ByteRange remote denial of service attack CVE-2011-3192 was refined and the configuration options used by upstream were added. Introduce new config option: Allow MaxRanges Number of ranges requested, if exceeded,...
Security update for opera (important)
openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2022:10130-1 Rating: important References: Cross-References: CVE-2022-3196 CVE-2022-3197 CVE-2022-3198 CVE-2022-3199 CVE-2022-3200 CVE-2022-3201 Affected Products: openSUSE Leap 15.3:NonFree An update that fixes 6...