7850 matches found
freetype: Fixed several off-by-one / length checks missing (important)
This freetype2 update fixes sign extension problems and missing length checks. This issue was used in one of the last jailbreakme exploits for Apple iPhone/iPad products. CVE-2011-0226...
Security update for zlib (important)
openSUSE Security Update: Security update for zlib Announcement ID: openSUSE-SU-2022:2947-1 Rating: important References: 1202175 Cross-References: CVE-2022-37434 CVSS scores: CVE-2022-37434 NVD : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-37434 SUSE: 8.1...
Security update for seamonkey (important)
openSUSE Security Update: Security update for seamonkey Announcement ID: openSUSE-SU-2022:0150-1 Rating: important References: 1194735 Cross-References: CVE-2021-45417 CVSS scores: CVE-2021-45417 SUSE: 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.3 An update...
Security update for nodejs12 (moderate)
openSUSE Security Update: Security update for nodejs12 Announcement ID: openSUSE-SU-2022:0113-1 Rating: moderate References: 1194511 1194512 1194513 1194514 1198204 Cross-References: CVE-2021-44531 CVE-2021-44532 CVE-2021-44533 CVE-2022-21824 CVE-2022-24191 CVSS scores: CVE-2021-44531 NVD : 7.4...
Security update for openvpn (important)
openSUSE Security Update: Security update for openvpn Announcement ID: openSUSE-SU-2022:1029-1 Rating: important References: 1197341 Cross-References: CVE-2022-0547 CVSS scores: CVE-2022-0547 SUSE: 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: openSUSE Leap 15.3 openSUSE Lea...
Security update for frr (important)
openSUSE Security Update: Security update for frr Announcement ID: openSUSE-SU-2022:0901-1 Rating: important References: 1180217 1196503 1196504 1196505 1196506 1196507 Cross-References: CVE-2022-26125 CVE-2022-26126 CVE-2022-26127 CVE-2022-26128 CVE-2022-26129 CVSS scores: CVE-2022-26125 NVD : 7...
Security update for php7 (moderate)
openSUSE Security Update: Security update for php7 Announcement ID: openSUSE-SU-2022:0699-1 Rating: moderate References: 1038980 Cross-References: CVE-2017-8923 CVSS scores: CVE-2017-8923 NVD : 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2017-8923 SUSE: 5.3...
Security update for expat (important)
openSUSE Security Update: Security update for expat Announcement ID: openSUSE-SU-2022:0178-1 Rating: important References: 1194251 1194362 1194474 1194476 1194477 1194478 1194479 1194480 Cross-References: CVE-2021-45960 CVE-2021-46143 CVE-2022-22822 CVE-2022-22823 CVE-2022-22824 CVE-2022-22825...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:1460-1 Rating: important References: 1065729 1085030 1100416 1129735 1152489 1154353 1156395 1157177 1167773 1172073 1173604 1176940 1184673 1185762 1186109 1187167 1188563 1188876 1188983 1188985...
Security update for ncurses (moderate)
openSUSE Security Update: Security update for ncurses Announcement ID: openSUSE-SU-2021:3490-1 Rating: moderate References: 1190793 Cross-References: CVE-2021-39537 CVSS scores: CVE-2021-39537 SUSE: 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Leap 15.3 An update...
Security update for transfig (moderate)
openSUSE Security Update: Security update for transfig Announcement ID: openSUSE-SU-2021:1311-1 Rating: moderate References: 1143650 1159130 1159293 1161698 1186329 Cross-References: CVE-2019-14275 CVE-2019-19555 CVE-2019-19746 CVE-2019-19797 CVE-2021-3561 CVSS scores: CVE-2019-14275 NVD : 5.5...
Security update for xerces-c (important)
openSUSE Security Update: Security update for xerces-c Announcement ID: openSUSE-SU-2021:2958-1 Rating: important References: 1159552 Cross-References: CVE-2018-1311 CVSS scores: CVE-2018-1311 NVD : 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2018-1311 SUSE: 8.1...
Security update for gstreamer-plugins-good (moderate)
openSUSE Security Update: Security update for gstreamer-plugins-good Announcement ID: openSUSE-SU-2021:1230-1 Rating: moderate References: 1184735 1184739 Cross-References: CVE-2021-3497 CVE-2021-3498 CVSS scores: CVE-2021-3497 NVD : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2021-3497...
Security update for python39 (important)
openSUSE Security Update: Security update for python39 Announcement ID: openSUSE-SU-2021:2940-1 Rating: important References: 1183858 1185588 1185706 Cross-References: CVE-2021-29921 CVSS scores: CVE-2021-29921 NVD : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-29921 SUSE: 8.6...
Security update for curl (moderate)
openSUSE Security Update: Security update for curl Announcement ID: openSUSE-SU-2021:1762-1 Rating: moderate References: 1186114 SLE-17956 Cross-References: CVE-2021-22898 CVSS scores: CVE-2021-22898 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2021-22898 SUSE: 5.3...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2021:0873-1 Rating: important References: 1043990 1055117 1065729 1152457 1152489 1155518 1156395 1167260 1167574 1168838 1174416 1174426 1175995 1178089 1179243 1179851 1180846 1181161 1182613 1183063...
Security update for python-httplib2 (moderate)
openSUSE Security Update: Security update for python-httplib2 Announcement ID: openSUSE-SU-2021:0796-1 Rating: moderate References: 1171998 1182053 Cross-References: CVE-2020-11078 CVE-2021-21240 CVSS scores: CVE-2020-11078 NVD : 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N CVE-2020-11078 SUS...
Security update for gnutls (moderate)
openSUSE Security Update: Security update for gnutls Announcement ID: openSUSE-SU-2020:1724-1 Rating: moderate References: 1176086 1176181 1176671 Cross-References: CVE-2020-24659 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has two fixes is now available...
Security update for libqt5-qtbase (important)
openSUSE Security Update: Security update for libqt5-qtbase Announcement ID: openSUSE-SU-2020:1568-1 Rating: important References: 1172515 1176315 Cross-References: CVE-2020-17507 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available...
Security update for jasper (moderate)
openSUSE Security Update: Security update for jasper Announcement ID: openSUSE-SU-2020:1517-1 Rating: moderate References: 1010979 1010980 1020451 1020456 1020458 1020460 1045450 1057152 1088278 1114498 1115637 1117328 1120805 1120807 Cross-References: CVE-2016-9398 CVE-2016-9399 CVE-2017-14132...
Security update for curl (moderate)
openSUSE Security Update: Security update for curl Announcement ID: openSUSE-SU-2020:1359-1 Rating: moderate References: 1175109 Cross-References: CVE-2020-8231 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for curl fixes t...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:1309-1 Rating: important References: 1175757 Cross-References: CVE-2020-6558 CVE-2020-6559 CVE-2020-6560 CVE-2020-6561 CVE-2020-6562 CVE-2020-6563 CVE-2020-6564 CVE-2020-6565 CVE-2020-6566 CVE-2020-6567...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:1306-1 Rating: important References: 1175757 Cross-References: CVE-2020-6558 CVE-2020-6559 CVE-2020-6560 CVE-2020-6561 CVE-2020-6562 CVE-2020-6563 CVE-2020-6564 CVE-2020-6565 CVE-2020-6566 CVE-2020-6567...
Security update for LibVNCServer (important)
openSUSE Security Update: Security update for LibVNCServer Announcement ID: openSUSE-SU-2020:1056-1 Rating: important References: 1173477 1173691 1173694 1173700 1173701 1173743 1173874 1173875 1173876 1173880 Cross-References: CVE-2017-18922 CVE-2018-21247 CVE-2019-20839 CVE-2019-20840...
Security update for mozilla-nss (moderate)
openSUSE Security Update: Security update for mozilla-nss Announcement ID: openSUSE-SU-2020:0953-1 Rating: moderate References: 1168669 1173032 Cross-References: CVE-2020-12402 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available...
Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork (moderate)
openSUSE Security Update: Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork Announcement ID: openSUSE-SU-2020:0846-1 Rating: moderate References: 1172377 Cross-References: CVE-2020-13401 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerabilit...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:0832-1 Rating: important References: 1170107 1171910 1171975 1172496 Cross-References: CVE-2020-6463 CVE-2020-6465 CVE-2020-6466 CVE-2020-6467 CVE-2020-6468 CVE-2020-6469 CVE-2020-6470 CVE-2020-6471...
Security update for squid (important)
openSUSE Security Update: Security update for squid Announcement ID: openSUSE-SU-2020:0623-1 Rating: important References: 1162689 1162691 1167373 1169659 1170313 Cross-References: CVE-2019-12519 CVE-2019-12521 CVE-2019-12528 CVE-2019-18860 CVE-2020-11945 CVE-2020-8517 Affected Products: openSUSE...
Security update for rubygem-rack (moderate)
openSUSE Security Update: Security update for rubygem-rack Announcement ID: openSUSE-SU-2020:0214-1 Rating: moderate References: 1114828 1116600 1159548 Cross-References: CVE-2018-16471 CVE-2019-16782 Affected Products: openSUSE Leap 15.1 An update that solves two vulnerabilities and has one erra...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2019:1902-1 Rating: important References: 1145242 Cross-References: CVE-2019-5867 CVE-2019-5868 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Description:This...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2019:1903-1 Rating: important References: 1145242 Cross-References: CVE-2019-5867 CVE-2019-5868 Affected Products: openSUSE Leap 15.0 An update that fixes two vulnerabilities is now available. Description:This...
Security update for kconfig, kdelibs4 (important)
openSUSE Security Update: Security update for kconfig, kdelibs4 Announcement ID: openSUSE-SU-2019:1851-1 Rating: important References: 1144600 Cross-References: CVE-2019-14744 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 openSUSE Backports SLE-15 SUSE Package Hub for SUSE Linux...
Security update for gnutls (moderate)
This update for gnutls fixes the following security issues: - Improved mitigations against Lucky 13 class of attacks - CVE-2018-10846: "Just in Time" PRIME + PROBE cache-based side channel attack can lead to plaintext recovery bsc1105460 - CVE-2018-10845: HMAC-SHA-384 vulnerable to Lucky thirteen...
Security update for chromium (important)
This update to Chromium 58.0.3029.81 fixes the following security issues bsc1035103: - CVE-2017-5057: Type confusion in PDFium - CVE-2017-5058: Heap use after free in Print Preview - CVE-2017-5059: Type confusion in Blink - CVE-2017-5060: URL spoofing in Omnibox - CVE-2017-5061: URL spoofing in...
Security update for python-pycrypto (important)
This update for python-pycrypto fixes the following issues: - A heap buffer overflow in the AES module was fixed that could have lead to remote code execution, if the mode of operation can be specified from the outside CVE-2013-7459, boo1017420...
Security update for xen (important)
This updates xen to version 4.4.406 to fix the following issues: - An unprivileged user in a guest could gain guest could escalate privilege to that of the guest kernel, if it had could invoke the instruction emulator. Only 64-bit x86 HVM guest were affected. Linux guest have not been vulnerable...
Security update for xen (important)
xen was updated to version 4.7.1 to fix 17 security issues. These security issues were fixed: - CVE-2016-9637: ioport array overflow allowing a malicious guest administrator can escalate their privilege to that of the host bsc1011652. - CVE-2016-9386: x86 null segments were not always treated as...
Security update for Mozilla Firefox, Thunderbird and NSS (important)
This update to Mozilla Firefox 50.0.2, Thunderbird 45.5.1 and NSS 3.16.2 fixes a number of security issues. The following vulnerabilities were fixed in Mozilla Firefox MFSA 2016-89: - CVE-2016-5296: Heap-buffer-overflow WRITE in rasterizeedges1 bmo1292443 - CVE-2016-5292: URL parsing causes crash...
Security update for curl (important)
This update for curl fixes the following security issues: - CVE-2016-8624: invalid URL parsing with '' bsc1005646 - CVE-2016-8623: Use-after-free via shared cookies bsc1005645 - CVE-2016-8622: URL unescape heap overflow via integer truncation bsc1005643 - CVE-2016-8621: curlgetdate read out of...
Security update for bind (critical)
The nameserver bind was updated to fix a remote denial of service vulnerability, where a crafted packet could cause the nameserver to abort. CVE-2016-2776, bsc1000362 This update was imported from the SUSE:SLE-12-SP1:Update update project...
Security update for the Linux Kernel (important)
The openSUSE 13.2 kernel was updated to fix various bugs and security issues. The following security bugs were fixed: - CVE-2016-1583: Prevent the usage of mmap when the lower file system does not allow it. This could have lead to local privilege escalation when ecryptfs-utils was installed and...
Security update for java-1_7_0-openjdk (important)
This update for java-170-openjdk to version 2.6.6 fixes five security issues. These security issues were fixed: - CVE-2016-0686: Ensure thread consistency bsc976340. - CVE-2016-0687: Better byte behavior bsc976340. - CVE-2016-0695: Make DSA more fair bsc976340. - CVE-2016-3425: Better buffering o...
Security update for the Linux Kernel (important)
The openSUSE 13.2 kernel was updated to receive various security and bugfixes. Following security bugs were fixed: CVE-2015-3290: arch/x86/entry/entry64.S in the Linux kernel on the x8664 platform improperly relied on espfix64 during nested NMI processing, which allowed local users to gain...
kernel: security and bugfix update (important)
The Linux kernel was updated to fix security issues and bugs. Security issues fixed: CVE-2014-3153: The futexrequeue function in kernel/futex.c in the Linux kernel did not ensure that calls have two different futex addresses, which allowed local users to gain privileges via a crafted FUTEXREQUEUE...
java-1_6_0-openjdk: update to 1.12.4 (important)
java-160-openjdk aka IcedTea was updated to 1.12.4 bnc807487 - S8007014, CVE-2013-0809: Improve image handling - S8007675, CVE-2013-1493: Improve color conversion...
security update to Firefox 17.0 and other Mozilla based packages (important)
update to Firefox/Thunderbird 17.0 and Seamonkey 2.14 bnc790140 MFSA 2012-91/CVE-2012-5842/CVE-2012-5843 Miscellaneous memory safety hazards MFSA 2012-92/CVE-2012-4202 bmo758200 Buffer overflow while rendering GIF images MFSA 2012-93/CVE-2012-4201 bmo747607 evalInSanbox location context incorrect...
kernel: security and bugfix update (important)
This kernel update to 3.4.11 fixes various bugs and security issues. The changes up to 3.4.11 contain both security and bugfixes and are not explicitly listed here. Following security issues were fixed: CVE-2012-3520: Force passing credentials, otherwise local services could be fooled to assume...
rubygem-actionpack/activerecord-2_3 (important)
3 Security issues were fixed in rails 2.3 core components. 2 NULL query issues where fixed in the actionpack gem. 1 SQL injection was fixed in the activerecord gem...
apache2: Fixed several security issues (important)
This update fixes several security issues in the Apache webserver. The patch for the ByteRange remote denial of service attack CVE-2011-3192 was refined and the configuration options used by upstream were added. Introduce new config option: Allow MaxRanges Number of ranges requested, if exceeded,...
Security update for the Linux Kernel (important)
openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2022:2549-1 Rating: important References: 1065729 1179195 1180814 1184924 1185762 1192761 1193629 1194013 1195504 1195775 1196901 1197362 1197754 1198020 1198924 1199482 1199487 1199489 1199657 1200217...