Security update for the Linux Kernel (important)

The openSUSE 13.2 kernel was updated to fix various bugs and security issues. The following security bugs were fixed: - CVE-2016-1583: Prevent the usage of mmap when the lower file system does not allow it. This could have lead to local privilege escalation when ecryptfs-utils was installed and...

Security update for Chromium (important)

Chromium was updated to 52.0.2743.82 to fix the following security issues boo989901: - CVE-2016-1706: Sandbox escape in PPAPI - CVE-2016-1707: URL spoofing on iOS - CVE-2016-1708: Use-after-free in Extensions - CVE-2016-1709: Heap-buffer-overflow in sfntly - CVE-2016-1710: Same-origin bypass in...

Security update for ntp (important)

ntp was updated to fix five security issues. These security issues were fixed: - CVE-2016-4953: Bad authentication demobilizes ephemeral associations bsc982065. - CVE-2016-4954: Processing spoofed server packets bsc982066. - CVE-2016-4955: Autokey association reset bsc982067. - CVE-2016-4956:...

Security update for libopenssl0_9_8 (important)

This update for libopenssl098 fixes the following issues: - CVE-2016-2105: EVPEncodeUpdate overflow bsc977614 - CVE-2016-2106: EVPEncryptUpdate overflow bsc977615 - CVE-2016-2108: Memory corruption in the ASN.1 encoder bsc977617 - CVE-2016-2109: ASN.1 BIO excessive memory allocation bsc976942 -...

Security update for openssl (important)

This update for openssl fixes various security issues: Security issues fixed: - CVE-2016-0800 aka the "DROWN" attack bsc968046: OpenSSL was vulnerable to a cross-protocol attack that could lead to decryption of TLS sessions by using a server supporting SSLv2 and EXPORT cipher suites as a...

Security update for openssh (critical)

CVE-2016-0777: A malicious or compromised server could cause the OpenSSH client to expose part or all of the client's private key through the roaming feature bsc961642 - CVE-2016-0778: A malicious or compromised server could could trigger a buffer overflow in the OpenSSH client through the...

Security update for MozillaFirefox (important)

update to Firefox 40.0 bnc940806 Added protection against unwanted software downloads Suggested Tiles show sites of interest, based on categories from your recent browsing history Hello allows adding a link to conversations to provide context on what the conversation will be about New style for...

Security update for libressl (important)

libressl was updated to version 2.2.1 to fix 16 security issues. LibreSSL is a fork of OpenSSL. Because of that CVEs affecting OpenSSL often also affect LibreSSL. These security issues were fixed: - CVE-2014-3570: The BNsqr implementation in OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1...

Security update for the Linux Kernel (important)

The openSUSE 12.3 kernel was updated to fix security issues: This will be the final kernel update for openSUSE 13.2 during its lifetime, which ends January 4th 2015. CVE-2014-9322: A local privilege escalation in the x8664 32bit compatibility signal handling was fixed, which could be used by loca...

kernel: security and bugfix update (important)

The Linux kernel was updated to fix security issues and bugs. Security issues fixed: CVE-2014-3153: The futexrequeue function in kernel/futex.c in the Linux kernel did not ensure that calls have two different futex addresses, which allowed local users to gain privileges via a crafted FUTEXREQUEUE...

java-1_6_0-openjdk: update to 1.12.4 (important)

java-160-openjdk aka IcedTea was updated to 1.12.4 bnc807487 - S8007014, CVE-2013-0809: Improve image handling - S8007675, CVE-2013-1493: Improve color conversion...

rubygem-actionpack/activerecord-2_3 (important)

3 Security issues were fixed in rails 2.3 core components. 2 NULL query issues where fixed in the actionpack gem. 1 SQL injection was fixed in the activerecord gem...

update for chromium, v8 (important)

Chromium update to 21.0.1145 Fixed several issues around audio not playing with videos Crash Fixes Improvements to trackpad on Cr-48 Security Fixes bnc762481 - CVE-2011-3083: Browser crash with video + FTP - CVE-2011-3084: Load links from internal pages in their own process. - CVE-2011-3085: UI...

java-1_6_0-openjdk: Update to iced tea 1.11.1 b24 security release (important)

java-160-openjdk was updated to the b24 release, fixing multiple security issues: Security fixes - S7082299, CVE-2011-3571: Fix inAtomicReferenceArray - S7088367, CVE-2011-3563: Fix issues in java sound - S7110683, CVE-2012-0502: Issues with some KeyboardFocusManager method - S7110687,...

MozillaFirefox: Update to Firefox 3.6.20 (important)

Mozilla Firefox was updated to version 3.6.20. It fixes bugs and security issues. Following security issues were fixed: http://www.mozilla.org/security/announce/2011/mfsa2011-30.ht ml Mozilla Foundation Security Advisory 2011-30 MFSA 2011-30 Miscellaneous memory safety hazards Mozilla developers...

Security update for exim (important)

openSUSE Security Update: Security update for exim Announcement ID: openSUSE-SU-2022:10191-1 Rating: important References: 1204427 Cross-References: CVE-2022-3559 CVSS scores: CVE-2022-3559 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Backports SLE-15-SP3 An...

Security update for tomcat (important)

openSUSE Security Update: Security update for tomcat Announcement ID: openSUSE-SU-2022:0818-1 Rating: important References: 1195255 1196137 Cross-References: CVE-2022-23181 CVSS scores: CVE-2022-23181 NVD : 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-23181 SUSE: 7...

Security update for MozillaFirefox (important)

openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2022:0821-1 Rating: important References: 1196900 Cross-References: CVE-2022-26381 CVE-2022-26383 CVE-2022-26384 CVE-2022-26386 CVE-2022-26387 Affected Products: openSUSE Leap 15.3 openSUSE Leap 15.4 An upda...

Security update for opera (important)

openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2022:0077-1 Rating: important References: Cross-References: CVE-2022-0603 CVE-2022-0604 CVE-2022-0605 CVE-2022-0606 CVE-2022-0607 CVE-2022-0608 CVE-2022-0609 CVE-2022-0610 Affected Products: openSUSE Leap 15.3:NonFre...

Security update for go1.16 (important)

openSUSE Security Update: Security update for go1.16 Announcement ID: openSUSE-SU-2022:0724-1 Rating: important References: 1182345 1195834 1195835 1195838 Cross-References: CVE-2022-23772 CVE-2022-23773 CVE-2022-23806 CVSS scores: CVE-2022-23772 NVD : 7.5...

Security update for tiff (important)

openSUSE Security Update: Security update for tiff Announcement ID: openSUSE-SU-2022:0480-1 Rating: important References: 1071031 1154365 1182808 1182809 1182811 1182812 1190312 1194539 Cross-References: CVE-2017-17095 CVE-2019-17546 CVE-2020-19131 CVE-2020-35521 CVE-2020-35522 CVE-2020-35523...

Security update for mozilla-nss (important)

openSUSE Security Update: Security update for mozilla-nss Announcement ID: openSUSE-SU-2021:3934-1 Rating: important References: 1193170 Cross-References: CVE-2021-43527 CVSS scores: CVE-2021-43527 SUSE: 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.3 An...

Security update for opera (important)

openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2021:1489-1 Rating: important References: Cross-References: CVE-2021-37981 CVE-2021-37982 CVE-2021-37983 CVE-2021-37984 CVE-2021-37985 CVE-2021-37986 CVE-2021-37987 CVE-2021-37988 CVE-2021-37989 CVE-2021-37990...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:1392-1 Rating: important References: 1191844 Cross-References: CVE-2021-37981 CVE-2021-37982 CVE-2021-37983 CVE-2021-37984 CVE-2021-37985 CVE-2021-37986 CVE-2021-37987 CVE-2021-37988 CVE-2021-37989...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:1339-1 Rating: important References: 1190765 1191166 1191204 Cross-References: CVE-2021-37956 CVE-2021-37957 CVE-2021-37958 CVE-2021-37959 CVE-2021-37960 CVE-2021-37961 CVE-2021-37962 CVE-2021-37963...

Security update for nextcloud (important)

openSUSE Security Update: Security update for nextcloud Announcement ID: openSUSE-SU-2021:1255-1 Rating: important References: 1190291 Cross-References: CVE-2021-32766 CVE-2021-32800 CVE-2021-32801 CVE-2021-32802 CVSS scores: CVE-2021-32800 NVD : 8.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N...

Security update for dbus-1 (moderate)

openSUSE Security Update: Security update for dbus-1 Announcement ID: openSUSE-SU-2021:1204-1 Rating: moderate References: 1172505 Cross-References: CVE-2020-12049 CVSS scores: CVE-2020-12049 NVD : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2020-12049 SUSE: 5.5...

Security update for cacti, cacti-spine (moderate)

openSUSE Security Update: Security update for cacti, cacti-spine Announcement ID: openSUSE-SU-2021:1190-1 Rating: moderate References: 1188188 Cross-References: CVE-2020-14424 Affected Products: openSUSE Leap 15.2 openSUSE Backports SLE-15-SP3 SUSE Package Hub for SUSE Linux Enterprise 12 An upda...

Security update for jetty-minimal (moderate)

openSUSE Security Update: Security update for jetty-minimal Announcement ID: openSUSE-SU-2021:2838-1 Rating: moderate References: 1188438 Cross-References: CVE-2021-34429 CVSS scores: CVE-2021-34429 NVD : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2021-34429 SUSE: 6.5...

Security update for mariadb (moderate)

openSUSE Security Update: Security update for mariadb Announcement ID: openSUSE-SU-2021:2837-1 Rating: moderate References: 1180014 1189320 Cross-References: CVE-2021-2372 CVE-2021-2389 CVSS scores: CVE-2021-2372 NVD : 4.4 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H CVE-2021-2372 SUSE: 4.4...

Security update for aspell (important)

openSUSE Security Update: Security update for aspell Announcement ID: openSUSE-SU-2021:2794-1 Rating: important References: 1177523 1188576 Cross-References: CVE-2019-25051 CVSS scores: CVE-2019-25051 NVD : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2019-25051 SUSE: 7.8...

Security update for nodejs12 (important)

openSUSE Security Update: Security update for nodejs12 Announcement ID: openSUSE-SU-2021:2327-1 Rating: important References: 1183851 1183852 1184450 1187973 1187976 1187977 Cross-References: CVE-2020-7774 CVE-2021-22918 CVE-2021-23362 CVE-2021-27290 CVE-2021-3449 CVE-2021-3450 CVSS scores:...

Security update for opera (important)

openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2021:0949-1 Rating: important References: Cross-References: CVE-2021-30544 CVE-2021-30545 CVE-2021-30546 CVE-2021-30547 CVE-2021-30548 CVE-2021-30549 CVE-2021-30550 CVE-2021-30551 CVE-2021-30552 CVE-2021-30553...

Security update for libxml2 (moderate)

openSUSE Security Update: Security update for libxml2 Announcement ID: openSUSE-SU-2021:0692-1 Rating: moderate References: 1185408 1185409 1185410 Cross-References: CVE-2021-3516 CVE-2021-3517 CVE-2021-3518 CVSS scores: CVE-2021-3516 SUSE: 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2021:0392-1 Rating: important References: 1182233 1182358 1182775 Cross-References: CVE-2020-27844 CVE-2021-21149 CVE-2021-21150 CVE-2021-21151 CVE-2021-21152 CVE-2021-21153 CVE-2021-21154 CVE-2021-21155...

Security update for dnsmasq (important)

openSUSE Security Update: Security update for dnsmasq Announcement ID: openSUSE-SU-2021:0129-1 Rating: important References: 1176076 1177077 Cross-References: CVE-2020-25681 CVE-2020-25682 CVE-2020-25683 CVE-2020-25684 CVE-2020-25685 CVE-2020-25686 CVE-2020-25687 Affected Products: openSUSE Leap...

Security update for virt-bootstrap (moderate)

openSUSE Security Update: Security update for virt-bootstrap Announcement ID: openSUSE-SU-2020:1856-1 Rating: moderate References: 1140750 Cross-References: CVE-2019-13314 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...

Security update for lout (important)

openSUSE Security Update: Security update for lout Announcement ID: openSUSE-SU-2020:1772-1 Rating: important References: 1159713 1159714 Cross-References: CVE-2019-19917 CVE-2019-19918 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Description:...

Recommended update for mailman (moderate)

openSUSE Security Update: Recommended update for mailman Announcement ID: openSUSE-SU-2020:1707-1 Rating: moderate References: 1171363 1173369 Cross-References: CVE-2020-12108 CVE-2020-12137 CVE-2020-15011 Affected Products: openSUSE Leap 15.2 An update that fixes three vulnerabilities is now...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:1550-1 Rating: important References: 1176791 Cross-References: CVE-2020-15960 CVE-2020-15961 CVE-2020-15962 CVE-2020-15963 CVE-2020-15964 CVE-2020-15965 CVE-2020-15966 Affected Products: openSUSE Backports...

Security update for openldap2 (moderate)

openSUSE Security Update: Security update for openldap2 Announcement ID: openSUSE-SU-2020:1416-1 Rating: moderate References: 1174154 Cross-References: CVE-2020-15719 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...

Security update for MozillaThunderbird (important)

openSUSE Security Update: Security update for MozillaThunderbird Announcement ID: openSUSE-SU-2020:1383-1 Rating: important References: 1175686 Cross-References: CVE-2020-15663 CVE-2020-15664 CVE-2020-15669 Affected Products: openSUSE Leap 15.1 An update that fixes three vulnerabilities is now...

Security update for graphviz (low)

openSUSE Security Update: Security update for graphviz Announcement ID: openSUSE-SU-2020:1303-1 Rating: low References: 1093447 Cross-References: CVE-2018-10196 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for graphviz fix...

Security update for chromium (moderate)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:1263-1 Rating: moderate References: 1175505 Cross-References: CVE-2020-6556 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for chromium...

Security update for dovecot23 (important)

openSUSE Security Update: Security update for dovecot23 Announcement ID: openSUSE-SU-2020:1241-1 Rating: important References: 1174922 1174923 Cross-References: CVE-2020-12673 CVE-2020-12674 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available...

Security update for libX11 (important)

openSUSE Security Update: Security update for libX11 Announcement ID: openSUSE-SU-2020:1162-1 Rating: important References: 1174628 Cross-References: CVE-2020-14344 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for libX11...

Security update for google-compute-engine (important)

openSUSE Security Update: Security update for google-compute-engine Announcement ID: openSUSE-SU-2020:0996-1 Rating: important References: 1169978 1173258 Cross-References: CVE-2020-8903 CVE-2020-8907 CVE-2020-8933 Affected Products: openSUSE Leap 15.1 An update that fixes three vulnerabilities i...

Security update for openexr (moderate)

openSUSE Security Update: Security update for openexr Announcement ID: openSUSE-SU-2020:0970-1 Rating: moderate References: 1173466 1173467 1173469 Cross-References: CVE-2020-15304 CVE-2020-15305 CVE-2020-15306 Affected Products: openSUSE Leap 15.1 An update that fixes three vulnerabilities is no...

Security update for nasm (moderate)

openSUSE Security Update: Security update for nasm Announcement ID: openSUSE-SU-2020:0952-1 Rating: moderate References: 1084631 1086186 1086227 1086228 1090519 1090840 1106878 1107592 1107594 1108404 1115758 1115774 1115795 1173538 Cross-References: CVE-2018-1000667 CVE-2018-10016 CVE-2018-10254...

Security update for mutt (important)

openSUSE Security Update: Security update for mutt Announcement ID: openSUSE-SU-2020:0903-1 Rating: important References: 1172906 1172935 1173197 Cross-References: CVE-2020-14093 CVE-2020-14154 CVE-2020-14954 Affected Products: openSUSE Leap 15.1 An update that fixes three vulnerabilities is now...