7849 matches found
Security update for vim (moderate)
openSUSE Security Update: Security update for vim Announcement ID: openSUSE-SU-2020:0794-1 Rating: moderate References: 1172225 Cross-References: CVE-2019-20807 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for vim fixes th...
Security update for mp3gain (moderate)
openSUSE Security Update: Security update for mp3gain Announcement ID: openSUSE-SU-2020:0522-1 Rating: moderate References: 1154971 Cross-References: CVE-2017-12911 CVE-2019-18359 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Description:This...
Security update for libsolv, libzypp, zypper (moderate)
openSUSE Security Update: Security update for libsolv, libzypp, zypper Announcement ID: openSUSE-SU-2020:0255-1 Rating: moderate References: 1135114 1154804 1154805 1155198 1155205 1155298 1155678 1155819 1156158 1157377 1158763 Cross-References: CVE-2019-18900 Affected Products: openSUSE Leap 15...
Security update for libvirt (moderate)
openSUSE Security Update: Security update for libvirt Announcement ID: openSUSE-SU-2019:1294-1 Rating: moderate References: 1120813 1126325 1127458 1131595 1131955 Cross-References: CVE-2019-3840 CVE-2019-3886 Affected Products: openSUSE Leap 42.3 An update that solves two vulnerabilities and has...
Security update for shadow (moderate)
This update for shadow fixes the following security issue: - CVE-2018-16588: Prevent useradd from creating intermediate directories with mode 0777 bsc1106914 This update was imported from the SUSE:SLE-15:Update update project...
Security update for samba (important)
This update for samba fixes the following issues: The following security vulnerabilities were fixed: - CVE-2018-1139: Disable NTLMv1 auth if smb.conf doesn't allow it; bsc1095048 - CVE-2018-1140: ldbsearch 'distinguishedName=abc' and DNS query with escapes crashes; bsc1095056 - CVE-2018-10919:...
Security update for openssh (moderate)
This update for openssh fixes the following issues: Security issue fixed: - CVE-2016-10708: Prevent DoS due to crashes caused by out-of-sequence NEWKEYS message bsc1076957. This update was imported from the SUSE:SLE-12-SP2:Update update project...
Security update for ocaml (important)
This update for ocaml fixes the following issues: - CVE-2018-9838: The camlbadeserialize function in byterun/bigarray.c in the standard library had an integer overflow which, in situations where marshalled data is accepted from an untrusted source, allows remote attackers to cause a denial of...
Security update for ceph (important)
This update for ceph fixes the following issues: Security issues fixed: - CVE-2018-7262: rgw: malformed http headers can crash rgw bsc1081379. - CVE-2017-16818: User reachable asserts allow for DoS bsc1063014. Bug fixes: - bsc1061461: OSDs keep generating coredumps after adding new OSD node to...
Security update for xen (important)
This updates xen to version 4.5.5 to fix the following issues: - An unprivileged user in a guest could gain guest could escalate privilege to that of the guest kernel, if it had could invoke the instruction emulator. Only 64-bit x86 HVM guest were affected. Linux guest have not been vulnerable...
Security update for Chromium (important)
Chromium was updated to 53.0.2785.89 to fix a number of security issues. The following vulnerabilities were fixed: boo996648 - CVE-2016-5147: Universal XSS in Blink. - CVE-2016-5148: Universal XSS in Blink. - CVE-2016-5149: Script injection in extensions. - CVE-2016-5150: Use after free in Blink....
Security update for dropbear (critical)
This update for dropbear fixes four security issues bnc990363: - A format string injection vulnerability allowed remotes attacker to run arbitrary code as root if specific usernames including "%" symbols could be created on the target system. If a dbclient user can control usernames or host...
Security update for Chromium (important)
Chromium was updated to 52.0.2743.82 to fix the following security issues boo989901: - CVE-2016-1706: Sandbox escape in PPAPI - CVE-2016-1707: URL spoofing on iOS - CVE-2016-1708: Use-after-free in Extensions - CVE-2016-1709: Heap-buffer-overflow in sfntly - CVE-2016-1710: Same-origin bypass in...
Security update for ImageMagick (important)
ImageMagick was updated to fix 66 security issues. These security issues were fixed: - CVE-2014-9810: SEGV in dpx file handler. bsc983803. - CVE-2014-9811: Crash in xwd file handler bsc984032. - CVE-2014-9812: NULL pointer dereference in ps file handling bsc984137. - CVE-2014-9813: Crash on...
Security update for libxml2 (important)
This update for libxml2 fixes the following security issues: - CVE-2016-2073, CVE-2015-8806, CVE-2016-1839: A Heap-buffer overread was fixed in libxml2/dict.c bsc963963, bsc965283, bsc981114. - CVE-2016-4483: Code was added to avoid an out of bound access when serializing malformed strings...
Security update for tomcat (important)
This update for tomcat fixes the following issues: Tomcat 8 was updated from 8.0.23 to 8.0.32, to fix bugs and security issues. Fixed security issues: CVE-2015-5174: Directory traversal vulnerability in RequestUtil.java in Apache Tomcat allowed remote authenticated users to bypass intended...
Security update for bind (important)
This update for bind fixes the following issues: Fix two assertion failures that can lead to a remote denial of service attack: CVE-2016-1285: An error when parsing signature records for DNAME can lead to named exiting due to an assertion failure. bsc970072 CVE-2016-1286: An error when parsing...
Security update for openssl (important)
This update for openssl fixes various security issues: Security issues fixed: - CVE-2016-0800 aka the "DROWN" attack bsc968046: OpenSSL was vulnerable to a cross-protocol attack that could lead to decryption of TLS sessions by using a server supporting SSLv2 and EXPORT cipher suites as a...
Security update for MozillaFirefox, mozilla-nspr, mozilla-nss, xulrunner, seamonkey (important)
Mozilla Firefox was updated to version 42.0, fixing bugs and security issues. Mozilla xulrunner was updated to xulrunner 38.4.0. Seamonkey was updated to 2.39. New features in Mozilla Firefox: Private Browsing with Tracking Protection blocks certain Web elements that could be used to record your...
Security update for Linux Kernel (important)
The openSUSE 13.2 kernel was updated to version 3.16.7. These security issues were fixed: - CVE-2014-9322: A local privilege escalation in the x8664 32bit compatibility signal handling was fixed, which could be used by local attackers to crash the machine or execute code. bnc910251 - CVE-2014-909...
kernel: security and bugfix update (important)
The Linux Kernel was updated to fix various security issues and bugs. Main security issues fixed: A security issue in the tty layer that was fixed that could be used by local attackers for code execution CVE-2014-0196. Two security issues in the floppy driver were fixed that could be used by loca...
MozillaFirefox: Update to Firefox 22.0 release (important)
MozillaFirefox was updated to Firefox 22.0 bnc825935 Following security issues were fixed: MFSA 2013-49/CVE-2013-1682/CVE-2013-1683 Miscellaneous memory safety hazards MFSA 2013-50/CVE-2013-1684/CVE-2013-1685/CVE-2013-1686 Memory corruption found using Address Sanitizer MFSA 2013-51/CVE-2013-1687...
Mozilla Firefox and others: Update to 20.0/17.0.5 releases (important)
The Mozilla suite received security and bugfix updates: Firefox was updated to version 20.0. Thunderbird was updated to version 17.0.5. Seamonkey was updated to version 2.17 mozilla-nss was updated to version 3.14.3. mozilla-nspr was updated to version 4.9.6. mozilla-nspr was updated to version...
Mozilla Januarys (important)
The Mozilla January 8th 2013 security release contains updates: Mozilla Firefox was updated to version 18.0. Mozilla Seamonkey was updated to version 2.15. Mozilla Thunderbird was updated to version 17.0.2. MFSA 2013-01/CVE-2013-0749/CVE-2013-0769/CVE-2013-0770 Miscellaneous memory safety hazards...
libpng12: Fixed a heap based buffer overflow (important)
A heap-based buffer overflow in libpng was fixed that could potentially be exploited by attackers to execute arbitrary code or cause an application to crash CVE-2011-3026. libpng 1.2 was updated to 1.2.47 to fix this issue...
MozillaFirefox: Update to Firefox 3.6.23 (important)
Mozilla Firefox was updated to version 3.6.23, fixing various bugs and security issues. MFSA 2011-36: Mozilla developers identified and fixed several memory safety bugs in the browser engine used in Firefox and other Mozilla-based products. Some of these bugs showed evidence of memory corruption...
Security update for caddy (moderate)
openSUSE Security Update: Security update for caddy Announcement ID: openSUSE-SU-2022:10007-1 Rating: moderate References: 1200279 Cross-References: CVE-2022-297182 Affected Products: openSUSE Backports SLE-15-SP4 An update that fixes one vulnerability is now available. Description: This update f...
Security update for chromium (critical)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2022:10009-1 Rating: critical References: 1199893 1200139 1200423 Cross-References: CVE-2022-1853 CVE-2022-1854 CVE-2022-1855 CVE-2022-1856 CVE-2022-1857 CVE-2022-1858 CVE-2022-1859 CVE-2022-1860 CVE-2022-1861...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2022:0114-1 Rating: important References: 1198509 Cross-References: CVE-2022-1364 Affected Products: openSUSE Backports SLE-15-SP3 An update that fixes one vulnerability is now available. Description: This update...
Security update for MozillaFirefox (important)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2022:1127-1 Rating: important References: 1197698 1197903 Cross-References: CVE-2022-1097 CVE-2022-1196 CVE-2022-24713 CVE-2022-28281 CVE-2022-28282 CVE-2022-28285 CVE-2022-28286 CVE-2022-28289 CVSS scores:...
Security update for icingaweb2 (important)
openSUSE Security Update: Security update for icingaweb2 Announcement ID: openSUSE-SU-2022:0097-1 Rating: important References: 1196911 1196913 Cross-References: CVE-2022-24714 CVE-2022-24715 CVSS scores: CVE-2022-24714 NVD : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2022-24715 NVD : 8...
Security update for MozillaThunderbird (important)
openSUSE Security Update: Security update for MozillaThunderbird Announcement ID: openSUSE-SU-2022:0906-1 Rating: important References: 1196900 Cross-References: CVE-2022-26381 CVE-2022-26383 CVE-2022-26384 CVE-2022-26386 CVE-2022-26387 Affected Products: openSUSE Leap 15.3 openSUSE Leap 15.4 An...
Security update for xstream (moderate)
openSUSE Security Update: Security update for xstream Announcement ID: openSUSE-SU-2022:0817-1 Rating: moderate References: 1195458 Cross-References: CVE-2021-43859 CVSS scores: CVE-2021-43859 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-43859 SUSE: 5.5...
Security update for flatpak (important)
openSUSE Security Update: Security update for flatpak Announcement ID: openSUSE-SU-2022:0712-1 Rating: important References: 1194610 1194611 Cross-References: CVE-2021-43860 CVE-2022-21682 CVSS scores: CVE-2021-43860 NVD : 8.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H CVE-2022-21682 NVD : 6.5...
Security update for opera (important)
openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2022:0050-1 Rating: important References: 1027353 1081164 1102775 1108471 1111122 1116807 1140341 1145864 1152968 1174961 1178021 1178351 1179009 1179699 1181591 SLE-6120 Cross-References: CVE-2018-18065 CVE-2020-158...
Security update for log4j (important)
openSUSE Security Update: Security update for log4j Announcement ID: openSUSE-SU-2021:1605-1 Rating: important References: 1193887 1193888 Cross-References: CVE-2021-45105 CVSS scores: CVE-2021-45105 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Leap 15.2 An...
Security update for nodejs14 (important)
openSUSE Security Update: Security update for nodejs14 Announcement ID: openSUSE-SU-2021:1552-1 Rating: important References: 1190053 1190054 1190055 1190056 1190057 1191601 1191602 Cross-References: CVE-2021-22959 CVE-2021-22960 CVE-2021-37701 CVE-2021-37712 CVE-2021-37713 CVE-2021-39134...
Security update for aaa_base (moderate)
openSUSE Security Update: Security update for aaabase Announcement ID: openSUSE-SU-2021:1544-1 Rating: moderate References: 1162581 1174504 1191563 1192248 Affected Products: openSUSE Leap 15.2 An update that contains security fixes can now be installed. Description: This update for aaabase fixes...
Security update for permissions (moderate)
openSUSE Security Update: Security update for permissions Announcement ID: openSUSE-SU-2021:1520-1 Rating: moderate References: 1028975 1029961 1093414 1133678 1148788 1150345 1150366 1151190 1157498 1160285 1160764 1161335 1161779 1163588 1167163 1169614 1171164 1171173 1171569 1171580 1171686...
Security update for postgresql13 (important)
openSUSE Security Update: Security update for postgresql13 Announcement ID: openSUSE-SU-2021:3762-1 Rating: important References: 1192516 Cross-References: CVE-2021-23214 CVE-2021-23222 CVSS scores: CVE-2021-23214 SUSE: 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-23222 SUSE: 3.7...
Security update for python-Pygments (important)
openSUSE Security Update: Security update for python-Pygments Announcement ID: openSUSE-SU-2021:1402-1 Rating: important References: 1183169 Cross-References: CVE-2021-20270 CVSS scores: CVE-2021-20270 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-20270 SUSE: 7.5...
Security update for ffmpeg (important)
openSUSE Security Update: Security update for ffmpeg Announcement ID: openSUSE-SU-2021:3193-1 Rating: important References: 1189724 Cross-References: CVE-2021-38171 CVSS scores: CVE-2021-38171 SUSE: 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.3 An update...
Security update for php7-pear (important)
openSUSE Security Update: Security update for php7-pear Announcement ID: openSUSE-SU-2021:3018-1 Rating: important References: 1189591 Cross-References: CVE-2020-36193 CVSS scores: CVE-2020-36193 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVE-2020-36193 SUSE: 7.5...
Security update for haproxy (important)
openSUSE Security Update: Security update for haproxy Announcement ID: openSUSE-SU-2021:2773-1 Rating: important References: 1189366 Affected Products: openSUSE Leap 15.3 An update that contains security fixes can now be installed. Description: This update for haproxy fixes the following issues: ...
Security update for libqt5-qtwebengine (important)
openSUSE Security Update: Security update for libqt5-qtwebengine Announcement ID: openSUSE-SU-2021:1016-1 Rating: important References: 1130395 1158516 1163744 1163766 1182233 Cross-References: CVE-2020-16044 CVE-2021-21118 CVE-2021-21119 CVE-2021-21120 CVE-2021-21121 CVE-2021-21122 CVE-2021-2112...
Security update for nagios (important)
openSUSE Security Update: Security update for nagios Announcement ID: openSUSE-SU-2021:0715-1 Rating: important References: 1003362 1014637 1172794 1182398 989759 Cross-References: CVE-2016-6209 CVE-2020-13977 CVSS scores: CVE-2016-6209 NVD : 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N...
Security update for monitoring-plugins-smart (important)
openSUSE Security Update: Security update for monitoring-plugins-smart Announcement ID: openSUSE-SU-2021:0706-1 Rating: important References: 1183057 Affected Products: openSUSE Leap 15.2 openSUSE Backports SLE-15-SP2 openSUSE Backports SLE-15-SP1 An update that contains security fixes can now be...
Security update for libdwarf (low)
openSUSE Security Update: Security update for libdwarf Announcement ID: openSUSE-SU-2021:0619-1 Rating: low References: 1185057 Affected Products: openSUSE Leap 15.2 An update that contains security fixes can now be installed. Description: This update for libdwarf fixes the following issues: -...
Security update for qemu (important)
openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2021:0600-1 Rating: important References: 1172385 1173612 1176673 1176682 1176684 1178174 1178400 1178934 1179466 1179467 1179468 1179686 1181108 1182425 1182577 1182968 1184064 Cross-References: CVE-2020-12829...
Security update for netty (moderate)
openSUSE Security Update: Security update for netty Announcement ID: openSUSE-SU-2021:0448-1 Rating: moderate References: 1183262 Cross-References: CVE-2021-21295 CVSS scores: CVE-2021-21295 SUSE: 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N Affected Products: openSUSE Leap 15.2 An update tha...