7849 matches found
Opera - security update to 12.11 (important)
Opera 12.11 is a recommended upgrade offering security and stability enhancements: -fixed an issue where HTTP response heap buffer overflow could allow execution of arbitrary code; -fixed an issue where error pages could be used to guess local file paths; see our advisory -fixed several issues...
libxml2: fixed buffer overflow during decoding entities (important)
A Heap-based buffer underflow in the xmlParseAttValueComplex function in parser.c in libxml2 allowed remote attackers to cause a denial of service or possibly execute arbitrary code via crafted entities in an XML document...
mozilla-xulrunner192: 1.9.2.27 (important)
Mozilla XULRunner was updated to 1.9.2.27 to fix a security issue with the embedded libpng, where a integer overflow could allow remote attackers to crash the browser or potentially execute code CVE-2011-3026,...
Security update for barrier (moderate)
openSUSE Security Update: Security update for barrier Announcement ID: openSUSE-SU-2021:1595-1 Rating: moderate References: Cross-References: CVE-2021-42072 CVE-2021-42073 Affected Products: openSUSE Backports SLE-15-SP3 An update that fixes two vulnerabilities is now available. Description: This...
Security update for bind (important)
openSUSE Security Update: Security update for bind Announcement ID: openSUSE-SU-2021:3773-1 Rating: important References: 1192146 Cross-References: CVE-2021-25219 CVSS scores: CVE-2021-25219 NVD : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2021-25219 SUSE: 5.3...
Security update for qemu (important)
openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2021:3614-1 Rating: important References: 1180432 1180433 1180434 1180435 1182651 1186012 1189145 1189702 1189938 Cross-References: CVE-2020-35503 CVE-2020-35504 CVE-2020-35505 CVE-2020-35506 CVE-2021-20255...
Security update for opera (important)
openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2021:1358-1 Rating: important References: Cross-References: CVE-2021-37974 CVE-2021-37975 CVE-2021-37976 Affected Products: openSUSE Leap 15.3:NonFree openSUSE Leap 15.2:NonFree An update that fixes three...
Security update for go1.16 (important)
openSUSE Security Update: Security update for go1.16 Announcement ID: openSUSE-SU-2021:3292-1 Rating: important References: 1182345 1190589 Cross-References: CVE-2021-39293 CVSS scores: CVE-2021-39293 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Leap 15.3 An...
Security update for wireshark (moderate)
openSUSE Security Update: Security update for wireshark Announcement ID: openSUSE-SU-2021:3017-1 Rating: moderate References: 1188375 Cross-References: CVE-2021-22235 CVSS scores: CVE-2021-22235 SUSE: 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: openSUSE Leap 15.3 An update...
Security update for opera (important)
openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2021:1209-1 Rating: important References: Cross-References: CVE-2021-30590 CVE-2021-30591 CVE-2021-30592 CVE-2021-30593 CVE-2021-30594 CVE-2021-30596 CVE-2021-30597 Affected Products: openSUSE Leap 15.3:NonFree...
Security update for nodejs12 (important)
openSUSE Security Update: Security update for nodejs12 Announcement ID: openSUSE-SU-2021:2875-1 Rating: important References: 1188881 1188917 1189368 1189369 1189370 Cross-References: CVE-2021-22930 CVE-2021-22931 CVE-2021-22939 CVE-2021-22940 CVE-2021-3672 CVSS scores: CVE-2021-22930 SUSE: 9.1...
Security update for libhts (low)
openSUSE Security Update: Security update for libhts Announcement ID: openSUSE-SU-2021:1177-1 Rating: low References: 1187917 Cross-References: CVE-2020-36403 CVSS scores: CVE-2020-36403 NVD : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.2 openSUSE Backport...
Security update for aria2 (moderate)
openSUSE Security Update: Security update for aria2 Announcement ID: openSUSE-SU-2021:1125-1 Rating: moderate References: 1189107 Cross-References: CVE-2019-3500 CVSS scores: CVE-2019-3500 NVD : 7.8 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.2 openSUSE...
Security update for qemu (moderate)
openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2021:1043-1 Rating: moderate References: 1149813 1163019 1172380 1175534 1176681 1178683 1178935 1179477 1179484 1182846 1182975 1183979 1184574 1185591 1185981 1185990 1186010 1186290 1187013 SLE-17785...
Security update for java-1_8_0-openjdk (moderate)
openSUSE Security Update: Security update for java-180-openjdk Announcement ID: openSUSE-SU-2021:1989-1 Rating: moderate References: 1185055 Cross-References: CVE-2021-2163 CVSS scores: CVE-2021-2163 NVD : 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N CVE-2021-2163 SUSE: 5.3...
Security update for clamav-database (important)
openSUSE Security Update: Security update for clamav-database Announcement ID: openSUSE-SU-2021:2242-1 Rating: important References: 1084929 Affected Products: openSUSE Leap 15.3 An update that contains security fixes can now be installed. Description: This update for clamav-database fixes the...
Security update for java-1_8_0-openj9 (moderate)
openSUSE Security Update: Security update for java-180-openj9 Announcement ID: openSUSE-SU-2021:0776-1 Rating: moderate References: 1185055 Cross-References: CVE-2021-2163 CVSS scores: CVE-2021-2163 NVD : 5.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N CVE-2021-2163 SUSE: 5.3...
Security update for irssi (moderate)
openSUSE Security Update: Security update for irssi Announcement ID: openSUSE-SU-2021:0587-1 Rating: moderate References: 1184848 Affected Products: openSUSE Leap 15.2 An update that contains security fixes can now be installed. Description: This update for irssi fixes the following issues: irssi...
Security update for mumble (moderate)
openSUSE Security Update: Security update for mumble Announcement ID: openSUSE-SU-2021:0300-1 Rating: moderate References: 1180068 1182123 Affected Products: openSUSE Leap 15.2 An update that contains security fixes can now be installed. Description: This update for mumble fixes the following...
Security update for sudo (important)
openSUSE Security Update: Security update for sudo Announcement ID: openSUSE-SU-2021:0170-1 Rating: important References: 1180684 1180685 1180687 1181090 Cross-References: CVE-2021-23239 CVE-2021-23240 CVE-2021-3156 Affected Products: openSUSE Leap 15.2 An update that solves three vulnerabilities...
Security update for MozillaThunderbird (important)
openSUSE Security Update: Security update for MozillaThunderbird Announcement ID: openSUSE-SU-2021:0127-1 Rating: important References: 1180623 Cross-References: CVE-2020-16044 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update...
Security update for nodejs10 (moderate)
openSUSE Security Update: Security update for nodejs10 Announcement ID: openSUSE-SU-2021:0065-1 Rating: moderate References: 1179491 1180553 1180554 Cross-References: CVE-2020-1971 CVE-2020-8265 CVE-2020-8287 Affected Products: openSUSE Leap 15.2 An update that fixes three vulnerabilities is now...
Security update for kdeconnect-kde (important)
openSUSE Security Update: Security update for kdeconnect-kde Announcement ID: openSUSE-SU-2020:2343-1 Rating: important References: 1177672 Affected Products: openSUSE Leap 15.2 An update that contains security fixes can now be installed. Description: This update for kdeconnect-kde fixes the...
Security update for dash (moderate)
openSUSE Security Update: Security update for dash Announcement ID: openSUSE-SU-2020:2065-1 Rating: moderate References: 1178978 Affected Products: openSUSE Leap 15.2 An update that contains security fixes can now be installed. Description: This update for dash fixes the following issues: - Fixed...
Security update for wpa_supplicant (moderate)
openSUSE Security Update: Security update for wpasupplicant Announcement ID: openSUSE-SU-2020:2053-1 Rating: moderate References: 1131644 1131868 1131870 1131871 1131872 1131874 1133640 1144443 1150934 1156920 1166933 1167331 930077 930078 930079 Cross-References: CVE-2015-4141 CVE-2015-4142...
Security update for bluez (moderate)
openSUSE Security Update: Security update for bluez Announcement ID: openSUSE-SU-2020:1880-1 Rating: moderate References: 1177895 Cross-References: CVE-2020-27153 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for bluez fixe...
Security update for openldap2 (moderate)
openSUSE Security Update: Security update for openldap2 Announcement ID: openSUSE-SU-2020:1539-1 Rating: moderate References: 1175568 Cross-References: CVE-2020-8027 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for openlda...
Security update for openldap2 (moderate)
openSUSE Security Update: Security update for openldap2 Announcement ID: openSUSE-SU-2020:1534-1 Rating: moderate References: 1175568 Cross-References: CVE-2020-8027 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for openlda...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:1510-1 Rating: important References: 1175757 1176306 1176450 Cross-References: CVE-2020-15959 CVE-2020-6558 CVE-2020-6559 CVE-2020-6560 CVE-2020-6561 CVE-2020-6562 CVE-2020-6563 CVE-2020-6564 CVE-2020-6565...
Security update for libetpan (moderate)
openSUSE Security Update: Security update for libetpan Announcement ID: openSUSE-SU-2020:1454-1 Rating: moderate References: 1174579 Cross-References: CVE-2020-15953 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for libetpa...
Security update for postgresql10 (important)
openSUSE Security Update: Security update for postgresql10 Announcement ID: openSUSE-SU-2020:1326-1 Rating: important References: 1175193 1175194 Cross-References: CVE-2020-14349 CVE-2020-14350 Affected Products: openSUSE Leap 15.2 An update that fixes two vulnerabilities is now available...
Security update for chromium (moderate)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:1260-1 Rating: moderate References: 1175505 Cross-References: CVE-2020-6556 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for chromium...
Security update for ipmitool (important)
openSUSE Security Update: Security update for ipmitool Announcement ID: openSUSE-SU-2020:0247-1 Rating: important References: 1163026 Cross-References: CVE-2020-5208 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for ipmitoo...
Security update for epiphany (moderate)
openSUSE Security Update: Security update for epiphany Announcement ID: openSUSE-SU-2019:2318-1 Rating: moderate References: 1094464 Cross-References: CVE-2018-11396 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 An update that fixes one vulnerability is now available. Description: This...
Security update for zsh (important)
This update for zsh to version 5.6 fixes the following security issues: - CVE-2018-0502: The beginning of a ! script file was mishandled, potentially leading to an execve call to a program named on the second line bsc1107296. - CVE-2018-13259: Shebang lines exceeding 64 characters were truncated,...
Security update for chromium (important)
This update for Chromium to version 62.0.3202.89 fixes the following vulnerabilities boo1066851: - CVE-2017-15398: Stack buffer overflow in QUIC - CVE-2017-15399: Use after free in V8...
Security update for Chromium (important)
This update to Chromium 58.0.3029.96 fixes one security issue: - CVE-2017-5068: race condition in WebRTC bsc1037594...
Security update for jasper (important)
This update for jasper fixes the following issues: - CVE-2016-8654: Heap-based buffer overflow in QMFB code in JPC codec. bsc1012530 - CVE-2016-9395: Invalid jasper files could lead to abort of the library caused by attacker provided image. bsc1010977 - CVE-2016-9398: Invalid jasper files could...
Security update for gstreamer-plugins-good (important)
This update for gstreamer-plugins-good fixes the following security issues: - CVE-2016-9807: Flic decoder invalid read could lead to crash. bsc1013655 - CVE-2016-9634: Flic out-of-bounds write could lead to code execution. bsc1012102 - CVE-2016-9635: Flic out-of-bounds write could lead to code...
Security update for roundcubemail (important)
This update for roundcubemail fixes the following issues: - A maliciously crafted email could cause untrusted code to be executed cross site scripting using $lt;area href=javascript:... boo982003, CVE-2016-5103 - Avoid HTML styles that could cause potential click jacking boo1001856 - A maliciousl...
Security update for mysql-community-server (important)
mysql-community-server was updated to 5.6.34 to fix the following issues: Changes http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-34.html http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-33.html http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-32.html...
Security update for the Linux Kernel (important)
The openSUSE Leap 42.1 was updated to 4.1.27 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2016-4997: A buffer overflow in 32bit compatsetsockopt iptables handling could lead to a local privilege escalation. bsc986362 - CVE-2016-5829: Multiple heap-based...
Security update for mariadb (important)
mariadb was updated to version 10.0.25 to fix 25 security issues. These security issues were fixed: - CVE-2016-0505: Unspecified vulnerability allowed remote authenticated users to affect availability via unknown vectors related to Options bsc980904. - CVE-2016-0546: Unspecified vulnerability...
Security update for vlc (important)
This update for vlc to 2.2.4 to fix the following security issue: - CVE-2016-5108: Fix out-of-bound write in adpcm QT IMA codec boo984382. This also include an update of codecs and libraries to fix these 3rd party security issues: - CVE-2016-1514: Matroska libebml EbmlUnicodeString Heap Informati...
Security update for ntp (important)
ntp was updated to version 4.2.8p8 to fix five security issues. These security issues were fixed: - CVE-2016-4953: Bad authentication demobilizes ephemeral associations bsc982065. - CVE-2016-4954: Processing spoofed server packets bsc982066. - CVE-2016-4955: Autokey association reset bsc982067. -...
Security update for Chromium (important)
Chromium was updated to 50.0.2661.102 to fix four vulnerabilities boo979859: - CVE-2016-1667: Same origin bypass in DOM - CVE-2016-1668: Same origin bypass in Blink V8 bindings - CVE-2016-1669: Buffer overflow in V8 - CVE-2016-1670: Race condition in loader...
Security update for java-1_7_0-openjdk (important)
The OpenJDK Java java-170-openjdk was updated to 2.6.5 to fix the following issues: Update to 2.6.5 - OpenJDK 7u99 bsc972468 Security fixes - S8152335, CVE-2016-0636: Improve MethodHandle consistency Import of OpenJDK 7 u99 build 0 - S6425769, PR2858: Allow specifying an address to bind JMX remot...
Security update for MozillaThunderbird (important)
MozillaThunderbird was updated to 38.7.0 to fix the following issues: Update to Thunderbird 38.7.0 boo969894 MFSA 2015-81/CVE-2015-4477 bmo1179484 Use-after-free in MediaStream playback MFSA 2015-136/CVE-2015-7207 bmo1185256 Same-origin policy violation using performance.getEntries and history...
Security update for MozillaThunderbird (important)
MozillaThunderbird was updated to 38.7.0 to fix the following issues: Update to Thunderbird 38.7.0 boo969894 MFSA 2015-81/CVE-2015-4477 bmo1179484 Use-after-free in MediaStream playback MFSA 2015-136/CVE-2015-7207 bmo1185256 Same-origin policy violation using performance.getEntries and history...
openssh (critical)
CVE-2016-0777: A malicious or compromised server could cause the OpenSSH client to expose part or all of the client's private key through the roaming feature bsc961642 - CVE-2016-0778: A malicious or compromised server could could trigger a buffer overflow in the OpenSSH client through the...