7581 matches found
Security update for minidlna (moderate)
openSUSE Security Update: Security update for minidlna Announcement ID: openSUSE-SU-2020:2226-1 Rating: moderate References: 1179447 Cross-References: CVE-2020-12695 CVE-2020-28926 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes two vulnerabilities is now available...
Security update for wpa_supplicant (moderate)
openSUSE Security Update: Security update for wpasupplicant Announcement ID: openSUSE-SU-2020:2059-1 Rating: moderate References: 1131644 1131868 1131870 1131871 1131872 1131874 1133640 1144443 1150934 1156920 1166933 1167331 930077 930078 930079 Cross-References: CVE-2015-4141 CVE-2015-4142...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:2032-1 Rating: important References: 1178923 Cross-References: CVE-2019-8075 CVE-2020-16012 CVE-2020-16014 CVE-2020-16015 CVE-2020-16018 CVE-2020-16019 CVE-2020-16020 CVE-2020-16021 CVE-2020-16022...
Security update for ucode-intel (moderate)
openSUSE Security Update: Security update for ucode-intel Announcement ID: openSUSE-SU-2020:1915-1 Rating: moderate References: 1170446 1173594 Cross-References: CVE-2020-8695 CVE-2020-8698 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Descriptio...
Security update for lout (important)
openSUSE Security Update: Security update for lout Announcement ID: openSUSE-SU-2020:1813-1 Rating: important References: 1159713 1159714 Cross-References: CVE-2019-19917 CVE-2019-19918 Affected Products: openSUSE Backports SLE-15-SP2 An update that fixes two vulnerabilities is now available...
Security update for perl-DBI (important)
openSUSE Security Update: Security update for perl-DBI Announcement ID: openSUSE-SU-2020:1628-1 Rating: important References: 1176764 Cross-References: CVE-2019-20919 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for perl-D...
Security update for libetpan (moderate)
openSUSE Security Update: Security update for libetpan Announcement ID: openSUSE-SU-2020:1505-1 Rating: moderate References: 1174579 Cross-References: CVE-2020-15953 Affected Products: openSUSE Backports SLE-15-SP2 An update that fixes one vulnerability is now available. Description: This update...
Security update for perl-DBI (important)
openSUSE Security Update: Security update for perl-DBI Announcement ID: openSUSE-SU-2020:1502-1 Rating: important References: 1176409 1176412 Cross-References: CVE-2020-14392 CVE-2020-14393 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Descriptio...
Security update for libetpan (moderate)
openSUSE Security Update: Security update for libetpan Announcement ID: openSUSE-SU-2020:1454-1 Rating: moderate References: 1174579 Cross-References: CVE-2020-15953 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for libetpa...
Security update for pdns-recursor (moderate)
openSUSE Security Update: Security update for pdns-recursor Announcement ID: openSUSE-SU-2020:1101-1 Rating: moderate References: 1173302 Cross-References: CVE-2020-14196 Affected Products: openSUSE Backports SLE-15-SP2 An update that fixes one vulnerability is now available. Description: This...
Security update for python-Flask-Cors (moderate)
openSUSE Security Update: Security update for python-Flask-Cors Announcement ID: openSUSE-SU-2020:1423-1 Rating: moderate References: 1175986 Cross-References: CVE-2020-25032 Affected Products: openSUSE Backports SLE-15-SP2 An update that fixes one vulnerability is now available. Description: Thi...
Security update for xen (important)
openSUSE Security Update: Security update for xen Announcement ID: openSUSE-SU-2020:1190-1 Rating: important References: 1172356 1174543 Affected Products: openSUSE Leap 15.2 An update that contains security fixes can now be installed. Description: This update for xen fixes the following issues: ...
Security update for xmlgraphics-batik (moderate)
openSUSE Security Update: Security update for xmlgraphics-batik Announcement ID: openSUSE-SU-2020:1043-1 Rating: moderate References: 1172961 Cross-References: CVE-2019-17566 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: Thi...
Security update for MozillaThunderbird (important)
openSUSE Security Update: Security update for MozillaThunderbird Announcement ID: openSUSE-SU-2020:0967-1 Rating: important References: 1173576 Cross-References: CVE-2020-12417 CVE-2020-12418 CVE-2020-12419 CVE-2020-12420 CVE-2020-12421 Affected Products: openSUSE Leap 15.1 An update that fixes 5...
Security update for openldap2 (important)
openSUSE Security Update: Security update for openldap2 Announcement ID: openSUSE-SU-2020:0956-1 Rating: important References: 1172698 1172704 Cross-References: CVE-2020-8023 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available...
Security update for libEMF (important)
openSUSE Security Update: Security update for libEMF Announcement ID: openSUSE-SU-2020:0831-1 Rating: important References: 1171496 1171497 1171498 1171499 Cross-References: CVE-2020-11863 CVE-2020-11864 CVE-2020-11865 CVE-2020-11866 Affected Products: openSUSE Leap 15.1 An update that fixes four...
Security update for texlive-filesystem (moderate)
openSUSE Security Update: Security update for texlive-filesystem Announcement ID: openSUSE-SU-2020:0804-1 Rating: moderate References: 1158910 1159740 Cross-References: CVE-2020-8016 CVE-2020-8017 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available...
Security update for rpmlint (moderate)
openSUSE Security Update: Security update for rpmlint Announcement ID: openSUSE-SU-2020:0631-1 Rating: moderate References: 1129452 1169365 Affected Products: openSUSE Leap 15.1 An update that contains security fixes can now be installed. Description: This update for rpmlint fixes the following...
Security update for GraphicsMagick (important)
This update for GraphicsMagick fixes the following issues: Security issue fixed: - Disable PS, PS2, PS3 and PDF coders by default, remove gs calls from delegates.mgk boo1105592...
Security update for exempi (low)
This update for exempi fixes the following security issue: - CVE-2017-18236: The ASFSupport::ReadHeaderObject function allowed remote attackers to cause a denial of service infinite loop via a crafted .asf file bsc1085589 - CVE-2017-18233: Prevent integer overflow in the Chunk class that allowed...
Security update for xen (important)
This update for xen fixes the following issues: Security issues fixed: - CVE-2018-3665: Fix Lazy FP Save/Restore issue XSA-267 bsc1095242. - CVE-2018-12891: Fix possible Denial of Service DoS via certain PV MMU operations that affect the entire host XSA-264 bsc1097521. - CVE-2018-12892: Fix libxl...
Security update for ruby2.1 (important)
This ruby2.1 update to version 2.1.9 fixes the following issues: Security issues fixed: - CVE-2016-2339: heap overflow vulnerability in the Fiddle::Function.new"initialize" bsc1018808 - CVE-2015-7551: Unsafe tainted string usage in Fiddle and DL bsc959495 - CVE-2015-3900: hostname validation does...
Security update for postgresql93 (important)
This update for postgresql93 to version 9.3.14 fixes the several issues. These security issues were fixed: - CVE-2016-5423: CASE/WHEN with inlining can cause untrusted pointer dereference bsc993454. - CVE-2016-5424: Fix client programs' handling of special characters in database and role names...
Security update for tiff (important)
Tiff was updated to version 4.0.7. This update fixes the following issues: libtiff/tifaux.c + Fix crash in TIFFVGetFieldDefaulted when requesting Predictor tag and that the zip/lzw codec is not configured. http://bugzilla.maptools.org/showbug.cgi?id=2591 libtiff/tifcompress.c + Make TIFFNoDecode...
Security update for pacemaker (important)
This update for pacemaker fixes the following issues: Security issues fixed: - CVE-2016-7797: Notify other clients of a new connection only if the handshake has completed bsc967388, bsc1002767. - CVE-2016-7035: Fixed improper IPC guarding in pacemaker bsc1007433. Bug fixes: - bsc1003565: crmd:...
Security update for the Linux Kernel (important)
The openSUSE Leap 42.1 was updated to 4.1.27 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2016-4997: A buffer overflow in 32bit compatsetsockopt iptables handling could lead to a local privilege escalation. bsc986362 - CVE-2016-5829: Multiple heap-based...
Security update for Mozilla Thunderbird (important)
This update contains Mozilla Thunderbird 45.2. boo983549 It fixes security issues mostly affecting the e-mail program when used in a browser context, such as viewing a web page or HTMl formatted e-mail. The following vulnerabilities were fixed: - CVE-2016-2818, CVE-2016-2815: Memory safety bugs...
Security update for java-1_8_0-openjdk (important)
This update for java-180-openjdk fixes the following security issues - April 2016 Oracle CPU bsc976340: - CVE-2016-0686: Unspecified vulnerability allowed remote attackers to affect confidentiality, integrity, and availability via vectors related to Serialization. - CVE-2016-0687: Unspecified...
Security update for Chromium (important)
Chromium was updated to 50.0.2661.75 to fix the following vulnerabilities: - CVE-2016-1651: Out-of-bounds read in Pdfium JPEG2000 decoding - CVE-2016-1652: Universal XSS in extension bindings - CVE-2016-1653: Out-of-bounds write in V8 - CVE-2016-1654: Uninitialized memory read in media -...
Security update for samba (important)
This update fixes these security vulnerabilities: - CVE-2015-5370: DCERPC server and client were vulnerable to DOS and MITM attacks bsc936862. - CVE-2016-2110: A man-in-the-middle could have downgraded NTLMSSP authentication bsc973031. - CVE-2016-2111: Domain controller netlogon member computer...
Security update for xen (important)
xen was updated to fix 26 security issues. These security issues were fixed: - CVE-2013-4533: Buffer overflow in the pxa2xxsspload function in hw/arm/pxa2xx.c allowed remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted s-rxlevel value in a savevm image...
Security update for glibc (critical)
This update for glibc fixes the following security issues: fix stack overflow in the glibc libresolv DNS resolver function getaddrinfo, known as CVE-2015-7547. It is a client side networked/remote vulnerability...
Security update for glibc (important)
This update for glibc fixes the following issues: - errorcheck-mutex-no-elision.patch: Don't do lock elision on an error checking mutex boo956716, BZ 17514 - reinitialize-dlloadwritelock.patch: Reinitialize dlloadwritelock on fork boo958315, BZ 19282 - send-dg-buffer-overflow.patch: Fix getaddrin...
Security update for Java7 (important)
Update OpenJDK to 7u95 / IcedTea 2.6.4 including the following fixes: Security fixes - S8059054, CVE-2016-0402: Better URL processing - S8130710, CVE-2016-0448: Better attributes processing - S8132210: Reinforce JMX collector internals - S8132988: Better printing dialogues - S8133962,...
Security update for Mozilla Thunderbird (important)
Mozilla Thunderbird was updated to 38.5.0 to fix multiple security issues. The following vulnerabilities were fixed: boo959277 CVE-2015-7201: Miscellaneous memory safety hazards CVE-2015-7210: Use-after-free in WebRTC when datachannel is used after being destroyed CVE-2015-7212: Integer overflow...
Security update for mbedtls (important)
This update for mbedtls fixes the following security and non-security issues: - Update to 1.3.15 Fix potential double free if sslsetpsk is called more than once and some allocation fails. Cannot be forced remotely. Found by Guido Vranken, Intelworks. Fix potential heap corruption on windows when...
Security update for libpng16 (important)
The libpng16 package was updated to fix the following security issues: - CVE-2015-8126: Fixed a buffer overflow vulnerabilities in pnggetPLTE/pngsetPLTE functions bsc954980...
Security update for krb5 (important)
krb5 was updated to fix three security issues. These security issues were fixed: - CVE-2015-2695: Applications which call gssinquirecontext on a partially-established SPNEGO context could have caused the GSS-API library to read from a pointer using the wrong type, generally causing a process cras...
Security update for xen (important)
xen was updated to fix 13 security issues. These security issues were fixed: - CVE-2015-7972: Populate-on-demand balloon size inaccuracy can crash guests bsc951845. - CVE-2015-7969: Leak of main per-domain vcpu pointer array DoS bsc950703. - CVE-2015-7969: Leak of per-domain profiling-related vcp...
Security update for flash-player (critical)
flash-player was updated to fix one security issue. This security issue was fixed: - CVE-2015-5119: Unspecified vulnerability allowing remote attackers to take over the system bsc937339...
Security update for Adobe Flash Player (important)
Adobe Flash Player was updated to 11.2.202.466 to fix multiple security issues. The following vulnerabilities were fixed: CVE-2015-3096: bypass for CVE-2014-5333 CVE-2015-3098: vulnerabilities that could be exploited to bypass the same-origin-policy and lead to information disclosure CVE-2015-309...
Security update for flash-player (important)
The Adobe flash-player package was updated to version 11.2.202.460 to fix several security issues. The following vulnerabilities were fixed bsc930677: APSB15-09, CVE-2015-3044, CVE-2015-3077, CVE-2015-3078, CVE-2015-3079, CVE-2015-3080, CVE-2015-3081, CVE-2015-3082, CVE-2015-3083, CVE-2015-3084,...
Security update for seamonkey (important)
Mozilla seamonkey was updated to SeaMonkey 2.32 bnc910669 MFSA 2015-01/CVE-2014-8634/CVE-2014-8635 Miscellaneous memory safety hazards MFSA 2015-02/CVE-2014-8637 bmo1094536 Uninitialized memory use during bitmap rendering MFSA 2015-03/CVE-2014-8638 bmo1080987 sendBeacon requests lack an Origin...
chromium to 33.0.1750.152 stable release (important)
Chromium was updated to the 33.0.1750.152 stable channel uodate: - Security fixes: CVE-2014-1713: Use-after-free in Blink bindings CVE-2014-1714: Windows clipboard vulnerability CVE-2014-1705: Memory corruption in V8 CVE-2014-1715: Directory traversal issue Previous stable channel update...
chromium: update to 31.0.1650.57 (important)
Chromium was updated to 31.0.1650.57: Stable channel update: - Security Fixes: CVE-2013-6632: Multiple memory corruption issues. - Update to Chromium 31.0.1650.48 Stable Channel update: - Security fixes: CVE-2013-6621: Use after free related to speech input elements.. CVE-2013-6622: Use after fre...
chromium: update to 31.0.1650.57 (important)
Chromium was updated to 31.0.1650.57: Stable channel update: - Security Fixes: CVE-2013-6632: Multiple memory corruption issues. - Update to Chromium 31.0.1650.48 bnc850430 Stable Channel update: - Security fixes: CVE-2013-6621: Use after free related to speech input elements.. CVE-2013-6622: Use...
Mozilla updates August 2013 (important)
This patch contains updates for - Firefox to 23.0 - xulrunner to 17.0.8esr - Thunderbird to 17.0.8 - mozilla-nspr to 4.10 - mozilla-nss to 3.15,1 MFSA 2013-63/CVE-2013-1701/CVE-2013-1702 Miscellaneous memory safety hazards MFSA 2013-64/CVE-2013-1704 bmo883313 Use after free mutating DOM during...
flash-player to 11.2.202.273 (critical)
Flash Player was updated to 11.2.202.273 to fix critical security issues: bnc806415 APSB13-08, CVE-2013-0504, CVE-2013-0643, CVE-2013-0648 More information can be found on: https://www.adobe.com/support/security/bulletins/apsb13-08.h tml...
mysql-community-server: updated to 5.1.67 (important)
mysql community server was updated to 5.1.67, fixing bugs and security issues. See http://dev.mysql.com/doc/refman/5.1/en/news-5-1-67.html http://dev.mysql.com/doc/refman/5.1/en/news-5-1-66.html...
xen to fix various denial of service issues (important)
XEN was updated to fix various denial of service issues. - bnc789945 - CVE-2012-5510: xen: Grant table version switch list corruption vulnerability XSA-26 - bnc789944 - CVE-2012-5511: xen: Several HVM operations do not validate the range of their inputs XSA-27 - bnc789940 - CVE-2012-5512: xen:...