7580 matches found
Security update for python-py (moderate)
openSUSE Security Update: Security update for python-py Announcement ID: openSUSE-SU-2021:0851-1 Rating: moderate References: 1179805 1184505 Cross-References: CVE-2020-29651 CVSS scores: CVE-2020-29651 NVD : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2020-29651 SUSE: 5.5...
Security update for csync2 (moderate)
openSUSE Security Update: Security update for csync2 Announcement ID: openSUSE-SU-2021:0853-1 Rating: moderate References: 1147137 1147139 Cross-References: CVE-2019-15522 CVE-2019-15523 CVSS scores: CVE-2019-15522 NVD : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-15522 SUSE: 3.5...
Security update for gstreamer, gstreamer-plugins-bad, gstreamer-plugins-base, gstreamer-plugins-good, gstreamer-plugins-ugly (important)
openSUSE Security Update: Security update for gstreamer, gstreamer-plugins-bad, gstreamer-plugins-base, gstreamer-plugins-good, gstreamer-plugins-ugly Announcement ID: openSUSE-SU-2021:0822-1 Rating: important References: 1181255 SLE-13843 Cross-References: CVE-2021-3185 CVSS scores: CVE-2021-318...
Security update for cacti, cacti-spine (important)
openSUSE Security Update: Security update for cacti, cacti-spine Announcement ID: openSUSE-SU-2021:0755-1 Rating: important References: 1180804 Cross-References: CVE-2020-35701 CVSS scores: CVE-2020-35701 NVD : 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.2...
Security update for ceph (important)
openSUSE Security Update: Security update for ceph Announcement ID: openSUSE-SU-2021:0672-1 Rating: important References: 1183074 1183899 1184231 Cross-References: CVE-2021-20288 CVSS scores: CVE-2021-20288 NVD : 7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVE-2021-20288 SUSE: 8...
Security update for openexr (important)
openSUSE Security Update: Security update for openexr Announcement ID: openSUSE-SU-2021:0670-1 Rating: important References: 1184353 1184354 1184355 1185216 1185217 Cross-References: CVE-2021-20296 CVE-2021-23215 CVE-2021-26260 CVE-2021-3477 CVE-2021-3479 CVSS scores: CVE-2021-20296 NVD : 5.3...
Security update for wpa_supplicant (moderate)
openSUSE Security Update: Security update for wpasupplicant Announcement ID: openSUSE-SU-2021:0563-1 Rating: moderate References: 1184348 Cross-References: CVE-2021-30004 CVSS scores: CVE-2021-30004 NVD : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2021-30004 SUSE: 5.3...
Security update for isync (important)
openSUSE Security Update: Security update for isync Announcement ID: openSUSE-SU-2021:0533-1 Rating: important References: 1182488 Cross-References: CVE-2021-20247 CVSS scores: CVE-2021-20247 NVD : 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: openSUSE Backports SLE-15-SP2 A...
Security update for zstd (moderate)
openSUSE Security Update: Security update for zstd Announcement ID: openSUSE-SU-2021:0481-1 Rating: moderate References: 1183370 1183371 Cross-References: CVE-2021-24031 CVE-2021-24032 CVSS scores: CVE-2021-24031 NVD : 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N CVE-2021-24031 SUSE: 6.2...
Security update for python-djangorestframework (important)
openSUSE Security Update: Security update for python-djangorestframework Announcement ID: openSUSE-SU-2021:0322-1 Rating: important References: 1177205 Cross-References: CVE-2020-25626 CVSS scores: CVE-2020-25626 NVD : 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVE-2020-25626 SUSE: 7.1...
Security update for vlc (important)
openSUSE Security Update: Security update for vlc Announcement ID: openSUSE-SU-2021:0121-1 Rating: important References: 1133290 1172727 1180755 Cross-References: CVE-2020-13428 CVE-2020-26664 Affected Products: openSUSE Backports SLE-15-SP1 An update that solves two vulnerabilities and has one...
Security update for php7 (moderate)
openSUSE Security Update: Security update for php7 Announcement ID: openSUSE-SU-2021:0106-1 Rating: moderate References: 1180706 Cross-References: CVE-2020-7071 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for php7 fixes t...
Security update for openldap2 (moderate)
openSUSE Security Update: Security update for openldap2 Announcement ID: openSUSE-SU-2021:0102-1 Rating: moderate References: 1178909 1179503 Cross-References: CVE-2020-25709 CVE-2020-25710 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Descriptio...
Security update for cobbler (moderate)
openSUSE Security Update: Security update for cobbler Announcement ID: openSUSE-SU-2021:0058-1 Rating: moderate References: 1020376 1029276 1048183 1074594 1075014 1081714 1081739 1090205 1097733 1101670 1104189 1104190 1104287 1105440 1105442 1113747 1128754 1128926 1130658 1134588 1149075 11518...
Security update for gimp (important)
openSUSE Security Update: Security update for gimp Announcement ID: openSUSE-SU-2020:2357-1 Rating: important References: 1073628 1178726 Cross-References: CVE-2017-17787 Affected Products: openSUSE Leap 15.1 An update that solves one vulnerability and has one errata is now available. Description...
Security update for gdm (important)
openSUSE Security Update: Security update for gdm Announcement ID: openSUSE-SU-2020:2264-1 Rating: important References: 1178150 Cross-References: CVE-2020-16125 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for gdm fixes t...
Security update for xen (important)
openSUSE Security Update: Security update for xen Announcement ID: openSUSE-SU-2020:2162-1 Rating: important References: 1177409 1177412 1177413 1177414 1178591 1178963 Cross-References: CVE-2020-27670 CVE-2020-27671 CVE-2020-27672 CVE-2020-27674 CVE-2020-28368 Affected Products: openSUSE Leap 15...
Security update for xorg-x11-server (important)
openSUSE Security Update: Security update for xorg-x11-server Announcement ID: openSUSE-SU-2020:2147-1 Rating: important References: 1174908 1177596 Cross-References: CVE-2020-14360 CVE-2020-25712 Affected Products: openSUSE Leap 15.2 An update that fixes two vulnerabilities is now available...
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:2013-1 Rating: important References: 1178630 1178703 Cross-References: CVE-2020-16013 CVE-2020-16016 CVE-2020-16017 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes three vulnerabilities ...
Security update for pagure (moderate)
openSUSE Security Update: Security update for pagure Announcement ID: openSUSE-SU-2020:1765-1 Rating: moderate References: 1176987 Cross-References: CVE-2019-11556 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for pagure...
Security update for ark (moderate)
openSUSE Security Update: Security update for ark Announcement ID: openSUSE-SU-2020:1183-1 Rating: moderate References: 1174773 Cross-References: CVE-2020-16116 Affected Products: openSUSE Leap 15.2 openSUSE Leap 15.1 openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now...
Security update for python-typed-ast (low)
openSUSE Security Update: Security update for python-typed-ast Announcement ID: openSUSE-SU-2020:0609-1 Rating: low References: 1161562 1161563 1163532 Cross-References: CVE-2019-19274 CVE-2019-19275 Affected Products: openSUSE Backports SLE-15-SP1 An update that solves two vulnerabilities and ha...
Security update for mercurial (moderate)
This update for mercurial fixes the following issues: Security issues fixed: - CVE-2018-13346: Fix mpatchapply function in mpatch.c that incorrectly proceeds in cases where the fragment start is past the end of the original data bsc1100354. - CVE-2018-13347: Fix mpatch.c that mishandles integer...
opensuse-security@xxxxxxxxxxxx</li> <li><span class="identifier"> Date</span>: Tue, 19 Jun 2018 12:07:49 +0200 (CEST)</li> <li><span class="identifier"> Message-id</span>: <<a href="msg00036.html">[email protected]</a>></li> </ul> <!--X-Head-of-Message-End--> <!--X-Head-Body-Sep-Begin--> </div> <div class="body"> <!--X-Head-Body-Sep-End--> <!--X-Body-of-Message--> openSUSE Security Update: Security update for aubio<br> ______________________________________________________________________________<br> <br> Announcement ID: openSUSE-SU-2018:1733-1<br> Rating: low<br> References: #1072317 <br> Cross-References: CVE-2017-17554<br> Affected Products:<br> openSUSE Leap 42.3<br> ______________________________________________________________________________<br> <br> An update that fixes one vulnerability is now available.<br> <br> Description:<br> <br> This update for aubio fixes the following security issue:<br> <br> - CVE-2017-17554: Prevent NULL pointer dereference in the function<br> aubio_source_avcodec_readframe which may have lead to DoS when playing a<br> crafted audio file (bsc#1072317).<br> <br> <br> Patch Instructions:<br> <br> To install this openSUSE Security Update use the SUSE recommended <br> installation methods<br> like YaST online_update or "zypper patch".<br> <br> Alternatively you can run the command listed for your product:<br> <br> - openSUSE Leap 42.3:<br> <br> zypper in -t patch openSUSE-2018-651=1<br> <br> <br> <br> Package List:<br> <br> - openSUSE Leap 42.3 (i586 x86_64):<br> <br> aubio-debugsource-0.4.1-9.6.2<br> aubio-tools-0.4.1-9.6.2<br> aubio-tools-debuginfo-0.4.1-9.6.2<br> libaubio-devel-0.4.1-9.6.2<br> libaubio4-0.4.1-9.6.2<br> libaubio4-debuginfo-0.4.1-9.6.2<br> <br> - openSUSE Leap 42.3 (x86_64):<br> <br> libaubio4-32bit-0.4.1-9.6.2<br> libaubio4-debuginfo-32bit-0.4.1-9.6.2<br> <br> <br> References:<br> <br> <a rel="nofollow" href="https://www.suse.com/security/cve/CVE-2017-17554.html">https://www.suse.com/security/cve/CVE-2017-17554.html</a><br> <a rel="nofollow" href="https://bugzilla.suse.com/1072317">https://bugzilla.suse.com/1072317</a><br> <br> -- <br> To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@xxxxxxxxxxxx<br> For additional commands, e-mail: opensuse-security-announce+help@xxxxxxxxxxxx<br> <br> <!--X-Body-of-Message-End--> <!--X-MsgBody-End--> <!--X-Follow-Ups--> <!-- SwishCommand noindex --> </div> <table class="bodynav"> <tr> <td align="left"> < Previous </td> <td align="right"> Next > </td> </tr> </table> </div> <div class="visualClear"></div> </div> </div> </div> <div id="column-one"> <a name="indexes"></a> <div class="portlet" id="p-topnav"> <div class="pBody"> <ul> <li><a href="threads.html">Thread Index</a></li> <li><a href="author.html">Author Index</a></li> <li><a href="date.html">Date Index</a></li> <li><a href="all.html">All Messages</a></li> </ul> </div> </div> <div class="portlet" id="p-logo"> <a style="background-image: url(/skins/opensuse/opensuse.gif);" href="../" title="Back"></a> </div> <script type="text/javascript"> if (window.isMSIE55) fixalpha(); </script> <a name="search"></a> <div id="p-search" class="portlet" style="white-space: nowrap;"> <h5><label for="searchInput">Search this list</label> (Security update for aubio</h5> <!--X-Subject-Header-End--> <!--X-Head-of-Message--> <ul> <li><span class="identifier"> From</span>)
This update for aubio fixes the following security issue: - CVE-2017-17554: Prevent NULL pointer dereference in the function aubiosourceavcodecreadframe which may have lead to DoS when playing a crafted audio file bsc1072317...
Security update for Chromium (important)
Chromium was updated to 52.0.2743.82 to fix the following security issues boo989901: - CVE-2016-1706: Sandbox escape in PPAPI - CVE-2016-1707: URL spoofing on iOS - CVE-2016-1708: Use-after-free in Extensions - CVE-2016-1709: Heap-buffer-overflow in sfntly - CVE-2016-1710: Same-origin bypass in...
Security update for bind (important)
This update for bind fixes the following issues: Fix two assertion failures that can lead to a remote denial of service attack: CVE-2016-1285: An error when parsing signature records for DNAME can lead to named exiting due to an assertion failure. bsc970072 CVE-2016-1286: An error when parsing...
Security update for samba (important)
This update for samba fixes the following issues: Version update to 4.1.23. + Getting and setting Windows ACLs on symlinks can change permissions on link target; CVE-2015-7560; bso11648; boo968222. + Fix Out-of-bounds read in internal DNS server; CVE-2016-0771; bso11128; bso11686; boo968223. Also...
Security update for flash-player (important)
This update for flash-player fixes the following issues: - Security update to 11.2.202.569 boo965901: APSB16-04, CVE-2016-0964, CVE-2016-0965, CVE-2016-0966, CVE-2016-0967, CVE-2016-0968, CVE-2016-0969, CVE-2016-0970, CVE-2016-0971, CVE-2016-0972, CVE-2016-0973, CVE-2016-0974, CVE-2016-0975,...
Security update for bind (important)
This update for bind fixes the following security issue: - CVE-2015-8000: Fix remote denial of service by misparsing incoming responses boo958861...
Security update for flash-player (critical)
flash-player was updated to fix one security issue. This security issue was fixed: - CVE-2015-7645: Critical vulnerability affecting 11.2.202.535 used in Pawn Storm APSA15-05 bsc950474...
Security update for Adobe Flash Player (important)
Adobe Flash Player was updated to 11.2.202.468 to fix one security issue. The following vulnerability was fixed: CVE-2015-3113: A heap buffer overflow vulnerability could have allowed code execution bsc935701, APSB15-14...
Security update for xen (important)
Xen was updated to fix eight vulnerabilities. The following vulnerabilities were fixed: CVE-2015-2751: Certain domctl operations may be abused to lock up the host XSA-127 boo922709 CVE-2015-4103: Potential unintended writes to host MSI message data field via qemu XSA-128 boo931625 CVE-2015-4104:...
Security update for flash-player (critical)
Adobe Flash Player was updated to 11.2.202.440 bsc914463, APSA15-01, CVE-2015-0311. More information can be found on https://helpx.adobe.com/security/products/flash-player/apsa15-01.html An update of flashplayer executable binary for i386 is currently not available. Disabled!...
Security update for flash-player (important)
Adobe Flash Player was updated to 11.2.202.429 bsc913057: APSB15-01, CVE-2015-0301, CVE-2015-0302, CVE-2015-0303, CVE-2015-0304, CVE-2015-0305, CVE-2015-0306, CVE-2015-0307, CVE-2015-0308, CVE-2015-0309. - Disable flash player on machines without SSE2 bnc856386. More information can be found on...
Security update for flash-player (important)
flash-player received a security update to version to 11.2.202.425 bsc909219, which fixes: APSB14-27, CVE-2014-0580, CVE-2014-0587, CVE-2014-8443, CVE-2014-9162, CVE-2014-9163, CVE-2014-9164...
ppc64-diag: fix for tmp races and information disclosure (important)
ppc64-diag was updated to fix tmp race issues CVE-2014-4038 and a file disclosure problem in snapshot tarball generation CVE-2014-4039...
gnutls: fixed SSL certificate validation (critical)
The gnutls library was updated to fix SSL certificate validation. Remote man-in-the-middle attackers were able to make the verification believe that a SSL certificate is valid even though it was not...
flash-player: update to version 11.2.202.275 (critical)
Adobe Flash Player was updated to 11.2.202.275: bnc808973 APSB13-09, CVE-2013-0646, CVE-2013-0650, CVE-2013-1371, CVE-2013-1375 More information can be found on: http://www.adobe.com/support/security/bulletins/apsb13-09.ht ml...
flash-player: update to version 11.2.202.275 (critical)
Adobe Flash Player was updated to 11.2.202.275: bnc808973 APSB13-09, CVE-2013-0646, CVE-2013-0650, CVE-2013-1371, CVE-2013-1375 More information can be found on: http://www.adobe.com/support/security/bulletins/apsb13-09.ht ml...
flash-player to 11.2.202.262 (critical)
Adobe Flash Player was updated to 11.2.202.262 to fix various security issues and bugs...
java-1_7_0-openjdk: Update to icedtea-2.3.3 (important)
java-170-opendjk was updated to icedtea-2.3.3 bnc785814 Security fixes - S6631398, CVE-2012-3216: FilePermission improved path checking - S7093490: adjust package access in rmiregistry - S7143535, CVE-2012-5068: ScriptEngine corrected permissions - S7158796, CVE-2012-5070: Tighten properties...
flash-player to 11.2.202.238 (critical)
Adobe Flash Player was updated to 11.2.202.238 fixing various bugs and security issues...
xen (critical)
This update of XEN fixed multiple security flaws that could be exploited by local attackers to cause a Denial of Service or potentially escalate privileges. Additionally, several other upstream changes were backported...
xorg-x11-server (important)
The X server had two security issues and one bug that is fixed by this update. CVE-2011-4028: It is possible for a local attacker to deduce if a file exists or not by exploiting the way that Xorg creates its lock files. CVE-2011-4029: It is possible for a non-root local user to set the read...
Security update for opera (important)
openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2022:10182-1 Rating: important References: Cross-References: CVE-2022-3445 CVE-2022-3446 CVE-2022-3447 CVE-2022-3448 CVE-2022-3449 CVE-2022-3450 Affected Products: openSUSE Leap 15.4:NonFree An update that fixes 6...
Security update for opera (important)
openSUSE Security Update: Security update for opera Announcement ID: openSUSE-SU-2022:10181-1 Rating: important References: Cross-References: CVE-2022-3445 CVE-2022-3446 CVE-2022-3447 CVE-2022-3448 CVE-2022-3449 CVE-2022-3450 Affected Products: openSUSE Leap 15.3:NonFree An update that fixes 6...
Security update for python-nltk (moderate)
openSUSE Security Update: Security update for python-nltk Announcement ID: openSUSE-SU-2022:10040-1 Rating: moderate References: 1146427 1191030 Cross-References: CVE-2019-14751 CVE-2021-3828 CVSS scores: CVE-2019-14751 NVD : 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVE-2021-3828 NVD : 7....
Security update for xerces-j2 (important)
openSUSE Security Update: Security update for xerces-j2 Announcement ID: openSUSE-SU-2022:0503-1 Rating: important References: 1195108 Cross-References: CVE-2022-23437 CVSS scores: CVE-2022-23437 NVD : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2022-23437 SUSE: 7.5...
Security update for virglrenderer (important)
openSUSE Security Update: Security update for virglrenderer Announcement ID: openSUSE-SU-2022:0479-1 Rating: important References: 1195389 Cross-References: CVE-2022-0135 CVSS scores: CVE-2022-0135 SUSE: 7.5 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H Affected Products: openSUSE Leap 15.3 openSU...
Security update for gegl (important)
openSUSE Security Update: Security update for gegl Announcement ID: openSUSE-SU-2021:4210-1 Rating: important References: 1194045 Cross-References: CVE-2021-45463 CVSS scores: CVE-2021-45463 SUSE: 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.3 An update tha...