7574 matches found
Security update for virtualbox (important)
openSUSE Security Update: Security update for virtualbox Announcement ID: openSUSE-SU-2021:0630-1 Rating: important References: 1181197 1181198 1183125 1183329 1184542 Cross-References: CVE-2021-2074 CVE-2021-2129 CVE-2021-2264 CVSS scores: CVE-2021-2074 NVD : 8.2...
Security update for isync (important)
openSUSE Security Update: Security update for isync Announcement ID: openSUSE-SU-2021:0516-1 Rating: important References: 1182488 Cross-References: CVE-2021-20247 CVSS scores: CVE-2021-20247 NVD : 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N Affected Products: openSUSE Leap 15.2 An update th...
Security update for libmysofa (moderate)
openSUSE Security Update: Security update for libmysofa Announcement ID: openSUSE-SU-2021:0459-1 Rating: moderate References: 1149919 1149920 1149922 1149924 1149926 1159839 1160040 1181977 1181978 1181979 1181980 1181981 1182883 Cross-References: CVE-2019-16091 CVE-2019-16092 CVE-2019-16093...
Security update for connman (moderate)
openSUSE Security Update: Security update for connman Announcement ID: openSUSE-SU-2021:0452-1 Rating: moderate References: 1181751 Cross-References: CVE-2021-26675 CVE-2021-26676 CVSS scores: CVE-2021-26675 NVD : 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-26676 NVD : 6.5...
Security update for MozillaFirefox (important)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2021:0373-1 Rating: important References: 1182357 1182614 Cross-References: CVE-2021-23968 CVE-2021-23969 CVE-2021-23973 CVE-2021-23978 CVSS scores: CVE-2021-23968 SUSE: 7.5...
Security update for cups (moderate)
openSUSE Security Update: Security update for cups Announcement ID: openSUSE-SU-2021:0253-1 Rating: moderate References: 1170671 1180520 Cross-References: CVE-2019-8842 CVE-2020-10001 Affected Products: openSUSE Leap 15.2 An update that fixes two vulnerabilities is now available. Description: Thi...
Security update for nodejs8 (moderate)
openSUSE Security Update: Security update for nodejs8 Announcement ID: openSUSE-SU-2021:0195-1 Rating: moderate References: 1180554 Cross-References: CVE-2020-8287 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for nodejs8...
Security update for openexr (moderate)
openSUSE Security Update: Security update for openexr Announcement ID: openSUSE-SU-2020:2351-1 Rating: moderate References: 1179879 Cross-References: CVE-2020-16587 CVE-2020-16588 CVE-2020-16589 Affected Products: openSUSE Leap 15.2 An update that fixes three vulnerabilities is now available...
Security update for ovmf (moderate)
openSUSE Security Update: Security update for ovmf Announcement ID: openSUSE-SU-2020:2314-1 Rating: moderate References: 1177789 Cross-References: CVE-2019-14584 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for ovmf fixes...
Security update for neomutt (moderate)
openSUSE Security Update: Security update for neomutt Announcement ID: openSUSE-SU-2020:2127-1 Rating: moderate References: 1172906 1172935 1173197 1179035 1179113 Cross-References: CVE-2020-14093 CVE-2020-14154 CVE-2020-14954 CVE-2020-28896 Affected Products: openSUSE Leap 15.2 openSUSE Leap 15....
Security update for chromium (important)
openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2020:2055-1 Rating: important References: 1178923 Cross-References: CVE-2019-8075 CVE-2020-16012 CVE-2020-16014 CVE-2020-16015 CVE-2020-16018 CVE-2020-16019 CVE-2020-16020 CVE-2020-16021 CVE-2020-16022...
Security update for kernel-firmware (important)
openSUSE Security Update: Security update for kernel-firmware Announcement ID: openSUSE-SU-2020:1962-1 Rating: important References: 1178671 Cross-References: CVE-2020-12321 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for...
Security update for slurm_18_08 (moderate)
openSUSE Security Update: Security update for slurm1808 Announcement ID: openSUSE-SU-2020:1969-1 Rating: moderate References: 1172004 Cross-References: CVE-2020-12693 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...
Security update for SDL (moderate)
openSUSE Security Update: Security update for SDL Announcement ID: openSUSE-SU-2020:1916-1 Rating: moderate References: 1141844 Cross-References: CVE-2019-13616 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for SDL fixes th...
Security update for MozillaFirefox (important)
openSUSE Security Update: Security update for MozillaFirefox Announcement ID: openSUSE-SU-2020:1909-1 Rating: important References: 1178588 Cross-References: CVE-2020-26950 Affected Products: openSUSE Leap 15.1 An update that fixes one vulnerability is now available. Description: This update for...
Security update for dpdk (critical)
openSUSE Security Update: Security update for dpdk Announcement ID: openSUSE-SU-2020:1593-1 Rating: critical References: 1176590 Cross-References: CVE-2020-14374 CVE-2020-14375 CVE-2020-14376 CVE-2020-14377 CVE-2020-14378 Affected Products: openSUSE Leap 15.1 An update that fixes 5 vulnerabilitie...
Security update for permissions (moderate)
openSUSE Security Update: Security update for permissions Announcement ID: openSUSE-SU-2020:0957-1 Rating: moderate References: 1171883 Affected Products: openSUSE Leap 15.1 An update that contains security fixes can now be installed. Description: This update for permissions fixes the following...
Security update for prboom-plus (moderate)
openSUSE Security Update: Security update for prboom-plus Announcement ID: openSUSE-SU-2020:0820-1 Rating: moderate References: 1171974 Cross-References: CVE-2019-20797 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This upda...
Security update for wireshark (moderate)
openSUSE Security Update: Security update for wireshark Announcement ID: openSUSE-SU-2019:1669-1 Rating: moderate References: 1136021 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 An update that contains security fixes can now be installed. Description: This update for wireshark to...
Security update for ntpsec (important)
openSUSE Security Update: Security update for ntpsec Announcement ID: openSUSE-SU-2019:0082-1 Rating: important References: 1122131 1122132 1122134 1122144 Cross-References: CVE-2019-6442 CVE-2019-6443 CVE-2019-6444 CVE-2019-6445 Affected Products: openSUSE Leap 15.0 An update that fixes four...
Security update for nemo-extensions (important)
This update for nemo-extensions fixes the following issues: The following security vulnerability was fixed: - Prevent unprivileged users from adding other users to sambashare boo1084703 This update was imported from the openSUSE:Leap:15.0:Update update project...
Security update for chromium (moderate)
This update for Chromium to version 69.0.3497.100 fixes the following issues: - Security relevant fixes from internal audits, fuzzing and other initiatives booboo1108774...
Security update for qutebrowser (moderate)
This update for qutebrowser fixes the following issues: Security issue fixed: - CVE-2018-1000559: Fix an XSS issue on qute://history boo1101507...
Security update for roundcubemail (important)
roundcubemail was updated to version 1.1.7 and fixes the following issues: - Update to 1.1.7 A maliciously crafted FROM value could cause extra parameters to be passed to the sendmail command boo1012493 A maliciously crafted email could cause untrusted code to be executed cross site scripting usi...
Security update for MozillaFirefox, mozilla-nss (important)
This update for MozillaFirefox and mozilla-nss fixes the following issues: MozillaFirefox was updated to version 49.0 boo999701 - New features Updated Firefox Login Manager to allow HTTPS pages to use saved HTTP logins. Added features to Reader Mode that make it easier on the eyes and the ears...
Security update for MozillaFirefox, mozilla-nss (important)
Mozilla Firefox was updated to 48.0 to fix security issues, bugs, and deliver various improvements. The following major changes are included: - Process separation e10s is enabled for some users - Add-ons that have not been verified and signed by Mozilla will not load - WebRTC enhancements - The...
Security update for obs-service-source_validator (important)
obs-service-sourcevalidator was updated to fix one security issue. This security issue was fixed: - CVE-2016-4007: Several maintained source services are vulnerable to code/paramter injection bsc967265. This non-security issue was fixed: - bsc967610: Several occurrences of uninitialized value...
Security update for obs-service-source_validator (important)
obs-service-sourcevalidator was updated to fix one security issue. This security issue was fixed: - CVE-2016-4007: Several maintained source services are vulnerable to code/paramter injection bsc967265. This non-security issue was fixed: - bsc967610: Several occurrences of uninitialized value...
Security update for bsh2 (important)
This update for bsh2 fixes the following issues: - Version update to 2.0b6 boo967593 CVE-2016-2510 Upstream developement moved to github No obvious changelog apart from the above...
Security update for Adobe Flash Player (important)
This update to Adobe Flash Player 11.2.202.577 fixes a number of vulnerabilities that could have allowed remote attackers to execute arbitrary code through crafted content. boo970547 APSB16-08, CVE-2016-0960, CVE-2016-0961, CVE-2016-0962, CVE-2016-0963, CVE-2016-0986, CVE-2016-0987, CVE-2016-0988...
Security update for openldap2 (important)
This update fixes the following security issues: - CVE-2015-6908: The bergetnext function allowed remote attackers to cause a denial of service reachable assertion and application crash via crafted BER data, as demonstrated by an attack against slapd. bsc945582 - CVE-2015-4000: Fix weak...
Security update for bind (important)
This update for bind fixes the following issues: - CVE-2015-8704: Specific APL data allowed remote attacker to trigger a crash in certain configurations bsc962189...
Security update for haproxy (important)
haproxy was updated to fix two security issues. These security issues were fixed: - CVE-2015-3281: The bufferslowrealign function in HAProxy did not properly realign a buffer that is used for pending outgoing data, which allowed remote attackers to obtain sensitive information uninitialized memor...
Security update for libXfont (important)
libXFont was updated to fix three vulnerabilities when parsing BDF files bnc921978 As libXfont is used by the X server to read font files, and an unprivileged user with access to the X server can tell the X server to read a given font file from a path of their choosing, these vulnerabilities have...
Security update for docker (important)
docker was updated to version 1.3.2 to fix two security issues. These security issues were fixed: - Symbolic and hardlink issues leading to privilege escalation CVE-2014-6407. - Potential container escalation CVE-2014-6408. There non-security issues were fixed: - Fix deadlock in docker ps -f...
LibreOffice: two security fixes (important)
This update fixes memory corruption vulnerability in DOCM import and data exposure using crafted OLE objects...
flash-player (critical)
Security update to 11.2.202.394 bnc886472: APSB14-17, CVE-2014-0537, CVE-2014-0539, CVE-2014-4671 - License update LICENSE - Flash%20Player14.0.pdf...
perl-HTTP-Body: update to 1.19 release with security fixes (important)
perl-HTTP-Body was updated to 1.19 and also received a security fix for a potential remote code injection when upload files...
flash-player to 11.2.202.335 (important)
Adobe Flash Player was updated to version 11.2.202.335: bnc858822 APSB14-02, CVE-2014-0491, CVE-2014-0492 More information can be found on: http://helpx.adobe.com/security/products/flash-player/apsb14 -02.html...
ca-certificates-mozilla: add, remove or blacklist some certificates (important)
The Mozilla CA certificates package was updated to match the current Mozilla revision 1.95 of certdata.txt. It blacklists some misused certificate authorities, adds some new and adjusts some others. On openSUSE 13.1 a problem with names was also fixed. distrust: AC DG Tresor SSL bnc854367 new:...
openssh: security fix for remote code execution with AES-GCM (important)
openssh was updated to fix a memory corruption when AES-GCM is used which could lead to remote code execution after successful authentication. CVE-2013-4548...
update for MozillaFirefox, MozillaThunderbird, mozilla-nspr, mozilla-nss, seamonkey, xulrunner (important)
Changes in seamonkey: - update to SeaMonkey 2.20 bnc833389 MFSA 2013-63/CVE-2013-1701/CVE-2013-1702 Miscellaneous memory safety hazards MFSA 2013-64/CVE-2013-1704 bmo883313 Use after free mutating DOM during SetBody MFSA 2013-65/CVE-2013-1705 bmo882865 Buffer underflow when generating CRMF reques...
Mesa: security fixes for Intel drivers (important)
Mesa was updated to fix a security problem in the Intel drivers, where potentially remote attackers via 3D models could inject code. CVE-2013-1872 - i965: fix problem with constant out of bounds access bnc 828007...
kernel (critical)
The openSUSE 12.3 kernel was updated to fix a critical security issue and two reiserfs bugs. CVE-2013-2850: Incorrect strncpy usage in the network listening part of the iscsi target driver could have been used by remote attackers to crash the kernel or execute code. This required the iscsi target...
flash-player to 11.2.202.262 (critical)
Adobe Flash Player was updated to 11.2.202.262 to fix various security issues and bugs...
update for plib (important)
This update of plib fixed two stack-based buffer overflows...
update for cgit (important)
Specially-crafted commits can cause code to be executed on the clients due to improperly quoted arguments...
update for chromium (important)
Chromium was upgraded to version 24.0.1290 which fixed multiple security flaws...
freeradius: fix stack overflow in TLS handling (important)
This update of freeradius fixes a stack overflow in TLS handling, which can be exploited by remote attackers able to access Radius to execute code...
update for cobbler (important)
The xmlrpc interface of cobbler was prone to command injectoin...