Lucene search
K
OpensuseRecent

7843 matches found

OPENSUSE Linux
OPENSUSE Linux
•added 2013/07/04 12:4 p.m.•39 views

MozillaThunderbird: 17.0.7 (important)

MozillaThunderbird was updated to Thunderbird 17.0.7 bnc825935 Security issues fixed: MFSA 2013-49/CVE-2013-1682 Miscellaneous memory safety hazards MFSA 2013-50/CVE-2013-1684/CVE-2013-1685/CVE-2013-1686 Memory corruption found using Address Sanitizer MFSA 2013-51/CVE-2013-1687 bmo863933, bmo8668...

10CVSS4AI score0.69021EPSS
Exploits9References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/07/04 9:4 a.m.•41 views

regular updates for Mozilla applications (FF/TB) (important)

update to Firefox 22.0 and Thunderbird 17.0.7 including the following security fixes MFSA 2013-49 Miscellaneous memory safety hazards MFSA 2013-50 Memory corruption found using Address Sanitizer MFSA 2013-51 Privileged content access and execution via XBL MFSA 2013-52 Arbitrary code execution...

10CVSS2.4AI score0.69021EPSS
Exploits11References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/06/19 11:5 a.m.•30 views

kernel (critical)

The openSUSE 12.3 kernel was updated to fix a critical security issue and two reiserfs bugs. CVE-2013-2850: Incorrect strncpy usage in the network listening part of the iscsi target driver could have been used by remote attackers to crash the kernel or execute code. This required the iscsi target...

7.9CVSS3.1AI score0.07313EPSS
Exploits1References3
OPENSUSE Linux
OPENSUSE Linux
•added 2013/06/19 11:4 a.m.•73 views

kernel: security and bugfix update (critical)

The openSUSE 12.2 kernel was updated to fix security issue and other bugs. Security issues fixed: CVE-2013-2850: Incorrect strncpy usage in the network listening part of the iscsi target driver could have been used by remote attackers to crash the kernel or execute code. This required the iscsi...

7.9CVSS2AI score0.47709EPSS
Exploits16References8
OPENSUSE Linux
OPENSUSE Linux
•added 2013/06/13 10:4 a.m.•39 views

kernel (critical)

The openSUSE 12.1 kernel was updated to fix a critical security issue and also some reiserfs bugs. CVE-2013-2850: Incorrect strncpy usage in the network listening part of the iscsi target driver could have been used by remote attackers to crash the kernel or execute code. This required the iscsi...

7.9CVSS2.5AI score0.07313EPSS
Exploits1References3
OPENSUSE Linux
OPENSUSE Linux
•added 2013/06/10 6:18 p.m.•25 views

flash-player to 11.2.202.285 (important)

flash-player was updated to security update to 11.2.202.285 APSB13-14, CVE-2013-2728, CVE-2013-3324, CVE-2013-3325, CVE-2013-3326, CVE-2013-3327, CVE-2013-3328, CVE-2013-3329, CVE-2013-3330, CVE-2013-3331, CVE-2013-3332, CVE-2013-3333, CVE-2013-3334, CVE-2013-3335...

10CVSS1.2AI score0.0539EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/06/10 6:16 p.m.•50 views

kernel: security and bugfix update (critical)

The openSUSE 12.3 kernel was updated to fix a critical security issue, other security issues and several bugs. Security issues fixed: CVE-2013-2094: The perfsweventinit function in kernel/events/core.c in the Linux kernel used an incorrect integer data type, which allowed local users to gain...

7.2CVSS1.3AI score0.47709EPSS
Exploits15References8
OPENSUSE Linux
OPENSUSE Linux
•added 2013/06/10 6:13 p.m.•28 views

MozillaFirefox: update to version 21.0 (important)

MozillaFirefox was updated to Firefox 21.0 bnc819204 MFSA 2013-41/CVE-2013-0801/CVE-2013-1669 Miscellaneous memory safety hazards MFSA 2013-42/CVE-2013-1670 bmo853709 Privileged access for content level constructor MFSA 2013-43/CVE-2013-1671 bmo842255 File input control has access to full path MF...

10CVSS1.4AI score0.10893EPSS
Exploits5References3
OPENSUSE Linux
OPENSUSE Linux
•added 2013/06/10 6:5 p.m.•35 views

xulrunner to 17.0.6esr (important)

Mozilla xulrunner was updated to 17.0.6esr bnc819204 MFSA 2013-41/CVE-2013-0801/CVE-2013-1669 Miscellaneous memory safety hazards MFSA 2013-42/CVE-2013-1670 bmo853709 Privileged access for content level constructor MFSA 2013-46/CVE-2013-1674 bmo860971 Use-after-free with video and onresize event...

10CVSS2.7AI score0.10893EPSS
Exploits5References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/06/10 5:23 p.m.•98 views

kernel: security and bugfix update (important)

The Linux kernel was updated to 3.0.74 to fix various bugs and security issues...

7.8CVSS1.6AI score0.47709EPSS
Exploits36References108
OPENSUSE Linux
OPENSUSE Linux
•added 2013/06/10 5:12 p.m.•36 views

MozillaThunderbird: update to 17.0.6 (important)

MozillaThunderbird was updated to security update Thunderbird 17.0.6 bnc819204: MFSA 2013-41/CVE-2013-0801/CVE-2013-1669 Miscellaneous memory safety hazards MFSA 2013-42/CVE-2013-1670 bmo853709 Privileged access for content level constructor MFSA 2013-46/CVE-2013-1674 bmo860971 Use-after-free wit...

10CVSS2.7AI score0.10893EPSS
Exploits5References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/06/10 5:11 p.m.•30 views

flash-player to 11.2.202.285 (important)

flash-player was updated to security update to 11.2.202.285: APSB13-14, CVE-2013-2728, CVE-2013-3324, CVE-2013-3325, CVE-2013-3326, CVE-2013-3327, CVE-2013-3328, CVE-2013-3329, CVE-2013-3330, CVE-2013-3331, CVE-2013-3332, CVE-2013-3333, CVE-2013-3334, CVE-2013-3335...

10CVSS1.2AI score0.0539EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/05/31 4:4 p.m.•60 views

kernel: security and bugfix update (important)

The openSUSE 12.1 kernel was updated to fix a severe secrutiy issue and various bugs. Security issues fixed: CVE-2013-2094: The perfsweventinit function in kernel/events/core.c in the Linux kernel used an incorrect integer data type, which allowed local users to gain privileges via a crafted...

7.2CVSS3AI score0.47709EPSS
Exploits20References9
OPENSUSE Linux
OPENSUSE Linux
•added 2013/05/27 5:5 p.m.•41 views

MozillaThunderbird: update to 17.0.6 (important)

MozillaThunderbird was updated to security update Thunderbird 17.0.6 bnc819204: MFSA 2013-41/CVE-2013-0801/CVE-2013-1669 Miscellaneous memory safety hazards MFSA 2013-42/CVE-2013-1670 bmo853709 Privileged access for content level constructor MFSA 2013-46/CVE-2013-1674 bmo860971 Use-after-free wit...

10CVSS2.7AI score0.10893EPSS
Exploits5References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/05/27 5:4 p.m.•33 views

xulrunner to 17.0.6esr (important)

Mozilla xulrunner was updated to 17.0.6esr bnc819204 MFSA 2013-41/CVE-2013-0801/CVE-2013-1669 Miscellaneous memory safety hazards MFSA 2013-42/CVE-2013-1670 bmo853709 Privileged access for content level constructor MFSA 2013-46/CVE-2013-1674 bmo860971 Use-after-free with video and onresize event...

10CVSS2.7AI score0.10893EPSS
Exploits5References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/05/24 5:6 p.m.•29 views

MozillaFirefox: update to version 21.0 (important)

MozillaFirefox was updated to Firefox 21.0 bnc819204 MFSA 2013-41/CVE-2013-0801/CVE-2013-1669 Miscellaneous memory safety hazards MFSA 2013-42/CVE-2013-1670 bmo853709 Privileged access for content level constructor MFSA 2013-43/CVE-2013-1671 bmo842255 File input control has access to full path MF...

10CVSS1.4AI score0.10893EPSS
Exploits5References3
OPENSUSE Linux
OPENSUSE Linux
•added 2013/04/13 10:4 a.m.•25 views

flash-player update to 11.2.202.280 (important)

Adobe Flash Player was updated to 11.2.202.280: http://www.adobe.com/support/security/bulletins/apsb13-11.ht ml APSB13-11, CVE-2013-1378, CVE-2013-1379, CVE-2013-1380, CVE-2013-2555...

10CVSS0.4AI score0.08458EPSS
Exploits3References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/04/08 7:4 a.m.•42 views

postgresql: security and bugfix update to 9.0.13 (important)

Postgresql was updated to version 9.0.13 bnc812525: CVE-2013-1899: Fix insecure parsing of server command-line switches. A connection request containing a database name that begins with "-" could be crafted to damage or destroy files within the server's data directory, even if the request is...

8.5CVSS0.9AI score0.54312EPSS
Exploits4References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/04/05 6:6 p.m.•49 views

Mozilla Firefox and others: Update to 20.0/17.0.5 releases (important)

The Mozilla suite received security and bugfix updates: Firefox was updated to version 20.0. Thunderbird was updated to version 17.0.5. Seamonkey was updated to version 2.17 mozilla-nss was updated to version 3.14.3. mozilla-nspr was updated to version 4.9.6. mozilla-nspr was updated to version...

10CVSS1.2AI score0.07953EPSS
Exploits1References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/04/05 3:6 p.m.•58 views

Mozilla Firefox and others: Update to Firefox 20.0 release (important)

The Mozilla suite received security and bugfix updates: Mozilla Firefox was updated to version 20.0. Mozilla Thunderbird was updated to version 17.0.5. Mozilla Seamonkey was updated to version 17.0.5. Mozilla XULRunner was updated to version 17.0.5. mozilla-nss was updated to version 3.14.3...

10CVSS1.6AI score0.07953EPSS
Exploits1References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/04/05 10:4 a.m.•36 views

postgresql92: Various security fixes. Update to 9.2.4. (important)

postgresql was updated to version 9.2.4 bnc812525: CVE-2013-1899: Fix insecure parsing of server command-line switches. A connection request containing a database name that begins with "-" could be crafted to damage or destroy files within the server's data directory, even if the request is...

8.5CVSS1.2AI score0.54312EPSS
Exploits4References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/04/05 10:4 a.m.•36 views

postgresql91 to version 9.1.9. (important)

postgresql was updated to version 9.1.9 bnc812525: CVE-2013-1899: Fix insecure parsing of server command-line switches. A connection request containing a database name that begins with "-" could be crafted to damage or destroy files within the server's data directory, even if the request is...

8.5CVSS1AI score0.54312EPSS
Exploits4References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/04/04 6:4 p.m.•42 views

NRPE metacharacter filtering omission (important)

NRPE the Nagios Remote Plug-In Executor allows the passing of $ to plugins/scripts which, if run under bash, will execute that shell command under a subprocess and pass the output as a parameter to the called script. Using this, it is possible to get called scripts, such as checkhttp, to execute...

7.5CVSS2.7AI score0.65724EPSS
Exploits9References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/04/04 5:5 p.m.•37 views

NRPE metacharacter filtering omission (important)

NRPE the Nagios Remote Plug-In Executor allows the passing of $ to plugins/scripts which, if run under bash, will execute that shell command under a subprocess and pass the output as a parameter to the called script. Using this, it is possible to get called scripts, such as checkhttp, to execute...

7.5CVSS2.7AI score0.65724EPSS
Exploits9References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/21 8:4 a.m.•30 views

pidgin: 2.10.7 update to fix security issues and bugs (important)

Pidgin was updated to 2.10.7 to fix various security issues and the bug that IRC did not work at all in 12.3. Changes: - Add pidgin-irc-sasl.patch: link irc module to SASL. Allows the IRC module to be loaded bnc806975. - Update to version 2.10.7 bnc804742: + Alien hatchery: - No changes + General...

6.8CVSS0.3AI score0.03121EPSS
Exploits2References2
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/20 2:5 p.m.•27 views

firebird: fix for remote stack overflow (important)

This update fixes a bug which allows an unauthenticated remote attacker to cause a stack overflow in server code, resulting in either server crash or even code execution as the user running firebird...

6.8CVSS4.1AI score0.42166EPSS
Exploits6References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/20 2:4 p.m.•38 views

update for perl (important)

Perl was updated to fix 3 security issues: - fix rehash denial of service compute time bnc804415 CVE-2013-1667 - improve CGI crlf escaping bnc789994 CVE-2012-5526 - sanitize input in Maketext.pm to avoid code injection bnc797060 CVE-2012-6329...

7.5CVSS2.3AI score0.61604EPSS
Exploits13References3
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/20 11:5 a.m.•36 views

update for perl (important)

Perl was updated to fix 3 security issues: - fix rehash denial of service compute time bnc804415 CVE-2013-1667 - improve CGI crlf escaping bnc789994 CVE-2012-5526 - sanitize input in Maketext.pm to avoid code injection bnc797060 CVE-2012-6329 In openSUSE 12.1 also the following non-security bug w...

7.5CVSS2AI score0.61604EPSS
Exploits13References4
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/20 11:4 a.m.•23 views

fix for remote stack overflow (important)

This update fixes a bug which allows an unauthenticated remote attacker to cause a stack overflow in server code, resulting in either server crash or even code execution as the user running firebird...

6.8CVSS4.2AI score0.42166EPSS
Exploits6References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/15 12:5 p.m.•26 views

seamonkey: update to 2.16.1 (important)

seamonkey was updated to version 2.16.1 fixing a severe security issue. MFSA 2013-29/CVE-2013-0787 bmo848644 Use-after-free in HTML Editor...

9.3CVSS1.9AI score0.06398EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/15 12:4 p.m.•36 views

MozillaFirefox: Updated to 19.0.2 (important)

Mozilla Firefox was updated to 19.0.2 bnc808243 fixing: MFSA 2013-29/CVE-2013-0787 bmo848644 Use-after-free in HTML Editor could be used for code execution blocklist updates...

9.3CVSS0.5AI score0.06398EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/15 12:4 p.m.•31 views

xulrunner to 17.0.4esr (important)

xulrunner was updated to 17.0.4esr bnc808243 to fix a important security issue: MFSA 2013-29/CVE-2013-0787 bmo848644 Use-after-free in HTML Editor...

9.3CVSS1.2AI score0.06398EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/15 12:4 p.m.•29 views

MozillaThunderbird: 17.0.4 release (important)

MozillaThunderbird was updated to 17.0.4 bnc808243 MFSA 2013-29/CVE-2013-0787 bmo848644 Use-after-free in HTML Editor...

9.3CVSS1.3AI score0.06398EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/14 11:4 p.m.•34 views

flash-player: update to version 11.2.202.275 (critical)

Adobe Flash Player was updated to 11.2.202.275: bnc808973 APSB13-09, CVE-2013-0646, CVE-2013-0650, CVE-2013-1371, CVE-2013-1375 More information can be found on: http://www.adobe.com/support/security/bulletins/apsb13-09.ht ml...

10CVSS1AI score0.09257EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/14 5:5 p.m.•34 views

flash-player: update to version 11.2.202.275 (critical)

Adobe Flash Player was updated to 11.2.202.275: bnc808973 APSB13-09, CVE-2013-0646, CVE-2013-0650, CVE-2013-1371, CVE-2013-1375 More information can be found on: http://www.adobe.com/support/security/bulletins/apsb13-09.ht ml...

10CVSS1AI score0.09257EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/12 9:4 p.m.•45 views

java-1_6_0-openjdk: update to 1.12.4 (important)

java-160-openjdk aka IcedTea was updated to 1.12.4 - S8007014, CVE-2013-0809: Improve image handling - S8007675, CVE-2013-1493: Improve color conversion...

10CVSS2.9AI score0.85882EPSS
Exploits10References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/12 11:4 a.m.•24 views

Mozilla updates (FF 19.0.2, SM 2.16.1, TB 17.0.4) (important)

Update to - Firefox 19.0.2 - Seamonkey 2.16.1 - Thunderbird 17.0.4 which fix a use-after-free in HTML Editor which could allow for arbitrary code execution...

9.3CVSS2.8AI score0.06398EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/12 11:4 a.m.•53 views

java-1_6_0-openjdk: update to 1.12.4 (important)

java-160-openjdk aka IcedTea was updated to 1.12.4 bnc807487 - S8007014, CVE-2013-0809: Improve image handling - S8007675, CVE-2013-1493: Improve color conversion...

10CVSS2.8AI score0.85882EPSS
Exploits10References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/07 5:4 p.m.•29 views

pidgin: various security fixes (important)

pidgin was updated to fix security issues: - Fix a crash when receiving UPnP responses with abnormally long values. CVE-2013-0274 - Fix a crash in Sametime when a malicious server sends us an abnormally long user ID. CVE-2013-0273 - Fix a bug where the MXit server or a man-in-the-middle could...

6.8CVSS1.8AI score0.0286EPSS
Exploits1References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/07 2:4 p.m.•25 views

pidgin: various security fixes (important)

pidgin was updated to fix security issues: - Fix a crash when receiving UPnP responses with abnormally long values. CVE-2013-0274 - Fix a crash in Sametime when a malicious server sends us an abnormally long user ID. CVE-2013-0273 - Fix a bug where the MXit server or a man-in-the-middle could...

6.8CVSS2.2AI score0.03121EPSS
Exploits2References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/05 6:4 p.m.•63 views

kernel: security and bugfix update (important)

The Linux kernel was updated to fix various bugs and security issues: CVE-2013-0871: Race condition in the ptrace functionality in the Linux kernel allowed local users to gain privileges via a PTRACESETREGS ptrace system call in a crafted application, as demonstrated by ptracedeath. CVE-2013-0160...

7.8CVSS3.8AI score0.08738EPSS
Exploits20References35
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/05 5:4 p.m.•58 views

kernel: fixed local privilege escalation (important)

The Linux kernel was updated to 3.4.33 and to fix a local root privilege escalation and various other security and non-security bugs. CVE-2013-1763: A out of bounds access in sockdiag could be used by local attackers to execute code in kernel context and so become root. CVE-2013-0160: The atime o...

7.2CVSS4.7AI score0.0418EPSS
Exploits20References8
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/01 6:4 p.m.•41 views

java-1_6_0-openjdk: update to icedtea 1.12.3 (important)

java-160-openjdk was updated to IcedTea 1.12.3 bnc804654 containing security and bugfixes: Security fixes - S8006446: Restrict MBeanServer access CVE-2013-1486 - S8006777: Improve TLS handling of invalid messages Lucky 13 CVE-2013-0169 - S8007688: Blacklist known bad certificate issued by DigiCer...

10CVSS2.4AI score0.35584EPSS
Exploits1References2
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/01 5:5 p.m.•58 views

java-1_7_0-openjdk: update to 2.3.6 (critical)

java-170-openjdk was updated to icedtea-2.3.6 bnc803379 containing various security and bugfixes: Security fixes - S6563318, CVE-2013-0424: RMI data sanitization - S6664509, CVE-2013-0425: Add logging context - S6664528, CVE-2013-0426: Find log level matching its name or value given at constructi...

10CVSS0.3AI score0.89987EPSS
Exploits10References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/03/01 5:4 p.m.•60 views

java-1_6_0-openjdk: update to icedtea 1.12.3 (important)

java-160-openjdk was updated to IcedTea 1.12.3 bnc804654 containing security and bugfixes: Security fixes - S8006446: Restrict MBeanServer access CVE-2013-1486 - S8006777: Improve TLS handling of invalid messages Lucky 13 CVE-2013-0169 - S8007688: Blacklist known bad certificate issued by DigiCer...

10CVSS2.4AI score0.35584EPSS
Exploits1References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/02/28 6:29 p.m.•35 views

flash-player: Update to 11.2.202.243 (critical)

Flash Player was updated to 11.2.202.243 CVE-2012-5248, CVE-2012-5249, CVE-2012-5250, CVE-2012-5251, CVE-2012-5252, CVE-2012-5253, CVE-2012-5254, CVE-2012-5255, CVE-2012-5256, CVE-2012-5257, CVE-2012-5258, CVE-2012-5259, CVE-2012-5260, CVE-2012-5261, CVE-2012-5262, CVE-2012-5263, CVE-2012-5264,...

10CVSS1.5AI score0.07273EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/02/28 6:28 p.m.•33 views

update for flash-player (critical)

This version upgrade of flash-player fixed multiple unspecified code execution vulnerabiliies...

10CVSS4.6AI score0.08308EPSS
Exploits1References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/02/28 6:28 p.m.•30 views

flash-player to 11.2.202.262 (critical)

Adobe Flash Player was updated to 11.2.202.262 to fix various security issues and bugs...

9.3CVSS1.5AI score0.77597EPSS
Exploits10References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/02/28 6:27 p.m.•32 views

flash-player: update to 11.2.202.270 (critical)

Adobe Flash Player was updated to 11.2.202.270: bnc803485 APSB13-05, CVE-2013-1372, CVE-2013-0645, CVE-2013-1373, CVE-2013-1369, CVE-2013-1370, CVE-2013-1366, CVE-2013-0649, CVE-2013-1365, CVE-2013-1374, CVE-2013-1368, CVE-2013-0642, CVE-2013-0644, CVE-2013-0647, CVE-2013-1367, CVE-2013-0639,...

10CVSS0.6AI score0.12609EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
•added 2013/02/28 6:27 p.m.•33 views

flash-player: Update to 11.2.202.251 (important)

Flash Player was updated to 11.2.202.251 bnc788450, fixing severe security issues: CVE-2012-5274, CVE-2012-5275, CVE-2012-5276, CVE-2012-5277, CVE-2012-5278, CVE-2012-5279, CVE-2012-5280...

10CVSS1.2AI score0.10947EPSS
Exploits0References1
Total number of security vulnerabilities7843