An update that fixes one vulnerability is now available.
Description:
This update for mumble fixes the following issues:
CVE-2018-20743: murmur mishandled multiple concurrent requests that were
persisted in the database, which allowed remote attackers to cause a
denial of service (daemon hang or crash) via a message flood. (boo#1123334)
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
openSUSE Leap 15.1:
zypper in -t patch openSUSE-2019-1794=1
openSUSE Leap 15.0:
zypper in -t patch openSUSE-2019-1794=1
openSUSE Backports SLE-15:
zypper in -t patch openSUSE-2019-1794=1
SUSE Package Hub for SUSE Linux Enterprise 12:
zypper in -t patch openSUSE-2019-1794=1