Lucene search

K
suseSuseOPENSUSE-SU-2020:0051-1
HistoryJan 14, 2020 - 12:00 a.m.

Security update for log4j (important)

2020-01-1400:00:00
lists.opensuse.org
77
log4j
security update
remote code execution
socketserver
suse
opensuse leap 15.1
vulnerability

EPSS

0.806

Percentile

98.4%

An update that fixes one vulnerability is now available.

Description:

This update for log4j fixes the following issues:

  • CVE-2019-17571: Fixed a remote code execution by deserialization of
    untrusted data in SocketServer (bsc#1159646).

This update was imported from the SUSE:SLE-15:Update update project.

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or โ€œzypper patchโ€.

Alternatively you can run the command listed for your product:

  • openSUSE Leap 15.1:

    zypper in -t patch openSUSE-2020-51=1

OSVersionArchitecturePackageVersionFilename
openSUSE Leap15.1noarch<ย - openSUSE Leap 15.1 (noarch):- openSUSE Leap 15.1 (noarch):.noarch.rpm