Mailinglist Archive: opensuse-security (14 mails)

[pedrocsort-e@xxxxxxxxx]

Hi,


I have an old OpenSuSE 11.1 box and I made that last up-date.
It happens that my partitions are encrypted with Luks
Applying this up-date (or one that is on the list and up-dates mkinitrd) stops 
the pc from booting.
Because of this bug in the new version of mkinitrd:
https://bugzilla.novell.com/show_bug.cgi?id=631464

the solution is simple and was made available by Michal Marek in the link 
mentioned on the thread:
http://gitorious.org/opensuse/mkinitrd/commit/e7144d37d271538ff3df224d28b47b4ef032e021

I did like this:
Googled for the problem, found the solution on the improved double quote kernel 
command line detection.
and then:

Boot the pc with the DVD in rescue mode.
Change the /boot/grub/menu.lst in order to make only / available in the boot.

So all the /dev/mapper/swap and /dev/mapper/home will be erased (in my case)
so the the kernel command line
'luks="root swap home"' should be only:
luks=root

Therefore the machine boots and one get to acccess the all important / :)

After that reboot the machine and it goes into recover mode (or something like 
that) ...
Edit /lib/mkinitrd/scripts/boot-start.sh as mentioned on the patch (use vi 
...yuck!).
go back to /boot/grub/menu.lst and restore the initial setup of Luks with all 
partitions (in my case root swap and home).

Reboot normally ... that's it!
In case you have not done the upgrade ... after the normal upgrade check the 
mentioned file and change it with the fix.

Regards,
Pedro

Linux Rules!!
 
 
 




--- On Wed, 11/3/10, Marcus Meissner <meissner@xxxxxxx> wrote:

> From: Marcus Meissner <meissner@xxxxxxx>
> Subject: [security-announce] SUSE Security Announcement: Linux kernel 
> (SUSE-SA:2010:054)
> To: opensuse-security-announce@xxxxxxxxxxxx
> Date: Wednesday, November 3, 2010, 12:13 PM
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> ______________________________________________________________________________
>
>                
>         SUSE Security Announcement
>
>         Package:     
>           kernel
>         Announcement ID:   
>     SUSE-SA:2010:052
>         Date:     
>              Wed, 03
> Nov 2010 12:00:00 +0000
>         Affected Products:   
>   openSUSE 11.1
>                
>                 SUSE
> Linux Enterprise High Availability Extension 11
>                
>                 SLE
> 11 SERVER Unsupported Extras
>                
>                 SUSE
> Linux Enterprise Desktop 11
>                
>                 SUSE
> Linux Enterprise Server 11
>         Vulnerability Type: 
>    local privilege escalation
>         CVSS v2 Base Score: 
>    7.2 (AV:L/AC:L/Au:N/C:C/I:C/A:C)
>         SUSE Default
> Package:   yes
>         Cross-References:   
>    CVE-2010-2798, CVE-2010-2803,
> CVE-2010-2942
>                
>                
> CVE-2010-2946, CVE-2010-2954, CVE-2010-2955
>                
>                
> CVE-2010-3015, CVE-2010-3078, CVE-2010-3080
>                
>                
> CVE-2010-3296, CVE-2010-3297, CVE-2010-3310
>
>     Content of This Advisory:
>         1) Security Vulnerability
> Resolved:
>              Linux
> kernel security update
>            Problem
> Description
>         2) Solution or Work-Around
>         3) Special Instructions and
> Notes
>         4) Package Location and
> Checksums
>         5) Pending Vulnerabilities,
> Solutions, and Work-Arounds:
>             See SUSE Security
> Summary Report.
>         6) Authenticity Verification
> and Additional Information
>
> ______________________________________________________________________________
>
> 1) Problem Description and Brief Discussion
>
>    This security update of the SUSE Linux
> Enterprise 11 GA and openSUSE
>    11.1 kernel updates the kernel to
> 2.6.27.54 and fixes various security
>    issues and other bugs.
>
>    The SUSE Linux Enterprise Server 11
> kernel was released last week,
>    the openSUSE 11.1 kernel with the same
> source base yesterday.
>
>    Following security issues were fixed:
>    CVE-2010-3310: Multiple integer
> signedness errors in net/rose/af_rose.c
>    in the Linux kernel allowed local users
> to cause a denial of service
>    (heap memory corruption) or possibly have
> unspecified other impact
>    via a rose_getname function call, related
> to the rose_bind and
>    rose_connect functions.
>
>    CVE-2010-2955: A kernel information leak
> via the WEXT ioctl was fixed.
>
>    CVE-2010-3080: A double free in an alsa
> error path was fixed, which
>    could lead to kernel crashes.
>
>    CVE-2010-3078: Fixed a kernel information
> leak in the xfs filesystem.
>
>    CVE-2010-3296: Fixed a kernel information
> leak in the cxgb3 driver.
>
>    CVE-2010-3297: Fixed a kernel information
> leak in the net/eql driver.
>
>    CVE-2010-2954: The irda_bind function in
> net/irda/af_irda.c in the
>    Linux kernel did not properly handle
> failure of the irda_open_tsap
>    function, which allowed local users to
> cause a denial of service
>    (NULL pointer dereference and panic) and
> possibly have unspecified
>    other impact via multiple unsuccessful
> calls to bind on an AF_IRDA
>    (aka PF_IRDA) socket.
>
>    CVE-2010-2946: The 'os2' xattr namespace
> on the jfs filesystem could
>    be used to bypass xattr namespace rules.
>
>    CVE-2010-2942: Fixed a kernel information
> leak in the net scheduler
>    code.
>
>    CVE-2010-3015: Integer overflow in the
> ext4_ext_get_blocks function
>    in fs/ext4/extents.c in the Linux kernel
> allowed local users to cause
>    a denial of service (BUG and system
> crash) via a write operation on
>    the last block of a large file, followed
> by a sync operation.
>
>    CVE-2010-2803: The drm_ioctl function in
> drivers/gpu/drm/drm_drv.c
>    in the Direct Rendering Manager (DRM)
> subsystem in the Linux kernel
>    allowed local users to obtain potentially
> sensitive information from
>    kernel memory by requesting a large
> memory-allocation amount.
>
>    CVE-2010-2798: The gfs2_dirent_find_space
> function in fs/gfs2/dir.c
>    in the Linux kernel used an incorrect
> size value in calculations
>    associated with sentinel directory
> entries, which allowed local users
>    to cause a denial of service (NULL
> pointer dereference and panic) and
>    possibly have unspecified other impact by
> renaming a file in a GFS2
>    filesystem, related to the gfs2_rename
> function in fs/gfs2/ops_inode.c.
>
> 2) Solution or Work-Around
>
>    There is no workaround, please install
> the fixed packages.
>
> 3) Special Instructions and Notes
>
>    Please reboot the machine after the
> update.
>
> 4) Package Location and Checksums
>
>    The preferred method for installing
> security updates is to use the YaST
>    "Online Update" module or the "zypper"
> commandline tool. The package and
>    patch management stack will detect which
> updates are required and
>    automatically perform the necessary steps
> to verify and install them.
>
>    Alternatively, download the update
> packages for your distribution manually
>    and verify their integrity by the methods
> listed in Section 6 of this
>    announcement. Then install the packages
> using the command
>
>      rpm -Fhv <file.rpm>
>
>    to apply the update, replacing
> <file.rpm> with the filename of the
>    downloaded RPM package.
>
>
>    x86 Platform:
>
>    openSUSE 11.1:
>    http://download.opensuse.org/update/11.1/rpm/i586/kernel-debug-2.6.27.54-0.1.1.i586.rpm
>    http://download.opensuse.org/update/11.1/rpm/i586/kernel-debug-base-2.6.27.54-0.1.1.i586.rpm
>    http://download.opensuse.org/update/11.1/rpm/i586/kernel-debug-extra-2.6.27.54-0.1.1.i586.rpm
>    http://download.opensuse.org/update/11.1/rpm/i586/kernel-default-2.6.27.54-0.1.1.i586.rpm
>    http://download.opensuse.org/update/11.1/rpm/i586/kernel-default-base-2.6.27.54-0.1.1.i586.rpm
>    http://download.opensuse.org/update/11.1/rpm/i586/kernel-default-extra-2.6.27.54-0.1.1.i586.rpm
>    http://download.opensuse.org/update/11.1/rpm/i586/kernel-pae-2.6.27.54-0.1.1.i586.rpm
>    http://download.opensuse.org/update/11.1/rpm/i586/kernel-pae-base-2.6.27.54-0.1.1.i586.rpm
>    http://download.opensuse.org/update/11.1/rpm/i586/kernel-pae-extra-2.6.27.54-0.1.1.i586.rpm
>    http://download.opensuse.org/update/11.1/rpm/i586/kernel-source-2.6.27.54-0.1.1.i586.rpm
>    http://download.opensuse.org/update/11.1/rpm/i586/kernel-syms-2.6.27.54-0.1.1.i586.rpm
>    http://download.opensuse.org/update/11.1/rpm/i586/kernel-trace-2.6.27.54-0.1.1.i586.rpm
>    http://download.opensuse.org/update/11.1/rpm/i586/kernel-trace-base-2.6.27.54-0.1.1.i586.rpm
>    http://download.opensuse.org/update/11.1/rpm/i586/kernel-trace-extra-2.6.27.54-0.1.1.i586.rpm
>    http://download.opensuse.org/update/11.1/rpm/i586/kernel-vanilla-2.6.27.54-0.1.1.i586.rpm
>    http://download.opensuse.org/update/11.1/rpm/i586/kernel-xen-2.6.27.54-0.1.1.i586.rpm
>    http://download.opensuse.org/update/11.1/rpm/i586/kernel-xen-base-2.6.27.54-0.1.1.i586.rpm
>    http://download.opensuse.org/update/11.1/rpm/i586/kernel-xen-extra-2.6.27.54-0.1.1.i586.rpm
>
>    Platform Independent:
>
>    openSUSE 11.1:
>    http://download.opensuse.org/update/11.1/rpm/noarch/kernel-docs-2.6.3-3.13.122.noarch.rpm
>
>    Power PC Platform:
>
>    openSUSE 11.1:
>    http://download.opensuse.org/update/11.1/rpm/ppc/kernel-default-2.6.27.54-0.1.1.ppc.rpm
>    http://download.opensuse.org/update/11.1/rpm/ppc/kernel-default-base-2.6.27.54-0.1.1.ppc.rpm
>    http://download.opensuse.org/update/11.1/rpm/ppc/kernel-default-extra-2.6.27.54-0.1.1.ppc.rpm
>    http://download.opensuse.org/update/11.1/rpm/ppc/kernel-kdump-2.6.27.54-0.1.1.ppc.rpm
>    http://download.opensuse.org/update/11.1/rpm/ppc/kernel-ppc64-2.6.27.54-0.1.1.ppc.rpm
>    http://download.opensuse.org/update/11.1/rpm/ppc/kernel-ppc64-base-2.6.27.54-0.1.1.ppc.rpm
>    http://download.opensuse.org/update/11.1/rpm/ppc/kernel-ppc64-extra-2.6.27.54-0.1.1.ppc.rpm
>    http://download.opensuse.org/update/11.1/rpm/ppc/kernel-ps3-2.6.27.54-0.1.1.ppc.rpm
>    http://download.opensuse.org/update/11.1/rpm/ppc/kernel-source-2.6.27.54-0.1.1.ppc.rpm
>    http://download.opensuse.org/update/11.1/rpm/ppc/kernel-syms-2.6.27.54-0.1.1.ppc.rpm
>    http://download.opensuse.org/update/11.1/rpm/ppc/kernel-vanilla-2.6.27.54-0.1.1.ppc.rpm
>
>    x86-64 Platform:
>
>    openSUSE 11.1:
>    http://download.opensuse.org/update/11.1/rpm/x86_64/kernel-debug-2.6.27.54-0.1.1.x86_64.rpm
>    http://download.opensuse.org/update/11.1/rpm/x86_64/kernel-debug-base-2.6.27.54-0.1.1.x86_64.rpm
>    http://download.opensuse.org/update/11.1/rpm/x86_64/kernel-debug-extra-2.6.27.54-0.1.1.x86_64.rpm
>    http://download.opensuse.org/update/11.1/rpm/x86_64/kernel-default-2.6.27.54-0.1.1.x86_64.rpm
>    http://download.opensuse.org/update/11.1/rpm/x86_64/kernel-default-base-2.6.27.54-0.1.1.x86_64.rpm
>    http://download.opensuse.org/update/11.1/rpm/x86_64/kernel-default-extra-2.6.27.54-0.1.1.x86_64.rpm
>    http://download.opensuse.org/update/11.1/rpm/x86_64/kernel-source-2.6.27.54-0.1.1.x86_64.rpm
>    http://download.opensuse.org/update/11.1/rpm/x86_64/kernel-syms-2.6.27.54-0.1.1.x86_64.rpm
>    http://download.opensuse.org/update/11.1/rpm/x86_64/kernel-trace-2.6.27.54-0.1.1.x86_64.rpm
>    http://download.opensuse.org/update/11.1/rpm/x86_64/kernel-trace-base-2.6.27.54-0.1.1.x86_64.rpm
>    http://download.opensuse.org/update/11.1/rpm/x86_64/kernel-trace-extra-2.6.27.54-0.1.1.x86_64.rpm
>    http://download.opensuse.org/update/11.1/rpm/x86_64/kernel-vanilla-2.6.27.54-0.1.1.x86_64.rpm
>    http://download.opensuse.org/update/11.1/rpm/x86_64/kernel-xen-2.6.27.54-0.1.1.x86_64.rpm
>    http://download.opensuse.org/update/11.1/rpm/x86_64/kernel-xen-base-2.6.27.54-0.1.1.x86_64.rpm
>    http://download.opensuse.org/update/11.1/rpm/x86_64/kernel-xen-extra-2.6.27.54-0.1.1.x86_64.rpm
>
>    Sources:
>
>    openSUSE 11.1:
>    http://download.opensuse.org/update/11.1/rpm/src/kernel-debug-2.6.27.54-0.1.1.nosrc.rpm
>    http://download.opensuse.org/update/11.1/rpm/src/kernel-default-2.6.27.54-0.1.1.nosrc.rpm
>    http://download.opensuse.org/update/11.1/rpm/src/kernel-docs-2.6.3-3.13.122.src.rpm
>    http://download.opensuse.org/update/11.1/rpm/src/kernel-kdump-2.6.27.54-0.1.1.nosrc.rpm
>    http://download.opensuse.org/update/11.1/rpm/src/kernel-pae-2.6.27.54-0.1.1.nosrc.rpm
>    http://download.opensuse.org/update/11.1/rpm/src/kernel-ppc64-2.6.27.54-0.1.1.nosrc.rpm
>    http://download.opensuse.org/update/11.1/rpm/src/kernel-ps3-2.6.27.54-0.1.1.nosrc.rpm
>    http://download.opensuse.org/update/11.1/rpm/src/kernel-source-2.6.27.54-0.1.1.src.rpm
>    http://download.opensuse.org/update/11.1/rpm/src/kernel-syms-2.6.27.54-0.1.1.src.rpm
>    http://download.opensuse.org/update/11.1/rpm/src/kernel-trace-2.6.27.54-0.1.1.nosrc.rpm
>    http://download.opensuse.org/update/11.1/rpm/src/kernel-vanilla-2.6.27.54-0.1.1.nosrc.rpm
>    http://download.opensuse.org/update/11.1/rpm/src/kernel-xen-2.6.27.54-0.1.1.nosrc.rpm
>
>    Our maintenance customers are notified
> individually. The packages are
>    offered for installation from the
> maintenance web:
>
>    SLE 11 SERVER Unsupported Extras
>      
> http://download.novell.com/patch/finder/?keywords=bd9ae64a765977a7721644cb644a9d43
>      
> http://download.novell.com/patch/finder/?keywords=a26754073e422d7b7d2bdf784e6e85c7
>      
> http://download.novell.com/patch/finder/?keywords=4bacf8b00c9bc222e0a14ed705d0b9ad
>      
> http://download.novell.com/patch/finder/?keywords=72ae5c3ed53caa1ba58b4f047b0e9c3b
>      
> http://download.novell.com/patch/finder/?keywords=83796b8aba495c97aa0d63167a692970
>
>    SUSE Linux Enterprise Server 11
>      
> http://download.novell.com/patch/finder/?keywords=d69f430f61b72448377e859dd89a3663
>      
> http://download.novell.com/patch/finder/?keywords=f3a833ad82c2fedcac92886c8ef582ff
>      
> http://download.novell.com/patch/finder/?keywords=adf6f45f6f57d4321fb47c3a8b0daacd
>      
> http://download.novell.com/patch/finder/?keywords=d3c38f03bc070bd67fc914231f086f3e
>      
> http://download.novell.com/patch/finder/?keywords=397f45e4eb102e91e10ebd86d7e1eb7b
>
>    SUSE Linux Enterprise Desktop 11
>      
> http://download.novell.com/patch/finder/?keywords=d69f430f61b72448377e859dd89a3663
>      
> http://download.novell.com/patch/finder/?keywords=397f45e4eb102e91e10ebd86d7e1eb7b
>
>    SUSE Linux Enterprise High Availability
> Extension 11
>      
> http://download.novell.com/patch/finder/?keywords=d69f430f61b72448377e859dd89a3663
>      
> http://download.novell.com/patch/finder/?keywords=f3a833ad82c2fedcac92886c8ef582ff
>      
> http://download.novell.com/patch/finder/?keywords=adf6f45f6f57d4321fb47c3a8b0daacd
>      
> http://download.novell.com/patch/finder/?keywords=d3c38f03bc070bd67fc914231f086f3e
>      
> http://download.novell.com/patch/finder/?keywords=397f45e4eb102e91e10ebd86d7e1eb7b
>
> ______________________________________________________________________________
>
> 5) Pending Vulnerabilities, Solutions, and Work-Arounds:
>
>    See SUSE Security Summary Report.
> ______________________________________________________________________________
>
> 6) Authenticity Verification and Additional Information
>
>   - Announcement authenticity verification:
>
>     SUSE security announcements are published via
> mailing lists and on Web
>     sites. The authenticity and integrity of a
> SUSE security announcement is
>     guaranteed by a cryptographic signature in
> each announcement. All SUSE
>     security announcements are published with a
> valid signature.
>
>     To verify the signature of the announcement,
> save it as text into a file
>     and run the command
>
>       gpg --verify <file>
>
>     replacing <file> with the name of the
> file where you saved the
>     announcement. The output for a valid
> signature looks like:
>
>       gpg: Signature made <DATE> using
> RSA key ID 3D25D3D9
>       gpg: Good signature from "SuSE
> Security Team <security@xxxxxxx>"
>
>     where <DATE> is replaced by the date
> the document was signed.
>
>     If the security team's key is not contained
> in your key ring, you can
>     import it from the first installation CD. To
> import the key, use the
>     command
>
>       gpg --import
> gpg-pubkey-3d25d3d9-36e12d04.asc
>
>   - Package authenticity verification:
>
>     SUSE update packages are available on many
> mirror FTP servers all over the
>     world. While this service is considered
> valuable and important to the free
>     and open source software community, the
> authenticity and the integrity of
>     a package needs to be verified to ensure that
> it has not been tampered
>     with.
>
>     The internal rpm package signatures provide
> an easy way to verify the
>     authenticity of an RPM package. Use the
> command
>
>      rpm -v --checksig
> <file.rpm>
>
>     to verify the signature of the package,
> replacing <file.rpm> with the
>     filename of the RPM package downloaded. The
> package is unmodified if it
>     contains a valid signature from build@xxxxxxx with
> the key ID 9C800ACA.
>
>     This key is automatically imported into the
> RPM database (on
>     RPMv4-based distributions) and the gpg key
> ring of 'root' during
>     installation. You can also find it on the
> first installation CD and at
>     the end of this announcement.
>
>   - SUSE runs two security mailing lists to which any
> interested party may
>     subscribe:
>
>     opensuse-security@xxxxxxxxxxxx
>         -   General
> Linux and SUSE security discussion.
>             All SUSE security
> announcements are sent to this list.
>             To subscribe,
> send an e-mail to
>                
> <opensuse-security+subscribe@xxxxxxxxxxxx>.
>
>     opensuse-security-announce@xxxxxxxxxxxx
>         -   SUSE's
> announce-only mailing list.
>             Only SUSE's
> security announcements are sent to this list.
>             To subscribe,
> send an e-mail to
>                
> <opensuse-security-announce+subscribe@xxxxxxxxxxxx>.
>
>    
> =====================================================================
>     SUSE's security contact is <security@xxxxxxxx>
> or <security@xxxxxxx>.
>     The <security@xxxxxxx>
> public key is listed below.
>    
> =====================================================================
> ______________________________________________________________________________
>
>     The information in this advisory may be
> distributed or reproduced,
>     provided that the advisory is not modified in
> any way. In particular, the
>     clear text signature should show proof of the
> authenticity of the text.
>
>     SUSE Linux Products GmbH provides no
> warranties of any kind whatsoever
>     with respect to the information contained in
> this security advisory.
>
> Type Bits/KeyID     Date   
>    User ID
> pub  2048R/3D25D3D9 1999-03-06 SuSE Security Team
> <security@xxxxxxx>
> pub  1024D/9C800ACA 2000-10-19 SuSE Package Signing
> Key <build@xxxxxxx>
>
> - -----BEGIN PGP PUBLIC KEY BLOCK-----
> Version: GnuPG v1.4.2 (GNU/Linux)
>
> mQENAzbhLQQAAAEIAKAkXHe0lWRBXLpn38hMHy03F0I4Sszmoc8aaKJrhfhyMlOA
> BqvklPLE2f9UrI4Xc860gH79ZREwAgPt0pi6+SleNFLNcNFAuuHMLQOOsaMFatbz
> JR9i4m/lf6q929YROu5zB48rBAlcfTm+IBbijaEdnqpwGib45wE/Cfy6FAttBHQh
> 1Kp+r/jPbf1mYAvljUfHKuvbg8t2EIQz/5yGp+n5trn9pElfQO2cRBq8LFpf1l+U
> P7EKjFmlOq+Gs/fF98/dP3DfniSd78LQPq5vp8RL8nr/o2i7jkAQ33m4f1wOBWd+
> cZovrKXYlXiR+Bf7m2hpZo+/sAzhd7LmAD0l09kABRG0JVN1U0UgU2VjdXJpdHkg
> VGVhbSA8c2VjdXJpdHlAc3VzZS5kZT6JARUDBRA24S1H5Fiyh7HKPEUBAVcOB/9b
> yHYji1/+4Xc2GhvXK0FSJN0MGgeXgW47yxDL7gmR4mNgjlIOUHZj0PEpVjWepOJ7
> tQS3L9oP6cpj1Fj/XxuLbkp5VCQ61hpt54coQAvYrnT9rtWEGN+xmwejT1WmYmDJ
> xG+EGBXKr+XP69oIUl1E2JO3rXeklulgjqRKos4cdXKgyjWZ7CP9V9daRXDtje63
> Om8gwSdU/nCvhdRIWp/Vwbf7Ia8iZr9OJ5YuQl0DBG4qmGDDrvImgPAFkYFzwlqo
> choXFQ9y0YVCV41DnR+GYhwl2qBd81T8aXhihEGPIgaw3g8gd8B5o6mPVgl+nJqI
> BkEYGBusiag2pS6qwznZiQEVAwUQNuEtBHey5gA9JdPZAQFtOAf+KVh939b0J94u
> v/kpg4xs1LthlhquhbHcKNoVTNspugiC3qMPyvSX4XcBr2PC0cVkS4Z9PY9iCfT+
> x9WM96g39dAF+le2CCx7XISk9XXJ4ApEy5g4AuK7NYgAJd39PPbERgWnxjxir9g0
> Ix30dS30bW39D+3NPU5Ho9TD/B7UDFvYT5AWHl3MGwo3a1RhTs6sfgL7yQ3U+mvq
> MkTExZb5mfN1FeaYKMopoI4VpzNVeGxQWIz67VjJHVyUlF20ekOz4kWVgsxkc8G2
> saqZd6yv2EwqYTi8BDAduweP33KrQc4KDDommQNDOXxaKOeCoESIdM4p7Esdjq1o
> L0oixF12CohGBBARAgAGBQI7HmHDAAoJEJ5A4xAACqukTlQAoI4QzP9yjPohY7OU
> F7J3eKBTzp25AJ42BmtSd3pvm5ldmognWF3Trhp+GYkAlQMFEDe3O8IWkDf+zvyS
> FQEBAfkD/3GG5UgJj18UhYmh1gfjIlDcPAeqMwSytEHDENmHC+vlZQ/p0mT9tPiW
> tp34io54mwr+bLPN8l6B5GJNkbGvH6M+mO7R8Lj4nHL6pyAv3PQr83WyLHcaX7It
> Klj371/4yzKV6qpz43SGRK4MacLo2rNZ/dNej7lwPCtzCcFYwqkiiEYEEBECAAYF
> AjoaQqQACgkQx1KqMrDf94ArewCfWnTUDG5gNYkmHG4bYL8fQcizyA4An2eVo/n+
> 3J2KRWSOhpAMsnMxtPbBmQGiBDnu9IERBACT8Y35+2vv4MGVKiLEMOl9GdST6MCk
> YS3yEKeueNWc+z/0Kvff4JctBsgs47tjmiI9sl0eHjm3gTR8rItXMN6sJEUHWzDP
> +Y0PFPboMvKx0FXl/A0dM+HFrruCgBlWt6FA+okRySQiliuI5phwqkXefl9AhkwR
> 8xocQSVCFxcwvwCglVcOQliHu8jwRQHxlRE0tkwQQI0D+wfQwKdvhDplxHJ5nf7U
> 8c/yE/vdvpN6lF0tmFrKXBUX+K7u4ifrZlQvj/81M4INjtXreqDiJtr99Rs6xa0S
> cZqITuZC4CWxJa9GynBED3+D2t1V/f8l0smsuYoFOF7Ib49IkTdbtwAThlZp8bEh
> ELBeGaPdNCcmfZ66rKUdG5sRA/9ovnc1krSQF2+sqB9/o7w5/q2qiyzwOSTnkjtB
> UVKn4zLUOf6aeBAoV6NMCC3Kj9aZHfA+ND0ehPaVGJgjaVNFhPi4x0e7BULdvgOo
> AqajLfvkURHAeSsxXIoEmyW/xC1sBbDkDUIBSx5oej73XCZgnj/inphRqGpsb+1n
> KFvF+rQoU3VTRSBQYWNrYWdlIFNpZ25pbmcgS2V5IDxidWlsZEBzdXNlLmRlPohi
> BBMRAgAiBQJA2AY+AhsDBQkObd+9BAsHAwIDFQIDAxYCAQIeAQIXgAAKCRCoTtro
> nIAKypCfAJ9RuZ6ZSV7QW4pTgTIxQ+ABPp0sIwCffG9bCNnrETPlgOn+dGEkAWeg
> KL+IRgQQEQIABgUCOnBeUgAKCRCeQOMQAAqrpNzOAKCL512FZvv4VZx94TpbA9lx
> yoAejACeOO1HIbActAevk5MUBhNeLZa/qM2JARUDBRA6cGBvd7LmAD0l09kBATWn
> B/9An5vfiUUE1VQnt+T/EYklES3tXXaJJp9pHMa4fzFa8jPVtv5UBHGee3XoUNDV
> wM2OgSEISZxbzdXGnqIlcT08TzBUD9i579uifklLsnr35SJDZ6ram51/CWOnnaVh
> UzneOA9gTPSr+/fT3WeVnwJiQCQ30kNLWVXWATMnsnT486eAOlT6UNBPYQLpUprF
> 5Yryk23pQUPAgJENDEqeU6iIO9Ot1ZPtB0lniw+/xCi13D360o1tZDYOp0hHHJN3
> D3EN8C1yPqZd5CvvznYvB6bWBIpWcRgdn2DUVMmpU661jwqGlRz1F84JG/xe4jGu
> zgpJt9IXSzyohEJB6XG5+D0BuQINBDnu9JIQCACEkdBN6Mxf5WvqDWkcMRy6wnrd
> 9DYJ8UUTmIT2iQf07tRUKJJ9v0JXfx2Z4d08IQSMNRaq4VgSe+PdYgIy0fbj23Vi
> a5/gO7fJEpD2hd2f+pMnOWvH2rOOIbeYfuhzAc6BQjAKtmgR0ERUTafTM9Wb6F13
> CNZZNZfDqnFDP6L12w3z3F7FFXkz07Rs3AIto1ZfYZd4sCSpMr/0S5nLrHbIvGLp
> 271hhQBeRmmoGEKO2JRelGgUJ2CUzOdtwDIKT0LbCpvaP8PVnYF5IFoYJIWRHqlE
> t5ucTXstZy7vYjL6vTP4l5xs+LIOkNmPhqmfsgLzVo0UaLt80hOwc4NvDCOLAAMG
> B/9g+9V3ORzw4LvO1pwRYJqfDKUq/EJ0rNMMD4N8RLpZRhKHKJUm9nNHLbksnlZw
> rbSTM5LpC/U6sheLP+l0bLVoq0lmsCcUSyh+mY6PxWirLIWCn/IAZAGnXb6Zd6Tt
> IJlGG6pqUN8QxGJYQnonl0uTJKHJENbI9sWHQdcTtBMc34gorHFCo1Bcvpnc1LFL
> rWn7mfoGx6INQjf3HGQpMXAWuSBQhzkazY6vaWFpa8bBJ+gKbBuySWzNm3rFtT5H
> RKMWpO+M9bHp4d+puY0L1YwN1OMatcMMpcWnZpiWiR83oi32+xtWUY2U7Ae38mMa
> g8zFbpeqPQUsDv9V7CAJ1dbriEwEGBECAAwFAkDYBnoFCQ5t3+gACgkQqE7a6JyA
> CspnpgCfRbYwxT3iq+9l/PgNTUNTZOlof2oAn25y0eGi0371jap9kOV6uq71sUuO
> =ypVs
> - -----END PGP PUBLIC KEY BLOCK-----
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v2.0.15 (GNU/Linux)
>
> iQEVAwUBTNFRxHey5gA9JdPZAQKj8Qf9Gjhje8rSU15zu0oaYlpW/LchbgqzZvrP
> kpEDjEmSfOB0ohmpsg82ppwNQXQg4zGI4eBWsBz00Smou+UwzXbVIyS5iJxu6mxq
> U1Me0+ESnBRKI87ZtNNjPIlZnKQe/WOlvlp0BwPfr0oQBbFdApwHriu/jBUrrXE4
> 6wp3K1/c5oYWv729rPLV6Y2iorHww9mM2Z5FSk8P4qeB00WPx7SG0VE/3pxWp4rW
> 82VlvJnsUoBdRpULSp8uVReiWHaVe0wj6rIGtWqqTGfa4GOeXzbSMdfmLyTES2oc
> SsPVbkMG//qQMAlBQrHQZao0fQOjjzfwB/U9OwHvu9yaYVAzs0Ui0w==
> =qMJh
> -----END PGP SIGNATURE-----
> -- 
> To unsubscribe, e-mail: opensuse-security-announce+unsubscribe@xxxxxxxxxxxx
> For additional commands, e-mail:
> opensuse-security-announce+help@xxxxxxxxxxxx
--
To unsubscribe, e-mail: opensuse-security+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse-security+help@xxxxxxxxxxxx