openSUSE Security Update: apache2-mod_wsgi: fixed off-by-one error in setgroups ______________________________________________________________________________ Announcement ID: openSUSE-SU-2014:0943-1 Rating: moderate References: #883229 Affected Products: openSUSE 13.1 ______________________________________________________________________________ An update that contains security fixes can now be installed. Description: apache2-mod_wsgi was updated to fix a small of-by-one error in its use of setgroups. Please see http://modwsgi.readthedocs.org/en/latest/release-notes/version-4.2.4.html for more information. Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 13.1: zypper in -t patch openSUSE-2014- To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 13.1 (i586 x86_64): apache2-mod_wsgi-3.4-2.12.1 apache2-mod_wsgi-debuginfo-3.4-2.12.1 apache2-mod_wsgi-debugsource-3.4-2.12.1 References: https://bugzilla.novell.com/883229