openSUSE Security Update: Security update for IPython, python3-IPython ______________________________________________________________________________ Announcement ID: openSUSE-SU-2015:1699-1 Rating: moderate References: #945828 Cross-References: CVE-2015-6938 Affected Products: openSUSE 13.2 openSUSE 13.1 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: IPython was updated to fix a cross-site-scripting vulnerability in handling local foldernames. (CVE-2015-6938, bnc#945828) Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 13.2: zypper in -t patch openSUSE-2015-638=1 - openSUSE 13.1: zypper in -t patch openSUSE-2015-638=1 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 13.2 (noarch): IPython-2.2.0-2.5.1 IPython-doc-2.2.0-2.5.1 python3-IPython-2.2.0-2.4.1 python3-IPython-doc-2.2.0-2.4.1 - openSUSE 13.1 (noarch): IPython-1.0.0-2.7.1 IPython-doc-1.0.0-2.7.1 References: https://www.suse.com/security/cve/CVE-2015-6938.html https://bugzilla.suse.com/945828