May 2019 - openSUSE Bugs - openSUSE Mailing Lists

[Bug 1132060] VUL-1: CVE-2019-11007: GraphicsMagick,ImageMagick: a heap-based buffer over-read in the ReadMNGImage function of coders/png.c allows attackers to cause a denial of service or information disclosure
by bugzilla_noreply＠novell.com 04 May '19

04 May '19

http://bugzilla.suse.com/show_bug.cgi?id=1132060 http://bugzilla.suse.com/show_bug.cgi?id=1132060#c16 --- Comment #16 from Swamp Workflow Management <swamp(a)suse.de> --- openSUSE-SU-2019:1331-1: An update that solves four vulnerabilities and has one errata is now available. Category: security (moderate) Bug References: 1122033,1130330,1131317,1132054,1132060 CVE References: CVE-2019-10650,CVE-2019-11007,CVE-2019-11008,CVE-2019-9956 Sources used: openSUSE Leap 15.0 (src): ImageMagick-7.0.7.34-lp150.2.29.1 -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1132054] VUL-0: CVE-2019-11008: GraphicsMagick,ImageMagick: a heap-based buffer overflow in the function WriteXWDImage of coders/xwd.c allows remote attackers to cause DOS or other unspecified impact
by bugzilla_noreply＠novell.com 04 May '19

04 May '19

http://bugzilla.suse.com/show_bug.cgi?id=1132054 http://bugzilla.suse.com/show_bug.cgi?id=1132054#c17 --- Comment #17 from Swamp Workflow Management <swamp(a)suse.de> --- openSUSE-SU-2019:1331-1: An update that solves four vulnerabilities and has one errata is now available. Category: security (moderate) Bug References: 1122033,1130330,1131317,1132054,1132060 CVE References: CVE-2019-10650,CVE-2019-11007,CVE-2019-11008,CVE-2019-9956 Sources used: openSUSE Leap 15.0 (src): ImageMagick-7.0.7.34-lp150.2.29.1 -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1133313] VUL-0: chromium: multiple security fixes in 74.0.3729.108
by bugzilla_noreply＠novell.com 04 May '19

04 May '19

http://bugzilla.suse.com/show_bug.cgi?id=1133313 http://bugzilla.suse.com/show_bug.cgi?id=1133313#c4 --- Comment #4 from Swamp Workflow Management <swamp(a)suse.de> --- openSUSE-SU-2019:1325-1: An update that fixes 19 vulnerabilities is now available. Category: security (important) Bug References: 1133313 CVE References: CVE-2019-5805,CVE-2019-5806,CVE-2019-5807,CVE-2019-5808,CVE-2019-5809,CVE-2019-5810,CVE-2019-5811,CVE-2019-5812,CVE-2019-5813,CVE-2019-5814,CVE-2019-5815,CVE-2019-5816,CVE-2019-5817,CVE-2019-5818,CVE-2019-5819,CVE-2019-5820,CVE-2019-5821,CVE-2019-5822,CVE-2019-5823 Sources used: openSUSE Leap 15.0 (src): chromium-74.0.3729.108-lp150.209.2 -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1133313] VUL-0: chromium: multiple security fixes in 74.0.3729.108
by bugzilla_noreply＠novell.com 04 May '19

04 May '19

http://bugzilla.suse.com/show_bug.cgi?id=1133313 http://bugzilla.suse.com/show_bug.cgi?id=1133313#c3 --- Comment #3 from Swamp Workflow Management <swamp(a)suse.de> --- openSUSE-SU-2019:1324-1: An update that fixes 16 vulnerabilities is now available. Category: security (important) Bug References: 1133313 CVE References: CVE-2019-5805,CVE-2019-5806,CVE-2019-5807,CVE-2019-5808,CVE-2019-5809,CVE-2019-5810,CVE-2019-5811,CVE-2019-5813,CVE-2019-5814,CVE-2019-5815,CVE-2019-5818,CVE-2019-5819,CVE-2019-5820,CVE-2019-5821,CVE-2019-5822,CVE-2019-5823 Sources used: openSUSE Leap 42.3 (src): chromium-74.0.3729.108-208.1 -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1133181] putty: Xresources support broken, no X11 support
by bugzilla_noreply＠novell.com 04 May '19

04 May '19

http://bugzilla.suse.com/show_bug.cgi?id=1133181 http://bugzilla.suse.com/show_bug.cgi?id=1133181#c3 --- Comment #3 from Swamp Workflow Management <swamp(a)suse.de> --- openSUSE-RU-2019:1328-1: An update that has one recommended fix can now be installed. Category: recommended (moderate) Bug References: 1133181 CVE References: Sources used: openSUSE Leap 15.0 (src): putty-0.71-lp150.12.1 -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1134128] New: qt3 packman update brakes KDE3 widget style in personal settings
by bugzilla_noreply＠novell.com 04 May '19

04 May '19

http://bugzilla.opensuse.org/show_bug.cgi?id=1134128 Bug ID: 1134128 Summary: qt3 packman update brakes KDE3 widget style in personal settings Classification: openSUSE Product: openSUSE Distribution Version: Leap 15.0 Hardware: 64bit OS: openSUSE Factory Status: NEW Severity: Normal Priority: P5 - None Component: KDE Applications Assignee: opensuse-kde-bugs(a)opensuse.org Reporter: bismarel(a)hotmail.com QA Contact: qa-bugs(a)suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Firefox/60.0 Build Identifier: update qt3 version 3.3.8c-lp150.155.7 from packman broke KDE3 widget style in personal settings Only option i could select was cde, motif, ms windows and platinum if i remember wel . And configuration was blanked . KDE3 Konqueror filemanager looks like old windows 98 Went back to 3.3.8c-lp150.151.1 from KDE3 Build. And put a lock . Everything is back to normal now . Reproducible: Always Steps to Reproduce: 1.install qt3-3.3.8c-lp150.151.1 update (from packman ) 2.Brakes KDE3 widget style in personal settings 3.revert back to qt3-3.3.8c-lp150.151.1 (from KDE3 Build ) Actual Results: Only option i can select is cde, motif, ms windows and platinum . And configuration is blanked . KDE3 Konqueror file manager looks like old windows 98 No Plastik style ( Style that i use ) -- You are receiving this mail because: You are on the CC list for the bug.

1 1

[Bug 1130883] Update Plasma to 5.12.8
by bugzilla_noreply＠novell.com 04 May '19

04 May '19

http://bugzilla.suse.com/show_bug.cgi?id=1130883 http://bugzilla.suse.com/show_bug.cgi?id=1130883#c5 --- Comment #5 from Swamp Workflow Management <swamp(a)suse.de> --- openSUSE-RU-2019:1323-1: An update that has two recommended fixes can now be installed. Category: recommended (moderate) Bug References: 1108019,1130883 CVE References: Sources used: openSUSE Backports SLE-15 (src): breeze-5.12.8-bp150.3.3.1, breeze4-style-5.12.8-bp150.3.3.1, discover-5.12.8-bp150.7.1, drkonqi5-5.12.8-bp150.3.3.1, kauth-5.45.0-bp150.11.1, kcm_sddm-5.12.8-bp150.3.3.1, kcoreaddons-5.45.0-bp150.3.8.1, kinfocenter5-5.12.8-bp150.8.1, kscreen5-5.12.8-bp150.7.1, kscreenlocker-5.12.8-bp150.7.1, kwin5-5.12.8-bp150.10.1, libkscreen2-5.12.8-bp150.3.3.1, plasma-nm5-5.12.8-bp150.8.1, plasma-vault-5.12.8-bp150.3.3.1, plasma5-addons-5.12.8-bp150.7.1, plasma5-desktop-5.12.8-bp150.8.1, plasma5-sdk-5.12.8-bp150.3.3.1, plasma5-workspace-5.12.8-bp150.7.1, polkit-kde-agent-5-5.12.8-bp150.3.3.1, systemsettings5-5.12.8-bp150.3.3.1 -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1108019] networkmanager state not connected
by bugzilla_noreply＠novell.com 04 May '19

04 May '19

http://bugzilla.suse.com/show_bug.cgi?id=1108019 http://bugzilla.suse.com/show_bug.cgi?id=1108019#c11 --- Comment #11 from Swamp Workflow Management <swamp(a)suse.de> --- openSUSE-RU-2019:1323-1: An update that has two recommended fixes can now be installed. Category: recommended (moderate) Bug References: 1108019,1130883 CVE References: Sources used: openSUSE Backports SLE-15 (src): breeze-5.12.8-bp150.3.3.1, breeze4-style-5.12.8-bp150.3.3.1, discover-5.12.8-bp150.7.1, drkonqi5-5.12.8-bp150.3.3.1, kauth-5.45.0-bp150.11.1, kcm_sddm-5.12.8-bp150.3.3.1, kcoreaddons-5.45.0-bp150.3.8.1, kinfocenter5-5.12.8-bp150.8.1, kscreen5-5.12.8-bp150.7.1, kscreenlocker-5.12.8-bp150.7.1, kwin5-5.12.8-bp150.10.1, libkscreen2-5.12.8-bp150.3.3.1, plasma-nm5-5.12.8-bp150.8.1, plasma-vault-5.12.8-bp150.3.3.1, plasma5-addons-5.12.8-bp150.7.1, plasma5-desktop-5.12.8-bp150.8.1, plasma5-sdk-5.12.8-bp150.3.3.1, plasma5-workspace-5.12.8-bp150.7.1, polkit-kde-agent-5-5.12.8-bp150.3.3.1, systemsettings5-5.12.8-bp150.3.3.1 -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1133876] Processes, starteted by autostart (Xfce , KDE ) are after logout still running
by bugzilla_noreply＠novell.com 04 May '19

04 May '19

http://bugzilla.opensuse.org/show_bug.cgi?id=1133876 http://bugzilla.opensuse.org/show_bug.cgi?id=1133876#c2 Takashi Iwai <tiwai(a)suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |vinz(a)vinzv.de --- Comment #2 from Takashi Iwai <tiwai(a)suse.com> --- Yes, looks so. I checked Leap 15.1 with the latest XFCE package in OBS X11:xfce, and the problem could be reproduced. Maurizio, could you check TW system whether it shows the same problem? -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1134079] New: webrtc, cannot create RTCPeerConnection
by bugzilla_noreply＠novell.com 04 May '19

04 May '19

http://bugzilla.opensuse.org/show_bug.cgi?id=1134079 Bug ID: 1134079 Summary: webrtc, cannot create RTCPeerConnection Classification: openSUSE Product: openSUSE Distribution Version: Leap 15.0 Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Firefox Assignee: bnc-team-mozilla(a)forge.provo.novell.com Reporter: epistemepromeneur(a)free.fr QA Contact: qa-bugs(a)suse.de Found By: --- Blocker: --- opensuse 15.0 Firefox 66.0.3 from http://download.opensuse.org/repositories/mozilla/openSUSE_Leap_15.0/ i go to https://appr.tc/ i click on "join" then i got an error message "cannot create RTCPeerConnection" webcam and mic icon are well in the firefox title bar. i send a report upstream. see it: https://bugzilla.mozilla.org/show_bug.cgi?id=1548211 mozilla team says there is no problem with a mozilla build. this is a problem with the opensuse build. i checked there is no problem with a mozilla build by downloading FF 66.0.3 from mozilla site mozilla.org opensuse 15.1 FF 60.0.1 esr no problem -- You are receiving this mail because: You are on the CC list for the bug.

1 5