March 2020 - openSUSE Bugs - openSUSE Mailing Lists

[Bug 1102840] trackerbug: build fails at some time
by bugzilla_noreply＠novell.com 01 Mar '20

01 Mar '20

http://bugzilla.suse.com/show_bug.cgi?id=1102840 http://bugzilla.suse.com/show_bug.cgi?id=1102840#c4 --- Comment #4 from Swamp Workflow Management <swamp(a)suse.de> --- openSUSE-RU-2020:0276-1: An update that has two recommended fixes can now be installed. Category: recommended (moderate) Bug References: 1102840,1160039 CVE References: Sources used: openSUSE Leap 15.1 (src): perl-5.26.1-lp151.9.3.1 -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1165375] unable to change display resolution
by bugzilla_noreply＠novell.com 01 Mar '20

01 Mar '20

http://bugzilla.opensuse.org/show_bug.cgi?id=1165375 http://bugzilla.opensuse.org/show_bug.cgi?id=1165375#c1 Felix Miata <mrmazda(a)earthlink.net> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |mrmazda(a)earthlink.net --- Comment #1 from Felix Miata <mrmazda(a)earthlink.net> --- https://forums.opensuse.org/showthread.php/538949-in-a-pinch-AMD-CPU-GPU-AP… a month ago explains how I got video working right with that exact same motherboard and CPU/GPU. -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1151748] Yast2 Bootloader Crash - Missing '/' mount point
by bugzilla_noreply＠novell.com 01 Mar '20

01 Mar '20

http://bugzilla.suse.com/show_bug.cgi?id=1151748 http://bugzilla.suse.com/show_bug.cgi?id=1151748#c26 --- Comment #26 from Swamp Workflow Management <swamp(a)suse.de> --- openSUSE-RU-2020:0270-1: An update that has three recommended fixes can now be installed. Category: recommended (moderate) Bug References: 1124581,1151748,1160176 CVE References: Sources used: openSUSE Leap 15.1 (src): yast2-bootloader-4.1.26-lp151.2.3.1 -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1124581] Missing '/' mount point
by bugzilla_noreply＠novell.com 01 Mar '20

01 Mar '20

http://bugzilla.suse.com/show_bug.cgi?id=1124581 http://bugzilla.suse.com/show_bug.cgi?id=1124581#c30 --- Comment #30 from Swamp Workflow Management <swamp(a)suse.de> --- openSUSE-RU-2020:0270-1: An update that has three recommended fixes can now be installed. Category: recommended (moderate) Bug References: 1124581,1151748,1160176 CVE References: Sources used: openSUSE Leap 15.1 (src): yast2-bootloader-4.1.26-lp151.2.3.1 -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1164574] VUL-0: CVE-2020-9273: proftpd: possibility of corrupting memory pool by interrupting the data transfer channel
by bugzilla_noreply＠novell.com 01 Mar '20

01 Mar '20

http://bugzilla.suse.com/show_bug.cgi?id=1164574 http://bugzilla.suse.com/show_bug.cgi?id=1164574#c4 --- Comment #4 from Swamp Workflow Management <swamp(a)suse.de> --- openSUSE-SU-2020:0273-1: An update that fixes two vulnerabilities is now available. Category: security (moderate) Bug References: 1164572,1164574 CVE References: CVE-2020-9272,CVE-2020-9273 Sources used: openSUSE Leap 15.1 (src): proftpd-1.3.6c-lp151.3.9.1 openSUSE Backports SLE-15-SP1 (src): proftpd-1.3.6c-bp151.4.9.1 openSUSE Backports SLE-15 (src): proftpd-1.3.6c-bp150.3.9.1 -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1164572] VUL-1: CVE-2020-9272: proftpd: out-of-bounds read in mod_cap via the cap_text.c cap_to_text function
by bugzilla_noreply＠novell.com 01 Mar '20

01 Mar '20

http://bugzilla.suse.com/show_bug.cgi?id=1164572 http://bugzilla.suse.com/show_bug.cgi?id=1164572#c4 --- Comment #4 from Swamp Workflow Management <swamp(a)suse.de> --- openSUSE-SU-2020:0273-1: An update that fixes two vulnerabilities is now available. Category: security (moderate) Bug References: 1164572,1164574 CVE References: CVE-2020-9272,CVE-2020-9273 Sources used: openSUSE Leap 15.1 (src): proftpd-1.3.6c-lp151.3.9.1 openSUSE Backports SLE-15-SP1 (src): proftpd-1.3.6c-bp151.4.9.1 openSUSE Backports SLE-15 (src): proftpd-1.3.6c-bp150.3.9.1 -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1163749] VUL-0: CVE-2020-7106: cacti: Lack of escaping on some pages can lead to XSS exposure
by bugzilla_noreply＠novell.com 01 Mar '20

01 Mar '20

http://bugzilla.suse.com/show_bug.cgi?id=1163749 http://bugzilla.suse.com/show_bug.cgi?id=1163749#c2 --- Comment #2 from Swamp Workflow Management <swamp(a)suse.de> --- openSUSE-SU-2020:0272-1: An update that solves 10 vulnerabilities and has two fixes is now available. Category: security (important) Bug References: 1082318,1101024,1101139,1122242,1122243,1122244,1122245,1122535,1158990,1158992,1161297,1163749 CVE References: CVE-2009-4112,CVE-2018-20723,CVE-2018-20724,CVE-2018-20725,CVE-2018-20726,CVE-2019-16723,CVE-2019-17357,CVE-2019-17358,CVE-2020-7106,CVE-2020-7237 Sources used: openSUSE Leap 15.1 (src): cacti-1.2.9-lp151.3.3.1, cacti-spine-1.2.9-lp151.3.3.1 -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1161297] VUL-0: CVE-2020-7237: cacti: Remote Code Execution (by privileged users) via shell metacharacters in the Performance Boost Debug Log field of poller_automation.php
by bugzilla_noreply＠novell.com 01 Mar '20

01 Mar '20

http://bugzilla.suse.com/show_bug.cgi?id=1161297 http://bugzilla.suse.com/show_bug.cgi?id=1161297#c2 --- Comment #2 from Swamp Workflow Management <swamp(a)suse.de> --- openSUSE-SU-2020:0272-1: An update that solves 10 vulnerabilities and has two fixes is now available. Category: security (important) Bug References: 1082318,1101024,1101139,1122242,1122243,1122244,1122245,1122535,1158990,1158992,1161297,1163749 CVE References: CVE-2009-4112,CVE-2018-20723,CVE-2018-20724,CVE-2018-20725,CVE-2018-20726,CVE-2019-16723,CVE-2019-17357,CVE-2019-17358,CVE-2020-7106,CVE-2020-7237 Sources used: openSUSE Leap 15.1 (src): cacti-1.2.9-lp151.3.3.1, cacti-spine-1.2.9-lp151.3.3.1 -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1158992] VUL-0: CVE-2019-17358: cacti: Unsafe deserialization in sanitize_unserialize_selected_items
by bugzilla_noreply＠novell.com 01 Mar '20

01 Mar '20

http://bugzilla.suse.com/show_bug.cgi?id=1158992 http://bugzilla.suse.com/show_bug.cgi?id=1158992#c4 --- Comment #4 from Swamp Workflow Management <swamp(a)suse.de> --- openSUSE-SU-2020:0272-1: An update that solves 10 vulnerabilities and has two fixes is now available. Category: security (important) Bug References: 1082318,1101024,1101139,1122242,1122243,1122244,1122245,1122535,1158990,1158992,1161297,1163749 CVE References: CVE-2009-4112,CVE-2018-20723,CVE-2018-20724,CVE-2018-20725,CVE-2018-20726,CVE-2019-16723,CVE-2019-17357,CVE-2019-17358,CVE-2020-7106,CVE-2020-7237 Sources used: openSUSE Leap 15.1 (src): cacti-1.2.9-lp151.3.3.1, cacti-spine-1.2.9-lp151.3.3.1 -- You are receiving this mail because: You are on the CC list for the bug.

1 0

[Bug 1158990] VUL-0: CVE-2019-17357: cacti: sql injection in graphs.php
by bugzilla_noreply＠novell.com 01 Mar '20

01 Mar '20

http://bugzilla.suse.com/show_bug.cgi?id=1158990 http://bugzilla.suse.com/show_bug.cgi?id=1158990#c4 --- Comment #4 from Swamp Workflow Management <swamp(a)suse.de> --- openSUSE-SU-2020:0272-1: An update that solves 10 vulnerabilities and has two fixes is now available. Category: security (important) Bug References: 1082318,1101024,1101139,1122242,1122243,1122244,1122245,1122535,1158990,1158992,1161297,1163749 CVE References: CVE-2009-4112,CVE-2018-20723,CVE-2018-20724,CVE-2018-20725,CVE-2018-20726,CVE-2019-16723,CVE-2019-17357,CVE-2019-17358,CVE-2020-7106,CVE-2020-7237 Sources used: openSUSE Leap 15.1 (src): cacti-1.2.9-lp151.3.3.1, cacti-spine-1.2.9-lp151.3.3.1 -- You are receiving this mail because: You are on the CC list for the bug.

1 0