openSUSE Security Announce
Threads by month
- ----- 2024 -----
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2017 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2016 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2015 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2014 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2013 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2012 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2011 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2010 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2009 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2008 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2007 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2006 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2005 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2004 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2003 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2002 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2001 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2000 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 1999 -----
- December
- November
- October
- September
- August
February 2016
- 2 participants
- 58 discussions
[security-announce] SUSE-SU-2016:0335-1: important: Security update for kernel live patch SP1 0
by opensuse-security@opensuse.org 04 Feb '16
by opensuse-security@opensuse.org 04 Feb '16
04 Feb '16
SUSE Security Update: Security update for kernel live patch SP1 0
______________________________________________________________________________
Announcement ID: SUSE-SU-2016:0335-1
Rating: important
References: #951542 #953052 #954005 #958601
Cross-References: CVE-2015-2925 CVE-2015-6937 CVE-2015-7872
CVE-2015-7990 CVE-2015-8539
Affected Products:
SUSE Linux Enterprise Live Patching 12
______________________________________________________________________________
An update that fixes 5 vulnerabilities is now available.
Description:
This kernel live patch for Linux Kernel 3.12.49-11.1 fixes security issues
and bugs:
Security issues fixed:
- CVE-2015-8539: A negatively instantiated user key could have been used
by a local user to leverage privileges (bnc#958601).
- CVE-2015-6937: A NULL pointer dereference flaw was found in the Reliable
Datagram Sockets (RDS) implementation allowing a local user to cause
system DoS. A verification was missing that the underlying transport
exists when a connection was created. (bsc#953052)
- CVE-2015-7990: RDS: Verify the underlying transport exists before
creating a connection, preventing possible DoS (bsc#953052).
- CVE-2015-7872: Possible crash when trying to garbage collect an
uninstantiated keyring (bsc#951542).
Non-security bugfix were also done:
- xfs: Fix lost direct IO write in the last block (bsc#954005).
Patch Instructions:
To install this SUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- SUSE Linux Enterprise Live Patching 12:
zypper in -t patch SUSE-SLE-Live-Patching-12-2016-203=1
To bring your system up-to-date, use "zypper patch".
Package List:
- SUSE Linux Enterprise Live Patching 12 (x86_64):
kgraft-patch-3_12_49-11-default-2-5.1
kgraft-patch-3_12_49-11-xen-2-5.1
References:
https://www.suse.com/security/cve/CVE-2015-2925.html
https://www.suse.com/security/cve/CVE-2015-6937.html
https://www.suse.com/security/cve/CVE-2015-7872.html
https://www.suse.com/security/cve/CVE-2015-7990.html
https://www.suse.com/security/cve/CVE-2015-8539.html
https://bugzilla.suse.com/951542
https://bugzilla.suse.com/953052
https://bugzilla.suse.com/954005
https://bugzilla.suse.com/958601
--
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe(a)opensuse.org
For additional commands, e-mail: opensuse-security-announce+help(a)opensuse.org
1
0
[security-announce] SUSE-SU-2016:0334-1: important: Security update for MozillaFirefox, MozillaFirefox-branding-SLED, mozilla-nss
by opensuse-security@opensuse.org 04 Feb '16
by opensuse-security@opensuse.org 04 Feb '16
04 Feb '16
SUSE Security Update: Security update for MozillaFirefox, MozillaFirefox-branding-SLED, mozilla-nss
______________________________________________________________________________
Announcement ID: SUSE-SU-2016:0334-1
Rating: important
References: #954447 #963520 #963632 #963635 #963731
Cross-References: CVE-2016-1930 CVE-2016-1935 CVE-2016-1938
Affected Products:
SUSE Linux Enterprise Software Development Kit 11-SP4
SUSE Linux Enterprise Software Development Kit 11-SP3
SUSE Linux Enterprise Server for VMWare 11-SP3
SUSE Linux Enterprise Server 11-SP4
SUSE Linux Enterprise Server 11-SP3
SUSE Linux Enterprise Desktop 11-SP4
SUSE Linux Enterprise Desktop 11-SP3
SUSE Linux Enterprise Debuginfo 11-SP4
SUSE Linux Enterprise Debuginfo 11-SP3
______________________________________________________________________________
An update that solves three vulnerabilities and has two
fixes is now available.
Description:
This update for MozillaFirefox, MozillaFirefox-branding-SLE, mozilla-nss
fixes the following issues: (bsc#963520)
Mozilla Firefox was updated to 38.6.0 ESR. Mozilla NSS was updated to
3.20.2.
The following vulnerabilities were fixed:
- CVE-2016-1930: Memory safety bugs fixed in Firefox ESR 38.6 (bsc#963632)
- CVE-2016-1935: Buffer overflow in WebGL after out of memory allocation
(bsc#963635)
- CVE-2016-1938: Calculations with mp_div and mp_exptmod in Network
Security Services (NSS) canproduce wrong results (bsc#963731)
The following improvements were added:
- bsc#954447: Mozilla NSS now supports a number of new DHE ciphersuites
- Tracking protection is now enabled by default
Patch Instructions:
To install this SUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- SUSE Linux Enterprise Software Development Kit 11-SP4:
zypper in -t patch sdksp4-mozilla-12383=1
- SUSE Linux Enterprise Software Development Kit 11-SP3:
zypper in -t patch sdksp3-mozilla-12383=1
- SUSE Linux Enterprise Server for VMWare 11-SP3:
zypper in -t patch slessp3-mozilla-12383=1
- SUSE Linux Enterprise Server 11-SP4:
zypper in -t patch slessp4-mozilla-12383=1
- SUSE Linux Enterprise Server 11-SP3:
zypper in -t patch slessp3-mozilla-12383=1
- SUSE Linux Enterprise Desktop 11-SP4:
zypper in -t patch sledsp4-mozilla-12383=1
- SUSE Linux Enterprise Desktop 11-SP3:
zypper in -t patch sledsp3-mozilla-12383=1
- SUSE Linux Enterprise Debuginfo 11-SP4:
zypper in -t patch dbgsp4-mozilla-12383=1
- SUSE Linux Enterprise Debuginfo 11-SP3:
zypper in -t patch dbgsp3-mozilla-12383=1
To bring your system up-to-date, use "zypper patch".
Package List:
- SUSE Linux Enterprise Software Development Kit 11-SP4 (i586 ia64 ppc64 s390x x86_64):
MozillaFirefox-devel-38.6.0esr-31.3
mozilla-nss-devel-3.20.2-25.2
- SUSE Linux Enterprise Software Development Kit 11-SP3 (i586 ia64 ppc64 s390x x86_64):
MozillaFirefox-devel-38.6.0esr-31.3
mozilla-nss-devel-3.20.2-25.2
- SUSE Linux Enterprise Server for VMWare 11-SP3 (i586 x86_64):
MozillaFirefox-38.6.0esr-31.3
MozillaFirefox-translations-38.6.0esr-31.3
libfreebl3-3.20.2-25.2
libsoftokn3-3.20.2-25.2
mozilla-nss-3.20.2-25.2
mozilla-nss-tools-3.20.2-25.2
- SUSE Linux Enterprise Server for VMWare 11-SP3 (x86_64):
libfreebl3-32bit-3.20.2-25.2
libsoftokn3-32bit-3.20.2-25.2
mozilla-nss-32bit-3.20.2-25.2
- SUSE Linux Enterprise Server 11-SP4 (i586 ia64 ppc64 s390x x86_64):
MozillaFirefox-38.6.0esr-31.3
MozillaFirefox-branding-SLED-38-18.24
MozillaFirefox-translations-38.6.0esr-31.3
libfreebl3-3.20.2-25.2
libsoftokn3-3.20.2-25.2
mozilla-nss-3.20.2-25.2
mozilla-nss-tools-3.20.2-25.2
- SUSE Linux Enterprise Server 11-SP4 (s390x x86_64):
libfreebl3-32bit-3.20.2-25.2
libsoftokn3-32bit-3.20.2-25.2
mozilla-nss-32bit-3.20.2-25.2
- SUSE Linux Enterprise Server 11-SP4 (ia64):
libfreebl3-x86-3.20.2-25.2
libsoftokn3-x86-3.20.2-25.2
mozilla-nss-x86-3.20.2-25.2
- SUSE Linux Enterprise Server 11-SP3 (i586 ia64 ppc64 s390x x86_64):
MozillaFirefox-38.6.0esr-31.3
MozillaFirefox-branding-SLED-38-18.24
MozillaFirefox-translations-38.6.0esr-31.3
libfreebl3-3.20.2-25.2
libsoftokn3-3.20.2-25.2
mozilla-nss-3.20.2-25.2
mozilla-nss-tools-3.20.2-25.2
- SUSE Linux Enterprise Server 11-SP3 (s390x x86_64):
libfreebl3-32bit-3.20.2-25.2
libsoftokn3-32bit-3.20.2-25.2
mozilla-nss-32bit-3.20.2-25.2
- SUSE Linux Enterprise Server 11-SP3 (ia64):
libfreebl3-x86-3.20.2-25.2
libsoftokn3-x86-3.20.2-25.2
mozilla-nss-x86-3.20.2-25.2
- SUSE Linux Enterprise Desktop 11-SP4 (i586 x86_64):
MozillaFirefox-38.6.0esr-31.3
MozillaFirefox-branding-SLED-38-18.24
MozillaFirefox-translations-38.6.0esr-31.3
libfreebl3-3.20.2-25.2
libsoftokn3-3.20.2-25.2
mozilla-nss-3.20.2-25.2
mozilla-nss-tools-3.20.2-25.2
- SUSE Linux Enterprise Desktop 11-SP4 (x86_64):
libfreebl3-32bit-3.20.2-25.2
libsoftokn3-32bit-3.20.2-25.2
mozilla-nss-32bit-3.20.2-25.2
- SUSE Linux Enterprise Desktop 11-SP3 (i586 x86_64):
MozillaFirefox-38.6.0esr-31.3
MozillaFirefox-branding-SLED-38-18.24
MozillaFirefox-translations-38.6.0esr-31.3
libfreebl3-3.20.2-25.2
libsoftokn3-3.20.2-25.2
mozilla-nss-3.20.2-25.2
mozilla-nss-tools-3.20.2-25.2
- SUSE Linux Enterprise Desktop 11-SP3 (x86_64):
libfreebl3-32bit-3.20.2-25.2
libsoftokn3-32bit-3.20.2-25.2
mozilla-nss-32bit-3.20.2-25.2
- SUSE Linux Enterprise Debuginfo 11-SP4 (i586 ia64 ppc64 s390x x86_64):
MozillaFirefox-debuginfo-38.6.0esr-31.3
MozillaFirefox-debugsource-38.6.0esr-31.3
mozilla-nss-debuginfo-3.20.2-25.2
mozilla-nss-debugsource-3.20.2-25.2
- SUSE Linux Enterprise Debuginfo 11-SP3 (i586 ia64 ppc64 s390x x86_64):
MozillaFirefox-debuginfo-38.6.0esr-31.3
MozillaFirefox-debugsource-38.6.0esr-31.3
mozilla-nss-debuginfo-3.20.2-25.2
mozilla-nss-debugsource-3.20.2-25.2
References:
https://www.suse.com/security/cve/CVE-2016-1930.html
https://www.suse.com/security/cve/CVE-2016-1935.html
https://www.suse.com/security/cve/CVE-2016-1938.html
https://bugzilla.suse.com/954447
https://bugzilla.suse.com/963520
https://bugzilla.suse.com/963632
https://bugzilla.suse.com/963635
https://bugzilla.suse.com/963731
--
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe(a)opensuse.org
For additional commands, e-mail: opensuse-security-announce+help(a)opensuse.org
1
0
[security-announce] openSUSE-SU-2016:0318-1: important: Security update for the Linux Kernel
by opensuse-security@opensuse.org 03 Feb '16
by opensuse-security@opensuse.org 03 Feb '16
03 Feb '16
openSUSE Security Update: Security update for the Linux Kernel
______________________________________________________________________________
Announcement ID: openSUSE-SU-2016:0318-1
Rating: important
References: #814440 #906545 #912202 #921949 #937969 #937970
#938706 #944296 #945825 #949936 #950998 #951627
#951638 #952384 #952579 #952976 #953527 #954138
#954404 #955224 #955354 #955422 #956708 #956934
#957988 #957990 #958504 #958510 #958886 #958951
#959190 #959399 #959568 #960839 #961509 #961739
#962075
Cross-References: CVE-2014-8989 CVE-2014-9529 CVE-2015-5157
CVE-2015-5307 CVE-2015-6937 CVE-2015-7550
CVE-2015-7799 CVE-2015-7885 CVE-2015-7990
CVE-2015-8104 CVE-2015-8215 CVE-2015-8543
CVE-2015-8550 CVE-2015-8551 CVE-2015-8552
CVE-2015-8569 CVE-2015-8575 CVE-2015-8767
CVE-2016-0728
Affected Products:
openSUSE 13.2
______________________________________________________________________________
An update that solves 19 vulnerabilities and has 18 fixes
is now available.
Description:
The openSUSE 13.2 kernel was updated to receive various security and
bugfixes.
Following security bugs were fixed:
- CVE-2016-0728: A reference leak in keyring handling with
join_session_keyring() could lead to local attackers gain root
privileges. (bsc#962075).
- CVE-2015-7550: A local user could have triggered a race between read and
revoke in keyctl (bnc#958951).
- CVE-2015-8569: The (1) pptp_bind and (2) pptp_connect functions in
drivers/net/ppp/pptp.c in the Linux kernel did not verify an address
length, which allowed local users to obtain sensitive information from
kernel memory and bypass the KASLR protection mechanism via a crafted
application (bnc#959190).
- CVE-2015-8543: The networking implementation in the Linux kernel did not
validate protocol identifiers for certain protocol families, which
allowed local users to cause a denial of service (NULL function pointer
dereference and system crash) or possibly gain privileges by leveraging
CLONE_NEWUSER support to execute a crafted SOCK_RAW application
(bnc#958886).
- CVE-2014-8989: The Linux kernel did not properly restrict dropping
of supplemental group memberships in certain namespace scenarios, which
allowed local users to bypass intended file permissions by leveraging a
POSIX ACL containing an entry for the group category that is more
restrictive than the entry for the other category, aka a "negative
groups" issue, related to kernel/groups.c, kernel/uid16.c, and
kernel/user_namespace.c (bnc#906545).
- CVE-2015-5157: arch/x86/entry/entry_64.S in the Linux kernel on the
x86_64 platform mishandles IRET faults in processing NMIs that
occurred during userspace execution, which might allow local users to
gain privileges by triggering an NMI (bnc#937969).
- CVE-2015-7799: The slhc_init function in drivers/net/slip/slhc.c in the
Linux kernel through 4.2.3 did not ensure that certain slot numbers are
valid, which allowed local users to cause a denial of service (NULL
pointer dereference and system crash) via a crafted PPPIOCSMAXCID ioctl
call (bnc#949936).
- CVE-2015-8104: The KVM subsystem in the Linux kernel through 4.2.6, and
Xen 4.3.x through 4.6.x, allowed guest OS users to cause a denial
of service (host OS panic or hang) by triggering many #DB (aka Debug)
exceptions, related to svm.c (bnc#954404).
- CVE-2015-5307: The KVM subsystem in the Linux kernel through 4.2.6, and
Xen 4.3.x through 4.6.x, allowed guest OS users to cause a denial
of service (host OS panic or hang) by triggering many #AC (aka Alignment
Check) exceptions, related to svm.c and vmx.c (bnc#953527).
- CVE-2014-9529: Race condition in the key_gc_unused_keys function in
security/keys/gc.c in the Linux kernel allowed local users to cause a
denial of service (memory corruption or panic) or possibly have
unspecified other impact via keyctl commands that trigger access to a
key structure member during garbage collection of a key (bnc#912202).
- CVE-2015-7990: Race condition in the rds_sendmsg function in
net/rds/sendmsg.c in the Linux kernel allowed local users to cause a
denial of service (NULL pointer dereference and system crash) or
possibly have unspecified other impact by using a socket that was not
properly bound. NOTE: this vulnerability exists because of an
incomplete fix for CVE-2015-6937 (bnc#952384 953052).
- CVE-2015-6937: The __rds_conn_create function in net/rds/connection.c in
the Linux kernel allowed local users to cause a denial of service (NULL
pointer dereference and system crash) or possibly have unspecified
other impact by using a socket that was not properly bound (bnc#945825).
- CVE-2015-7885: The dgnc_mgmt_ioctl function in
drivers/staging/dgnc/dgnc_mgmt.c in the Linux kernel through 4.3.3 did
not initialize a certain structure member, which allowed local users to
obtain sensitive information from kernel memory via a crafted
application (bnc#951627).
- CVE-2015-8215: net/ipv6/addrconf.c in the IPv6 stack in the Linux kernel
did not validate attempted changes to the MTU value, which allowed
context-dependent attackers to cause a denial of service (packet loss)
via a value that is (1) smaller than the minimum compliant value or (2)
larger than the MTU of an interface, as demonstrated by a Router
Advertisement (RA) message that is not validated by a daemon, a
different vulnerability than CVE-2015-0272. NOTE: the scope of
CVE-2015-0272 is limited to the NetworkManager product (bnc#955354).
- CVE-2015-8767: A case can occur when sctp_accept() is called by the user
during a heartbeat timeout event after the 4-way handshake. Since
sctp_assoc_migrate() changes both assoc->base.sk and assoc->ep, the
bh_sock_lock in sctp_generate_heartbeat_event() will be taken with the
listening socket but released with the new association socket. The
result is a deadlock on any future attempts to take the listening socket
lock. (bsc#961509)
- CVE-2015-8575: Validate socket address length in sco_sock_bind() to
prevent information leak (bsc#959399).
- CVE-2015-8551, CVE-2015-8552: xen/pciback: For
XEN_PCI_OP_disable_msi[|x] only disable if device has MSI(X) enabled
(bsc#957990).
- CVE-2015-8550: Compiler optimizations in the XEN PV backend drivers
could have lead to double fetch vulnerabilities, causing denial of
service or arbitrary code execution (depending on the configuration)
(bsc#957988).
The following non-security bugs were fixed:
- ALSA: hda - Disable 64bit address for Creative HDA controllers
(bnc#814440).
- ALSA: hda - Fix noise problems on Thinkpad T440s (boo#958504).
- Input: aiptek - fix crash on detecting device without endpoints
(bnc#956708).
- KEYS: Make /proc/keys unconditional if CONFIG_KEYS=y (boo#956934).
- KVM: x86: update masterclock values on TSC writes (bsc#961739).
- NFS: Fix a NULL pointer dereference of migration recovery ops for v4.2
client (bsc#960839).
- apparmor: allow SYS_CAP_RESOURCE to be sufficient to prlimit another
task (bsc#921949).
- blktap: also call blkif_disconnect() when frontend switched to closed
(bsc#952976).
- blktap: refine mm tracking (bsc#952976).
- cdrom: Random writing support for BD-RE media (bnc#959568).
- genksyms: Handle string literals with spaces in reference files
(bsc#958510).
- ipv4: Do not increase PMTU with Datagram Too Big message (bsc#955224).
- ipv6: distinguish frag queues by device for multicast and link-local
packets (bsc#955422).
- ipv6: fix tunnel error handling (bsc#952579).
- route: Use ipv4_mtu instead of raw rt_pmtu (bsc#955224).
- uas: Add response iu handling (bnc#954138).
- usbvision fix overflow of interfaces array (bnc#950998).
- x86/evtchn: make use of PHYSDEVOP_map_pirq.
- xen/pciback: Do not allow MSI-X ops if PCI_COMMAND_MEMORY is not set
(bsc#957990 XSA-157).
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE 13.2:
zypper in -t patch openSUSE-2016-136=1
To bring your system up-to-date, use "zypper patch".
Package List:
- openSUSE 13.2 (i686 x86_64):
kernel-debug-3.16.7-32.1
kernel-debug-base-3.16.7-32.1
kernel-debug-base-debuginfo-3.16.7-32.1
kernel-debug-debuginfo-3.16.7-32.1
kernel-debug-debugsource-3.16.7-32.1
kernel-debug-devel-3.16.7-32.1
kernel-debug-devel-debuginfo-3.16.7-32.1
kernel-desktop-3.16.7-32.1
kernel-desktop-base-3.16.7-32.1
kernel-desktop-base-debuginfo-3.16.7-32.1
kernel-desktop-debuginfo-3.16.7-32.1
kernel-desktop-debugsource-3.16.7-32.1
kernel-desktop-devel-3.16.7-32.1
kernel-ec2-base-debuginfo-3.16.7-32.1
kernel-ec2-debuginfo-3.16.7-32.1
kernel-ec2-debugsource-3.16.7-32.1
kernel-vanilla-3.16.7-32.1
kernel-vanilla-debuginfo-3.16.7-32.1
kernel-vanilla-debugsource-3.16.7-32.1
kernel-vanilla-devel-3.16.7-32.1
kernel-xen-3.16.7-32.1
kernel-xen-base-3.16.7-32.1
kernel-xen-base-debuginfo-3.16.7-32.1
kernel-xen-debuginfo-3.16.7-32.1
kernel-xen-debugsource-3.16.7-32.1
kernel-xen-devel-3.16.7-32.1
- openSUSE 13.2 (i586 x86_64):
bbswitch-0.8-3.15.1
bbswitch-debugsource-0.8-3.15.1
bbswitch-kmp-default-0.8_k3.16.7_32-3.15.1
bbswitch-kmp-default-debuginfo-0.8_k3.16.7_32-3.15.1
bbswitch-kmp-desktop-0.8_k3.16.7_32-3.15.1
bbswitch-kmp-desktop-debuginfo-0.8_k3.16.7_32-3.15.1
bbswitch-kmp-xen-0.8_k3.16.7_32-3.15.1
bbswitch-kmp-xen-debuginfo-0.8_k3.16.7_32-3.15.1
cloop-2.639-14.15.1
cloop-debuginfo-2.639-14.15.1
cloop-debugsource-2.639-14.15.1
cloop-kmp-default-2.639_k3.16.7_32-14.15.1
cloop-kmp-default-debuginfo-2.639_k3.16.7_32-14.15.1
cloop-kmp-desktop-2.639_k3.16.7_32-14.15.1
cloop-kmp-desktop-debuginfo-2.639_k3.16.7_32-14.15.1
cloop-kmp-xen-2.639_k3.16.7_32-14.15.1
cloop-kmp-xen-debuginfo-2.639_k3.16.7_32-14.15.1
crash-7.0.8-15.1
crash-debuginfo-7.0.8-15.1
crash-debugsource-7.0.8-15.1
crash-devel-7.0.8-15.1
crash-doc-7.0.8-15.1
crash-eppic-7.0.8-15.1
crash-eppic-debuginfo-7.0.8-15.1
crash-gcore-7.0.8-15.1
crash-gcore-debuginfo-7.0.8-15.1
crash-kmp-default-7.0.8_k3.16.7_32-15.1
crash-kmp-default-debuginfo-7.0.8_k3.16.7_32-15.1
crash-kmp-desktop-7.0.8_k3.16.7_32-15.1
crash-kmp-desktop-debuginfo-7.0.8_k3.16.7_32-15.1
crash-kmp-xen-7.0.8_k3.16.7_32-15.1
crash-kmp-xen-debuginfo-7.0.8_k3.16.7_32-15.1
hdjmod-debugsource-1.28-18.16.1
hdjmod-kmp-default-1.28_k3.16.7_32-18.16.1
hdjmod-kmp-default-debuginfo-1.28_k3.16.7_32-18.16.1
hdjmod-kmp-desktop-1.28_k3.16.7_32-18.16.1
hdjmod-kmp-desktop-debuginfo-1.28_k3.16.7_32-18.16.1
hdjmod-kmp-xen-1.28_k3.16.7_32-18.16.1
hdjmod-kmp-xen-debuginfo-1.28_k3.16.7_32-18.16.1
ipset-6.23-15.1
ipset-debuginfo-6.23-15.1
ipset-debugsource-6.23-15.1
ipset-devel-6.23-15.1
ipset-kmp-default-6.23_k3.16.7_32-15.1
ipset-kmp-default-debuginfo-6.23_k3.16.7_32-15.1
ipset-kmp-desktop-6.23_k3.16.7_32-15.1
ipset-kmp-desktop-debuginfo-6.23_k3.16.7_32-15.1
ipset-kmp-xen-6.23_k3.16.7_32-15.1
ipset-kmp-xen-debuginfo-6.23_k3.16.7_32-15.1
kernel-default-3.16.7-32.1
kernel-default-base-3.16.7-32.1
kernel-default-base-debuginfo-3.16.7-32.1
kernel-default-debuginfo-3.16.7-32.1
kernel-default-debugsource-3.16.7-32.1
kernel-default-devel-3.16.7-32.1
kernel-ec2-3.16.7-32.1
kernel-ec2-base-3.16.7-32.1
kernel-ec2-devel-3.16.7-32.1
kernel-obs-build-3.16.7-32.2
kernel-obs-build-debugsource-3.16.7-32.2
kernel-obs-qa-3.16.7-32.1
kernel-obs-qa-xen-3.16.7-32.1
kernel-syms-3.16.7-32.1
libipset3-6.23-15.1
libipset3-debuginfo-6.23-15.1
pcfclock-0.44-260.15.1
pcfclock-debuginfo-0.44-260.15.1
pcfclock-debugsource-0.44-260.15.1
pcfclock-kmp-default-0.44_k3.16.7_32-260.15.1
pcfclock-kmp-default-debuginfo-0.44_k3.16.7_32-260.15.1
pcfclock-kmp-desktop-0.44_k3.16.7_32-260.15.1
pcfclock-kmp-desktop-debuginfo-0.44_k3.16.7_32-260.15.1
python-virtualbox-4.3.34-37.1
python-virtualbox-debuginfo-4.3.34-37.1
vhba-kmp-debugsource-20140629-2.15.1
vhba-kmp-default-20140629_k3.16.7_32-2.15.1
vhba-kmp-default-debuginfo-20140629_k3.16.7_32-2.15.1
vhba-kmp-desktop-20140629_k3.16.7_32-2.15.1
vhba-kmp-desktop-debuginfo-20140629_k3.16.7_32-2.15.1
vhba-kmp-xen-20140629_k3.16.7_32-2.15.1
vhba-kmp-xen-debuginfo-20140629_k3.16.7_32-2.15.1
virtualbox-4.3.34-37.1
virtualbox-debuginfo-4.3.34-37.1
virtualbox-debugsource-4.3.34-37.1
virtualbox-devel-4.3.34-37.1
virtualbox-guest-kmp-default-4.3.34_k3.16.7_32-37.1
virtualbox-guest-kmp-default-debuginfo-4.3.34_k3.16.7_32-37.1
virtualbox-guest-kmp-desktop-4.3.34_k3.16.7_32-37.1
virtualbox-guest-kmp-desktop-debuginfo-4.3.34_k3.16.7_32-37.1
virtualbox-guest-tools-4.3.34-37.1
virtualbox-guest-tools-debuginfo-4.3.34-37.1
virtualbox-guest-x11-4.3.34-37.1
virtualbox-guest-x11-debuginfo-4.3.34-37.1
virtualbox-host-kmp-default-4.3.34_k3.16.7_32-37.1
virtualbox-host-kmp-default-debuginfo-4.3.34_k3.16.7_32-37.1
virtualbox-host-kmp-desktop-4.3.34_k3.16.7_32-37.1
virtualbox-host-kmp-desktop-debuginfo-4.3.34_k3.16.7_32-37.1
virtualbox-qt-4.3.34-37.1
virtualbox-qt-debuginfo-4.3.34-37.1
virtualbox-websrv-4.3.34-37.1
virtualbox-websrv-debuginfo-4.3.34-37.1
xen-debugsource-4.4.3_08-38.1
xen-devel-4.4.3_08-38.1
xen-libs-4.4.3_08-38.1
xen-libs-debuginfo-4.4.3_08-38.1
xen-tools-domU-4.4.3_08-38.1
xen-tools-domU-debuginfo-4.4.3_08-38.1
xtables-addons-2.6-15.1
xtables-addons-debuginfo-2.6-15.1
xtables-addons-debugsource-2.6-15.1
xtables-addons-kmp-default-2.6_k3.16.7_32-15.1
xtables-addons-kmp-default-debuginfo-2.6_k3.16.7_32-15.1
xtables-addons-kmp-desktop-2.6_k3.16.7_32-15.1
xtables-addons-kmp-desktop-debuginfo-2.6_k3.16.7_32-15.1
xtables-addons-kmp-xen-2.6_k3.16.7_32-15.1
xtables-addons-kmp-xen-debuginfo-2.6_k3.16.7_32-15.1
- openSUSE 13.2 (noarch):
kernel-devel-3.16.7-32.1
kernel-docs-3.16.7-32.2
kernel-macros-3.16.7-32.1
kernel-source-3.16.7-32.1
kernel-source-vanilla-3.16.7-32.1
virtualbox-guest-desktop-icons-4.3.34-37.1
virtualbox-host-source-4.3.34-37.1
- openSUSE 13.2 (x86_64):
xen-4.4.3_08-38.1
xen-doc-html-4.4.3_08-38.1
xen-kmp-default-4.4.3_08_k3.16.7_32-38.1
xen-kmp-default-debuginfo-4.4.3_08_k3.16.7_32-38.1
xen-kmp-desktop-4.4.3_08_k3.16.7_32-38.1
xen-kmp-desktop-debuginfo-4.4.3_08_k3.16.7_32-38.1
xen-libs-32bit-4.4.3_08-38.1
xen-libs-debuginfo-32bit-4.4.3_08-38.1
xen-tools-4.4.3_08-38.1
xen-tools-debuginfo-4.4.3_08-38.1
- openSUSE 13.2 (i686):
kernel-pae-3.16.7-32.1
kernel-pae-base-3.16.7-32.1
kernel-pae-base-debuginfo-3.16.7-32.1
kernel-pae-debuginfo-3.16.7-32.1
kernel-pae-debugsource-3.16.7-32.1
kernel-pae-devel-3.16.7-32.1
- openSUSE 13.2 (i586):
bbswitch-kmp-pae-0.8_k3.16.7_32-3.15.1
bbswitch-kmp-pae-debuginfo-0.8_k3.16.7_32-3.15.1
cloop-kmp-pae-2.639_k3.16.7_32-14.15.1
cloop-kmp-pae-debuginfo-2.639_k3.16.7_32-14.15.1
crash-kmp-pae-7.0.8_k3.16.7_32-15.1
crash-kmp-pae-debuginfo-7.0.8_k3.16.7_32-15.1
hdjmod-kmp-pae-1.28_k3.16.7_32-18.16.1
hdjmod-kmp-pae-debuginfo-1.28_k3.16.7_32-18.16.1
ipset-kmp-pae-6.23_k3.16.7_32-15.1
ipset-kmp-pae-debuginfo-6.23_k3.16.7_32-15.1
pcfclock-kmp-pae-0.44_k3.16.7_32-260.15.1
pcfclock-kmp-pae-debuginfo-0.44_k3.16.7_32-260.15.1
vhba-kmp-pae-20140629_k3.16.7_32-2.15.1
vhba-kmp-pae-debuginfo-20140629_k3.16.7_32-2.15.1
virtualbox-guest-kmp-pae-4.3.34_k3.16.7_32-37.1
virtualbox-guest-kmp-pae-debuginfo-4.3.34_k3.16.7_32-37.1
virtualbox-host-kmp-pae-4.3.34_k3.16.7_32-37.1
virtualbox-host-kmp-pae-debuginfo-4.3.34_k3.16.7_32-37.1
xtables-addons-kmp-pae-2.6_k3.16.7_32-15.1
xtables-addons-kmp-pae-debuginfo-2.6_k3.16.7_32-15.1
References:
https://www.suse.com/security/cve/CVE-2014-8989.html
https://www.suse.com/security/cve/CVE-2014-9529.html
https://www.suse.com/security/cve/CVE-2015-5157.html
https://www.suse.com/security/cve/CVE-2015-5307.html
https://www.suse.com/security/cve/CVE-2015-6937.html
https://www.suse.com/security/cve/CVE-2015-7550.html
https://www.suse.com/security/cve/CVE-2015-7799.html
https://www.suse.com/security/cve/CVE-2015-7885.html
https://www.suse.com/security/cve/CVE-2015-7990.html
https://www.suse.com/security/cve/CVE-2015-8104.html
https://www.suse.com/security/cve/CVE-2015-8215.html
https://www.suse.com/security/cve/CVE-2015-8543.html
https://www.suse.com/security/cve/CVE-2015-8550.html
https://www.suse.com/security/cve/CVE-2015-8551.html
https://www.suse.com/security/cve/CVE-2015-8552.html
https://www.suse.com/security/cve/CVE-2015-8569.html
https://www.suse.com/security/cve/CVE-2015-8575.html
https://www.suse.com/security/cve/CVE-2015-8767.html
https://www.suse.com/security/cve/CVE-2016-0728.html
https://bugzilla.suse.com/814440
https://bugzilla.suse.com/906545
https://bugzilla.suse.com/912202
https://bugzilla.suse.com/921949
https://bugzilla.suse.com/937969
https://bugzilla.suse.com/937970
https://bugzilla.suse.com/938706
https://bugzilla.suse.com/944296
https://bugzilla.suse.com/945825
https://bugzilla.suse.com/949936
https://bugzilla.suse.com/950998
https://bugzilla.suse.com/951627
https://bugzilla.suse.com/951638
https://bugzilla.suse.com/952384
https://bugzilla.suse.com/952579
https://bugzilla.suse.com/952976
https://bugzilla.suse.com/953527
https://bugzilla.suse.com/954138
https://bugzilla.suse.com/954404
https://bugzilla.suse.com/955224
https://bugzilla.suse.com/955354
https://bugzilla.suse.com/955422
https://bugzilla.suse.com/956708
https://bugzilla.suse.com/956934
https://bugzilla.suse.com/957988
https://bugzilla.suse.com/957990
https://bugzilla.suse.com/958504
https://bugzilla.suse.com/958510
https://bugzilla.suse.com/958886
https://bugzilla.suse.com/958951
https://bugzilla.suse.com/959190
https://bugzilla.suse.com/959399
https://bugzilla.suse.com/959568
https://bugzilla.suse.com/960839
https://bugzilla.suse.com/961509
https://bugzilla.suse.com/961739
https://bugzilla.suse.com/962075
--
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe(a)opensuse.org
For additional commands, e-mail: opensuse-security-announce+help(a)opensuse.org
1
0
[security-announce] openSUSE 13.1 has reached end of SUSE support - 13.1 Evergreen goes on
by Benjamin Brunner 03 Feb '16
by Benjamin Brunner 03 Feb '16
03 Feb '16
Hi all,
with the release of systemd on February 3rd, 2016 the SUSE sponsored
maintenance of openSUSE 13.1 has ended.
openSUSE 13.1 is now officially discontinued and out of support by SUSE.
openSUSE 13.1 now will be continued to be maintained by the Evergreen
community team. Their wikipage is on http://en.opensuse.org/Evergreen,
please check it out for more information.
Here are some statistics:
openSUSE 13.1 was released on November 19th 2013, making it ca. 26
months of security and bugfix support.
Some statistics on the released patches (compared to 12.3):
Total updates: 1242 (+331)
Security: 617 (+148) 469
Recommended: 619 (+179)
Optional: 5 (+4)
Feature: 1 (0)
Fixed CVE-entries: 2312 (+730) 1582
Fixed Bugs (overall): 3029 (+1167) 1862
A huge thanks to our awesome packagers, community and all involved
people, who made the next great release possible!
Also a special thanks to the Evergreen-team which keeps 13.1 alive!
Your maintenance- and security-team
--
Benjamin Brunner <bbrunner(a)suse.com>,
SUSE MaintenanceSecurity
SUSE LINUX GmbH, GF: Felix Imendörffer, Jane Smithard, Graham Norton,
HRB 21284
(AG Nürnberg)
--
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe(a)opensuse.org
For additional commands, e-mail: opensuse-security-announce+help(a)opensuse.org
1
0
[security-announce] openSUSE-SU-2016:0310-1: important: Security update for xulrunner
by opensuse-security@opensuse.org 02 Feb '16
by opensuse-security@opensuse.org 02 Feb '16
02 Feb '16
openSUSE Security Update: Security update for xulrunner
______________________________________________________________________________
Announcement ID: openSUSE-SU-2016:0310-1
Rating: important
References: #963632 #963635
Cross-References: CVE-2016-1930 CVE-2016-1935
Affected Products:
openSUSE Leap 42.1
______________________________________________________________________________
An update that fixes two vulnerabilities is now available.
Description:
XULRunner was updated to 38.6.0 to fix two security issues.
The following vulnerabilities were fixed:
* CVE-2016-1930: Miscellaneous memory safety hazards (boo#963632)
* CVE-2016-1935: Buffer overflow in WebGL after out of memory allocation
(boo#963635)
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE Leap 42.1:
zypper in -t patch openSUSE-2016-127=1
To bring your system up-to-date, use "zypper patch".
Package List:
- openSUSE Leap 42.1 (i586 x86_64):
xulrunner-38.6.0-10.2
xulrunner-debuginfo-38.6.0-10.2
xulrunner-debugsource-38.6.0-10.2
xulrunner-devel-38.6.0-10.2
- openSUSE Leap 42.1 (x86_64):
xulrunner-32bit-38.6.0-10.2
xulrunner-debuginfo-32bit-38.6.0-10.2
References:
https://www.suse.com/security/cve/CVE-2016-1930.html
https://www.suse.com/security/cve/CVE-2016-1935.html
https://bugzilla.suse.com/963632
https://bugzilla.suse.com/963635
--
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe(a)opensuse.org
For additional commands, e-mail: opensuse-security-announce+help(a)opensuse.org
1
0
[security-announce] openSUSE-SU-2016:0309-1: important: Security update for the MozillaFirefox, mozilla-nss and mozilla-nspr
by opensuse-security@opensuse.org 02 Feb '16
by opensuse-security@opensuse.org 02 Feb '16
02 Feb '16
openSUSE Security Update: Security update for the MozillaFirefox, mozilla-nss and mozilla-nspr
______________________________________________________________________________
Announcement ID: openSUSE-SU-2016:0309-1
Rating: important
References: #963633 #963634 #963635 #963637 #963641 #963643
#963644 #963645 #963731
Cross-References: CVE-2015-7208 CVE-2016-1930 CVE-2016-1931
CVE-2016-1933 CVE-2016-1935 CVE-2016-1937
CVE-2016-1938 CVE-2016-1939 CVE-2016-1942
CVE-2016-1943 CVE-2016-1944 CVE-2016-1945
CVE-2016-1946 CVE-2016-1947
Affected Products:
openSUSE Leap 42.1
openSUSE 13.2
______________________________________________________________________________
An update that fixes 14 vulnerabilities is now available.
Description:
This update to MozillaFirefox fixes several security issues and bugs.
Mozilla Firefox was updated to 44.0. Mozilla NSS was updated to 3.21
Mozilla NSPR was updated to 4.11.
The following vulnerabilities were fixed:
* CVE-2016-1930/CVE-2016-1931: Miscellaneous memory safety hazards
(boo#963633)
* CVE-2016-1933: Out of Memory crash when parsing GIF format images
(boo#963634)
* CVE-2016-1935: Buffer overflow in WebGL after out of memory allocation
(boo#963635)
* CVE-2015-7208/CVE-2016-1939: Firefox allows for control characters to be
set in cookie names (boo#963637)
* CVE-2016-1937: Missing delay following user click events in protocol
handler dialog (boo#963641)
* CVE-2016-1938: Errors in mp_div and mp_exptmod cryptographic functions
in NSS (boo#963731)
* CVE-2016-1942/CVE-2016-1943: Addressbar spoofing attacks (boo#963643)
* CVE-2016-1944/CVE-2016-1945/CVE-2016-1946: Unsafe memory manipulation
found through code inspection (boo#963644)
* CVE-2016-1947: Application Reputation service disabled in Firefox 43
(boo#963645)
The following change from Mozilla Firefox 43.0.4 is included:
* Re-enable SHA-1 certificates to prevent outdated man-in-the-middle
security devices from interfering with properly secured SSL/TLS
connections
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE Leap 42.1:
zypper in -t patch openSUSE-2016-128=1
- openSUSE 13.2:
zypper in -t patch openSUSE-2016-128=1
To bring your system up-to-date, use "zypper patch".
Package List:
- openSUSE Leap 42.1 (i586 x86_64):
MozillaFirefox-44.0-12.2
MozillaFirefox-branding-upstream-44.0-12.2
MozillaFirefox-buildsymbols-44.0-12.2
MozillaFirefox-devel-44.0-12.2
MozillaFirefox-translations-common-44.0-12.2
MozillaFirefox-translations-other-44.0-12.2
libfreebl3-3.21-9.1
libfreebl3-debuginfo-3.21-9.1
libsoftokn3-3.21-9.1
libsoftokn3-debuginfo-3.21-9.1
mozilla-nspr-4.11-7.1
mozilla-nspr-debuginfo-4.11-7.1
mozilla-nspr-debugsource-4.11-7.1
mozilla-nspr-devel-4.11-7.1
mozilla-nss-3.21-9.1
mozilla-nss-certs-3.21-9.1
mozilla-nss-certs-debuginfo-3.21-9.1
mozilla-nss-debuginfo-3.21-9.1
mozilla-nss-debugsource-3.21-9.1
mozilla-nss-devel-3.21-9.1
mozilla-nss-sysinit-3.21-9.1
mozilla-nss-sysinit-debuginfo-3.21-9.1
mozilla-nss-tools-3.21-9.1
mozilla-nss-tools-debuginfo-3.21-9.1
- openSUSE Leap 42.1 (x86_64):
MozillaFirefox-debuginfo-44.0-12.2
MozillaFirefox-debugsource-44.0-12.2
libfreebl3-32bit-3.21-9.1
libfreebl3-debuginfo-32bit-3.21-9.1
libsoftokn3-32bit-3.21-9.1
libsoftokn3-debuginfo-32bit-3.21-9.1
mozilla-nspr-32bit-4.11-7.1
mozilla-nspr-debuginfo-32bit-4.11-7.1
mozilla-nss-32bit-3.21-9.1
mozilla-nss-certs-32bit-3.21-9.1
mozilla-nss-certs-debuginfo-32bit-3.21-9.1
mozilla-nss-debuginfo-32bit-3.21-9.1
mozilla-nss-sysinit-32bit-3.21-9.1
mozilla-nss-sysinit-debuginfo-32bit-3.21-9.1
- openSUSE 13.2 (i586 x86_64):
MozillaFirefox-44.0-59.1
MozillaFirefox-branding-upstream-44.0-59.1
MozillaFirefox-buildsymbols-44.0-59.1
MozillaFirefox-devel-44.0-59.1
MozillaFirefox-translations-common-44.0-59.1
MozillaFirefox-translations-other-44.0-59.1
libfreebl3-3.21-25.1
libfreebl3-debuginfo-3.21-25.1
libsoftokn3-3.21-25.1
libsoftokn3-debuginfo-3.21-25.1
mozilla-nspr-4.11-12.1
mozilla-nspr-debuginfo-4.11-12.1
mozilla-nspr-debugsource-4.11-12.1
mozilla-nspr-devel-4.11-12.1
mozilla-nss-3.21-25.1
mozilla-nss-certs-3.21-25.1
mozilla-nss-certs-debuginfo-3.21-25.1
mozilla-nss-debuginfo-3.21-25.1
mozilla-nss-debugsource-3.21-25.1
mozilla-nss-devel-3.21-25.1
mozilla-nss-sysinit-3.21-25.1
mozilla-nss-sysinit-debuginfo-3.21-25.1
mozilla-nss-tools-3.21-25.1
mozilla-nss-tools-debuginfo-3.21-25.1
- openSUSE 13.2 (x86_64):
libfreebl3-32bit-3.21-25.1
libfreebl3-debuginfo-32bit-3.21-25.1
libsoftokn3-32bit-3.21-25.1
libsoftokn3-debuginfo-32bit-3.21-25.1
mozilla-nspr-32bit-4.11-12.1
mozilla-nspr-debuginfo-32bit-4.11-12.1
mozilla-nss-32bit-3.21-25.1
mozilla-nss-certs-32bit-3.21-25.1
mozilla-nss-certs-debuginfo-32bit-3.21-25.1
mozilla-nss-debuginfo-32bit-3.21-25.1
mozilla-nss-sysinit-32bit-3.21-25.1
mozilla-nss-sysinit-debuginfo-32bit-3.21-25.1
- openSUSE 13.2 (i586):
MozillaFirefox-debuginfo-44.0-59.1
MozillaFirefox-debugsource-44.0-59.1
References:
https://www.suse.com/security/cve/CVE-2015-7208.html
https://www.suse.com/security/cve/CVE-2016-1930.html
https://www.suse.com/security/cve/CVE-2016-1931.html
https://www.suse.com/security/cve/CVE-2016-1933.html
https://www.suse.com/security/cve/CVE-2016-1935.html
https://www.suse.com/security/cve/CVE-2016-1937.html
https://www.suse.com/security/cve/CVE-2016-1938.html
https://www.suse.com/security/cve/CVE-2016-1939.html
https://www.suse.com/security/cve/CVE-2016-1942.html
https://www.suse.com/security/cve/CVE-2016-1943.html
https://www.suse.com/security/cve/CVE-2016-1944.html
https://www.suse.com/security/cve/CVE-2016-1945.html
https://www.suse.com/security/cve/CVE-2016-1946.html
https://www.suse.com/security/cve/CVE-2016-1947.html
https://bugzilla.suse.com/963633
https://bugzilla.suse.com/963634
https://bugzilla.suse.com/963635
https://bugzilla.suse.com/963637
https://bugzilla.suse.com/963641
https://bugzilla.suse.com/963643
https://bugzilla.suse.com/963644
https://bugzilla.suse.com/963645
https://bugzilla.suse.com/963731
--
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe(a)opensuse.org
For additional commands, e-mail: opensuse-security-announce+help(a)opensuse.org
1
0
[security-announce] openSUSE-SU-2016:0306-1: important: Security update for Mozilla Firefox
by opensuse-security@opensuse.org 02 Feb '16
by opensuse-security@opensuse.org 02 Feb '16
02 Feb '16
openSUSE Security Update: Security update for Mozilla Firefox
______________________________________________________________________________
Announcement ID: openSUSE-SU-2016:0306-1
Rating: important
References:
Affected Products:
openSUSE 13.1
______________________________________________________________________________
An update that contains security fixes can now be installed.
Description:
This update fixes the following security related issues by updating
packages to a more recent version:
Update of NSPR to 4.11 Update of NSS to 3.21 Update of Firefox to 44.0
* MFSA 2016-01/CVE-2016-1930/CVE-2016-1931 Miscellaneous memory safety
hazards
* MFSA 2016-02/CVE-2016-1933 (bmo#1231761) Out of Memory crash when
parsing GIF format images
* MFSA 2016-03/CVE-2016-1935 (bmo#1220450) Buffer overflow in WebGL
after out of memory allocation
* MFSA 2016-04/CVE-2015-7208/CVE-2016-1939 (bmo#1191423, bmo#1233784)
Firefox allows for control characters to be set in cookie names
* MFSA 2016-06/CVE-2016-1937 (bmo#724353) Missing delay following user
click events in protocol handler dialog
* MFSA 2016-07/CVE-2016-1938 (bmo#1190248) Errors in mp_div and
mp_exptmod cryptographic functions in NSS (fixed by requiring NSS 3.21)
* MFSA 2016-09/CVE-2016-1942/CVE-2016-1943 (bmo#1189082, bmo#1228590)
Addressbar spoofing attacks
* MFSA 2016-10/CVE-2016-1944/CVE-2016-1945/CVE-2016-1946 (bmo#1186621,
bmo#1214782, bmo#1232096) Unsafe memory manipulation found through
code inspection
* MFSA 2016-11/CVE-2016-1947 (bmo#1237103) Application Reputation
service disabled in Firefox 43
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE 13.1:
zypper in -t patch 2016-131=1
To bring your system up-to-date, use "zypper patch".
Package List:
- openSUSE 13.1 (i586 x86_64):
MozillaFirefox-44.0-103.1
MozillaFirefox-branding-upstream-44.0-103.1
MozillaFirefox-buildsymbols-44.0-103.1
MozillaFirefox-debuginfo-44.0-103.1
MozillaFirefox-debugsource-44.0-103.1
MozillaFirefox-devel-44.0-103.1
MozillaFirefox-translations-common-44.0-103.1
MozillaFirefox-translations-other-44.0-103.1
libfreebl3-3.21-68.1
libfreebl3-debuginfo-3.21-68.1
libsoftokn3-3.21-68.1
libsoftokn3-debuginfo-3.21-68.1
mozilla-nspr-4.11-28.1
mozilla-nspr-debuginfo-4.11-28.1
mozilla-nspr-debugsource-4.11-28.1
mozilla-nspr-devel-4.11-28.1
mozilla-nss-3.21-68.1
mozilla-nss-certs-3.21-68.1
mozilla-nss-certs-debuginfo-3.21-68.1
mozilla-nss-debuginfo-3.21-68.1
mozilla-nss-debugsource-3.21-68.1
mozilla-nss-devel-3.21-68.1
mozilla-nss-sysinit-3.21-68.1
mozilla-nss-sysinit-debuginfo-3.21-68.1
mozilla-nss-tools-3.21-68.1
mozilla-nss-tools-debuginfo-3.21-68.1
- openSUSE 13.1 (x86_64):
libfreebl3-32bit-3.21-68.1
libfreebl3-debuginfo-32bit-3.21-68.1
libsoftokn3-32bit-3.21-68.1
libsoftokn3-debuginfo-32bit-3.21-68.1
mozilla-nspr-32bit-4.11-28.1
mozilla-nspr-debuginfo-32bit-4.11-28.1
mozilla-nss-32bit-3.21-68.1
mozilla-nss-certs-32bit-3.21-68.1
mozilla-nss-certs-debuginfo-32bit-3.21-68.1
mozilla-nss-debuginfo-32bit-3.21-68.1
mozilla-nss-sysinit-32bit-3.21-68.1
mozilla-nss-sysinit-debuginfo-32bit-3.21-68.1
References:
--
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe(a)opensuse.org
For additional commands, e-mail: opensuse-security-announce+help(a)opensuse.org
1
0
[security-announce] openSUSE-SU-2016:0301-1: important: Security update for the Linux Kernel
by opensuse-security@opensuse.org 01 Feb '16
by opensuse-security@opensuse.org 01 Feb '16
01 Feb '16
openSUSE Security Update: Security update for the Linux Kernel
______________________________________________________________________________
Announcement ID: openSUSE-SU-2016:0301-1
Rating: important
References: #814440 #851610 #869564 #873385 #906545 #907818
#909077 #909477 #911326 #912202 #915517 #915577
#917830 #918333 #919007 #919018 #919463 #919596
#921313 #921949 #922583 #922936 #922944 #926238
#926240 #927780 #927786 #928130 #929525 #930399
#931988 #932348 #933896 #933904 #933907 #933934
#935542 #935705 #936502 #936831 #937032 #937033
#937969 #938706 #940338 #944296 #945825 #947155
#949936 #950998 #951194 #951440 #951627 #952384
#952579 #952976 #953052 #953527 #954138 #954404
#955224 #955354 #955422 #956708 #956934 #957988
#957990 #958504 #958510 #958886 #958951 #959190
#959399 #959568 #960839 #961509 #961739 #962075
Cross-References: CVE-2014-2568 CVE-2014-8133 CVE-2014-8989
CVE-2014-9090 CVE-2014-9419 CVE-2014-9529
CVE-2014-9683 CVE-2014-9715 CVE-2014-9728
CVE-2014-9729 CVE-2014-9730 CVE-2014-9731
CVE-2015-0272 CVE-2015-0777 CVE-2015-1420
CVE-2015-1421 CVE-2015-2041 CVE-2015-2042
CVE-2015-2150 CVE-2015-2666 CVE-2015-2830
CVE-2015-2922 CVE-2015-2925 CVE-2015-3212
CVE-2015-3339 CVE-2015-3636 CVE-2015-4001
CVE-2015-4002 CVE-2015-4003 CVE-2015-4004
CVE-2015-4036 CVE-2015-4167 CVE-2015-4692
CVE-2015-4700 CVE-2015-5157 CVE-2015-5283
CVE-2015-5307 CVE-2015-5364 CVE-2015-5366
CVE-2015-5707 CVE-2015-6937 CVE-2015-7550
CVE-2015-7799 CVE-2015-7833 CVE-2015-7872
CVE-2015-7885 CVE-2015-7990 CVE-2015-8104
CVE-2015-8215 CVE-2015-8543 CVE-2015-8550
CVE-2015-8551 CVE-2015-8552 CVE-2015-8569
CVE-2015-8575 CVE-2015-8767 CVE-2016-0728
Affected Products:
openSUSE 13.1
______________________________________________________________________________
An update that solves 57 vulnerabilities and has 21 fixes
is now available.
Description:
The openSUSE 13.1 kernel was updated to receive various security and
bugfixes.
Following security bugs were fixed:
- CVE-2016-0728: A reference leak in keyring handling with
join_session_keyring() could lead to local attackers gain root
privileges. (bsc#962075).
- CVE-2015-7550: A local user could have triggered a race between read and
revoke in keyctl (bnc#958951).
- CVE-2015-8569: The (1) pptp_bind and (2) pptp_connect functions in
drivers/net/ppp/pptp.c in the Linux kernel did not verify an address
length, which allowed local users to obtain sensitive information from
kernel memory and bypass the KASLR protection mechanism via a crafted
application (bnc#959190).
- CVE-2015-8543: The networking implementation in the Linux kernel did not
validate protocol identifiers for certain protocol families, which
allowed local users to cause a denial of service (NULL function pointer
dereference and system crash) or possibly gain privileges by leveraging
CLONE_NEWUSER support to execute a crafted SOCK_RAW application
(bnc#958886).
- CVE-2014-8989: The Linux kernel did not properly restrict dropping
of supplemental group memberships in certain namespace scenarios, which
allowed local users to bypass intended file permissions by leveraging a
POSIX ACL containing an entry for the group category that is more
restrictive than the entry for the other category, aka a "negative
groups" issue, related to kernel/groups.c, kernel/uid16.c, and
kernel/user_namespace.c (bnc#906545).
- CVE-2015-5157: arch/x86/entry/entry_64.S in the Linux kernel on the
x86_64 platform mishandles IRET faults in processing NMIs that
occurred during userspace execution, which might allow local users to
gain privileges by triggering an NMI (bnc#937969).
- CVE-2015-7799: The slhc_init function in drivers/net/slip/slhc.c in the
Linux kernel through 4.2.3 did not ensure that certain slot numbers are
valid, which allowed local users to cause a denial of service (NULL
pointer dereference and system crash) via a crafted PPPIOCSMAXCID ioctl
call (bnc#949936).
- CVE-2015-8104: The KVM subsystem in the Linux kernel through 4.2.6, and
Xen 4.3.x through 4.6.x, allowed guest OS users to cause a denial
of service (host OS panic or hang) by triggering many #DB (aka Debug)
exceptions, related to svm.c (bnc#954404).
- CVE-2015-5307: The KVM subsystem in the Linux kernel through 4.2.6, and
Xen 4.3.x through 4.6.x, allowed guest OS users to cause a denial
of service (host OS panic or hang) by triggering many #AC (aka Alignment
Check) exceptions, related to svm.c and vmx.c (bnc#953527).
- CVE-2014-9529: Race condition in the key_gc_unused_keys function in
security/keys/gc.c in the Linux kernel allowed local users to cause a
denial of service (memory corruption or panic) or possibly have
unspecified other impact via keyctl commands that trigger access to a
key structure member during garbage collection of a key (bnc#912202).
- CVE-2015-7990: Race condition in the rds_sendmsg function in
net/rds/sendmsg.c in the Linux kernel allowed local users to cause a
denial of service (NULL pointer dereference and system crash) or
possibly have unspecified other impact by using a socket that was not
properly bound. NOTE: this vulnerability exists because of an
incomplete fix for CVE-2015-6937 (bnc#952384 953052).
- CVE-2015-6937: The __rds_conn_create function in net/rds/connection.c in
the Linux kernel allowed local users to cause a denial of service (NULL
pointer dereference and system crash) or possibly have unspecified
other impact by using a socket that was not properly bound (bnc#945825).
- CVE-2015-7885: The dgnc_mgmt_ioctl function in
drivers/staging/dgnc/dgnc_mgmt.c in the Linux kernel through 4.3.3 did
not initialize a certain structure member, which allowed local users to
obtain sensitive information from kernel memory via a crafted
application (bnc#951627).
- CVE-2015-8215: net/ipv6/addrconf.c in the IPv6 stack in the Linux kernel
did not validate attempted changes to the MTU value, which allowed
context-dependent attackers to cause a denial of service (packet loss)
via a value that is (1) smaller than the minimum compliant value or (2)
larger than the MTU of an interface, as demonstrated by a Router
Advertisement (RA) message that is not validated by a daemon, a
different vulnerability than CVE-2015-0272. NOTE: the scope of
CVE-2015-0272 is limited to the NetworkManager product (bnc#955354).
- CVE-2015-8767: A case can occur when sctp_accept() is called by the user
during a heartbeat timeout event after the 4-way handshake. Since
sctp_assoc_migrate() changes both assoc->base.sk and assoc->ep, the
bh_sock_lock in sctp_generate_heartbeat_event() will be taken with the
listening socket but released with the new association socket. The
result is a deadlock on any future attempts to take the listening socket
lock. (bsc#961509)
- CVE-2015-8575: Validate socket address length in sco_sock_bind() to
prevent information leak (bsc#959399).
- CVE-2015-8551, CVE-2015-8552: xen/pciback: For
XEN_PCI_OP_disable_msi[|x] only disable if device has MSI(X) enabled
(bsc#957990).
- CVE-2015-8550: Compiler optimizations in the XEN PV backend drivers
could have lead to double fetch vulnerabilities, causing denial of
service or arbitrary code execution (depending on the configuration)
(bsc#957988).
The following non-security bugs were fixed:
- ALSA: hda - Disable 64bit address for Creative HDA controllers
(bnc#814440).
- ALSA: hda - Fix noise problems on Thinkpad T440s (boo#958504).
- Input: aiptek - fix crash on detecting device without endpoints
(bnc#956708).
- KEYS: Make /proc/keys unconditional if CONFIG_KEYS=y (boo#956934).
- KVM: x86: update masterclock values on TSC writes (bsc#961739).
- NFS: Fix a NULL pointer dereference of migration recovery ops for v4.2
client (bsc#960839).
- apparmor: allow SYS_CAP_RESOURCE to be sufficient to prlimit another
task (bsc#921949).
- blktap: also call blkif_disconnect() when frontend switched to closed
(bsc#952976).
- blktap: refine mm tracking (bsc#952976).
- cdrom: Random writing support for BD-RE media (bnc#959568).
- genksyms: Handle string literals with spaces in reference files
(bsc#958510).
- ipv4: Do not increase PMTU with Datagram Too Big message (bsc#955224).
- ipv6: distinguish frag queues by device for multicast and link-local
packets (bsc#955422).
- ipv6: fix tunnel error handling (bsc#952579).
- route: Use ipv4_mtu instead of raw rt_pmtu (bsc#955224).
- uas: Add response iu handling (bnc#954138).
- usbvision fix overflow of interfaces array (bnc#950998).
- x86/evtchn: make use of PHYSDEVOP_map_pirq.
- xen/pciback: Do not allow MSI-X ops if PCI_COMMAND_MEMORY is not set
(bsc#957990 XSA-157).
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE 13.1:
zypper in -t patch openSUSE-2016-124=1
To bring your system up-to-date, use "zypper patch".
Package List:
- openSUSE 13.1 (i686 x86_64):
kernel-debug-3.11.10-32.1
kernel-debug-base-3.11.10-32.1
kernel-debug-base-debuginfo-3.11.10-32.1
kernel-debug-debuginfo-3.11.10-32.1
kernel-debug-debugsource-3.11.10-32.1
kernel-debug-devel-3.11.10-32.1
kernel-debug-devel-debuginfo-3.11.10-32.1
kernel-desktop-3.11.10-32.1
kernel-desktop-base-3.11.10-32.1
kernel-desktop-base-debuginfo-3.11.10-32.1
kernel-desktop-debuginfo-3.11.10-32.1
kernel-desktop-debugsource-3.11.10-32.1
kernel-desktop-devel-3.11.10-32.1
kernel-desktop-devel-debuginfo-3.11.10-32.1
kernel-ec2-3.11.10-32.1
kernel-ec2-base-3.11.10-32.1
kernel-ec2-base-debuginfo-3.11.10-32.1
kernel-ec2-debuginfo-3.11.10-32.1
kernel-ec2-debugsource-3.11.10-32.1
kernel-ec2-devel-3.11.10-32.1
kernel-ec2-devel-debuginfo-3.11.10-32.1
kernel-trace-3.11.10-32.1
kernel-trace-base-3.11.10-32.1
kernel-trace-base-debuginfo-3.11.10-32.1
kernel-trace-debuginfo-3.11.10-32.1
kernel-trace-debugsource-3.11.10-32.1
kernel-trace-devel-3.11.10-32.1
kernel-trace-devel-debuginfo-3.11.10-32.1
kernel-vanilla-3.11.10-32.1
kernel-vanilla-debuginfo-3.11.10-32.1
kernel-vanilla-debugsource-3.11.10-32.1
kernel-vanilla-devel-3.11.10-32.1
kernel-vanilla-devel-debuginfo-3.11.10-32.1
kernel-xen-3.11.10-32.1
kernel-xen-base-3.11.10-32.1
kernel-xen-base-debuginfo-3.11.10-32.1
kernel-xen-debuginfo-3.11.10-32.1
kernel-xen-debugsource-3.11.10-32.1
kernel-xen-devel-3.11.10-32.1
kernel-xen-devel-debuginfo-3.11.10-32.1
- openSUSE 13.1 (i586 x86_64):
cloop-2.639-11.22.2
cloop-debuginfo-2.639-11.22.2
cloop-debugsource-2.639-11.22.2
cloop-kmp-default-2.639_k3.11.10_32-11.22.2
cloop-kmp-default-debuginfo-2.639_k3.11.10_32-11.22.2
cloop-kmp-desktop-2.639_k3.11.10_32-11.22.2
cloop-kmp-desktop-debuginfo-2.639_k3.11.10_32-11.22.2
cloop-kmp-xen-2.639_k3.11.10_32-11.22.2
cloop-kmp-xen-debuginfo-2.639_k3.11.10_32-11.22.2
crash-7.0.2-2.22.2
crash-debuginfo-7.0.2-2.22.2
crash-debugsource-7.0.2-2.22.2
crash-devel-7.0.2-2.22.2
crash-doc-7.0.2-2.22.2
crash-eppic-7.0.2-2.22.2
crash-eppic-debuginfo-7.0.2-2.22.2
crash-gcore-7.0.2-2.22.2
crash-gcore-debuginfo-7.0.2-2.22.2
crash-kmp-default-7.0.2_k3.11.10_32-2.22.2
crash-kmp-default-debuginfo-7.0.2_k3.11.10_32-2.22.2
crash-kmp-desktop-7.0.2_k3.11.10_32-2.22.2
crash-kmp-desktop-debuginfo-7.0.2_k3.11.10_32-2.22.2
crash-kmp-xen-7.0.2_k3.11.10_32-2.22.2
crash-kmp-xen-debuginfo-7.0.2_k3.11.10_32-2.22.2
hdjmod-debugsource-1.28-16.22.2
hdjmod-kmp-default-1.28_k3.11.10_32-16.22.2
hdjmod-kmp-default-debuginfo-1.28_k3.11.10_32-16.22.2
hdjmod-kmp-desktop-1.28_k3.11.10_32-16.22.2
hdjmod-kmp-desktop-debuginfo-1.28_k3.11.10_32-16.22.2
hdjmod-kmp-xen-1.28_k3.11.10_32-16.22.2
hdjmod-kmp-xen-debuginfo-1.28_k3.11.10_32-16.22.2
ipset-6.21.1-2.26.2
ipset-debuginfo-6.21.1-2.26.2
ipset-debugsource-6.21.1-2.26.2
ipset-devel-6.21.1-2.26.2
ipset-kmp-default-6.21.1_k3.11.10_32-2.26.2
ipset-kmp-default-debuginfo-6.21.1_k3.11.10_32-2.26.2
ipset-kmp-desktop-6.21.1_k3.11.10_32-2.26.2
ipset-kmp-desktop-debuginfo-6.21.1_k3.11.10_32-2.26.2
ipset-kmp-xen-6.21.1_k3.11.10_32-2.26.2
ipset-kmp-xen-debuginfo-6.21.1_k3.11.10_32-2.26.2
iscsitarget-1.4.20.3-13.22.2
iscsitarget-debuginfo-1.4.20.3-13.22.2
iscsitarget-debugsource-1.4.20.3-13.22.2
iscsitarget-kmp-default-1.4.20.3_k3.11.10_32-13.22.2
iscsitarget-kmp-default-debuginfo-1.4.20.3_k3.11.10_32-13.22.2
iscsitarget-kmp-desktop-1.4.20.3_k3.11.10_32-13.22.2
iscsitarget-kmp-desktop-debuginfo-1.4.20.3_k3.11.10_32-13.22.2
iscsitarget-kmp-xen-1.4.20.3_k3.11.10_32-13.22.2
iscsitarget-kmp-xen-debuginfo-1.4.20.3_k3.11.10_32-13.22.2
kernel-default-3.11.10-32.1
kernel-default-base-3.11.10-32.1
kernel-default-base-debuginfo-3.11.10-32.1
kernel-default-debuginfo-3.11.10-32.1
kernel-default-debugsource-3.11.10-32.1
kernel-default-devel-3.11.10-32.1
kernel-default-devel-debuginfo-3.11.10-32.1
kernel-syms-3.11.10-32.1
libipset3-6.21.1-2.26.2
libipset3-debuginfo-6.21.1-2.26.2
ndiswrapper-1.58-22.1
ndiswrapper-debuginfo-1.58-22.1
ndiswrapper-debugsource-1.58-22.1
ndiswrapper-kmp-default-1.58_k3.11.10_32-22.1
ndiswrapper-kmp-default-debuginfo-1.58_k3.11.10_32-22.1
ndiswrapper-kmp-desktop-1.58_k3.11.10_32-22.1
ndiswrapper-kmp-desktop-debuginfo-1.58_k3.11.10_32-22.1
pcfclock-0.44-258.22.1
pcfclock-debuginfo-0.44-258.22.1
pcfclock-debugsource-0.44-258.22.1
pcfclock-kmp-default-0.44_k3.11.10_32-258.22.1
pcfclock-kmp-default-debuginfo-0.44_k3.11.10_32-258.22.1
pcfclock-kmp-desktop-0.44_k3.11.10_32-258.22.1
pcfclock-kmp-desktop-debuginfo-0.44_k3.11.10_32-258.22.1
python-virtualbox-4.2.36-2.55.1
python-virtualbox-debuginfo-4.2.36-2.55.1
vhba-kmp-debugsource-20130607-2.23.1
vhba-kmp-default-20130607_k3.11.10_32-2.23.1
vhba-kmp-default-debuginfo-20130607_k3.11.10_32-2.23.1
vhba-kmp-desktop-20130607_k3.11.10_32-2.23.1
vhba-kmp-desktop-debuginfo-20130607_k3.11.10_32-2.23.1
vhba-kmp-xen-20130607_k3.11.10_32-2.23.1
vhba-kmp-xen-debuginfo-20130607_k3.11.10_32-2.23.1
virtualbox-4.2.36-2.55.1
virtualbox-debuginfo-4.2.36-2.55.1
virtualbox-debugsource-4.2.36-2.55.1
virtualbox-devel-4.2.36-2.55.1
virtualbox-guest-kmp-default-4.2.36_k3.11.10_32-2.55.1
virtualbox-guest-kmp-default-debuginfo-4.2.36_k3.11.10_32-2.55.1
virtualbox-guest-kmp-desktop-4.2.36_k3.11.10_32-2.55.1
virtualbox-guest-kmp-desktop-debuginfo-4.2.36_k3.11.10_32-2.55.1
virtualbox-guest-tools-4.2.36-2.55.1
virtualbox-guest-tools-debuginfo-4.2.36-2.55.1
virtualbox-guest-x11-4.2.36-2.55.1
virtualbox-guest-x11-debuginfo-4.2.36-2.55.1
virtualbox-host-kmp-default-4.2.36_k3.11.10_32-2.55.1
virtualbox-host-kmp-default-debuginfo-4.2.36_k3.11.10_32-2.55.1
virtualbox-host-kmp-desktop-4.2.36_k3.11.10_32-2.55.1
virtualbox-host-kmp-desktop-debuginfo-4.2.36_k3.11.10_32-2.55.1
virtualbox-qt-4.2.36-2.55.1
virtualbox-qt-debuginfo-4.2.36-2.55.1
virtualbox-websrv-4.2.36-2.55.1
virtualbox-websrv-debuginfo-4.2.36-2.55.1
xen-debugsource-4.3.4_10-56.1
xen-devel-4.3.4_10-56.1
xen-kmp-default-4.3.4_10_k3.11.10_32-56.1
xen-kmp-default-debuginfo-4.3.4_10_k3.11.10_32-56.1
xen-kmp-desktop-4.3.4_10_k3.11.10_32-56.1
xen-kmp-desktop-debuginfo-4.3.4_10_k3.11.10_32-56.1
xen-libs-4.3.4_10-56.1
xen-libs-debuginfo-4.3.4_10-56.1
xen-tools-domU-4.3.4_10-56.1
xen-tools-domU-debuginfo-4.3.4_10-56.1
xtables-addons-2.3-2.22.1
xtables-addons-debuginfo-2.3-2.22.1
xtables-addons-debugsource-2.3-2.22.1
xtables-addons-kmp-default-2.3_k3.11.10_32-2.22.1
xtables-addons-kmp-default-debuginfo-2.3_k3.11.10_32-2.22.1
xtables-addons-kmp-desktop-2.3_k3.11.10_32-2.22.1
xtables-addons-kmp-desktop-debuginfo-2.3_k3.11.10_32-2.22.1
xtables-addons-kmp-xen-2.3_k3.11.10_32-2.22.1
xtables-addons-kmp-xen-debuginfo-2.3_k3.11.10_32-2.22.1
- openSUSE 13.1 (noarch):
kernel-devel-3.11.10-32.1
kernel-docs-3.11.10-32.3
kernel-source-3.11.10-32.1
kernel-source-vanilla-3.11.10-32.1
virtualbox-host-source-4.2.36-2.55.1
- openSUSE 13.1 (x86_64):
xen-4.3.4_10-56.1
xen-doc-html-4.3.4_10-56.1
xen-libs-32bit-4.3.4_10-56.1
xen-libs-debuginfo-32bit-4.3.4_10-56.1
xen-tools-4.3.4_10-56.1
xen-tools-debuginfo-4.3.4_10-56.1
xen-xend-tools-4.3.4_10-56.1
xen-xend-tools-debuginfo-4.3.4_10-56.1
- openSUSE 13.1 (i686):
kernel-pae-3.11.10-32.1
kernel-pae-base-3.11.10-32.1
kernel-pae-base-debuginfo-3.11.10-32.1
kernel-pae-debuginfo-3.11.10-32.1
kernel-pae-debugsource-3.11.10-32.1
kernel-pae-devel-3.11.10-32.1
kernel-pae-devel-debuginfo-3.11.10-32.1
- openSUSE 13.1 (i586):
cloop-kmp-pae-2.639_k3.11.10_32-11.22.2
cloop-kmp-pae-debuginfo-2.639_k3.11.10_32-11.22.2
crash-kmp-pae-7.0.2_k3.11.10_32-2.22.2
crash-kmp-pae-debuginfo-7.0.2_k3.11.10_32-2.22.2
hdjmod-kmp-pae-1.28_k3.11.10_32-16.22.2
hdjmod-kmp-pae-debuginfo-1.28_k3.11.10_32-16.22.2
ipset-kmp-pae-6.21.1_k3.11.10_32-2.26.2
ipset-kmp-pae-debuginfo-6.21.1_k3.11.10_32-2.26.2
iscsitarget-kmp-pae-1.4.20.3_k3.11.10_32-13.22.2
iscsitarget-kmp-pae-debuginfo-1.4.20.3_k3.11.10_32-13.22.2
ndiswrapper-kmp-pae-1.58_k3.11.10_32-22.1
ndiswrapper-kmp-pae-debuginfo-1.58_k3.11.10_32-22.1
pcfclock-kmp-pae-0.44_k3.11.10_32-258.22.1
pcfclock-kmp-pae-debuginfo-0.44_k3.11.10_32-258.22.1
vhba-kmp-pae-20130607_k3.11.10_32-2.23.1
vhba-kmp-pae-debuginfo-20130607_k3.11.10_32-2.23.1
virtualbox-guest-kmp-pae-4.2.36_k3.11.10_32-2.55.1
virtualbox-guest-kmp-pae-debuginfo-4.2.36_k3.11.10_32-2.55.1
virtualbox-host-kmp-pae-4.2.36_k3.11.10_32-2.55.1
virtualbox-host-kmp-pae-debuginfo-4.2.36_k3.11.10_32-2.55.1
xen-kmp-pae-4.3.4_10_k3.11.10_32-56.1
xen-kmp-pae-debuginfo-4.3.4_10_k3.11.10_32-56.1
xtables-addons-kmp-pae-2.3_k3.11.10_32-2.22.1
xtables-addons-kmp-pae-debuginfo-2.3_k3.11.10_32-2.22.1
References:
https://www.suse.com/security/cve/CVE-2014-2568.html
https://www.suse.com/security/cve/CVE-2014-8133.html
https://www.suse.com/security/cve/CVE-2014-8989.html
https://www.suse.com/security/cve/CVE-2014-9090.html
https://www.suse.com/security/cve/CVE-2014-9419.html
https://www.suse.com/security/cve/CVE-2014-9529.html
https://www.suse.com/security/cve/CVE-2014-9683.html
https://www.suse.com/security/cve/CVE-2014-9715.html
https://www.suse.com/security/cve/CVE-2014-9728.html
https://www.suse.com/security/cve/CVE-2014-9729.html
https://www.suse.com/security/cve/CVE-2014-9730.html
https://www.suse.com/security/cve/CVE-2014-9731.html
https://www.suse.com/security/cve/CVE-2015-0272.html
https://www.suse.com/security/cve/CVE-2015-0777.html
https://www.suse.com/security/cve/CVE-2015-1420.html
https://www.suse.com/security/cve/CVE-2015-1421.html
https://www.suse.com/security/cve/CVE-2015-2041.html
https://www.suse.com/security/cve/CVE-2015-2042.html
https://www.suse.com/security/cve/CVE-2015-2150.html
https://www.suse.com/security/cve/CVE-2015-2666.html
https://www.suse.com/security/cve/CVE-2015-2830.html
https://www.suse.com/security/cve/CVE-2015-2922.html
https://www.suse.com/security/cve/CVE-2015-2925.html
https://www.suse.com/security/cve/CVE-2015-3212.html
https://www.suse.com/security/cve/CVE-2015-3339.html
https://www.suse.com/security/cve/CVE-2015-3636.html
https://www.suse.com/security/cve/CVE-2015-4001.html
https://www.suse.com/security/cve/CVE-2015-4002.html
https://www.suse.com/security/cve/CVE-2015-4003.html
https://www.suse.com/security/cve/CVE-2015-4004.html
https://www.suse.com/security/cve/CVE-2015-4036.html
https://www.suse.com/security/cve/CVE-2015-4167.html
https://www.suse.com/security/cve/CVE-2015-4692.html
https://www.suse.com/security/cve/CVE-2015-4700.html
https://www.suse.com/security/cve/CVE-2015-5157.html
https://www.suse.com/security/cve/CVE-2015-5283.html
https://www.suse.com/security/cve/CVE-2015-5307.html
https://www.suse.com/security/cve/CVE-2015-5364.html
https://www.suse.com/security/cve/CVE-2015-5366.html
https://www.suse.com/security/cve/CVE-2015-5707.html
https://www.suse.com/security/cve/CVE-2015-6937.html
https://www.suse.com/security/cve/CVE-2015-7550.html
https://www.suse.com/security/cve/CVE-2015-7799.html
https://www.suse.com/security/cve/CVE-2015-7833.html
https://www.suse.com/security/cve/CVE-2015-7872.html
https://www.suse.com/security/cve/CVE-2015-7885.html
https://www.suse.com/security/cve/CVE-2015-7990.html
https://www.suse.com/security/cve/CVE-2015-8104.html
https://www.suse.com/security/cve/CVE-2015-8215.html
https://www.suse.com/security/cve/CVE-2015-8543.html
https://www.suse.com/security/cve/CVE-2015-8550.html
https://www.suse.com/security/cve/CVE-2015-8551.html
https://www.suse.com/security/cve/CVE-2015-8552.html
https://www.suse.com/security/cve/CVE-2015-8569.html
https://www.suse.com/security/cve/CVE-2015-8575.html
https://www.suse.com/security/cve/CVE-2015-8767.html
https://www.suse.com/security/cve/CVE-2016-0728.html
https://bugzilla.suse.com/814440
https://bugzilla.suse.com/851610
https://bugzilla.suse.com/869564
https://bugzilla.suse.com/873385
https://bugzilla.suse.com/906545
https://bugzilla.suse.com/907818
https://bugzilla.suse.com/909077
https://bugzilla.suse.com/909477
https://bugzilla.suse.com/911326
https://bugzilla.suse.com/912202
https://bugzilla.suse.com/915517
https://bugzilla.suse.com/915577
https://bugzilla.suse.com/917830
https://bugzilla.suse.com/918333
https://bugzilla.suse.com/919007
https://bugzilla.suse.com/919018
https://bugzilla.suse.com/919463
https://bugzilla.suse.com/919596
https://bugzilla.suse.com/921313
https://bugzilla.suse.com/921949
https://bugzilla.suse.com/922583
https://bugzilla.suse.com/922936
https://bugzilla.suse.com/922944
https://bugzilla.suse.com/926238
https://bugzilla.suse.com/926240
https://bugzilla.suse.com/927780
https://bugzilla.suse.com/927786
https://bugzilla.suse.com/928130
https://bugzilla.suse.com/929525
https://bugzilla.suse.com/930399
https://bugzilla.suse.com/931988
https://bugzilla.suse.com/932348
https://bugzilla.suse.com/933896
https://bugzilla.suse.com/933904
https://bugzilla.suse.com/933907
https://bugzilla.suse.com/933934
https://bugzilla.suse.com/935542
https://bugzilla.suse.com/935705
https://bugzilla.suse.com/936502
https://bugzilla.suse.com/936831
https://bugzilla.suse.com/937032
https://bugzilla.suse.com/937033
https://bugzilla.suse.com/937969
https://bugzilla.suse.com/938706
https://bugzilla.suse.com/940338
https://bugzilla.suse.com/944296
https://bugzilla.suse.com/945825
https://bugzilla.suse.com/947155
https://bugzilla.suse.com/949936
https://bugzilla.suse.com/950998
https://bugzilla.suse.com/951194
https://bugzilla.suse.com/951440
https://bugzilla.suse.com/951627
https://bugzilla.suse.com/952384
https://bugzilla.suse.com/952579
https://bugzilla.suse.com/952976
https://bugzilla.suse.com/953052
https://bugzilla.suse.com/953527
https://bugzilla.suse.com/954138
https://bugzilla.suse.com/954404
https://bugzilla.suse.com/955224
https://bugzilla.suse.com/955354
https://bugzilla.suse.com/955422
https://bugzilla.suse.com/956708
https://bugzilla.suse.com/956934
https://bugzilla.suse.com/957988
https://bugzilla.suse.com/957990
https://bugzilla.suse.com/958504
https://bugzilla.suse.com/958510
https://bugzilla.suse.com/958886
https://bugzilla.suse.com/958951
https://bugzilla.suse.com/959190
https://bugzilla.suse.com/959399
https://bugzilla.suse.com/959568
https://bugzilla.suse.com/960839
https://bugzilla.suse.com/961509
https://bugzilla.suse.com/961739
https://bugzilla.suse.com/962075
--
To unsubscribe, e-mail: opensuse-security-announce+unsubscribe(a)opensuse.org
For additional commands, e-mail: opensuse-security-announce+help(a)opensuse.org
1
0