November 2022 - openSUSE Security Announce

openSUSE-SU-2022:10207-1: moderate: Security update for tumbler
by opensuse-security＠opensuse.org 20 Nov '22

20 Nov '22

openSUSE Security Update: Security update for tumbler ______________________________________________________________________________ Announcement ID: openSUSE-SU-2022:10207-1 Rating: moderate References: #1203644 #1205210 Affected Products: openSUSE Backports SLE-15-SP4 ______________________________________________________________________________ An update that contains security fixes can now be installed. Description: This update for tumbler fixes the following issues: tumbler was updated to version 4.16.1 (boo#1205210) * gst-thumbnailer: Add mime type check (gxo#xfce/tumbler#65) * desktop-thumbnailer: Guard against null path * Fix typo in gthread version (gxo#xfce/tumbler!14) Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP4: zypper in -t patch openSUSE-2022-10207=1 Package List: - openSUSE Backports SLE-15-SP4 (aarch64 ppc64le s390x x86_64): libtumbler-1-0-4.16.1-bp154.3.3.1 tumbler-4.16.1-bp154.3.3.1 tumbler-devel-4.16.1-bp154.3.3.1 tumbler-folder-thumbnailer-4.16.1-bp154.3.3.1 tumbler-webp-thumbnailer-4.16.1-bp154.3.3.1 - openSUSE Backports SLE-15-SP4 (noarch): tumbler-doc-4.16.1-bp154.3.3.1 tumbler-lang-4.16.1-bp154.3.3.1 References: https://bugzilla.suse.com/1203644 https://bugzilla.suse.com/1205210

1 0

SUSE-SU-2022:4124-1: Security update for 389-ds
by opensuse-security＠opensuse.org 18 Nov '22

18 Nov '22

SUSE Security Update: Security update for 389-ds ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4124-1 Rating: low References: #1194119 #1204493 #1204748 #1205146 Cross-References: CVE-2021-45710 CVSS scores: CVE-2021-45710 (NVD) : 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-45710 (SUSE): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Affected Products: SUSE Enterprise Storage 7.1 SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise Module for Server Applications 15-SP3 SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.2 openSUSE Leap 15.3 ______________________________________________________________________________ An update that solves one vulnerability and has three fixes is now available. Description: This update for 389-ds fixes the following issues: - CVE-2021-45710: Fixed tokio data race with memory corruption (bsc#1194119). - Update to version 2.0.16~git56.d15a0a7. - Failure to migrate from openldap if pwdPolicyChecker present (bsc#1205146). - Resolve issue with checklist post migration when dds is present (bsc#1204748). - Improve reliability of migrations from openldap when dynamic directory services is configured (bsc#1204493). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4124=1 - SUSE Linux Enterprise Module for Server Applications 15-SP3: zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP3-2022-4124=1 Package List: - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): 389-ds-1.4.4.19~git59.136fc84-150300.3.27.1 389-ds-debuginfo-1.4.4.19~git59.136fc84-150300.3.27.1 389-ds-debugsource-1.4.4.19~git59.136fc84-150300.3.27.1 389-ds-devel-1.4.4.19~git59.136fc84-150300.3.27.1 389-ds-snmp-1.4.4.19~git59.136fc84-150300.3.27.1 389-ds-snmp-debuginfo-1.4.4.19~git59.136fc84-150300.3.27.1 lib389-1.4.4.19~git59.136fc84-150300.3.27.1 libsvrcore0-1.4.4.19~git59.136fc84-150300.3.27.1 libsvrcore0-debuginfo-1.4.4.19~git59.136fc84-150300.3.27.1 - SUSE Linux Enterprise Module for Server Applications 15-SP3 (aarch64 ppc64le s390x x86_64): 389-ds-1.4.4.19~git59.136fc84-150300.3.27.1 389-ds-debuginfo-1.4.4.19~git59.136fc84-150300.3.27.1 389-ds-debugsource-1.4.4.19~git59.136fc84-150300.3.27.1 389-ds-devel-1.4.4.19~git59.136fc84-150300.3.27.1 lib389-1.4.4.19~git59.136fc84-150300.3.27.1 libsvrcore0-1.4.4.19~git59.136fc84-150300.3.27.1 libsvrcore0-debuginfo-1.4.4.19~git59.136fc84-150300.3.27.1 References: https://www.suse.com/security/cve/CVE-2021-45710.html https://bugzilla.suse.com/1194119 https://bugzilla.suse.com/1204493 https://bugzilla.suse.com/1204748 https://bugzilla.suse.com/1205146

1 0

SUSE-SU-2022:4130-1: important: Security update for frr
by opensuse-security＠opensuse.org 18 Nov '22

18 Nov '22

SUSE Security Update: Security update for frr ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4130-1 Rating: important References: #1202085 #1204124 Cross-References: CVE-2022-37035 CVE-2022-42917 CVSS scores: CVE-2022-37035 (NVD) : 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-37035 (SUSE): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: SUSE Enterprise Storage 7.1 SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Server Applications 15-SP3 SUSE Linux Enterprise Module for Server Applications 15-SP4 SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.2 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.2 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.2 SUSE Manager Server 4.3 openSUSE Leap 15.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for frr fixes the following issues: - CVE-2022-37035: Fixed a possible use-after-free due to a race condition related to bgp_notify_send_with_data() and bgp_process_packet() (bsc#1202085). - CVE-2022-42917: Fixed a privilege escalation from frr to root in frr config creation (bsc#1204124). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4130=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4130=1 - SUSE Linux Enterprise Module for Server Applications 15-SP4: zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP4-2022-4130=1 - SUSE Linux Enterprise Module for Server Applications 15-SP3: zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP3-2022-4130=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): frr-7.4-150300.4.10.1 frr-debuginfo-7.4-150300.4.10.1 frr-debugsource-7.4-150300.4.10.1 frr-devel-7.4-150300.4.10.1 libfrr0-7.4-150300.4.10.1 libfrr0-debuginfo-7.4-150300.4.10.1 libfrr_pb0-7.4-150300.4.10.1 libfrr_pb0-debuginfo-7.4-150300.4.10.1 libfrrcares0-7.4-150300.4.10.1 libfrrcares0-debuginfo-7.4-150300.4.10.1 libfrrfpm_pb0-7.4-150300.4.10.1 libfrrfpm_pb0-debuginfo-7.4-150300.4.10.1 libfrrgrpc_pb0-7.4-150300.4.10.1 libfrrgrpc_pb0-debuginfo-7.4-150300.4.10.1 libfrrospfapiclient0-7.4-150300.4.10.1 libfrrospfapiclient0-debuginfo-7.4-150300.4.10.1 libfrrsnmp0-7.4-150300.4.10.1 libfrrsnmp0-debuginfo-7.4-150300.4.10.1 libfrrzmq0-7.4-150300.4.10.1 libfrrzmq0-debuginfo-7.4-150300.4.10.1 libmlag_pb0-7.4-150300.4.10.1 libmlag_pb0-debuginfo-7.4-150300.4.10.1 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): frr-7.4-150300.4.10.1 frr-debuginfo-7.4-150300.4.10.1 frr-debugsource-7.4-150300.4.10.1 frr-devel-7.4-150300.4.10.1 libfrr0-7.4-150300.4.10.1 libfrr0-debuginfo-7.4-150300.4.10.1 libfrr_pb0-7.4-150300.4.10.1 libfrr_pb0-debuginfo-7.4-150300.4.10.1 libfrrcares0-7.4-150300.4.10.1 libfrrcares0-debuginfo-7.4-150300.4.10.1 libfrrfpm_pb0-7.4-150300.4.10.1 libfrrfpm_pb0-debuginfo-7.4-150300.4.10.1 libfrrgrpc_pb0-7.4-150300.4.10.1 libfrrgrpc_pb0-debuginfo-7.4-150300.4.10.1 libfrrospfapiclient0-7.4-150300.4.10.1 libfrrospfapiclient0-debuginfo-7.4-150300.4.10.1 libfrrsnmp0-7.4-150300.4.10.1 libfrrsnmp0-debuginfo-7.4-150300.4.10.1 libfrrzmq0-7.4-150300.4.10.1 libfrrzmq0-debuginfo-7.4-150300.4.10.1 libmlag_pb0-7.4-150300.4.10.1 libmlag_pb0-debuginfo-7.4-150300.4.10.1 - SUSE Linux Enterprise Module for Server Applications 15-SP4 (aarch64 ppc64le s390x x86_64): frr-7.4-150300.4.10.1 frr-debuginfo-7.4-150300.4.10.1 frr-debugsource-7.4-150300.4.10.1 frr-devel-7.4-150300.4.10.1 libfrr0-7.4-150300.4.10.1 libfrr0-debuginfo-7.4-150300.4.10.1 libfrr_pb0-7.4-150300.4.10.1 libfrr_pb0-debuginfo-7.4-150300.4.10.1 libfrrcares0-7.4-150300.4.10.1 libfrrcares0-debuginfo-7.4-150300.4.10.1 libfrrfpm_pb0-7.4-150300.4.10.1 libfrrfpm_pb0-debuginfo-7.4-150300.4.10.1 libfrrgrpc_pb0-7.4-150300.4.10.1 libfrrgrpc_pb0-debuginfo-7.4-150300.4.10.1 libfrrospfapiclient0-7.4-150300.4.10.1 libfrrospfapiclient0-debuginfo-7.4-150300.4.10.1 libfrrsnmp0-7.4-150300.4.10.1 libfrrsnmp0-debuginfo-7.4-150300.4.10.1 libfrrzmq0-7.4-150300.4.10.1 libfrrzmq0-debuginfo-7.4-150300.4.10.1 libmlag_pb0-7.4-150300.4.10.1 libmlag_pb0-debuginfo-7.4-150300.4.10.1 - SUSE Linux Enterprise Module for Server Applications 15-SP3 (aarch64 ppc64le s390x x86_64): frr-7.4-150300.4.10.1 frr-debuginfo-7.4-150300.4.10.1 frr-debugsource-7.4-150300.4.10.1 frr-devel-7.4-150300.4.10.1 libfrr0-7.4-150300.4.10.1 libfrr0-debuginfo-7.4-150300.4.10.1 libfrr_pb0-7.4-150300.4.10.1 libfrr_pb0-debuginfo-7.4-150300.4.10.1 libfrrcares0-7.4-150300.4.10.1 libfrrcares0-debuginfo-7.4-150300.4.10.1 libfrrfpm_pb0-7.4-150300.4.10.1 libfrrfpm_pb0-debuginfo-7.4-150300.4.10.1 libfrrgrpc_pb0-7.4-150300.4.10.1 libfrrgrpc_pb0-debuginfo-7.4-150300.4.10.1 libfrrospfapiclient0-7.4-150300.4.10.1 libfrrospfapiclient0-debuginfo-7.4-150300.4.10.1 libfrrsnmp0-7.4-150300.4.10.1 libfrrsnmp0-debuginfo-7.4-150300.4.10.1 libfrrzmq0-7.4-150300.4.10.1 libfrrzmq0-debuginfo-7.4-150300.4.10.1 libmlag_pb0-7.4-150300.4.10.1 libmlag_pb0-debuginfo-7.4-150300.4.10.1 References: https://www.suse.com/security/cve/CVE-2022-37035.html https://www.suse.com/security/cve/CVE-2022-42917.html https://bugzilla.suse.com/1202085 https://bugzilla.suse.com/1204124

1 0

SUSE-SU-2022:4084-1: important: Security update for nodejs16
by opensuse-security＠opensuse.org 18 Nov '22

18 Nov '22

SUSE Security Update: Security update for nodejs16 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4084-1 Rating: important References: #1205119 Cross-References: CVE-2022-43548 CVSS scores: CVE-2022-43548 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N Affected Products: SUSE Enterprise Storage 7.1 SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise Module for Web Scripting 15-SP3 SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.2 openSUSE Leap 15.3 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for nodejs16 fixes the following issues: - Update to LTS versino 16.18.1. - CVE-2022-43548: Fixed DNS rebinding in --inspect via invalid octal IP address (bsc#1205119). - Update to LTS version 16.18.0: * http: throw error on content-length mismatch * stream: add ReadableByteStream.tee() * deps: npm updated to 8.19.2 Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4084=1 - SUSE Linux Enterprise Module for Web Scripting 15-SP3: zypper in -t patch SUSE-SLE-Module-Web-Scripting-15-SP3-2022-4084=1 Package List: - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): nodejs16-16.18.1-150300.7.15.1 nodejs16-debuginfo-16.18.1-150300.7.15.1 nodejs16-debugsource-16.18.1-150300.7.15.1 nodejs16-devel-16.18.1-150300.7.15.1 npm16-16.18.1-150300.7.15.1 - openSUSE Leap 15.3 (noarch): nodejs16-docs-16.18.1-150300.7.15.1 - SUSE Linux Enterprise Module for Web Scripting 15-SP3 (aarch64 ppc64le s390x x86_64): nodejs16-16.18.1-150300.7.15.1 nodejs16-debuginfo-16.18.1-150300.7.15.1 nodejs16-debugsource-16.18.1-150300.7.15.1 nodejs16-devel-16.18.1-150300.7.15.1 npm16-16.18.1-150300.7.15.1 - SUSE Linux Enterprise Module for Web Scripting 15-SP3 (noarch): nodejs16-docs-16.18.1-150300.7.15.1 References: https://www.suse.com/security/cve/CVE-2022-43548.html https://bugzilla.suse.com/1205119

1 0

SUSE-SU-2022:4079-1: moderate: Security update for java-17-openjdk
by opensuse-security＠opensuse.org 18 Nov '22

18 Nov '22

SUSE Security Update: Security update for java-17-openjdk ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4079-1 Rating: moderate References: #1203476 #1204468 #1204472 #1204473 #1204475 #1204480 Cross-References: CVE-2022-21618 CVE-2022-21619 CVE-2022-21624 CVE-2022-21628 CVE-2022-39399 CVSS scores: CVE-2022-21618 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-21618 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-21619 (NVD) : 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-21619 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-21624 (NVD) : 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-21624 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-21628 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2022-21628 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2022-39399 (NVD) : 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-39399 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N Affected Products: SUSE Linux Enterprise Desktop 15-SP4 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Basesystem 15-SP4 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that solves 5 vulnerabilities and has one errata is now available. Description: This update for java-17-openjdk fixes the following issues: - Update to jdk-17.0.5+8 (October 2022 CPU) - CVE-2022-39399: Improve HTTP/2 client usage(bsc#1204480) - CVE-2022-21628: Better HttpServer service (bsc#1204472) - CVE-2022-21624: Enhance icon presentations (bsc#1204475) - CVE-2022-21619: Improve NTLM support (bsc#1204473) - CVE-2022-21618: Wider MultiByte (bsc#1204468) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4079=1 - SUSE Linux Enterprise Module for Basesystem 15-SP4: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2022-4079=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): java-17-openjdk-17.0.5.0-150400.3.6.1 java-17-openjdk-accessibility-17.0.5.0-150400.3.6.1 java-17-openjdk-accessibility-debuginfo-17.0.5.0-150400.3.6.1 java-17-openjdk-debuginfo-17.0.5.0-150400.3.6.1 java-17-openjdk-debugsource-17.0.5.0-150400.3.6.1 java-17-openjdk-demo-17.0.5.0-150400.3.6.1 java-17-openjdk-devel-17.0.5.0-150400.3.6.1 java-17-openjdk-devel-debuginfo-17.0.5.0-150400.3.6.1 java-17-openjdk-headless-17.0.5.0-150400.3.6.1 java-17-openjdk-headless-debuginfo-17.0.5.0-150400.3.6.1 java-17-openjdk-jmods-17.0.5.0-150400.3.6.1 java-17-openjdk-src-17.0.5.0-150400.3.6.1 - openSUSE Leap 15.4 (noarch): java-17-openjdk-javadoc-17.0.5.0-150400.3.6.1 - SUSE Linux Enterprise Module for Basesystem 15-SP4 (aarch64 ppc64le s390x x86_64): java-17-openjdk-17.0.5.0-150400.3.6.1 java-17-openjdk-debuginfo-17.0.5.0-150400.3.6.1 java-17-openjdk-debugsource-17.0.5.0-150400.3.6.1 java-17-openjdk-demo-17.0.5.0-150400.3.6.1 java-17-openjdk-devel-17.0.5.0-150400.3.6.1 java-17-openjdk-devel-debuginfo-17.0.5.0-150400.3.6.1 java-17-openjdk-headless-17.0.5.0-150400.3.6.1 java-17-openjdk-headless-debuginfo-17.0.5.0-150400.3.6.1 References: https://www.suse.com/security/cve/CVE-2022-21618.html https://www.suse.com/security/cve/CVE-2022-21619.html https://www.suse.com/security/cve/CVE-2022-21624.html https://www.suse.com/security/cve/CVE-2022-21628.html https://www.suse.com/security/cve/CVE-2022-39399.html https://bugzilla.suse.com/1203476 https://bugzilla.suse.com/1204468 https://bugzilla.suse.com/1204472 https://bugzilla.suse.com/1204473 https://bugzilla.suse.com/1204475 https://bugzilla.suse.com/1204480

1 0

SUSE-SU-2022:4078-1: moderate: Security update for java-11-openjdk
by opensuse-security＠opensuse.org 18 Nov '22

18 Nov '22

SUSE Security Update: Security update for java-11-openjdk ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4078-1 Rating: moderate References: #1203476 #1204468 #1204471 #1204472 #1204473 #1204475 #1204480 #1204523 Cross-References: CVE-2022-21618 CVE-2022-21619 CVE-2022-21624 CVE-2022-21626 CVE-2022-21628 CVE-2022-39399 CVSS scores: CVE-2022-21618 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-21618 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-21619 (NVD) : 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-21619 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-21624 (NVD) : 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-21624 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-21626 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2022-21626 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2022-21628 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2022-21628 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2022-39399 (NVD) : 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-39399 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N Affected Products: SUSE CaaS Platform 4.0 SUSE Enterprise Storage 6 SUSE Enterprise Storage 7 SUSE Enterprise Storage 7.1 SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise Desktop 15-SP4 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Module for Basesystem 15-SP4 SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3 SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server 15-SP1-BCL SUSE Linux Enterprise Server 15-SP1-LTSS SUSE Linux Enterprise Server 15-SP2-BCL SUSE Linux Enterprise Server 15-SP2-LTSS SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP 15 SUSE Linux Enterprise Server for SAP 15-SP1 SUSE Linux Enterprise Server for SAP 15-SP2 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.1 SUSE Manager Proxy 4.2 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.1 SUSE Manager Retail Branch Server 4.2 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.1 SUSE Manager Server 4.2 SUSE Manager Server 4.3 openSUSE Leap 15.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that solves 6 vulnerabilities and has two fixes is now available. Description: This update for java-11-openjdk fixes the following issues: - Update to jdk-11.0.17+8 (October 2022 CPU) - CVE-2022-39399: Improve HTTP/2 client usage(bsc#1204480) - CVE-2022-21628: Better HttpServer service (bsc#1204472) - CVE-2022-21624: Enhance icon presentations (bsc#1204475) - CVE-2022-21619: Improve NTLM support (bsc#1204473) - CVE-2022-21626: Key X509 usages (bsc#1204471) - CVE-2022-21618: Wider MultiByte (bsc#1204468) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4078=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4078=1 - SUSE Manager Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-4078=1 - SUSE Manager Retail Branch Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-4078=1 - SUSE Manager Proxy 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-4078=1 - SUSE Linux Enterprise Server for SAP 15-SP2: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2022-4078=1 - SUSE Linux Enterprise Server for SAP 15-SP1: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP1-2022-4078=1 - SUSE Linux Enterprise Server for SAP 15: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-2022-4078=1 - SUSE Linux Enterprise Server 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-4078=1 - SUSE Linux Enterprise Server 15-SP2-BCL: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-BCL-2022-4078=1 - SUSE Linux Enterprise Server 15-SP1-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-LTSS-2022-4078=1 - SUSE Linux Enterprise Server 15-SP1-BCL: zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-BCL-2022-4078=1 - SUSE Linux Enterprise Server 15-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-2022-4078=1 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP4: zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP4-2022-4078=1 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3: zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2022-4078=1 - SUSE Linux Enterprise Module for Basesystem 15-SP4: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2022-4078=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2022-4078=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-4078=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-4078=1 - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-LTSS-2022-4078=1 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-ESPOS-2022-4078=1 - SUSE Linux Enterprise High Performance Computing 15-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-2022-4078=1 - SUSE Linux Enterprise High Performance Computing 15-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-2022-4078=1 - SUSE Enterprise Storage 7: zypper in -t patch SUSE-Storage-7-2022-4078=1 - SUSE Enterprise Storage 6: zypper in -t patch SUSE-Storage-6-2022-4078=1 - SUSE CaaS Platform 4.0: To install this update, use the SUSE CaaS Platform 'skuba' tool. It will inform you if it detects new updates and let you then trigger updating of the complete cluster in a controlled way. Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-accessibility-11.0.17.0-150000.3.86.2 java-11-openjdk-accessibility-debuginfo-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 java-11-openjdk-jmods-11.0.17.0-150000.3.86.2 java-11-openjdk-src-11.0.17.0-150000.3.86.2 - openSUSE Leap 15.4 (noarch): java-11-openjdk-javadoc-11.0.17.0-150000.3.86.2 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-accessibility-11.0.17.0-150000.3.86.2 java-11-openjdk-accessibility-debuginfo-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 java-11-openjdk-jmods-11.0.17.0-150000.3.86.2 java-11-openjdk-src-11.0.17.0-150000.3.86.2 - openSUSE Leap 15.3 (noarch): java-11-openjdk-javadoc-11.0.17.0-150000.3.86.2 - SUSE Manager Server 4.1 (ppc64le s390x x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE Manager Retail Branch Server 4.1 (x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE Manager Proxy 4.1 (x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE Linux Enterprise Server for SAP 15-SP2 (ppc64le x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE Linux Enterprise Server for SAP 15-SP1 (ppc64le x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE Linux Enterprise Server for SAP 15 (ppc64le x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE Linux Enterprise Server 15-SP2-LTSS (aarch64 ppc64le s390x x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE Linux Enterprise Server 15-SP2-BCL (x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE Linux Enterprise Server 15-SP1-LTSS (aarch64 ppc64le s390x x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE Linux Enterprise Server 15-SP1-BCL (x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE Linux Enterprise Server 15-LTSS (aarch64 s390x): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP4 (noarch): java-11-openjdk-javadoc-11.0.17.0-150000.3.86.2 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3 (aarch64 ppc64le s390x x86_64): java-11-openjdk-jmods-11.0.17.0-150000.3.86.2 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3 (noarch): java-11-openjdk-javadoc-11.0.17.0-150000.3.86.2 - SUSE Linux Enterprise Module for Basesystem 15-SP4 (aarch64 ppc64le s390x x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS (aarch64 x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS (aarch64 x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS (aarch64 x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (aarch64 x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE Linux Enterprise High Performance Computing 15-LTSS (aarch64 x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE Linux Enterprise High Performance Computing 15-ESPOS (aarch64 x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE Enterprise Storage 7 (aarch64 x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE Enterprise Storage 6 (aarch64 x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 - SUSE CaaS Platform 4.0 (x86_64): java-11-openjdk-11.0.17.0-150000.3.86.2 java-11-openjdk-debugsource-11.0.17.0-150000.3.86.2 java-11-openjdk-demo-11.0.17.0-150000.3.86.2 java-11-openjdk-devel-11.0.17.0-150000.3.86.2 java-11-openjdk-headless-11.0.17.0-150000.3.86.2 References: https://www.suse.com/security/cve/CVE-2022-21618.html https://www.suse.com/security/cve/CVE-2022-21619.html https://www.suse.com/security/cve/CVE-2022-21624.html https://www.suse.com/security/cve/CVE-2022-21626.html https://www.suse.com/security/cve/CVE-2022-21628.html https://www.suse.com/security/cve/CVE-2022-39399.html https://bugzilla.suse.com/1203476 https://bugzilla.suse.com/1204468 https://bugzilla.suse.com/1204471 https://bugzilla.suse.com/1204472 https://bugzilla.suse.com/1204473 https://bugzilla.suse.com/1204475 https://bugzilla.suse.com/1204480 https://bugzilla.suse.com/1204523

1 0

SUSE-SU-2022:4082-1: important: Security update for openjpeg
by opensuse-security＠opensuse.org 18 Nov '22

18 Nov '22

SUSE Security Update: Security update for openjpeg ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4082-1 Rating: important References: #1140205 #1149789 #1179821 #1180043 #1180044 #1180046 Cross-References: CVE-2018-20846 CVE-2018-21010 CVE-2020-27824 CVE-2020-27842 CVE-2020-27843 CVE-2020-27845 CVSS scores: CVE-2018-20846 (NVD) : 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2018-20846 (SUSE): 5.5 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2018-21010 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2018-21010 (SUSE): 7.8 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2020-27824 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2020-27824 (SUSE): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L CVE-2020-27842 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2020-27842 (SUSE): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L CVE-2020-27843 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2020-27843 (SUSE): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L CVE-2020-27845 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2020-27845 (SUSE): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L Affected Products: SUSE Enterprise Storage 7.1 SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise Desktop 15-SP4 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Desktop Applications 15-SP3 SUSE Linux Enterprise Module for Desktop Applications 15-SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server 15-SP1-BCL SUSE Linux Enterprise Server 15-SP2-BCL SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP 15 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.2 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.2 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.2 SUSE Manager Server 4.3 openSUSE Leap 15.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes 6 vulnerabilities is now available. Description: This update for openjpeg fixes the following issues: - CVE-2018-20846: Fixed an Out-of-bounds accesses in pi_next_lrcp, pi_next_rlcp, pi_next_rpcl, pi_next_pcrl, pi_next_rpcl, and pi_next_cprl in openmj2/pi. (bsc#1140205) - CVE-2018-21010: Fixed a heap buffer overflow in color_apply_icc_profile in bin/common/color.c (bsc#1149789) - CVE-2020-27824: Fixed an OOB read in opj_dwt_calc_explicit_stepsizes() (bsc#1179821) - CVE-2020-27842: Fixed null pointer dereference in opj_tgt_reset function in lib/openjp2/tgt.c (bsc#1180043) - CVE-2020-27843: Fixed an out-of-bounds read in opj_t2_encode_packet function in openjp2/t2.c (bsc#1180044) - CVE-2020-27845: Fixed a heap-based buffer over-read in functions opj_pi_next_rlcp, opj_pi_next_rpcl and opj_pi_next_lrcp in openjp2/pi.c (bsc#1180046) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4082=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4082=1 - SUSE Linux Enterprise Server for SAP 15: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-2022-4082=1 - SUSE Linux Enterprise Server 15-SP2-BCL: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-BCL-2022-4082=1 - SUSE Linux Enterprise Server 15-SP1-BCL: zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-BCL-2022-4082=1 - SUSE Linux Enterprise Server 15-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-2022-4082=1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP4: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP4-2022-4082=1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP3: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP3-2022-4082=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-4082=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-4082=1 - SUSE Linux Enterprise High Performance Computing 15-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-2022-4082=1 - SUSE Linux Enterprise High Performance Computing 15-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-2022-4082=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): libopenjpeg1-1.5.2-150000.4.10.1 libopenjpeg1-debuginfo-1.5.2-150000.4.10.1 openjpeg-1.5.2-150000.4.10.1 openjpeg-debuginfo-1.5.2-150000.4.10.1 openjpeg-debugsource-1.5.2-150000.4.10.1 openjpeg-devel-1.5.2-150000.4.10.1 - openSUSE Leap 15.4 (x86_64): libopenjpeg1-32bit-1.5.2-150000.4.10.1 libopenjpeg1-32bit-debuginfo-1.5.2-150000.4.10.1 openjpeg-devel-32bit-1.5.2-150000.4.10.1 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): libopenjpeg1-1.5.2-150000.4.10.1 libopenjpeg1-debuginfo-1.5.2-150000.4.10.1 openjpeg-1.5.2-150000.4.10.1 openjpeg-debuginfo-1.5.2-150000.4.10.1 openjpeg-debugsource-1.5.2-150000.4.10.1 openjpeg-devel-1.5.2-150000.4.10.1 - openSUSE Leap 15.3 (x86_64): libopenjpeg1-32bit-1.5.2-150000.4.10.1 libopenjpeg1-32bit-debuginfo-1.5.2-150000.4.10.1 openjpeg-devel-32bit-1.5.2-150000.4.10.1 - SUSE Linux Enterprise Server for SAP 15 (ppc64le x86_64): libopenjpeg1-1.5.2-150000.4.10.1 libopenjpeg1-debuginfo-1.5.2-150000.4.10.1 openjpeg-debuginfo-1.5.2-150000.4.10.1 openjpeg-debugsource-1.5.2-150000.4.10.1 openjpeg-devel-1.5.2-150000.4.10.1 - SUSE Linux Enterprise Server for SAP 15 (x86_64): libopenjpeg1-32bit-1.5.2-150000.4.10.1 libopenjpeg1-32bit-debuginfo-1.5.2-150000.4.10.1 - SUSE Linux Enterprise Server 15-SP2-BCL (x86_64): libopenjpeg1-1.5.2-150000.4.10.1 libopenjpeg1-debuginfo-1.5.2-150000.4.10.1 openjpeg-debuginfo-1.5.2-150000.4.10.1 openjpeg-debugsource-1.5.2-150000.4.10.1 openjpeg-devel-1.5.2-150000.4.10.1 - SUSE Linux Enterprise Server 15-SP1-BCL (x86_64): libopenjpeg1-1.5.2-150000.4.10.1 libopenjpeg1-32bit-1.5.2-150000.4.10.1 libopenjpeg1-32bit-debuginfo-1.5.2-150000.4.10.1 libopenjpeg1-debuginfo-1.5.2-150000.4.10.1 openjpeg-debuginfo-1.5.2-150000.4.10.1 openjpeg-debugsource-1.5.2-150000.4.10.1 openjpeg-devel-1.5.2-150000.4.10.1 - SUSE Linux Enterprise Server 15-LTSS (aarch64 s390x): libopenjpeg1-1.5.2-150000.4.10.1 libopenjpeg1-debuginfo-1.5.2-150000.4.10.1 openjpeg-debuginfo-1.5.2-150000.4.10.1 openjpeg-debugsource-1.5.2-150000.4.10.1 openjpeg-devel-1.5.2-150000.4.10.1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP4 (aarch64 ppc64le s390x x86_64): libopenjpeg1-1.5.2-150000.4.10.1 libopenjpeg1-debuginfo-1.5.2-150000.4.10.1 openjpeg-debuginfo-1.5.2-150000.4.10.1 openjpeg-debugsource-1.5.2-150000.4.10.1 openjpeg-devel-1.5.2-150000.4.10.1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP3 (aarch64 ppc64le s390x x86_64): libopenjpeg1-1.5.2-150000.4.10.1 libopenjpeg1-debuginfo-1.5.2-150000.4.10.1 openjpeg-debuginfo-1.5.2-150000.4.10.1 openjpeg-debugsource-1.5.2-150000.4.10.1 openjpeg-devel-1.5.2-150000.4.10.1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS (aarch64 x86_64): libopenjpeg1-1.5.2-150000.4.10.1 libopenjpeg1-debuginfo-1.5.2-150000.4.10.1 openjpeg-debuginfo-1.5.2-150000.4.10.1 openjpeg-debugsource-1.5.2-150000.4.10.1 openjpeg-devel-1.5.2-150000.4.10.1 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS (aarch64 x86_64): libopenjpeg1-1.5.2-150000.4.10.1 libopenjpeg1-debuginfo-1.5.2-150000.4.10.1 openjpeg-debuginfo-1.5.2-150000.4.10.1 openjpeg-debugsource-1.5.2-150000.4.10.1 openjpeg-devel-1.5.2-150000.4.10.1 - SUSE Linux Enterprise High Performance Computing 15-LTSS (aarch64 x86_64): libopenjpeg1-1.5.2-150000.4.10.1 libopenjpeg1-debuginfo-1.5.2-150000.4.10.1 openjpeg-debuginfo-1.5.2-150000.4.10.1 openjpeg-debugsource-1.5.2-150000.4.10.1 openjpeg-devel-1.5.2-150000.4.10.1 - SUSE Linux Enterprise High Performance Computing 15-ESPOS (aarch64 x86_64): libopenjpeg1-1.5.2-150000.4.10.1 libopenjpeg1-debuginfo-1.5.2-150000.4.10.1 openjpeg-debuginfo-1.5.2-150000.4.10.1 openjpeg-debugsource-1.5.2-150000.4.10.1 openjpeg-devel-1.5.2-150000.4.10.1 References: https://www.suse.com/security/cve/CVE-2018-20846.html https://www.suse.com/security/cve/CVE-2018-21010.html https://www.suse.com/security/cve/CVE-2020-27824.html https://www.suse.com/security/cve/CVE-2020-27842.html https://www.suse.com/security/cve/CVE-2020-27843.html https://www.suse.com/security/cve/CVE-2020-27845.html https://bugzilla.suse.com/1140205 https://bugzilla.suse.com/1149789 https://bugzilla.suse.com/1179821 https://bugzilla.suse.com/1180043 https://bugzilla.suse.com/1180044 https://bugzilla.suse.com/1180046

1 0

SUSE-SU-2022:4085-1: important: Security update for MozillaThunderbird
by opensuse-security＠opensuse.org 18 Nov '22

18 Nov '22

SUSE Security Update: Security update for MozillaThunderbird ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4085-1 Rating: important References: #1204421 #1205270 Cross-References: CVE-2022-42927 CVE-2022-42928 CVE-2022-42929 CVE-2022-42932 CVE-2022-45403 CVE-2022-45404 CVE-2022-45405 CVE-2022-45406 CVE-2022-45408 CVE-2022-45409 CVE-2022-45410 CVE-2022-45411 CVE-2022-45412 CVE-2022-45416 CVE-2022-45418 CVE-2022-45420 CVE-2022-45421 CVSS scores: CVE-2022-42927 (SUSE): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-42928 (SUSE): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-42929 (SUSE): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVE-2022-42932 (SUSE): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Affected Products: SUSE Enterprise Storage 7.1 SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise Desktop 15-SP4 SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3 SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP4 SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Linux Enterprise Workstation Extension 15-SP3 SUSE Linux Enterprise Workstation Extension 15-SP4 SUSE Manager Proxy 4.2 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.2 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.2 SUSE Manager Server 4.3 openSUSE Leap 15.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes 17 vulnerabilities is now available. Description: This update for MozillaThunderbird fixes the following issues: - Fixed various security issues (MFSA 2022-49, bsc#1205270): * CVE-2022-45403 (bmo#1762078) Service Workers might have learned size of cross-origin media files * CVE-2022-45404 (bmo#1790815) Fullscreen notification bypass * CVE-2022-45405 (bmo#1791314) Use-after-free in InputStream implementation * CVE-2022-45406 (bmo#1791975) Use-after-free of a JavaScript Realm * CVE-2022-45408 (bmo#1793829) Fullscreen notification bypass via windowName * CVE-2022-45409 (bmo#1796901) Use-after-free in Garbage Collection * CVE-2022-45410 (bmo#1658869) ServiceWorker-intercepted requests bypassed SameSite cookie policy * CVE-2022-45411 (bmo#1790311) Cross-Site Tracing was possible via non-standard override headers * CVE-2022-45412 (bmo#1791029) Symlinks may resolve to partially uninitialized buffers * CVE-2022-45416 (bmo#1793676) Keystroke Side-Channel Leakage * CVE-2022-45418 (bmo#1795815) Custom mouse cursor could have been drawn over browser UI * CVE-2022-45420 (bmo#1792643) Iframe contents could be rendered outside the iframe * CVE-2022-45421 (bmo#1767920, bmo#1789808, bmo#1794061) Memory safety bugs fixed in Thunderbird 102.5 - Fixed various security issues: (MFSA 2022-46, bsc#1204421): * CVE-2022-42927 (bmo#1789128) Same-origin policy violation could have leaked cross-origin URLs * CVE-2022-42928 (bmo#1791520) Memory Corruption in JS Engine * CVE-2022-42929 (bmo#1789439) Denial of Service via window.print * CVE-2022-42932 (bmo#1789729, bmo#1791363, bmo#1792041) Memory safety bugs fixed in Thunderbird 102.4 - Mozilla Thunderbird 102.5 * changed: `Ctrl+N` shortcut to create new contacts from address book restored (bmo#1751288) * fixed: Account Settings UI did not update to reflect default identity changes (bmo#1782646) * fixed: New POP mail notifications were incorrectly shown for messages marked by filters as read or junk (bmo#1787531) * fixed: Connecting to an IMAP server configured to use `PREAUTH` caused Thunderbird to hang (bmo#1798161) * fixed: Error responses received in greeting header from NNTP servers did not display error message (bmo#1792281) * fixed: News messages sent using "Send Later" failed to send after going back online (bmo#1794997) * fixed: "Download/Sync Now..." did not completely sync all newsgroups before going offline (bmo#1795547) * fixed: Username was missing from error dialog on failed login to news server (bmo#1796964) * fixed: Thunderbird can now fetch RSS channel feeds with incomplete channel URL (bmo#1794775) * fixed: Add-on "Contribute" button in Add-ons Manager did not work (bmo#1795751) * fixed: Help text for `/part` Matrix command was incorrect (bmo#1795578) * fixed: Invite Attendees dialog did not fetch free/busy info for attendees with encoded characters in their name (bmo#1797927) - Mozilla Thunderbird 102.4.2 * changed: "Address Book" button in Account Central will now create a CardDAV address book instead of a local address book (bmo#1793903) * fixed: Messages fetched from POP server in `Fetch headers only` mode disappeared when moved to different folder by filter action (bmo#1793374) * fixed: Thunderbird re-downloaded locally deleted messages from a POP server when "Leave messages on server" and "Until I delete them" were enabled (bmo#1796903) * fixed: Multiple password prompts for the same POP account could be displayed (bmo#1786920) * fixed: IMAP authentication failed on next startup if ImapMail folder was deleted by user (bmo#1793599) * fixed: Retrieving passwords for authenticated NNTP accounts could fail due to obsolete preferences in a users profile on every startup (bmo#1770594) * fixed: `Get Next n Messages` did not consistently fetch all messages requested from NNTP server (bmo#1794185) * fixed: `Get Messages` button unable to fetch messages from NNTP server if root folder not selected (bmo#1792362) * fixed: Thunderbird text branding did not always match locale of localized build (bmo#1786199) * fixed: Thunderbird installer and Thunderbird updater created Windows shortcuts with different names (bmo#1787264) * fixed: LDAP search filters unable to work with non-ASCII characters (bmo#1794306) * fixed: "Today" highlighting in Calendar Month view did not update after date change at midnight (bmo#1795176) - Mozilla Thunderbird 102.4.1 * new: Thunderbird will now catch and report errors parsing vCards that contain incorrectly formatted dates (bmo#1793415) * fixed: Dynamic language switching did not update interface when switched to right-to-left languages (bmo#1794289) * fixed: Custom header data was discarded after messages were saved as draft and reopened (bmo#195716) * fixed: `-remote` command line argument did not work, affecting integration with various applications such as LibreOffice (bmo#1793323) * fixed: Messages received via some SMS-to-email services could not display images (bmo#1774805) * fixed: VCards with nickname field set could not be edited (bmo#1793877) * fixed: Some recurring events were missing from Agenda on first load (bmo#1771168) * fixed: Download requests for remote ICS calendars incorrectly set "Accept" header to text/xml (bmo#1793757) * fixed: Monthly events created on the 31st of a month with <30 days placed first occurrence 1-2 days after the beginning of the following month (bmo#1266797) * fixed: Various visual and UX improvements (bmo#1781437,bmo#1785314,bmo#1794139,bmo#1794155,bmo#1794399) * changed: Thunderbird will automatically detect and repair OpenPGP key storage corruption caused by using the profile import tool in Thunderbird 102 (bmo#1790610) * fixed: POP message download into a large folder (~13000 messages) caused Thunderbird to temporarily freeze (bmo#1792675) * fixed: Forwarding messages with special characters in Subject failed on Windows (bmo#1782173) * fixed: Links for FileLink attachments were not added when attachment filename contained Unicode characters (bmo#1789589) * fixed: Address Book display pane continued to show contacts after deletion (bmo#1777808) * fixed: Printing address book did not include all contact details (bmo#1782076) * fixed: CardDAV contacts without a Name property did not save to Google Contacts (bmo#1792101) * fixed: "Publish Calendar" did not work (bmo#1794471) * fixed: Calendar database storage improvements (bmo#1792124) * fixed: Incorrectly handled error responses from CalDAV servers sometimes caused events to disappear from calendar (bmo#1792923) * fixed: Various visual and UX improvements (bmo#1776093,bmo#17 80040,bmo#1780425,bmo#1792876,bmo#1792872,bmo#1793466,bmo#179 3543) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4085=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4085=1 - SUSE Linux Enterprise Workstation Extension 15-SP4: zypper in -t patch SUSE-SLE-Product-WE-15-SP4-2022-4085=1 - SUSE Linux Enterprise Workstation Extension 15-SP3: zypper in -t patch SUSE-SLE-Product-WE-15-SP3-2022-4085=1 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP4: zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP4-2022-4085=1 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3: zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2022-4085=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): MozillaThunderbird-102.5.0-150200.8.90.1 MozillaThunderbird-debuginfo-102.5.0-150200.8.90.1 MozillaThunderbird-debugsource-102.5.0-150200.8.90.1 MozillaThunderbird-translations-common-102.5.0-150200.8.90.1 MozillaThunderbird-translations-other-102.5.0-150200.8.90.1 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): MozillaThunderbird-102.5.0-150200.8.90.1 MozillaThunderbird-debuginfo-102.5.0-150200.8.90.1 MozillaThunderbird-debugsource-102.5.0-150200.8.90.1 MozillaThunderbird-translations-common-102.5.0-150200.8.90.1 MozillaThunderbird-translations-other-102.5.0-150200.8.90.1 - SUSE Linux Enterprise Workstation Extension 15-SP4 (x86_64): MozillaThunderbird-102.5.0-150200.8.90.1 MozillaThunderbird-debuginfo-102.5.0-150200.8.90.1 MozillaThunderbird-debugsource-102.5.0-150200.8.90.1 MozillaThunderbird-translations-common-102.5.0-150200.8.90.1 MozillaThunderbird-translations-other-102.5.0-150200.8.90.1 - SUSE Linux Enterprise Workstation Extension 15-SP3 (x86_64): MozillaThunderbird-102.5.0-150200.8.90.1 MozillaThunderbird-debuginfo-102.5.0-150200.8.90.1 MozillaThunderbird-debugsource-102.5.0-150200.8.90.1 MozillaThunderbird-translations-common-102.5.0-150200.8.90.1 MozillaThunderbird-translations-other-102.5.0-150200.8.90.1 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP4 (aarch64 ppc64le s390x): MozillaThunderbird-102.5.0-150200.8.90.1 MozillaThunderbird-debuginfo-102.5.0-150200.8.90.1 MozillaThunderbird-debugsource-102.5.0-150200.8.90.1 MozillaThunderbird-translations-common-102.5.0-150200.8.90.1 MozillaThunderbird-translations-other-102.5.0-150200.8.90.1 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3 (aarch64 ppc64le s390x): MozillaThunderbird-102.5.0-150200.8.90.1 MozillaThunderbird-debuginfo-102.5.0-150200.8.90.1 MozillaThunderbird-debugsource-102.5.0-150200.8.90.1 MozillaThunderbird-translations-common-102.5.0-150200.8.90.1 MozillaThunderbird-translations-other-102.5.0-150200.8.90.1 References: https://www.suse.com/security/cve/CVE-2022-42927.html https://www.suse.com/security/cve/CVE-2022-42928.html https://www.suse.com/security/cve/CVE-2022-42929.html https://www.suse.com/security/cve/CVE-2022-42932.html https://www.suse.com/security/cve/CVE-2022-45403.html https://www.suse.com/security/cve/CVE-2022-45404.html https://www.suse.com/security/cve/CVE-2022-45405.html https://www.suse.com/security/cve/CVE-2022-45406.html https://www.suse.com/security/cve/CVE-2022-45408.html https://www.suse.com/security/cve/CVE-2022-45409.html https://www.suse.com/security/cve/CVE-2022-45410.html https://www.suse.com/security/cve/CVE-2022-45411.html https://www.suse.com/security/cve/CVE-2022-45412.html https://www.suse.com/security/cve/CVE-2022-45416.html https://www.suse.com/security/cve/CVE-2022-45418.html https://www.suse.com/security/cve/CVE-2022-45420.html https://www.suse.com/security/cve/CVE-2022-45421.html https://bugzilla.suse.com/1204421 https://bugzilla.suse.com/1205270

1 0

SUSE-SU-2022:4081-1: Security update for dpkg
by opensuse-security＠opensuse.org 18 Nov '22

18 Nov '22

SUSE Security Update: Security update for dpkg ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4081-1 Rating: low References: #1199944 Cross-References: CVE-2022-1664 CVSS scores: CVE-2022-1664 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-1664 (SUSE): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N Affected Products: SUSE CaaS Platform 4.0 SUSE Enterprise Storage 6 SUSE Enterprise Storage 7 SUSE Enterprise Storage 7.1 SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise Desktop 15-SP4 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Micro 5.3 SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Module for Basesystem 15-SP4 SUSE Linux Enterprise Module for Development Tools 15-SP3 SUSE Linux Enterprise Module for Development Tools 15-SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server 15-SP1-BCL SUSE Linux Enterprise Server 15-SP1-LTSS SUSE Linux Enterprise Server 15-SP2-BCL SUSE Linux Enterprise Server 15-SP2-LTSS SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP 15 SUSE Linux Enterprise Server for SAP 15-SP1 SUSE Linux Enterprise Server for SAP 15-SP2 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.1 SUSE Manager Proxy 4.2 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.1 SUSE Manager Retail Branch Server 4.2 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.1 SUSE Manager Server 4.2 SUSE Manager Server 4.3 openSUSE Leap 15.3 openSUSE Leap 15.4 openSUSE Leap Micro 5.2 openSUSE Leap Micro 5.3 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for dpkg fixes the following issues: - CVE-2022-1664: Fixed a directory traversal vulnerability in Dpkg::Source::Archive (bsc#1199944). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap Micro 5.3: zypper in -t patch openSUSE-Leap-Micro-5.3-2022-4081=1 - openSUSE Leap Micro 5.2: zypper in -t patch openSUSE-Leap-Micro-5.2-2022-4081=1 - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4081=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4081=1 - SUSE Manager Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-4081=1 - SUSE Manager Retail Branch Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-4081=1 - SUSE Manager Proxy 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-4081=1 - SUSE Linux Enterprise Server for SAP 15-SP2: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2022-4081=1 - SUSE Linux Enterprise Server for SAP 15-SP1: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP1-2022-4081=1 - SUSE Linux Enterprise Server for SAP 15: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-2022-4081=1 - SUSE Linux Enterprise Server 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-4081=1 - SUSE Linux Enterprise Server 15-SP2-BCL: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-BCL-2022-4081=1 - SUSE Linux Enterprise Server 15-SP1-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-LTSS-2022-4081=1 - SUSE Linux Enterprise Server 15-SP1-BCL: zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-BCL-2022-4081=1 - SUSE Linux Enterprise Server 15-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-2022-4081=1 - SUSE Linux Enterprise Module for Development Tools 15-SP4: zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP4-2022-4081=1 - SUSE Linux Enterprise Module for Development Tools 15-SP3: zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP3-2022-4081=1 - SUSE Linux Enterprise Module for Basesystem 15-SP4: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2022-4081=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2022-4081=1 - SUSE Linux Enterprise Micro 5.3: zypper in -t patch SUSE-SLE-Micro-5.3-2022-4081=1 - SUSE Linux Enterprise Micro 5.2: zypper in -t patch SUSE-SUSE-MicroOS-5.2-2022-4081=1 - SUSE Linux Enterprise Micro 5.1: zypper in -t patch SUSE-SUSE-MicroOS-5.1-2022-4081=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-4081=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-4081=1 - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-LTSS-2022-4081=1 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-ESPOS-2022-4081=1 - SUSE Linux Enterprise High Performance Computing 15-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-2022-4081=1 - SUSE Linux Enterprise High Performance Computing 15-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-2022-4081=1 - SUSE Enterprise Storage 7: zypper in -t patch SUSE-Storage-7-2022-4081=1 - SUSE Enterprise Storage 6: zypper in -t patch SUSE-Storage-6-2022-4081=1 - SUSE CaaS Platform 4.0: To install this update, use the SUSE CaaS Platform 'skuba' tool. It will inform you if it detects new updates and let you then trigger updating of the complete cluster in a controlled way. Package List: - openSUSE Leap Micro 5.3 (aarch64 x86_64): update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - openSUSE Leap Micro 5.2 (aarch64 x86_64): update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - openSUSE Leap 15.4 (noarch): dpkg-lang-1.19.0.4-150000.4.4.1 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - openSUSE Leap 15.3 (noarch): dpkg-lang-1.19.0.4-150000.4.4.1 - SUSE Manager Server 4.1 (ppc64le s390x x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Manager Retail Branch Server 4.1 (x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Manager Proxy 4.1 (x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise Server for SAP 15-SP2 (ppc64le x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise Server for SAP 15-SP1 (ppc64le x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise Server for SAP 15 (ppc64le x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise Server 15-SP2-LTSS (aarch64 ppc64le s390x x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise Server 15-SP2-BCL (x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise Server 15-SP1-LTSS (aarch64 ppc64le s390x x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise Server 15-SP1-BCL (x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise Server 15-LTSS (aarch64 s390x): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise Module for Development Tools 15-SP4 (aarch64 ppc64le s390x x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise Module for Development Tools 15-SP3 (aarch64 ppc64le s390x x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise Module for Basesystem 15-SP4 (aarch64 ppc64le s390x x86_64): update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64): update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64): update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64): update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS (aarch64 x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS (aarch64 x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS (aarch64 x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (aarch64 x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise High Performance Computing 15-LTSS (aarch64 x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Linux Enterprise High Performance Computing 15-ESPOS (aarch64 x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Enterprise Storage 7 (aarch64 x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE Enterprise Storage 6 (aarch64 x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 - SUSE CaaS Platform 4.0 (x86_64): dpkg-1.19.0.4-150000.4.4.1 dpkg-debuginfo-1.19.0.4-150000.4.4.1 dpkg-debugsource-1.19.0.4-150000.4.4.1 dpkg-devel-1.19.0.4-150000.4.4.1 update-alternatives-1.19.0.4-150000.4.4.1 update-alternatives-debuginfo-1.19.0.4-150000.4.4.1 update-alternatives-debugsource-1.19.0.4-150000.4.4.1 References: https://www.suse.com/security/cve/CVE-2022-1664.html https://bugzilla.suse.com/1199944

1 0

SUSE-SU-2022:4077-1: important: Security update for sudo
by opensuse-security＠opensuse.org 18 Nov '22

18 Nov '22

SUSE Security Update: Security update for sudo ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4077-1 Rating: important References: #1190818 #1203201 #1204986 Cross-References: CVE-2022-43995 CVSS scores: CVE-2022-43995 (NVD) : 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H CVE-2022-43995 (SUSE): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H Affected Products: SUSE Enterprise Storage 7.1 SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.2 openSUSE Leap 15.3 openSUSE Leap Micro 5.2 ______________________________________________________________________________ An update that solves one vulnerability and has two fixes is now available. Description: This update for sudo fixes the following issues: - CVE-2022-43995: Fixed a potential heap-based buffer over-read when entering a passwor dof seven characters or fewer and using the crypt() password backend (bsc#1204986). - Fix wrong information output in the error message (bsc#1190818). - Make sure SIGCHLD is not ignored when sudo is executed; fixes race condition (bsc#1203201). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap Micro 5.2: zypper in -t patch openSUSE-Leap-Micro-5.2-2022-4077=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4077=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2022-4077=1 - SUSE Linux Enterprise Micro 5.2: zypper in -t patch SUSE-SUSE-MicroOS-5.2-2022-4077=1 - SUSE Linux Enterprise Micro 5.1: zypper in -t patch SUSE-SUSE-MicroOS-5.1-2022-4077=1 Package List: - openSUSE Leap Micro 5.2 (aarch64 x86_64): sudo-1.9.5p2-150300.3.13.1 sudo-debuginfo-1.9.5p2-150300.3.13.1 sudo-debugsource-1.9.5p2-150300.3.13.1 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): sudo-1.9.5p2-150300.3.13.1 sudo-debuginfo-1.9.5p2-150300.3.13.1 sudo-debugsource-1.9.5p2-150300.3.13.1 sudo-devel-1.9.5p2-150300.3.13.1 sudo-plugin-python-1.9.5p2-150300.3.13.1 sudo-plugin-python-debuginfo-1.9.5p2-150300.3.13.1 sudo-test-1.9.5p2-150300.3.13.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): sudo-1.9.5p2-150300.3.13.1 sudo-debuginfo-1.9.5p2-150300.3.13.1 sudo-debugsource-1.9.5p2-150300.3.13.1 sudo-devel-1.9.5p2-150300.3.13.1 sudo-plugin-python-1.9.5p2-150300.3.13.1 sudo-plugin-python-debuginfo-1.9.5p2-150300.3.13.1 - SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64): sudo-1.9.5p2-150300.3.13.1 sudo-debuginfo-1.9.5p2-150300.3.13.1 sudo-debugsource-1.9.5p2-150300.3.13.1 - SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64): sudo-1.9.5p2-150300.3.13.1 sudo-debuginfo-1.9.5p2-150300.3.13.1 sudo-debugsource-1.9.5p2-150300.3.13.1 References: https://www.suse.com/security/cve/CVE-2022-43995.html https://bugzilla.suse.com/1190818 https://bugzilla.suse.com/1203201 https://bugzilla.suse.com/1204986

1 0

SUSE-SU-2022:4072-1: important: Security update for the Linux Kernel
by opensuse-security＠opensuse.org 18 Nov '22

18 Nov '22

SUSE Security Update: Security update for the Linux Kernel ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4072-1 Rating: important References: #1065729 #1071995 #1152472 #1152489 #1188238 #1194869 #1196018 #1196632 #1199904 #1200567 #1200692 #1200788 #1202187 #1202686 #1202700 #1202914 #1203098 #1203229 #1203290 #1203435 #1203514 #1203699 #1203767 #1203802 #1203922 #1204017 #1204142 #1204166 #1204168 #1204171 #1204241 #1204353 #1204354 #1204355 #1204402 #1204413 #1204415 #1204417 #1204428 #1204431 #1204439 #1204470 #1204479 #1204498 #1204533 #1204569 #1204574 #1204575 #1204619 #1204635 #1204637 #1204646 #1204647 #1204650 #1204653 #1204693 #1204705 #1204719 #1204728 #1204753 #1204868 #1204926 #1204933 #1204934 #1204947 #1204957 #1204963 #1204970 PED-1082 PED-1084 PED-1085 PED-1096 PED-1211 PED-1649 PED-634 PED-676 PED-678 PED-679 PED-707 PED-732 PED-813 PED-817 PED-822 PED-825 PED-833 PED-842 PED-846 PED-850 PED-851 PED-856 PED-857 SLE-13847 SLE-9246 Cross-References: CVE-2022-1882 CVE-2022-2153 CVE-2022-28748 CVE-2022-2964 CVE-2022-2978 CVE-2022-3169 CVE-2022-33981 CVE-2022-3424 CVE-2022-3435 CVE-2022-3521 CVE-2022-3524 CVE-2022-3526 CVE-2022-3535 CVE-2022-3542 CVE-2022-3545 CVE-2022-3565 CVE-2022-3577 CVE-2022-3586 CVE-2022-3594 CVE-2022-3619 CVE-2022-3621 CVE-2022-3625 CVE-2022-3628 CVE-2022-3629 CVE-2022-3633 CVE-2022-3640 CVE-2022-3646 CVE-2022-3649 CVE-2022-40476 CVE-2022-40768 CVE-2022-42703 CVE-2022-43750 CVSS scores: CVE-2022-1882 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-1882 (SUSE): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-2153 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-2153 (SUSE): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H CVE-2022-28748 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2022-2964 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-2964 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-2978 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-2978 (SUSE): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-3169 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-3169 (SUSE): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-33981 (NVD) : 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVE-2022-33981 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-3424 (SUSE): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-3435 (NVD) : 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N CVE-2022-3435 (SUSE): 5.3 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:H CVE-2022-3521 (NVD) : 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L CVE-2022-3521 (SUSE): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-3524 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-3524 (SUSE): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-3526 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-3526 (SUSE): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-3535 (NVD) : 3.5 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVE-2022-3535 (SUSE): 2.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L CVE-2022-3542 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-3542 (SUSE): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-3545 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-3545 (SUSE): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-3565 (NVD) : 8 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-3565 (SUSE): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-3577 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-3577 (SUSE): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-3586 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-3586 (SUSE): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-3594 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-3594 (SUSE): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-3619 (NVD) : 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2022-3619 (SUSE): 5.3 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-3621 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-3621 (SUSE): 4.3 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-3625 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-3625 (SUSE): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H CVE-2022-3628 (SUSE): 4.6 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-3629 (NVD) : 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVE-2022-3629 (SUSE): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L CVE-2022-3633 (NVD) : 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVE-2022-3633 (SUSE): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L CVE-2022-3640 (NVD) : 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-3640 (SUSE): 7.1 CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-3646 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2022-3646 (SUSE): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L CVE-2022-3649 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-3649 (SUSE): 3.1 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L CVE-2022-40476 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-40476 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-40768 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVE-2022-40768 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVE-2022-42703 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-42703 (SUSE): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-43750 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-43750 (SUSE): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H Affected Products: SUSE Linux Enterprise Desktop 15-SP4 SUSE Linux Enterprise High Availability 15-SP4 SUSE Linux Enterprise High Performance Computing SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Micro 5.3 SUSE Linux Enterprise Module for Basesystem 15-SP4 SUSE Linux Enterprise Module for Development Tools 15-SP4 SUSE Linux Enterprise Module for Legacy Software 15-SP4 SUSE Linux Enterprise Module for Live Patching 15-SP4 SUSE Linux Enterprise Server SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP Applications SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Linux Enterprise Workstation Extension 15-SP4 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that solves 32 vulnerabilities, contains 25 features and has 36 fixes is now available. Description: The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-28748: Fixed a leak of kernel memory over the network by ax88179_178a devices (bsc#1196018). - CVE-2022-1882: Fixed a use-after-free flaw in free_pipe_info() that could allow a local user to crash or potentially escalate their privileges on the system (bsc#1199904). - CVE-2022-2964: Fixed memory corruption issues in ax88179_178a devices (bnc#1202686). - CVE-2022-3169: Fixed an denial of service though request to NVME_IOCTL_RESET and NVME_IOCTL_SUBSYS_RESET (bsc#1203290). - CVE-2022-33981: Fixed a use-after-free in floppy driver (bnc#1200692). - CVE-2022-3424: Fixed use-after-free in gru_set_context_option(), gru_fault() and gru_handle_user_call_os() that could lead to kernel panic (bsc#1204166). - CVE-2022-3435: Fixed an out-of-bounds read in fib_nh_match() of the file net/ipv4/fib_semantics.c (bsc#1204171). - CVE-2022-3521: Fixed race condition in kcm_tx_work() in net/kcm/kcmsock.c (bnc#1204355). - CVE-2022-3524: Fixed memory leak in ipv6_renew_options() in the IPv6 handler (bnc#1204354). - CVE-2022-3526: Fixed a memory leak in macvlan_handle_frame() from drivers/net/macvlan.c (bnc#1204353). - CVE-2022-3545: Fixed use-after-free in area_cache_get() in drivers/net/ethernet/netronome/nfp/nfpcore/nfp_cppcore.c (bnc#1204415). - CVE-2022-3565: Fixed use-after-free in del_timer() in drivers/isdn/mISDN/l1oip_core.c (bnc#1204431). - CVE-2022-3621: Fixed null pointer dereference in nilfs_bmap_lookup_at_level() in fs/nilfs2/inode.c (bnc#1204574). - CVE-2022-3625: Fixed use-after-free in devlink_param_set()/devlink_param_get() in net/core/devlink.c (bnc#1204637). - CVE-2022-3628: Fixed potential buffer overflow in brcmf_fweh_event_worker() in wifi/brcmfmac (bsc#1204868). - CVE-2022-3640: Fixed use-after-free in l2cap_conn_del() in net/bluetooth/l2cap_core.c (bnc#1204619). - CVE-2022-3646: Fixed memory leak in nilfs_attach_log_writer() in fs/nilfs2/segment.c (bnc#1204646). - CVE-2022-40476: Fixed a null pointer dereference in fs/io_uring.c (bnc#1203435). - CVE-2022-40768: Fixed information disclosure in stex_queuecommand_lck (bnc#1203514). - CVE-2022-43750: Fixed vulnerability in usbmon that allowed a user-space client to corrupt the monitor's internal memory (bnc#1204653). The following non-security bugs were fixed: - acpi: APEI: do not add task_work to kernel thread to avoid memory leak (git-fixes). - acpi: HMAT: Release platform device in case of platform_device_add_data() fails (git-fixes). - acpi: extlog: Handle multiple records (git-fixes). - acpi: tables: FPDT: Do not call acpi_os_map_memory() on invalid phys address (git-fixes). - acpi: video: Add Toshiba Satellite/Portege Z830 quirk (git-fixes). - acpi: video: Make backlight class device registration a separate step (v2) (git-fixes). - acpi: x86: Add a quirk for Dell Inspiron 14 2-in-1 for StorageD3Enable (git-fixes). - alsa: Use del_timer_sync() before freeing timer (git-fixes). - alsa: ac97: fix possible memory leak in snd_ac97_dev_register() (git-fixes). - alsa: aoa: Fix I2S device accounting (git-fixes). - alsa: aoa: i2sbus: fix possible memory leak in i2sbus_add_dev() (git-fixes). - alsa: asihpi - Remove useless code in hpi_meter_get_peak() (git-fixes). - alsa: au88x0: use explicitly signed char (git-fixes). - alsa: dmaengine: increment buffer pointer atomically (git-fixes). - alsa: hda/cs_dsp_ctl: Fix mutex inversion when creating controls (bsc#1203699). - alsa: hda/hdmi: Do not skip notification handling during PM operation (git-fixes). - alsa: hda/hdmi: Fix the converter allocation for the silent stream (git-fixes). - alsa: hda/hdmi: Fix the converter reuse for the silent stream (git-fixes). - alsa: hda/hdmi: change type for the 'assigned' variable (git-fixes). - alsa: hda/realtek: Add Intel Reference SSID to support headset keys (git-fixes). - alsa: hda/realtek: Add another HP ZBook G9 model quirks (bsc#1203699). - alsa: hda/realtek: Add quirk for ASUS GV601R laptop (git-fixes). - alsa: hda/realtek: Add quirk for ASUS Zenbook using CS35L41 (bsc#1203922). - alsa: hda/realtek: Correct pin configs for ASUS G533Z (git-fixes). - alsa: hda/realtek: remove ALC289_FIXUP_DUAL_SPK for Dell 5530 (git-fixes). - alsa: hda: Fix position reporting on Poulsbo (git-fixes). - alsa: hda: cs35l41: Remove suspend/resume hda hooks (bsc#1203699). - alsa: hda: cs35l41: Support System Suspend (bsc#1203699). - alsa: hda: hda_cs_dsp_ctl: Ensure pwr_lock is held before reading/writing controls (bsc#1203699). - alsa: hda: hda_cs_dsp_ctl: Minor clean and redundant code removal (bsc#1203699). - alsa: hiface: fix repeated words in comments (git-fixes). - alsa: line6: Replace sprintf() with sysfs_emit() (git-fixes). - alsa: line6: remove line6_set_raw declaration (git-fixes). - alsa: oss: Fix potential deadlock at unregistration (git-fixes). - alsa: rawmidi: Drop register_mutex in snd_rawmidi_free() (git-fixes). - alsa: rme9652: use explicitly signed char (git-fixes). - alsa: scarlett2: Add Focusrite Clarett+ 8Pre support (git-fixes). - alsa: scarlett2: Add support for the internal "standalone" switch (git-fixes). - alsa: scarlett2: Split scarlett2_config_items[] into 3 sections (git-fixes). - alsa: usb-audio: Add mixer mapping for Gigabyte B450/550 Mobos (git-fixes). - alsa: usb-audio: Add quirk to enable Avid Mbox 3 support (git-fixes). - alsa: usb-audio: Add quirks for M-Audio Fast Track C400/600 (git-fixes). - alsa: usb-audio: Fix NULL dererence at error path (git-fixes). - alsa: usb-audio: Fix last interface check for registration (git-fixes). - alsa: usb-audio: Fix potential memory leaks (git-fixes). - alsa: usb-audio: Fix regression with Dell Dock jack detection (bsc#1204719). - alsa: usb-audio: Register card at the last interface (git-fixes). - alsa: usb-audio: make read-only array marker static const (git-fixes). - alsa: usb-audio: remove redundant assignment to variable c (git-fixes). - alsa: usb-audio: scarlett2: Use struct_size() helper in scarlett2_usb() (git-fixes). - alsa: usb/6fire: fix repeated words in comments (git-fixes). - arm64/bti: Disable in kernel BTI when cross section thunks are broken (git-fixes) - arm64/mm: Consolidate TCR_EL1 fields (git-fixes). - arm64: dts: imx8mp: Add snps,gfladj-refclk-lpm-sel quirk to USB nodes (git-fixes). - arm64: dts: imx8mq-librem5: Add bq25895 as max17055's power supply (git-fixes). - arm64: dts: qcom: sc7280: Cleanup the lpasscc node (git-fixes). - arm64: dts: ti: k3-j7200: fix main pinmux range (git-fixes). - arm64: ftrace: fix module PLTs with mcount (git-fixes). - arm64: mte: Avoid setting PG_mte_tagged if no tags cleared or restored (git-fixes). - arm64: topology: move store_cpu_topology() to shared code (git-fixes). - arm: 9242/1: kasan: Only map modules if CONFIG_KASAN_VMALLOC=n (git-fixes). - arm: 9244/1: dump: Fix wrong pg_level in walk_pmd() (git-fixes). - arm: 9247/1: mm: set readonly for MT_MEMORY_RO with ARM_LPAE (git-fixes). - arm: Drop CMDLINE_* dependency on ATAGS (git-fixes). - arm: decompressor: Include .data.rel.ro.local (git-fixes). - arm: defconfig: clean up multi_v4t and multi_v5 configs (git-fixes). - arm: defconfig: drop CONFIG_PTP_1588_CLOCK=y (git-fixes). - arm: defconfig: drop CONFIG_SERIAL_OMAP references (git-fixes). - arm: defconfig: drop CONFIG_USB_FSL_USB2 (git-fixes). - arm: dts: armada-38x: Add gpio-ranges for pin muxing (git-fixes). - arm: dts: exynos: correct s5k6a3 reset polarity on Midas family (git-fixes). - arm: dts: exynos: fix polarity of VBUS GPIO of Origen (git-fixes). - arm: dts: fix Moxa SDIO 'compatible', remove 'sdhci' misnomer (git-fixes). - arm: dts: imx6dl: add missing properties for sram (git-fixes). - arm: dts: imx6q: add missing properties for sram (git-fixes). - arm: dts: imx6qdl-kontron-samx6i: hook up DDC i2c bus (git-fixes). - arm: dts: imx6qp: add missing properties for sram (git-fixes). - arm: dts: imx6sl: add missing properties for sram (git-fixes). - arm: dts: imx6sll: add missing properties for sram (git-fixes). - arm: dts: imx6sx: add missing properties for sram (git-fixes). - arm: dts: imx7d-sdb: config the max pressure for tsc2046 (git-fixes). - arm: dts: integrator: Tag PCI host with device_type (git-fixes). - arm: dts: kirkwood: lsxl: fix serial line (git-fixes). - arm: dts: kirkwood: lsxl: remove first ethernet port (git-fixes). - arm: dts: turris-omnia: Add label for wan port (git-fixes). - arm: dts: turris-omnia: Fix mpp26 pin name and comment (git-fixes). - asoc: SOF: pci: Change DMI match info to support all Chrome platforms (git-fixes). - asoc: codecs: tx-macro: fix kcontrol put (git-fixes). - asoc: da7219: Fix an error handling path in da7219_register_dai_clks() (git-fixes). - asoc: eureka-tlv320: Hold reference returned from of_find_xxx API (git-fixes). - asoc: fsl_sai: Remove unnecessary FIFO reset in ISR (git-fixes). - asoc: mt6359: fix tests for platform_get_irq() failure (git-fixes). - asoc: mt6660: Fix PM disable depth imbalance in mt6660_i2c_probe (git-fixes). - asoc: qcom: lpass-cpu: Mark HDMI TX parity register as volatile (git-fixes). - asoc: qcom: lpass-cpu: mark HDMI TX registers as volatile (git-fixes). - asoc: rsnd: Add check for rsnd_mod_power_on (git-fixes). - asoc: tas2764: Allow mono streams (git-fixes). - asoc: tas2764: Drop conflicting set_bias_level power setting (git-fixes). - asoc: tas2764: Fix mute/unmute (git-fixes). - asoc: wcd9335: fix order of Slimbus unprepare/disable (git-fixes). - asoc: wcd934x: fix order of Slimbus unprepare/disable (git-fixes). - asoc: wm5102: Fix PM disable depth imbalance in wm5102_probe (git-fixes). - asoc: wm5110: Fix PM disable depth imbalance in wm5110_probe (git-fixes). - asoc: wm8997: Fix PM disable depth imbalance in wm8997_probe (git-fixes). - asoc: wm_adsp: Handle optional legacy support (git-fixes). - ata: ahci-imx: Fix MODULE_ALIAS (git-fixes). - ata: fix ata_id_has_devslp() (git-fixes). - ata: fix ata_id_has_dipm() (git-fixes). - ata: fix ata_id_has_ncq_autosense() (git-fixes). - ata: fix ata_id_sense_reporting_enabled() and ata_id_has_sense_reporting() (git-fixes). - ata: libahci_platform: Sanity check the DT child nodes number (git-fixes). - ata: pata_legacy: fix pdc20230_set_piomode() (git-fixes). - bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu (git-fixes). - bluetooth: L2CAP: Fix user-after-free (git-fixes). - bluetooth: L2CAP: initialize delayed works at l2cap_chan_create() (git-fixes). - bluetooth: RFCOMM: Fix possible deadlock on socket shutdown/release (git-fixes). - bluetooth: btintel: Mark Intel controller to support LE_STATES quirk (git-fixes). - bluetooth: hci_sysfs: Fix attempting to call device_add multiple times (git-fixes). - bluetooth: virtio_bt: Use skb_put to set length (git-fixes). - bnxt_en: Fix bnxt_refclk_read() (git-fixes). - bnxt_en: Fix bnxt_reinit_after_abort() code path (git-fixes). - bnxt_en: fix livepatch query (git-fixes). - bnxt_en: reclaim max resources if sriov enable fails (git-fixes). - bonding: 802.3ad: fix no transmission of LACPDUs (git-fixes). - bonding: ARP monitor spams NETDEV_NOTIFY_PEERS notifiers (git-fixes). - can: bcm: check the result of can_send() in bcm_can_tx() (git-fixes). - can: j1939: transport: j1939_session_skb_drop_old(): spin_unlock_irqrestore() before kfree_skb() (git-fixes). - can: kvaser_usb: Fix possible completions during init_completion (git-fixes). - can: kvaser_usb: Fix use of uninitialized completion (git-fixes). - can: kvaser_usb: kvaser_usb_leaf: fix CAN clock frequency regression (git-fixes). - can: kvaser_usb: replace run-time checks with struct kvaser_usb_driver_info (git-fixes). - can: kvaser_usb_leaf: Fix CAN state after restart (git-fixes). - can: kvaser_usb_leaf: Fix TX queue out of sync after restart (git-fixes). - can: mcp251x: mcp251x_can_probe(): add missing unregister_candev() in error path (git-fixes). - can: mcp251xfd: mcp251xfd_register_get_dev_id(): fix endianness conversion (git-fixes). - can: mcp251xfd: mcp251xfd_register_get_dev_id(): use correct length to read dev_id (git-fixes). - can: mscan: mpc5xxx: mpc5xxx_can_probe(): add missing put_clock() in error path (git-fixes). - cgroup/cpuset: Enable update_tasks_cpumask() on top_cpuset (bsc#1204753). - clk: ast2600: BCLK comes from EPLL (git-fixes). - clk: at91: fix the build with binutils 2.27 (git-fixes). - clk: baikal-t1: Add SATA internal ref clock buffer (git-fixes). - clk: baikal-t1: Add shared xGMAC ref/ptp clocks internal parent (git-fixes). - clk: baikal-t1: Fix invalid xGMAC PTP clock divider (git-fixes). - clk: bcm2835: Make peripheral PLLC critical (git-fixes). - clk: bcm2835: Round UART input clock up (bsc#1188238) - clk: bcm2835: fix bcm2835_clock_rate_from_divisor declaration (git-fixes). - clk: bcm: rpi: Add support for VEC clock (bsc#1196632) - clk: berlin: Add of_node_put() for of_get_parent() (git-fixes). - clk: imx: scu: fix memleak on platform_device_add() fails (git-fixes). - clk: mediatek: mt8183: mfgcfg: Propagate rate changes to parent (git-fixes). - clk: meson: Hold reference returned by of_get_parent() (git-fixes). - clk: oxnas: Hold reference returned by of_get_parent() (git-fixes). - clk: qcom: apss-ipq6018: mark apcs_alias0_core_clk as critical (git-fixes). - clk: qcom: gcc-msm8916: use ARRAY_SIZE instead of specifying num_parents (git-fixes). - clk: qoriq: Hold reference returned by of_get_parent() (git-fixes). - clk: sprd: Hold reference returned by of_get_parent() (git-fixes). - clk: tegra20: Fix refcount leak in tegra20_clock_init (git-fixes). - clk: tegra: Fix refcount leak in tegra114_clock_init (git-fixes). - clk: tegra: Fix refcount leak in tegra210_clock_init (git-fixes). - clk: ti: dra7-atl: Fix reference leak in of_dra7_atl_clk_probe (git-fixes). - clk: vc5: Fix 5P49V6901 outputs disabling when enabling FOD (git-fixes). - clk: zynqmp: Fix stack-out-of-bounds in strncpy` (git-fixes). - clk: zynqmp: pll: rectify rate rounding in zynqmp_pll_round_rate (git-fixes). - cpufreq: qcom: fix memory leak in error path (git-fixes). - cpufreq: qcom: fix writes in read-only memory region (git-fixes). - crypto: akcipher - default implementation for setting a private key (git-fixes). - crypto: cavium - prevent integer overflow loading firmware (git-fixes). - crypto: ccp - Release dma channels before dmaengine unrgister (git-fixes). - crypto: hisilicon/zip - fix mismatch in get/set sgl_sge_nr (git-fixes). - crypto: inside-secure - Change swab to swab32 (git-fixes). - crypto: inside-secure - Replace generic aes with libaes (git-fixes). - crypto: marvell/octeontx - prevent integer overflows (git-fixes). - crypto: qat - fix default value of WDT timer (git-fixes). - crypto: sahara - do not sleep when in softirq (git-fixes). - device property: Fix documentation for *_match_string() APIs (git-fixes). - dmaengine: hisilicon: Add multi-thread support for a DMA channel (git-fixes). - dmaengine: hisilicon: Disable channels when unregister hisi_dma (git-fixes). - dmaengine: hisilicon: Fix CQ head update (git-fixes). - dmaengine: idxd: change bandwidth token to read buffers (jsc#PED-679). - dmaengine: idxd: deprecate token sysfs attributes for read buffers (jsc#PED-679). - dmaengine: idxd: force wq context cleanup on device disable path (git-fixes). - dmaengine: ioat: stop mod_timer from resurrecting deleted timer in __cleanup() (git-fixes). - dmaengine: mxs: use platform_driver_register (git-fixes). - dmaengine: ti: k3-udma: Reset UDMA_CHAN_RT byte counters to prevent overflow (git-fixes). - dmaengine: xilinx_dma: Fix devm_platform_ioremap_resource error handling (git-fixes). - dmaengine: xilinx_dma: Report error in case of dma_set_mask_and_coherent API failure (git-fixes). - dmaengine: xilinx_dma: cleanup for fetching xlnx,num-fstores property (git-fixes). - dpaa2-eth: trace the allocated address instead of page struct (git-fixes). - drivers: hv: vmbus: Fix handling of messages with transaction ID of zero (bsc#1204017). - drivers: hv: vmbus: Introduce vmbus_request_addr_match() (bsc#1204017). - drivers: hv: vmbus: Introduce vmbus_sendpacket_getid() (bsc#1204017). - drivers: hv: vmbus: Introduce {lock,unlock}_requestor() (bsc#1204017). - drivers: serial: jsm: fix some leaks in probe (git-fixes). - drm/amd/display: Assume an LTTPR is always present on fixed_vs links (git-fixes). - drm/amd/display: Changed pipe split policy to allow for multi-display (bsc#1152472) Backporting notes: * remove changes to non-existing 201 and 31 directories - drm/amd/display: Correct MPC split policy for DCN301 (git-fixes). - drm/amd/display: Fix build breakage with CONFIG_DEBUG_FS=n (git-fixes). - drm/amd/display: Fix double cursor on non-video RGB MPO (git-fixes). - drm/amd/display: Fix vblank refcount in vrr transition (git-fixes). - drm/amd/display: Remove interface for periodic interrupt 1 (git-fixes). - drm/amd/display: skip audio setup when audio stream is enabled (git-fixes). - drm/amd/display: update gamut remap if plane has changed (git-fixes). - drm/amd/pm: smu7_hwmgr: fix potential off-by-one overflow in 'performance_levels' (git-fixes). - drm/amdgpu/display: change pipe policy for DCN 2.0 (git-fixes). - drm/amdgpu/display: change pipe policy for DCN 2.1 (git-fixes). - drm/amdgpu/gfx10: add wraparound gpu counter check for APUs as well (bsc#1152472) Backporting notes: * also fix default branch - drm/amdgpu/gfx9: switch to golden tsc registers for renoir+ (bsc#1152472) Backporting notes: * replace IP_VERSION() with CHIP_ constants - drm/amdgpu: add missing pci_disable_device() in amdgpu_pmops_runtime_resume() (git-fixes). - drm/amdgpu: fix initial connector audio value (git-fixes). - drm/amdgpu: fix sdma doorbell init ordering on APUs (git-fixes). - drm/amdkfd: Fix memory leak in kfd_mem_dmamap_userptr() (git-fixes). - drm/bridge: Avoid uninitialized variable warning (git-fixes). - drm/bridge: megachips: Fix a null pointer dereference bug (git-fixes). - drm/bridge: parade-ps8640: Fix regulator supply order (git-fixes). - drm/i915/dp: Reset frl trained flag before restarting FRL training (git-fixes). - drm/i915/ehl: Update MOCS table for EHL (git-fixes). - drm/i915/gvt: fix a memory leak in intel_gvt_init_vgpu_types (git-fixes). - drm/i915/hdmi: convert intel_hdmi_to_dev to intel_hdmi_to_i915 (bsc#1152489) - drm/i915: Reject unsupported TMDS rates on ICL+ (git-fixes). - drm/komeda: Fix handling of atomic commits in the atomic_commit_tail hook (git-fixes). - drm/meson: explicitly remove aggregate driver at module unload time (git-fixes). - drm/mipi-dsi: Detach devices when removing the host (git-fixes). - drm/msm/dp: Silence inconsistent indent warning (git-fixes). - drm/msm/dp: correct 1.62G link rate at dp_catalog_ctrl_config_msa() (git-fixes). - drm/msm/dp: fix IRQ lifetime (git-fixes). - drm/msm/dpu: Fix comment typo (git-fixes). - drm/msm/dpu: index dpu_kms->hw_vbif using vbif_idx (git-fixes). - drm/msm/dsi: fix memory corruption with too many bridges (git-fixes). - drm/msm/hdmi: fix memory corruption with too many bridges (git-fixes). - drm/msm: Fix return type of mdp4_lvds_connector_mode_valid (git-fixes). - drm/msm: Make .remove and .shutdown HW shutdown consistent (git-fixes). - drm/msm: fix use-after-free on probe deferral (git-fixes). - drm/nouveau/kms/nv140-: Disable interlacing (git-fixes). - drm/nouveau/nouveau_bo: fix potential memory leak in nouveau_bo_alloc() (git-fixes). - drm/nouveau: fix a use-after-free in nouveau_gem_prime_import_sg_table() (git-fixes). - drm/nouveau: wait for the exclusive fence after the shared ones v2 (bsc#1152472) Backporting notes: * context changes - drm/omap: dss: Fix refcount leak bugs (git-fixes). - drm/scheduler: quieten kernel-doc warnings (git-fixes). - drm/virtio: Check whether transferred 2D BO is shmem (git-fixes). - drm/virtio: Unlock reservations on virtio_gpu_object_shmem_init() error (git-fixes). - drm: Prevent drm_copy_field() to attempt copying a NULL pointer (git-fixes). - drm: Use size_t type for len variable in drm_copy_field() (git-fixes). - drm: bridge: adv7511: fix CEC power down control register offset (git-fixes). - drm: bridge: dw_hdmi: only trigger hotplug event on link change (git-fixes). - drm: fix drm_mipi_dbi build errors (git-fixes). - drm: panel-orientation-quirks: Add quirk for Anbernic Win600 (git-fixes). - drm:pl111: Add of_node_put() when breaking out of for_each_available_child_of_node() (git-fixes). - drop Dell Dock regression fix patch again (bsc#1204719) - drop verbose nvme logging feature (bsc#1200567) - dt-bindings: crypto: ti,sa2ul: drop dma-coherent property (git-fixes). - dt-bindings: display/msm: dpu-sc7180: add missing DPU opp-table (git-fixes). - dt-bindings: display/msm: dpu-sdm845: add missing DPU opp-table (git-fixes). - dt-bindings: mtd: intel: lgm-nand: Fix compatible string (git-fixes). - dt-bindings: mtd: intel: lgm-nand: Fix maximum chip select value (git-fixes). - dt-bindings: pci: microchip,pcie-host: fix missing clocks properties (git-fixes). - dt-bindings: pci: microchip,pcie-host: fix missing dma-ranges (git-fixes). - dt-bindings: phy: qcom,qmp-usb3-dp: fix bogus clock-cells property (git-fixes). - dt-bindings: phy: qcom,qmp: fix bogus clock-cells property (git-fixes). - dyndbg: fix module.dyndbg handling (git-fixes). - dyndbg: fix static_branch manipulation (git-fixes). - dyndbg: let query-modname override actual module name (git-fixes). - efi: Correct Macmini DMI match in uefi cert quirk (git-fixes). - efi: libstub: drop pointless get_memory_map() call (git-fixes). - fbdev: cyber2000fb: fix missing pci_disable_device() (git-fixes). - fbdev: da8xx-fb: Fix error handling in .remove() (git-fixes). - fec: Fix timer capture timing in `fec_ptp_enable_pps()` (git-fixes). - firmware: arm_scmi: Add SCMI PM driver remove routine (git-fixes). - firmware: arm_scmi: Harden accesses to the sensor domains (git-fixes). - firmware: arm_scmi: Improve checks in the info_get operations (git-fixes). - firmware: google: Test spinlock on panic path to avoid lockups (git-fixes). - fpga: prevent integer overflow in dfl_feature_ioctl_set_irq() (git-fixes). - fs/binfmt_elf: Fix memory leak in load_elf_binary() (git-fixes). - ftrace: Fix char print issue in print_ip_ins() (git-fixes). - ftrace: Properly unset FTRACE_HASH_FL_MOD (git-fixes). - fuse: fix deadlock between atomic O_TRUNC and page invalidation (bsc#1204533). - gcov: support GCC 12.1 and newer compilers (git-fixes). - gpu: lontium-lt9611: Fix NULL pointer dereference in lt9611_connector_init() (git-fixes). - hid: hid-logitech-hidpp: avoid unnecessary assignments in hidpp_connect_event (git-fixes). - hid: hidraw: fix memory leak in hidraw_release() (git-fixes). - hid: magicmouse: Do not set BTN_MOUSE on double report (git-fixes). - hid: multitouch: Add memory barriers (git-fixes). - hid: roccat: Fix use-after-free in roccat_read() (git-fixes). - hinic: Avoid some over memory allocation (git-fixes). - hsi: omap_ssi: Fix refcount leak in ssi_probe (git-fixes). - hsi: omap_ssi_port: Fix dma_map_sg error check (git-fixes). - hwmon/coretemp: Handle large core ID value (git-fixes). - hwmon: (sht4x) do not overflow clamping operation on 32-bit platforms (git-fixes). - i2c: designware: Fix handling of real but unexpected device interrupts (git-fixes). - i2c: i801: Add support for Intel Ice Lake PCH-N (jsc#PED-634). - i2c: i801: Add support for Intel Meteor Lake-P (jsc#PED-732). - i2c: i801: Add support for Intel Raptor Lake PCH-S (jsc#PED-634). - i2c: i801: Improve handling of chip-specific feature definitions (jsc#PED-634). - i2c: qcom-cci: Fix ordering of pm_runtime_xx and i2c_add_adapter (git-fixes). - i40e: Fix call trace in setup_tx_descriptors (git-fixes). - i40e: Fix dropped jumbo frames statistics (git-fixes). - i40e: Fix to stop tx_timeout recovery if GLOBR fails (git-fixes). - iavf: Fix adminq error handling (git-fixes). - iavf: Fix handling of dummy receive descriptors (git-fixes). - iavf: Fix reset error handling (git-fixes). - ib/core: Fix a nested dead lock as part of ODP flow (git-fixes) - ib/rdmavt: Add __init/__exit annotations to module init/exit funcs (git-fixes) - ice: Fix switchdev rules book keeping (git-fixes). - ice: check (DD | EOF) bits on Rx descriptor rather than (EOP | RS) (git-fixes). - ice: do not setup vlan for loopback VSI (git-fixes). - igb: Make DMA faster when CPU is active on the PCIe link (git-fixes). - igb: fix a use-after-free issue in igb_clean_tx_ring (git-fixes). - iio: ABI: Fix wrong format of differential capacitance channel ABI (git-fixes). - iio: adc: ad7923: fix channel readings for some variants (git-fixes). - iio: adc: at91-sama5d2_adc: check return status for pressure and touch (git-fixes). - iio: adc: at91-sama5d2_adc: disable/prepare buffer on suspend/resume (git-fixes). - iio: adc: at91-sama5d2_adc: fix AT91_SAMA5D2_MR_TRACKTIM_MAX (git-fixes). - iio: adc: at91-sama5d2_adc: lock around oversampling and sample freq (git-fixes). - iio: adc: mcp3911: use correct id bits (git-fixes). - iio: adxl372: Fix unsafe buffer attributes (git-fixes). - iio: bmc150-accel-core: Fix unsafe buffer attributes (git-fixes). - iio: dac: ad5593r: Fix i2c read protocol requirements (git-fixes). - iio: inkern: fix return value in devm_of_iio_channel_get_by_name() (git-fixes). - iio: inkern: only release the device node when done with it (git-fixes). - iio: light: tsl2583: Fix module unloading (git-fixes). - iio: ltc2497: Fix reading conversion results (git-fixes). - iio: magnetometer: yas530: Change data type of hard_offsets to signed (git-fixes). - iio: pressure: dps310: Refactor startup procedure (git-fixes). - iio: pressure: dps310: Reset chip after timeout (git-fixes). - iio: temperature: ltc2983: allocate iio channels once (git-fixes). - ima: fix blocking of security.ima xattrs of unsupported algorithms (git-fixes). - input: i8042 - fix refount leak on sparc (git-fixes). - input: synaptics-rmi4 - fix firmware update operations with bootloader v8 (git-fixes). - input: xpad - add supported devices as contributed on github (git-fixes). - input: xpad - fix wireless 360 controller breaking after suspend (git-fixes). - iommu/vt-d: Do not falsely log intel_iommu is unsupported kernel option (bsc#1204947). - ip: Fix data-races around sysctl_ip_fwd_update_priority (git-fixes). - ipv4: Fix data-races around sysctl_fib_multipath_hash_policy (git-fixes). - irqchip/ls-extirq: Fix invalid wait context by avoiding to use regmap (git-fixes). - isdn: mISDN: netjet: fix wrong check of device registration (git-fixes). - ixgbe: Add locking to prevent panic when setting sriov_numvfs to zero (git-fixes). - ixgbe: fix bcast packets Rx on VF after promisc removal (git-fixes). - ixgbe: fix unexpected VLAN Rx in promisc mode on VF (git-fixes). - kABI: Fix after adding trace_iterator.wait_index (git-fixes). - kABI: Fix kABI after backport Add pmc->intr to refactor kvm_perf_overflow{_intr}() (git-fixes). - kABI: Fix kABI after backport Always set kvm_run->if_flag (git-fixes). - kABI: Fix kABI after backport Forcibly leave nested virt when SMM state is toggled (git-fixes). - kABI: Fix kABI after backport Refactoring find_arch_event() to pmc_perf_hw_id() (git-fixes). - kABI: Fix kABI after backport Update vPMCs when retiring branch instructions (git-fixes). - kabi/severities: ignore CS35L41-specific exports (bsc#1203699) - kbuild: Add skip_encoding_btf_enum64 option to pahole (git-fixes). - kbuild: remove the target in signal traps when interrupted (git-fixes). - kbuild: rpm-pkg: fix breakage when V=1 is used (git-fixes). - kernfs: fix use-after-free in __kernfs_remove (git-fixes). - kselftest/arm64: Fix validatation termination record after EXTRA_CONTEXT (git-fixes). - kvm: SVM: Exit to userspace on ENOMEM/EFAULT GHCB errors (git-fixes). - kvm: VMX: Inject #PF on ENCLS as "emulated" #PF (git-fixes). - kvm: fix avic_set_running for preemptable kernels (git-fixes). - kvm: nVMX: Ignore SIPI that arrives in L2 when vCPU is not in WFS (git-fixes). - kvm: nVMX: Unconditionally purge queued/injected events on nested "exit" (git-fixes). - kvm: s390: Clarify SIGP orders versus STOP/RESTART (git-fixes). - kvm: s390: pv: do not present the ecall interrupt twice (bsc#1203229 LTC#199905). - kvm: s390x: fix SCK locking (git-fixes). - kvm: x86/emulator: Fix handing of POP SS to correctly set interruptibility (git-fixes). - kvm: x86/mmu: Do not advance iterator after restart due to yielding (git-fixes). - kvm: x86/mmu: Retry page fault if root is invalidated by memslot update (git-fixes). - kvm: x86/pmu: Add pmc->intr to refactor kvm_perf_overflow{_intr}() (git-fixes). - kvm: x86/pmu: Do not truncate the PerfEvtSeln MSR when creating a perf event (git-fixes). - kvm: x86/pmu: Fix available_event_types check for REF_CPU_CYCLES event (git-fixes). - kvm: x86/pmu: Refactoring find_arch_event() to pmc_perf_hw_id() (git-fixes). - kvm: x86: Add KVM_CAP_ENABLE_CAP to x86 (git-fixes). - kvm: x86: Add compat handler for KVM_X86_SET_MSR_FILTER (git-fixes). - kvm: x86: Always set kvm_run->if_flag (git-fixes). - kvm: x86: Forcibly leave nested virt when SMM state is toggled (git-fixes). - kvm: x86: Inject #UD on emulated XSETBV if XSAVES isn't enabled (git-fixes). - kvm: x86: Keep MSR_IA32_XSS unchanged for INIT (git-fixes). - kvm: x86: Register perf callbacks after calling vendor's hardware_setup() (git-fixes). - kvm: x86: Sync the states size with the XCR0/IA32_XSS at, any time (git-fixes). - kvm: x86: Update vPMCs when retiring branch instructions (git-fixes). - kvm: x86: Update vPMCs when retiring instructions (git-fixes). - kvm: x86: do not report preemption if the steal time cache is stale (git-fixes). - kvm: x86: nSVM/nVMX: set nested_run_pending on VM entry which is a result of RSM (git-fixes). - kvm: x86: nSVM: fix potential NULL derefernce on nested migration (git-fixes). - kvm: x86: nSVM: mark vmcb01 as dirty when restoring SMM saved state (git-fixes). - lib/sg_pool: change module_init(sg_pool_init) to subsys_initcall (git-fixes). - livepatch: Add a missing newline character in klp_module_coming() (bsc#1071995). - livepatch: fix race between fork and KLP transition (bsc#1071995). - mISDN: fix possible memory leak in mISDN_register_device() (git-fixes). - mISDN: hfcpci: Fix use-after-free bug in hfcpci_softirq (git-fixes). - mac802154: Fix LQI recording (git-fixes). - macvlan: enforce a consistent minimal mtu (git-fixes). - mailbox: bcm-ferxrm-mailbox: Fix error check for dma_map_sg (git-fixes). - mailbox: mpfs: account for mbox offsets while sending (git-fixes). - mailbox: mpfs: fix handling of the reg property (git-fixes). - media: atomisp: prevent integer overflow in sh_css_set_black_frame() (git-fixes). - media: cedrus: Fix endless loop in cedrus_h265_skip_bits() (git-fixes). - media: cedrus: Set the platform driver data earlier (git-fixes). - media: cx88: Fix a null-ptr-deref bug in buffer_prepare() (git-fixes). - media: ipu3-imgu: Fix NULL pointer dereference in active selection access (git-fixes). - media: mceusb: set timeout to at least timeout provided (git-fixes). - media: meson: vdec: add missing clk_disable_unprepare on error in vdec_hevc_start() (git-fixes). - media: uvcvideo: Fix memory leak in uvc_gpio_parse (git-fixes). - media: uvcvideo: Use entity get_cur in uvc_ctrl_set (git-fixes). - media: v4l2-compat-ioctl32.c: zero buffer passed to v4l2_compat_get_array_args() (git-fixes). - media: v4l2-dv-timings: add sanity checks for blanking values (git-fixes). - media: v4l2: Fix v4l2_i2c_subdev_set_name function documentation (git-fixes). - media: venus: dec: Handle the case where find_format fails (git-fixes). - media: videodev2.h: V4L2_DV_BT_BLANKING_HEIGHT should check 'interlaced' (git-fixes). - media: vivid: dev->bitmap_cap wasn't freed in all cases (git-fixes). - media: vivid: s_fbuf: add more sanity checks (git-fixes). - media: vivid: set num_in/outputs to 0 if not supported (git-fixes). - media: xilinx: vipp: Fix refcount leak in xvip_graph_dma_init (git-fixes). - memory: of: Fix refcount leak bug in of_get_ddr_timings() (git-fixes). - memory: of: Fix refcount leak bug in of_lpddr3_get_ddr_timings() (git-fixes). - memory: pl353-smc: Fix refcount leak bug in pl353_smc_probe() (git-fixes). - mfd: fsl-imx25: Fix an error handling path in mx25_tsadc_setup_irq() (git-fixes). - mfd: fsl-imx25: Fix check for platform_get_irq() errors (git-fixes). - mfd: intel-lpss: Add Intel Raptor Lake PCH-S PCI IDs (jsc#PED-634). - mfd: intel_soc_pmic: Fix an error handling path in intel_soc_pmic_i2c_probe() (git-fixes). - mfd: lp8788: Fix an error handling path in lp8788_irq_init() and lp8788_irq_init() (git-fixes). - mfd: lp8788: Fix an error handling path in lp8788_probe() (git-fixes). - mfd: sm501: Add check for platform_driver_register() (git-fixes). - misc: ocxl: fix possible refcount leak in afu_ioctl() (git-fixes). - misc: pci_endpoint_test: Aggregate params checking for xfer (git-fixes). - misc: pci_endpoint_test: Fix pci_endpoint_test_{copy,write,read}() panic (git-fixes). - mlxsw: spectrum: Clear PTP configuration after unregistering the netdevice (git-fixes). - mlxsw: spectrum_cnt: Reorder counter pools (git-fixes). - mlxsw: spectrum_router: Fix IPv4 nexthop gateway indication (git-fixes). - mm/hugetlb: fix races when looking up a CONT-PTE/PMD size hugetlb page (bsc#1204575). - mmc: au1xmmc: Fix an error handling path in au1xmmc_probe() (git-fixes). - mmc: core: Fix kernel panic when remove non-standard SDIO card (git-fixes). - mmc: core: Replace with already defined values for readability (git-fixes). - mmc: core: Terminate infinite loop in SD-UHS voltage switch (git-fixes). - mmc: sdhci-esdhc-imx: Propagate ESDHC_FLAG_HS400* only on 8bit bus (git-fixes). - mmc: sdhci-msm: add compatible string check for sdm670 (git-fixes). - mmc: sdhci-pci-core: Disable ES for ASUS BIOS on Jasper Lake (git-fixes). - mmc: sdhci-sprd: Fix minimum clock limit (git-fixes). - mmc: sdhci_am654: 'select', not 'depends' REGMAP_MMIO (git-fixes). - mmc: wmt-sdmmc: Fix an error handling path in wmt_mci_probe() (git-fixes). - move upstreamed BT fixes into sorted section - move upstreamed patches into sorted section - move upstreamed sound patches into sorted section - mtd: devices: docg3: check the return value of devm_ioremap() in the probe (git-fixes). - mtd: rawnand: atmel: Unmap streaming DMA mappings (git-fixes). - mtd: rawnand: fsl_elbc: Fix none ECC mode (git-fixes). - mtd: rawnand: intel: Do not re-define NAND_DATA_IFACE_CHECK_ONLY (git-fixes). - mtd: rawnand: intel: Read the chip-select line from the correct OF node (git-fixes). - mtd: rawnand: intel: Remove undocumented compatible string (git-fixes). - mtd: rawnand: marvell: Use correct logic for nand-keep-config (git-fixes). - mtd: rawnand: meson: fix bit map use in meson_nfc_ecc_correct() (git-fixes). - net/dsa/hirschmann: Add missing of_node_get() in hellcreek_led_setup() (git-fixes). - net/ice: fix initializing the bitmap in the switch code (git-fixes). - net/ieee802154: fix uninit value bug in dgram_sendmsg (git-fixes). - net/mlx4_en: Fix wrong return value on ioctl EEPROM query failure (git-fixes). - net/mlx5e: Disable softirq in mlx5e_activate_rq to avoid race condition (git-fixes). - net/mlx5e: Fix enabling sriov while tc nic rules are offloaded (git-fixes). - net/mlx5e: Properly disable vlan strip on non-UL reps (git-fixes). - net/mlx5e: Remove WARN_ON when trying to offload an unsupported TLS cipher/version (git-fixes). - net/mlx5e: Ring the TX doorbell on DMA errors (git-fixes). - net/mlx5e: TC, fix decap fallback to uplink when int port not supported (git-fixes). - net/mlx5e: Update netdev features after changing XDP state (git-fixes). - net/mlx5e: xsk: Account for XSK RQ UMRs when calculating ICOSQ size (git-fixes). - net: altera: Fix refcount leak in altera_tse_mdio_create (git-fixes). - net: atlantic: fix aq_vec index out of range error (git-fixes). - net: bcmgenet: Indicate MAC is in charge of PHY PM (git-fixes). - net: bgmac: Fix a BUG triggered by wrong bytes_compl (git-fixes). - net: bgmac: Fix an erroneous kfree() in bgmac_remove() (git-fixes). - net: bgmac: support MDIO described in DT (git-fixes). - net: bonding: fix possible NULL deref in rlb code (git-fixes). - net: bonding: fix use-after-free after 802.3ad slave unbind (git-fixes). - net: chelsio: cxgb4: Avoid potential negative array offset (git-fixes). - net: dp83822: disable false carrier interrupt (git-fixes). - net: dp83822: disable rx error interrupt (git-fixes). - net: dsa: bcm_sf2: force pause link settings (git-fixes). - net: dsa: ksz9477: port mirror sniffing limited to one port (git-fixes). - net: dsa: lantiq_gswip: Fix refcount leak in gswip_gphy_fw_list (git-fixes). - net: dsa: microchip: ksz9477: fix fdb_dump last invalid entry (git-fixes). - net: dsa: microchip: ksz_common: Fix refcount leak bug (git-fixes). - net: dsa: mv88e6060: prevent crash on an unused port (git-fixes). - net: dsa: mv88e6xxx: use BMSR_ANEGCOMPLETE bit for filling an_complete (git-fixes). - net: dsa: sja1105: fix buffer overflow in sja1105_setup_devlink_regions() (git-fixes). - net: dsa: sja1105: silent spi_device_id warnings (git-fixes). - net: dsa: vitesse-vsc73xx: silent spi_device_id warnings (git-fixes). - net: ethernet: bgmac: Fix refcount leak in bcma_mdio_mii_register (git-fixes). - net: ethernet: ti: am65-cpsw: Fix devlink port register sequence (git-fixes). - net: ethernet: ti: davinci_mdio: Add workaround for errata i2329 (git-fixes). - net: ethernet: ti: davinci_mdio: fix build for mdio bitbang uses (git-fixes). - net: fix IFF_TX_SKB_NO_LINEAR definition (git-fixes). - net: ftgmac100: Hold reference returned by of_get_child_by_name() (git-fixes). - net: hns3: do not push link state to VF if unalive (git-fixes). - net: hns3: set port base vlan tbl_sta to false before removing old vlan (git-fixes). - net: huawei: hinic: Use devm_kcalloc() instead of devm_kzalloc() (git-fixes). - net: ieee802154: return -EINVAL for unknown addr type (git-fixes). - net: ipa: do not assume SMEM is page-aligned (git-fixes). - net: ipvtap - add __init/__exit annotations to module init/exit funcs (git-fixes). - net: moxa: get rid of asymmetry in DMA mapping/unmapping (git-fixes). - net: moxa: pass pdev instead of ndev to DMA functions (git-fixes). - net: mscc: ocelot: fix address of SYS_COUNT_TX_AGING counter (git-fixes). - net: pcs: xpcs: propagate xpcs_read error to xpcs_get_state_c37_sgmii (git-fixes). - net: phy: dp83822: disable MDI crossover status change interrupt (git-fixes). - net: phy: dp83867: Extend RX strap quirk for SGMII mode (git-fixes). - net: stmmac: fix dma queue left shift overflow issue (git-fixes). - net: stmmac: fix leaks in probe (git-fixes). - net: stmmac: fix pm runtime issue in stmmac_dvr_remove() (git-fixes). - net: stmmac: fix unbalanced ptp clock issue in suspend/resume flow (git-fixes). - net: stmmac: remove redunctant disable xPCS EEE call (git-fixes). - net: sungem_phy: Add of_node_put() for reference returned by of_get_parent() (git-fixes). - net: tap: NULL pointer derefence in dev_parse_header_protocol when skb->dev is null (git-fixes). - net: usb: qmi_wwan: Add new usb-id for Dell branded EM7455 (git-fixes). - net: usb: r8152: Add in new Devices that are supported for Mac-Passthru (git-fixes). - netdevsim: fib: Fix reference count leak on route deletion failure (git-fixes). - nfc: fdp: Fix potential memory leak in fdp_nci_send() (git-fixes). - nfc: nfcmrvl: Fix potential memory leak in nfcmrvl_i2c_nci_send() (git-fixes). - nfc: nxp-nci: Fix potential memory leak in nxp_nci_send() (git-fixes). - nfc: s3fwrn5: Fix potential memory leak in s3fwrn5_nci_send() (git-fixes). - nfp: ethtool: fix the display error of `ethtool -m DEVNAME` (git-fixes). - nfs: Fix another fsync() issue after a server reboot (git-fixes). - nfsv4: Fixes for nfs4_inode_return_delegation() (git-fixes). - nvme: do not print verbose errors for internal passthrough requests (bsc#1202187). - nvmem: core: Check input parameter for NULL in nvmem_unregister() (bsc#1204241). - octeontx2-af: Apply tx nibble fixup always (git-fixes). - octeontx2-af: Fix key checking for source mac (git-fixes). - octeontx2-af: Fix mcam entry resource leak (git-fixes). - octeontx2-af: suppress external profile loading warning (git-fixes). - octeontx2-pf: Fix NIX_AF_TL3_TL2X_LINKX_CFG register configuration (git-fixes). - octeontx2-pf: Fix UDP/TCP src and dst port tc filters (git-fixes). - octeontx2-pf: cn10k: Fix egress ratelimit configuration (git-fixes). - openvswitch: Fix double reporting of drops in dropwatch (git-fixes). - openvswitch: Fix overreporting of drops in dropwatch (git-fixes). - openvswitch: add nf_ct_is_confirmed check before assigning the helper (git-fixes). - openvswitch: switch from WARN to pr_warn (git-fixes). - overflow.h: restore __ab_c_size (git-fixes). - overflow: Implement size_t saturating arithmetic helpers (jsc#PED-1211). - pci/aspm: Correct LTR_L1.2_THRESHOLD computation (git-fixes). - pci/aspm: Ignore L1 PM Substates if device lacks capability (git-fixes). - pci: Fix used_buses calculation in pci_scan_child_bus_extend() (git-fixes). - pci: Sanitise firmware BAR assignments behind a PCI-PCI bridge (git-fixes). - pci: hv: Fix synchronization between channel callback and hv_compose_msi_msg() (bsc#1204017). - pci: hv: Fix synchronization between channel callback and hv_pci_bus_exit() (bsc#1204017). - pci: hv: Use vmbus_requestor to generate transaction IDs for VMbus hardening (bsc#1204017). - pci: mediatek-gen3: Change driver name to mtk-pcie-gen3 (git-fixes). - phy: amlogic: phy-meson-axg-mipi-pcie-analog: Hold reference returned by of_get_parent() (git-fixes). - phy: qualcomm: call clk_disable_unprepare in the error handling (git-fixes). - pinctrl: Ingenic: JZ4755 bug fixes (git-fixes). - pinctrl: alderlake: Add Intel Alder Lake-N pin controller support (jsc#PED-676). - pinctrl: alderlake: Add Raptor Lake-S ACPI ID (jsc#PED-634). - pinctrl: alderlake: Fix register offsets for ADL-N variant (jsc#PED-676). - pinctrl: armada-37xx: Add missing GPIO-only pins (git-fixes). - pinctrl: armada-37xx: Checks for errors in gpio_request_enable callback (git-fixes). - pinctrl: armada-37xx: Fix definitions for MPP pins 20-22 (git-fixes). - pinctrl: microchip-sgpio: Correct the fwnode_irq_get() return value check (git-fixes). - platform/chrome: cros_ec: Notify the PM of wake events during resume (git-fixes). - platform/chrome: cros_ec_proto: Update version on GET_NEXT_EVENT failure (git-fixes). - platform/chrome: cros_ec_typec: Correct alt mode index (git-fixes). - platform/chrome: fix double-free in chromeos_laptop_prepare() (git-fixes). - platform/chrome: fix memory corruption in ioctl (git-fixes). - platform/x86: asus-wmi: Document the dgpu_disable sysfs attribute (git-fixes). - platform/x86: asus-wmi: Document the egpu_enable sysfs attribute (git-fixes). - platform/x86: asus-wmi: Document the panel_od sysfs attribute (git-fixes). - platform/x86: msi-laptop: Change DMI match / alias strings to fix module autoloading (git-fixes). - platform/x86: msi-laptop: Fix old-ec check for backlight registering (git-fixes). - platform/x86: msi-laptop: Fix resource cleanup (git-fixes). - plip: avoid rcu debug splat (git-fixes). - pm: domains: Fix handling of unavailable/disabled idle states (git-fixes). - pm: hibernate: Allow hybrid sleep to work with s2idle (git-fixes). - power: supply: adp5061: fix out-of-bounds read in adp5061_get_chg_type() (git-fixes). - powerpc/64: Remove unused SYS_CALL_TABLE symbol (jsc#SLE-9246 git-fixes). - powerpc/64: pcpu setup avoid reading mmu_linear_psize on 64e or radix (bsc#1204413 ltc#200176). - powerpc/64s: Fix build failure when CONFIG_PPC_64S_HASH_MMU is not set (bsc#1204413 ltc#200176). - powerpc/64s: Make flush_and_reload_slb a no-op when radix is enabled (bsc#1204413 ltc#200176). - powerpc/64s: Make hash MMU support configurable (bsc#1204413 ltc#200176). - powerpc/64s: Move and rename do_bad_slb_fault as it is not hash specific (bsc#1204413 ltc#200176). - powerpc/64s: Move hash MMU support code under CONFIG_PPC_64S_HASH_MMU (bsc#1204413 ltc#200176). - powerpc/64s: Rename hash_hugetlbpage.c to hugetlbpage.c (bsc#1204413 ltc#200176). - powerpc/fadump: align destination address to pagesize (bsc#1204728 ltc#200074). - powerpc/kprobes: Fix null pointer reference in arch_prepare_kprobe() (jsc#SLE-13847 git-fixes). - powerpc/mm/64s: Drop pgd_huge() (bsc#1065729). - powerpc/pci_dn: Add missing of_node_put() (bsc#1065729). - powerpc/powernv: add missing of_node_put() in opal_export_attrs() (bsc#1065729). - powerpc/pseries/vas: Add VAS IRQ primary handler (bsc#1204413 ltc#200176). - powerpc/pseries: Stop selecting PPC_HASH_MMU_NATIVE (bsc#1204413 ltc#200176). - powerpc/pseries: lparcfg do not include slb_size line in radix mode (bsc#1204413 ltc#200176). - powerpc: Ignore DSI error caused by the copy/paste instruction (bsc#1204413 ltc#200176). - powerpc: Rename PPC_NATIVE to PPC_HASH_MMU_NATIVE (bsc#1204413 ltc#200176). Update config files. - powerpc: make memremap_compat_align 64s-only (bsc#1204413 ltc#200176). - printk: add missing memory barrier to wake_up_klogd() (bsc#1204934). - printk: use atomic updates for klogd work (bsc#1204934). - printk: wake waiters for safe and NMI contexts (bsc#1204934). - r8152: add PID for the Lenovo OneLink+ Dock (git-fixes). - rdma/cma: Fix arguments order in net device validation (git-fixes) - rdma/hfi1: Fix potential integer multiplication overflow errors (git-fixes) - rdma/hns: Add the detection for CMDQ status in the device initialization process (git-fixes) - rdma/irdma: Add support for address handle re-use (git-fixes) - rdma/irdma: Align AE id codes to correct flush code and event (git-fixes) - rdma/irdma: Do not advertise 1GB page size for x722 (git-fixes) - rdma/irdma: Fix VLAN connection with wildcard address (git-fixes) - rdma/irdma: Fix a window for use-after-free (git-fixes) - rdma/irdma: Fix setting of QP context err_rq_idx_valid field (git-fixes) - rdma/irdma: Fix sleep from invalid context BUG (git-fixes) - rdma/irdma: Move union irdma_sockaddr to header file (git-fixes) - rdma/irdma: Remove the unnecessary variable saddr (git-fixes) - rdma/irdma: Report RNR NAK generation in device caps (git-fixes) - rdma/irdma: Report the correct max cqes from query device (git-fixes) - rdma/irdma: Return correct WC error for bind operation failure (git-fixes) - rdma/irdma: Return error on MR deregister CQP failure (git-fixes) - rdma/irdma: Use net_type to check network type (git-fixes) - rdma/irdma: Validate udata inlen and outlen (git-fixes) - rdma/mlx5: Add missing check for return value in get namespace flow (git-fixes) - rdma/mlx5: Do not compare mkey tags in DEVX indirect mkey (git-fixes) - rdma/qedr: Fix potential memory leak in __qedr_alloc_mr() (git-fixes) - rdma/qedr: Fix reporting QP timeout attribute (git-fixes) - rdma/rxe: Fix "kernel NULL pointer dereference" error (git-fixes) - rdma/rxe: Fix deadlock in rxe_do_local_ops() (git-fixes) - rdma/rxe: Fix error unwind in rxe_create_qp() (git-fixes) - rdma/rxe: Fix mw bind to allow any consumer key portion (git-fixes) - rdma/rxe: Fix resize_finish() in rxe_queue.c (git-fixes) - rdma/rxe: Fix rnr retry behavior (git-fixes) - rdma/rxe: Fix the error caused by qp->sk (git-fixes) - rdma/rxe: For invalidate compare according to set keys in mr (git-fixes) - rdma/rxe: Generate a completion for unsupported/invalid opcode (git-fixes) - rdma/siw: Always consume all skbuf data in sk_data_ready() upcall. (git-fixes) - rdma/siw: Fix QP destroy to wait for all references dropped. (git-fixes) - rdma/siw: Fix duplicated reported IW_CM_EVENT_CONNECT_REPLY event (git-fixes) - rdma/siw: Pass a pointer to virt_to_page() (git-fixes) - rdma/srp: Fix srp_abort() (git-fixes) - rdma/srp: Handle dev_set_name() failure (git-fixes) - rdma/srp: Rework the srp_add_port() error path (git-fixes) - rdma/srp: Set scmnd->result only when scmnd is not NULL (git-fixes) - rdma/srp: Support more than 255 rdma ports (git-fixes) - rdma/srp: Use the attribute group mechanism for sysfs attributes (git-fixes) - rdma/srpt: Duplicate port name members (git-fixes) - rdma/srpt: Fix a use-after-free (git-fixes) - rdma/srpt: Introduce a reference count in struct srpt_device (git-fixes) - rdma/usnic: fix set-but-not-unused variable 'flags' warning (git-fixes) - rdma: remove useless condition in siw_create_cq() (git-fixes) - regulator: core: Prevent integer underflow (git-fixes). - remoteproc: imx_rproc: Simplify some error message (git-fixes). - revert "SUNRPC: Remove unreachable error condition" (git-fixes). - revert "crypto: qat - reduce size of mapped region" (git-fixes). - revert "drm/amdgpu: use dirty framebuffer helper" (git-fixes). - revert "usb: storage: Add quirk for Samsung Fit flash" (git-fixes). - revert "workqueue: remove unused cancel_work()" (bsc#1204933). - ring-buffer: Add ring_buffer_wake_waiters() (git-fixes). - ring-buffer: Allow splice to read previous partially read pages (git-fixes). - ring-buffer: Check for NULL cpu_buffer in ring_buffer_wake_waiters() (bsc#1204705). - ring-buffer: Check pending waiters when doing wake ups as well (git-fixes). - ring-buffer: Fix race between reset page and reading page (git-fixes). - ring-buffer: Have the shortest_full queue be the shortest not longest (git-fixes). - rose: Fix NULL pointer dereference in rose_send_frame() (git-fixes). - rpm/check-for-config-changes: loosen pattern for AS_HAS_* This is needed to handle CONFIG_AS_HAS_NON_CONST_LEB128. - rpmsg: qcom: glink: replace strncpy() with strscpy_pad() (git-fixes). - rtc: stmp3xxx: Add failure handling for stmp3xxx_wdt_register() (git-fixes). - s390/dasd: fix Oops in dasd_alias_get_start_dev due to missing pavgroup (git-fixes). - s390/smp: enforce lowcore protection on CPU restart (git-fixes). - sbitmap: Avoid leaving waitqueue in invalid state in __sbq_wake_up() (git-fixes). - sbitmap: fix possible io hung due to lost wakeup (git-fixes). - scsi: libsas: Fix use-after-free bug in smp_execute_task_sg() (git-fixes). - scsi: lpfc: Create a sysfs entry called lpfc_xcvr_data for transceiver info (bsc#1204957). - scsi: lpfc: Fix hard lockup when reading the rx_monitor from debugfs (bsc#1204957). - scsi: lpfc: Fix memory leak in lpfc_create_port() (bsc#1204957). - scsi: lpfc: Fix spelling mistake "unsolicted" -> "unsolicited" (bsc#1204957). - scsi: lpfc: Log when congestion management limits are in effect (bsc#1204957). - scsi: lpfc: Set sli4_param's cmf option to zero when CMF is turned off (bsc#1204957). - scsi: lpfc: Update lpfc version to 14.2.0.8 (bsc#1204957). - scsi: lpfc: Update the obsolete adapter list (bsc#1204142). - scsi: mpi3mr: Schedule IRQ kthreads only on non-RT kernels (bnc#1204498). - scsi: qla2xxx: Fix serialization of DCBX TLV data request (bsc#1204963). - scsi: qla2xxx: Use transport-defined speed mask for supported_speeds (bsc#1204963). - scsi: scsi_transport_fc: Use %u for dev_loss_tmo (bsc#1202914). - scsi: ufs: ufs-pci: Add support for Intel ADL (jsc#PED-707). - scsi: ufs: ufs-pci: Add support for Intel MTL (jsc#PED-732). - selftest: tpm2: Add Client.__del__() to close /dev/tpm* handle (git-fixes). - selftests/livepatch: better synchronize test_klp_callbacks_busy (bsc#1071995). - selftests/pidfd_test: Remove the erroneous ',' (git-fixes). - selftests/powerpc: Skip energy_scale_info test on older firmware (git-fixes). - selftests: netfilter: Fix nft_fib.sh for all.rp_filter=1 (git-fixes). - selinux: allow FIOCLEX and FIONCLEX with policy capability (git-fixes). - selinux: enable use of both GFP_KERNEL and GFP_ATOMIC in convert_context() (git-fixes). - selinux: use "grep -E" instead of "egrep" (git-fixes). - serial: 8250: Fix restoring termios speed after suspend (git-fixes). - serial: core: move RS485 configuration tasks from drivers into core (git-fixes). - sfc: disable softirqs for ptp TX (git-fixes). - sfc: fix kernel panic when creating VF (git-fixes). - sfc: fix use after free when disabling sriov (git-fixes). - signal: break out of wait loops on kthread_stop() (bsc#1204926). - slimbus: qcom-ngd: cleanup in probe error path (git-fixes). - slimbus: qcom-ngd: use correct error in message of pdr_add_lookup() failure (git-fixes). - soc/tegra: fuse: Drop Kconfig dependency on TEGRA20_APB_DMA (git-fixes). - soc: qcom: smem_state: Add refcounting for the 'state->of_node' (git-fixes). - soc: qcom: smsm: Fix refcount leak bugs in qcom_smsm_probe() (git-fixes). - soc: sunxi: sram: Fix probe function ordering issues (git-fixes). - soc: sunxi_sram: Make use of the helper function devm_platform_ioremap_resource() (git-fixes). - soundwire: cadence: Do not overwrite msg->buf during write commands (git-fixes). - soundwire: intel: fix error handling on dai registration issues (git-fixes). - spi: Ensure that sg_table won't be used after being freed (git-fixes). - spi: pxa2xx: Add support for Intel Meteor Lake-P (jsc#PED-732). - spi: pxa2xx: Add support for Intel Raptor Lake PCH-S (jsc#PED-634). - spmi: pmic-arb: correct duplicate APID to PPID mapping logic (git-fixes). - spmi: pmic-arb: do not ack and clear peripheral interrupts in cleanup_irq (git-fixes). - staging: rtl8723bs: fix a potential memory leak in rtw_init_cmd_priv() (git-fixes). - staging: rtl8723bs: fix potential memory leak in rtw_init_drv_sw() (git-fixes). - staging: vt6655: fix potential memory leak (git-fixes). - staging: vt6655: fix some erroneous memory clean-up loops (git-fixes). - stmmac: intel: Add a missing clk_disable_unprepare() call in intel_eth_pci_remove() (git-fixes). - stmmac: intel: Fix an error handling path in intel_eth_pci_probe() (git-fixes). - thermal/drivers/qcom/tsens-v0_1: Fix MSM8939 fourth sensor hw_id (git-fixes). - thermal: cpufreq_cooling: Check the policy first in cpufreq_cooling_register() (git-fixes). - thermal: int340x: Mode setting with new OS handshake (jsc#PED-678). - thermal: int340x: Update OS policy capability handshake (jsc#PED-678). - thermal: intel_powerclamp: Use first online CPU as control_cpu (git-fixes). - thermal: intel_powerclamp: Use get_cpu() instead of smp_processor_id() to avoid crash (git-fixes). - thunderbolt: Add back Intel Falcon Ridge end-to-end flow control workaround (git-fixes). - thunderbolt: Add missing device ID to tb_switch_is_alpine_ridge() (git-fixes). - thunderbolt: Add support for Intel Raptor Lake (jsc#PED-634). - thunderbolt: Disable LTTPR on Intel Titan Ridge (git-fixes). - thunderbolt: Explicitly enable lane adapter hotplug events at startup (git-fixes). - thunderbolt: Explicitly reset plug events delay back to USB4 spec value (git-fixes). - thunderbolt: Fix buffer allocation of devices with no DisplayPort adapters (git-fixes). - tracing/osnoise: Fix possible recursive locking in stop_per_cpu_kthreads (git-fixes). - tracing: Add "(fault)" name injection to kernel probes (git-fixes). - tracing: Add ioctl() to force ring buffer waiters to wake up (git-fixes). - tracing: Disable interrupt or preemption before acquiring arch_spinlock_t (git-fixes). - tracing: Do not free snapshot if tracer is on cmdline (git-fixes). - tracing: Fix reading strings from synthetic events (git-fixes). - tracing: Move duplicate code of trace_kprobe/eprobe.c into header (git-fixes). - tracing: Replace deprecated CPU-hotplug functions (git-fixes). - tracing: Simplify conditional compilation code in tracing_set_tracer() (git-fixes). - tracing: Wake up ring buffer waiters on closing of the file (git-fixes). - tracing: Wake up waiters when tracing is disabled (git-fixes). - tracing: kprobe: Fix kprobe event gen test module on exit (git-fixes).++ kernel-source.spec (revision 4)Release: <RELEASE>.g76cfe60Provides: %name-srchash-76cfe60e3ab724313d9fba4cf5ebaf12ad49ea0e - tracing: kprobe: Make gen test module work in arm and riscv (git-fixes). - tty: serial: fsl_lpuart: disable dma rx/tx use flags in lpuart_dma_shutdown (git-fixes). - tty: xilinx_uartps: Fix the ignore_status (git-fixes). - uas: add no-uas quirk for Hiksemi usb_disk (git-fixes). - uas: ignore UAS for Thinkplus chips (git-fixes). - udmabuf: Set ubuf->sg = NULL if the creation of sg table fails (git-fixes). - update kabi files. Refresh from Nov 2022 MU - 5.14.21-150400.24.28.1 - update patches.suse/kbuild-Add-skip_encoding_btf_enum64-option-to-pahole.patch (bsc#1204693). - usb-storage: Add Hiksemi USB3-FW to IGNORE_UAS (git-fixes). - usb/hcd: Fix dma_map_sg error check (git-fixes). - usb: add RESET_RESUME quirk for NVIDIA Jetson devices in RCM (git-fixes). - usb: add quirks for Lenovo OneLink+ Dock (git-fixes). - usb: bdc: change state when port disconnected (git-fixes). - usb: cdc-wdm: Use skb_put_data() instead of skb_put/memcpy pair (git-fixes). - usb: common: debug: Check non-standard control requests (git-fixes). - usb: dwc3: core: Enable GUCTL1 bit 10 for fixing termination error after resume bug (git-fixes). - usb: dwc3: gadget: Do not set IMI for no_interrupt (git-fixes). - usb: dwc3: gadget: Stop processing more requests on IMI (git-fixes). - usb: ehci: Fix a function name in comments (git-fixes). - usb: gadget: bdc: fix typo in comment (git-fixes). - usb: gadget: f_fs: stricter integer overflow checks (git-fixes). - usb: gadget: function: fix dangling pnp_string in f_printer.c (git-fixes). - usb: host: xhci-plat: suspend and resume clocks (git-fixes). - usb: host: xhci-plat: suspend/resume clks for brcm (git-fixes). - usb: host: xhci: Fix potential memory leak in xhci_alloc_stream_info() (git-fixes). - usb: idmouse: fix an uninit-value in idmouse_open (git-fixes). - usb: mon: make mmapped memory read only (git-fixes). - usb: mtu3: fix failed runtime suspend in host only mode (git-fixes). - usb: musb: Fix musb_gadget.c rxstate overflow bug (git-fixes). - usb: serial: console: move mutex_unlock() before usb_serial_put() (git-fixes). - usb: serial: ftdi_sio: fix 300 bps rate for SIO (git-fixes). - usb: serial: qcserial: add new usb-id for Dell branded EM7455 (git-fixes). - usb: typec: tcpm: fix typo in comment (git-fixes). - usb: xhci: add XHCI_SPURIOUS_SUCCESS to ASM1042 despite being a V0.96 controller (git-fixes). - virt: vbox: convert to use dev_groups (git-fixes). - vsock: fix possible infinite sleep in vsock_connectible_wait_data() (git-fixes). - vsock: remove the unused 'wait' in vsock_connectible_recvmsg() (git-fixes). - watchdog/hpwdt: Include nmi.h only if CONFIG_HPWDT_NMI_DECODING (git-fixes). - watchdog: armada_37xx_wdt: Fix .set_timeout callback (git-fixes). - watchdog: ftwdt010_wdt: fix test for platform_get_irq() failure (git-fixes). - wifi: ath9k: avoid uninit memory read in ath9k_htc_rx_msg() (git-fixes). - wifi: brcmfmac: fix invalid address access when enabling SCAN log level (git-fixes). - wifi: brcmfmac: fix use-after-free bug in brcmf_netdev_start_xmit() (git-fixes). - wifi: cfg80211/mac80211: reject bad MBSSID elements (git-fixes). - wifi: cfg80211: fix ieee80211_data_to_8023_exthdr handling of small packets (git-fixes). - wifi: cfg80211: update hidden BSSes to avoid WARN_ON (git-fixes). - wifi: iwlwifi: mvm: fix double list_add at iwl_mvm_mac_wake_tx_queue (other cases) (git-fixes). - wifi: mac80211: do not drop packets smaller than the LLC-SNAP header on fast-rx (git-fixes). - wifi: mac80211: fix decap offload for stations on AP_VLAN interfaces (git-fixes). - wifi: mac80211: fix probe req HE capabilities access (git-fixes). - wifi: mac80211_hwsim: avoid mac80211 warning on bad rate (git-fixes). - wifi: mt76: mt7921: reset msta->airtime_ac while clearing up hw value (git-fixes). - wifi: rt2x00: correctly set BBP register 86 for MT7620 (git-fixes). - wifi: rt2x00: do not run Rt5592 IQ calibration on MT7620 (git-fixes). - wifi: rt2x00: set SoC wmac clock register (git-fixes). - wifi: rt2x00: set VGC gain for both chains of MT7620 (git-fixes). - wifi: rt2x00: set correct TX_SW_CFG1 MAC register for MT7620 (git-fixes). - wwan_hwsim: fix possible memory leak in wwan_hwsim_dev_new() (git-fixes). - x86/boot: Do not propagate uninitialized boot_params->cc_blob_address (bsc#1204970). - x86/boot: Fix the setup data types max limit (bsc#1204970). - x86/compressed/64: Add identity mappings for setup_data entries (bsc#1204970). - x86/sev: Annotate stack change in the #VC handler (bsc#1204970). - x86/sev: Do not use cc_platform_has() for early SEV-SNP calls (bsc#1204970). - x86/sev: Remove duplicated assignment to variable info (bsc#1204970). - xen/gntdev: Prevent leaking grants (git-fixes). - xhci-pci: Set runtime PM as default policy on all xHC 1.2 or later devices (git-fixes). - xhci: Add quirk to reset host back to default state at shutdown (git-fixes). - xhci: Do not show warning for reinit on known broken suspend (git-fixes). - xhci: Remove device endpoints from bandwidth list when freeing the device (git-fixes). - xhci: dbc: Fix memory leak in xhci_alloc_dbc() (git-fixes). Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4072=1 - SUSE Linux Enterprise Workstation Extension 15-SP4: zypper in -t patch SUSE-SLE-Product-WE-15-SP4-2022-4072=1 - SUSE Linux Enterprise Module for Live Patching 15-SP4: zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2022-4072=1 Please note that this is the initial kernel livepatch without fixes itself, this livepatch package is later updated by seperate standalone livepatch updates. - SUSE Linux Enterprise Module for Legacy Software 15-SP4: zypper in -t patch SUSE-SLE-Module-Legacy-15-SP4-2022-4072=1 - SUSE Linux Enterprise Module for Development Tools 15-SP4: zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP4-2022-4072=1 - SUSE Linux Enterprise Module for Basesystem 15-SP4: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2022-4072=1 - SUSE Linux Enterprise Micro 5.3: zypper in -t patch SUSE-SLE-Micro-5.3-2022-4072=1 - SUSE Linux Enterprise High Availability 15-SP4: zypper in -t patch SUSE-SLE-Product-HA-15-SP4-2022-4072=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): cluster-md-kmp-default-5.14.21-150400.24.33.2 cluster-md-kmp-default-debuginfo-5.14.21-150400.24.33.2 dlm-kmp-default-5.14.21-150400.24.33.2 dlm-kmp-default-debuginfo-5.14.21-150400.24.33.2 gfs2-kmp-default-5.14.21-150400.24.33.2 gfs2-kmp-default-debuginfo-5.14.21-150400.24.33.2 kernel-default-5.14.21-150400.24.33.2 kernel-default-base-5.14.21-150400.24.33.2.150400.24.11.4 kernel-default-base-rebuild-5.14.21-150400.24.33.2.150400.24.11.4 kernel-default-debuginfo-5.14.21-150400.24.33.2 kernel-default-debugsource-5.14.21-150400.24.33.2 kernel-default-devel-5.14.21-150400.24.33.2 kernel-default-devel-debuginfo-5.14.21-150400.24.33.2 kernel-default-extra-5.14.21-150400.24.33.2 kernel-default-extra-debuginfo-5.14.21-150400.24.33.2 kernel-default-livepatch-5.14.21-150400.24.33.2 kernel-default-livepatch-devel-5.14.21-150400.24.33.2 kernel-default-optional-5.14.21-150400.24.33.2 kernel-default-optional-debuginfo-5.14.21-150400.24.33.2 kernel-obs-build-5.14.21-150400.24.33.1 kernel-obs-build-debugsource-5.14.21-150400.24.33.1 kernel-obs-qa-5.14.21-150400.24.33.1 kernel-syms-5.14.21-150400.24.33.1 kselftests-kmp-default-5.14.21-150400.24.33.2 kselftests-kmp-default-debuginfo-5.14.21-150400.24.33.2 ocfs2-kmp-default-5.14.21-150400.24.33.2 ocfs2-kmp-default-debuginfo-5.14.21-150400.24.33.2 reiserfs-kmp-default-5.14.21-150400.24.33.2 reiserfs-kmp-default-debuginfo-5.14.21-150400.24.33.2 - openSUSE Leap 15.4 (aarch64 ppc64le x86_64): kernel-kvmsmall-5.14.21-150400.24.33.2 kernel-kvmsmall-debuginfo-5.14.21-150400.24.33.2 kernel-kvmsmall-debugsource-5.14.21-150400.24.33.2 kernel-kvmsmall-devel-5.14.21-150400.24.33.2 kernel-kvmsmall-devel-debuginfo-5.14.21-150400.24.33.2 kernel-kvmsmall-livepatch-devel-5.14.21-150400.24.33.2 - openSUSE Leap 15.4 (ppc64le x86_64): kernel-debug-5.14.21-150400.24.33.2 kernel-debug-debuginfo-5.14.21-150400.24.33.2 kernel-debug-debugsource-5.14.21-150400.24.33.2 kernel-debug-devel-5.14.21-150400.24.33.2 kernel-debug-devel-debuginfo-5.14.21-150400.24.33.2 kernel-debug-livepatch-devel-5.14.21-150400.24.33.2 - openSUSE Leap 15.4 (aarch64): cluster-md-kmp-64kb-5.14.21-150400.24.33.2 cluster-md-kmp-64kb-debuginfo-5.14.21-150400.24.33.2 dlm-kmp-64kb-5.14.21-150400.24.33.2 dlm-kmp-64kb-debuginfo-5.14.21-150400.24.33.2 dtb-allwinner-5.14.21-150400.24.33.1 dtb-altera-5.14.21-150400.24.33.1 dtb-amazon-5.14.21-150400.24.33.1 dtb-amd-5.14.21-150400.24.33.1 dtb-amlogic-5.14.21-150400.24.33.1 dtb-apm-5.14.21-150400.24.33.1 dtb-apple-5.14.21-150400.24.33.1 dtb-arm-5.14.21-150400.24.33.1 dtb-broadcom-5.14.21-150400.24.33.1 dtb-cavium-5.14.21-150400.24.33.1 dtb-exynos-5.14.21-150400.24.33.1 dtb-freescale-5.14.21-150400.24.33.1 dtb-hisilicon-5.14.21-150400.24.33.1 dtb-lg-5.14.21-150400.24.33.1 dtb-marvell-5.14.21-150400.24.33.1 dtb-mediatek-5.14.21-150400.24.33.1 dtb-nvidia-5.14.21-150400.24.33.1 dtb-qcom-5.14.21-150400.24.33.1 dtb-renesas-5.14.21-150400.24.33.1 dtb-rockchip-5.14.21-150400.24.33.1 dtb-socionext-5.14.21-150400.24.33.1 dtb-sprd-5.14.21-150400.24.33.1 dtb-xilinx-5.14.21-150400.24.33.1 gfs2-kmp-64kb-5.14.21-150400.24.33.2 gfs2-kmp-64kb-debuginfo-5.14.21-150400.24.33.2 kernel-64kb-5.14.21-150400.24.33.2 kernel-64kb-debuginfo-5.14.21-150400.24.33.2 kernel-64kb-debugsource-5.14.21-150400.24.33.2 kernel-64kb-devel-5.14.21-150400.24.33.2 kernel-64kb-devel-debuginfo-5.14.21-150400.24.33.2 kernel-64kb-extra-5.14.21-150400.24.33.2 kernel-64kb-extra-debuginfo-5.14.21-150400.24.33.2 kernel-64kb-livepatch-devel-5.14.21-150400.24.33.2 kernel-64kb-optional-5.14.21-150400.24.33.2 kernel-64kb-optional-debuginfo-5.14.21-150400.24.33.2 kselftests-kmp-64kb-5.14.21-150400.24.33.2 kselftests-kmp-64kb-debuginfo-5.14.21-150400.24.33.2 ocfs2-kmp-64kb-5.14.21-150400.24.33.2 ocfs2-kmp-64kb-debuginfo-5.14.21-150400.24.33.2 reiserfs-kmp-64kb-5.14.21-150400.24.33.2 reiserfs-kmp-64kb-debuginfo-5.14.21-150400.24.33.2 - openSUSE Leap 15.4 (noarch): kernel-devel-5.14.21-150400.24.33.1 kernel-docs-5.14.21-150400.24.33.2 kernel-docs-html-5.14.21-150400.24.33.2 kernel-macros-5.14.21-150400.24.33.1 kernel-source-5.14.21-150400.24.33.1 kernel-source-vanilla-5.14.21-150400.24.33.1 - openSUSE Leap 15.4 (s390x): kernel-zfcpdump-5.14.21-150400.24.33.2 kernel-zfcpdump-debuginfo-5.14.21-150400.24.33.2 kernel-zfcpdump-debugsource-5.14.21-150400.24.33.2 - SUSE Linux Enterprise Workstation Extension 15-SP4 (x86_64): kernel-default-debuginfo-5.14.21-150400.24.33.2 kernel-default-debugsource-5.14.21-150400.24.33.2 kernel-default-extra-5.14.21-150400.24.33.2 kernel-default-extra-debuginfo-5.14.21-150400.24.33.2 - SUSE Linux Enterprise Module for Live Patching 15-SP4 (ppc64le s390x x86_64): kernel-default-debuginfo-5.14.21-150400.24.33.2 kernel-default-debugsource-5.14.21-150400.24.33.2 kernel-default-livepatch-5.14.21-150400.24.33.2 kernel-default-livepatch-devel-5.14.21-150400.24.33.2 kernel-livepatch-5_14_21-150400_24_33-default-1-150400.9.3.4 kernel-livepatch-5_14_21-150400_24_33-default-debuginfo-1-150400.9.3.4 kernel-livepatch-SLE15-SP4_Update_5-debugsource-1-150400.9.3.4 - SUSE Linux Enterprise Module for Legacy Software 15-SP4 (aarch64 ppc64le s390x x86_64): kernel-default-debuginfo-5.14.21-150400.24.33.2 kernel-default-debugsource-5.14.21-150400.24.33.2 reiserfs-kmp-default-5.14.21-150400.24.33.2 reiserfs-kmp-default-debuginfo-5.14.21-150400.24.33.2 - SUSE Linux Enterprise Module for Development Tools 15-SP4 (aarch64 ppc64le s390x x86_64): kernel-obs-build-5.14.21-150400.24.33.1 kernel-obs-build-debugsource-5.14.21-150400.24.33.1 kernel-syms-5.14.21-150400.24.33.1 - SUSE Linux Enterprise Module for Development Tools 15-SP4 (noarch): kernel-docs-5.14.21-150400.24.33.2 kernel-source-5.14.21-150400.24.33.1 - SUSE Linux Enterprise Module for Basesystem 15-SP4 (aarch64 ppc64le s390x x86_64): kernel-default-5.14.21-150400.24.33.2 kernel-default-base-5.14.21-150400.24.33.2.150400.24.11.4 kernel-default-debuginfo-5.14.21-150400.24.33.2 kernel-default-debugsource-5.14.21-150400.24.33.2 kernel-default-devel-5.14.21-150400.24.33.2 kernel-default-devel-debuginfo-5.14.21-150400.24.33.2 - SUSE Linux Enterprise Module for Basesystem 15-SP4 (aarch64): kernel-64kb-5.14.21-150400.24.33.2 kernel-64kb-debuginfo-5.14.21-150400.24.33.2 kernel-64kb-debugsource-5.14.21-150400.24.33.2 kernel-64kb-devel-5.14.21-150400.24.33.2 kernel-64kb-devel-debuginfo-5.14.21-150400.24.33.2 - SUSE Linux Enterprise Module for Basesystem 15-SP4 (noarch): kernel-devel-5.14.21-150400.24.33.1 kernel-macros-5.14.21-150400.24.33.1 - SUSE Linux Enterprise Module for Basesystem 15-SP4 (s390x): kernel-zfcpdump-5.14.21-150400.24.33.2 kernel-zfcpdump-debuginfo-5.14.21-150400.24.33.2 kernel-zfcpdump-debugsource-5.14.21-150400.24.33.2 - SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64): kernel-default-5.14.21-150400.24.33.2 kernel-default-base-5.14.21-150400.24.33.2.150400.24.11.4 kernel-default-debuginfo-5.14.21-150400.24.33.2 kernel-default-debugsource-5.14.21-150400.24.33.2 - SUSE Linux Enterprise High Availability 15-SP4 (aarch64 ppc64le s390x x86_64): cluster-md-kmp-default-5.14.21-150400.24.33.2 cluster-md-kmp-default-debuginfo-5.14.21-150400.24.33.2 dlm-kmp-default-5.14.21-150400.24.33.2 dlm-kmp-default-debuginfo-5.14.21-150400.24.33.2 gfs2-kmp-default-5.14.21-150400.24.33.2 gfs2-kmp-default-debuginfo-5.14.21-150400.24.33.2 kernel-default-debuginfo-5.14.21-150400.24.33.2 kernel-default-debugsource-5.14.21-150400.24.33.2 ocfs2-kmp-default-5.14.21-150400.24.33.2 ocfs2-kmp-default-debuginfo-5.14.21-150400.24.33.2 References: https://www.suse.com/security/cve/CVE-2022-1882.html https://www.suse.com/security/cve/CVE-2022-2153.html https://www.suse.com/security/cve/CVE-2022-28748.html https://www.suse.com/security/cve/CVE-2022-2964.html https://www.suse.com/security/cve/CVE-2022-2978.html https://www.suse.com/security/cve/CVE-2022-3169.html https://www.suse.com/security/cve/CVE-2022-33981.html https://www.suse.com/security/cve/CVE-2022-3424.html https://www.suse.com/security/cve/CVE-2022-3435.html https://www.suse.com/security/cve/CVE-2022-3521.html https://www.suse.com/security/cve/CVE-2022-3524.html https://www.suse.com/security/cve/CVE-2022-3526.html https://www.suse.com/security/cve/CVE-2022-3535.html https://www.suse.com/security/cve/CVE-2022-3542.html https://www.suse.com/security/cve/CVE-2022-3545.html https://www.suse.com/security/cve/CVE-2022-3565.html https://www.suse.com/security/cve/CVE-2022-3577.html https://www.suse.com/security/cve/CVE-2022-3586.html https://www.suse.com/security/cve/CVE-2022-3594.html https://www.suse.com/security/cve/CVE-2022-3619.html https://www.suse.com/security/cve/CVE-2022-3621.html https://www.suse.com/security/cve/CVE-2022-3625.html https://www.suse.com/security/cve/CVE-2022-3628.html https://www.suse.com/security/cve/CVE-2022-3629.html https://www.suse.com/security/cve/CVE-2022-3633.html https://www.suse.com/security/cve/CVE-2022-3640.html https://www.suse.com/security/cve/CVE-2022-3646.html https://www.suse.com/security/cve/CVE-2022-3649.html https://www.suse.com/security/cve/CVE-2022-40476.html https://www.suse.com/security/cve/CVE-2022-40768.html https://www.suse.com/security/cve/CVE-2022-42703.html https://www.suse.com/security/cve/CVE-2022-43750.html https://bugzilla.suse.com/1065729 https://bugzilla.suse.com/1071995 https://bugzilla.suse.com/1152472 https://bugzilla.suse.com/1152489 https://bugzilla.suse.com/1188238 https://bugzilla.suse.com/1194869 https://bugzilla.suse.com/1196018 https://bugzilla.suse.com/1196632 https://bugzilla.suse.com/1199904 https://bugzilla.suse.com/1200567 https://bugzilla.suse.com/1200692 https://bugzilla.suse.com/1200788 https://bugzilla.suse.com/1202187 https://bugzilla.suse.com/1202686 https://bugzilla.suse.com/1202700 https://bugzilla.suse.com/1202914 https://bugzilla.suse.com/1203098 https://bugzilla.suse.com/1203229 https://bugzilla.suse.com/1203290 https://bugzilla.suse.com/1203435 https://bugzilla.suse.com/1203514 https://bugzilla.suse.com/1203699 https://bugzilla.suse.com/1203767 https://bugzilla.suse.com/1203802 https://bugzilla.suse.com/1203922 https://bugzilla.suse.com/1204017 https://bugzilla.suse.com/1204142 https://bugzilla.suse.com/1204166 https://bugzilla.suse.com/1204168 https://bugzilla.suse.com/1204171 https://bugzilla.suse.com/1204241 https://bugzilla.suse.com/1204353 https://bugzilla.suse.com/1204354 https://bugzilla.suse.com/1204355 https://bugzilla.suse.com/1204402 https://bugzilla.suse.com/1204413 https://bugzilla.suse.com/1204415 https://bugzilla.suse.com/1204417 https://bugzilla.suse.com/1204428 https://bugzilla.suse.com/1204431 https://bugzilla.suse.com/1204439 https://bugzilla.suse.com/1204470 https://bugzilla.suse.com/1204479 https://bugzilla.suse.com/1204498 https://bugzilla.suse.com/1204533 https://bugzilla.suse.com/1204569 https://bugzilla.suse.com/1204574 https://bugzilla.suse.com/1204575 https://bugzilla.suse.com/1204619 https://bugzilla.suse.com/1204635 https://bugzilla.suse.com/1204637 https://bugzilla.suse.com/1204646 https://bugzilla.suse.com/1204647 https://bugzilla.suse.com/1204650 https://bugzilla.suse.com/1204653 https://bugzilla.suse.com/1204693 https://bugzilla.suse.com/1204705 https://bugzilla.suse.com/1204719 https://bugzilla.suse.com/1204728 https://bugzilla.suse.com/1204753 https://bugzilla.suse.com/1204868 https://bugzilla.suse.com/1204926 https://bugzilla.suse.com/1204933 https://bugzilla.suse.com/1204934 https://bugzilla.suse.com/1204947 https://bugzilla.suse.com/1204957 https://bugzilla.suse.com/1204963 https://bugzilla.suse.com/1204970

1 0

SUSE-SU-2022:4071-1: important: Security update for python39
by opensuse-security＠opensuse.org 18 Nov '22

18 Nov '22

SUSE Security Update: Security update for python39 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4071-1 Rating: important References: #1204886 #1205244 Cross-References: CVE-2022-42919 CVE-2022-45061 CVSS scores: CVE-2022-42919 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-42919 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-45061 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-45061 (SUSE): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: SUSE Enterprise Storage 7.1 SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Module for Development Tools 15-SP3 SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.2 openSUSE Leap 15.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for python39 fixes the following issues: Security fixes: - CVE-2022-42919: Fixed local privilege escalation via the multiprocessing forkserver start method (bsc#1204886). - CVE-2022-45061: Fixed a quadratic IDNA decoding time (bsc#1205244). Other fixes: - Allow building of documentation with the latest Sphinx 5.3.0 (gh#python/cpython#98366). - Update to 3.9.15: - Fix multiplying a list by an integer (list *= int): detect the integer overflow when the new allocated length is close to the maximum size. - Fix a shell code injection vulnerability in the get-remote-certificate.py example script. The script no longer uses a shell to run openssl commands. (originally filed as CVE-2022-37460, later withdrawn) - Fix command line parsing: reject -X int_max_str_digits option with no value (invalid) when the PYTHONINTMAXSTRDIGITS environment variable is set to a valid limit. - When ValueError is raised if an integer is larger than the limit, mention the sys.set_int_max_str_digits() function in the error message. - Update bundled libexpat to 2.4.9 Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4071=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4071=1 - SUSE Linux Enterprise Module for Development Tools 15-SP3: zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP3-2022-4071=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2022-4071=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): libpython3_9-1_0-3.9.15-150300.4.21.1 libpython3_9-1_0-debuginfo-3.9.15-150300.4.21.1 python39-3.9.15-150300.4.21.1 python39-base-3.9.15-150300.4.21.1 python39-base-debuginfo-3.9.15-150300.4.21.1 python39-core-debugsource-3.9.15-150300.4.21.1 python39-curses-3.9.15-150300.4.21.1 python39-curses-debuginfo-3.9.15-150300.4.21.1 python39-dbm-3.9.15-150300.4.21.1 python39-dbm-debuginfo-3.9.15-150300.4.21.1 python39-debuginfo-3.9.15-150300.4.21.1 python39-debugsource-3.9.15-150300.4.21.1 python39-devel-3.9.15-150300.4.21.1 python39-doc-3.9.15-150300.4.21.1 python39-doc-devhelp-3.9.15-150300.4.21.1 python39-idle-3.9.15-150300.4.21.1 python39-testsuite-3.9.15-150300.4.21.1 python39-testsuite-debuginfo-3.9.15-150300.4.21.1 python39-tk-3.9.15-150300.4.21.1 python39-tk-debuginfo-3.9.15-150300.4.21.1 python39-tools-3.9.15-150300.4.21.1 - openSUSE Leap 15.4 (x86_64): libpython3_9-1_0-32bit-3.9.15-150300.4.21.1 libpython3_9-1_0-32bit-debuginfo-3.9.15-150300.4.21.1 python39-32bit-3.9.15-150300.4.21.1 python39-32bit-debuginfo-3.9.15-150300.4.21.1 python39-base-32bit-3.9.15-150300.4.21.1 python39-base-32bit-debuginfo-3.9.15-150300.4.21.1 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): libpython3_9-1_0-3.9.15-150300.4.21.1 libpython3_9-1_0-debuginfo-3.9.15-150300.4.21.1 python39-3.9.15-150300.4.21.1 python39-base-3.9.15-150300.4.21.1 python39-base-debuginfo-3.9.15-150300.4.21.1 python39-core-debugsource-3.9.15-150300.4.21.1 python39-curses-3.9.15-150300.4.21.1 python39-curses-debuginfo-3.9.15-150300.4.21.1 python39-dbm-3.9.15-150300.4.21.1 python39-dbm-debuginfo-3.9.15-150300.4.21.1 python39-debuginfo-3.9.15-150300.4.21.1 python39-debugsource-3.9.15-150300.4.21.1 python39-devel-3.9.15-150300.4.21.1 python39-doc-3.9.15-150300.4.21.1 python39-doc-devhelp-3.9.15-150300.4.21.1 python39-idle-3.9.15-150300.4.21.1 python39-testsuite-3.9.15-150300.4.21.1 python39-testsuite-debuginfo-3.9.15-150300.4.21.1 python39-tk-3.9.15-150300.4.21.1 python39-tk-debuginfo-3.9.15-150300.4.21.1 python39-tools-3.9.15-150300.4.21.1 - openSUSE Leap 15.3 (x86_64): libpython3_9-1_0-32bit-3.9.15-150300.4.21.1 libpython3_9-1_0-32bit-debuginfo-3.9.15-150300.4.21.1 python39-32bit-3.9.15-150300.4.21.1 python39-32bit-debuginfo-3.9.15-150300.4.21.1 python39-base-32bit-3.9.15-150300.4.21.1 python39-base-32bit-debuginfo-3.9.15-150300.4.21.1 - SUSE Linux Enterprise Module for Development Tools 15-SP3 (aarch64 ppc64le s390x x86_64): python39-core-debugsource-3.9.15-150300.4.21.1 python39-tools-3.9.15-150300.4.21.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): libpython3_9-1_0-3.9.15-150300.4.21.1 libpython3_9-1_0-debuginfo-3.9.15-150300.4.21.1 python39-3.9.15-150300.4.21.1 python39-base-3.9.15-150300.4.21.1 python39-base-debuginfo-3.9.15-150300.4.21.1 python39-core-debugsource-3.9.15-150300.4.21.1 python39-curses-3.9.15-150300.4.21.1 python39-curses-debuginfo-3.9.15-150300.4.21.1 python39-dbm-3.9.15-150300.4.21.1 python39-dbm-debuginfo-3.9.15-150300.4.21.1 python39-debuginfo-3.9.15-150300.4.21.1 python39-debugsource-3.9.15-150300.4.21.1 python39-devel-3.9.15-150300.4.21.1 python39-idle-3.9.15-150300.4.21.1 python39-tk-3.9.15-150300.4.21.1 python39-tk-debuginfo-3.9.15-150300.4.21.1 References: https://www.suse.com/security/cve/CVE-2022-42919.html https://www.suse.com/security/cve/CVE-2022-45061.html https://bugzilla.suse.com/1204886 https://bugzilla.suse.com/1205244

1 0

SUSE-SU-2022:4073-1: moderate: Security update for sccache
by opensuse-security＠opensuse.org 18 Nov '22

18 Nov '22

SUSE Security Update: Security update for sccache ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4073-1 Rating: moderate References: #1181400 #1194119 #1196972 Cross-References: CVE-2021-45710 CVE-2022-24713 CVSS scores: CVE-2021-45710 (NVD) : 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-45710 (SUSE): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2022-24713 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-24713 (SUSE): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Affected Products: SUSE Enterprise Storage 7.1 SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise Module for Development Tools 15-SP3 SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.2 openSUSE Leap 15.3 ______________________________________________________________________________ An update that solves two vulnerabilities and has one errata is now available. Description: This update for sccache fixes the following issues: Updated to version 0.3.0: - CVE-2022-24713: Fixed Regex denial of service (bsc#1196972). - CVE-2021-45710: Fixed tokio data race with memory corruption (bsc#1194119). - Added hardening to systemd service(s) (bsc#1181400). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4073=1 - SUSE Linux Enterprise Module for Development Tools 15-SP3: zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP3-2022-4073=1 Package List: - openSUSE Leap 15.3 (aarch64 x86_64): sccache-0.3.0~git5.14a4b8b-150300.7.9.1 sccache-debuginfo-0.3.0~git5.14a4b8b-150300.7.9.1 sccache-debugsource-0.3.0~git5.14a4b8b-150300.7.9.1 - SUSE Linux Enterprise Module for Development Tools 15-SP3 (aarch64 x86_64): sccache-0.3.0~git5.14a4b8b-150300.7.9.1 sccache-debuginfo-0.3.0~git5.14a4b8b-150300.7.9.1 sccache-debugsource-0.3.0~git5.14a4b8b-150300.7.9.1 References: https://www.suse.com/security/cve/CVE-2021-45710.html https://www.suse.com/security/cve/CVE-2022-24713.html https://bugzilla.suse.com/1181400 https://bugzilla.suse.com/1194119 https://bugzilla.suse.com/1196972

1 0

SUSE-SU-2022:4069-1: important: Security update for php7
by opensuse-security＠opensuse.org 18 Nov '22

18 Nov '22

SUSE Security Update: Security update for php7 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4069-1 Rating: important References: #1203867 #1203870 #1204577 #1204979 SLE-23639 Cross-References: CVE-2017-8923 CVE-2020-7068 CVE-2020-7069 CVE-2020-7070 CVE-2020-7071 CVE-2021-21702 CVE-2021-21703 CVE-2021-21704 CVE-2021-21705 CVE-2021-21706 CVE-2021-21707 CVE-2021-21708 CVE-2022-31625 CVE-2022-31626 CVE-2022-31628 CVE-2022-31629 CVE-2022-31630 CVE-2022-37454 CVSS scores: CVE-2017-8923 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2017-8923 (SUSE): 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2020-7068 (NVD) : 3.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:L CVE-2020-7068 (SUSE): 4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2020-7069 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N CVE-2020-7069 (SUSE): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N CVE-2020-7070 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2020-7070 (SUSE): 6.8 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N CVE-2020-7071 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2020-7071 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2021-21702 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-21702 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-21703 (NVD) : 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2021-21703 (SUSE): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H CVE-2021-21704 (NVD) : 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-21704 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-21705 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2021-21705 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2021-21706 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N CVE-2021-21707 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2021-21707 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2021-21708 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-21708 (SUSE): 7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H CVE-2022-31625 (NVD) : 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-31625 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-31626 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-31626 (SUSE): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-31628 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-31628 (SUSE): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H CVE-2022-31629 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N CVE-2022-31630 (NVD) : 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H CVE-2022-31630 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2022-37454 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-37454 (SUSE): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: SUSE Enterprise Storage 7 SUSE Enterprise Storage 7.1 SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3 SUSE Linux Enterprise Module for Web Scripting 15-SP3 SUSE Linux Enterprise Server 15-SP2-BCL SUSE Linux Enterprise Server 15-SP2-LTSS SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server for SAP 15-SP2 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Manager Proxy 4.1 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.1 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.1 SUSE Manager Server 4.2 openSUSE Leap 15.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes 18 vulnerabilities, contains one feature is now available. Description: This update for php7 fixes the following issues: - Version update to 7.4.33: - CVE-2022-31630: Fixed out-of-bounds read due to insufficient input validation in imageloadfont() (bsc#1204979). - CVE-2022-37454: Fixed buffer overflow in hash_update() on long parameter (bsc#1204577). - Version update to 7.4.32 (jsc#SLE-23639) - CVE-2022-31628: Fixed an uncontrolled recursion in the phar uncompressor while decompressing "quines" gzip files. (bsc#1203867) - CVE-2022-31629: Fixed a bug which could lead an attacker to set an insecure cookie that will treated as secure in the victim's browser. (bsc#1203870) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4069=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4069=1 - SUSE Manager Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-4069=1 - SUSE Manager Retail Branch Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-4069=1 - SUSE Manager Proxy 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-4069=1 - SUSE Linux Enterprise Server for SAP 15-SP2: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2022-4069=1 - SUSE Linux Enterprise Server 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-4069=1 - SUSE Linux Enterprise Server 15-SP2-BCL: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-BCL-2022-4069=1 - SUSE Linux Enterprise Module for Web Scripting 15-SP3: zypper in -t patch SUSE-SLE-Module-Web-Scripting-15-SP3-2022-4069=1 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3: zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2022-4069=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-4069=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-4069=1 - SUSE Enterprise Storage 7: zypper in -t patch SUSE-Storage-7-2022-4069=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): php7-firebird-7.4.33-150200.3.46.2 php7-firebird-debuginfo-7.4.33-150200.3.46.2 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): apache2-mod_php7-7.4.33-150200.3.46.2 apache2-mod_php7-debuginfo-7.4.33-150200.3.46.2 php7-7.4.33-150200.3.46.2 php7-bcmath-7.4.33-150200.3.46.2 php7-bcmath-debuginfo-7.4.33-150200.3.46.2 php7-bz2-7.4.33-150200.3.46.2 php7-bz2-debuginfo-7.4.33-150200.3.46.2 php7-calendar-7.4.33-150200.3.46.2 php7-calendar-debuginfo-7.4.33-150200.3.46.2 php7-ctype-7.4.33-150200.3.46.2 php7-ctype-debuginfo-7.4.33-150200.3.46.2 php7-curl-7.4.33-150200.3.46.2 php7-curl-debuginfo-7.4.33-150200.3.46.2 php7-dba-7.4.33-150200.3.46.2 php7-dba-debuginfo-7.4.33-150200.3.46.2 php7-debuginfo-7.4.33-150200.3.46.2 php7-debugsource-7.4.33-150200.3.46.2 php7-devel-7.4.33-150200.3.46.2 php7-dom-7.4.33-150200.3.46.2 php7-dom-debuginfo-7.4.33-150200.3.46.2 php7-embed-7.4.33-150200.3.46.2 php7-embed-debuginfo-7.4.33-150200.3.46.2 php7-enchant-7.4.33-150200.3.46.2 php7-enchant-debuginfo-7.4.33-150200.3.46.2 php7-exif-7.4.33-150200.3.46.2 php7-exif-debuginfo-7.4.33-150200.3.46.2 php7-fastcgi-7.4.33-150200.3.46.2 php7-fastcgi-debuginfo-7.4.33-150200.3.46.2 php7-fileinfo-7.4.33-150200.3.46.2 php7-fileinfo-debuginfo-7.4.33-150200.3.46.2 php7-firebird-7.4.33-150200.3.46.2 php7-firebird-debuginfo-7.4.33-150200.3.46.2 php7-fpm-7.4.33-150200.3.46.2 php7-fpm-debuginfo-7.4.33-150200.3.46.2 php7-ftp-7.4.33-150200.3.46.2 php7-ftp-debuginfo-7.4.33-150200.3.46.2 php7-gd-7.4.33-150200.3.46.2 php7-gd-debuginfo-7.4.33-150200.3.46.2 php7-gettext-7.4.33-150200.3.46.2 php7-gettext-debuginfo-7.4.33-150200.3.46.2 php7-gmp-7.4.33-150200.3.46.2 php7-gmp-debuginfo-7.4.33-150200.3.46.2 php7-iconv-7.4.33-150200.3.46.2 php7-iconv-debuginfo-7.4.33-150200.3.46.2 php7-intl-7.4.33-150200.3.46.2 php7-intl-debuginfo-7.4.33-150200.3.46.2 php7-json-7.4.33-150200.3.46.2 php7-json-debuginfo-7.4.33-150200.3.46.2 php7-ldap-7.4.33-150200.3.46.2 php7-ldap-debuginfo-7.4.33-150200.3.46.2 php7-mbstring-7.4.33-150200.3.46.2 php7-mbstring-debuginfo-7.4.33-150200.3.46.2 php7-mysql-7.4.33-150200.3.46.2 php7-mysql-debuginfo-7.4.33-150200.3.46.2 php7-odbc-7.4.33-150200.3.46.2 php7-odbc-debuginfo-7.4.33-150200.3.46.2 php7-opcache-7.4.33-150200.3.46.2 php7-opcache-debuginfo-7.4.33-150200.3.46.2 php7-openssl-7.4.33-150200.3.46.2 php7-openssl-debuginfo-7.4.33-150200.3.46.2 php7-pcntl-7.4.33-150200.3.46.2 php7-pcntl-debuginfo-7.4.33-150200.3.46.2 php7-pdo-7.4.33-150200.3.46.2 php7-pdo-debuginfo-7.4.33-150200.3.46.2 php7-pgsql-7.4.33-150200.3.46.2 php7-pgsql-debuginfo-7.4.33-150200.3.46.2 php7-phar-7.4.33-150200.3.46.2 php7-phar-debuginfo-7.4.33-150200.3.46.2 php7-posix-7.4.33-150200.3.46.2 php7-posix-debuginfo-7.4.33-150200.3.46.2 php7-readline-7.4.33-150200.3.46.2 php7-readline-debuginfo-7.4.33-150200.3.46.2 php7-shmop-7.4.33-150200.3.46.2 php7-shmop-debuginfo-7.4.33-150200.3.46.2 php7-snmp-7.4.33-150200.3.46.2 php7-snmp-debuginfo-7.4.33-150200.3.46.2 php7-soap-7.4.33-150200.3.46.2 php7-soap-debuginfo-7.4.33-150200.3.46.2 php7-sockets-7.4.33-150200.3.46.2 php7-sockets-debuginfo-7.4.33-150200.3.46.2 php7-sodium-7.4.33-150200.3.46.2 php7-sodium-debuginfo-7.4.33-150200.3.46.2 php7-sqlite-7.4.33-150200.3.46.2 php7-sqlite-debuginfo-7.4.33-150200.3.46.2 php7-sysvmsg-7.4.33-150200.3.46.2 php7-sysvmsg-debuginfo-7.4.33-150200.3.46.2 php7-sysvsem-7.4.33-150200.3.46.2 php7-sysvsem-debuginfo-7.4.33-150200.3.46.2 php7-sysvshm-7.4.33-150200.3.46.2 php7-sysvshm-debuginfo-7.4.33-150200.3.46.2 php7-test-7.4.33-150200.3.46.2 php7-tidy-7.4.33-150200.3.46.2 php7-tidy-debuginfo-7.4.33-150200.3.46.2 php7-tokenizer-7.4.33-150200.3.46.2 php7-tokenizer-debuginfo-7.4.33-150200.3.46.2 php7-xmlreader-7.4.33-150200.3.46.2 php7-xmlreader-debuginfo-7.4.33-150200.3.46.2 php7-xmlrpc-7.4.33-150200.3.46.2 php7-xmlrpc-debuginfo-7.4.33-150200.3.46.2 php7-xmlwriter-7.4.33-150200.3.46.2 php7-xmlwriter-debuginfo-7.4.33-150200.3.46.2 php7-xsl-7.4.33-150200.3.46.2 php7-xsl-debuginfo-7.4.33-150200.3.46.2 php7-zip-7.4.33-150200.3.46.2 php7-zip-debuginfo-7.4.33-150200.3.46.2 php7-zlib-7.4.33-150200.3.46.2 php7-zlib-debuginfo-7.4.33-150200.3.46.2 - SUSE Manager Server 4.1 (ppc64le s390x x86_64): apache2-mod_php7-7.4.33-150200.3.46.2 apache2-mod_php7-debuginfo-7.4.33-150200.3.46.2 php7-7.4.33-150200.3.46.2 php7-bcmath-7.4.33-150200.3.46.2 php7-bcmath-debuginfo-7.4.33-150200.3.46.2 php7-bz2-7.4.33-150200.3.46.2 php7-bz2-debuginfo-7.4.33-150200.3.46.2 php7-calendar-7.4.33-150200.3.46.2 php7-calendar-debuginfo-7.4.33-150200.3.46.2 php7-ctype-7.4.33-150200.3.46.2 php7-ctype-debuginfo-7.4.33-150200.3.46.2 php7-curl-7.4.33-150200.3.46.2 php7-curl-debuginfo-7.4.33-150200.3.46.2 php7-dba-7.4.33-150200.3.46.2 php7-dba-debuginfo-7.4.33-150200.3.46.2 php7-debuginfo-7.4.33-150200.3.46.2 php7-debugsource-7.4.33-150200.3.46.2 php7-devel-7.4.33-150200.3.46.2 php7-dom-7.4.33-150200.3.46.2 php7-dom-debuginfo-7.4.33-150200.3.46.2 php7-enchant-7.4.33-150200.3.46.2 php7-enchant-debuginfo-7.4.33-150200.3.46.2 php7-exif-7.4.33-150200.3.46.2 php7-exif-debuginfo-7.4.33-150200.3.46.2 php7-fastcgi-7.4.33-150200.3.46.2 php7-fastcgi-debuginfo-7.4.33-150200.3.46.2 php7-fileinfo-7.4.33-150200.3.46.2 php7-fileinfo-debuginfo-7.4.33-150200.3.46.2 php7-fpm-7.4.33-150200.3.46.2 php7-fpm-debuginfo-7.4.33-150200.3.46.2 php7-ftp-7.4.33-150200.3.46.2 php7-ftp-debuginfo-7.4.33-150200.3.46.2 php7-gd-7.4.33-150200.3.46.2 php7-gd-debuginfo-7.4.33-150200.3.46.2 php7-gettext-7.4.33-150200.3.46.2 php7-gettext-debuginfo-7.4.33-150200.3.46.2 php7-gmp-7.4.33-150200.3.46.2 php7-gmp-debuginfo-7.4.33-150200.3.46.2 php7-iconv-7.4.33-150200.3.46.2 php7-iconv-debuginfo-7.4.33-150200.3.46.2 php7-intl-7.4.33-150200.3.46.2 php7-intl-debuginfo-7.4.33-150200.3.46.2 php7-json-7.4.33-150200.3.46.2 php7-json-debuginfo-7.4.33-150200.3.46.2 php7-ldap-7.4.33-150200.3.46.2 php7-ldap-debuginfo-7.4.33-150200.3.46.2 php7-mbstring-7.4.33-150200.3.46.2 php7-mbstring-debuginfo-7.4.33-150200.3.46.2 php7-mysql-7.4.33-150200.3.46.2 php7-mysql-debuginfo-7.4.33-150200.3.46.2 php7-odbc-7.4.33-150200.3.46.2 php7-odbc-debuginfo-7.4.33-150200.3.46.2 php7-opcache-7.4.33-150200.3.46.2 php7-opcache-debuginfo-7.4.33-150200.3.46.2 php7-openssl-7.4.33-150200.3.46.2 php7-openssl-debuginfo-7.4.33-150200.3.46.2 php7-pcntl-7.4.33-150200.3.46.2 php7-pcntl-debuginfo-7.4.33-150200.3.46.2 php7-pdo-7.4.33-150200.3.46.2 php7-pdo-debuginfo-7.4.33-150200.3.46.2 php7-pgsql-7.4.33-150200.3.46.2 php7-pgsql-debuginfo-7.4.33-150200.3.46.2 php7-phar-7.4.33-150200.3.46.2 php7-phar-debuginfo-7.4.33-150200.3.46.2 php7-posix-7.4.33-150200.3.46.2 php7-posix-debuginfo-7.4.33-150200.3.46.2 php7-readline-7.4.33-150200.3.46.2 php7-readline-debuginfo-7.4.33-150200.3.46.2 php7-shmop-7.4.33-150200.3.46.2 php7-shmop-debuginfo-7.4.33-150200.3.46.2 php7-snmp-7.4.33-150200.3.46.2 php7-snmp-debuginfo-7.4.33-150200.3.46.2 php7-soap-7.4.33-150200.3.46.2 php7-soap-debuginfo-7.4.33-150200.3.46.2 php7-sockets-7.4.33-150200.3.46.2 php7-sockets-debuginfo-7.4.33-150200.3.46.2 php7-sodium-7.4.33-150200.3.46.2 php7-sodium-debuginfo-7.4.33-150200.3.46.2 php7-sqlite-7.4.33-150200.3.46.2 php7-sqlite-debuginfo-7.4.33-150200.3.46.2 php7-sysvmsg-7.4.33-150200.3.46.2 php7-sysvmsg-debuginfo-7.4.33-150200.3.46.2 php7-sysvsem-7.4.33-150200.3.46.2 php7-sysvsem-debuginfo-7.4.33-150200.3.46.2 php7-sysvshm-7.4.33-150200.3.46.2 php7-sysvshm-debuginfo-7.4.33-150200.3.46.2 php7-tidy-7.4.33-150200.3.46.2 php7-tidy-debuginfo-7.4.33-150200.3.46.2 php7-tokenizer-7.4.33-150200.3.46.2 php7-tokenizer-debuginfo-7.4.33-150200.3.46.2 php7-xmlreader-7.4.33-150200.3.46.2 php7-xmlreader-debuginfo-7.4.33-150200.3.46.2 php7-xmlrpc-7.4.33-150200.3.46.2 php7-xmlrpc-debuginfo-7.4.33-150200.3.46.2 php7-xmlwriter-7.4.33-150200.3.46.2 php7-xmlwriter-debuginfo-7.4.33-150200.3.46.2 php7-xsl-7.4.33-150200.3.46.2 php7-xsl-debuginfo-7.4.33-150200.3.46.2 php7-zip-7.4.33-150200.3.46.2 php7-zip-debuginfo-7.4.33-150200.3.46.2 php7-zlib-7.4.33-150200.3.46.2 php7-zlib-debuginfo-7.4.33-150200.3.46.2 - SUSE Manager Retail Branch Server 4.1 (x86_64): apache2-mod_php7-7.4.33-150200.3.46.2 apache2-mod_php7-debuginfo-7.4.33-150200.3.46.2 php7-7.4.33-150200.3.46.2 php7-bcmath-7.4.33-150200.3.46.2 php7-bcmath-debuginfo-7.4.33-150200.3.46.2 php7-bz2-7.4.33-150200.3.46.2 php7-bz2-debuginfo-7.4.33-150200.3.46.2 php7-calendar-7.4.33-150200.3.46.2 php7-calendar-debuginfo-7.4.33-150200.3.46.2 php7-ctype-7.4.33-150200.3.46.2 php7-ctype-debuginfo-7.4.33-150200.3.46.2 php7-curl-7.4.33-150200.3.46.2 php7-curl-debuginfo-7.4.33-150200.3.46.2 php7-dba-7.4.33-150200.3.46.2 php7-dba-debuginfo-7.4.33-150200.3.46.2 php7-debuginfo-7.4.33-150200.3.46.2 php7-debugsource-7.4.33-150200.3.46.2 php7-devel-7.4.33-150200.3.46.2 php7-dom-7.4.33-150200.3.46.2 php7-dom-debuginfo-7.4.33-150200.3.46.2 php7-enchant-7.4.33-150200.3.46.2 php7-enchant-debuginfo-7.4.33-150200.3.46.2 php7-exif-7.4.33-150200.3.46.2 php7-exif-debuginfo-7.4.33-150200.3.46.2 php7-fastcgi-7.4.33-150200.3.46.2 php7-fastcgi-debuginfo-7.4.33-150200.3.46.2 php7-fileinfo-7.4.33-150200.3.46.2 php7-fileinfo-debuginfo-7.4.33-150200.3.46.2 php7-fpm-7.4.33-150200.3.46.2 php7-fpm-debuginfo-7.4.33-150200.3.46.2 php7-ftp-7.4.33-150200.3.46.2 php7-ftp-debuginfo-7.4.33-150200.3.46.2 php7-gd-7.4.33-150200.3.46.2 php7-gd-debuginfo-7.4.33-150200.3.46.2 php7-gettext-7.4.33-150200.3.46.2 php7-gettext-debuginfo-7.4.33-150200.3.46.2 php7-gmp-7.4.33-150200.3.46.2 php7-gmp-debuginfo-7.4.33-150200.3.46.2 php7-iconv-7.4.33-150200.3.46.2 php7-iconv-debuginfo-7.4.33-150200.3.46.2 php7-intl-7.4.33-150200.3.46.2 php7-intl-debuginfo-7.4.33-150200.3.46.2 php7-json-7.4.33-150200.3.46.2 php7-json-debuginfo-7.4.33-150200.3.46.2 php7-ldap-7.4.33-150200.3.46.2 php7-ldap-debuginfo-7.4.33-150200.3.46.2 php7-mbstring-7.4.33-150200.3.46.2 php7-mbstring-debuginfo-7.4.33-150200.3.46.2 php7-mysql-7.4.33-150200.3.46.2 php7-mysql-debuginfo-7.4.33-150200.3.46.2 php7-odbc-7.4.33-150200.3.46.2 php7-odbc-debuginfo-7.4.33-150200.3.46.2 php7-opcache-7.4.33-150200.3.46.2 php7-opcache-debuginfo-7.4.33-150200.3.46.2 php7-openssl-7.4.33-150200.3.46.2 php7-openssl-debuginfo-7.4.33-150200.3.46.2 php7-pcntl-7.4.33-150200.3.46.2 php7-pcntl-debuginfo-7.4.33-150200.3.46.2 php7-pdo-7.4.33-150200.3.46.2 php7-pdo-debuginfo-7.4.33-150200.3.46.2 php7-pgsql-7.4.33-150200.3.46.2 php7-pgsql-debuginfo-7.4.33-150200.3.46.2 php7-phar-7.4.33-150200.3.46.2 php7-phar-debuginfo-7.4.33-150200.3.46.2 php7-posix-7.4.33-150200.3.46.2 php7-posix-debuginfo-7.4.33-150200.3.46.2 php7-readline-7.4.33-150200.3.46.2 php7-readline-debuginfo-7.4.33-150200.3.46.2 php7-shmop-7.4.33-150200.3.46.2 php7-shmop-debuginfo-7.4.33-150200.3.46.2 php7-snmp-7.4.33-150200.3.46.2 php7-snmp-debuginfo-7.4.33-150200.3.46.2 php7-soap-7.4.33-150200.3.46.2 php7-soap-debuginfo-7.4.33-150200.3.46.2 php7-sockets-7.4.33-150200.3.46.2 php7-sockets-debuginfo-7.4.33-150200.3.46.2 php7-sodium-7.4.33-150200.3.46.2 php7-sodium-debuginfo-7.4.33-150200.3.46.2 php7-sqlite-7.4.33-150200.3.46.2 php7-sqlite-debuginfo-7.4.33-150200.3.46.2 php7-sysvmsg-7.4.33-150200.3.46.2 php7-sysvmsg-debuginfo-7.4.33-150200.3.46.2 php7-sysvsem-7.4.33-150200.3.46.2 php7-sysvsem-debuginfo-7.4.33-150200.3.46.2 php7-sysvshm-7.4.33-150200.3.46.2 php7-sysvshm-debuginfo-7.4.33-150200.3.46.2 php7-tidy-7.4.33-150200.3.46.2 php7-tidy-debuginfo-7.4.33-150200.3.46.2 php7-tokenizer-7.4.33-150200.3.46.2 php7-tokenizer-debuginfo-7.4.33-150200.3.46.2 php7-xmlreader-7.4.33-150200.3.46.2 php7-xmlreader-debuginfo-7.4.33-150200.3.46.2 php7-xmlrpc-7.4.33-150200.3.46.2 php7-xmlrpc-debuginfo-7.4.33-150200.3.46.2 php7-xmlwriter-7.4.33-150200.3.46.2 php7-xmlwriter-debuginfo-7.4.33-150200.3.46.2 php7-xsl-7.4.33-150200.3.46.2 php7-xsl-debuginfo-7.4.33-150200.3.46.2 php7-zip-7.4.33-150200.3.46.2 php7-zip-debuginfo-7.4.33-150200.3.46.2 php7-zlib-7.4.33-150200.3.46.2 php7-zlib-debuginfo-7.4.33-150200.3.46.2 - SUSE Manager Proxy 4.1 (x86_64): apache2-mod_php7-7.4.33-150200.3.46.2 apache2-mod_php7-debuginfo-7.4.33-150200.3.46.2 php7-7.4.33-150200.3.46.2 php7-bcmath-7.4.33-150200.3.46.2 php7-bcmath-debuginfo-7.4.33-150200.3.46.2 php7-bz2-7.4.33-150200.3.46.2 php7-bz2-debuginfo-7.4.33-150200.3.46.2 php7-calendar-7.4.33-150200.3.46.2 php7-calendar-debuginfo-7.4.33-150200.3.46.2 php7-ctype-7.4.33-150200.3.46.2 php7-ctype-debuginfo-7.4.33-150200.3.46.2 php7-curl-7.4.33-150200.3.46.2 php7-curl-debuginfo-7.4.33-150200.3.46.2 php7-dba-7.4.33-150200.3.46.2 php7-dba-debuginfo-7.4.33-150200.3.46.2 php7-debuginfo-7.4.33-150200.3.46.2 php7-debugsource-7.4.33-150200.3.46.2 php7-devel-7.4.33-150200.3.46.2 php7-dom-7.4.33-150200.3.46.2 php7-dom-debuginfo-7.4.33-150200.3.46.2 php7-enchant-7.4.33-150200.3.46.2 php7-enchant-debuginfo-7.4.33-150200.3.46.2 php7-exif-7.4.33-150200.3.46.2 php7-exif-debuginfo-7.4.33-150200.3.46.2 php7-fastcgi-7.4.33-150200.3.46.2 php7-fastcgi-debuginfo-7.4.33-150200.3.46.2 php7-fileinfo-7.4.33-150200.3.46.2 php7-fileinfo-debuginfo-7.4.33-150200.3.46.2 php7-fpm-7.4.33-150200.3.46.2 php7-fpm-debuginfo-7.4.33-150200.3.46.2 php7-ftp-7.4.33-150200.3.46.2 php7-ftp-debuginfo-7.4.33-150200.3.46.2 php7-gd-7.4.33-150200.3.46.2 php7-gd-debuginfo-7.4.33-150200.3.46.2 php7-gettext-7.4.33-150200.3.46.2 php7-gettext-debuginfo-7.4.33-150200.3.46.2 php7-gmp-7.4.33-150200.3.46.2 php7-gmp-debuginfo-7.4.33-150200.3.46.2 php7-iconv-7.4.33-150200.3.46.2 php7-iconv-debuginfo-7.4.33-150200.3.46.2 php7-intl-7.4.33-150200.3.46.2 php7-intl-debuginfo-7.4.33-150200.3.46.2 php7-json-7.4.33-150200.3.46.2 php7-json-debuginfo-7.4.33-150200.3.46.2 php7-ldap-7.4.33-150200.3.46.2 php7-ldap-debuginfo-7.4.33-150200.3.46.2 php7-mbstring-7.4.33-150200.3.46.2 php7-mbstring-debuginfo-7.4.33-150200.3.46.2 php7-mysql-7.4.33-150200.3.46.2 php7-mysql-debuginfo-7.4.33-150200.3.46.2 php7-odbc-7.4.33-150200.3.46.2 php7-odbc-debuginfo-7.4.33-150200.3.46.2 php7-opcache-7.4.33-150200.3.46.2 php7-opcache-debuginfo-7.4.33-150200.3.46.2 php7-openssl-7.4.33-150200.3.46.2 php7-openssl-debuginfo-7.4.33-150200.3.46.2 php7-pcntl-7.4.33-150200.3.46.2 php7-pcntl-debuginfo-7.4.33-150200.3.46.2 php7-pdo-7.4.33-150200.3.46.2 php7-pdo-debuginfo-7.4.33-150200.3.46.2 php7-pgsql-7.4.33-150200.3.46.2 php7-pgsql-debuginfo-7.4.33-150200.3.46.2 php7-phar-7.4.33-150200.3.46.2 php7-phar-debuginfo-7.4.33-150200.3.46.2 php7-posix-7.4.33-150200.3.46.2 php7-posix-debuginfo-7.4.33-150200.3.46.2 php7-readline-7.4.33-150200.3.46.2 php7-readline-debuginfo-7.4.33-150200.3.46.2 php7-shmop-7.4.33-150200.3.46.2 php7-shmop-debuginfo-7.4.33-150200.3.46.2 php7-snmp-7.4.33-150200.3.46.2 php7-snmp-debuginfo-7.4.33-150200.3.46.2 php7-soap-7.4.33-150200.3.46.2 php7-soap-debuginfo-7.4.33-150200.3.46.2 php7-sockets-7.4.33-150200.3.46.2 php7-sockets-debuginfo-7.4.33-150200.3.46.2 php7-sodium-7.4.33-150200.3.46.2 php7-sodium-debuginfo-7.4.33-150200.3.46.2 php7-sqlite-7.4.33-150200.3.46.2 php7-sqlite-debuginfo-7.4.33-150200.3.46.2 php7-sysvmsg-7.4.33-150200.3.46.2 php7-sysvmsg-debuginfo-7.4.33-150200.3.46.2 php7-sysvsem-7.4.33-150200.3.46.2 php7-sysvsem-debuginfo-7.4.33-150200.3.46.2 php7-sysvshm-7.4.33-150200.3.46.2 php7-sysvshm-debuginfo-7.4.33-150200.3.46.2 php7-tidy-7.4.33-150200.3.46.2 php7-tidy-debuginfo-7.4.33-150200.3.46.2 php7-tokenizer-7.4.33-150200.3.46.2 php7-tokenizer-debuginfo-7.4.33-150200.3.46.2 php7-xmlreader-7.4.33-150200.3.46.2 php7-xmlreader-debuginfo-7.4.33-150200.3.46.2 php7-xmlrpc-7.4.33-150200.3.46.2 php7-xmlrpc-debuginfo-7.4.33-150200.3.46.2 php7-xmlwriter-7.4.33-150200.3.46.2 php7-xmlwriter-debuginfo-7.4.33-150200.3.46.2 php7-xsl-7.4.33-150200.3.46.2 php7-xsl-debuginfo-7.4.33-150200.3.46.2 php7-zip-7.4.33-150200.3.46.2 php7-zip-debuginfo-7.4.33-150200.3.46.2 php7-zlib-7.4.33-150200.3.46.2 php7-zlib-debuginfo-7.4.33-150200.3.46.2 - SUSE Linux Enterprise Server for SAP 15-SP2 (ppc64le x86_64): apache2-mod_php7-7.4.33-150200.3.46.2 apache2-mod_php7-debuginfo-7.4.33-150200.3.46.2 php7-7.4.33-150200.3.46.2 php7-bcmath-7.4.33-150200.3.46.2 php7-bcmath-debuginfo-7.4.33-150200.3.46.2 php7-bz2-7.4.33-150200.3.46.2 php7-bz2-debuginfo-7.4.33-150200.3.46.2 php7-calendar-7.4.33-150200.3.46.2 php7-calendar-debuginfo-7.4.33-150200.3.46.2 php7-ctype-7.4.33-150200.3.46.2 php7-ctype-debuginfo-7.4.33-150200.3.46.2 php7-curl-7.4.33-150200.3.46.2 php7-curl-debuginfo-7.4.33-150200.3.46.2 php7-dba-7.4.33-150200.3.46.2 php7-dba-debuginfo-7.4.33-150200.3.46.2 php7-debuginfo-7.4.33-150200.3.46.2 php7-debugsource-7.4.33-150200.3.46.2 php7-devel-7.4.33-150200.3.46.2 php7-dom-7.4.33-150200.3.46.2 php7-dom-debuginfo-7.4.33-150200.3.46.2 php7-enchant-7.4.33-150200.3.46.2 php7-enchant-debuginfo-7.4.33-150200.3.46.2 php7-exif-7.4.33-150200.3.46.2 php7-exif-debuginfo-7.4.33-150200.3.46.2 php7-fastcgi-7.4.33-150200.3.46.2 php7-fastcgi-debuginfo-7.4.33-150200.3.46.2 php7-fileinfo-7.4.33-150200.3.46.2 php7-fileinfo-debuginfo-7.4.33-150200.3.46.2 php7-fpm-7.4.33-150200.3.46.2 php7-fpm-debuginfo-7.4.33-150200.3.46.2 php7-ftp-7.4.33-150200.3.46.2 php7-ftp-debuginfo-7.4.33-150200.3.46.2 php7-gd-7.4.33-150200.3.46.2 php7-gd-debuginfo-7.4.33-150200.3.46.2 php7-gettext-7.4.33-150200.3.46.2 php7-gettext-debuginfo-7.4.33-150200.3.46.2 php7-gmp-7.4.33-150200.3.46.2 php7-gmp-debuginfo-7.4.33-150200.3.46.2 php7-iconv-7.4.33-150200.3.46.2 php7-iconv-debuginfo-7.4.33-150200.3.46.2 php7-intl-7.4.33-150200.3.46.2 php7-intl-debuginfo-7.4.33-150200.3.46.2 php7-json-7.4.33-150200.3.46.2 php7-json-debuginfo-7.4.33-150200.3.46.2 php7-ldap-7.4.33-150200.3.46.2 php7-ldap-debuginfo-7.4.33-150200.3.46.2 php7-mbstring-7.4.33-150200.3.46.2 php7-mbstring-debuginfo-7.4.33-150200.3.46.2 php7-mysql-7.4.33-150200.3.46.2 php7-mysql-debuginfo-7.4.33-150200.3.46.2 php7-odbc-7.4.33-150200.3.46.2 php7-odbc-debuginfo-7.4.33-150200.3.46.2 php7-opcache-7.4.33-150200.3.46.2 php7-opcache-debuginfo-7.4.33-150200.3.46.2 php7-openssl-7.4.33-150200.3.46.2 php7-openssl-debuginfo-7.4.33-150200.3.46.2 php7-pcntl-7.4.33-150200.3.46.2 php7-pcntl-debuginfo-7.4.33-150200.3.46.2 php7-pdo-7.4.33-150200.3.46.2 php7-pdo-debuginfo-7.4.33-150200.3.46.2 php7-pgsql-7.4.33-150200.3.46.2 php7-pgsql-debuginfo-7.4.33-150200.3.46.2 php7-phar-7.4.33-150200.3.46.2 php7-phar-debuginfo-7.4.33-150200.3.46.2 php7-posix-7.4.33-150200.3.46.2 php7-posix-debuginfo-7.4.33-150200.3.46.2 php7-readline-7.4.33-150200.3.46.2 php7-readline-debuginfo-7.4.33-150200.3.46.2 php7-shmop-7.4.33-150200.3.46.2 php7-shmop-debuginfo-7.4.33-150200.3.46.2 php7-snmp-7.4.33-150200.3.46.2 php7-snmp-debuginfo-7.4.33-150200.3.46.2 php7-soap-7.4.33-150200.3.46.2 php7-soap-debuginfo-7.4.33-150200.3.46.2 php7-sockets-7.4.33-150200.3.46.2 php7-sockets-debuginfo-7.4.33-150200.3.46.2 php7-sodium-7.4.33-150200.3.46.2 php7-sodium-debuginfo-7.4.33-150200.3.46.2 php7-sqlite-7.4.33-150200.3.46.2 php7-sqlite-debuginfo-7.4.33-150200.3.46.2 php7-sysvmsg-7.4.33-150200.3.46.2 php7-sysvmsg-debuginfo-7.4.33-150200.3.46.2 php7-sysvsem-7.4.33-150200.3.46.2 php7-sysvsem-debuginfo-7.4.33-150200.3.46.2 php7-sysvshm-7.4.33-150200.3.46.2 php7-sysvshm-debuginfo-7.4.33-150200.3.46.2 php7-tidy-7.4.33-150200.3.46.2 php7-tidy-debuginfo-7.4.33-150200.3.46.2 php7-tokenizer-7.4.33-150200.3.46.2 php7-tokenizer-debuginfo-7.4.33-150200.3.46.2 php7-xmlreader-7.4.33-150200.3.46.2 php7-xmlreader-debuginfo-7.4.33-150200.3.46.2 php7-xmlrpc-7.4.33-150200.3.46.2 php7-xmlrpc-debuginfo-7.4.33-150200.3.46.2 php7-xmlwriter-7.4.33-150200.3.46.2 php7-xmlwriter-debuginfo-7.4.33-150200.3.46.2 php7-xsl-7.4.33-150200.3.46.2 php7-xsl-debuginfo-7.4.33-150200.3.46.2 php7-zip-7.4.33-150200.3.46.2 php7-zip-debuginfo-7.4.33-150200.3.46.2 php7-zlib-7.4.33-150200.3.46.2 php7-zlib-debuginfo-7.4.33-150200.3.46.2 - SUSE Linux Enterprise Server 15-SP2-LTSS (aarch64 ppc64le s390x x86_64): apache2-mod_php7-7.4.33-150200.3.46.2 apache2-mod_php7-debuginfo-7.4.33-150200.3.46.2 php7-7.4.33-150200.3.46.2 php7-bcmath-7.4.33-150200.3.46.2 php7-bcmath-debuginfo-7.4.33-150200.3.46.2 php7-bz2-7.4.33-150200.3.46.2 php7-bz2-debuginfo-7.4.33-150200.3.46.2 php7-calendar-7.4.33-150200.3.46.2 php7-calendar-debuginfo-7.4.33-150200.3.46.2 php7-ctype-7.4.33-150200.3.46.2 php7-ctype-debuginfo-7.4.33-150200.3.46.2 php7-curl-7.4.33-150200.3.46.2 php7-curl-debuginfo-7.4.33-150200.3.46.2 php7-dba-7.4.33-150200.3.46.2 php7-dba-debuginfo-7.4.33-150200.3.46.2 php7-debuginfo-7.4.33-150200.3.46.2 php7-debugsource-7.4.33-150200.3.46.2 php7-devel-7.4.33-150200.3.46.2 php7-dom-7.4.33-150200.3.46.2 php7-dom-debuginfo-7.4.33-150200.3.46.2 php7-enchant-7.4.33-150200.3.46.2 php7-enchant-debuginfo-7.4.33-150200.3.46.2 php7-exif-7.4.33-150200.3.46.2 php7-exif-debuginfo-7.4.33-150200.3.46.2 php7-fastcgi-7.4.33-150200.3.46.2 php7-fastcgi-debuginfo-7.4.33-150200.3.46.2 php7-fileinfo-7.4.33-150200.3.46.2 php7-fileinfo-debuginfo-7.4.33-150200.3.46.2 php7-fpm-7.4.33-150200.3.46.2 php7-fpm-debuginfo-7.4.33-150200.3.46.2 php7-ftp-7.4.33-150200.3.46.2 php7-ftp-debuginfo-7.4.33-150200.3.46.2 php7-gd-7.4.33-150200.3.46.2 php7-gd-debuginfo-7.4.33-150200.3.46.2 php7-gettext-7.4.33-150200.3.46.2 php7-gettext-debuginfo-7.4.33-150200.3.46.2 php7-gmp-7.4.33-150200.3.46.2 php7-gmp-debuginfo-7.4.33-150200.3.46.2 php7-iconv-7.4.33-150200.3.46.2 php7-iconv-debuginfo-7.4.33-150200.3.46.2 php7-intl-7.4.33-150200.3.46.2 php7-intl-debuginfo-7.4.33-150200.3.46.2 php7-json-7.4.33-150200.3.46.2 php7-json-debuginfo-7.4.33-150200.3.46.2 php7-ldap-7.4.33-150200.3.46.2 php7-ldap-debuginfo-7.4.33-150200.3.46.2 php7-mbstring-7.4.33-150200.3.46.2 php7-mbstring-debuginfo-7.4.33-150200.3.46.2 php7-mysql-7.4.33-150200.3.46.2 php7-mysql-debuginfo-7.4.33-150200.3.46.2 php7-odbc-7.4.33-150200.3.46.2 php7-odbc-debuginfo-7.4.33-150200.3.46.2 php7-opcache-7.4.33-150200.3.46.2 php7-opcache-debuginfo-7.4.33-150200.3.46.2 php7-openssl-7.4.33-150200.3.46.2 php7-openssl-debuginfo-7.4.33-150200.3.46.2 php7-pcntl-7.4.33-150200.3.46.2 php7-pcntl-debuginfo-7.4.33-150200.3.46.2 php7-pdo-7.4.33-150200.3.46.2 php7-pdo-debuginfo-7.4.33-150200.3.46.2 php7-pgsql-7.4.33-150200.3.46.2 php7-pgsql-debuginfo-7.4.33-150200.3.46.2 php7-phar-7.4.33-150200.3.46.2 php7-phar-debuginfo-7.4.33-150200.3.46.2 php7-posix-7.4.33-150200.3.46.2 php7-posix-debuginfo-7.4.33-150200.3.46.2 php7-readline-7.4.33-150200.3.46.2 php7-readline-debuginfo-7.4.33-150200.3.46.2 php7-shmop-7.4.33-150200.3.46.2 php7-shmop-debuginfo-7.4.33-150200.3.46.2 php7-snmp-7.4.33-150200.3.46.2 php7-snmp-debuginfo-7.4.33-150200.3.46.2 php7-soap-7.4.33-150200.3.46.2 php7-soap-debuginfo-7.4.33-150200.3.46.2 php7-sockets-7.4.33-150200.3.46.2 php7-sockets-debuginfo-7.4.33-150200.3.46.2 php7-sodium-7.4.33-150200.3.46.2 php7-sodium-debuginfo-7.4.33-150200.3.46.2 php7-sqlite-7.4.33-150200.3.46.2 php7-sqlite-debuginfo-7.4.33-150200.3.46.2 php7-sysvmsg-7.4.33-150200.3.46.2 php7-sysvmsg-debuginfo-7.4.33-150200.3.46.2 php7-sysvsem-7.4.33-150200.3.46.2 php7-sysvsem-debuginfo-7.4.33-150200.3.46.2 php7-sysvshm-7.4.33-150200.3.46.2 php7-sysvshm-debuginfo-7.4.33-150200.3.46.2 php7-tidy-7.4.33-150200.3.46.2 php7-tidy-debuginfo-7.4.33-150200.3.46.2 php7-tokenizer-7.4.33-150200.3.46.2 php7-tokenizer-debuginfo-7.4.33-150200.3.46.2 php7-xmlreader-7.4.33-150200.3.46.2 php7-xmlreader-debuginfo-7.4.33-150200.3.46.2 php7-xmlrpc-7.4.33-150200.3.46.2 php7-xmlrpc-debuginfo-7.4.33-150200.3.46.2 php7-xmlwriter-7.4.33-150200.3.46.2 php7-xmlwriter-debuginfo-7.4.33-150200.3.46.2 php7-xsl-7.4.33-150200.3.46.2 php7-xsl-debuginfo-7.4.33-150200.3.46.2 php7-zip-7.4.33-150200.3.46.2 php7-zip-debuginfo-7.4.33-150200.3.46.2 php7-zlib-7.4.33-150200.3.46.2 php7-zlib-debuginfo-7.4.33-150200.3.46.2 - SUSE Linux Enterprise Server 15-SP2-BCL (x86_64): apache2-mod_php7-7.4.33-150200.3.46.2 apache2-mod_php7-debuginfo-7.4.33-150200.3.46.2 php7-7.4.33-150200.3.46.2 php7-bcmath-7.4.33-150200.3.46.2 php7-bcmath-debuginfo-7.4.33-150200.3.46.2 php7-bz2-7.4.33-150200.3.46.2 php7-bz2-debuginfo-7.4.33-150200.3.46.2 php7-calendar-7.4.33-150200.3.46.2 php7-calendar-debuginfo-7.4.33-150200.3.46.2 php7-ctype-7.4.33-150200.3.46.2 php7-ctype-debuginfo-7.4.33-150200.3.46.2 php7-curl-7.4.33-150200.3.46.2 php7-curl-debuginfo-7.4.33-150200.3.46.2 php7-dba-7.4.33-150200.3.46.2 php7-dba-debuginfo-7.4.33-150200.3.46.2 php7-debuginfo-7.4.33-150200.3.46.2 php7-debugsource-7.4.33-150200.3.46.2 php7-devel-7.4.33-150200.3.46.2 php7-dom-7.4.33-150200.3.46.2 php7-dom-debuginfo-7.4.33-150200.3.46.2 php7-enchant-7.4.33-150200.3.46.2 php7-enchant-debuginfo-7.4.33-150200.3.46.2 php7-exif-7.4.33-150200.3.46.2 php7-exif-debuginfo-7.4.33-150200.3.46.2 php7-fastcgi-7.4.33-150200.3.46.2 php7-fastcgi-debuginfo-7.4.33-150200.3.46.2 php7-fileinfo-7.4.33-150200.3.46.2 php7-fileinfo-debuginfo-7.4.33-150200.3.46.2 php7-fpm-7.4.33-150200.3.46.2 php7-fpm-debuginfo-7.4.33-150200.3.46.2 php7-ftp-7.4.33-150200.3.46.2 php7-ftp-debuginfo-7.4.33-150200.3.46.2 php7-gd-7.4.33-150200.3.46.2 php7-gd-debuginfo-7.4.33-150200.3.46.2 php7-gettext-7.4.33-150200.3.46.2 php7-gettext-debuginfo-7.4.33-150200.3.46.2 php7-gmp-7.4.33-150200.3.46.2 php7-gmp-debuginfo-7.4.33-150200.3.46.2 php7-iconv-7.4.33-150200.3.46.2 php7-iconv-debuginfo-7.4.33-150200.3.46.2 php7-intl-7.4.33-150200.3.46.2 php7-intl-debuginfo-7.4.33-150200.3.46.2 php7-json-7.4.33-150200.3.46.2 php7-json-debuginfo-7.4.33-150200.3.46.2 php7-ldap-7.4.33-150200.3.46.2 php7-ldap-debuginfo-7.4.33-150200.3.46.2 php7-mbstring-7.4.33-150200.3.46.2 php7-mbstring-debuginfo-7.4.33-150200.3.46.2 php7-mysql-7.4.33-150200.3.46.2 php7-mysql-debuginfo-7.4.33-150200.3.46.2 php7-odbc-7.4.33-150200.3.46.2 php7-odbc-debuginfo-7.4.33-150200.3.46.2 php7-opcache-7.4.33-150200.3.46.2 php7-opcache-debuginfo-7.4.33-150200.3.46.2 php7-openssl-7.4.33-150200.3.46.2 php7-openssl-debuginfo-7.4.33-150200.3.46.2 php7-pcntl-7.4.33-150200.3.46.2 php7-pcntl-debuginfo-7.4.33-150200.3.46.2 php7-pdo-7.4.33-150200.3.46.2 php7-pdo-debuginfo-7.4.33-150200.3.46.2 php7-pgsql-7.4.33-150200.3.46.2 php7-pgsql-debuginfo-7.4.33-150200.3.46.2 php7-phar-7.4.33-150200.3.46.2 php7-phar-debuginfo-7.4.33-150200.3.46.2 php7-posix-7.4.33-150200.3.46.2 php7-posix-debuginfo-7.4.33-150200.3.46.2 php7-readline-7.4.33-150200.3.46.2 php7-readline-debuginfo-7.4.33-150200.3.46.2 php7-shmop-7.4.33-150200.3.46.2 php7-shmop-debuginfo-7.4.33-150200.3.46.2 php7-snmp-7.4.33-150200.3.46.2 php7-snmp-debuginfo-7.4.33-150200.3.46.2 php7-soap-7.4.33-150200.3.46.2 php7-soap-debuginfo-7.4.33-150200.3.46.2 php7-sockets-7.4.33-150200.3.46.2 php7-sockets-debuginfo-7.4.33-150200.3.46.2 php7-sodium-7.4.33-150200.3.46.2 php7-sodium-debuginfo-7.4.33-150200.3.46.2 php7-sqlite-7.4.33-150200.3.46.2 php7-sqlite-debuginfo-7.4.33-150200.3.46.2 php7-sysvmsg-7.4.33-150200.3.46.2 php7-sysvmsg-debuginfo-7.4.33-150200.3.46.2 php7-sysvsem-7.4.33-150200.3.46.2 php7-sysvsem-debuginfo-7.4.33-150200.3.46.2 php7-sysvshm-7.4.33-150200.3.46.2 php7-sysvshm-debuginfo-7.4.33-150200.3.46.2 php7-tidy-7.4.33-150200.3.46.2 php7-tidy-debuginfo-7.4.33-150200.3.46.2 php7-tokenizer-7.4.33-150200.3.46.2 php7-tokenizer-debuginfo-7.4.33-150200.3.46.2 php7-xmlreader-7.4.33-150200.3.46.2 php7-xmlreader-debuginfo-7.4.33-150200.3.46.2 php7-xmlrpc-7.4.33-150200.3.46.2 php7-xmlrpc-debuginfo-7.4.33-150200.3.46.2 php7-xmlwriter-7.4.33-150200.3.46.2 php7-xmlwriter-debuginfo-7.4.33-150200.3.46.2 php7-xsl-7.4.33-150200.3.46.2 php7-xsl-debuginfo-7.4.33-150200.3.46.2 php7-zip-7.4.33-150200.3.46.2 php7-zip-debuginfo-7.4.33-150200.3.46.2 php7-zlib-7.4.33-150200.3.46.2 php7-zlib-debuginfo-7.4.33-150200.3.46.2 - SUSE Linux Enterprise Module for Web Scripting 15-SP3 (aarch64 ppc64le s390x x86_64): apache2-mod_php7-7.4.33-150200.3.46.2 apache2-mod_php7-debuginfo-7.4.33-150200.3.46.2 php7-7.4.33-150200.3.46.2 php7-bcmath-7.4.33-150200.3.46.2 php7-bcmath-debuginfo-7.4.33-150200.3.46.2 php7-bz2-7.4.33-150200.3.46.2 php7-bz2-debuginfo-7.4.33-150200.3.46.2 php7-calendar-7.4.33-150200.3.46.2 php7-calendar-debuginfo-7.4.33-150200.3.46.2 php7-ctype-7.4.33-150200.3.46.2 php7-ctype-debuginfo-7.4.33-150200.3.46.2 php7-curl-7.4.33-150200.3.46.2 php7-curl-debuginfo-7.4.33-150200.3.46.2 php7-dba-7.4.33-150200.3.46.2 php7-dba-debuginfo-7.4.33-150200.3.46.2 php7-debuginfo-7.4.33-150200.3.46.2 php7-debugsource-7.4.33-150200.3.46.2 php7-devel-7.4.33-150200.3.46.2 php7-dom-7.4.33-150200.3.46.2 php7-dom-debuginfo-7.4.33-150200.3.46.2 php7-enchant-7.4.33-150200.3.46.2 php7-enchant-debuginfo-7.4.33-150200.3.46.2 php7-exif-7.4.33-150200.3.46.2 php7-exif-debuginfo-7.4.33-150200.3.46.2 php7-fastcgi-7.4.33-150200.3.46.2 php7-fastcgi-debuginfo-7.4.33-150200.3.46.2 php7-fileinfo-7.4.33-150200.3.46.2 php7-fileinfo-debuginfo-7.4.33-150200.3.46.2 php7-fpm-7.4.33-150200.3.46.2 php7-fpm-debuginfo-7.4.33-150200.3.46.2 php7-ftp-7.4.33-150200.3.46.2 php7-ftp-debuginfo-7.4.33-150200.3.46.2 php7-gd-7.4.33-150200.3.46.2 php7-gd-debuginfo-7.4.33-150200.3.46.2 php7-gettext-7.4.33-150200.3.46.2 php7-gettext-debuginfo-7.4.33-150200.3.46.2 php7-gmp-7.4.33-150200.3.46.2 php7-gmp-debuginfo-7.4.33-150200.3.46.2 php7-iconv-7.4.33-150200.3.46.2 php7-iconv-debuginfo-7.4.33-150200.3.46.2 php7-intl-7.4.33-150200.3.46.2 php7-intl-debuginfo-7.4.33-150200.3.46.2 php7-json-7.4.33-150200.3.46.2 php7-json-debuginfo-7.4.33-150200.3.46.2 php7-ldap-7.4.33-150200.3.46.2 php7-ldap-debuginfo-7.4.33-150200.3.46.2 php7-mbstring-7.4.33-150200.3.46.2 php7-mbstring-debuginfo-7.4.33-150200.3.46.2 php7-mysql-7.4.33-150200.3.46.2 php7-mysql-debuginfo-7.4.33-150200.3.46.2 php7-odbc-7.4.33-150200.3.46.2 php7-odbc-debuginfo-7.4.33-150200.3.46.2 php7-opcache-7.4.33-150200.3.46.2 php7-opcache-debuginfo-7.4.33-150200.3.46.2 php7-openssl-7.4.33-150200.3.46.2 php7-openssl-debuginfo-7.4.33-150200.3.46.2 php7-pcntl-7.4.33-150200.3.46.2 php7-pcntl-debuginfo-7.4.33-150200.3.46.2 php7-pdo-7.4.33-150200.3.46.2 php7-pdo-debuginfo-7.4.33-150200.3.46.2 php7-pgsql-7.4.33-150200.3.46.2 php7-pgsql-debuginfo-7.4.33-150200.3.46.2 php7-phar-7.4.33-150200.3.46.2 php7-phar-debuginfo-7.4.33-150200.3.46.2 php7-posix-7.4.33-150200.3.46.2 php7-posix-debuginfo-7.4.33-150200.3.46.2 php7-readline-7.4.33-150200.3.46.2 php7-readline-debuginfo-7.4.33-150200.3.46.2 php7-shmop-7.4.33-150200.3.46.2 php7-shmop-debuginfo-7.4.33-150200.3.46.2 php7-snmp-7.4.33-150200.3.46.2 php7-snmp-debuginfo-7.4.33-150200.3.46.2 php7-soap-7.4.33-150200.3.46.2 php7-soap-debuginfo-7.4.33-150200.3.46.2 php7-sockets-7.4.33-150200.3.46.2 php7-sockets-debuginfo-7.4.33-150200.3.46.2 php7-sodium-7.4.33-150200.3.46.2 php7-sodium-debuginfo-7.4.33-150200.3.46.2 php7-sqlite-7.4.33-150200.3.46.2 php7-sqlite-debuginfo-7.4.33-150200.3.46.2 php7-sysvmsg-7.4.33-150200.3.46.2 php7-sysvmsg-debuginfo-7.4.33-150200.3.46.2 php7-sysvsem-7.4.33-150200.3.46.2 php7-sysvsem-debuginfo-7.4.33-150200.3.46.2 php7-sysvshm-7.4.33-150200.3.46.2 php7-sysvshm-debuginfo-7.4.33-150200.3.46.2 php7-tidy-7.4.33-150200.3.46.2 php7-tidy-debuginfo-7.4.33-150200.3.46.2 php7-tokenizer-7.4.33-150200.3.46.2 php7-tokenizer-debuginfo-7.4.33-150200.3.46.2 php7-xmlreader-7.4.33-150200.3.46.2 php7-xmlreader-debuginfo-7.4.33-150200.3.46.2 php7-xmlrpc-7.4.33-150200.3.46.2 php7-xmlrpc-debuginfo-7.4.33-150200.3.46.2 php7-xmlwriter-7.4.33-150200.3.46.2 php7-xmlwriter-debuginfo-7.4.33-150200.3.46.2 php7-xsl-7.4.33-150200.3.46.2 php7-xsl-debuginfo-7.4.33-150200.3.46.2 php7-zip-7.4.33-150200.3.46.2 php7-zip-debuginfo-7.4.33-150200.3.46.2 php7-zlib-7.4.33-150200.3.46.2 php7-zlib-debuginfo-7.4.33-150200.3.46.2 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3 (aarch64 ppc64le s390x x86_64): php7-debuginfo-7.4.33-150200.3.46.2 php7-debugsource-7.4.33-150200.3.46.2 php7-embed-7.4.33-150200.3.46.2 php7-embed-debuginfo-7.4.33-150200.3.46.2 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS (aarch64 x86_64): apache2-mod_php7-7.4.33-150200.3.46.2 apache2-mod_php7-debuginfo-7.4.33-150200.3.46.2 php7-7.4.33-150200.3.46.2 php7-bcmath-7.4.33-150200.3.46.2 php7-bcmath-debuginfo-7.4.33-150200.3.46.2 php7-bz2-7.4.33-150200.3.46.2 php7-bz2-debuginfo-7.4.33-150200.3.46.2 php7-calendar-7.4.33-150200.3.46.2 php7-calendar-debuginfo-7.4.33-150200.3.46.2 php7-ctype-7.4.33-150200.3.46.2 php7-ctype-debuginfo-7.4.33-150200.3.46.2 php7-curl-7.4.33-150200.3.46.2 php7-curl-debuginfo-7.4.33-150200.3.46.2 php7-dba-7.4.33-150200.3.46.2 php7-dba-debuginfo-7.4.33-150200.3.46.2 php7-debuginfo-7.4.33-150200.3.46.2 php7-debugsource-7.4.33-150200.3.46.2 php7-devel-7.4.33-150200.3.46.2 php7-dom-7.4.33-150200.3.46.2 php7-dom-debuginfo-7.4.33-150200.3.46.2 php7-enchant-7.4.33-150200.3.46.2 php7-enchant-debuginfo-7.4.33-150200.3.46.2 php7-exif-7.4.33-150200.3.46.2 php7-exif-debuginfo-7.4.33-150200.3.46.2 php7-fastcgi-7.4.33-150200.3.46.2 php7-fastcgi-debuginfo-7.4.33-150200.3.46.2 php7-fileinfo-7.4.33-150200.3.46.2 php7-fileinfo-debuginfo-7.4.33-150200.3.46.2 php7-fpm-7.4.33-150200.3.46.2 php7-fpm-debuginfo-7.4.33-150200.3.46.2 php7-ftp-7.4.33-150200.3.46.2 php7-ftp-debuginfo-7.4.33-150200.3.46.2 php7-gd-7.4.33-150200.3.46.2 php7-gd-debuginfo-7.4.33-150200.3.46.2 php7-gettext-7.4.33-150200.3.46.2 php7-gettext-debuginfo-7.4.33-150200.3.46.2 php7-gmp-7.4.33-150200.3.46.2 php7-gmp-debuginfo-7.4.33-150200.3.46.2 php7-iconv-7.4.33-150200.3.46.2 php7-iconv-debuginfo-7.4.33-150200.3.46.2 php7-intl-7.4.33-150200.3.46.2 php7-intl-debuginfo-7.4.33-150200.3.46.2 php7-json-7.4.33-150200.3.46.2 php7-json-debuginfo-7.4.33-150200.3.46.2 php7-ldap-7.4.33-150200.3.46.2 php7-ldap-debuginfo-7.4.33-150200.3.46.2 php7-mbstring-7.4.33-150200.3.46.2 php7-mbstring-debuginfo-7.4.33-150200.3.46.2 php7-mysql-7.4.33-150200.3.46.2 php7-mysql-debuginfo-7.4.33-150200.3.46.2 php7-odbc-7.4.33-150200.3.46.2 php7-odbc-debuginfo-7.4.33-150200.3.46.2 php7-opcache-7.4.33-150200.3.46.2 php7-opcache-debuginfo-7.4.33-150200.3.46.2 php7-openssl-7.4.33-150200.3.46.2 php7-openssl-debuginfo-7.4.33-150200.3.46.2 php7-pcntl-7.4.33-150200.3.46.2 php7-pcntl-debuginfo-7.4.33-150200.3.46.2 php7-pdo-7.4.33-150200.3.46.2 php7-pdo-debuginfo-7.4.33-150200.3.46.2 php7-pgsql-7.4.33-150200.3.46.2 php7-pgsql-debuginfo-7.4.33-150200.3.46.2 php7-phar-7.4.33-150200.3.46.2 php7-phar-debuginfo-7.4.33-150200.3.46.2 php7-posix-7.4.33-150200.3.46.2 php7-posix-debuginfo-7.4.33-150200.3.46.2 php7-readline-7.4.33-150200.3.46.2 php7-readline-debuginfo-7.4.33-150200.3.46.2 php7-shmop-7.4.33-150200.3.46.2 php7-shmop-debuginfo-7.4.33-150200.3.46.2 php7-snmp-7.4.33-150200.3.46.2 php7-snmp-debuginfo-7.4.33-150200.3.46.2 php7-soap-7.4.33-150200.3.46.2 php7-soap-debuginfo-7.4.33-150200.3.46.2 php7-sockets-7.4.33-150200.3.46.2 php7-sockets-debuginfo-7.4.33-150200.3.46.2 php7-sodium-7.4.33-150200.3.46.2 php7-sodium-debuginfo-7.4.33-150200.3.46.2 php7-sqlite-7.4.33-150200.3.46.2 php7-sqlite-debuginfo-7.4.33-150200.3.46.2 php7-sysvmsg-7.4.33-150200.3.46.2 php7-sysvmsg-debuginfo-7.4.33-150200.3.46.2 php7-sysvsem-7.4.33-150200.3.46.2 php7-sysvsem-debuginfo-7.4.33-150200.3.46.2 php7-sysvshm-7.4.33-150200.3.46.2 php7-sysvshm-debuginfo-7.4.33-150200.3.46.2 php7-tidy-7.4.33-150200.3.46.2 php7-tidy-debuginfo-7.4.33-150200.3.46.2 php7-tokenizer-7.4.33-150200.3.46.2 php7-tokenizer-debuginfo-7.4.33-150200.3.46.2 php7-xmlreader-7.4.33-150200.3.46.2 php7-xmlreader-debuginfo-7.4.33-150200.3.46.2 php7-xmlrpc-7.4.33-150200.3.46.2 php7-xmlrpc-debuginfo-7.4.33-150200.3.46.2 php7-xmlwriter-7.4.33-150200.3.46.2 php7-xmlwriter-debuginfo-7.4.33-150200.3.46.2 php7-xsl-7.4.33-150200.3.46.2 php7-xsl-debuginfo-7.4.33-150200.3.46.2 php7-zip-7.4.33-150200.3.46.2 php7-zip-debuginfo-7.4.33-150200.3.46.2 php7-zlib-7.4.33-150200.3.46.2 php7-zlib-debuginfo-7.4.33-150200.3.46.2 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS (aarch64 x86_64): apache2-mod_php7-7.4.33-150200.3.46.2 apache2-mod_php7-debuginfo-7.4.33-150200.3.46.2 php7-7.4.33-150200.3.46.2 php7-bcmath-7.4.33-150200.3.46.2 php7-bcmath-debuginfo-7.4.33-150200.3.46.2 php7-bz2-7.4.33-150200.3.46.2 php7-bz2-debuginfo-7.4.33-150200.3.46.2 php7-calendar-7.4.33-150200.3.46.2 php7-calendar-debuginfo-7.4.33-150200.3.46.2 php7-ctype-7.4.33-150200.3.46.2 php7-ctype-debuginfo-7.4.33-150200.3.46.2 php7-curl-7.4.33-150200.3.46.2 php7-curl-debuginfo-7.4.33-150200.3.46.2 php7-dba-7.4.33-150200.3.46.2 php7-dba-debuginfo-7.4.33-150200.3.46.2 php7-debuginfo-7.4.33-150200.3.46.2 php7-debugsource-7.4.33-150200.3.46.2 php7-devel-7.4.33-150200.3.46.2 php7-dom-7.4.33-150200.3.46.2 php7-dom-debuginfo-7.4.33-150200.3.46.2 php7-enchant-7.4.33-150200.3.46.2 php7-enchant-debuginfo-7.4.33-150200.3.46.2 php7-exif-7.4.33-150200.3.46.2 php7-exif-debuginfo-7.4.33-150200.3.46.2 php7-fastcgi-7.4.33-150200.3.46.2 php7-fastcgi-debuginfo-7.4.33-150200.3.46.2 php7-fileinfo-7.4.33-150200.3.46.2 php7-fileinfo-debuginfo-7.4.33-150200.3.46.2 php7-fpm-7.4.33-150200.3.46.2 php7-fpm-debuginfo-7.4.33-150200.3.46.2 php7-ftp-7.4.33-150200.3.46.2 php7-ftp-debuginfo-7.4.33-150200.3.46.2 php7-gd-7.4.33-150200.3.46.2 php7-gd-debuginfo-7.4.33-150200.3.46.2 php7-gettext-7.4.33-150200.3.46.2 php7-gettext-debuginfo-7.4.33-150200.3.46.2 php7-gmp-7.4.33-150200.3.46.2 php7-gmp-debuginfo-7.4.33-150200.3.46.2 php7-iconv-7.4.33-150200.3.46.2 php7-iconv-debuginfo-7.4.33-150200.3.46.2 php7-intl-7.4.33-150200.3.46.2 php7-intl-debuginfo-7.4.33-150200.3.46.2 php7-json-7.4.33-150200.3.46.2 php7-json-debuginfo-7.4.33-150200.3.46.2 php7-ldap-7.4.33-150200.3.46.2 php7-ldap-debuginfo-7.4.33-150200.3.46.2 php7-mbstring-7.4.33-150200.3.46.2 php7-mbstring-debuginfo-7.4.33-150200.3.46.2 php7-mysql-7.4.33-150200.3.46.2 php7-mysql-debuginfo-7.4.33-150200.3.46.2 php7-odbc-7.4.33-150200.3.46.2 php7-odbc-debuginfo-7.4.33-150200.3.46.2 php7-opcache-7.4.33-150200.3.46.2 php7-opcache-debuginfo-7.4.33-150200.3.46.2 php7-openssl-7.4.33-150200.3.46.2 php7-openssl-debuginfo-7.4.33-150200.3.46.2 php7-pcntl-7.4.33-150200.3.46.2 php7-pcntl-debuginfo-7.4.33-150200.3.46.2 php7-pdo-7.4.33-150200.3.46.2 php7-pdo-debuginfo-7.4.33-150200.3.46.2 php7-pgsql-7.4.33-150200.3.46.2 php7-pgsql-debuginfo-7.4.33-150200.3.46.2 php7-phar-7.4.33-150200.3.46.2 php7-phar-debuginfo-7.4.33-150200.3.46.2 php7-posix-7.4.33-150200.3.46.2 php7-posix-debuginfo-7.4.33-150200.3.46.2 php7-readline-7.4.33-150200.3.46.2 php7-readline-debuginfo-7.4.33-150200.3.46.2 php7-shmop-7.4.33-150200.3.46.2 php7-shmop-debuginfo-7.4.33-150200.3.46.2 php7-snmp-7.4.33-150200.3.46.2 php7-snmp-debuginfo-7.4.33-150200.3.46.2 php7-soap-7.4.33-150200.3.46.2 php7-soap-debuginfo-7.4.33-150200.3.46.2 php7-sockets-7.4.33-150200.3.46.2 php7-sockets-debuginfo-7.4.33-150200.3.46.2 php7-sodium-7.4.33-150200.3.46.2 php7-sodium-debuginfo-7.4.33-150200.3.46.2 php7-sqlite-7.4.33-150200.3.46.2 php7-sqlite-debuginfo-7.4.33-150200.3.46.2 php7-sysvmsg-7.4.33-150200.3.46.2 php7-sysvmsg-debuginfo-7.4.33-150200.3.46.2 php7-sysvsem-7.4.33-150200.3.46.2 php7-sysvsem-debuginfo-7.4.33-150200.3.46.2 php7-sysvshm-7.4.33-150200.3.46.2 php7-sysvshm-debuginfo-7.4.33-150200.3.46.2 php7-tidy-7.4.33-150200.3.46.2 php7-tidy-debuginfo-7.4.33-150200.3.46.2 php7-tokenizer-7.4.33-150200.3.46.2 php7-tokenizer-debuginfo-7.4.33-150200.3.46.2 php7-xmlreader-7.4.33-150200.3.46.2 php7-xmlreader-debuginfo-7.4.33-150200.3.46.2 php7-xmlrpc-7.4.33-150200.3.46.2 php7-xmlrpc-debuginfo-7.4.33-150200.3.46.2 php7-xmlwriter-7.4.33-150200.3.46.2 php7-xmlwriter-debuginfo-7.4.33-150200.3.46.2 php7-xsl-7.4.33-150200.3.46.2 php7-xsl-debuginfo-7.4.33-150200.3.46.2 php7-zip-7.4.33-150200.3.46.2 php7-zip-debuginfo-7.4.33-150200.3.46.2 php7-zlib-7.4.33-150200.3.46.2 php7-zlib-debuginfo-7.4.33-150200.3.46.2 - SUSE Enterprise Storage 7 (aarch64 x86_64): apache2-mod_php7-7.4.33-150200.3.46.2 apache2-mod_php7-debuginfo-7.4.33-150200.3.46.2 php7-7.4.33-150200.3.46.2 php7-bcmath-7.4.33-150200.3.46.2 php7-bcmath-debuginfo-7.4.33-150200.3.46.2 php7-bz2-7.4.33-150200.3.46.2 php7-bz2-debuginfo-7.4.33-150200.3.46.2 php7-calendar-7.4.33-150200.3.46.2 php7-calendar-debuginfo-7.4.33-150200.3.46.2 php7-ctype-7.4.33-150200.3.46.2 php7-ctype-debuginfo-7.4.33-150200.3.46.2 php7-curl-7.4.33-150200.3.46.2 php7-curl-debuginfo-7.4.33-150200.3.46.2 php7-dba-7.4.33-150200.3.46.2 php7-dba-debuginfo-7.4.33-150200.3.46.2 php7-debuginfo-7.4.33-150200.3.46.2 php7-debugsource-7.4.33-150200.3.46.2 php7-devel-7.4.33-150200.3.46.2 php7-dom-7.4.33-150200.3.46.2 php7-dom-debuginfo-7.4.33-150200.3.46.2 php7-enchant-7.4.33-150200.3.46.2 php7-enchant-debuginfo-7.4.33-150200.3.46.2 php7-exif-7.4.33-150200.3.46.2 php7-exif-debuginfo-7.4.33-150200.3.46.2 php7-fastcgi-7.4.33-150200.3.46.2 php7-fastcgi-debuginfo-7.4.33-150200.3.46.2 php7-fileinfo-7.4.33-150200.3.46.2 php7-fileinfo-debuginfo-7.4.33-150200.3.46.2 php7-fpm-7.4.33-150200.3.46.2 php7-fpm-debuginfo-7.4.33-150200.3.46.2 php7-ftp-7.4.33-150200.3.46.2 php7-ftp-debuginfo-7.4.33-150200.3.46.2 php7-gd-7.4.33-150200.3.46.2 php7-gd-debuginfo-7.4.33-150200.3.46.2 php7-gettext-7.4.33-150200.3.46.2 php7-gettext-debuginfo-7.4.33-150200.3.46.2 php7-gmp-7.4.33-150200.3.46.2 php7-gmp-debuginfo-7.4.33-150200.3.46.2 php7-iconv-7.4.33-150200.3.46.2 php7-iconv-debuginfo-7.4.33-150200.3.46.2 php7-intl-7.4.33-150200.3.46.2 php7-intl-debuginfo-7.4.33-150200.3.46.2 php7-json-7.4.33-150200.3.46.2 php7-json-debuginfo-7.4.33-150200.3.46.2 php7-ldap-7.4.33-150200.3.46.2 php7-ldap-debuginfo-7.4.33-150200.3.46.2 php7-mbstring-7.4.33-150200.3.46.2 php7-mbstring-debuginfo-7.4.33-150200.3.46.2 php7-mysql-7.4.33-150200.3.46.2 php7-mysql-debuginfo-7.4.33-150200.3.46.2 php7-odbc-7.4.33-150200.3.46.2 php7-odbc-debuginfo-7.4.33-150200.3.46.2 php7-opcache-7.4.33-150200.3.46.2 php7-opcache-debuginfo-7.4.33-150200.3.46.2 php7-openssl-7.4.33-150200.3.46.2 php7-openssl-debuginfo-7.4.33-150200.3.46.2 php7-pcntl-7.4.33-150200.3.46.2 php7-pcntl-debuginfo-7.4.33-150200.3.46.2 php7-pdo-7.4.33-150200.3.46.2 php7-pdo-debuginfo-7.4.33-150200.3.46.2 php7-pgsql-7.4.33-150200.3.46.2 php7-pgsql-debuginfo-7.4.33-150200.3.46.2 php7-phar-7.4.33-150200.3.46.2 php7-phar-debuginfo-7.4.33-150200.3.46.2 php7-posix-7.4.33-150200.3.46.2 php7-posix-debuginfo-7.4.33-150200.3.46.2 php7-readline-7.4.33-150200.3.46.2 php7-readline-debuginfo-7.4.33-150200.3.46.2 php7-shmop-7.4.33-150200.3.46.2 php7-shmop-debuginfo-7.4.33-150200.3.46.2 php7-snmp-7.4.33-150200.3.46.2 php7-snmp-debuginfo-7.4.33-150200.3.46.2 php7-soap-7.4.33-150200.3.46.2 php7-soap-debuginfo-7.4.33-150200.3.46.2 php7-sockets-7.4.33-150200.3.46.2 php7-sockets-debuginfo-7.4.33-150200.3.46.2 php7-sodium-7.4.33-150200.3.46.2 php7-sodium-debuginfo-7.4.33-150200.3.46.2 php7-sqlite-7.4.33-150200.3.46.2 php7-sqlite-debuginfo-7.4.33-150200.3.46.2 php7-sysvmsg-7.4.33-150200.3.46.2 php7-sysvmsg-debuginfo-7.4.33-150200.3.46.2 php7-sysvsem-7.4.33-150200.3.46.2 php7-sysvsem-debuginfo-7.4.33-150200.3.46.2 php7-sysvshm-7.4.33-150200.3.46.2 php7-sysvshm-debuginfo-7.4.33-150200.3.46.2 php7-tidy-7.4.33-150200.3.46.2 php7-tidy-debuginfo-7.4.33-150200.3.46.2 php7-tokenizer-7.4.33-150200.3.46.2 php7-tokenizer-debuginfo-7.4.33-150200.3.46.2 php7-xmlreader-7.4.33-150200.3.46.2 php7-xmlreader-debuginfo-7.4.33-150200.3.46.2 php7-xmlrpc-7.4.33-150200.3.46.2 php7-xmlrpc-debuginfo-7.4.33-150200.3.46.2 php7-xmlwriter-7.4.33-150200.3.46.2 php7-xmlwriter-debuginfo-7.4.33-150200.3.46.2 php7-xsl-7.4.33-150200.3.46.2 php7-xsl-debuginfo-7.4.33-150200.3.46.2 php7-zip-7.4.33-150200.3.46.2 php7-zip-debuginfo-7.4.33-150200.3.46.2 php7-zlib-7.4.33-150200.3.46.2 php7-zlib-debuginfo-7.4.33-150200.3.46.2 References: https://www.suse.com/security/cve/CVE-2017-8923.html https://www.suse.com/security/cve/CVE-2020-7068.html https://www.suse.com/security/cve/CVE-2020-7069.html https://www.suse.com/security/cve/CVE-2020-7070.html https://www.suse.com/security/cve/CVE-2020-7071.html https://www.suse.com/security/cve/CVE-2021-21702.html https://www.suse.com/security/cve/CVE-2021-21703.html https://www.suse.com/security/cve/CVE-2021-21704.html https://www.suse.com/security/cve/CVE-2021-21705.html https://www.suse.com/security/cve/CVE-2021-21706.html https://www.suse.com/security/cve/CVE-2021-21707.html https://www.suse.com/security/cve/CVE-2021-21708.html https://www.suse.com/security/cve/CVE-2022-31625.html https://www.suse.com/security/cve/CVE-2022-31626.html https://www.suse.com/security/cve/CVE-2022-31628.html https://www.suse.com/security/cve/CVE-2022-31629.html https://www.suse.com/security/cve/CVE-2022-31630.html https://www.suse.com/security/cve/CVE-2022-37454.html https://bugzilla.suse.com/1203867 https://bugzilla.suse.com/1203870 https://bugzilla.suse.com/1204577 https://bugzilla.suse.com/1204979

1 0

SUSE-SU-2022:4067-1: important: Security update for php7
by opensuse-security＠opensuse.org 18 Nov '22

18 Nov '22

SUSE Security Update: Security update for php7 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4067-1 Rating: important References: #1204577 SLE-23639 Cross-References: CVE-2015-9253 CVE-2017-8923 CVE-2017-9120 CVE-2018-1000222 CVE-2018-12882 CVE-2018-14851 CVE-2018-17082 CVE-2018-19935 CVE-2018-20783 CVE-2019-11034 CVE-2019-11035 CVE-2019-11036 CVE-2019-11039 CVE-2019-11040 CVE-2019-11041 CVE-2019-11042 CVE-2019-11043 CVE-2019-11045 CVE-2019-11046 CVE-2019-11047 CVE-2019-11048 CVE-2019-11050 CVE-2019-9020 CVE-2019-9021 CVE-2019-9022 CVE-2019-9023 CVE-2019-9024 CVE-2019-9637 CVE-2019-9638 CVE-2019-9640 CVE-2019-9641 CVE-2019-9675 CVE-2020-7059 CVE-2020-7060 CVE-2020-7062 CVE-2020-7063 CVE-2020-7064 CVE-2020-7066 CVE-2020-7068 CVE-2020-7069 CVE-2020-7070 CVE-2020-7071 CVE-2021-21702 CVE-2021-21703 CVE-2021-21704 CVE-2021-21705 CVE-2021-21707 CVE-2022-31625 CVE-2022-31626 CVE-2022-31628 CVE-2022-31629 CVE-2022-37454 CVSS scores: CVE-2015-9253 (NVD) : 6.5 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2015-9253 (SUSE): 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2017-8923 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2017-8923 (SUSE): 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2017-9120 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2017-9120 (SUSE): 4 CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2018-1000222 (NVD) : 8.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2018-1000222 (SUSE): 7 CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2018-12882 (NVD) : 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2018-12882 (SUSE): 6.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L CVE-2018-14851 (NVD) : 5.5 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2018-14851 (SUSE): 3.7 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2018-17082 (NVD) : 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVE-2018-17082 (SUSE): 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVE-2018-19935 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2018-19935 (SUSE): 3.3 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVE-2018-20783 (NVD) : 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2018-20783 (SUSE): 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2019-11034 (NVD) : 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H CVE-2019-11034 (SUSE): 4.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L CVE-2019-11035 (NVD) : 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H CVE-2019-11035 (SUSE): 4.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L CVE-2019-11036 (NVD) : 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H CVE-2019-11036 (SUSE): 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L CVE-2019-11039 (NVD) : 9.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H CVE-2019-11039 (SUSE): 4 CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2019-11040 (NVD) : 9.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H CVE-2019-11040 (SUSE): 4.3 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N CVE-2019-11041 (NVD) : 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H CVE-2019-11041 (SUSE): 8.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-11042 (NVD) : 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H CVE-2019-11042 (SUSE): 5.4 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L CVE-2019-11043 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-11043 (SUSE): 8.1 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-11045 (NVD) : 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2019-11045 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2019-11046 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2019-11046 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2019-11047 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L CVE-2019-11047 (SUSE): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L CVE-2019-11048 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2019-11050 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L CVE-2019-11050 (SUSE): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L CVE-2019-9020 (NVD) : 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-9020 (SUSE): 4.8 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L CVE-2019-9021 (NVD) : 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-9021 (SUSE): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N CVE-2019-9022 (NVD) : 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2019-9022 (SUSE): 6.5 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2019-9023 (NVD) : 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-9023 (SUSE): 5.1 CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L CVE-2019-9024 (NVD) : 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2019-9024 (SUSE): 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2019-9637 (NVD) : 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2019-9637 (SUSE): 3.1 CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N CVE-2019-9638 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2019-9638 (SUSE): 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2019-9640 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2019-9640 (SUSE): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2019-9641 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-9641 (SUSE): 4.4 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L CVE-2019-9675 (NVD) : 8.1 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-9675 (SUSE): 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2020-7059 (NVD) : 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H CVE-2020-7059 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2020-7060 (NVD) : 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H CVE-2020-7060 (SUSE): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2020-7062 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2020-7062 (SUSE): 2.5 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2020-7063 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2020-7063 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2020-7064 (NVD) : 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L CVE-2020-7064 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2020-7066 (NVD) : 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N CVE-2020-7066 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2020-7068 (NVD) : 3.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:L CVE-2020-7068 (SUSE): 4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2020-7069 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N CVE-2020-7069 (SUSE): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N CVE-2020-7070 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2020-7070 (SUSE): 6.8 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N CVE-2020-7071 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2020-7071 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2021-21702 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-21702 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-21703 (NVD) : 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2021-21703 (SUSE): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H CVE-2021-21704 (NVD) : 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-21704 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-21705 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2021-21705 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2021-21707 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2021-21707 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-31625 (NVD) : 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-31625 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-31626 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-31626 (SUSE): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-31628 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-31628 (SUSE): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H CVE-2022-31629 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N CVE-2022-37454 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-37454 (SUSE): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: SUSE CaaS Platform 4.0 SUSE Enterprise Storage 6 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server 15-SP1-BCL SUSE Linux Enterprise Server 15-SP1-LTSS SUSE Linux Enterprise Server for SAP 15 SUSE Linux Enterprise Server for SAP 15-SP1 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes 52 vulnerabilities, contains one feature is now available. Description: This update for php7 fixes the following issues: - Version update to 7.2.34 [jsc#SLE-23639] - CVE-2022-37454: Fixed SHA-3 buffer overflow (bsc#1204577). - Fix integer overflow in PHP_SHA3##bits (bsc#1204577#c26). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4067=1 - SUSE Linux Enterprise Server for SAP 15-SP1: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP1-2022-4067=1 - SUSE Linux Enterprise Server for SAP 15: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-2022-4067=1 - SUSE Linux Enterprise Server 15-SP1-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-LTSS-2022-4067=1 - SUSE Linux Enterprise Server 15-SP1-BCL: zypper in -t patch SUSE-SLE-Product-SLES-15-SP1-BCL-2022-4067=1 - SUSE Linux Enterprise Server 15-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-2022-4067=1 - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-LTSS-2022-4067=1 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-ESPOS-2022-4067=1 - SUSE Linux Enterprise High Performance Computing 15-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-2022-4067=1 - SUSE Linux Enterprise High Performance Computing 15-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-2022-4067=1 - SUSE Enterprise Storage 6: zypper in -t patch SUSE-Storage-6-2022-4067=1 - SUSE CaaS Platform 4.0: To install this update, use the SUSE CaaS Platform 'skuba' tool. It will inform you if it detects new updates and let you then trigger updating of the complete cluster in a controlled way. Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): php7-wddx-7.2.34-150000.4.103.1 php7-wddx-debuginfo-7.2.34-150000.4.103.1 - SUSE Linux Enterprise Server for SAP 15-SP1 (ppc64le x86_64): apache2-mod_php7-7.2.34-150000.4.103.1 apache2-mod_php7-debuginfo-7.2.34-150000.4.103.1 php7-7.2.34-150000.4.103.1 php7-bcmath-7.2.34-150000.4.103.1 php7-bcmath-debuginfo-7.2.34-150000.4.103.1 php7-bz2-7.2.34-150000.4.103.1 php7-bz2-debuginfo-7.2.34-150000.4.103.1 php7-calendar-7.2.34-150000.4.103.1 php7-calendar-debuginfo-7.2.34-150000.4.103.1 php7-ctype-7.2.34-150000.4.103.1 php7-ctype-debuginfo-7.2.34-150000.4.103.1 php7-curl-7.2.34-150000.4.103.1 php7-curl-debuginfo-7.2.34-150000.4.103.1 php7-dba-7.2.34-150000.4.103.1 php7-dba-debuginfo-7.2.34-150000.4.103.1 php7-debuginfo-7.2.34-150000.4.103.1 php7-debugsource-7.2.34-150000.4.103.1 php7-devel-7.2.34-150000.4.103.1 php7-dom-7.2.34-150000.4.103.1 php7-dom-debuginfo-7.2.34-150000.4.103.1 php7-enchant-7.2.34-150000.4.103.1 php7-enchant-debuginfo-7.2.34-150000.4.103.1 php7-exif-7.2.34-150000.4.103.1 php7-exif-debuginfo-7.2.34-150000.4.103.1 php7-fastcgi-7.2.34-150000.4.103.1 php7-fastcgi-debuginfo-7.2.34-150000.4.103.1 php7-fileinfo-7.2.34-150000.4.103.1 php7-fileinfo-debuginfo-7.2.34-150000.4.103.1 php7-fpm-7.2.34-150000.4.103.1 php7-fpm-debuginfo-7.2.34-150000.4.103.1 php7-ftp-7.2.34-150000.4.103.1 php7-ftp-debuginfo-7.2.34-150000.4.103.1 php7-gd-7.2.34-150000.4.103.1 php7-gd-debuginfo-7.2.34-150000.4.103.1 php7-gettext-7.2.34-150000.4.103.1 php7-gettext-debuginfo-7.2.34-150000.4.103.1 php7-gmp-7.2.34-150000.4.103.1 php7-gmp-debuginfo-7.2.34-150000.4.103.1 php7-iconv-7.2.34-150000.4.103.1 php7-iconv-debuginfo-7.2.34-150000.4.103.1 php7-intl-7.2.34-150000.4.103.1 php7-intl-debuginfo-7.2.34-150000.4.103.1 php7-json-7.2.34-150000.4.103.1 php7-json-debuginfo-7.2.34-150000.4.103.1 php7-ldap-7.2.34-150000.4.103.1 php7-ldap-debuginfo-7.2.34-150000.4.103.1 php7-mbstring-7.2.34-150000.4.103.1 php7-mbstring-debuginfo-7.2.34-150000.4.103.1 php7-mysql-7.2.34-150000.4.103.1 php7-mysql-debuginfo-7.2.34-150000.4.103.1 php7-odbc-7.2.34-150000.4.103.1 php7-odbc-debuginfo-7.2.34-150000.4.103.1 php7-opcache-7.2.34-150000.4.103.1 php7-opcache-debuginfo-7.2.34-150000.4.103.1 php7-openssl-7.2.34-150000.4.103.1 php7-openssl-debuginfo-7.2.34-150000.4.103.1 php7-pcntl-7.2.34-150000.4.103.1 php7-pcntl-debuginfo-7.2.34-150000.4.103.1 php7-pdo-7.2.34-150000.4.103.1 php7-pdo-debuginfo-7.2.34-150000.4.103.1 php7-pgsql-7.2.34-150000.4.103.1 php7-pgsql-debuginfo-7.2.34-150000.4.103.1 php7-phar-7.2.34-150000.4.103.1 php7-phar-debuginfo-7.2.34-150000.4.103.1 php7-posix-7.2.34-150000.4.103.1 php7-posix-debuginfo-7.2.34-150000.4.103.1 php7-readline-7.2.34-150000.4.103.1 php7-readline-debuginfo-7.2.34-150000.4.103.1 php7-shmop-7.2.34-150000.4.103.1 php7-shmop-debuginfo-7.2.34-150000.4.103.1 php7-snmp-7.2.34-150000.4.103.1 php7-snmp-debuginfo-7.2.34-150000.4.103.1 php7-soap-7.2.34-150000.4.103.1 php7-soap-debuginfo-7.2.34-150000.4.103.1 php7-sockets-7.2.34-150000.4.103.1 php7-sockets-debuginfo-7.2.34-150000.4.103.1 php7-sodium-7.2.34-150000.4.103.1 php7-sodium-debuginfo-7.2.34-150000.4.103.1 php7-sqlite-7.2.34-150000.4.103.1 php7-sqlite-debuginfo-7.2.34-150000.4.103.1 php7-sysvmsg-7.2.34-150000.4.103.1 php7-sysvmsg-debuginfo-7.2.34-150000.4.103.1 php7-sysvsem-7.2.34-150000.4.103.1 php7-sysvsem-debuginfo-7.2.34-150000.4.103.1 php7-sysvshm-7.2.34-150000.4.103.1 php7-sysvshm-debuginfo-7.2.34-150000.4.103.1 php7-tidy-7.2.34-150000.4.103.1 php7-tidy-debuginfo-7.2.34-150000.4.103.1 php7-tokenizer-7.2.34-150000.4.103.1 php7-tokenizer-debuginfo-7.2.34-150000.4.103.1 php7-wddx-7.2.34-150000.4.103.1 php7-wddx-debuginfo-7.2.34-150000.4.103.1 php7-xmlreader-7.2.34-150000.4.103.1 php7-xmlreader-debuginfo-7.2.34-150000.4.103.1 php7-xmlrpc-7.2.34-150000.4.103.1 php7-xmlrpc-debuginfo-7.2.34-150000.4.103.1 php7-xmlwriter-7.2.34-150000.4.103.1 php7-xmlwriter-debuginfo-7.2.34-150000.4.103.1 php7-xsl-7.2.34-150000.4.103.1 php7-xsl-debuginfo-7.2.34-150000.4.103.1 php7-zip-7.2.34-150000.4.103.1 php7-zip-debuginfo-7.2.34-150000.4.103.1 php7-zlib-7.2.34-150000.4.103.1 php7-zlib-debuginfo-7.2.34-150000.4.103.1 - SUSE Linux Enterprise Server for SAP 15-SP1 (noarch): php7-pear-7.2.34-150000.4.103.1 php7-pear-Archive_Tar-7.2.34-150000.4.103.1 - SUSE Linux Enterprise Server for SAP 15 (ppc64le x86_64): apache2-mod_php7-7.2.34-150000.4.103.1 apache2-mod_php7-debuginfo-7.2.34-150000.4.103.1 php7-7.2.34-150000.4.103.1 php7-bcmath-7.2.34-150000.4.103.1 php7-bcmath-debuginfo-7.2.34-150000.4.103.1 php7-bz2-7.2.34-150000.4.103.1 php7-bz2-debuginfo-7.2.34-150000.4.103.1 php7-calendar-7.2.34-150000.4.103.1 php7-calendar-debuginfo-7.2.34-150000.4.103.1 php7-ctype-7.2.34-150000.4.103.1 php7-ctype-debuginfo-7.2.34-150000.4.103.1 php7-curl-7.2.34-150000.4.103.1 php7-curl-debuginfo-7.2.34-150000.4.103.1 php7-dba-7.2.34-150000.4.103.1 php7-dba-debuginfo-7.2.34-150000.4.103.1 php7-debuginfo-7.2.34-150000.4.103.1 php7-debugsource-7.2.34-150000.4.103.1 php7-devel-7.2.34-150000.4.103.1 php7-dom-7.2.34-150000.4.103.1 php7-dom-debuginfo-7.2.34-150000.4.103.1 php7-enchant-7.2.34-150000.4.103.1 php7-enchant-debuginfo-7.2.34-150000.4.103.1 php7-exif-7.2.34-150000.4.103.1 php7-exif-debuginfo-7.2.34-150000.4.103.1 php7-fastcgi-7.2.34-150000.4.103.1 php7-fastcgi-debuginfo-7.2.34-150000.4.103.1 php7-fileinfo-7.2.34-150000.4.103.1 php7-fileinfo-debuginfo-7.2.34-150000.4.103.1 php7-fpm-7.2.34-150000.4.103.1 php7-fpm-debuginfo-7.2.34-150000.4.103.1 php7-ftp-7.2.34-150000.4.103.1 php7-ftp-debuginfo-7.2.34-150000.4.103.1 php7-gd-7.2.34-150000.4.103.1 php7-gd-debuginfo-7.2.34-150000.4.103.1 php7-gettext-7.2.34-150000.4.103.1 php7-gettext-debuginfo-7.2.34-150000.4.103.1 php7-gmp-7.2.34-150000.4.103.1 php7-gmp-debuginfo-7.2.34-150000.4.103.1 php7-iconv-7.2.34-150000.4.103.1 php7-iconv-debuginfo-7.2.34-150000.4.103.1 php7-intl-7.2.34-150000.4.103.1 php7-intl-debuginfo-7.2.34-150000.4.103.1 php7-json-7.2.34-150000.4.103.1 php7-json-debuginfo-7.2.34-150000.4.103.1 php7-ldap-7.2.34-150000.4.103.1 php7-ldap-debuginfo-7.2.34-150000.4.103.1 php7-mbstring-7.2.34-150000.4.103.1 php7-mbstring-debuginfo-7.2.34-150000.4.103.1 php7-mysql-7.2.34-150000.4.103.1 php7-mysql-debuginfo-7.2.34-150000.4.103.1 php7-odbc-7.2.34-150000.4.103.1 php7-odbc-debuginfo-7.2.34-150000.4.103.1 php7-opcache-7.2.34-150000.4.103.1 php7-opcache-debuginfo-7.2.34-150000.4.103.1 php7-openssl-7.2.34-150000.4.103.1 php7-openssl-debuginfo-7.2.34-150000.4.103.1 php7-pcntl-7.2.34-150000.4.103.1 php7-pcntl-debuginfo-7.2.34-150000.4.103.1 php7-pdo-7.2.34-150000.4.103.1 php7-pdo-debuginfo-7.2.34-150000.4.103.1 php7-pgsql-7.2.34-150000.4.103.1 php7-pgsql-debuginfo-7.2.34-150000.4.103.1 php7-phar-7.2.34-150000.4.103.1 php7-phar-debuginfo-7.2.34-150000.4.103.1 php7-posix-7.2.34-150000.4.103.1 php7-posix-debuginfo-7.2.34-150000.4.103.1 php7-readline-7.2.34-150000.4.103.1 php7-readline-debuginfo-7.2.34-150000.4.103.1 php7-shmop-7.2.34-150000.4.103.1 php7-shmop-debuginfo-7.2.34-150000.4.103.1 php7-snmp-7.2.34-150000.4.103.1 php7-snmp-debuginfo-7.2.34-150000.4.103.1 php7-soap-7.2.34-150000.4.103.1 php7-soap-debuginfo-7.2.34-150000.4.103.1 php7-sockets-7.2.34-150000.4.103.1 php7-sockets-debuginfo-7.2.34-150000.4.103.1 php7-sodium-7.2.34-150000.4.103.1 php7-sodium-debuginfo-7.2.34-150000.4.103.1 php7-sqlite-7.2.34-150000.4.103.1 php7-sqlite-debuginfo-7.2.34-150000.4.103.1 php7-sysvmsg-7.2.34-150000.4.103.1 php7-sysvmsg-debuginfo-7.2.34-150000.4.103.1 php7-sysvsem-7.2.34-150000.4.103.1 php7-sysvsem-debuginfo-7.2.34-150000.4.103.1 php7-sysvshm-7.2.34-150000.4.103.1 php7-sysvshm-debuginfo-7.2.34-150000.4.103.1 php7-tokenizer-7.2.34-150000.4.103.1 php7-tokenizer-debuginfo-7.2.34-150000.4.103.1 php7-wddx-7.2.34-150000.4.103.1 php7-wddx-debuginfo-7.2.34-150000.4.103.1 php7-xmlreader-7.2.34-150000.4.103.1 php7-xmlreader-debuginfo-7.2.34-150000.4.103.1 php7-xmlrpc-7.2.34-150000.4.103.1 php7-xmlrpc-debuginfo-7.2.34-150000.4.103.1 php7-xmlwriter-7.2.34-150000.4.103.1 php7-xmlwriter-debuginfo-7.2.34-150000.4.103.1 php7-xsl-7.2.34-150000.4.103.1 php7-xsl-debuginfo-7.2.34-150000.4.103.1 php7-zip-7.2.34-150000.4.103.1 php7-zip-debuginfo-7.2.34-150000.4.103.1 php7-zlib-7.2.34-150000.4.103.1 php7-zlib-debuginfo-7.2.34-150000.4.103.1 - SUSE Linux Enterprise Server for SAP 15 (noarch): php7-pear-7.2.34-150000.4.103.1 php7-pear-Archive_Tar-7.2.34-150000.4.103.1 - SUSE Linux Enterprise Server 15-SP1-LTSS (aarch64 ppc64le s390x x86_64): apache2-mod_php7-7.2.34-150000.4.103.1 apache2-mod_php7-debuginfo-7.2.34-150000.4.103.1 php7-7.2.34-150000.4.103.1 php7-bcmath-7.2.34-150000.4.103.1 php7-bcmath-debuginfo-7.2.34-150000.4.103.1 php7-bz2-7.2.34-150000.4.103.1 php7-bz2-debuginfo-7.2.34-150000.4.103.1 php7-calendar-7.2.34-150000.4.103.1 php7-calendar-debuginfo-7.2.34-150000.4.103.1 php7-ctype-7.2.34-150000.4.103.1 php7-ctype-debuginfo-7.2.34-150000.4.103.1 php7-curl-7.2.34-150000.4.103.1 php7-curl-debuginfo-7.2.34-150000.4.103.1 php7-dba-7.2.34-150000.4.103.1 php7-dba-debuginfo-7.2.34-150000.4.103.1 php7-debuginfo-7.2.34-150000.4.103.1 php7-debugsource-7.2.34-150000.4.103.1 php7-devel-7.2.34-150000.4.103.1 php7-dom-7.2.34-150000.4.103.1 php7-dom-debuginfo-7.2.34-150000.4.103.1 php7-enchant-7.2.34-150000.4.103.1 php7-enchant-debuginfo-7.2.34-150000.4.103.1 php7-exif-7.2.34-150000.4.103.1 php7-exif-debuginfo-7.2.34-150000.4.103.1 php7-fastcgi-7.2.34-150000.4.103.1 php7-fastcgi-debuginfo-7.2.34-150000.4.103.1 php7-fileinfo-7.2.34-150000.4.103.1 php7-fileinfo-debuginfo-7.2.34-150000.4.103.1 php7-fpm-7.2.34-150000.4.103.1 php7-fpm-debuginfo-7.2.34-150000.4.103.1 php7-ftp-7.2.34-150000.4.103.1 php7-ftp-debuginfo-7.2.34-150000.4.103.1 php7-gd-7.2.34-150000.4.103.1 php7-gd-debuginfo-7.2.34-150000.4.103.1 php7-gettext-7.2.34-150000.4.103.1 php7-gettext-debuginfo-7.2.34-150000.4.103.1 php7-gmp-7.2.34-150000.4.103.1 php7-gmp-debuginfo-7.2.34-150000.4.103.1 php7-iconv-7.2.34-150000.4.103.1 php7-iconv-debuginfo-7.2.34-150000.4.103.1 php7-intl-7.2.34-150000.4.103.1 php7-intl-debuginfo-7.2.34-150000.4.103.1 php7-json-7.2.34-150000.4.103.1 php7-json-debuginfo-7.2.34-150000.4.103.1 php7-ldap-7.2.34-150000.4.103.1 php7-ldap-debuginfo-7.2.34-150000.4.103.1 php7-mbstring-7.2.34-150000.4.103.1 php7-mbstring-debuginfo-7.2.34-150000.4.103.1 php7-mysql-7.2.34-150000.4.103.1 php7-mysql-debuginfo-7.2.34-150000.4.103.1 php7-odbc-7.2.34-150000.4.103.1 php7-odbc-debuginfo-7.2.34-150000.4.103.1 php7-opcache-7.2.34-150000.4.103.1 php7-opcache-debuginfo-7.2.34-150000.4.103.1 php7-openssl-7.2.34-150000.4.103.1 php7-openssl-debuginfo-7.2.34-150000.4.103.1 php7-pcntl-7.2.34-150000.4.103.1 php7-pcntl-debuginfo-7.2.34-150000.4.103.1 php7-pdo-7.2.34-150000.4.103.1 php7-pdo-debuginfo-7.2.34-150000.4.103.1 php7-pgsql-7.2.34-150000.4.103.1 php7-pgsql-debuginfo-7.2.34-150000.4.103.1 php7-phar-7.2.34-150000.4.103.1 php7-phar-debuginfo-7.2.34-150000.4.103.1 php7-posix-7.2.34-150000.4.103.1 php7-posix-debuginfo-7.2.34-150000.4.103.1 php7-readline-7.2.34-150000.4.103.1 php7-readline-debuginfo-7.2.34-150000.4.103.1 php7-shmop-7.2.34-150000.4.103.1 php7-shmop-debuginfo-7.2.34-150000.4.103.1 php7-snmp-7.2.34-150000.4.103.1 php7-snmp-debuginfo-7.2.34-150000.4.103.1 php7-soap-7.2.34-150000.4.103.1 php7-soap-debuginfo-7.2.34-150000.4.103.1 php7-sockets-7.2.34-150000.4.103.1 php7-sockets-debuginfo-7.2.34-150000.4.103.1 php7-sodium-7.2.34-150000.4.103.1 php7-sodium-debuginfo-7.2.34-150000.4.103.1 php7-sqlite-7.2.34-150000.4.103.1 php7-sqlite-debuginfo-7.2.34-150000.4.103.1 php7-sysvmsg-7.2.34-150000.4.103.1 php7-sysvmsg-debuginfo-7.2.34-150000.4.103.1 php7-sysvsem-7.2.34-150000.4.103.1 php7-sysvsem-debuginfo-7.2.34-150000.4.103.1 php7-sysvshm-7.2.34-150000.4.103.1 php7-sysvshm-debuginfo-7.2.34-150000.4.103.1 php7-tidy-7.2.34-150000.4.103.1 php7-tidy-debuginfo-7.2.34-150000.4.103.1 php7-tokenizer-7.2.34-150000.4.103.1 php7-tokenizer-debuginfo-7.2.34-150000.4.103.1 php7-wddx-7.2.34-150000.4.103.1 php7-wddx-debuginfo-7.2.34-150000.4.103.1 php7-xmlreader-7.2.34-150000.4.103.1 php7-xmlreader-debuginfo-7.2.34-150000.4.103.1 php7-xmlrpc-7.2.34-150000.4.103.1 php7-xmlrpc-debuginfo-7.2.34-150000.4.103.1 php7-xmlwriter-7.2.34-150000.4.103.1 php7-xmlwriter-debuginfo-7.2.34-150000.4.103.1 php7-xsl-7.2.34-150000.4.103.1 php7-xsl-debuginfo-7.2.34-150000.4.103.1 php7-zip-7.2.34-150000.4.103.1 php7-zip-debuginfo-7.2.34-150000.4.103.1 php7-zlib-7.2.34-150000.4.103.1 php7-zlib-debuginfo-7.2.34-150000.4.103.1 - SUSE Linux Enterprise Server 15-SP1-LTSS (noarch): php7-pear-7.2.34-150000.4.103.1 php7-pear-Archive_Tar-7.2.34-150000.4.103.1 - SUSE Linux Enterprise Server 15-SP1-BCL (noarch): php7-pear-7.2.34-150000.4.103.1 php7-pear-Archive_Tar-7.2.34-150000.4.103.1 - SUSE Linux Enterprise Server 15-SP1-BCL (x86_64): apache2-mod_php7-7.2.34-150000.4.103.1 apache2-mod_php7-debuginfo-7.2.34-150000.4.103.1 php7-7.2.34-150000.4.103.1 php7-bcmath-7.2.34-150000.4.103.1 php7-bcmath-debuginfo-7.2.34-150000.4.103.1 php7-bz2-7.2.34-150000.4.103.1 php7-bz2-debuginfo-7.2.34-150000.4.103.1 php7-calendar-7.2.34-150000.4.103.1 php7-calendar-debuginfo-7.2.34-150000.4.103.1 php7-ctype-7.2.34-150000.4.103.1 php7-ctype-debuginfo-7.2.34-150000.4.103.1 php7-curl-7.2.34-150000.4.103.1 php7-curl-debuginfo-7.2.34-150000.4.103.1 php7-dba-7.2.34-150000.4.103.1 php7-dba-debuginfo-7.2.34-150000.4.103.1 php7-debuginfo-7.2.34-150000.4.103.1 php7-debugsource-7.2.34-150000.4.103.1 php7-devel-7.2.34-150000.4.103.1 php7-dom-7.2.34-150000.4.103.1 php7-dom-debuginfo-7.2.34-150000.4.103.1 php7-enchant-7.2.34-150000.4.103.1 php7-enchant-debuginfo-7.2.34-150000.4.103.1 php7-exif-7.2.34-150000.4.103.1 php7-exif-debuginfo-7.2.34-150000.4.103.1 php7-fastcgi-7.2.34-150000.4.103.1 php7-fastcgi-debuginfo-7.2.34-150000.4.103.1 php7-fileinfo-7.2.34-150000.4.103.1 php7-fileinfo-debuginfo-7.2.34-150000.4.103.1 php7-fpm-7.2.34-150000.4.103.1 php7-fpm-debuginfo-7.2.34-150000.4.103.1 php7-ftp-7.2.34-150000.4.103.1 php7-ftp-debuginfo-7.2.34-150000.4.103.1 php7-gd-7.2.34-150000.4.103.1 php7-gd-debuginfo-7.2.34-150000.4.103.1 php7-gettext-7.2.34-150000.4.103.1 php7-gettext-debuginfo-7.2.34-150000.4.103.1 php7-gmp-7.2.34-150000.4.103.1 php7-gmp-debuginfo-7.2.34-150000.4.103.1 php7-iconv-7.2.34-150000.4.103.1 php7-iconv-debuginfo-7.2.34-150000.4.103.1 php7-intl-7.2.34-150000.4.103.1 php7-intl-debuginfo-7.2.34-150000.4.103.1 php7-json-7.2.34-150000.4.103.1 php7-json-debuginfo-7.2.34-150000.4.103.1 php7-ldap-7.2.34-150000.4.103.1 php7-ldap-debuginfo-7.2.34-150000.4.103.1 php7-mbstring-7.2.34-150000.4.103.1 php7-mbstring-debuginfo-7.2.34-150000.4.103.1 php7-mysql-7.2.34-150000.4.103.1 php7-mysql-debuginfo-7.2.34-150000.4.103.1 php7-odbc-7.2.34-150000.4.103.1 php7-odbc-debuginfo-7.2.34-150000.4.103.1 php7-opcache-7.2.34-150000.4.103.1 php7-opcache-debuginfo-7.2.34-150000.4.103.1 php7-openssl-7.2.34-150000.4.103.1 php7-openssl-debuginfo-7.2.34-150000.4.103.1 php7-pcntl-7.2.34-150000.4.103.1 php7-pcntl-debuginfo-7.2.34-150000.4.103.1 php7-pdo-7.2.34-150000.4.103.1 php7-pdo-debuginfo-7.2.34-150000.4.103.1 php7-pgsql-7.2.34-150000.4.103.1 php7-pgsql-debuginfo-7.2.34-150000.4.103.1 php7-phar-7.2.34-150000.4.103.1 php7-phar-debuginfo-7.2.34-150000.4.103.1 php7-posix-7.2.34-150000.4.103.1 php7-posix-debuginfo-7.2.34-150000.4.103.1 php7-readline-7.2.34-150000.4.103.1 php7-readline-debuginfo-7.2.34-150000.4.103.1 php7-shmop-7.2.34-150000.4.103.1 php7-shmop-debuginfo-7.2.34-150000.4.103.1 php7-snmp-7.2.34-150000.4.103.1 php7-snmp-debuginfo-7.2.34-150000.4.103.1 php7-soap-7.2.34-150000.4.103.1 php7-soap-debuginfo-7.2.34-150000.4.103.1 php7-sockets-7.2.34-150000.4.103.1 php7-sockets-debuginfo-7.2.34-150000.4.103.1 php7-sodium-7.2.34-150000.4.103.1 php7-sodium-debuginfo-7.2.34-150000.4.103.1 php7-sqlite-7.2.34-150000.4.103.1 php7-sqlite-debuginfo-7.2.34-150000.4.103.1 php7-sysvmsg-7.2.34-150000.4.103.1 php7-sysvmsg-debuginfo-7.2.34-150000.4.103.1 php7-sysvsem-7.2.34-150000.4.103.1 php7-sysvsem-debuginfo-7.2.34-150000.4.103.1 php7-sysvshm-7.2.34-150000.4.103.1 php7-sysvshm-debuginfo-7.2.34-150000.4.103.1 php7-tidy-7.2.34-150000.4.103.1 php7-tidy-debuginfo-7.2.34-150000.4.103.1 php7-tokenizer-7.2.34-150000.4.103.1 php7-tokenizer-debuginfo-7.2.34-150000.4.103.1 php7-wddx-7.2.34-150000.4.103.1 php7-wddx-debuginfo-7.2.34-150000.4.103.1 php7-xmlreader-7.2.34-150000.4.103.1 php7-xmlreader-debuginfo-7.2.34-150000.4.103.1 php7-xmlrpc-7.2.34-150000.4.103.1 php7-xmlrpc-debuginfo-7.2.34-150000.4.103.1 php7-xmlwriter-7.2.34-150000.4.103.1 php7-xmlwriter-debuginfo-7.2.34-150000.4.103.1 php7-xsl-7.2.34-150000.4.103.1 php7-xsl-debuginfo-7.2.34-150000.4.103.1 php7-zip-7.2.34-150000.4.103.1 php7-zip-debuginfo-7.2.34-150000.4.103.1 php7-zlib-7.2.34-150000.4.103.1 php7-zlib-debuginfo-7.2.34-150000.4.103.1 - SUSE Linux Enterprise Server 15-LTSS (aarch64 s390x): apache2-mod_php7-7.2.34-150000.4.103.1 apache2-mod_php7-debuginfo-7.2.34-150000.4.103.1 php7-7.2.34-150000.4.103.1 php7-bcmath-7.2.34-150000.4.103.1 php7-bcmath-debuginfo-7.2.34-150000.4.103.1 php7-bz2-7.2.34-150000.4.103.1 php7-bz2-debuginfo-7.2.34-150000.4.103.1 php7-calendar-7.2.34-150000.4.103.1 php7-calendar-debuginfo-7.2.34-150000.4.103.1 php7-ctype-7.2.34-150000.4.103.1 php7-ctype-debuginfo-7.2.34-150000.4.103.1 php7-curl-7.2.34-150000.4.103.1 php7-curl-debuginfo-7.2.34-150000.4.103.1 php7-dba-7.2.34-150000.4.103.1 php7-dba-debuginfo-7.2.34-150000.4.103.1 php7-debuginfo-7.2.34-150000.4.103.1 php7-debugsource-7.2.34-150000.4.103.1 php7-devel-7.2.34-150000.4.103.1 php7-dom-7.2.34-150000.4.103.1 php7-dom-debuginfo-7.2.34-150000.4.103.1 php7-enchant-7.2.34-150000.4.103.1 php7-enchant-debuginfo-7.2.34-150000.4.103.1 php7-exif-7.2.34-150000.4.103.1 php7-exif-debuginfo-7.2.34-150000.4.103.1 php7-fastcgi-7.2.34-150000.4.103.1 php7-fastcgi-debuginfo-7.2.34-150000.4.103.1 php7-fileinfo-7.2.34-150000.4.103.1 php7-fileinfo-debuginfo-7.2.34-150000.4.103.1 php7-fpm-7.2.34-150000.4.103.1 php7-fpm-debuginfo-7.2.34-150000.4.103.1 php7-ftp-7.2.34-150000.4.103.1 php7-ftp-debuginfo-7.2.34-150000.4.103.1 php7-gd-7.2.34-150000.4.103.1 php7-gd-debuginfo-7.2.34-150000.4.103.1 php7-gettext-7.2.34-150000.4.103.1 php7-gettext-debuginfo-7.2.34-150000.4.103.1 php7-gmp-7.2.34-150000.4.103.1 php7-gmp-debuginfo-7.2.34-150000.4.103.1 php7-iconv-7.2.34-150000.4.103.1 php7-iconv-debuginfo-7.2.34-150000.4.103.1 php7-intl-7.2.34-150000.4.103.1 php7-intl-debuginfo-7.2.34-150000.4.103.1 php7-json-7.2.34-150000.4.103.1 php7-json-debuginfo-7.2.34-150000.4.103.1 php7-ldap-7.2.34-150000.4.103.1 php7-ldap-debuginfo-7.2.34-150000.4.103.1 php7-mbstring-7.2.34-150000.4.103.1 php7-mbstring-debuginfo-7.2.34-150000.4.103.1 php7-mysql-7.2.34-150000.4.103.1 php7-mysql-debuginfo-7.2.34-150000.4.103.1 php7-odbc-7.2.34-150000.4.103.1 php7-odbc-debuginfo-7.2.34-150000.4.103.1 php7-opcache-7.2.34-150000.4.103.1 php7-opcache-debuginfo-7.2.34-150000.4.103.1 php7-openssl-7.2.34-150000.4.103.1 php7-openssl-debuginfo-7.2.34-150000.4.103.1 php7-pcntl-7.2.34-150000.4.103.1 php7-pcntl-debuginfo-7.2.34-150000.4.103.1 php7-pdo-7.2.34-150000.4.103.1 php7-pdo-debuginfo-7.2.34-150000.4.103.1 php7-pgsql-7.2.34-150000.4.103.1 php7-pgsql-debuginfo-7.2.34-150000.4.103.1 php7-phar-7.2.34-150000.4.103.1 php7-phar-debuginfo-7.2.34-150000.4.103.1 php7-posix-7.2.34-150000.4.103.1 php7-posix-debuginfo-7.2.34-150000.4.103.1 php7-readline-7.2.34-150000.4.103.1 php7-readline-debuginfo-7.2.34-150000.4.103.1 php7-shmop-7.2.34-150000.4.103.1 php7-shmop-debuginfo-7.2.34-150000.4.103.1 php7-snmp-7.2.34-150000.4.103.1 php7-snmp-debuginfo-7.2.34-150000.4.103.1 php7-soap-7.2.34-150000.4.103.1 php7-soap-debuginfo-7.2.34-150000.4.103.1 php7-sockets-7.2.34-150000.4.103.1 php7-sockets-debuginfo-7.2.34-150000.4.103.1 php7-sodium-7.2.34-150000.4.103.1 php7-sodium-debuginfo-7.2.34-150000.4.103.1 php7-sqlite-7.2.34-150000.4.103.1 php7-sqlite-debuginfo-7.2.34-150000.4.103.1 php7-sysvmsg-7.2.34-150000.4.103.1 php7-sysvmsg-debuginfo-7.2.34-150000.4.103.1 php7-sysvsem-7.2.34-150000.4.103.1 php7-sysvsem-debuginfo-7.2.34-150000.4.103.1 php7-sysvshm-7.2.34-150000.4.103.1 php7-sysvshm-debuginfo-7.2.34-150000.4.103.1 php7-tokenizer-7.2.34-150000.4.103.1 php7-tokenizer-debuginfo-7.2.34-150000.4.103.1 php7-wddx-7.2.34-150000.4.103.1 php7-wddx-debuginfo-7.2.34-150000.4.103.1 php7-xmlreader-7.2.34-150000.4.103.1 php7-xmlreader-debuginfo-7.2.34-150000.4.103.1 php7-xmlrpc-7.2.34-150000.4.103.1 php7-xmlrpc-debuginfo-7.2.34-150000.4.103.1 php7-xmlwriter-7.2.34-150000.4.103.1 php7-xmlwriter-debuginfo-7.2.34-150000.4.103.1 php7-xsl-7.2.34-150000.4.103.1 php7-xsl-debuginfo-7.2.34-150000.4.103.1 php7-zip-7.2.34-150000.4.103.1 php7-zip-debuginfo-7.2.34-150000.4.103.1 php7-zlib-7.2.34-150000.4.103.1 php7-zlib-debuginfo-7.2.34-150000.4.103.1 - SUSE Linux Enterprise Server 15-LTSS (noarch): php7-pear-7.2.34-150000.4.103.1 php7-pear-Archive_Tar-7.2.34-150000.4.103.1 - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS (aarch64 x86_64): apache2-mod_php7-7.2.34-150000.4.103.1 apache2-mod_php7-debuginfo-7.2.34-150000.4.103.1 php7-7.2.34-150000.4.103.1 php7-bcmath-7.2.34-150000.4.103.1 php7-bcmath-debuginfo-7.2.34-150000.4.103.1 php7-bz2-7.2.34-150000.4.103.1 php7-bz2-debuginfo-7.2.34-150000.4.103.1 php7-calendar-7.2.34-150000.4.103.1 php7-calendar-debuginfo-7.2.34-150000.4.103.1 php7-ctype-7.2.34-150000.4.103.1 php7-ctype-debuginfo-7.2.34-150000.4.103.1 php7-curl-7.2.34-150000.4.103.1 php7-curl-debuginfo-7.2.34-150000.4.103.1 php7-dba-7.2.34-150000.4.103.1 php7-dba-debuginfo-7.2.34-150000.4.103.1 php7-debuginfo-7.2.34-150000.4.103.1 php7-debugsource-7.2.34-150000.4.103.1 php7-devel-7.2.34-150000.4.103.1 php7-dom-7.2.34-150000.4.103.1 php7-dom-debuginfo-7.2.34-150000.4.103.1 php7-enchant-7.2.34-150000.4.103.1 php7-enchant-debuginfo-7.2.34-150000.4.103.1 php7-exif-7.2.34-150000.4.103.1 php7-exif-debuginfo-7.2.34-150000.4.103.1 php7-fastcgi-7.2.34-150000.4.103.1 php7-fastcgi-debuginfo-7.2.34-150000.4.103.1 php7-fileinfo-7.2.34-150000.4.103.1 php7-fileinfo-debuginfo-7.2.34-150000.4.103.1 php7-fpm-7.2.34-150000.4.103.1 php7-fpm-debuginfo-7.2.34-150000.4.103.1 php7-ftp-7.2.34-150000.4.103.1 php7-ftp-debuginfo-7.2.34-150000.4.103.1 php7-gd-7.2.34-150000.4.103.1 php7-gd-debuginfo-7.2.34-150000.4.103.1 php7-gettext-7.2.34-150000.4.103.1 php7-gettext-debuginfo-7.2.34-150000.4.103.1 php7-gmp-7.2.34-150000.4.103.1 php7-gmp-debuginfo-7.2.34-150000.4.103.1 php7-iconv-7.2.34-150000.4.103.1 php7-iconv-debuginfo-7.2.34-150000.4.103.1 php7-intl-7.2.34-150000.4.103.1 php7-intl-debuginfo-7.2.34-150000.4.103.1 php7-json-7.2.34-150000.4.103.1 php7-json-debuginfo-7.2.34-150000.4.103.1 php7-ldap-7.2.34-150000.4.103.1 php7-ldap-debuginfo-7.2.34-150000.4.103.1 php7-mbstring-7.2.34-150000.4.103.1 php7-mbstring-debuginfo-7.2.34-150000.4.103.1 php7-mysql-7.2.34-150000.4.103.1 php7-mysql-debuginfo-7.2.34-150000.4.103.1 php7-odbc-7.2.34-150000.4.103.1 php7-odbc-debuginfo-7.2.34-150000.4.103.1 php7-opcache-7.2.34-150000.4.103.1 php7-opcache-debuginfo-7.2.34-150000.4.103.1 php7-openssl-7.2.34-150000.4.103.1 php7-openssl-debuginfo-7.2.34-150000.4.103.1 php7-pcntl-7.2.34-150000.4.103.1 php7-pcntl-debuginfo-7.2.34-150000.4.103.1 php7-pdo-7.2.34-150000.4.103.1 php7-pdo-debuginfo-7.2.34-150000.4.103.1 php7-pgsql-7.2.34-150000.4.103.1 php7-pgsql-debuginfo-7.2.34-150000.4.103.1 php7-phar-7.2.34-150000.4.103.1 php7-phar-debuginfo-7.2.34-150000.4.103.1 php7-posix-7.2.34-150000.4.103.1 php7-posix-debuginfo-7.2.34-150000.4.103.1 php7-readline-7.2.34-150000.4.103.1 php7-readline-debuginfo-7.2.34-150000.4.103.1 php7-shmop-7.2.34-150000.4.103.1 php7-shmop-debuginfo-7.2.34-150000.4.103.1 php7-snmp-7.2.34-150000.4.103.1 php7-snmp-debuginfo-7.2.34-150000.4.103.1 php7-soap-7.2.34-150000.4.103.1 php7-soap-debuginfo-7.2.34-150000.4.103.1 php7-sockets-7.2.34-150000.4.103.1 php7-sockets-debuginfo-7.2.34-150000.4.103.1 php7-sodium-7.2.34-150000.4.103.1 php7-sodium-debuginfo-7.2.34-150000.4.103.1 php7-sqlite-7.2.34-150000.4.103.1 php7-sqlite-debuginfo-7.2.34-150000.4.103.1 php7-sysvmsg-7.2.34-150000.4.103.1 php7-sysvmsg-debuginfo-7.2.34-150000.4.103.1 php7-sysvsem-7.2.34-150000.4.103.1 php7-sysvsem-debuginfo-7.2.34-150000.4.103.1 php7-sysvshm-7.2.34-150000.4.103.1 php7-sysvshm-debuginfo-7.2.34-150000.4.103.1 php7-tidy-7.2.34-150000.4.103.1 php7-tidy-debuginfo-7.2.34-150000.4.103.1 php7-tokenizer-7.2.34-150000.4.103.1 php7-tokenizer-debuginfo-7.2.34-150000.4.103.1 php7-wddx-7.2.34-150000.4.103.1 php7-wddx-debuginfo-7.2.34-150000.4.103.1 php7-xmlreader-7.2.34-150000.4.103.1 php7-xmlreader-debuginfo-7.2.34-150000.4.103.1 php7-xmlrpc-7.2.34-150000.4.103.1 php7-xmlrpc-debuginfo-7.2.34-150000.4.103.1 php7-xmlwriter-7.2.34-150000.4.103.1 php7-xmlwriter-debuginfo-7.2.34-150000.4.103.1 php7-xsl-7.2.34-150000.4.103.1 php7-xsl-debuginfo-7.2.34-150000.4.103.1 php7-zip-7.2.34-150000.4.103.1 php7-zip-debuginfo-7.2.34-150000.4.103.1 php7-zlib-7.2.34-150000.4.103.1 php7-zlib-debuginfo-7.2.34-150000.4.103.1 - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS (noarch): php7-pear-7.2.34-150000.4.103.1 php7-pear-Archive_Tar-7.2.34-150000.4.103.1 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (aarch64 x86_64): apache2-mod_php7-7.2.34-150000.4.103.1 apache2-mod_php7-debuginfo-7.2.34-150000.4.103.1 php7-7.2.34-150000.4.103.1 php7-bcmath-7.2.34-150000.4.103.1 php7-bcmath-debuginfo-7.2.34-150000.4.103.1 php7-bz2-7.2.34-150000.4.103.1 php7-bz2-debuginfo-7.2.34-150000.4.103.1 php7-calendar-7.2.34-150000.4.103.1 php7-calendar-debuginfo-7.2.34-150000.4.103.1 php7-ctype-7.2.34-150000.4.103.1 php7-ctype-debuginfo-7.2.34-150000.4.103.1 php7-curl-7.2.34-150000.4.103.1 php7-curl-debuginfo-7.2.34-150000.4.103.1 php7-dba-7.2.34-150000.4.103.1 php7-dba-debuginfo-7.2.34-150000.4.103.1 php7-debuginfo-7.2.34-150000.4.103.1 php7-debugsource-7.2.34-150000.4.103.1 php7-devel-7.2.34-150000.4.103.1 php7-dom-7.2.34-150000.4.103.1 php7-dom-debuginfo-7.2.34-150000.4.103.1 php7-enchant-7.2.34-150000.4.103.1 php7-enchant-debuginfo-7.2.34-150000.4.103.1 php7-exif-7.2.34-150000.4.103.1 php7-exif-debuginfo-7.2.34-150000.4.103.1 php7-fastcgi-7.2.34-150000.4.103.1 php7-fastcgi-debuginfo-7.2.34-150000.4.103.1 php7-fileinfo-7.2.34-150000.4.103.1 php7-fileinfo-debuginfo-7.2.34-150000.4.103.1 php7-fpm-7.2.34-150000.4.103.1 php7-fpm-debuginfo-7.2.34-150000.4.103.1 php7-ftp-7.2.34-150000.4.103.1 php7-ftp-debuginfo-7.2.34-150000.4.103.1 php7-gd-7.2.34-150000.4.103.1 php7-gd-debuginfo-7.2.34-150000.4.103.1 php7-gettext-7.2.34-150000.4.103.1 php7-gettext-debuginfo-7.2.34-150000.4.103.1 php7-gmp-7.2.34-150000.4.103.1 php7-gmp-debuginfo-7.2.34-150000.4.103.1 php7-iconv-7.2.34-150000.4.103.1 php7-iconv-debuginfo-7.2.34-150000.4.103.1 php7-intl-7.2.34-150000.4.103.1 php7-intl-debuginfo-7.2.34-150000.4.103.1 php7-json-7.2.34-150000.4.103.1 php7-json-debuginfo-7.2.34-150000.4.103.1 php7-ldap-7.2.34-150000.4.103.1 php7-ldap-debuginfo-7.2.34-150000.4.103.1 php7-mbstring-7.2.34-150000.4.103.1 php7-mbstring-debuginfo-7.2.34-150000.4.103.1 php7-mysql-7.2.34-150000.4.103.1 php7-mysql-debuginfo-7.2.34-150000.4.103.1 php7-odbc-7.2.34-150000.4.103.1 php7-odbc-debuginfo-7.2.34-150000.4.103.1 php7-opcache-7.2.34-150000.4.103.1 php7-opcache-debuginfo-7.2.34-150000.4.103.1 php7-openssl-7.2.34-150000.4.103.1 php7-openssl-debuginfo-7.2.34-150000.4.103.1 php7-pcntl-7.2.34-150000.4.103.1 php7-pcntl-debuginfo-7.2.34-150000.4.103.1 php7-pdo-7.2.34-150000.4.103.1 php7-pdo-debuginfo-7.2.34-150000.4.103.1 php7-pgsql-7.2.34-150000.4.103.1 php7-pgsql-debuginfo-7.2.34-150000.4.103.1 php7-phar-7.2.34-150000.4.103.1 php7-phar-debuginfo-7.2.34-150000.4.103.1 php7-posix-7.2.34-150000.4.103.1 php7-posix-debuginfo-7.2.34-150000.4.103.1 php7-readline-7.2.34-150000.4.103.1 php7-readline-debuginfo-7.2.34-150000.4.103.1 php7-shmop-7.2.34-150000.4.103.1 php7-shmop-debuginfo-7.2.34-150000.4.103.1 php7-snmp-7.2.34-150000.4.103.1 php7-snmp-debuginfo-7.2.34-150000.4.103.1 php7-soap-7.2.34-150000.4.103.1 php7-soap-debuginfo-7.2.34-150000.4.103.1 php7-sockets-7.2.34-150000.4.103.1 php7-sockets-debuginfo-7.2.34-150000.4.103.1 php7-sodium-7.2.34-150000.4.103.1 php7-sodium-debuginfo-7.2.34-150000.4.103.1 php7-sqlite-7.2.34-150000.4.103.1 php7-sqlite-debuginfo-7.2.34-150000.4.103.1 php7-sysvmsg-7.2.34-150000.4.103.1 php7-sysvmsg-debuginfo-7.2.34-150000.4.103.1 php7-sysvsem-7.2.34-150000.4.103.1 php7-sysvsem-debuginfo-7.2.34-150000.4.103.1 php7-sysvshm-7.2.34-150000.4.103.1 php7-sysvshm-debuginfo-7.2.34-150000.4.103.1 php7-tidy-7.2.34-150000.4.103.1 php7-tidy-debuginfo-7.2.34-150000.4.103.1 php7-tokenizer-7.2.34-150000.4.103.1 php7-tokenizer-debuginfo-7.2.34-150000.4.103.1 php7-wddx-7.2.34-150000.4.103.1 php7-wddx-debuginfo-7.2.34-150000.4.103.1 php7-xmlreader-7.2.34-150000.4.103.1 php7-xmlreader-debuginfo-7.2.34-150000.4.103.1 php7-xmlrpc-7.2.34-150000.4.103.1 php7-xmlrpc-debuginfo-7.2.34-150000.4.103.1 php7-xmlwriter-7.2.34-150000.4.103.1 php7-xmlwriter-debuginfo-7.2.34-150000.4.103.1 php7-xsl-7.2.34-150000.4.103.1 php7-xsl-debuginfo-7.2.34-150000.4.103.1 php7-zip-7.2.34-150000.4.103.1 php7-zip-debuginfo-7.2.34-150000.4.103.1 php7-zlib-7.2.34-150000.4.103.1 php7-zlib-debuginfo-7.2.34-150000.4.103.1 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (noarch): php7-pear-7.2.34-150000.4.103.1 php7-pear-Archive_Tar-7.2.34-150000.4.103.1 - SUSE Linux Enterprise High Performance Computing 15-LTSS (aarch64 x86_64): apache2-mod_php7-7.2.34-150000.4.103.1 apache2-mod_php7-debuginfo-7.2.34-150000.4.103.1 php7-7.2.34-150000.4.103.1 php7-bcmath-7.2.34-150000.4.103.1 php7-bcmath-debuginfo-7.2.34-150000.4.103.1 php7-bz2-7.2.34-150000.4.103.1 php7-bz2-debuginfo-7.2.34-150000.4.103.1 php7-calendar-7.2.34-150000.4.103.1 php7-calendar-debuginfo-7.2.34-150000.4.103.1 php7-ctype-7.2.34-150000.4.103.1 php7-ctype-debuginfo-7.2.34-150000.4.103.1 php7-curl-7.2.34-150000.4.103.1 php7-curl-debuginfo-7.2.34-150000.4.103.1 php7-dba-7.2.34-150000.4.103.1 php7-dba-debuginfo-7.2.34-150000.4.103.1 php7-debuginfo-7.2.34-150000.4.103.1 php7-debugsource-7.2.34-150000.4.103.1 php7-devel-7.2.34-150000.4.103.1 php7-dom-7.2.34-150000.4.103.1 php7-dom-debuginfo-7.2.34-150000.4.103.1 php7-enchant-7.2.34-150000.4.103.1 php7-enchant-debuginfo-7.2.34-150000.4.103.1 php7-exif-7.2.34-150000.4.103.1 php7-exif-debuginfo-7.2.34-150000.4.103.1 php7-fastcgi-7.2.34-150000.4.103.1 php7-fastcgi-debuginfo-7.2.34-150000.4.103.1 php7-fileinfo-7.2.34-150000.4.103.1 php7-fileinfo-debuginfo-7.2.34-150000.4.103.1 php7-fpm-7.2.34-150000.4.103.1 php7-fpm-debuginfo-7.2.34-150000.4.103.1 php7-ftp-7.2.34-150000.4.103.1 php7-ftp-debuginfo-7.2.34-150000.4.103.1 php7-gd-7.2.34-150000.4.103.1 php7-gd-debuginfo-7.2.34-150000.4.103.1 php7-gettext-7.2.34-150000.4.103.1 php7-gettext-debuginfo-7.2.34-150000.4.103.1 php7-gmp-7.2.34-150000.4.103.1 php7-gmp-debuginfo-7.2.34-150000.4.103.1 php7-iconv-7.2.34-150000.4.103.1 php7-iconv-debuginfo-7.2.34-150000.4.103.1 php7-intl-7.2.34-150000.4.103.1 php7-intl-debuginfo-7.2.34-150000.4.103.1 php7-json-7.2.34-150000.4.103.1 php7-json-debuginfo-7.2.34-150000.4.103.1 php7-ldap-7.2.34-150000.4.103.1 php7-ldap-debuginfo-7.2.34-150000.4.103.1 php7-mbstring-7.2.34-150000.4.103.1 php7-mbstring-debuginfo-7.2.34-150000.4.103.1 php7-mysql-7.2.34-150000.4.103.1 php7-mysql-debuginfo-7.2.34-150000.4.103.1 php7-odbc-7.2.34-150000.4.103.1 php7-odbc-debuginfo-7.2.34-150000.4.103.1 php7-opcache-7.2.34-150000.4.103.1 php7-opcache-debuginfo-7.2.34-150000.4.103.1 php7-openssl-7.2.34-150000.4.103.1 php7-openssl-debuginfo-7.2.34-150000.4.103.1 php7-pcntl-7.2.34-150000.4.103.1 php7-pcntl-debuginfo-7.2.34-150000.4.103.1 php7-pdo-7.2.34-150000.4.103.1 php7-pdo-debuginfo-7.2.34-150000.4.103.1 php7-pgsql-7.2.34-150000.4.103.1 php7-pgsql-debuginfo-7.2.34-150000.4.103.1 php7-phar-7.2.34-150000.4.103.1 php7-phar-debuginfo-7.2.34-150000.4.103.1 php7-posix-7.2.34-150000.4.103.1 php7-posix-debuginfo-7.2.34-150000.4.103.1 php7-readline-7.2.34-150000.4.103.1 php7-readline-debuginfo-7.2.34-150000.4.103.1 php7-shmop-7.2.34-150000.4.103.1 php7-shmop-debuginfo-7.2.34-150000.4.103.1 php7-snmp-7.2.34-150000.4.103.1 php7-snmp-debuginfo-7.2.34-150000.4.103.1 php7-soap-7.2.34-150000.4.103.1 php7-soap-debuginfo-7.2.34-150000.4.103.1 php7-sockets-7.2.34-150000.4.103.1 php7-sockets-debuginfo-7.2.34-150000.4.103.1 php7-sodium-7.2.34-150000.4.103.1 php7-sodium-debuginfo-7.2.34-150000.4.103.1 php7-sqlite-7.2.34-150000.4.103.1 php7-sqlite-debuginfo-7.2.34-150000.4.103.1 php7-sysvmsg-7.2.34-150000.4.103.1 php7-sysvmsg-debuginfo-7.2.34-150000.4.103.1 php7-sysvsem-7.2.34-150000.4.103.1 php7-sysvsem-debuginfo-7.2.34-150000.4.103.1 php7-sysvshm-7.2.34-150000.4.103.1 php7-sysvshm-debuginfo-7.2.34-150000.4.103.1 php7-tokenizer-7.2.34-150000.4.103.1 php7-tokenizer-debuginfo-7.2.34-150000.4.103.1 php7-wddx-7.2.34-150000.4.103.1 php7-wddx-debuginfo-7.2.34-150000.4.103.1 php7-xmlreader-7.2.34-150000.4.103.1 php7-xmlreader-debuginfo-7.2.34-150000.4.103.1 php7-xmlrpc-7.2.34-150000.4.103.1 php7-xmlrpc-debuginfo-7.2.34-150000.4.103.1 php7-xmlwriter-7.2.34-150000.4.103.1 php7-xmlwriter-debuginfo-7.2.34-150000.4.103.1 php7-xsl-7.2.34-150000.4.103.1 php7-xsl-debuginfo-7.2.34-150000.4.103.1 php7-zip-7.2.34-150000.4.103.1 php7-zip-debuginfo-7.2.34-150000.4.103.1 php7-zlib-7.2.34-150000.4.103.1 php7-zlib-debuginfo-7.2.34-150000.4.103.1 - SUSE Linux Enterprise High Performance Computing 15-LTSS (noarch): php7-pear-7.2.34-150000.4.103.1 php7-pear-Archive_Tar-7.2.34-150000.4.103.1 - SUSE Linux Enterprise High Performance Computing 15-ESPOS (aarch64 x86_64): apache2-mod_php7-7.2.34-150000.4.103.1 apache2-mod_php7-debuginfo-7.2.34-150000.4.103.1 php7-7.2.34-150000.4.103.1 php7-bcmath-7.2.34-150000.4.103.1 php7-bcmath-debuginfo-7.2.34-150000.4.103.1 php7-bz2-7.2.34-150000.4.103.1 php7-bz2-debuginfo-7.2.34-150000.4.103.1 php7-calendar-7.2.34-150000.4.103.1 php7-calendar-debuginfo-7.2.34-150000.4.103.1 php7-ctype-7.2.34-150000.4.103.1 php7-ctype-debuginfo-7.2.34-150000.4.103.1 php7-curl-7.2.34-150000.4.103.1 php7-curl-debuginfo-7.2.34-150000.4.103.1 php7-dba-7.2.34-150000.4.103.1 php7-dba-debuginfo-7.2.34-150000.4.103.1 php7-debuginfo-7.2.34-150000.4.103.1 php7-debugsource-7.2.34-150000.4.103.1 php7-devel-7.2.34-150000.4.103.1 php7-dom-7.2.34-150000.4.103.1 php7-dom-debuginfo-7.2.34-150000.4.103.1 php7-enchant-7.2.34-150000.4.103.1 php7-enchant-debuginfo-7.2.34-150000.4.103.1 php7-exif-7.2.34-150000.4.103.1 php7-exif-debuginfo-7.2.34-150000.4.103.1 php7-fastcgi-7.2.34-150000.4.103.1 php7-fastcgi-debuginfo-7.2.34-150000.4.103.1 php7-fileinfo-7.2.34-150000.4.103.1 php7-fileinfo-debuginfo-7.2.34-150000.4.103.1 php7-fpm-7.2.34-150000.4.103.1 php7-fpm-debuginfo-7.2.34-150000.4.103.1 php7-ftp-7.2.34-150000.4.103.1 php7-ftp-debuginfo-7.2.34-150000.4.103.1 php7-gd-7.2.34-150000.4.103.1 php7-gd-debuginfo-7.2.34-150000.4.103.1 php7-gettext-7.2.34-150000.4.103.1 php7-gettext-debuginfo-7.2.34-150000.4.103.1 php7-gmp-7.2.34-150000.4.103.1 php7-gmp-debuginfo-7.2.34-150000.4.103.1 php7-iconv-7.2.34-150000.4.103.1 php7-iconv-debuginfo-7.2.34-150000.4.103.1 php7-intl-7.2.34-150000.4.103.1 php7-intl-debuginfo-7.2.34-150000.4.103.1 php7-json-7.2.34-150000.4.103.1 php7-json-debuginfo-7.2.34-150000.4.103.1 php7-ldap-7.2.34-150000.4.103.1 php7-ldap-debuginfo-7.2.34-150000.4.103.1 php7-mbstring-7.2.34-150000.4.103.1 php7-mbstring-debuginfo-7.2.34-150000.4.103.1 php7-mysql-7.2.34-150000.4.103.1 php7-mysql-debuginfo-7.2.34-150000.4.103.1 php7-odbc-7.2.34-150000.4.103.1 php7-odbc-debuginfo-7.2.34-150000.4.103.1 php7-opcache-7.2.34-150000.4.103.1 php7-opcache-debuginfo-7.2.34-150000.4.103.1 php7-openssl-7.2.34-150000.4.103.1 php7-openssl-debuginfo-7.2.34-150000.4.103.1 php7-pcntl-7.2.34-150000.4.103.1 php7-pcntl-debuginfo-7.2.34-150000.4.103.1 php7-pdo-7.2.34-150000.4.103.1 php7-pdo-debuginfo-7.2.34-150000.4.103.1 php7-pgsql-7.2.34-150000.4.103.1 php7-pgsql-debuginfo-7.2.34-150000.4.103.1 php7-phar-7.2.34-150000.4.103.1 php7-phar-debuginfo-7.2.34-150000.4.103.1 php7-posix-7.2.34-150000.4.103.1 php7-posix-debuginfo-7.2.34-150000.4.103.1 php7-readline-7.2.34-150000.4.103.1 php7-readline-debuginfo-7.2.34-150000.4.103.1 php7-shmop-7.2.34-150000.4.103.1 php7-shmop-debuginfo-7.2.34-150000.4.103.1 php7-snmp-7.2.34-150000.4.103.1 php7-snmp-debuginfo-7.2.34-150000.4.103.1 php7-soap-7.2.34-150000.4.103.1 php7-soap-debuginfo-7.2.34-150000.4.103.1 php7-sockets-7.2.34-150000.4.103.1 php7-sockets-debuginfo-7.2.34-150000.4.103.1 php7-sodium-7.2.34-150000.4.103.1 php7-sodium-debuginfo-7.2.34-150000.4.103.1 php7-sqlite-7.2.34-150000.4.103.1 php7-sqlite-debuginfo-7.2.34-150000.4.103.1 php7-sysvmsg-7.2.34-150000.4.103.1 php7-sysvmsg-debuginfo-7.2.34-150000.4.103.1 php7-sysvsem-7.2.34-150000.4.103.1 php7-sysvsem-debuginfo-7.2.34-150000.4.103.1 php7-sysvshm-7.2.34-150000.4.103.1 php7-sysvshm-debuginfo-7.2.34-150000.4.103.1 php7-tokenizer-7.2.34-150000.4.103.1 php7-tokenizer-debuginfo-7.2.34-150000.4.103.1 php7-wddx-7.2.34-150000.4.103.1 php7-wddx-debuginfo-7.2.34-150000.4.103.1 php7-xmlreader-7.2.34-150000.4.103.1 php7-xmlreader-debuginfo-7.2.34-150000.4.103.1 php7-xmlrpc-7.2.34-150000.4.103.1 php7-xmlrpc-debuginfo-7.2.34-150000.4.103.1 php7-xmlwriter-7.2.34-150000.4.103.1 php7-xmlwriter-debuginfo-7.2.34-150000.4.103.1 php7-xsl-7.2.34-150000.4.103.1 php7-xsl-debuginfo-7.2.34-150000.4.103.1 php7-zip-7.2.34-150000.4.103.1 php7-zip-debuginfo-7.2.34-150000.4.103.1 php7-zlib-7.2.34-150000.4.103.1 php7-zlib-debuginfo-7.2.34-150000.4.103.1 - SUSE Linux Enterprise High Performance Computing 15-ESPOS (noarch): php7-pear-7.2.34-150000.4.103.1 php7-pear-Archive_Tar-7.2.34-150000.4.103.1 - SUSE Enterprise Storage 6 (aarch64 x86_64): apache2-mod_php7-7.2.34-150000.4.103.1 apache2-mod_php7-debuginfo-7.2.34-150000.4.103.1 php7-7.2.34-150000.4.103.1 php7-bcmath-7.2.34-150000.4.103.1 php7-bcmath-debuginfo-7.2.34-150000.4.103.1 php7-bz2-7.2.34-150000.4.103.1 php7-bz2-debuginfo-7.2.34-150000.4.103.1 php7-calendar-7.2.34-150000.4.103.1 php7-calendar-debuginfo-7.2.34-150000.4.103.1 php7-ctype-7.2.34-150000.4.103.1 php7-ctype-debuginfo-7.2.34-150000.4.103.1 php7-curl-7.2.34-150000.4.103.1 php7-curl-debuginfo-7.2.34-150000.4.103.1 php7-dba-7.2.34-150000.4.103.1 php7-dba-debuginfo-7.2.34-150000.4.103.1 php7-debuginfo-7.2.34-150000.4.103.1 php7-debugsource-7.2.34-150000.4.103.1 php7-devel-7.2.34-150000.4.103.1 php7-dom-7.2.34-150000.4.103.1 php7-dom-debuginfo-7.2.34-150000.4.103.1 php7-enchant-7.2.34-150000.4.103.1 php7-enchant-debuginfo-7.2.34-150000.4.103.1 php7-exif-7.2.34-150000.4.103.1 php7-exif-debuginfo-7.2.34-150000.4.103.1 php7-fastcgi-7.2.34-150000.4.103.1 php7-fastcgi-debuginfo-7.2.34-150000.4.103.1 php7-fileinfo-7.2.34-150000.4.103.1 php7-fileinfo-debuginfo-7.2.34-150000.4.103.1 php7-fpm-7.2.34-150000.4.103.1 php7-fpm-debuginfo-7.2.34-150000.4.103.1 php7-ftp-7.2.34-150000.4.103.1 php7-ftp-debuginfo-7.2.34-150000.4.103.1 php7-gd-7.2.34-150000.4.103.1 php7-gd-debuginfo-7.2.34-150000.4.103.1 php7-gettext-7.2.34-150000.4.103.1 php7-gettext-debuginfo-7.2.34-150000.4.103.1 php7-gmp-7.2.34-150000.4.103.1 php7-gmp-debuginfo-7.2.34-150000.4.103.1 php7-iconv-7.2.34-150000.4.103.1 php7-iconv-debuginfo-7.2.34-150000.4.103.1 php7-intl-7.2.34-150000.4.103.1 php7-intl-debuginfo-7.2.34-150000.4.103.1 php7-json-7.2.34-150000.4.103.1 php7-json-debuginfo-7.2.34-150000.4.103.1 php7-ldap-7.2.34-150000.4.103.1 php7-ldap-debuginfo-7.2.34-150000.4.103.1 php7-mbstring-7.2.34-150000.4.103.1 php7-mbstring-debuginfo-7.2.34-150000.4.103.1 php7-mysql-7.2.34-150000.4.103.1 php7-mysql-debuginfo-7.2.34-150000.4.103.1 php7-odbc-7.2.34-150000.4.103.1 php7-odbc-debuginfo-7.2.34-150000.4.103.1 php7-opcache-7.2.34-150000.4.103.1 php7-opcache-debuginfo-7.2.34-150000.4.103.1 php7-openssl-7.2.34-150000.4.103.1 php7-openssl-debuginfo-7.2.34-150000.4.103.1 php7-pcntl-7.2.34-150000.4.103.1 php7-pcntl-debuginfo-7.2.34-150000.4.103.1 php7-pdo-7.2.34-150000.4.103.1 php7-pdo-debuginfo-7.2.34-150000.4.103.1 php7-pgsql-7.2.34-150000.4.103.1 php7-pgsql-debuginfo-7.2.34-150000.4.103.1 php7-phar-7.2.34-150000.4.103.1 php7-phar-debuginfo-7.2.34-150000.4.103.1 php7-posix-7.2.34-150000.4.103.1 php7-posix-debuginfo-7.2.34-150000.4.103.1 php7-readline-7.2.34-150000.4.103.1 php7-readline-debuginfo-7.2.34-150000.4.103.1 php7-shmop-7.2.34-150000.4.103.1 php7-shmop-debuginfo-7.2.34-150000.4.103.1 php7-snmp-7.2.34-150000.4.103.1 php7-snmp-debuginfo-7.2.34-150000.4.103.1 php7-soap-7.2.34-150000.4.103.1 php7-soap-debuginfo-7.2.34-150000.4.103.1 php7-sockets-7.2.34-150000.4.103.1 php7-sockets-debuginfo-7.2.34-150000.4.103.1 php7-sodium-7.2.34-150000.4.103.1 php7-sodium-debuginfo-7.2.34-150000.4.103.1 php7-sqlite-7.2.34-150000.4.103.1 php7-sqlite-debuginfo-7.2.34-150000.4.103.1 php7-sysvmsg-7.2.34-150000.4.103.1 php7-sysvmsg-debuginfo-7.2.34-150000.4.103.1 php7-sysvsem-7.2.34-150000.4.103.1 php7-sysvsem-debuginfo-7.2.34-150000.4.103.1 php7-sysvshm-7.2.34-150000.4.103.1 php7-sysvshm-debuginfo-7.2.34-150000.4.103.1 php7-tidy-7.2.34-150000.4.103.1 php7-tidy-debuginfo-7.2.34-150000.4.103.1 php7-tokenizer-7.2.34-150000.4.103.1 php7-tokenizer-debuginfo-7.2.34-150000.4.103.1 php7-wddx-7.2.34-150000.4.103.1 php7-wddx-debuginfo-7.2.34-150000.4.103.1 php7-xmlreader-7.2.34-150000.4.103.1 php7-xmlreader-debuginfo-7.2.34-150000.4.103.1 php7-xmlrpc-7.2.34-150000.4.103.1 php7-xmlrpc-debuginfo-7.2.34-150000.4.103.1 php7-xmlwriter-7.2.34-150000.4.103.1 php7-xmlwriter-debuginfo-7.2.34-150000.4.103.1 php7-xsl-7.2.34-150000.4.103.1 php7-xsl-debuginfo-7.2.34-150000.4.103.1 php7-zip-7.2.34-150000.4.103.1 php7-zip-debuginfo-7.2.34-150000.4.103.1 php7-zlib-7.2.34-150000.4.103.1 php7-zlib-debuginfo-7.2.34-150000.4.103.1 - SUSE Enterprise Storage 6 (noarch): php7-pear-7.2.34-150000.4.103.1 php7-pear-Archive_Tar-7.2.34-150000.4.103.1 - SUSE CaaS Platform 4.0 (x86_64): apache2-mod_php7-7.2.34-150000.4.103.1 apache2-mod_php7-debuginfo-7.2.34-150000.4.103.1 php7-7.2.34-150000.4.103.1 php7-bcmath-7.2.34-150000.4.103.1 php7-bcmath-debuginfo-7.2.34-150000.4.103.1 php7-bz2-7.2.34-150000.4.103.1 php7-bz2-debuginfo-7.2.34-150000.4.103.1 php7-calendar-7.2.34-150000.4.103.1 php7-calendar-debuginfo-7.2.34-150000.4.103.1 php7-ctype-7.2.34-150000.4.103.1 php7-ctype-debuginfo-7.2.34-150000.4.103.1 php7-curl-7.2.34-150000.4.103.1 php7-curl-debuginfo-7.2.34-150000.4.103.1 php7-dba-7.2.34-150000.4.103.1 php7-dba-debuginfo-7.2.34-150000.4.103.1 php7-debuginfo-7.2.34-150000.4.103.1 php7-debugsource-7.2.34-150000.4.103.1 php7-devel-7.2.34-150000.4.103.1 php7-dom-7.2.34-150000.4.103.1 php7-dom-debuginfo-7.2.34-150000.4.103.1 php7-enchant-7.2.34-150000.4.103.1 php7-enchant-debuginfo-7.2.34-150000.4.103.1 php7-exif-7.2.34-150000.4.103.1 php7-exif-debuginfo-7.2.34-150000.4.103.1 php7-fastcgi-7.2.34-150000.4.103.1 php7-fastcgi-debuginfo-7.2.34-150000.4.103.1 php7-fileinfo-7.2.34-150000.4.103.1 php7-fileinfo-debuginfo-7.2.34-150000.4.103.1 php7-fpm-7.2.34-150000.4.103.1 php7-fpm-debuginfo-7.2.34-150000.4.103.1 php7-ftp-7.2.34-150000.4.103.1 php7-ftp-debuginfo-7.2.34-150000.4.103.1 php7-gd-7.2.34-150000.4.103.1 php7-gd-debuginfo-7.2.34-150000.4.103.1 php7-gettext-7.2.34-150000.4.103.1 php7-gettext-debuginfo-7.2.34-150000.4.103.1 php7-gmp-7.2.34-150000.4.103.1 php7-gmp-debuginfo-7.2.34-150000.4.103.1 php7-iconv-7.2.34-150000.4.103.1 php7-iconv-debuginfo-7.2.34-150000.4.103.1 php7-intl-7.2.34-150000.4.103.1 php7-intl-debuginfo-7.2.34-150000.4.103.1 php7-json-7.2.34-150000.4.103.1 php7-json-debuginfo-7.2.34-150000.4.103.1 php7-ldap-7.2.34-150000.4.103.1 php7-ldap-debuginfo-7.2.34-150000.4.103.1 php7-mbstring-7.2.34-150000.4.103.1 php7-mbstring-debuginfo-7.2.34-150000.4.103.1 php7-mysql-7.2.34-150000.4.103.1 php7-mysql-debuginfo-7.2.34-150000.4.103.1 php7-odbc-7.2.34-150000.4.103.1 php7-odbc-debuginfo-7.2.34-150000.4.103.1 php7-opcache-7.2.34-150000.4.103.1 php7-opcache-debuginfo-7.2.34-150000.4.103.1 php7-openssl-7.2.34-150000.4.103.1 php7-openssl-debuginfo-7.2.34-150000.4.103.1 php7-pcntl-7.2.34-150000.4.103.1 php7-pcntl-debuginfo-7.2.34-150000.4.103.1 php7-pdo-7.2.34-150000.4.103.1 php7-pdo-debuginfo-7.2.34-150000.4.103.1 php7-pgsql-7.2.34-150000.4.103.1 php7-pgsql-debuginfo-7.2.34-150000.4.103.1 php7-phar-7.2.34-150000.4.103.1 php7-phar-debuginfo-7.2.34-150000.4.103.1 php7-posix-7.2.34-150000.4.103.1 php7-posix-debuginfo-7.2.34-150000.4.103.1 php7-readline-7.2.34-150000.4.103.1 php7-readline-debuginfo-7.2.34-150000.4.103.1 php7-shmop-7.2.34-150000.4.103.1 php7-shmop-debuginfo-7.2.34-150000.4.103.1 php7-snmp-7.2.34-150000.4.103.1 php7-snmp-debuginfo-7.2.34-150000.4.103.1 php7-soap-7.2.34-150000.4.103.1 php7-soap-debuginfo-7.2.34-150000.4.103.1 php7-sockets-7.2.34-150000.4.103.1 php7-sockets-debuginfo-7.2.34-150000.4.103.1 php7-sodium-7.2.34-150000.4.103.1 php7-sodium-debuginfo-7.2.34-150000.4.103.1 php7-sqlite-7.2.34-150000.4.103.1 php7-sqlite-debuginfo-7.2.34-150000.4.103.1 php7-sysvmsg-7.2.34-150000.4.103.1 php7-sysvmsg-debuginfo-7.2.34-150000.4.103.1 php7-sysvsem-7.2.34-150000.4.103.1 php7-sysvsem-debuginfo-7.2.34-150000.4.103.1 php7-sysvshm-7.2.34-150000.4.103.1 php7-sysvshm-debuginfo-7.2.34-150000.4.103.1 php7-tidy-7.2.34-150000.4.103.1 php7-tidy-debuginfo-7.2.34-150000.4.103.1 php7-tokenizer-7.2.34-150000.4.103.1 php7-tokenizer-debuginfo-7.2.34-150000.4.103.1 php7-wddx-7.2.34-150000.4.103.1 php7-wddx-debuginfo-7.2.34-150000.4.103.1 php7-xmlreader-7.2.34-150000.4.103.1 php7-xmlreader-debuginfo-7.2.34-150000.4.103.1 php7-xmlrpc-7.2.34-150000.4.103.1 php7-xmlrpc-debuginfo-7.2.34-150000.4.103.1 php7-xmlwriter-7.2.34-150000.4.103.1 php7-xmlwriter-debuginfo-7.2.34-150000.4.103.1 php7-xsl-7.2.34-150000.4.103.1 php7-xsl-debuginfo-7.2.34-150000.4.103.1 php7-zip-7.2.34-150000.4.103.1 php7-zip-debuginfo-7.2.34-150000.4.103.1 php7-zlib-7.2.34-150000.4.103.1 php7-zlib-debuginfo-7.2.34-150000.4.103.1 - SUSE CaaS Platform 4.0 (noarch): php7-pear-7.2.34-150000.4.103.1 php7-pear-Archive_Tar-7.2.34-150000.4.103.1 References: https://www.suse.com/security/cve/CVE-2015-9253.html https://www.suse.com/security/cve/CVE-2017-8923.html https://www.suse.com/security/cve/CVE-2017-9120.html https://www.suse.com/security/cve/CVE-2018-1000222.html https://www.suse.com/security/cve/CVE-2018-12882.html https://www.suse.com/security/cve/CVE-2018-14851.html https://www.suse.com/security/cve/CVE-2018-17082.html https://www.suse.com/security/cve/CVE-2018-19935.html https://www.suse.com/security/cve/CVE-2018-20783.html https://www.suse.com/security/cve/CVE-2019-11034.html https://www.suse.com/security/cve/CVE-2019-11035.html https://www.suse.com/security/cve/CVE-2019-11036.html https://www.suse.com/security/cve/CVE-2019-11039.html https://www.suse.com/security/cve/CVE-2019-11040.html https://www.suse.com/security/cve/CVE-2019-11041.html https://www.suse.com/security/cve/CVE-2019-11042.html https://www.suse.com/security/cve/CVE-2019-11043.html https://www.suse.com/security/cve/CVE-2019-11045.html https://www.suse.com/security/cve/CVE-2019-11046.html https://www.suse.com/security/cve/CVE-2019-11047.html https://www.suse.com/security/cve/CVE-2019-11048.html https://www.suse.com/security/cve/CVE-2019-11050.html https://www.suse.com/security/cve/CVE-2019-9020.html https://www.suse.com/security/cve/CVE-2019-9021.html https://www.suse.com/security/cve/CVE-2019-9022.html https://www.suse.com/security/cve/CVE-2019-9023.html https://www.suse.com/security/cve/CVE-2019-9024.html https://www.suse.com/security/cve/CVE-2019-9637.html https://www.suse.com/security/cve/CVE-2019-9638.html https://www.suse.com/security/cve/CVE-2019-9640.html https://www.suse.com/security/cve/CVE-2019-9641.html https://www.suse.com/security/cve/CVE-2019-9675.html https://www.suse.com/security/cve/CVE-2020-7059.html https://www.suse.com/security/cve/CVE-2020-7060.html https://www.suse.com/security/cve/CVE-2020-7062.html https://www.suse.com/security/cve/CVE-2020-7063.html https://www.suse.com/security/cve/CVE-2020-7064.html https://www.suse.com/security/cve/CVE-2020-7066.html https://www.suse.com/security/cve/CVE-2020-7068.html https://www.suse.com/security/cve/CVE-2020-7069.html https://www.suse.com/security/cve/CVE-2020-7070.html https://www.suse.com/security/cve/CVE-2020-7071.html https://www.suse.com/security/cve/CVE-2021-21702.html https://www.suse.com/security/cve/CVE-2021-21703.html https://www.suse.com/security/cve/CVE-2021-21704.html https://www.suse.com/security/cve/CVE-2021-21705.html https://www.suse.com/security/cve/CVE-2021-21707.html https://www.suse.com/security/cve/CVE-2022-31625.html https://www.suse.com/security/cve/CVE-2022-31626.html https://www.suse.com/security/cve/CVE-2022-31628.html https://www.suse.com/security/cve/CVE-2022-31629.html https://www.suse.com/security/cve/CVE-2022-37454.html https://bugzilla.suse.com/1204577

1 0

SUSE-SU-2022:4055-1: Security update for go1.18
by opensuse-security＠opensuse.org 17 Nov '22

17 Nov '22

SUSE Security Update: Security update for go1.18 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4055-1 Rating: low References: #1193742 #1204941 Cross-References: CVE-2022-41716 CVSS scores: CVE-2022-41716 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVE-2022-41716 (SUSE): 0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N Affected Products: SUSE Enterprise Storage 7.1 SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise Desktop 15-SP4 SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Development Tools 15-SP3 SUSE Linux Enterprise Module for Development Tools 15-SP4 SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.2 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.2 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.2 SUSE Manager Server 4.3 openSUSE Leap 15.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for go1.18 fixes the following issues: Update to go 1.18.8 (released 2022-11-01) (bsc#1193742): Security fixes: - CVE-2022-41716: Fixed unsanitized NUL in environment variables in syscalls, os/exec (go#56327) (bsc#1204941). Bugfixes: - runtime: lock count" fatal error when cgo is enabled (go#56308). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4055=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4055=1 - SUSE Linux Enterprise Module for Development Tools 15-SP4: zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP4-2022-4055=1 - SUSE Linux Enterprise Module for Development Tools 15-SP3: zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP3-2022-4055=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): go1.18-1.18.8-150000.1.37.1 go1.18-doc-1.18.8-150000.1.37.1 - openSUSE Leap 15.4 (aarch64 x86_64): go1.18-race-1.18.8-150000.1.37.1 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): go1.18-1.18.8-150000.1.37.1 go1.18-doc-1.18.8-150000.1.37.1 - openSUSE Leap 15.3 (aarch64 x86_64): go1.18-race-1.18.8-150000.1.37.1 - SUSE Linux Enterprise Module for Development Tools 15-SP4 (aarch64 ppc64le s390x x86_64): go1.18-1.18.8-150000.1.37.1 go1.18-doc-1.18.8-150000.1.37.1 - SUSE Linux Enterprise Module for Development Tools 15-SP4 (aarch64 x86_64): go1.18-race-1.18.8-150000.1.37.1 - SUSE Linux Enterprise Module for Development Tools 15-SP3 (aarch64 ppc64le s390x x86_64): go1.18-1.18.8-150000.1.37.1 go1.18-doc-1.18.8-150000.1.37.1 - SUSE Linux Enterprise Module for Development Tools 15-SP3 (aarch64 x86_64): go1.18-race-1.18.8-150000.1.37.1 References: https://www.suse.com/security/cve/CVE-2022-41716.html https://bugzilla.suse.com/1193742 https://bugzilla.suse.com/1204941

1 0

SUSE-SU-2022:4057-1: Security update for python-Twisted
by opensuse-security＠opensuse.org 17 Nov '22

17 Nov '22

SUSE Security Update: Security update for python-Twisted ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4057-1 Rating: low References: #1204781 Cross-References: CVE-2022-39348 CVSS scores: CVE-2022-39348 (NVD) : 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N CVE-2022-39348 (SUSE): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: SUSE Enterprise Storage 7.1 SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3 SUSE Linux Enterprise Module for Server Applications 15-SP3 SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.2 openSUSE Leap 15.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for python-Twisted fixes the following issues: - CVE-2022-39348: Fixed NameVirtualHost Host header injection (bsc#1204781). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4057=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4057=1 - SUSE Linux Enterprise Module for Server Applications 15-SP3: zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP3-2022-4057=1 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3: zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2022-4057=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): python-Twisted-debuginfo-19.10.0-150200.3.18.1 python-Twisted-debugsource-19.10.0-150200.3.18.1 python3-Twisted-debuginfo-19.10.0-150200.3.18.1 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): python-Twisted-debuginfo-19.10.0-150200.3.18.1 python-Twisted-debugsource-19.10.0-150200.3.18.1 python-Twisted-doc-19.10.0-150200.3.18.1 python2-Twisted-19.10.0-150200.3.18.1 python2-Twisted-debuginfo-19.10.0-150200.3.18.1 python3-Twisted-19.10.0-150200.3.18.1 python3-Twisted-debuginfo-19.10.0-150200.3.18.1 - SUSE Linux Enterprise Module for Server Applications 15-SP3 (aarch64 ppc64le s390x x86_64): python-Twisted-debuginfo-19.10.0-150200.3.18.1 python-Twisted-debugsource-19.10.0-150200.3.18.1 python3-Twisted-19.10.0-150200.3.18.1 python3-Twisted-debuginfo-19.10.0-150200.3.18.1 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3 (aarch64 ppc64le s390x x86_64): python-Twisted-debugsource-19.10.0-150200.3.18.1 python3-Twisted-19.10.0-150200.3.18.1 python3-Twisted-debuginfo-19.10.0-150200.3.18.1 References: https://www.suse.com/security/cve/CVE-2022-39348.html https://bugzilla.suse.com/1204781

1 0

SUSE-SU-2022:4056-1: moderate: Security update for systemd
by opensuse-security＠opensuse.org 17 Nov '22

17 Nov '22

SUSE Security Update: Security update for systemd ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4056-1 Rating: moderate References: #1204179 #1204968 Cross-References: CVE-2022-3821 CVSS scores: CVE-2022-3821 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-3821 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Products: SUSE Enterprise Storage 7.1 SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.2 openSUSE Leap 15.3 openSUSE Leap 15.4 openSUSE Leap Micro 5.2 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for systemd fixes the following issues: - CVE-2022-3821: Fixed buffer overrun in format_timespan() function (bsc#1204968). - Import commit 56bee38fd0da18dad5fc5c5d12c02238a22b50e2 * 8a70235d8a core: Add trigger limit for path units * 93e544f3a0 core/mount: also add default before dependency for automount mount units * 5916a7748c logind: fix crash in logind on user-specified message string - Document udev naming scheme (bsc#1204179). Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap Micro 5.2: zypper in -t patch openSUSE-Leap-Micro-5.2-2022-4056=1 - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4056=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4056=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2022-4056=1 - SUSE Linux Enterprise Micro 5.2: zypper in -t patch SUSE-SUSE-MicroOS-5.2-2022-4056=1 - SUSE Linux Enterprise Micro 5.1: zypper in -t patch SUSE-SUSE-MicroOS-5.1-2022-4056=1 Package List: - openSUSE Leap Micro 5.2 (aarch64 x86_64): libsystemd0-246.16-150300.7.54.1 libsystemd0-debuginfo-246.16-150300.7.54.1 libudev1-246.16-150300.7.54.1 libudev1-debuginfo-246.16-150300.7.54.1 systemd-246.16-150300.7.54.1 systemd-container-246.16-150300.7.54.1 systemd-container-debuginfo-246.16-150300.7.54.1 systemd-debuginfo-246.16-150300.7.54.1 systemd-debugsource-246.16-150300.7.54.1 systemd-journal-remote-246.16-150300.7.54.1 systemd-journal-remote-debuginfo-246.16-150300.7.54.1 systemd-sysvinit-246.16-150300.7.54.1 udev-246.16-150300.7.54.1 udev-debuginfo-246.16-150300.7.54.1 - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): nss-mymachines-246.16-150300.7.54.1 nss-mymachines-debuginfo-246.16-150300.7.54.1 nss-resolve-246.16-150300.7.54.1 nss-resolve-debuginfo-246.16-150300.7.54.1 systemd-logger-246.16-150300.7.54.1 - openSUSE Leap 15.4 (x86_64): nss-mymachines-32bit-246.16-150300.7.54.1 nss-mymachines-32bit-debuginfo-246.16-150300.7.54.1 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): libsystemd0-246.16-150300.7.54.1 libsystemd0-debuginfo-246.16-150300.7.54.1 libudev-devel-246.16-150300.7.54.1 libudev1-246.16-150300.7.54.1 libudev1-debuginfo-246.16-150300.7.54.1 nss-myhostname-246.16-150300.7.54.1 nss-myhostname-debuginfo-246.16-150300.7.54.1 nss-mymachines-246.16-150300.7.54.1 nss-mymachines-debuginfo-246.16-150300.7.54.1 nss-resolve-246.16-150300.7.54.1 nss-resolve-debuginfo-246.16-150300.7.54.1 nss-systemd-246.16-150300.7.54.1 nss-systemd-debuginfo-246.16-150300.7.54.1 systemd-246.16-150300.7.54.1 systemd-container-246.16-150300.7.54.1 systemd-container-debuginfo-246.16-150300.7.54.1 systemd-coredump-246.16-150300.7.54.1 systemd-coredump-debuginfo-246.16-150300.7.54.1 systemd-debuginfo-246.16-150300.7.54.1 systemd-debugsource-246.16-150300.7.54.1 systemd-devel-246.16-150300.7.54.1 systemd-doc-246.16-150300.7.54.1 systemd-journal-remote-246.16-150300.7.54.1 systemd-journal-remote-debuginfo-246.16-150300.7.54.1 systemd-logger-246.16-150300.7.54.1 systemd-network-246.16-150300.7.54.1 systemd-network-debuginfo-246.16-150300.7.54.1 systemd-sysvinit-246.16-150300.7.54.1 udev-246.16-150300.7.54.1 udev-debuginfo-246.16-150300.7.54.1 - openSUSE Leap 15.3 (x86_64): libsystemd0-32bit-246.16-150300.7.54.1 libsystemd0-32bit-debuginfo-246.16-150300.7.54.1 libudev-devel-32bit-246.16-150300.7.54.1 libudev1-32bit-246.16-150300.7.54.1 libudev1-32bit-debuginfo-246.16-150300.7.54.1 nss-myhostname-32bit-246.16-150300.7.54.1 nss-myhostname-32bit-debuginfo-246.16-150300.7.54.1 nss-mymachines-32bit-246.16-150300.7.54.1 nss-mymachines-32bit-debuginfo-246.16-150300.7.54.1 systemd-32bit-246.16-150300.7.54.1 systemd-32bit-debuginfo-246.16-150300.7.54.1 - openSUSE Leap 15.3 (noarch): systemd-lang-246.16-150300.7.54.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): libsystemd0-246.16-150300.7.54.1 libsystemd0-debuginfo-246.16-150300.7.54.1 libudev-devel-246.16-150300.7.54.1 libudev1-246.16-150300.7.54.1 libudev1-debuginfo-246.16-150300.7.54.1 systemd-246.16-150300.7.54.1 systemd-container-246.16-150300.7.54.1 systemd-container-debuginfo-246.16-150300.7.54.1 systemd-coredump-246.16-150300.7.54.1 systemd-coredump-debuginfo-246.16-150300.7.54.1 systemd-debuginfo-246.16-150300.7.54.1 systemd-debugsource-246.16-150300.7.54.1 systemd-devel-246.16-150300.7.54.1 systemd-doc-246.16-150300.7.54.1 systemd-journal-remote-246.16-150300.7.54.1 systemd-journal-remote-debuginfo-246.16-150300.7.54.1 systemd-sysvinit-246.16-150300.7.54.1 udev-246.16-150300.7.54.1 udev-debuginfo-246.16-150300.7.54.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (x86_64): libsystemd0-32bit-246.16-150300.7.54.1 libsystemd0-32bit-debuginfo-246.16-150300.7.54.1 libudev1-32bit-246.16-150300.7.54.1 libudev1-32bit-debuginfo-246.16-150300.7.54.1 systemd-32bit-246.16-150300.7.54.1 systemd-32bit-debuginfo-246.16-150300.7.54.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (noarch): systemd-lang-246.16-150300.7.54.1 - SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64): libsystemd0-246.16-150300.7.54.1 libsystemd0-debuginfo-246.16-150300.7.54.1 libudev1-246.16-150300.7.54.1 libudev1-debuginfo-246.16-150300.7.54.1 systemd-246.16-150300.7.54.1 systemd-container-246.16-150300.7.54.1 systemd-container-debuginfo-246.16-150300.7.54.1 systemd-debuginfo-246.16-150300.7.54.1 systemd-debugsource-246.16-150300.7.54.1 systemd-journal-remote-246.16-150300.7.54.1 systemd-journal-remote-debuginfo-246.16-150300.7.54.1 systemd-sysvinit-246.16-150300.7.54.1 udev-246.16-150300.7.54.1 udev-debuginfo-246.16-150300.7.54.1 - SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64): libsystemd0-246.16-150300.7.54.1 libsystemd0-debuginfo-246.16-150300.7.54.1 libudev1-246.16-150300.7.54.1 libudev1-debuginfo-246.16-150300.7.54.1 systemd-246.16-150300.7.54.1 systemd-container-246.16-150300.7.54.1 systemd-container-debuginfo-246.16-150300.7.54.1 systemd-debuginfo-246.16-150300.7.54.1 systemd-debugsource-246.16-150300.7.54.1 systemd-journal-remote-246.16-150300.7.54.1 systemd-journal-remote-debuginfo-246.16-150300.7.54.1 systemd-sysvinit-246.16-150300.7.54.1 udev-246.16-150300.7.54.1 udev-debuginfo-246.16-150300.7.54.1 References: https://www.suse.com/security/cve/CVE-2022-3821.html https://bugzilla.suse.com/1204179 https://bugzilla.suse.com/1204968

1 0

SUSE-SU-2022:4053-1: important: Security update for the Linux Kernel
by opensuse-security＠opensuse.org 17 Nov '22

17 Nov '22

SUSE Security Update: Security update for the Linux Kernel ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4053-1 Rating: important References: #1032323 #1065729 #1152489 #1198702 #1200465 #1200788 #1201725 #1202638 #1202686 #1202700 #1203066 #1203098 #1203387 #1203391 #1203496 #1203802 #1204053 #1204166 #1204168 #1204354 #1204355 #1204382 #1204402 #1204415 #1204417 #1204431 #1204439 #1204470 #1204479 #1204574 #1204575 #1204619 #1204635 #1204637 #1204646 #1204647 #1204653 #1204728 #1204753 #1204754 PED-1931 SLE-13847 SLE-24559 SLE-9246 Cross-References: CVE-2021-4037 CVE-2022-2153 CVE-2022-2964 CVE-2022-2978 CVE-2022-3176 CVE-2022-3424 CVE-2022-3521 CVE-2022-3524 CVE-2022-3535 CVE-2022-3542 CVE-2022-3545 CVE-2022-3565 CVE-2022-3577 CVE-2022-3586 CVE-2022-3594 CVE-2022-3621 CVE-2022-3625 CVE-2022-3629 CVE-2022-3640 CVE-2022-3646 CVE-2022-3649 CVE-2022-39189 CVE-2022-42703 CVE-2022-43750 CVSS scores: CVE-2021-4037 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2021-4037 (SUSE): 4.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N CVE-2022-2153 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-2153 (SUSE): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H CVE-2022-2964 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-2964 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-2978 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-2978 (SUSE): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-3176 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-3176 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-3424 (SUSE): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-3521 (NVD) : 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L CVE-2022-3521 (SUSE): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-3524 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-3524 (SUSE): 4.7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-3535 (NVD) : 3.5 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVE-2022-3535 (SUSE): 2.3 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L CVE-2022-3542 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-3542 (SUSE): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-3545 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-3545 (SUSE): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-3565 (NVD) : 8 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-3565 (SUSE): 7.4 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-3577 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-3577 (SUSE): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-3586 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-3586 (SUSE): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-3594 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-3594 (SUSE): 5.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-3621 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-3621 (SUSE): 4.3 CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-3625 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-3625 (SUSE): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H CVE-2022-3629 (NVD) : 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVE-2022-3629 (SUSE): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L CVE-2022-3640 (NVD) : 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-3640 (SUSE): 7.1 CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-3646 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2022-3646 (SUSE): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L CVE-2022-3649 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-3649 (SUSE): 3.1 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L CVE-2022-39189 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-39189 (SUSE): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-42703 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-42703 (SUSE): 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-43750 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-43750 (SUSE): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H Affected Products: SUSE Enterprise Storage 7.1 SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise High Availability 15-SP3 SUSE Linux Enterprise High Performance Computing SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Module for Development Tools 15-SP3 SUSE Linux Enterprise Module for Legacy Software 15-SP3 SUSE Linux Enterprise Module for Live Patching 15-SP3 SUSE Linux Enterprise Server SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server for SAP Applications SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Linux Enterprise Workstation Extension 15-SP3 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.2 openSUSE Leap 15.3 openSUSE Leap 15.4 openSUSE Leap Micro 5.2 ______________________________________________________________________________ An update that solves 24 vulnerabilities, contains four features and has 16 fixes is now available. Description: The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-4037: Fixed function logic vulnerability that allowed local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set (bnc#1198702). - CVE-2022-2153: Fixed vulnerability in KVM that could allow an unprivileged local attacker on the host to cause DoS (bnc#1200788). - CVE-2022-2964: Fixed memory corruption issues in ax88179_178a devices (bnc#1202686). - CVE-2022-2978: Fixed use-after-free in the NILFS file system that could lead to local privilege escalation or DoS (bnc#1202700). - CVE-2022-3176: Fixed use-after-free in io_uring when using POLLFREE (bnc#1203391). - CVE-2022-3424: Fixed use-after-free in gru_set_context_option(), gru_fault() and gru_handle_user_call_os() that could lead to kernel panic (bsc#1204166). - CVE-2022-3521: Fixed race condition in kcm_tx_work() in net/kcm/kcmsock.c (bnc#1204355). - CVE-2022-3524: Fixed memory leak in ipv6_renew_options() in the IPv6 handler (bnc#1204354). - CVE-2022-3535: Fixed memory leak in mvpp2_dbgfs_port_init() in drivers/net/ethernet/marvell/mvpp2/mvpp2_debugfs.c (bnc#1204417). - CVE-2022-3542: Fixed memory leak in bnx2x_tpa_stop() in drivers/net/ethernet/broadcom/bnx2x/bnx2x_cmn.c (bnc#1204402). - CVE-2022-3545: Fixed use-after-free in area_cache_get() in drivers/net/ethernet/netronome/nfp/nfpcore/nfp_cppcore.c (bnc#1204415). - CVE-2022-3565: Fixed use-after-free in del_timer() in drivers/isdn/mISDN/l1oip_core.c (bnc#1204431). - CVE-2022-3577: Fixed out-of-bounds memory write flaw in bigben device driver that could lead to local privilege escalation or DoS (bnc#1204470). - CVE-2022-3586: Fixed use-after-free in socket buffer (SKB) that could allow a local unprivileged user to cause a denial of service (bnc#1204439). - CVE-2022-3594: Fixed excessive data logging in intr_callback() in drivers/net/usb/r8152.c (bnc#1204479). - CVE-2022-3621: Fixed null pointer dereference in nilfs_bmap_lookup_at_level() in fs/nilfs2/inode.c (bnc#1204574). - CVE-2022-3625: Fixed use-after-free in devlink_param_set()/devlink_param_get() in net/core/devlink.c (bnc#1204637). - CVE-2022-3629: Fixed memory leak in vsock_connect() in net/vmw_vsock/af_vsock.c (bnc#1204635). - CVE-2022-3640: Fixed use-after-free in l2cap_conn_del() in net/bluetooth/l2cap_core.c (bnc#1204619). - CVE-2022-3646: Fixed memory leak in nilfs_attach_log_writer() in fs/nilfs2/segment.c (bnc#1204646). - CVE-2022-3649: Fixed use-after-free in nilfs_new_inode() in fs/nilfs2/inode.c (bnc#1204647). - CVE-2022-39189: Fixed a flaw in the x86 KVM subsystem that could allow unprivileged guest users to compromise the guest kernel via TLB flush operations on preempted vCPU (bnc#1203066). - CVE-2022-42703: Fixed use-after-free in mm/rmap.c related to leaf anon_vma double reuse (bnc#1204168). - CVE-2022-43750: Fixed vulnerability in usbmon that allowed a user-space client to corrupt the monitor's internal memory (bnc#1204653). The following non-security bugs were fixed: - ACPI: APEI: do not add task_work to kernel thread to avoid memory leak (git-fixes). - ACPI: HMAT: Release platform device in case of platform_device_add_data() fails (git-fixes). - ACPI: extlog: Handle multiple records (git-fixes). - ACPI: processor idle: Practically limit "Dummy wait" workaround to old Intel systems (bnc#1203802). - ACPI: video: Add Toshiba Satellite/Portege Z830 quirk (git-fixes). - ALSA: Use del_timer_sync() before freeing timer (git-fixes). - ALSA: ac97: fix possible memory leak in snd_ac97_dev_register() (git-fixes). - ALSA: aoa: Fix I2S device accounting (git-fixes). - ALSA: aoa: i2sbus: fix possible memory leak in i2sbus_add_dev() (git-fixes). - ALSA: asihpi - Remove useless code in hpi_meter_get_peak() (git-fixes). - ALSA: au88x0: use explicitly signed char (git-fixes). - ALSA: dmaengine: increment buffer pointer atomically (git-fixes). - ALSA: hda/hdmi: Do not skip notification handling during PM operation (git-fixes). - ALSA: hda/realtek: Add Intel Reference SSID to support headset keys (git-fixes). - ALSA: hda/realtek: Add pincfg for ASUS G513 HP jack (git-fixes). - ALSA: hda/realtek: Add pincfg for ASUS G533Z HP jack (git-fixes). - ALSA: hda/realtek: Add quirk for ASUS GA503R laptop (git-fixes). - ALSA: hda/realtek: Add quirk for ASUS GV601R laptop (git-fixes). - ALSA: hda/realtek: Add quirk for Huawei WRT-WX9 (git-fixes). - ALSA: hda/realtek: Correct pin configs for ASUS G533Z (git-fixes). - ALSA: hda/realtek: Enable 4-speaker output Dell Precision 5530 laptop (git-fixes). - ALSA: hda/realtek: remove ALC289_FIXUP_DUAL_SPK for Dell 5530 (git-fixes). - ALSA: hda/sigmatel: Fix unused variable warning for beep power change (git-fixes). - ALSA: hda/sigmatel: Keep power up while beep is enabled (git-fixes). - ALSA: hda/tegra: Align BDL entry to 4KB boundary (git-fixes). - ALSA: hda: Fix position reporting on Poulsbo (git-fixes). - ALSA: hda: add Intel 5 Series / 3400 PCI DID (git-fixes). - ALSA: oss: Fix potential deadlock at unregistration (git-fixes). - ALSA: rawmidi: Drop register_mutex in snd_rawmidi_free() (git-fixes). - ALSA: rme9652: use explicitly signed char (git-fixes). - ALSA: usb-audio: Fix NULL dererence at error path (git-fixes). - ALSA: usb-audio: Fix potential memory leaks (git-fixes). - ASoC: eureka-tlv320: Hold reference returned from of_find_xxx API (git-fixes). - ASoC: fsl_sai: Remove unnecessary FIFO reset in ISR (git-fixes). - ASoC: mt6660: Fix PM disable depth imbalance in mt6660_i2c_probe (git-fixes). - ASoC: nau8824: Fix semaphore unbalance at error paths (git-fixes). - ASoC: rsnd: Add check for rsnd_mod_power_on (git-fixes). - ASoC: tas2770: Reinit regcache on reset (git-fixes). - ASoC: wcd9335: fix order of Slimbus unprepare/disable (git-fixes). - ASoC: wcd934x: fix order of Slimbus unprepare/disable (git-fixes). - ASoC: wm5102: Fix PM disable depth imbalance in wm5102_probe (git-fixes). - ASoC: wm5110: Fix PM disable depth imbalance in wm5110_probe (git-fixes). - ASoC: wm8997: Fix PM disable depth imbalance in wm8997_probe (git-fixes). - Bluetooth: L2CAP: Fix user-after-free (git-fixes). - Bluetooth: L2CAP: initialize delayed works at l2cap_chan_create() (git-fixes). - Bluetooth: hci_core: Fix not handling link timeouts propertly (git-fixes). - Bluetooth: hci_sysfs: Fix attempting to call device_add multiple times (git-fixes). - HID: hidraw: fix memory leak in hidraw_release() (git-fixes). - HID: magicmouse: Do not set BTN_MOUSE on double report (git-fixes). - HID: multitouch: Add memory barriers (git-fixes). - HID: roccat: Fix use-after-free in roccat_read() (git-fixes). - HSI: omap_ssi: Fix refcount leak in ssi_probe (git-fixes). - HSI: omap_ssi_port: Fix dma_map_sg error check (git-fixes). - IB/cm: Cancel mad on the DREQ event when the state is MRA_REP_RCVD (git-fixes) - IB/cma: Allow XRC INI QPs to set their local ACK timeout (git-fixes) - IB/core: Only update PKEY and GID caches on respective events (git-fixes) - IB/hfi1: Adjust pkey entry in index 0 (git-fixes) - IB/hfi1: Fix abba locking issue with sc_disable() (git-fixes) - IB/hfi1: Fix possible null-pointer dereference in _extend_sdma_tx_descs() (git-fixes) - IB/mlx4: Add support for REJ due to timeout (git-fixes) - IB/mlx4: Use port iterator and validation APIs (git-fixes) - IB/qib: Protect from buffer overflow in struct qib_user_sdma_pkt fields (git-fixes) - IB/rdmavt: Add __init/__exit annotations to module init/exit funcs (git-fixes) - IB/srpt: Remove redundant assignment to ret (git-fixes) - Input: i8042 - fix refount leak on sparc (git-fixes). - Input: xpad - add supported devices as contributed on github (git-fixes). - Input: xpad - fix wireless 360 controller breaking after suspend (git-fixes). - KVM: nVMX: Unconditionally purge queued/injected events on nested "exit" (git-fixes). - KVM: s390: Clarify SIGP orders versus STOP/RESTART (git-fixes). - KVM: s390: VSIE: fix MVPG handling for prefixing and MSO (git-fixes). - KVM: s390: clear kicked_mask before sleeping again (git-fixes). - KVM: s390: preserve deliverable_mask in __airqs_kick_single_vcpu (git-fixes). - KVM: s390: pv: do not present the ecall interrupt twice (git-fixes). - KVM: s390: split kvm_s390_real_to_abs (git-fixes). - KVM: s390x: fix SCK locking (git-fixes). - KVM: x86/emulator: Fix handing of POP SS to correctly set interruptibility (git-fixes). - PCI: Dynamically map ECAM regions (bsc#1204382). - PCI: Fix used_buses calculation in pci_scan_child_bus_extend() (git-fixes). - PCI: Sanitise firmware BAR assignments behind a PCI-PCI bridge (git-fixes). - PM: domains: Fix handling of unavailable/disabled idle states (git-fixes). - PM: hibernate: Allow hybrid sleep to work with s2idle (git-fixes). - RDMA/bnxt_re: Add missing spin lock initialization (git-fixes) - RDMA/bnxt_re: Fix query SRQ failure (git-fixes) - RDMA/cm: Fix memory leak in ib_cm_insert_listen (git-fixes) - RDMA/cma: Ensure rdma_addr_cancel() happens before issuing more requests (git-fixes) - RDMA/cma: Fix arguments order in net device validation (git-fixes) - RDMA/core: Sanitize WQ state received from the userspace (git-fixes) - RDMA/cxgb4: Remove MW support (git-fixes) - RDMA/efa: Free IRQ vectors on error flow (git-fixes) - RDMA/efa: Remove double QP type assignment (git-fixes) - RDMA/efa: Use ib_umem_num_dma_pages() (git-fixes) - RDMA/hfi1: Fix potential integer multiplication overflow errors (git-fixes) - RDMA/hns: Remove unnecessary check for the sgid_attr when modifying QP (git-fixes) - RDMA/i40iw: Use ib_umem_num_dma_pages() (git-fixes) - RDMA/iwcm: Release resources if iw_cm module initialization fails (git-fixes) - RDMA/mlx4: Return missed an error if device does not support steering (git-fixes) - RDMA/mlx5: Add missing check for return value in get namespace flow (git-fixes) - RDMA/mlx5: Block FDB rules when not in switchdev mode (git-fixes) - RDMA/mlx5: Fix memory leak in error flow for subscribe event routine (git-fixes) - RDMA/mlx5: Make mkeys always owned by the kernel's PD when not enabled (git-fixes) - RDMA/mlx5: Set user priority for DCT (git-fixes) - RDMA/mlx5: Use set_mkc_access_pd_addr_fields() in reg_create() (git-fixes) - RDMA/qedr: Fix NULL deref for query_qp on the GSI QP (git-fixes) - RDMA/qedr: Fix potential memory leak in __qedr_alloc_mr() (git-fixes) - RDMA/qedr: Fix reporting QP timeout attribute (git-fixes) - RDMA/qib: Remove superfluous fallthrough statements (git-fixes) - RDMA/rtrs-srv: Pass the correct number of entries for dma mapped SGL (git-fixes) - RDMA/rxe: Do not overwrite errno from ib_umem_get() (git-fixes) - RDMA/rxe: Fix "kernel NULL pointer dereference" error (git-fixes) - RDMA/rxe: Fix error unwind in rxe_create_qp() (git-fixes) - RDMA/rxe: Fix extra copies in build_rdma_network_hdr (git-fixes) - RDMA/rxe: Fix extra copy in prepare_ack_packet (git-fixes) - RDMA/rxe: Fix failure during driver load (git-fixes) - RDMA/rxe: Fix over copying in get_srq_wqe (git-fixes) - RDMA/rxe: Fix redundant call to ip_send_check (git-fixes) - RDMA/rxe: Fix redundant skb_put_zero (git-fixes) - RDMA/rxe: Fix rnr retry behavior (git-fixes) - RDMA/rxe: Fix the error caused by qp->sk (git-fixes) - RDMA/rxe: Fix wrong port_cap_flags (git-fixes) - RDMA/rxe: Generate a completion for unsupported/invalid opcode (git-fixes) - RDMA/rxe: Remove unused pkt->offset (git-fixes) - RDMA/rxe: Return CQE error if invalid lkey was supplied (git-fixes) - RDMA/sa_query: Use strscpy_pad instead of memcpy to copy a string (git-fixes) - RDMA/siw: Always consume all skbuf data in sk_data_ready() upcall. (git-fixes) - RDMA/siw: Fix a condition race issue in MPA request processing (git-fixes) - RDMA/siw: Fix duplicated reported IW_CM_EVENT_CONNECT_REPLY event (git-fixes) - RDMA/siw: Pass a pointer to virt_to_page() (git-fixes) - RDMA/usnic: fix set-but-not-unused variable 'flags' warning (git-fixes) - RDMA: Verify port when creating flow rule (git-fixes) - RDMA: remove useless condition in siw_create_cq() (git-fixes) - RDMa/mthca: Work around -Wenum-conversion warning (git-fixes) - Revert "drivers/video/backlight/platform_lcd.c: add support for (bsc#1152489) - Revert "drm: bridge: analogix/dp: add panel prepare/unprepare in suspend/resume time" (git-fixes). - Revert "usb: add quirks for Lenovo OneLink+ Dock" (git-fixes). - Revert "usb: storage: Add quirk for Samsung Fit flash" (git-fixes). - Revert "usb: storage: Add quirk for Samsung Fit flash" (git-fixes). - USB: serial: console: move mutex_unlock() before usb_serial_put() (git-fixes). - USB: serial: ftdi_sio: fix 300 bps rate for SIO (git-fixes). - USB: serial: option: add Quectel BG95 0x0203 composition (git-fixes). - USB: serial: option: add Quectel BG95 0x0203 composition (git-fixes). - USB: serial: option: add Quectel RM520N (git-fixes). - USB: serial: option: add Quectel RM520N (git-fixes). - USB: serial: qcserial: add new usb-id for Dell branded EM7455 (git-fixes). - USB: serial: qcserial: add new usb-id for Dell branded EM7455 (git-fixes). - arm64: assembler: add cond_yield macro (git-fixes) - ata: fix ata_id_has_devslp() (git-fixes). - ata: fix ata_id_has_dipm() (git-fixes). - ata: fix ata_id_has_ncq_autosense() (git-fixes). - ata: fix ata_id_sense_reporting_enabled() and ata_id_has_sense_reporting() (git-fixes). - ata: libahci_platform: Sanity check the DT child nodes number (git-fixes). - can: bcm: check the result of can_send() in bcm_can_tx() (git-fixes). - can: gs_usb: gs_can_open(): fix race dev->can.state condition (git-fixes). - can: kvaser_usb: Fix possible completions during init_completion (git-fixes). - can: kvaser_usb: Fix use of uninitialized completion (git-fixes). - can: kvaser_usb_leaf: Fix CAN state after restart (git-fixes). - can: kvaser_usb_leaf: Fix TX queue out of sync after restart (git-fixes). - can: mscan: mpc5xxx: mpc5xxx_can_probe(): add missing put_clock() in error path (git-fixes). - cgroup/cpuset: Enable update_tasks_cpumask() on top_cpuset (bsc#1204753). - clk: bcm2835: Make peripheral PLLC critical (git-fixes). - clk: bcm2835: fix bcm2835_clock_rate_from_divisor declaration (git-fixes). - clk: berlin: Add of_node_put() for of_get_parent() (git-fixes). - clk: imx: imx6sx: remove the SET_RATE_PARENT flag for QSPI clocks (git-fixes). - clk: iproc: Do not rely on node name for correct PLL setup (git-fixes). - clk: mediatek: mt8183: mfgcfg: Propagate rate changes to parent (git-fixes). - clk: oxnas: Hold reference returned by of_get_parent() (git-fixes). - clk: qcom: gcc-msm8916: use ARRAY_SIZE instead of specifying num_parents (git-fixes). - clk: qoriq: Hold reference returned by of_get_parent() (git-fixes). - clk: tegra20: Fix refcount leak in tegra20_clock_init (git-fixes). - clk: tegra: Fix refcount leak in tegra114_clock_init (git-fixes). - clk: tegra: Fix refcount leak in tegra210_clock_init (git-fixes). - clk: ti: dra7-atl: Fix reference leak in of_dra7_atl_clk_probe (git-fixes). - clk: zynqmp: Fix stack-out-of-bounds in strncpy` (git-fixes). - clk: zynqmp: pll: rectify rate rounding in zynqmp_pll_round_rate (git-fixes). - crypto: akcipher - default implementation for setting a private key (git-fixes). - crypto: arm64/sha - fix function types (git-fixes) - crypto: arm64/sha1-ce - simplify NEON yield (git-fixes) - crypto: arm64/sha2-ce - simplify NEON yield (git-fixes) - crypto: arm64/sha3-ce - simplify NEON yield (git-fixes) - crypto: arm64/sha512-ce - simplify NEON yield (git-fixes) - crypto: cavium - prevent integer overflow loading firmware (git-fixes). - crypto: ccp - Release dma channels before dmaengine unrgister (git-fixes). - crypto: hisilicon/zip - fix mismatch in get/set sgl_sge_nr (git-fixes). - device property: Fix documentation for *_match_string() APIs (git-fixes). - dmaengine: ioat: stop mod_timer from resurrecting deleted timer in __cleanup() (git-fixes). - dmaengine: xilinx_dma: Report error in case of dma_set_mask_and_coherent API failure (git-fixes). - dmaengine: xilinx_dma: cleanup for fetching xlnx,num-fstores property (git-fixes). - docs: update mediator information in CoC docs (git-fixes). - drivers: serial: jsm: fix some leaks in probe (git-fixes). - drm/amd/display: Limit user regamma to a valid value (git-fixes). - drm/amdgpu: do not register a dirty callback for non-atomic (git-fixes). - drm/amdgpu: fix initial connector audio value (git-fixes). - drm/amdgpu: use dirty framebuffer helper (git-fixes). - drm/bridge: Avoid uninitialized variable warning (git-fixes). - drm/bridge: megachips: Fix a null pointer dereference bug (git-fixes). - drm/bridge: parade-ps8640: Fix regulator supply order (git-fixes). - drm/i915/gvt: fix a memory leak in intel_gvt_init_vgpu_types (git-fixes). - drm/mipi-dsi: Detach devices when removing the host (git-fixes). - drm/msm/dpu: Fix comment typo (git-fixes). - drm/msm/dpu: index dpu_kms->hw_vbif using vbif_idx (git-fixes). - drm/msm/dsi: fix memory corruption with too many bridges (git-fixes). - drm/msm/hdmi: fix memory corruption with too many bridges (git-fixes). - drm/msm: Fix return type of mdp4_lvds_connector_mode_valid (git-fixes). - drm/msm: Make .remove and .shutdown HW shutdown consistent (git-fixes). - drm/nouveau/nouveau_bo: fix potential memory leak in nouveau_bo_alloc() (git-fixes). - drm/nouveau: fix a use-after-free in nouveau_gem_prime_import_sg_table() (git-fixes). - drm/omap: dss: Fix refcount leak bugs (git-fixes). - drm/rockchip: Fix return type of cdn_dp_connector_mode_valid (git-fixes). - drm/scheduler: quieten kernel-doc warnings (git-fixes). - drm/udl: Restore display mode on resume (git-fixes). - drm: Prevent drm_copy_field() to attempt copying a NULL pointer (git-fixes). - drm: Use size_t type for len variable in drm_copy_field() (git-fixes). - drm: bridge: adv7511: fix CEC power down control register offset (git-fixes). - drm: fix drm_mipi_dbi build errors (git-fixes). - drm: panel-orientation-quirks: Add quirk for Anbernic Win600 (git-fixes). - drm:pl111: Add of_node_put() when breaking out of for_each_available_child_of_node() (git-fixes). - dyndbg: fix module.dyndbg handling (git-fixes). - dyndbg: let query-modname override actual module name (git-fixes). - efi: Correct Macmini DMI match in uefi cert quirk (git-fixes). - efi: libstub: drop pointless get_memory_map() call (git-fixes). - exfat: Return ENAMETOOLONG consistently for oversized paths (bsc#1204053 bsc#1201725). - fbdev: cyber2000fb: fix missing pci_disable_device() (git-fixes). - fbdev: da8xx-fb: Fix error handling in .remove() (git-fixes). - firmware: arm_scmi: Add SCMI PM driver remove routine (git-fixes). - firmware: google: Test spinlock on panic path to avoid lockups (git-fixes). - fpga: prevent integer overflow in dfl_feature_ioctl_set_irq() (git-fixes). - gpio: rockchip: request GPIO mux to pinctrl when setting direction (git-fixes). - hid: hid-logitech-hidpp: avoid unnecessary assignments in hidpp_connect_event (git-fixes). - hwmon/coretemp: Handle large core ID value (git-fixes). - iio: ABI: Fix wrong format of differential capacitance channel ABI (git-fixes). - iio: adc: ad7923: fix channel readings for some variants (git-fixes). - iio: adc: at91-sama5d2_adc: check return status for pressure and touch (git-fixes). - iio: adc: at91-sama5d2_adc: fix AT91_SAMA5D2_MR_TRACKTIM_MAX (git-fixes). - iio: adc: at91-sama5d2_adc: lock around oversampling and sample freq (git-fixes). - iio: adc: mcp3911: use correct id bits (git-fixes). - iio: dac: ad5593r: Fix i2c read protocol requirements (git-fixes). - iio: inkern: only release the device node when done with it (git-fixes). - iio: light: tsl2583: Fix module unloading (git-fixes). - iio: pressure: dps310: Refactor startup procedure (git-fixes). - iio: pressure: dps310: Reset chip after timeout (git-fixes). - irqchip/ls-extirq: Fix invalid wait context by avoiding to use regmap (git-fixes). - kABI: arm64/crypto/sha512 Preserve function signature (git-fixes). - kbuild: Add skip_encoding_btf_enum64 option to pahole (git-fixes). - kbuild: remove the target in signal traps when interrupted (git-fixes). - kbuild: sink stdout from cmd for silent build (git-fixes). - kbuild: skip per-CPU BTF generation for pahole v1.18-v1.21 (jsc#SLE-24559). - kthread: Extract KTHREAD_IS_PER_CPU (bsc#1204753). - lib/sg_pool: change module_init(sg_pool_init) to subsys_initcall (git-fixes). - libata: add ATA_HORKAGE_NOLPM for Pioneer BDR-207M and BDR-205 (git-fixes). - locking/csd_lock: Change csdlock_debug from early_param to __setup (git-fixes). - mISDN: fix use-after-free bugs in l1oip timer handlers (git-fixes). - mISDN: hfcpci: Fix use-after-free bug in hfcpci_softirq (git-fixes). - mac802154: Fix LQI recording (git-fixes). - mailbox: bcm-ferxrm-mailbox: Fix error check for dma_map_sg (git-fixes). - media: aspeed-video: ignore interrupts that are not enabled (git-fixes). - media: cedrus: Set the platform driver data earlier (git-fixes). - media: coda: Add more H264 levels for CODA960 (git-fixes). - media: coda: Fix reported H264 profile (git-fixes). - media: cx88: Fix a null-ptr-deref bug in buffer_prepare() (git-fixes). - media: dvb_vb2: fix possible out of bound access (git-fixes). - media: v4l2-dv-timings: add sanity checks for blanking values (git-fixes). - media: videodev2.h: V4L2_DV_BT_BLANKING_HEIGHT should check 'interlaced' (git-fixes). - media: xilinx: vipp: Fix refcount leak in xvip_graph_dma_init (git-fixes). - memory: of: Fix refcount leak bug in of_get_ddr_timings() (git-fixes). - memory: pl353-smc: Fix refcount leak bug in pl353_smc_probe() (git-fixes). - mfd: fsl-imx25: Fix an error handling path in mx25_tsadc_setup_irq() (git-fixes). - mfd: intel_soc_pmic: Fix an error handling path in intel_soc_pmic_i2c_probe() (git-fixes). - mfd: lp8788: Fix an error handling path in lp8788_irq_init() and lp8788_irq_init() (git-fixes). - mfd: lp8788: Fix an error handling path in lp8788_probe() (git-fixes). - mfd: sm501: Add check for platform_driver_register() (git-fixes). - misc: ocxl: fix possible refcount leak in afu_ioctl() (git-fixes). - mm, memcg: avoid stale protection values when cgroup is above protection (bsc#1204754). - mm/hugetlb: fix races when looking up a CONT-PTE/PMD size hugetlb page (bsc#1204575). - mm: memcontrol: fix occasional OOMs due to proportional memory.low reclaim (bsc#1204754). - mmc: au1xmmc: Fix an error handling path in au1xmmc_probe() (git-fixes). - mmc: core: Fix kernel panic when remove non-standard SDIO card (git-fixes). - mmc: core: Replace with already defined values for readability (git-fixes). - mmc: core: Terminate infinite loop in SD-UHS voltage switch (git-fixes). - mmc: moxart: fix 4-bit bus width and remove 8-bit bus width (git-fixes). - mmc: sdhci-msm: add compatible string check for sdm670 (git-fixes). - mmc: sdhci-sprd: Fix minimum clock limit (git-fixes). - mmc: wmt-sdmmc: Fix an error handling path in wmt_mci_probe() (git-fixes). - mtd: devices: docg3: check the return value of devm_ioremap() in the probe (git-fixes). - mtd: rawnand: atmel: Unmap streaming DMA mappings (git-fixes). - mtd: rawnand: marvell: Use correct logic for nand-keep-config (git-fixes). - mtd: rawnand: meson: fix bit map use in meson_nfc_ecc_correct() (git-fixes). - net/ieee802154: fix uninit value bug in dgram_sendmsg (git-fixes). - net: ieee802154: return -EINVAL for unknown addr type (git-fixes). - net: usb: qmi_wwan: Add new usb-id for Dell branded EM7455 (git-fixes). - net: usb: qmi_wwan: Add new usb-id for Dell branded EM7455 (git-fixes). - net: usb: qmi_wwan: add Quectel RM520N (git-fixes). - openvswitch: Fix double reporting of drops in dropwatch (git-fixes). - openvswitch: Fix overreporting of drops in dropwatch (git-fixes). - openvswitch: switch from WARN to pr_warn (git-fixes). - padata: introduce internal padata_get/put_pd() helpers (bsc#1202638). - padata: make padata_free_shell() to respect pd's ->refcnt (bsc#1202638). - parisc/sticon: fix reverse colors (bsc#1152489) Backporting notes: * context changes - parisc: parisc-agp requires SBA IOMMU driver (bsc#1152489) - phy: qualcomm: call clk_disable_unprepare in the error handling (git-fixes). - pinctrl: armada-37xx: Add missing GPIO-only pins (git-fixes). - pinctrl: armada-37xx: Checks for errors in gpio_request_enable callback (git-fixes). - pinctrl: armada-37xx: Fix definitions for MPP pins 20-22 (git-fixes). - pinctrl: rockchip: add pinmux_ops.gpio_set_direction callback (git-fixes). - platform/x86: msi-laptop: Change DMI match / alias strings to fix module autoloading (git-fixes). - platform/x86: msi-laptop: Fix old-ec check for backlight registering (git-fixes). - platform/x86: msi-laptop: Fix resource cleanup (git-fixes). - power: supply: adp5061: fix out-of-bounds read in adp5061_get_chg_type() (git-fixes). - powerpc/64: Remove unused SYS_CALL_TABLE symbol (jsc#SLE-9246 git-fixes). - powerpc/fadump: align destination address to pagesize (bsc#1204728 ltc#200074). - powerpc/kprobes: Fix null pointer reference in arch_prepare_kprobe() (jsc#SLE-13847 git-fixes). - powerpc/mm/64s: Drop pgd_huge() (bsc#1065729). - powerpc/mm: remove pmd_huge/pud_huge stubs and include hugetlb.h (bsc#1065729). - powerpc/pci_dn: Add missing of_node_put() (bsc#1065729). - powerpc/powernv: add missing of_node_put() in opal_export_attrs() (bsc#1065729). - powerpc/pseries: Interface to represent PAPR firmware attributes (bsc#1200465 ltc#197256 jsc#PED-1931). - quota: widen timestamps for the fs_disk_quota structure (bsc#1203387). - regulator: pfuze100: Fix the global-out-of-bounds access in pfuze100_regulator_probe() (git-fixes). - regulator: qcom_rpm: Fix circular deferral regression (git-fixes). - reset: imx7: Fix the iMX8MP PCIe PHY PERST support (git-fixes). - rpmsg: qcom: glink: replace strncpy() with strscpy_pad() (git-fixes). - rtc: stmp3xxx: Add failure handling for stmp3xxx_wdt_register() (git-fixes). - s390/hypfs: avoid error message under KVM (bsc#1032323). - sbitmap: Avoid leaving waitqueue in invalid state in __sbq_wake_up() (git-fixes). - sbitmap: fix possible io hung due to lost wakeup (git-fixes). - scsi: libsas: Fix use-after-free bug in smp_execute_task_sg() (git-fixes). - scsi: mpt3sas: Fix return value check of dma_get_required_mask() (git-fixes). - scsi: qla2xxx: Fix disk failure to rediscover (git-fixes). - selftest/powerpc: Add PAPR sysfs attributes sniff test (bsc#1200465 ltc#197256 jsc#PED-1931). - selftests/powerpc: Skip energy_scale_info test on older firmware (git-fixes). - serial: Create uart_xmit_advance() (git-fixes). - serial: tegra-tcu: Use uart_xmit_advance(), fixes icount.tx accounting (git-fixes). - serial: tegra: Use uart_xmit_advance(), fixes icount.tx accounting (git-fixes). - soc: qcom: smem_state: Add refcounting for the 'state->of_node' (git-fixes). - soc: qcom: smsm: Fix refcount leak bugs in qcom_smsm_probe() (git-fixes). - soc: sunxi: sram: Actually claim SRAM regions (git-fixes). - soc: sunxi: sram: Fix debugfs info for A64 SRAM C (git-fixes). - soc: sunxi: sram: Prevent the driver from being unbound (git-fixes). - soc: sunxi_sram: Make use of the helper function devm_platform_ioremap_resource() (git-fixes). - spi/omap100k:Fix PM disable depth imbalance in omap1_spi100k_probe (git-fixes). - spi: mt7621: Fix an error message in mt7621_spi_probe() (git-fixes). - spi: qup: add missing clk_disable_unprepare on error in spi_qup_pm_resume_runtime() (git-fixes). - spi: qup: add missing clk_disable_unprepare on error in spi_qup_resume() (git-fixes). - spi: s3c64xx: Fix large transfers with DMA (git-fixes). - staging: rtl8723bs: fix a potential memory leak in rtw_init_cmd_priv() (git-fixes). - staging: vt6655: fix potential memory leak (git-fixes). - staging: vt6655: fix some erroneous memory clean-up loops (git-fixes). - struct pci_config_window kABI workaround (bsc#1204382). - thermal: intel_powerclamp: Use first online CPU as control_cpu (git-fixes). - thermal: intel_powerclamp: Use get_cpu() instead of smp_processor_id() to avoid crash (git-fixes). - tty/serial: atmel: RS485 & ISO7816: wait for TXRDY before sending data (git-fixes). - tty: serial: fsl_lpuart: disable dma rx/tx use flags in lpuart_dma_shutdown (git-fixes). - tty: xilinx_uartps: Fix the ignore_status (git-fixes). - uas: add no-uas quirk for Hiksemi usb_disk (git-fixes). - uas: ignore UAS for Thinkplus chips (git-fixes). - usb-storage: Add Hiksemi USB3-FW to IGNORE_UAS (git-fixes). - usb: add quirks for Lenovo OneLink+ Dock (git-fixes). - usb: add quirks for Lenovo OneLink+ Dock (git-fixes). - usb: bdc: change state when port disconnected (git-fixes). - usb: dwc3: gadget: Avoid starting DWC3 gadget during UDC unbind (git-fixes). - usb: dwc3: gadget: Do not set IMI for no_interrupt (git-fixes). - usb: dwc3: gadget: Prevent repeat pullup() (git-fixes). - usb: dwc3: gadget: Stop processing more requests on IMI (git-fixes). - usb: gadget: function: fix dangling pnp_string in f_printer.c (git-fixes). - usb: host: xhci: Fix potential memory leak in xhci_alloc_stream_info() (git-fixes). - usb: idmouse: fix an uninit-value in idmouse_open (git-fixes). - usb: mon: make mmapped memory read only (git-fixes). - usb: musb: Fix musb_gadget.c rxstate overflow bug (git-fixes). - usb: typec: ucsi: Remove incorrect warning (git-fixes). - usb: xhci-mtk: add a function to (un)load bandwidth info (git-fixes). - usb: xhci-mtk: add only one extra CS for FS/LS INTR (git-fixes). - usb: xhci-mtk: add some schedule error number (git-fixes). - usb: xhci-mtk: fix issue of out-of-bounds array access (git-fixes). - usb: xhci-mtk: get the microframe boundary for ESIT (git-fixes). - usb: xhci-mtk: use @sch_tt to check whether need do TT schedule (git-fixes). - vhost/vsock: Use kvmalloc/kvfree for larger packets (git-fixes). - video: fbdev: pxa3xx-gcu: Fix integer overflow in pxa3xx_gcu_write (git-fixes). - watchdog: armada_37xx_wdt: Fix .set_timeout callback (git-fixes). - watchdog: ftwdt010_wdt: fix test for platform_get_irq() failure (git-fixes). - wifi: ath10k: add peer map clean up for peer delete in ath10k_sta_state() (git-fixes). - wifi: ath9k: avoid uninit memory read in ath9k_htc_rx_msg() (git-fixes). - wifi: brcmfmac: fix invalid address access when enabling SCAN log level (git-fixes). - wifi: brcmfmac: fix use-after-free bug in brcmf_netdev_start_xmit() (git-fixes). - wifi: cfg80211: update hidden BSSes to avoid WARN_ON (git-fixes). - wifi: iwlwifi: mvm: fix double list_add at iwl_mvm_mac_wake_tx_queue (other cases) (git-fixes). - wifi: mac80211: Fix UAF in ieee80211_scan_rx() (git-fixes). - wifi: mac80211: allow bw change during channel switch in mesh (git-fixes). - wifi: mac80211: do not drop packets smaller than the LLC-SNAP header on fast-rx (git-fixes). - wifi: mac80211_hwsim: avoid mac80211 warning on bad rate (git-fixes). - wifi: rt2x00: correctly set BBP register 86 for MT7620 (git-fixes). - wifi: rt2x00: do not run Rt5592 IQ calibration on MT7620 (git-fixes). - wifi: rt2x00: set SoC wmac clock register (git-fixes). - wifi: rt2x00: set VGC gain for both chains of MT7620 (git-fixes). - wifi: rt2x00: set correct TX_SW_CFG1 MAC register for MT7620 (git-fixes). - wifi: rtl8xxxu: Fix AIFS written to REG_EDCA_*_PARAM (git-fixes). - wifi: rtl8xxxu: Fix skb misuse in TX queue selection (git-fixes). - wifi: rtl8xxxu: Improve rtl8xxxu_queue_select (git-fixes). - wifi: rtl8xxxu: Remove copy-paste leftover in gen2_update_rate_mask (git-fixes). - wifi: rtl8xxxu: gen2: Fix mistake in path B IQ calibration (git-fixes). - wifi: rtl8xxxu: tighten bounds checking in rtl8xxxu_read_efuse() (git-fixes). - xfs: add missing assert in xfs_fsmap_owner_from_rmap (git-fixes). - xfs: enable big timestamps (bsc#1203387). - xfs: enable new inode btree counters feature (bsc#1203387). - xfs: explicitly define inode timestamp range (bsc#1203387). - xfs: fix memory corruption during remote attr value buffer invalidation (git-fixes). - xfs: fix s_maxbytes computation on 32-bit kernels (git-fixes). - xfs: hoist out xfs_resizefs_init_new_ags() (git-fixes). - xfs: move incore structures out of xfs_da_format.h (git-fixes). - xfs: quota: move to time64_t interfaces (bsc#1203387). - xfs: redefine xfs_ictimestamp_t (bsc#1203387). - xfs: redefine xfs_timestamp_t (bsc#1203387). - xfs: refactor remote attr value buffer invalidation (git-fixes). - xfs: remove obsolete AGF counter debugging (git-fixes). - xfs: rename `new' to `delta' in xfs_growfs_data_private() (git-fixes). - xfs: reserve data and rt quota at the same time (bsc#1203496). - xfs: slightly tweak an assert in xfs_fs_map_blocks (git-fixes). - xfs: store inode btree block counts in AGI header (bsc#1203387). - xfs: streamline xfs_attr3_leaf_inactive (git-fixes). - xfs: use a struct timespec64 for the in-core crtime (bsc#1203387). - xfs: use the finobt block counts to speed up mount times (bsc#1203387). - xfs: widen ondisk inode timestamps to deal with y2038+ (bsc#1203387). - xfs: widen ondisk quota expiration timestamps to handle y2038+ (bsc#1203387). - xhci: Do not show warning for reinit on known broken suspend (git-fixes). Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap Micro 5.2: zypper in -t patch openSUSE-Leap-Micro-5.2-2022-4053=1 - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4053=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4053=1 - SUSE Linux Enterprise Workstation Extension 15-SP3: zypper in -t patch SUSE-SLE-Product-WE-15-SP3-2022-4053=1 - SUSE Linux Enterprise Module for Live Patching 15-SP3: zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2022-4053=1 Please note that this is the initial kernel livepatch without fixes itself, this livepatch package is later updated by seperate standalone livepatch updates. - SUSE Linux Enterprise Module for Legacy Software 15-SP3: zypper in -t patch SUSE-SLE-Module-Legacy-15-SP3-2022-4053=1 - SUSE Linux Enterprise Module for Development Tools 15-SP3: zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP3-2022-4053=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2022-4053=1 - SUSE Linux Enterprise Micro 5.2: zypper in -t patch SUSE-SUSE-MicroOS-5.2-2022-4053=1 - SUSE Linux Enterprise Micro 5.1: zypper in -t patch SUSE-SUSE-MicroOS-5.1-2022-4053=1 - SUSE Linux Enterprise High Availability 15-SP3: zypper in -t patch SUSE-SLE-Product-HA-15-SP3-2022-4053=1 Package List: - openSUSE Leap Micro 5.2 (aarch64 x86_64): kernel-default-5.3.18-150300.59.101.1 kernel-default-base-5.3.18-150300.59.101.1.150300.18.58.1 kernel-default-debuginfo-5.3.18-150300.59.101.1 kernel-default-debugsource-5.3.18-150300.59.101.1 - openSUSE Leap 15.4 (aarch64): dtb-al-5.3.18-150300.59.101.1 dtb-zte-5.3.18-150300.59.101.1 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): cluster-md-kmp-default-5.3.18-150300.59.101.1 cluster-md-kmp-default-debuginfo-5.3.18-150300.59.101.1 dlm-kmp-default-5.3.18-150300.59.101.1 dlm-kmp-default-debuginfo-5.3.18-150300.59.101.1 gfs2-kmp-default-5.3.18-150300.59.101.1 gfs2-kmp-default-debuginfo-5.3.18-150300.59.101.1 kernel-default-5.3.18-150300.59.101.1 kernel-default-base-5.3.18-150300.59.101.1.150300.18.58.1 kernel-default-base-rebuild-5.3.18-150300.59.101.1.150300.18.58.1 kernel-default-debuginfo-5.3.18-150300.59.101.1 kernel-default-debugsource-5.3.18-150300.59.101.1 kernel-default-devel-5.3.18-150300.59.101.1 kernel-default-devel-debuginfo-5.3.18-150300.59.101.1 kernel-default-extra-5.3.18-150300.59.101.1 kernel-default-extra-debuginfo-5.3.18-150300.59.101.1 kernel-default-livepatch-5.3.18-150300.59.101.1 kernel-default-livepatch-devel-5.3.18-150300.59.101.1 kernel-default-optional-5.3.18-150300.59.101.1 kernel-default-optional-debuginfo-5.3.18-150300.59.101.1 kernel-obs-build-5.3.18-150300.59.101.1 kernel-obs-build-debugsource-5.3.18-150300.59.101.1 kernel-obs-qa-5.3.18-150300.59.101.1 kernel-syms-5.3.18-150300.59.101.1 kselftests-kmp-default-5.3.18-150300.59.101.1 kselftests-kmp-default-debuginfo-5.3.18-150300.59.101.1 ocfs2-kmp-default-5.3.18-150300.59.101.1 ocfs2-kmp-default-debuginfo-5.3.18-150300.59.101.1 reiserfs-kmp-default-5.3.18-150300.59.101.1 reiserfs-kmp-default-debuginfo-5.3.18-150300.59.101.1 - openSUSE Leap 15.3 (aarch64 x86_64): cluster-md-kmp-preempt-5.3.18-150300.59.101.1 cluster-md-kmp-preempt-debuginfo-5.3.18-150300.59.101.1 dlm-kmp-preempt-5.3.18-150300.59.101.1 dlm-kmp-preempt-debuginfo-5.3.18-150300.59.101.1 gfs2-kmp-preempt-5.3.18-150300.59.101.1 gfs2-kmp-preempt-debuginfo-5.3.18-150300.59.101.1 kernel-preempt-5.3.18-150300.59.101.1 kernel-preempt-debuginfo-5.3.18-150300.59.101.1 kernel-preempt-debugsource-5.3.18-150300.59.101.1 kernel-preempt-devel-5.3.18-150300.59.101.1 kernel-preempt-devel-debuginfo-5.3.18-150300.59.101.1 kernel-preempt-extra-5.3.18-150300.59.101.1 kernel-preempt-extra-debuginfo-5.3.18-150300.59.101.1 kernel-preempt-livepatch-devel-5.3.18-150300.59.101.1 kernel-preempt-optional-5.3.18-150300.59.101.1 kernel-preempt-optional-debuginfo-5.3.18-150300.59.101.1 kselftests-kmp-preempt-5.3.18-150300.59.101.1 kselftests-kmp-preempt-debuginfo-5.3.18-150300.59.101.1 ocfs2-kmp-preempt-5.3.18-150300.59.101.1 ocfs2-kmp-preempt-debuginfo-5.3.18-150300.59.101.1 reiserfs-kmp-preempt-5.3.18-150300.59.101.1 reiserfs-kmp-preempt-debuginfo-5.3.18-150300.59.101.1 - openSUSE Leap 15.3 (ppc64le x86_64): kernel-debug-5.3.18-150300.59.101.1 kernel-debug-debuginfo-5.3.18-150300.59.101.1 kernel-debug-debugsource-5.3.18-150300.59.101.1 kernel-debug-devel-5.3.18-150300.59.101.1 kernel-debug-devel-debuginfo-5.3.18-150300.59.101.1 kernel-debug-livepatch-devel-5.3.18-150300.59.101.1 kernel-kvmsmall-5.3.18-150300.59.101.1 kernel-kvmsmall-debuginfo-5.3.18-150300.59.101.1 kernel-kvmsmall-debugsource-5.3.18-150300.59.101.1 kernel-kvmsmall-devel-5.3.18-150300.59.101.1 kernel-kvmsmall-devel-debuginfo-5.3.18-150300.59.101.1 kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.101.1 - openSUSE Leap 15.3 (aarch64): cluster-md-kmp-64kb-5.3.18-150300.59.101.1 cluster-md-kmp-64kb-debuginfo-5.3.18-150300.59.101.1 dlm-kmp-64kb-5.3.18-150300.59.101.1 dlm-kmp-64kb-debuginfo-5.3.18-150300.59.101.1 dtb-al-5.3.18-150300.59.101.1 dtb-allwinner-5.3.18-150300.59.101.1 dtb-altera-5.3.18-150300.59.101.1 dtb-amd-5.3.18-150300.59.101.1 dtb-amlogic-5.3.18-150300.59.101.1 dtb-apm-5.3.18-150300.59.101.1 dtb-arm-5.3.18-150300.59.101.1 dtb-broadcom-5.3.18-150300.59.101.1 dtb-cavium-5.3.18-150300.59.101.1 dtb-exynos-5.3.18-150300.59.101.1 dtb-freescale-5.3.18-150300.59.101.1 dtb-hisilicon-5.3.18-150300.59.101.1 dtb-lg-5.3.18-150300.59.101.1 dtb-marvell-5.3.18-150300.59.101.1 dtb-mediatek-5.3.18-150300.59.101.1 dtb-nvidia-5.3.18-150300.59.101.1 dtb-qcom-5.3.18-150300.59.101.1 dtb-renesas-5.3.18-150300.59.101.1 dtb-rockchip-5.3.18-150300.59.101.1 dtb-socionext-5.3.18-150300.59.101.1 dtb-sprd-5.3.18-150300.59.101.1 dtb-xilinx-5.3.18-150300.59.101.1 dtb-zte-5.3.18-150300.59.101.1 gfs2-kmp-64kb-5.3.18-150300.59.101.1 gfs2-kmp-64kb-debuginfo-5.3.18-150300.59.101.1 kernel-64kb-5.3.18-150300.59.101.1 kernel-64kb-debuginfo-5.3.18-150300.59.101.1 kernel-64kb-debugsource-5.3.18-150300.59.101.1 kernel-64kb-devel-5.3.18-150300.59.101.1 kernel-64kb-devel-debuginfo-5.3.18-150300.59.101.1 kernel-64kb-extra-5.3.18-150300.59.101.1 kernel-64kb-extra-debuginfo-5.3.18-150300.59.101.1 kernel-64kb-livepatch-devel-5.3.18-150300.59.101.1 kernel-64kb-optional-5.3.18-150300.59.101.1 kernel-64kb-optional-debuginfo-5.3.18-150300.59.101.1 kselftests-kmp-64kb-5.3.18-150300.59.101.1 kselftests-kmp-64kb-debuginfo-5.3.18-150300.59.101.1 ocfs2-kmp-64kb-5.3.18-150300.59.101.1 ocfs2-kmp-64kb-debuginfo-5.3.18-150300.59.101.1 reiserfs-kmp-64kb-5.3.18-150300.59.101.1 reiserfs-kmp-64kb-debuginfo-5.3.18-150300.59.101.1 - openSUSE Leap 15.3 (noarch): kernel-devel-5.3.18-150300.59.101.1 kernel-docs-5.3.18-150300.59.101.1 kernel-docs-html-5.3.18-150300.59.101.1 kernel-macros-5.3.18-150300.59.101.1 kernel-source-5.3.18-150300.59.101.1 kernel-source-vanilla-5.3.18-150300.59.101.1 - openSUSE Leap 15.3 (s390x): kernel-zfcpdump-5.3.18-150300.59.101.1 kernel-zfcpdump-debuginfo-5.3.18-150300.59.101.1 kernel-zfcpdump-debugsource-5.3.18-150300.59.101.1 - SUSE Linux Enterprise Workstation Extension 15-SP3 (x86_64): kernel-default-debuginfo-5.3.18-150300.59.101.1 kernel-default-debugsource-5.3.18-150300.59.101.1 kernel-default-extra-5.3.18-150300.59.101.1 kernel-default-extra-debuginfo-5.3.18-150300.59.101.1 kernel-preempt-debuginfo-5.3.18-150300.59.101.1 kernel-preempt-debugsource-5.3.18-150300.59.101.1 kernel-preempt-extra-5.3.18-150300.59.101.1 kernel-preempt-extra-debuginfo-5.3.18-150300.59.101.1 - SUSE Linux Enterprise Module for Live Patching 15-SP3 (ppc64le s390x x86_64): kernel-default-debuginfo-5.3.18-150300.59.101.1 kernel-default-debugsource-5.3.18-150300.59.101.1 kernel-default-livepatch-5.3.18-150300.59.101.1 kernel-default-livepatch-devel-5.3.18-150300.59.101.1 kernel-livepatch-5_3_18-150300_59_101-default-1-150300.7.3.1 - SUSE Linux Enterprise Module for Legacy Software 15-SP3 (aarch64 ppc64le s390x x86_64): kernel-default-debuginfo-5.3.18-150300.59.101.1 kernel-default-debugsource-5.3.18-150300.59.101.1 reiserfs-kmp-default-5.3.18-150300.59.101.1 reiserfs-kmp-default-debuginfo-5.3.18-150300.59.101.1 - SUSE Linux Enterprise Module for Development Tools 15-SP3 (aarch64 ppc64le s390x x86_64): kernel-obs-build-5.3.18-150300.59.101.1 kernel-obs-build-debugsource-5.3.18-150300.59.101.1 kernel-syms-5.3.18-150300.59.101.1 - SUSE Linux Enterprise Module for Development Tools 15-SP3 (aarch64 x86_64): kernel-preempt-debuginfo-5.3.18-150300.59.101.1 kernel-preempt-debugsource-5.3.18-150300.59.101.1 kernel-preempt-devel-5.3.18-150300.59.101.1 kernel-preempt-devel-debuginfo-5.3.18-150300.59.101.1 - SUSE Linux Enterprise Module for Development Tools 15-SP3 (noarch): kernel-docs-5.3.18-150300.59.101.1 kernel-source-5.3.18-150300.59.101.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): kernel-default-5.3.18-150300.59.101.1 kernel-default-base-5.3.18-150300.59.101.1.150300.18.58.1 kernel-default-debuginfo-5.3.18-150300.59.101.1 kernel-default-debugsource-5.3.18-150300.59.101.1 kernel-default-devel-5.3.18-150300.59.101.1 kernel-default-devel-debuginfo-5.3.18-150300.59.101.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 x86_64): kernel-preempt-5.3.18-150300.59.101.1 kernel-preempt-debuginfo-5.3.18-150300.59.101.1 kernel-preempt-debugsource-5.3.18-150300.59.101.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64): kernel-64kb-5.3.18-150300.59.101.1 kernel-64kb-debuginfo-5.3.18-150300.59.101.1 kernel-64kb-debugsource-5.3.18-150300.59.101.1 kernel-64kb-devel-5.3.18-150300.59.101.1 kernel-64kb-devel-debuginfo-5.3.18-150300.59.101.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (noarch): kernel-devel-5.3.18-150300.59.101.1 kernel-macros-5.3.18-150300.59.101.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (s390x): kernel-zfcpdump-5.3.18-150300.59.101.1 kernel-zfcpdump-debuginfo-5.3.18-150300.59.101.1 kernel-zfcpdump-debugsource-5.3.18-150300.59.101.1 - SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64): kernel-default-5.3.18-150300.59.101.1 kernel-default-base-5.3.18-150300.59.101.1.150300.18.58.1 kernel-default-debuginfo-5.3.18-150300.59.101.1 kernel-default-debugsource-5.3.18-150300.59.101.1 - SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64): kernel-default-5.3.18-150300.59.101.1 kernel-default-base-5.3.18-150300.59.101.1.150300.18.58.1 kernel-default-debuginfo-5.3.18-150300.59.101.1 kernel-default-debugsource-5.3.18-150300.59.101.1 - SUSE Linux Enterprise High Availability 15-SP3 (aarch64 ppc64le s390x x86_64): cluster-md-kmp-default-5.3.18-150300.59.101.1 cluster-md-kmp-default-debuginfo-5.3.18-150300.59.101.1 dlm-kmp-default-5.3.18-150300.59.101.1 dlm-kmp-default-debuginfo-5.3.18-150300.59.101.1 gfs2-kmp-default-5.3.18-150300.59.101.1 gfs2-kmp-default-debuginfo-5.3.18-150300.59.101.1 kernel-default-debuginfo-5.3.18-150300.59.101.1 kernel-default-debugsource-5.3.18-150300.59.101.1 ocfs2-kmp-default-5.3.18-150300.59.101.1 ocfs2-kmp-default-debuginfo-5.3.18-150300.59.101.1 References: https://www.suse.com/security/cve/CVE-2021-4037.html https://www.suse.com/security/cve/CVE-2022-2153.html https://www.suse.com/security/cve/CVE-2022-2964.html https://www.suse.com/security/cve/CVE-2022-2978.html https://www.suse.com/security/cve/CVE-2022-3176.html https://www.suse.com/security/cve/CVE-2022-3424.html https://www.suse.com/security/cve/CVE-2022-3521.html https://www.suse.com/security/cve/CVE-2022-3524.html https://www.suse.com/security/cve/CVE-2022-3535.html https://www.suse.com/security/cve/CVE-2022-3542.html https://www.suse.com/security/cve/CVE-2022-3545.html https://www.suse.com/security/cve/CVE-2022-3565.html https://www.suse.com/security/cve/CVE-2022-3577.html https://www.suse.com/security/cve/CVE-2022-3586.html https://www.suse.com/security/cve/CVE-2022-3594.html https://www.suse.com/security/cve/CVE-2022-3621.html https://www.suse.com/security/cve/CVE-2022-3625.html https://www.suse.com/security/cve/CVE-2022-3629.html https://www.suse.com/security/cve/CVE-2022-3640.html https://www.suse.com/security/cve/CVE-2022-3646.html https://www.suse.com/security/cve/CVE-2022-3649.html https://www.suse.com/security/cve/CVE-2022-39189.html https://www.suse.com/security/cve/CVE-2022-42703.html https://www.suse.com/security/cve/CVE-2022-43750.html https://bugzilla.suse.com/1032323 https://bugzilla.suse.com/1065729 https://bugzilla.suse.com/1152489 https://bugzilla.suse.com/1198702 https://bugzilla.suse.com/1200465 https://bugzilla.suse.com/1200788 https://bugzilla.suse.com/1201725 https://bugzilla.suse.com/1202638 https://bugzilla.suse.com/1202686 https://bugzilla.suse.com/1202700 https://bugzilla.suse.com/1203066 https://bugzilla.suse.com/1203098 https://bugzilla.suse.com/1203387 https://bugzilla.suse.com/1203391 https://bugzilla.suse.com/1203496 https://bugzilla.suse.com/1203802 https://bugzilla.suse.com/1204053 https://bugzilla.suse.com/1204166 https://bugzilla.suse.com/1204168 https://bugzilla.suse.com/1204354 https://bugzilla.suse.com/1204355 https://bugzilla.suse.com/1204382 https://bugzilla.suse.com/1204402 https://bugzilla.suse.com/1204415 https://bugzilla.suse.com/1204417 https://bugzilla.suse.com/1204431 https://bugzilla.suse.com/1204439 https://bugzilla.suse.com/1204470 https://bugzilla.suse.com/1204479 https://bugzilla.suse.com/1204574 https://bugzilla.suse.com/1204575 https://bugzilla.suse.com/1204619 https://bugzilla.suse.com/1204635 https://bugzilla.suse.com/1204637 https://bugzilla.suse.com/1204646 https://bugzilla.suse.com/1204647 https://bugzilla.suse.com/1204653 https://bugzilla.suse.com/1204728 https://bugzilla.suse.com/1204753 https://bugzilla.suse.com/1204754

1 0

SUSE-SU-2022:4058-1: important: Security update for MozillaFirefox
by opensuse-security＠opensuse.org 17 Nov '22

17 Nov '22

SUSE Security Update: Security update for MozillaFirefox ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4058-1 Rating: important References: #1205270 Cross-References: CVE-2022-45403 CVE-2022-45404 CVE-2022-45405 CVE-2022-45406 CVE-2022-45408 CVE-2022-45409 CVE-2022-45410 CVE-2022-45411 CVE-2022-45412 CVE-2022-45416 CVE-2022-45418 CVE-2022-45420 CVE-2022-45421 Affected Products: SUSE Enterprise Storage 7 SUSE Enterprise Storage 7.1 SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise Desktop 15-SP4 SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Desktop Applications 15-SP3 SUSE Linux Enterprise Module for Desktop Applications 15-SP4 SUSE Linux Enterprise Server 15-SP2-BCL SUSE Linux Enterprise Server 15-SP2-LTSS SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP 15-SP2 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.1 SUSE Manager Proxy 4.2 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.1 SUSE Manager Retail Branch Server 4.2 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.1 SUSE Manager Server 4.2 SUSE Manager Server 4.3 openSUSE Leap 15.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes 13 vulnerabilities is now available. Description: This update for MozillaFirefox fixes the following issues: Update to Firefox Extended Support Release 102.5.0 ESR (MFSA 2022-48, bsc#1205270): - CVE-2022-45403: Service Workers might have learned size of cross-origin media files - CVE-2022-45404: Fullscreen notification bypass - CVE-2022-45405: Use-after-free in InputStream implementation - CVE-2022-45406: Use-after-free of a JavaScript Realm - CVE-2022-45408: Fullscreen notification bypass via windowName - CVE-2022-45409: Use-after-free in Garbage Collection - CVE-2022-45410: ServiceWorker-intercepted requests bypassed SameSite cookie policy - CVE-2022-45411: Cross-Site Tracing was possible via non-standard override headers - CVE-2022-45412: Symlinks may resolve to partially uninitialized buffers - CVE-2022-45416: Keystroke Side-Channel Leakage - CVE-2022-45418: Custom mouse cursor could have been drawn over browser UI - CVE-2022-45420: Iframe contents could be rendered outside the iframe - CVE-2022-45421: Memory safety bugs fixed in Firefox 107 and Firefox ESR 102.5 Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4058=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4058=1 - SUSE Manager Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-4058=1 - SUSE Manager Retail Branch Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-4058=1 - SUSE Manager Proxy 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-4058=1 - SUSE Linux Enterprise Server for SAP 15-SP2: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2022-4058=1 - SUSE Linux Enterprise Server 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-4058=1 - SUSE Linux Enterprise Server 15-SP2-BCL: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-BCL-2022-4058=1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP4: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP4-2022-4058=1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP3: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP3-2022-4058=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-4058=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-4058=1 - SUSE Enterprise Storage 7: zypper in -t patch SUSE-Storage-7-2022-4058=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): MozillaFirefox-102.5.0-150200.152.67.3 MozillaFirefox-branding-upstream-102.5.0-150200.152.67.3 MozillaFirefox-debuginfo-102.5.0-150200.152.67.3 MozillaFirefox-debugsource-102.5.0-150200.152.67.3 MozillaFirefox-devel-102.5.0-150200.152.67.3 MozillaFirefox-translations-common-102.5.0-150200.152.67.3 MozillaFirefox-translations-other-102.5.0-150200.152.67.3 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): MozillaFirefox-102.5.0-150200.152.67.3 MozillaFirefox-branding-upstream-102.5.0-150200.152.67.3 MozillaFirefox-debuginfo-102.5.0-150200.152.67.3 MozillaFirefox-debugsource-102.5.0-150200.152.67.3 MozillaFirefox-devel-102.5.0-150200.152.67.3 MozillaFirefox-translations-common-102.5.0-150200.152.67.3 MozillaFirefox-translations-other-102.5.0-150200.152.67.3 - SUSE Manager Server 4.1 (ppc64le s390x x86_64): MozillaFirefox-102.5.0-150200.152.67.3 MozillaFirefox-debuginfo-102.5.0-150200.152.67.3 MozillaFirefox-debugsource-102.5.0-150200.152.67.3 MozillaFirefox-devel-102.5.0-150200.152.67.3 MozillaFirefox-translations-common-102.5.0-150200.152.67.3 MozillaFirefox-translations-other-102.5.0-150200.152.67.3 - SUSE Manager Retail Branch Server 4.1 (x86_64): MozillaFirefox-102.5.0-150200.152.67.3 MozillaFirefox-debuginfo-102.5.0-150200.152.67.3 MozillaFirefox-debugsource-102.5.0-150200.152.67.3 MozillaFirefox-devel-102.5.0-150200.152.67.3 MozillaFirefox-translations-common-102.5.0-150200.152.67.3 MozillaFirefox-translations-other-102.5.0-150200.152.67.3 - SUSE Manager Proxy 4.1 (x86_64): MozillaFirefox-102.5.0-150200.152.67.3 MozillaFirefox-debuginfo-102.5.0-150200.152.67.3 MozillaFirefox-debugsource-102.5.0-150200.152.67.3 MozillaFirefox-devel-102.5.0-150200.152.67.3 MozillaFirefox-translations-common-102.5.0-150200.152.67.3 MozillaFirefox-translations-other-102.5.0-150200.152.67.3 - SUSE Linux Enterprise Server for SAP 15-SP2 (ppc64le x86_64): MozillaFirefox-102.5.0-150200.152.67.3 MozillaFirefox-debuginfo-102.5.0-150200.152.67.3 MozillaFirefox-debugsource-102.5.0-150200.152.67.3 MozillaFirefox-devel-102.5.0-150200.152.67.3 MozillaFirefox-translations-common-102.5.0-150200.152.67.3 MozillaFirefox-translations-other-102.5.0-150200.152.67.3 - SUSE Linux Enterprise Server 15-SP2-LTSS (aarch64 ppc64le s390x x86_64): MozillaFirefox-102.5.0-150200.152.67.3 MozillaFirefox-debuginfo-102.5.0-150200.152.67.3 MozillaFirefox-debugsource-102.5.0-150200.152.67.3 MozillaFirefox-devel-102.5.0-150200.152.67.3 MozillaFirefox-translations-common-102.5.0-150200.152.67.3 MozillaFirefox-translations-other-102.5.0-150200.152.67.3 - SUSE Linux Enterprise Server 15-SP2-BCL (x86_64): MozillaFirefox-102.5.0-150200.152.67.3 MozillaFirefox-debuginfo-102.5.0-150200.152.67.3 MozillaFirefox-debugsource-102.5.0-150200.152.67.3 MozillaFirefox-devel-102.5.0-150200.152.67.3 MozillaFirefox-translations-common-102.5.0-150200.152.67.3 MozillaFirefox-translations-other-102.5.0-150200.152.67.3 - SUSE Linux Enterprise Module for Desktop Applications 15-SP4 (aarch64 ppc64le s390x x86_64): MozillaFirefox-102.5.0-150200.152.67.3 MozillaFirefox-debuginfo-102.5.0-150200.152.67.3 MozillaFirefox-debugsource-102.5.0-150200.152.67.3 MozillaFirefox-translations-common-102.5.0-150200.152.67.3 MozillaFirefox-translations-other-102.5.0-150200.152.67.3 - SUSE Linux Enterprise Module for Desktop Applications 15-SP4 (aarch64 ppc64le x86_64): MozillaFirefox-devel-102.5.0-150200.152.67.3 - SUSE Linux Enterprise Module for Desktop Applications 15-SP3 (aarch64 ppc64le s390x x86_64): MozillaFirefox-102.5.0-150200.152.67.3 MozillaFirefox-debuginfo-102.5.0-150200.152.67.3 MozillaFirefox-debugsource-102.5.0-150200.152.67.3 MozillaFirefox-translations-common-102.5.0-150200.152.67.3 MozillaFirefox-translations-other-102.5.0-150200.152.67.3 - SUSE Linux Enterprise Module for Desktop Applications 15-SP3 (aarch64 ppc64le x86_64): MozillaFirefox-devel-102.5.0-150200.152.67.3 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS (aarch64 x86_64): MozillaFirefox-102.5.0-150200.152.67.3 MozillaFirefox-debuginfo-102.5.0-150200.152.67.3 MozillaFirefox-debugsource-102.5.0-150200.152.67.3 MozillaFirefox-devel-102.5.0-150200.152.67.3 MozillaFirefox-translations-common-102.5.0-150200.152.67.3 MozillaFirefox-translations-other-102.5.0-150200.152.67.3 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS (aarch64 x86_64): MozillaFirefox-102.5.0-150200.152.67.3 MozillaFirefox-debuginfo-102.5.0-150200.152.67.3 MozillaFirefox-debugsource-102.5.0-150200.152.67.3 MozillaFirefox-devel-102.5.0-150200.152.67.3 MozillaFirefox-translations-common-102.5.0-150200.152.67.3 MozillaFirefox-translations-other-102.5.0-150200.152.67.3 - SUSE Enterprise Storage 7 (aarch64 x86_64): MozillaFirefox-102.5.0-150200.152.67.3 MozillaFirefox-debuginfo-102.5.0-150200.152.67.3 MozillaFirefox-debugsource-102.5.0-150200.152.67.3 MozillaFirefox-devel-102.5.0-150200.152.67.3 MozillaFirefox-translations-common-102.5.0-150200.152.67.3 MozillaFirefox-translations-other-102.5.0-150200.152.67.3 References: https://www.suse.com/security/cve/CVE-2022-45403.html https://www.suse.com/security/cve/CVE-2022-45404.html https://www.suse.com/security/cve/CVE-2022-45405.html https://www.suse.com/security/cve/CVE-2022-45406.html https://www.suse.com/security/cve/CVE-2022-45408.html https://www.suse.com/security/cve/CVE-2022-45409.html https://www.suse.com/security/cve/CVE-2022-45410.html https://www.suse.com/security/cve/CVE-2022-45411.html https://www.suse.com/security/cve/CVE-2022-45412.html https://www.suse.com/security/cve/CVE-2022-45416.html https://www.suse.com/security/cve/CVE-2022-45418.html https://www.suse.com/security/cve/CVE-2022-45420.html https://www.suse.com/security/cve/CVE-2022-45421.html https://bugzilla.suse.com/1205270

1 0

SUSE-SU-2022:4054-1: Security update for go1.19
by opensuse-security＠opensuse.org 17 Nov '22

17 Nov '22

SUSE Security Update: Security update for go1.19 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4054-1 Rating: low References: #1200441 #1204941 Cross-References: CVE-2022-41716 CVSS scores: CVE-2022-41716 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVE-2022-41716 (SUSE): 0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N Affected Products: SUSE Enterprise Storage 7.1 SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise Desktop 15-SP4 SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Development Tools 15-SP3 SUSE Linux Enterprise Module for Development Tools 15-SP4 SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.2 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.2 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.2 SUSE Manager Server 4.3 openSUSE Leap 15.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for go1.19 fixes the following issues: Update to go 1.19.3 (released 2022-11-01) (bsc#1200441): Security fixes: - CVE-2022-41716: Fixed unsanitized NUL in environment variables in syscalls, os/exec (go#56327) (bsc#1204941). Bugfixes: - runtime: lock count" fatal error when cgo is enabled (go#56308). - cmd/compile: libFuzzer instrumentation fakePC overflow on 386 arch (go#56168). - internal/fuzz: array literal initialization causes ICE "unhandled stmt ASOP" while fuzzing (go#56106). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4054=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4054=1 - SUSE Linux Enterprise Module for Development Tools 15-SP4: zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP4-2022-4054=1 - SUSE Linux Enterprise Module for Development Tools 15-SP3: zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP3-2022-4054=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): go1.19-1.19.3-150000.1.15.1 go1.19-doc-1.19.3-150000.1.15.1 - openSUSE Leap 15.4 (aarch64 x86_64): go1.19-race-1.19.3-150000.1.15.1 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): go1.19-1.19.3-150000.1.15.1 go1.19-doc-1.19.3-150000.1.15.1 - openSUSE Leap 15.3 (aarch64 x86_64): go1.19-race-1.19.3-150000.1.15.1 - SUSE Linux Enterprise Module for Development Tools 15-SP4 (aarch64 ppc64le s390x x86_64): go1.19-1.19.3-150000.1.15.1 go1.19-doc-1.19.3-150000.1.15.1 - SUSE Linux Enterprise Module for Development Tools 15-SP4 (aarch64 x86_64): go1.19-race-1.19.3-150000.1.15.1 - SUSE Linux Enterprise Module for Development Tools 15-SP3 (aarch64 ppc64le s390x x86_64): go1.19-1.19.3-150000.1.15.1 go1.19-doc-1.19.3-150000.1.15.1 - SUSE Linux Enterprise Module for Development Tools 15-SP3 (aarch64 x86_64): go1.19-race-1.19.3-150000.1.15.1 References: https://www.suse.com/security/cve/CVE-2022-41716.html https://bugzilla.suse.com/1200441 https://bugzilla.suse.com/1204941

1 0

SUSE-SU-2022:4044-1: important: Security update for python-cryptography, python-cryptography-vectors
by opensuse-security＠opensuse.org 17 Nov '22

17 Nov '22

SUSE Security Update: Security update for python-cryptography, python-cryptography-vectors ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4044-1 Rating: important References: #1101820 #1149792 #1176785 #1177083 ECO-3105 PM-2352 PM-2730 SLE-18312 Cross-References: CVE-2018-10903 CVSS scores: CVE-2018-10903 (NVD) : 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2018-10903 (SUSE): 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Affected Products: SUSE Enterprise Storage 7 SUSE Enterprise Storage 7.1 SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Module for Python2 15-SP3 SUSE Linux Enterprise Server 15-SP2-BCL SUSE Linux Enterprise Server 15-SP2-LTSS SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server for SAP 15-SP2 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Manager Proxy 4.1 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.1 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.1 SUSE Manager Server 4.2 openSUSE Leap 15.3 openSUSE Leap Micro 5.2 ______________________________________________________________________________ An update that solves one vulnerability, contains four features and has three fixes is now available. Description: This update for python-cryptography, python-cryptography-vectors fixes the following issues: - Update in SLE-15 (bsc#1177083, jsc#PM-2730, jsc#SLE-18312) - Refresh patches for new version - Update in SLE-15 (bsc#1176785, jsc#ECO-3105, jsc#PM-2352) - update to 2.9.2 * 2.9.2 - 2020-04-22 - Updated the macOS wheel to fix an issue where it would not run on macOS versions older than 10.15. * 2.9.1 - 2020-04-21 - Updated Windows, macOS, and manylinux wheels to be compiled with OpenSSL 1.1.1g. * 2.9 - 2020-04-02 - BACKWARDS INCOMPATIBLE: Support for Python 3.4 has been removed due to low usage and maintenance burden. - BACKWARDS INCOMPATIBLE: Support for OpenSSL 1.0.1 has been removed. Users on older version of OpenSSL will need to upgrade. - BACKWARDS INCOMPATIBLE: Support for LibreSSL 2.6.x has been removed. - Removed support for calling public_bytes() with no arguments, as per our deprecation policy. You must now pass encoding and format. - BACKWARDS INCOMPATIBLE: Reversed the order in which rfc4514_string() returns the RDNs as required by RFC 4514. - Updated Windows, macOS, and manylinux wheels to be compiled with OpenSSL 1.1.1f. - Added support for parsing single_extensions in an OCSP response. - NameAttribute values can now be empty strings. - Add openSSL_111d.patch to make this version of the package compatible with OpenSSL 1.1.1d, thus fixing bsc#1149792. - bsc#1101820 CVE-2018-10903 GCM tag forgery via truncated tag in finalize_with_tag API - Update in SLE-15 (bsc#1177083, jsc#PM-2730, jsc#SLE-18312) - Include in SLE-15 (bsc#1176785, jsc#ECO-3105, jsc#PM-2352) - update to 2.9.2: * updated vectors for the cryptography 2.9.2 testing Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap Micro 5.2: zypper in -t patch openSUSE-Leap-Micro-5.2-2022-4044=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4044=1 - SUSE Manager Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-4044=1 - SUSE Manager Retail Branch Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-4044=1 - SUSE Manager Proxy 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-4044=1 - SUSE Linux Enterprise Server for SAP 15-SP2: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2022-4044=1 - SUSE Linux Enterprise Server 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-4044=1 - SUSE Linux Enterprise Server 15-SP2-BCL: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-BCL-2022-4044=1 - SUSE Linux Enterprise Module for Python2 15-SP3: zypper in -t patch SUSE-SLE-Module-Python2-15-SP3-2022-4044=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2022-4044=1 - SUSE Linux Enterprise Micro 5.2: zypper in -t patch SUSE-SUSE-MicroOS-5.2-2022-4044=1 - SUSE Linux Enterprise Micro 5.1: zypper in -t patch SUSE-SUSE-MicroOS-5.1-2022-4044=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-4044=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-4044=1 - SUSE Enterprise Storage 7: zypper in -t patch SUSE-Storage-7-2022-4044=1 Package List: - openSUSE Leap Micro 5.2 (aarch64 x86_64): python-cryptography-debuginfo-2.9.2-150200.13.1 python-cryptography-debugsource-2.9.2-150200.13.1 python3-cryptography-2.9.2-150200.13.1 python3-cryptography-debuginfo-2.9.2-150200.13.1 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): python-cryptography-debuginfo-2.9.2-150200.13.1 python-cryptography-debugsource-2.9.2-150200.13.1 python2-cryptography-2.9.2-150200.13.1 python2-cryptography-debuginfo-2.9.2-150200.13.1 python3-cryptography-2.9.2-150200.13.1 python3-cryptography-debuginfo-2.9.2-150200.13.1 - openSUSE Leap 15.3 (noarch): python2-cryptography-vectors-2.9.2-150200.3.3.1 python3-cryptography-vectors-2.9.2-150200.3.3.1 - SUSE Manager Server 4.1 (ppc64le s390x x86_64): python-cryptography-debuginfo-2.9.2-150200.13.1 python-cryptography-debugsource-2.9.2-150200.13.1 python2-cryptography-2.9.2-150200.13.1 python2-cryptography-debuginfo-2.9.2-150200.13.1 python3-cryptography-2.9.2-150200.13.1 python3-cryptography-debuginfo-2.9.2-150200.13.1 - SUSE Manager Retail Branch Server 4.1 (x86_64): python-cryptography-debuginfo-2.9.2-150200.13.1 python-cryptography-debugsource-2.9.2-150200.13.1 python2-cryptography-2.9.2-150200.13.1 python2-cryptography-debuginfo-2.9.2-150200.13.1 python3-cryptography-2.9.2-150200.13.1 python3-cryptography-debuginfo-2.9.2-150200.13.1 - SUSE Manager Proxy 4.1 (x86_64): python-cryptography-debuginfo-2.9.2-150200.13.1 python-cryptography-debugsource-2.9.2-150200.13.1 python2-cryptography-2.9.2-150200.13.1 python2-cryptography-debuginfo-2.9.2-150200.13.1 python3-cryptography-2.9.2-150200.13.1 python3-cryptography-debuginfo-2.9.2-150200.13.1 - SUSE Linux Enterprise Server for SAP 15-SP2 (ppc64le x86_64): python-cryptography-debuginfo-2.9.2-150200.13.1 python-cryptography-debugsource-2.9.2-150200.13.1 python2-cryptography-2.9.2-150200.13.1 python2-cryptography-debuginfo-2.9.2-150200.13.1 python3-cryptography-2.9.2-150200.13.1 python3-cryptography-debuginfo-2.9.2-150200.13.1 - SUSE Linux Enterprise Server 15-SP2-LTSS (aarch64 ppc64le s390x x86_64): python-cryptography-debuginfo-2.9.2-150200.13.1 python-cryptography-debugsource-2.9.2-150200.13.1 python2-cryptography-2.9.2-150200.13.1 python2-cryptography-debuginfo-2.9.2-150200.13.1 python3-cryptography-2.9.2-150200.13.1 python3-cryptography-debuginfo-2.9.2-150200.13.1 - SUSE Linux Enterprise Server 15-SP2-BCL (x86_64): python-cryptography-debuginfo-2.9.2-150200.13.1 python-cryptography-debugsource-2.9.2-150200.13.1 python3-cryptography-2.9.2-150200.13.1 python3-cryptography-debuginfo-2.9.2-150200.13.1 - SUSE Linux Enterprise Module for Python2 15-SP3 (aarch64 ppc64le s390x x86_64): python-cryptography-debuginfo-2.9.2-150200.13.1 python-cryptography-debugsource-2.9.2-150200.13.1 python2-cryptography-2.9.2-150200.13.1 python2-cryptography-debuginfo-2.9.2-150200.13.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): python-cryptography-debuginfo-2.9.2-150200.13.1 python-cryptography-debugsource-2.9.2-150200.13.1 python3-cryptography-2.9.2-150200.13.1 python3-cryptography-debuginfo-2.9.2-150200.13.1 - SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64): python-cryptography-debuginfo-2.9.2-150200.13.1 python-cryptography-debugsource-2.9.2-150200.13.1 python3-cryptography-2.9.2-150200.13.1 python3-cryptography-debuginfo-2.9.2-150200.13.1 - SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64): python-cryptography-debuginfo-2.9.2-150200.13.1 python-cryptography-debugsource-2.9.2-150200.13.1 python3-cryptography-2.9.2-150200.13.1 python3-cryptography-debuginfo-2.9.2-150200.13.1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS (aarch64 x86_64): python-cryptography-debuginfo-2.9.2-150200.13.1 python-cryptography-debugsource-2.9.2-150200.13.1 python2-cryptography-2.9.2-150200.13.1 python2-cryptography-debuginfo-2.9.2-150200.13.1 python3-cryptography-2.9.2-150200.13.1 python3-cryptography-debuginfo-2.9.2-150200.13.1 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS (aarch64 x86_64): python-cryptography-debuginfo-2.9.2-150200.13.1 python-cryptography-debugsource-2.9.2-150200.13.1 python2-cryptography-2.9.2-150200.13.1 python2-cryptography-debuginfo-2.9.2-150200.13.1 python3-cryptography-2.9.2-150200.13.1 python3-cryptography-debuginfo-2.9.2-150200.13.1 - SUSE Enterprise Storage 7 (aarch64 x86_64): python-cryptography-debuginfo-2.9.2-150200.13.1 python-cryptography-debugsource-2.9.2-150200.13.1 python2-cryptography-2.9.2-150200.13.1 python2-cryptography-debuginfo-2.9.2-150200.13.1 python3-cryptography-2.9.2-150200.13.1 python3-cryptography-debuginfo-2.9.2-150200.13.1 References: https://www.suse.com/security/cve/CVE-2018-10903.html https://bugzilla.suse.com/1101820 https://bugzilla.suse.com/1149792 https://bugzilla.suse.com/1176785 https://bugzilla.suse.com/1177083

1 0

SUSE-SU-2022:4016-1: important: Security update for rubygem-nokogiri
by opensuse-security＠opensuse.org 16 Nov '22

16 Nov '22

SUSE Security Update: Security update for rubygem-nokogiri ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4016-1 Rating: important References: #1198408 #1199782 Cross-References: CVE-2022-24836 CVE-2022-29181 CVSS scores: CVE-2022-24836 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-24836 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-29181 (NVD) : 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H CVE-2022-29181 (SUSE): 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H Affected Products: SUSE Linux Enterprise Desktop 15-SP4 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Basesystem 15-SP4 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for rubygem-nokogiri fixes the following issues: - CVE-2022-24836: Fixes possibility to DoS because of inefficient RE in HTML encoding. (bsc#1198408) - CVE-2022-29181: Fixes Improper Handling of Unexpected Data Typesi. (bsc#1199782) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4016=1 - SUSE Linux Enterprise Module for Basesystem 15-SP4: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2022-4016=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): ruby2.5-rubygem-nokogiri-1.8.5-150400.14.3.1 ruby2.5-rubygem-nokogiri-debuginfo-1.8.5-150400.14.3.1 ruby2.5-rubygem-nokogiri-doc-1.8.5-150400.14.3.1 ruby2.5-rubygem-nokogiri-testsuite-1.8.5-150400.14.3.1 rubygem-nokogiri-debugsource-1.8.5-150400.14.3.1 - SUSE Linux Enterprise Module for Basesystem 15-SP4 (aarch64 ppc64le s390x x86_64): ruby2.5-rubygem-nokogiri-1.8.5-150400.14.3.1 ruby2.5-rubygem-nokogiri-debuginfo-1.8.5-150400.14.3.1 rubygem-nokogiri-debugsource-1.8.5-150400.14.3.1 References: https://www.suse.com/security/cve/CVE-2022-24836.html https://www.suse.com/security/cve/CVE-2022-29181.html https://bugzilla.suse.com/1198408 https://bugzilla.suse.com/1199782

1 0

SUSE-SU-2022:4015-1: important: Security update for rubygem-nokogiri
by opensuse-security＠opensuse.org 16 Nov '22

16 Nov '22

SUSE Security Update: Security update for rubygem-nokogiri ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4015-1 Rating: important References: #1198408 #1199782 Cross-References: CVE-2022-24836 CVE-2022-29181 CVSS scores: CVE-2022-24836 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-24836 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-29181 (NVD) : 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H CVE-2022-29181 (SUSE): 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H Affected Products: SUSE Enterprise Storage 6 SUSE Enterprise Storage 7 SUSE Enterprise Storage 7.1 SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise High Availability 15-SP1 SUSE Linux Enterprise High Availability 15-SP2 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise High Performance Computing 15-SP1 SUSE Linux Enterprise High Performance Computing 15-SP2 SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15-SP1 SUSE Linux Enterprise Server 15-SP2 SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15-SP1 SUSE Linux Enterprise Server for SAP Applications 15-SP2 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Manager Proxy 4.0 SUSE Manager Proxy 4.1 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.0 SUSE Manager Retail Branch Server 4.1 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.0 SUSE Manager Server 4.1 SUSE Manager Server 4.2 openSUSE Leap 15.3 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for rubygem-nokogiri fixes the following issues: - CVE-2022-24836: Fixes possibility to DoS because of inefficient RE in HTML encoding. (bsc#1198408) - CVE-2022-29181: Fixes Improper Handling of Unexpected Data Typesi. (bsc#1199782) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4015=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2022-4015=1 - SUSE Linux Enterprise High Availability 15-SP2: zypper in -t patch SUSE-SLE-Product-HA-15-SP2-2022-4015=1 - SUSE Linux Enterprise High Availability 15-SP1: zypper in -t patch SUSE-SLE-Product-HA-15-SP1-2022-4015=1 - SUSE Linux Enterprise High Availability 15: zypper in -t patch SUSE-SLE-Product-HA-15-2022-4015=1 Package List: - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): ruby2.5-rubygem-nokogiri-1.8.5-150000.3.9.1 ruby2.5-rubygem-nokogiri-debuginfo-1.8.5-150000.3.9.1 ruby2.5-rubygem-nokogiri-doc-1.8.5-150000.3.9.1 ruby2.5-rubygem-nokogiri-testsuite-1.8.5-150000.3.9.1 rubygem-nokogiri-debugsource-1.8.5-150000.3.9.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): ruby2.5-rubygem-nokogiri-1.8.5-150000.3.9.1 ruby2.5-rubygem-nokogiri-debuginfo-1.8.5-150000.3.9.1 rubygem-nokogiri-debugsource-1.8.5-150000.3.9.1 - SUSE Linux Enterprise High Availability 15-SP2 (aarch64 ppc64le s390x x86_64): ruby2.5-rubygem-nokogiri-1.8.5-150000.3.9.1 ruby2.5-rubygem-nokogiri-debuginfo-1.8.5-150000.3.9.1 - SUSE Linux Enterprise High Availability 15-SP1 (aarch64 ppc64le s390x x86_64): ruby2.5-rubygem-nokogiri-1.8.5-150000.3.9.1 ruby2.5-rubygem-nokogiri-debuginfo-1.8.5-150000.3.9.1 - SUSE Linux Enterprise High Availability 15 (aarch64 ppc64le s390x x86_64): ruby2.5-rubygem-nokogiri-1.8.5-150000.3.9.1 ruby2.5-rubygem-nokogiri-debuginfo-1.8.5-150000.3.9.1 References: https://www.suse.com/security/cve/CVE-2022-24836.html https://www.suse.com/security/cve/CVE-2022-29181.html https://bugzilla.suse.com/1198408 https://bugzilla.suse.com/1199782

1 0

SUSE-SU-2022:4011-1: moderate: Security update for jsoup
by opensuse-security＠opensuse.org 16 Nov '22

16 Nov '22

SUSE Security Update: Security update for jsoup ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4011-1 Rating: moderate References: #1203459 Cross-References: CVE-2022-36033 CVSS scores: CVE-2022-36033 (NVD) : 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVE-2022-36033 (SUSE): 6.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Affected Products: SUSE Enterprise Storage 7.1 SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise Desktop 15-SP4 SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Development Tools 15-SP3 SUSE Linux Enterprise Module for Development Tools 15-SP4 SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.2 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.2 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.2 SUSE Manager Server 4.3 openSUSE Leap 15.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for jsoup fixes the following issues: Updated to version 1.15.3: - CVE-2022-36033: Fixed incorrect sanitization of user input in SafeList.preserveRelativeLinks (bsc#1203459). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4011=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4011=1 - SUSE Linux Enterprise Module for Development Tools 15-SP4: zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP4-2022-4011=1 - SUSE Linux Enterprise Module for Development Tools 15-SP3: zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP3-2022-4011=1 Package List: - openSUSE Leap 15.4 (noarch): jsoup-1.15.3-150200.3.6.1 jsoup-javadoc-1.15.3-150200.3.6.1 - openSUSE Leap 15.3 (noarch): jsoup-1.15.3-150200.3.6.1 jsoup-javadoc-1.15.3-150200.3.6.1 - SUSE Linux Enterprise Module for Development Tools 15-SP4 (noarch): jsoup-1.15.3-150200.3.6.1 - SUSE Linux Enterprise Module for Development Tools 15-SP3 (noarch): jsoup-1.15.3-150200.3.6.1 References: https://www.suse.com/security/cve/CVE-2022-36033.html https://bugzilla.suse.com/1203459

1 0