openSUSE Security Announce December 2022

security-announce@lists.opensuse.org

1 participants
71 discussions

openSUSE-SU-2022:10254-1: important: Security update for opera
by opensuse-security＠opensuse.org 31 Dec '22

31 Dec '22

openSUSE Security Update: Security update for opera ______________________________________________________________________________ Announcement ID: openSUSE-SU-2022:10254-1 Rating: important References: Cross-References: CVE-2022-4262 CVE-2022-4436 CVE-2022-4437 CVE-2022-4438 CVE-2022-4439 CVE-2022-4440 CVSS scores: CVE-2022-4262 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-4436 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-4437 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-4438 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-4439 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-4440 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: openSUSE Leap 15.4:NonFree ______________________________________________________________________________ An update that fixes 6 vulnerabilities is now available. Description: This update for opera fixes the following issues: - Update to 94.0.4606.38 - CHR-9133 Update chromium on desktop-stable-108-4606 to 108.0.5359.125 - DNA-103624 Create JS API to open Search tabs feature - DNA-104004 Improve welcome pop-up - DNA-104053 Right mouse click open speed dial instead of context menu - DNA-104055 News article opens in active tab - DNA-104084 [Suggestion] Introduce a way to remove the Lucid Mode button - DNA-104089 No crashes reported in soccoro for Linux - The update to chromium 108.0.5359.125 fixes following issues: CVE-2022-4436, CVE-2022-4437, CVE-2022-4438, CVE-2022-4439, CVE-2022-4440 - Update to 94.0.4606.26 - CHR-9125 Update chromium on desktop-stable-108-4606 to 108.0.5359.99 - DNA-99207 WebUI popup/dropdown could be empty due to lack of memory - DNA-102882 [SD][News][Continue on][Suggestion] Do not focus on opened page when opening in new tab - DNA-103076 Release installer consent flow globally - DNA-103137 Fix positioning in Web UI component - DNA-103240 Re-use logic from popup for consent not set in settings - DNA-103540 Implement Autostart for Opera Desktop (except Poland) - DNA-103636 Implement Lucid Mode for Videos - DNA-103637 Implement Lucid Mode button on top of videos - DNA-103638 Make Lucid Mode button on top of videos work - DNA-103641 Implement Lucid Mode for Images - DNA-103642 Updated design and animation for Lucid Mode button on top of videos - DNA-103650 Add Lucid Mode to Easy Setup - DNA-103701 Move User Styles loading/saving to a separate component - DNA-103718 Record "consent_given" stat for every session - DNA-103724 Video detach button wont go away - DNA-103757 Add click animation for Lucid Mode button on top of videos - DNA-103765 Console error with lucid mode flag off - DNA-103770 Easy Setup switch doesn't get updated - DNA-103771 Click animation should only show when turning on Lucid Mode - DNA-103773 Unable to access lucid mode settings section directly - DNA-103784 Investigate video buttons 'escaping' - DNA-103800 Adapt Lucid Mode button to new design - DNA-103836 Translations for O94 - DNA-103850 Label on detach button cut off - DNA-103924 Popup windows of type TYPE_APP_POPUP have incorrectly set minimum size - DNA-103931 Wrong sidebar detection. - DNA-103935 Change Lucid Mode Video (Sharpen videos) to default off - DNA-103949 Lucid Mode doesn't work in a private window - DNA-103959 Unable to scroll down on player home page - DNA-103962 [Settings] Remove "Safety Check" - DNA-104011 Turn on Lucid Mode on all streams - DNA-104052 Hide Lucid Mode video button on Google Meet - DNA-103930 Promote O94 to stable - The update to chromium 108.0.5359.99 fixes following issues: CVE-2022-4262 - Update to 93.0.4585.64 - DNA-102836 Make 1st screen of Consent Popup a little taller to have more space under "You can adjust your choices" label - DNA-102934 Turn on building testlist on GOTH instead of Buildbot - DNA-102969 On some pages search popup don't work - DNA-103053 Put consent flow settings in separate feature flag - DNA-103054 Update consent settings to new design - DNA-103062 Add opauto tests for consent flow settings - DNA-103099 Set testlist_from in testlist generating script - DNA-103240 Re-use logic from popup for consent not set in settings - DNA-103296 Force dark page break QR code in whats app - DNA-103298 Stat for recording adblock whitelist is not sent in every session - DNA-103522 Missing translations for IDS_CONSENT_FLOW_DATA_DESC_INTERESTS - DNA-103526 search popup doesn't recognize some currencies shortcut - DNA-103530 Replace icons in sidebar setup - DNA-103636 Implement Lucid Mode for Videos - DNA-103637 Implement Lucid Mode button on top of videos - DNA-103638 Make Lucid Mode button on top of videos work - DNA-103641 Implement Lucid Mode for Images - DNA-103642 Updated design and animation for Lucid Mode button on top of videos - DNA-103650 Add Lucid Mode to Easy Setup - DNA-103701 Move User Styles loading/saving to a separate component - DNA-103718 Record "consent_given" stat for every session - DNA-103724 Video detach button wont go away - DNA-103757 Add click animation for Lucid Mode button on top of videos - DNA-103765 Console error with lucid mode flag off - DNA-103770 Easy Setup switch doesn't get updated - DNA-103771 Click animation should only show when turning on Lucid Mode - DNA-103773 Unable to access lucid mode settings section directly - DNA-103784 Investigate video buttons 'escaping' - DNA-103800 Adapt Lucid Mode button to new design - DNA-103850 Label on detach button cut off - DNA-103924 Popup windows of type TYPE_APP_POPUP have incorrectly set minimum size - DNA-103935 Change Lucid Mode Video (Sharpen videos) to default off - DNA-104011 Turn on Lucid Mode on all streams Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4:NonFree: zypper in -t patch openSUSE-2022-10254=1 Package List: - openSUSE Leap 15.4:NonFree (x86_64): opera-94.0.4606.38-lp154.2.35.1 References: https://www.suse.com/security/cve/CVE-2022-4262.html https://www.suse.com/security/cve/CVE-2022-4436.html https://www.suse.com/security/cve/CVE-2022-4437.html https://www.suse.com/security/cve/CVE-2022-4438.html https://www.suse.com/security/cve/CVE-2022-4439.html https://www.suse.com/security/cve/CVE-2022-4440.html

1 0

openSUSE-SU-2022:10257-1: important: Security update for mbedtls
by opensuse-security＠opensuse.org 31 Dec '22

31 Dec '22

openSUSE Security Update: Security update for mbedtls ______________________________________________________________________________ Announcement ID: openSUSE-SU-2022:10257-1 Rating: important References: #1206576 Cross-References: CVE-2022-46393 CVSS scores: CVE-2022-46393 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-46393 (SUSE): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Backports SLE-15-SP4 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for mbedtls fixes the following issues: - CVE-2022-46393: Fixed potential heap buffer overread and overwrite in DTLS (boo#1206576). Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP4: zypper in -t patch openSUSE-2022-10257=1 Package List: - openSUSE Backports SLE-15-SP4 (aarch64 i586 ppc64le s390x x86_64): libmbedcrypto7-2.28.0-bp154.2.3.1 libmbedtls14-2.28.0-bp154.2.3.1 libmbedx509-1-2.28.0-bp154.2.3.1 mbedtls-devel-2.28.0-bp154.2.3.1 - openSUSE Backports SLE-15-SP4 (aarch64_ilp32): libmbedcrypto7-64bit-2.28.0-bp154.2.3.1 libmbedtls14-64bit-2.28.0-bp154.2.3.1 libmbedx509-1-64bit-2.28.0-bp154.2.3.1 - openSUSE Backports SLE-15-SP4 (x86_64): libmbedcrypto7-32bit-2.28.0-bp154.2.3.1 libmbedtls14-32bit-2.28.0-bp154.2.3.1 libmbedx509-1-32bit-2.28.0-bp154.2.3.1 References: https://www.suse.com/security/cve/CVE-2022-46393.html https://bugzilla.suse.com/1206576

1 0

openSUSE-SU-2022:10255-1: important: Security update for vlc
by opensuse-security＠opensuse.org 31 Dec '22

31 Dec '22

openSUSE Security Update: Security update for vlc ______________________________________________________________________________ Announcement ID: openSUSE-SU-2022:10255-1 Rating: important References: #1200944 #1206142 Cross-References: CVE-2022-41325 CVSS scores: CVE-2022-41325 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: openSUSE Backports SLE-15-SP4 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for vlc fixes the following issues: - Update to version 3.0.18 (CVE-2022-41325, boo#1206142): + macOS: Fix audio device listing with non-latin names. + Misc: Fix rendering and performance issue with older GPUs. + Updated translations. - Changes from version 3.0.18-rc2: + Codec/Demux: - Add support for Y16 chroma. - Fix build of gme plugin. + Lua: - Fix script for vocaroo. - Fix script for youtube to allow throttled playback. + Service Discovery: Fix UPnP regression on Windows. + Video Output: Fix video placement with caopengllayer. + Misc: Fix password search in kwallet module. - Changes from version 3.0.18-rc: + Demux: - Major adaptive streaming update, notably for multiple timelies and webvtt. - Fix seeking with some fragmented MP4 files. - Add support for DVBSub inside MKV. - Fix some Flac files that could not be played. - Improve seeking in Ogg files. + Decoders: - Fix DxVA/D3D11 crashes on HEVC files with bogus references. - Fix libass storage size and crash. - Fix decoding errors on macOS hw decoding on some HEVC files. + Video Output: - Fix color regression with VAAPI/iOS and OpenGL output. - Fix some resizing issues with OpenGL on GLX/EGL/X11/XV. - Fix Direct3d9 texture stretching. - Fix 10-bit accelerated video filters on macOS. + Playlist: Avoid playlist liveloop on failed/tiny items (temporize EOS bursts). + Misc: - Misc fixes for the extension UI on macOS. - Improve SMBv1 and SMBv2 behaviours. - Improve FTP compatibility. - Support RISC-V. - Fix AVI muxing for Windows Media Player compatibility. - Fix seeking speed on macOS. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Backports SLE-15-SP4: zypper in -t patch openSUSE-2022-10255=1 Package List: - openSUSE Backports SLE-15-SP4 (aarch64 ppc64le x86_64): libvlc5-3.0.18-bp154.2.3.1 libvlccore9-3.0.18-bp154.2.3.1 vlc-3.0.18-bp154.2.3.1 vlc-codec-gstreamer-3.0.18-bp154.2.3.1 vlc-devel-3.0.18-bp154.2.3.1 vlc-jack-3.0.18-bp154.2.3.1 vlc-noX-3.0.18-bp154.2.3.1 vlc-opencv-3.0.18-bp154.2.3.1 vlc-qt-3.0.18-bp154.2.3.1 vlc-vdpau-3.0.18-bp154.2.3.1 - openSUSE Backports SLE-15-SP4 (noarch): vlc-lang-3.0.18-bp154.2.3.1 References: https://www.suse.com/security/cve/CVE-2022-41325.html https://bugzilla.suse.com/1200944 https://bugzilla.suse.com/1206142

1 0

SUSE-SU-2022:4641-1: important: Security update for webkit2gtk3
by opensuse-security＠opensuse.org 30 Dec '22

30 Dec '22

SUSE Security Update: Security update for webkit2gtk3 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4641-1 Rating: important References: #1206474 #1206750 Cross-References: CVE-2022-42852 CVE-2022-42856 CVE-2022-42863 CVE-2022-42867 CVE-2022-46691 CVE-2022-46692 CVE-2022-46698 CVE-2022-46699 CVE-2022-46700 CVSS scores: CVE-2022-42852 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVE-2022-42852 (SUSE): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVE-2022-42856 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-42856 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-42863 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-42863 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-42867 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-42867 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-46691 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-46691 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-46692 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N CVE-2022-46692 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N CVE-2022-46698 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVE-2022-46698 (SUSE): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVE-2022-46699 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-46699 (SUSE): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-46700 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Affected Products: SUSE Enterprise Storage 7 SUSE Enterprise Storage 7.1 SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS SUSE Linux Enterprise High Performance Computing 15-SP3-ESPOS SUSE Linux Enterprise High Performance Computing 15-SP3-LTSS SUSE Linux Enterprise Realtime Extension 15-SP3 SUSE Linux Enterprise Server 15-SP2-LTSS SUSE Linux Enterprise Server 15-SP3-LTSS SUSE Linux Enterprise Server for SAP 15-SP2 SUSE Linux Enterprise Server for SAP 15-SP3 SUSE Manager Proxy 4.1 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.1 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.1 SUSE Manager Server 4.2 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes 9 vulnerabilities is now available. Description: This update for webkit2gtk3 fixes the following issues: Update to version 2.38.3: - CVE-2022-42856: Fixed a potential arbitrary code execution when processing maliciously crafted web content (bsc#1206474). - CVE-2022-42852: Fixed disclosure of process memory by improved memory handling. - CVE-2022-42867: Fixed a use after free issue was addressed with improved memory management. - CVE-2022-46692: Fixed bypass of Same Origin Policy through improved state management. - CVE-2022-46698: Fixed disclosure of sensitive user information with improved checks. - CVE-2022-46699: Fixed an arbitrary code execution caused by memory corruption. - CVE-2022-46700: Fixed an arbitrary code execution caused by memory corruption. Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4641=1 - SUSE Manager Server 4.2: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.2-2022-4641=1 - SUSE Manager Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-4641=1 - SUSE Manager Retail Branch Server 4.2: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.2-2022-4641=1 - SUSE Manager Retail Branch Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-4641=1 - SUSE Manager Proxy 4.2: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.2-2022-4641=1 - SUSE Manager Proxy 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-4641=1 - SUSE Linux Enterprise Server for SAP 15-SP3: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2022-4641=1 - SUSE Linux Enterprise Server for SAP 15-SP2: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2022-4641=1 - SUSE Linux Enterprise Server 15-SP3-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2022-4641=1 - SUSE Linux Enterprise Server 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-4641=1 - SUSE Linux Enterprise Realtime Extension 15-SP3: zypper in -t patch SUSE-SLE-Product-RT-15-SP3-2022-4641=1 - SUSE Linux Enterprise High Performance Computing 15-SP3-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2022-4641=1 - SUSE Linux Enterprise High Performance Computing 15-SP3-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-ESPOS-2022-4641=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-4641=1 - SUSE Enterprise Storage 7.1: zypper in -t patch SUSE-Storage-7.1-2022-4641=1 - SUSE Enterprise Storage 7: zypper in -t patch SUSE-Storage-7-2022-4641=1 Package List: - openSUSE Leap 15.4 (noarch): libwebkit2gtk3-lang-2.38.3-150200.57.1 - SUSE Manager Server 4.2 (ppc64le s390x x86_64): libjavascriptcoregtk-4_0-18-2.38.3-150200.57.1 libjavascriptcoregtk-4_0-18-debuginfo-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-debuginfo-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-debuginfo-2.38.3-150200.57.1 webkit2gtk3-debugsource-2.38.3-150200.57.1 - SUSE Manager Server 4.2 (noarch): libwebkit2gtk3-lang-2.38.3-150200.57.1 - SUSE Manager Server 4.1 (ppc64le s390x x86_64): libjavascriptcoregtk-4_0-18-2.38.3-150200.57.1 libjavascriptcoregtk-4_0-18-debuginfo-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-debuginfo-2.38.3-150200.57.1 typelib-1_0-JavaScriptCore-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2WebExtension-4_0-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-debuginfo-2.38.3-150200.57.1 webkit2gtk3-debugsource-2.38.3-150200.57.1 webkit2gtk3-devel-2.38.3-150200.57.1 - SUSE Manager Server 4.1 (noarch): libwebkit2gtk3-lang-2.38.3-150200.57.1 - SUSE Manager Retail Branch Server 4.2 (x86_64): libjavascriptcoregtk-4_0-18-2.38.3-150200.57.1 libjavascriptcoregtk-4_0-18-debuginfo-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-debuginfo-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-debuginfo-2.38.3-150200.57.1 webkit2gtk3-debugsource-2.38.3-150200.57.1 - SUSE Manager Retail Branch Server 4.2 (noarch): libwebkit2gtk3-lang-2.38.3-150200.57.1 - SUSE Manager Retail Branch Server 4.1 (noarch): libwebkit2gtk3-lang-2.38.3-150200.57.1 - SUSE Manager Retail Branch Server 4.1 (x86_64): libjavascriptcoregtk-4_0-18-2.38.3-150200.57.1 libjavascriptcoregtk-4_0-18-debuginfo-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-debuginfo-2.38.3-150200.57.1 typelib-1_0-JavaScriptCore-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2WebExtension-4_0-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-debuginfo-2.38.3-150200.57.1 webkit2gtk3-debugsource-2.38.3-150200.57.1 webkit2gtk3-devel-2.38.3-150200.57.1 - SUSE Manager Proxy 4.2 (x86_64): libjavascriptcoregtk-4_0-18-2.38.3-150200.57.1 libjavascriptcoregtk-4_0-18-debuginfo-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-debuginfo-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-debuginfo-2.38.3-150200.57.1 webkit2gtk3-debugsource-2.38.3-150200.57.1 - SUSE Manager Proxy 4.2 (noarch): libwebkit2gtk3-lang-2.38.3-150200.57.1 - SUSE Manager Proxy 4.1 (x86_64): libjavascriptcoregtk-4_0-18-2.38.3-150200.57.1 libjavascriptcoregtk-4_0-18-debuginfo-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-debuginfo-2.38.3-150200.57.1 typelib-1_0-JavaScriptCore-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2WebExtension-4_0-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-debuginfo-2.38.3-150200.57.1 webkit2gtk3-debugsource-2.38.3-150200.57.1 webkit2gtk3-devel-2.38.3-150200.57.1 - SUSE Manager Proxy 4.1 (noarch): libwebkit2gtk3-lang-2.38.3-150200.57.1 - SUSE Linux Enterprise Server for SAP 15-SP3 (ppc64le x86_64): libjavascriptcoregtk-4_0-18-2.38.3-150200.57.1 libjavascriptcoregtk-4_0-18-debuginfo-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-debuginfo-2.38.3-150200.57.1 typelib-1_0-JavaScriptCore-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2WebExtension-4_0-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-debuginfo-2.38.3-150200.57.1 webkit2gtk3-debugsource-2.38.3-150200.57.1 webkit2gtk3-devel-2.38.3-150200.57.1 - SUSE Linux Enterprise Server for SAP 15-SP3 (noarch): libwebkit2gtk3-lang-2.38.3-150200.57.1 - SUSE Linux Enterprise Server for SAP 15-SP2 (ppc64le x86_64): libjavascriptcoregtk-4_0-18-2.38.3-150200.57.1 libjavascriptcoregtk-4_0-18-debuginfo-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-debuginfo-2.38.3-150200.57.1 typelib-1_0-JavaScriptCore-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2WebExtension-4_0-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-debuginfo-2.38.3-150200.57.1 webkit2gtk3-debugsource-2.38.3-150200.57.1 webkit2gtk3-devel-2.38.3-150200.57.1 - SUSE Linux Enterprise Server for SAP 15-SP2 (noarch): libwebkit2gtk3-lang-2.38.3-150200.57.1 - SUSE Linux Enterprise Server 15-SP3-LTSS (aarch64 ppc64le s390x x86_64): libjavascriptcoregtk-4_0-18-2.38.3-150200.57.1 libjavascriptcoregtk-4_0-18-debuginfo-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-debuginfo-2.38.3-150200.57.1 typelib-1_0-JavaScriptCore-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2WebExtension-4_0-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-debuginfo-2.38.3-150200.57.1 webkit2gtk3-debugsource-2.38.3-150200.57.1 webkit2gtk3-devel-2.38.3-150200.57.1 - SUSE Linux Enterprise Server 15-SP3-LTSS (noarch): libwebkit2gtk3-lang-2.38.3-150200.57.1 - SUSE Linux Enterprise Server 15-SP2-LTSS (aarch64 ppc64le s390x x86_64): libjavascriptcoregtk-4_0-18-2.38.3-150200.57.1 libjavascriptcoregtk-4_0-18-debuginfo-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-debuginfo-2.38.3-150200.57.1 typelib-1_0-JavaScriptCore-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2WebExtension-4_0-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-debuginfo-2.38.3-150200.57.1 webkit2gtk3-debugsource-2.38.3-150200.57.1 webkit2gtk3-devel-2.38.3-150200.57.1 - SUSE Linux Enterprise Server 15-SP2-LTSS (noarch): libwebkit2gtk3-lang-2.38.3-150200.57.1 - SUSE Linux Enterprise Realtime Extension 15-SP3 (x86_64): libjavascriptcoregtk-4_0-18-2.38.3-150200.57.1 libjavascriptcoregtk-4_0-18-debuginfo-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-debuginfo-2.38.3-150200.57.1 typelib-1_0-JavaScriptCore-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2WebExtension-4_0-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-debuginfo-2.38.3-150200.57.1 webkit2gtk3-debugsource-2.38.3-150200.57.1 webkit2gtk3-devel-2.38.3-150200.57.1 - SUSE Linux Enterprise Realtime Extension 15-SP3 (noarch): libwebkit2gtk3-lang-2.38.3-150200.57.1 - SUSE Linux Enterprise High Performance Computing 15-SP3-LTSS (aarch64 x86_64): libjavascriptcoregtk-4_0-18-2.38.3-150200.57.1 libjavascriptcoregtk-4_0-18-debuginfo-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-debuginfo-2.38.3-150200.57.1 typelib-1_0-JavaScriptCore-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2WebExtension-4_0-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-debuginfo-2.38.3-150200.57.1 webkit2gtk3-debugsource-2.38.3-150200.57.1 webkit2gtk3-devel-2.38.3-150200.57.1 - SUSE Linux Enterprise High Performance Computing 15-SP3-LTSS (noarch): libwebkit2gtk3-lang-2.38.3-150200.57.1 - SUSE Linux Enterprise High Performance Computing 15-SP3-ESPOS (aarch64 x86_64): libjavascriptcoregtk-4_0-18-2.38.3-150200.57.1 libjavascriptcoregtk-4_0-18-debuginfo-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-debuginfo-2.38.3-150200.57.1 typelib-1_0-JavaScriptCore-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2WebExtension-4_0-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-debuginfo-2.38.3-150200.57.1 webkit2gtk3-debugsource-2.38.3-150200.57.1 webkit2gtk3-devel-2.38.3-150200.57.1 - SUSE Linux Enterprise High Performance Computing 15-SP3-ESPOS (noarch): libwebkit2gtk3-lang-2.38.3-150200.57.1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS (aarch64 x86_64): libjavascriptcoregtk-4_0-18-2.38.3-150200.57.1 libjavascriptcoregtk-4_0-18-debuginfo-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-debuginfo-2.38.3-150200.57.1 typelib-1_0-JavaScriptCore-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2WebExtension-4_0-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-debuginfo-2.38.3-150200.57.1 webkit2gtk3-debugsource-2.38.3-150200.57.1 webkit2gtk3-devel-2.38.3-150200.57.1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS (noarch): libwebkit2gtk3-lang-2.38.3-150200.57.1 - SUSE Enterprise Storage 7.1 (aarch64 x86_64): libjavascriptcoregtk-4_0-18-2.38.3-150200.57.1 libjavascriptcoregtk-4_0-18-debuginfo-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-debuginfo-2.38.3-150200.57.1 typelib-1_0-JavaScriptCore-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2WebExtension-4_0-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-debuginfo-2.38.3-150200.57.1 webkit2gtk3-debugsource-2.38.3-150200.57.1 webkit2gtk3-devel-2.38.3-150200.57.1 - SUSE Enterprise Storage 7.1 (noarch): libwebkit2gtk3-lang-2.38.3-150200.57.1 - SUSE Enterprise Storage 7 (aarch64 x86_64): libjavascriptcoregtk-4_0-18-2.38.3-150200.57.1 libjavascriptcoregtk-4_0-18-debuginfo-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-2.38.3-150200.57.1 libwebkit2gtk-4_0-37-debuginfo-2.38.3-150200.57.1 typelib-1_0-JavaScriptCore-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2-4_0-2.38.3-150200.57.1 typelib-1_0-WebKit2WebExtension-4_0-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-2.38.3-150200.57.1 webkit2gtk-4_0-injected-bundles-debuginfo-2.38.3-150200.57.1 webkit2gtk3-debugsource-2.38.3-150200.57.1 webkit2gtk3-devel-2.38.3-150200.57.1 - SUSE Enterprise Storage 7 (noarch): libwebkit2gtk3-lang-2.38.3-150200.57.1 References: https://www.suse.com/security/cve/CVE-2022-42852.html https://www.suse.com/security/cve/CVE-2022-42856.html https://www.suse.com/security/cve/CVE-2022-42863.html https://www.suse.com/security/cve/CVE-2022-42867.html https://www.suse.com/security/cve/CVE-2022-46691.html https://www.suse.com/security/cve/CVE-2022-46692.html https://www.suse.com/security/cve/CVE-2022-46698.html https://www.suse.com/security/cve/CVE-2022-46699.html https://www.suse.com/security/cve/CVE-2022-46700.html https://bugzilla.suse.com/1206474 https://bugzilla.suse.com/1206750

1 0

SUSE-SU-2022:4639-1: Security update for polkit-default-privs
by opensuse-security＠opensuse.org 30 Dec '22

30 Dec '22

SUSE Security Update: Security update for polkit-default-privs ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4639-1 Rating: low References: #1206414 Affected Products: SUSE Linux Enterprise Desktop 15-SP4 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Basesystem 15-SP4 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that contains security fixes can now be installed. Description: This update for polkit-default-privs fixes the following issues: Update to version 13.2+20221216.a0c29e6: - backport usbguard actions (bsc#1206414). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4639=1 - SUSE Linux Enterprise Module for Basesystem 15-SP4: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2022-4639=1 Package List: - openSUSE Leap 15.4 (noarch): polkit-default-privs-13.2+20221216.a0c29e6-150400.3.3.1 polkit-whitelisting-13.2+20221216.a0c29e6-150400.3.3.1 - SUSE Linux Enterprise Module for Basesystem 15-SP4 (noarch): polkit-default-privs-13.2+20221216.a0c29e6-150400.3.3.1 References: https://bugzilla.suse.com/1206414

1 0

SUSE-SU-2022:4636-1: moderate: Security update for MozillaThunderbird
by opensuse-security＠opensuse.org 29 Dec '22

29 Dec '22

SUSE Security Update: Security update for MozillaThunderbird ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4636-1 Rating: moderate References: #1206653 Cross-References: CVE-2022-46874 Affected Products: SUSE Linux Enterprise Desktop 15-SP4 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP4 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Linux Enterprise Workstation Extension 15-SP4 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for MozillaThunderbird fixes the following issues: Update to version 102.6.1 * fixed: Remote content did not load in user-defined signatures * fixed: Addons that added new action buttons were not shown for addon upgrades, requiring removal and reinstall * fixed: Various stability improvements * CVE-2022-46874: Drag and Dropped Filenames could have been truncated to malicious extensions (bsc#1206653) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4636=1 - SUSE Linux Enterprise Workstation Extension 15-SP4: zypper in -t patch SUSE-SLE-Product-WE-15-SP4-2022-4636=1 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP4: zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP4-2022-4636=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): MozillaThunderbird-102.6.1-150200.8.99.1 MozillaThunderbird-debuginfo-102.6.1-150200.8.99.1 MozillaThunderbird-debugsource-102.6.1-150200.8.99.1 MozillaThunderbird-translations-common-102.6.1-150200.8.99.1 MozillaThunderbird-translations-other-102.6.1-150200.8.99.1 - SUSE Linux Enterprise Workstation Extension 15-SP4 (x86_64): MozillaThunderbird-102.6.1-150200.8.99.1 MozillaThunderbird-debuginfo-102.6.1-150200.8.99.1 MozillaThunderbird-debugsource-102.6.1-150200.8.99.1 MozillaThunderbird-translations-common-102.6.1-150200.8.99.1 MozillaThunderbird-translations-other-102.6.1-150200.8.99.1 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP4 (aarch64 ppc64le s390x): MozillaThunderbird-102.6.1-150200.8.99.1 MozillaThunderbird-debuginfo-102.6.1-150200.8.99.1 MozillaThunderbird-debugsource-102.6.1-150200.8.99.1 MozillaThunderbird-translations-common-102.6.1-150200.8.99.1 MozillaThunderbird-translations-other-102.6.1-150200.8.99.1 References: https://www.suse.com/security/cve/CVE-2022-46874.html https://bugzilla.suse.com/1206653

1 0

SUSE-SU-2022:4635-1: moderate: Security update for conmon
by opensuse-security＠opensuse.org 29 Dec '22

29 Dec '22

SUSE Security Update: Security update for conmon ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4635-1 Rating: moderate References: #1200285 Cross-References: CVE-2022-1708 CVSS scores: CVE-2022-1708 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-1708 (SUSE): 6.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H Affected Products: SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Micro 5.3 SUSE Linux Enterprise Module for Containers 15-SP4 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.3 openSUSE Leap 15.4 openSUSE Leap Micro 5.3 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for conmon fixes the following issues: conmon was updated to version 2.1.5: * don't leak syslog_identifier * logging: do not read more that the buf size * logging: fix error handling * Makefile: Fix install for FreeBSD * signal: Track changes to get_signal_descriptor in the FreeBSD version * Packit: initial enablement Update to version 2.1.4: * Fix a bug where conmon crashed when it got a SIGCHLD update to 2.1.3: * Stop using g_unix_signal_add() to avoid threads * Rename CLI optionlog-size-global-max to log-global-size-max Update to version 2.1.2: * add log-global-size-max option to limit the total output conmon processes (CVE-2022-1708 bsc#1200285) * journald: print tag and name if both are specified * drop some logs to debug level Update to version 2.1.0 * logging: buffer partial messages to journald * exit: close all fds >= 3 * fix: cgroup: Free memory_cgroup_file_path if open fails. Update to version 2.0.32 * Fix: Avoid mainfd_std{in,out} sharing the same file descriptor. * exit_command: Fix: unset subreaper attribute before running exit command Update to version 2.0.31 * logging: new mode -l passthrough * ctr_logs: use container name or ID as SYSLOG_IDENTIFIER for journald * conmon: Fix: free userdata files before exec cleanup Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap Micro 5.3: zypper in -t patch openSUSE-Leap-Micro-5.3-2022-4635=1 - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4635=1 - SUSE Linux Enterprise Module for Containers 15-SP4: zypper in -t patch SUSE-SLE-Module-Containers-15-SP4-2022-4635=1 - SUSE Linux Enterprise Micro 5.3: zypper in -t patch SUSE-SLE-Micro-5.3-2022-4635=1 Package List: - openSUSE Leap Micro 5.3 (aarch64 x86_64): conmon-2.1.5-150400.3.3.1 conmon-debuginfo-2.1.5-150400.3.3.1 - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): conmon-2.1.5-150400.3.3.1 conmon-debuginfo-2.1.5-150400.3.3.1 - SUSE Linux Enterprise Module for Containers 15-SP4 (aarch64 ppc64le s390x x86_64): conmon-2.1.5-150400.3.3.1 conmon-debuginfo-2.1.5-150400.3.3.1 - SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64): conmon-2.1.5-150400.3.3.1 conmon-debuginfo-2.1.5-150400.3.3.1 References: https://www.suse.com/security/cve/CVE-2022-1708.html https://bugzilla.suse.com/1200285

1 0

SUSE-SU-2022:4634-1: important: Security update for webkit2gtk3
by opensuse-security＠opensuse.org 29 Dec '22

29 Dec '22

1 0

SUSE-SU-2022:4630-1: important: Security update for systemd
by opensuse-security＠opensuse.org 28 Dec '22

28 Dec '22

SUSE Security Update: Security update for systemd ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4630-1 Rating: important References: #1200723 #1203857 #1204423 #1205000 Cross-References: CVE-2022-4415 CVSS scores: CVE-2022-4415 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N Affected Products: SUSE Enterprise Storage 7.1 SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP3-ESPOS SUSE Linux Enterprise High Performance Computing 15-SP3-LTSS SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Realtime Extension 15-SP3 SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server 15-SP3-LTSS SUSE Linux Enterprise Server for SAP 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.2 openSUSE Leap 15.3 openSUSE Leap 15.4 openSUSE Leap Micro 5.2 ______________________________________________________________________________ An update that solves one vulnerability and has three fixes is now available. Description: This update for systemd fixes the following issues: - CVE-2022-4415: Fixed systemd-coredump that did not respect the fs.suid_dumpable kernel setting (bsc#1205000). Bug fixes: - Support by-path devlink for multipath nvme block devices (bsc#1200723). - Set SYSTEMD_NSS_DYNAMIC_BYPASS=1 env var for dbus-daemon (bsc#1203857). - Restrict cpu rule to x86_64, and also update the rule files to make use of the "CONST{arch}" syntax (bsc#1204423). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap Micro 5.2: zypper in -t patch openSUSE-Leap-Micro-5.2-2022-4630=1 - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4630=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4630=1 - SUSE Manager Server 4.2: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.2-2022-4630=1 - SUSE Manager Retail Branch Server 4.2: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.2-2022-4630=1 - SUSE Manager Proxy 4.2: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.2-2022-4630=1 - SUSE Linux Enterprise Server for SAP 15-SP3: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2022-4630=1 - SUSE Linux Enterprise Server 15-SP3-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2022-4630=1 - SUSE Linux Enterprise Realtime Extension 15-SP3: zypper in -t patch SUSE-SLE-Product-RT-15-SP3-2022-4630=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2022-4630=1 - SUSE Linux Enterprise Micro 5.2: zypper in -t patch SUSE-SUSE-MicroOS-5.2-2022-4630=1 - SUSE Linux Enterprise Micro 5.1: zypper in -t patch SUSE-SUSE-MicroOS-5.1-2022-4630=1 - SUSE Linux Enterprise High Performance Computing 15-SP3-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2022-4630=1 - SUSE Linux Enterprise High Performance Computing 15-SP3-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-ESPOS-2022-4630=1 - SUSE Enterprise Storage 7.1: zypper in -t patch SUSE-Storage-7.1-2022-4630=1 Package List: - openSUSE Leap Micro 5.2 (aarch64 x86_64): libsystemd0-246.16-150300.7.57.1 libsystemd0-debuginfo-246.16-150300.7.57.1 libudev1-246.16-150300.7.57.1 libudev1-debuginfo-246.16-150300.7.57.1 systemd-246.16-150300.7.57.1 systemd-container-246.16-150300.7.57.1 systemd-container-debuginfo-246.16-150300.7.57.1 systemd-debuginfo-246.16-150300.7.57.1 systemd-debugsource-246.16-150300.7.57.1 systemd-journal-remote-246.16-150300.7.57.1 systemd-journal-remote-debuginfo-246.16-150300.7.57.1 systemd-sysvinit-246.16-150300.7.57.1 udev-246.16-150300.7.57.1 udev-debuginfo-246.16-150300.7.57.1 - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): nss-mymachines-246.16-150300.7.57.1 nss-mymachines-debuginfo-246.16-150300.7.57.1 nss-resolve-246.16-150300.7.57.1 nss-resolve-debuginfo-246.16-150300.7.57.1 systemd-logger-246.16-150300.7.57.1 - openSUSE Leap 15.4 (x86_64): nss-mymachines-32bit-246.16-150300.7.57.1 nss-mymachines-32bit-debuginfo-246.16-150300.7.57.1 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): libsystemd0-246.16-150300.7.57.1 libsystemd0-debuginfo-246.16-150300.7.57.1 libudev-devel-246.16-150300.7.57.1 libudev1-246.16-150300.7.57.1 libudev1-debuginfo-246.16-150300.7.57.1 nss-myhostname-246.16-150300.7.57.1 nss-myhostname-debuginfo-246.16-150300.7.57.1 nss-mymachines-246.16-150300.7.57.1 nss-mymachines-debuginfo-246.16-150300.7.57.1 nss-resolve-246.16-150300.7.57.1 nss-resolve-debuginfo-246.16-150300.7.57.1 nss-systemd-246.16-150300.7.57.1 nss-systemd-debuginfo-246.16-150300.7.57.1 systemd-246.16-150300.7.57.1 systemd-container-246.16-150300.7.57.1 systemd-container-debuginfo-246.16-150300.7.57.1 systemd-coredump-246.16-150300.7.57.1 systemd-coredump-debuginfo-246.16-150300.7.57.1 systemd-debuginfo-246.16-150300.7.57.1 systemd-debugsource-246.16-150300.7.57.1 systemd-devel-246.16-150300.7.57.1 systemd-doc-246.16-150300.7.57.1 systemd-journal-remote-246.16-150300.7.57.1 systemd-journal-remote-debuginfo-246.16-150300.7.57.1 systemd-logger-246.16-150300.7.57.1 systemd-network-246.16-150300.7.57.1 systemd-network-debuginfo-246.16-150300.7.57.1 systemd-sysvinit-246.16-150300.7.57.1 udev-246.16-150300.7.57.1 udev-debuginfo-246.16-150300.7.57.1 - openSUSE Leap 15.3 (x86_64): libsystemd0-32bit-246.16-150300.7.57.1 libsystemd0-32bit-debuginfo-246.16-150300.7.57.1 libudev-devel-32bit-246.16-150300.7.57.1 libudev1-32bit-246.16-150300.7.57.1 libudev1-32bit-debuginfo-246.16-150300.7.57.1 nss-myhostname-32bit-246.16-150300.7.57.1 nss-myhostname-32bit-debuginfo-246.16-150300.7.57.1 nss-mymachines-32bit-246.16-150300.7.57.1 nss-mymachines-32bit-debuginfo-246.16-150300.7.57.1 systemd-32bit-246.16-150300.7.57.1 systemd-32bit-debuginfo-246.16-150300.7.57.1 - openSUSE Leap 15.3 (noarch): systemd-lang-246.16-150300.7.57.1 - SUSE Manager Server 4.2 (ppc64le s390x x86_64): libsystemd0-246.16-150300.7.57.1 libsystemd0-debuginfo-246.16-150300.7.57.1 libudev-devel-246.16-150300.7.57.1 libudev1-246.16-150300.7.57.1 libudev1-debuginfo-246.16-150300.7.57.1 systemd-246.16-150300.7.57.1 systemd-container-246.16-150300.7.57.1 systemd-container-debuginfo-246.16-150300.7.57.1 systemd-coredump-246.16-150300.7.57.1 systemd-coredump-debuginfo-246.16-150300.7.57.1 systemd-debuginfo-246.16-150300.7.57.1 systemd-debugsource-246.16-150300.7.57.1 systemd-devel-246.16-150300.7.57.1 systemd-doc-246.16-150300.7.57.1 systemd-journal-remote-246.16-150300.7.57.1 systemd-journal-remote-debuginfo-246.16-150300.7.57.1 systemd-sysvinit-246.16-150300.7.57.1 udev-246.16-150300.7.57.1 udev-debuginfo-246.16-150300.7.57.1 - SUSE Manager Server 4.2 (x86_64): libsystemd0-32bit-246.16-150300.7.57.1 libsystemd0-32bit-debuginfo-246.16-150300.7.57.1 libudev1-32bit-246.16-150300.7.57.1 libudev1-32bit-debuginfo-246.16-150300.7.57.1 systemd-32bit-246.16-150300.7.57.1 systemd-32bit-debuginfo-246.16-150300.7.57.1 - SUSE Manager Server 4.2 (noarch): systemd-lang-246.16-150300.7.57.1 - SUSE Manager Retail Branch Server 4.2 (x86_64): libsystemd0-246.16-150300.7.57.1 libsystemd0-32bit-246.16-150300.7.57.1 libsystemd0-32bit-debuginfo-246.16-150300.7.57.1 libsystemd0-debuginfo-246.16-150300.7.57.1 libudev-devel-246.16-150300.7.57.1 libudev1-246.16-150300.7.57.1 libudev1-32bit-246.16-150300.7.57.1 libudev1-32bit-debuginfo-246.16-150300.7.57.1 libudev1-debuginfo-246.16-150300.7.57.1 systemd-246.16-150300.7.57.1 systemd-32bit-246.16-150300.7.57.1 systemd-32bit-debuginfo-246.16-150300.7.57.1 systemd-container-246.16-150300.7.57.1 systemd-container-debuginfo-246.16-150300.7.57.1 systemd-coredump-246.16-150300.7.57.1 systemd-coredump-debuginfo-246.16-150300.7.57.1 systemd-debuginfo-246.16-150300.7.57.1 systemd-debugsource-246.16-150300.7.57.1 systemd-devel-246.16-150300.7.57.1 systemd-doc-246.16-150300.7.57.1 systemd-journal-remote-246.16-150300.7.57.1 systemd-journal-remote-debuginfo-246.16-150300.7.57.1 systemd-sysvinit-246.16-150300.7.57.1 udev-246.16-150300.7.57.1 udev-debuginfo-246.16-150300.7.57.1 - SUSE Manager Retail Branch Server 4.2 (noarch): systemd-lang-246.16-150300.7.57.1 - SUSE Manager Proxy 4.2 (x86_64): libsystemd0-246.16-150300.7.57.1 libsystemd0-32bit-246.16-150300.7.57.1 libsystemd0-32bit-debuginfo-246.16-150300.7.57.1 libsystemd0-debuginfo-246.16-150300.7.57.1 libudev-devel-246.16-150300.7.57.1 libudev1-246.16-150300.7.57.1 libudev1-32bit-246.16-150300.7.57.1 libudev1-32bit-debuginfo-246.16-150300.7.57.1 libudev1-debuginfo-246.16-150300.7.57.1 systemd-246.16-150300.7.57.1 systemd-32bit-246.16-150300.7.57.1 systemd-32bit-debuginfo-246.16-150300.7.57.1 systemd-container-246.16-150300.7.57.1 systemd-container-debuginfo-246.16-150300.7.57.1 systemd-coredump-246.16-150300.7.57.1 systemd-coredump-debuginfo-246.16-150300.7.57.1 systemd-debuginfo-246.16-150300.7.57.1 systemd-debugsource-246.16-150300.7.57.1 systemd-devel-246.16-150300.7.57.1 systemd-doc-246.16-150300.7.57.1 systemd-journal-remote-246.16-150300.7.57.1 systemd-journal-remote-debuginfo-246.16-150300.7.57.1 systemd-sysvinit-246.16-150300.7.57.1 udev-246.16-150300.7.57.1 udev-debuginfo-246.16-150300.7.57.1 - SUSE Manager Proxy 4.2 (noarch): systemd-lang-246.16-150300.7.57.1 - SUSE Linux Enterprise Server for SAP 15-SP3 (ppc64le x86_64): libsystemd0-246.16-150300.7.57.1 libsystemd0-debuginfo-246.16-150300.7.57.1 libudev-devel-246.16-150300.7.57.1 libudev1-246.16-150300.7.57.1 libudev1-debuginfo-246.16-150300.7.57.1 systemd-246.16-150300.7.57.1 systemd-container-246.16-150300.7.57.1 systemd-container-debuginfo-246.16-150300.7.57.1 systemd-coredump-246.16-150300.7.57.1 systemd-coredump-debuginfo-246.16-150300.7.57.1 systemd-debuginfo-246.16-150300.7.57.1 systemd-debugsource-246.16-150300.7.57.1 systemd-devel-246.16-150300.7.57.1 systemd-doc-246.16-150300.7.57.1 systemd-journal-remote-246.16-150300.7.57.1 systemd-journal-remote-debuginfo-246.16-150300.7.57.1 systemd-sysvinit-246.16-150300.7.57.1 udev-246.16-150300.7.57.1 udev-debuginfo-246.16-150300.7.57.1 - SUSE Linux Enterprise Server for SAP 15-SP3 (noarch): systemd-lang-246.16-150300.7.57.1 - SUSE Linux Enterprise Server for SAP 15-SP3 (x86_64): libsystemd0-32bit-246.16-150300.7.57.1 libsystemd0-32bit-debuginfo-246.16-150300.7.57.1 libudev1-32bit-246.16-150300.7.57.1 libudev1-32bit-debuginfo-246.16-150300.7.57.1 systemd-32bit-246.16-150300.7.57.1 systemd-32bit-debuginfo-246.16-150300.7.57.1 - SUSE Linux Enterprise Server 15-SP3-LTSS (aarch64 ppc64le s390x x86_64): libsystemd0-246.16-150300.7.57.1 libsystemd0-debuginfo-246.16-150300.7.57.1 libudev-devel-246.16-150300.7.57.1 libudev1-246.16-150300.7.57.1 libudev1-debuginfo-246.16-150300.7.57.1 systemd-246.16-150300.7.57.1 systemd-container-246.16-150300.7.57.1 systemd-container-debuginfo-246.16-150300.7.57.1 systemd-coredump-246.16-150300.7.57.1 systemd-coredump-debuginfo-246.16-150300.7.57.1 systemd-debuginfo-246.16-150300.7.57.1 systemd-debugsource-246.16-150300.7.57.1 systemd-devel-246.16-150300.7.57.1 systemd-doc-246.16-150300.7.57.1 systemd-journal-remote-246.16-150300.7.57.1 systemd-journal-remote-debuginfo-246.16-150300.7.57.1 systemd-sysvinit-246.16-150300.7.57.1 udev-246.16-150300.7.57.1 udev-debuginfo-246.16-150300.7.57.1 - SUSE Linux Enterprise Server 15-SP3-LTSS (noarch): systemd-lang-246.16-150300.7.57.1 - SUSE Linux Enterprise Server 15-SP3-LTSS (x86_64): libsystemd0-32bit-246.16-150300.7.57.1 libsystemd0-32bit-debuginfo-246.16-150300.7.57.1 libudev1-32bit-246.16-150300.7.57.1 libudev1-32bit-debuginfo-246.16-150300.7.57.1 systemd-32bit-246.16-150300.7.57.1 systemd-32bit-debuginfo-246.16-150300.7.57.1 - SUSE Linux Enterprise Realtime Extension 15-SP3 (x86_64): libsystemd0-246.16-150300.7.57.1 libsystemd0-32bit-246.16-150300.7.57.1 libsystemd0-32bit-debuginfo-246.16-150300.7.57.1 libsystemd0-debuginfo-246.16-150300.7.57.1 libudev-devel-246.16-150300.7.57.1 libudev1-246.16-150300.7.57.1 libudev1-32bit-246.16-150300.7.57.1 libudev1-32bit-debuginfo-246.16-150300.7.57.1 libudev1-debuginfo-246.16-150300.7.57.1 systemd-246.16-150300.7.57.1 systemd-32bit-246.16-150300.7.57.1 systemd-32bit-debuginfo-246.16-150300.7.57.1 systemd-container-246.16-150300.7.57.1 systemd-container-debuginfo-246.16-150300.7.57.1 systemd-coredump-246.16-150300.7.57.1 systemd-coredump-debuginfo-246.16-150300.7.57.1 systemd-debuginfo-246.16-150300.7.57.1 systemd-debugsource-246.16-150300.7.57.1 systemd-devel-246.16-150300.7.57.1 systemd-doc-246.16-150300.7.57.1 systemd-journal-remote-246.16-150300.7.57.1 systemd-journal-remote-debuginfo-246.16-150300.7.57.1 systemd-sysvinit-246.16-150300.7.57.1 udev-246.16-150300.7.57.1 udev-debuginfo-246.16-150300.7.57.1 - SUSE Linux Enterprise Realtime Extension 15-SP3 (noarch): systemd-lang-246.16-150300.7.57.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): libsystemd0-246.16-150300.7.57.1 libsystemd0-debuginfo-246.16-150300.7.57.1 libudev-devel-246.16-150300.7.57.1 libudev1-246.16-150300.7.57.1 libudev1-debuginfo-246.16-150300.7.57.1 systemd-246.16-150300.7.57.1 systemd-container-246.16-150300.7.57.1 systemd-container-debuginfo-246.16-150300.7.57.1 systemd-coredump-246.16-150300.7.57.1 systemd-coredump-debuginfo-246.16-150300.7.57.1 systemd-debuginfo-246.16-150300.7.57.1 systemd-debugsource-246.16-150300.7.57.1 systemd-devel-246.16-150300.7.57.1 systemd-doc-246.16-150300.7.57.1 systemd-journal-remote-246.16-150300.7.57.1 systemd-journal-remote-debuginfo-246.16-150300.7.57.1 systemd-sysvinit-246.16-150300.7.57.1 udev-246.16-150300.7.57.1 udev-debuginfo-246.16-150300.7.57.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (x86_64): libsystemd0-32bit-246.16-150300.7.57.1 libsystemd0-32bit-debuginfo-246.16-150300.7.57.1 libudev1-32bit-246.16-150300.7.57.1 libudev1-32bit-debuginfo-246.16-150300.7.57.1 systemd-32bit-246.16-150300.7.57.1 systemd-32bit-debuginfo-246.16-150300.7.57.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (noarch): systemd-lang-246.16-150300.7.57.1 - SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64): libsystemd0-246.16-150300.7.57.1 libsystemd0-debuginfo-246.16-150300.7.57.1 libudev1-246.16-150300.7.57.1 libudev1-debuginfo-246.16-150300.7.57.1 systemd-246.16-150300.7.57.1 systemd-container-246.16-150300.7.57.1 systemd-container-debuginfo-246.16-150300.7.57.1 systemd-debuginfo-246.16-150300.7.57.1 systemd-debugsource-246.16-150300.7.57.1 systemd-journal-remote-246.16-150300.7.57.1 systemd-journal-remote-debuginfo-246.16-150300.7.57.1 systemd-sysvinit-246.16-150300.7.57.1 udev-246.16-150300.7.57.1 udev-debuginfo-246.16-150300.7.57.1 - SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64): libsystemd0-246.16-150300.7.57.1 libsystemd0-debuginfo-246.16-150300.7.57.1 libudev1-246.16-150300.7.57.1 libudev1-debuginfo-246.16-150300.7.57.1 systemd-246.16-150300.7.57.1 systemd-container-246.16-150300.7.57.1 systemd-container-debuginfo-246.16-150300.7.57.1 systemd-debuginfo-246.16-150300.7.57.1 systemd-debugsource-246.16-150300.7.57.1 systemd-journal-remote-246.16-150300.7.57.1 systemd-journal-remote-debuginfo-246.16-150300.7.57.1 systemd-sysvinit-246.16-150300.7.57.1 udev-246.16-150300.7.57.1 udev-debuginfo-246.16-150300.7.57.1 - SUSE Linux Enterprise High Performance Computing 15-SP3-LTSS (aarch64 x86_64): libsystemd0-246.16-150300.7.57.1 libsystemd0-debuginfo-246.16-150300.7.57.1 libudev-devel-246.16-150300.7.57.1 libudev1-246.16-150300.7.57.1 libudev1-debuginfo-246.16-150300.7.57.1 systemd-246.16-150300.7.57.1 systemd-container-246.16-150300.7.57.1 systemd-container-debuginfo-246.16-150300.7.57.1 systemd-coredump-246.16-150300.7.57.1 systemd-coredump-debuginfo-246.16-150300.7.57.1 systemd-debuginfo-246.16-150300.7.57.1 systemd-debugsource-246.16-150300.7.57.1 systemd-devel-246.16-150300.7.57.1 systemd-doc-246.16-150300.7.57.1 systemd-journal-remote-246.16-150300.7.57.1 systemd-journal-remote-debuginfo-246.16-150300.7.57.1 systemd-sysvinit-246.16-150300.7.57.1 udev-246.16-150300.7.57.1 udev-debuginfo-246.16-150300.7.57.1 - SUSE Linux Enterprise High Performance Computing 15-SP3-LTSS (x86_64): libsystemd0-32bit-246.16-150300.7.57.1 libsystemd0-32bit-debuginfo-246.16-150300.7.57.1 libudev1-32bit-246.16-150300.7.57.1 libudev1-32bit-debuginfo-246.16-150300.7.57.1 systemd-32bit-246.16-150300.7.57.1 systemd-32bit-debuginfo-246.16-150300.7.57.1 - SUSE Linux Enterprise High Performance Computing 15-SP3-LTSS (noarch): systemd-lang-246.16-150300.7.57.1 - SUSE Linux Enterprise High Performance Computing 15-SP3-ESPOS (aarch64 x86_64): libsystemd0-246.16-150300.7.57.1 libsystemd0-debuginfo-246.16-150300.7.57.1 libudev-devel-246.16-150300.7.57.1 libudev1-246.16-150300.7.57.1 libudev1-debuginfo-246.16-150300.7.57.1 systemd-246.16-150300.7.57.1 systemd-container-246.16-150300.7.57.1 systemd-container-debuginfo-246.16-150300.7.57.1 systemd-coredump-246.16-150300.7.57.1 systemd-coredump-debuginfo-246.16-150300.7.57.1 systemd-debuginfo-246.16-150300.7.57.1 systemd-debugsource-246.16-150300.7.57.1 systemd-devel-246.16-150300.7.57.1 systemd-doc-246.16-150300.7.57.1 systemd-journal-remote-246.16-150300.7.57.1 systemd-journal-remote-debuginfo-246.16-150300.7.57.1 systemd-sysvinit-246.16-150300.7.57.1 udev-246.16-150300.7.57.1 udev-debuginfo-246.16-150300.7.57.1 - SUSE Linux Enterprise High Performance Computing 15-SP3-ESPOS (x86_64): libsystemd0-32bit-246.16-150300.7.57.1 libsystemd0-32bit-debuginfo-246.16-150300.7.57.1 libudev1-32bit-246.16-150300.7.57.1 libudev1-32bit-debuginfo-246.16-150300.7.57.1 systemd-32bit-246.16-150300.7.57.1 systemd-32bit-debuginfo-246.16-150300.7.57.1 - SUSE Linux Enterprise High Performance Computing 15-SP3-ESPOS (noarch): systemd-lang-246.16-150300.7.57.1 - SUSE Enterprise Storage 7.1 (aarch64 x86_64): libsystemd0-246.16-150300.7.57.1 libsystemd0-debuginfo-246.16-150300.7.57.1 libudev-devel-246.16-150300.7.57.1 libudev1-246.16-150300.7.57.1 libudev1-debuginfo-246.16-150300.7.57.1 systemd-246.16-150300.7.57.1 systemd-container-246.16-150300.7.57.1 systemd-container-debuginfo-246.16-150300.7.57.1 systemd-coredump-246.16-150300.7.57.1 systemd-coredump-debuginfo-246.16-150300.7.57.1 systemd-debuginfo-246.16-150300.7.57.1 systemd-debugsource-246.16-150300.7.57.1 systemd-devel-246.16-150300.7.57.1 systemd-doc-246.16-150300.7.57.1 systemd-journal-remote-246.16-150300.7.57.1 systemd-journal-remote-debuginfo-246.16-150300.7.57.1 systemd-sysvinit-246.16-150300.7.57.1 udev-246.16-150300.7.57.1 udev-debuginfo-246.16-150300.7.57.1 - SUSE Enterprise Storage 7.1 (noarch): systemd-lang-246.16-150300.7.57.1 - SUSE Enterprise Storage 7.1 (x86_64): libsystemd0-32bit-246.16-150300.7.57.1 libsystemd0-32bit-debuginfo-246.16-150300.7.57.1 libudev1-32bit-246.16-150300.7.57.1 libudev1-32bit-debuginfo-246.16-150300.7.57.1 systemd-32bit-246.16-150300.7.57.1 systemd-32bit-debuginfo-246.16-150300.7.57.1 References: https://www.suse.com/security/cve/CVE-2022-4415.html https://bugzilla.suse.com/1200723 https://bugzilla.suse.com/1203857 https://bugzilla.suse.com/1204423 https://bugzilla.suse.com/1205000

1 0

SUSE-SU-2022:4633-1: moderate: Security update for curl
by opensuse-security＠opensuse.org 28 Dec '22

28 Dec '22

SUSE Security Update: Security update for curl ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4633-1 Rating: moderate References: #1206309 Cross-References: CVE-2022-43552 CVSS scores: CVE-2022-43552 (SUSE): 5.6 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L Affected Products: SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Realtime Extension 15-SP3 openSUSE Leap 15.3 openSUSE Leap Micro 5.2 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for curl fixes the following issues: - CVE-2022-43552: HTTP Proxy deny use-after-free (bsc#1206309). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap Micro 5.2: zypper in -t patch openSUSE-Leap-Micro-5.2-2022-4633=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-4633=1 - SUSE Linux Enterprise Realtime Extension 15-SP3: zypper in -t patch SUSE-SLE-Product-RT-15-SP3-2022-4633=1 - SUSE Linux Enterprise Micro 5.2: zypper in -t patch SUSE-SUSE-MicroOS-5.2-2022-4633=1 - SUSE Linux Enterprise Micro 5.1: zypper in -t patch SUSE-SUSE-MicroOS-5.1-2022-4633=1 Package List: - openSUSE Leap Micro 5.2 (aarch64 x86_64): curl-7.66.0-150200.4.45.1 curl-debuginfo-7.66.0-150200.4.45.1 curl-debugsource-7.66.0-150200.4.45.1 libcurl4-7.66.0-150200.4.45.1 libcurl4-debuginfo-7.66.0-150200.4.45.1 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): curl-7.66.0-150200.4.45.1 curl-debuginfo-7.66.0-150200.4.45.1 curl-debugsource-7.66.0-150200.4.45.1 libcurl-devel-7.66.0-150200.4.45.1 libcurl4-7.66.0-150200.4.45.1 libcurl4-debuginfo-7.66.0-150200.4.45.1 - openSUSE Leap 15.3 (x86_64): libcurl-devel-32bit-7.66.0-150200.4.45.1 libcurl4-32bit-7.66.0-150200.4.45.1 libcurl4-32bit-debuginfo-7.66.0-150200.4.45.1 - SUSE Linux Enterprise Realtime Extension 15-SP3 (x86_64): curl-7.66.0-150200.4.45.1 curl-debuginfo-7.66.0-150200.4.45.1 curl-debugsource-7.66.0-150200.4.45.1 libcurl-devel-7.66.0-150200.4.45.1 libcurl4-32bit-7.66.0-150200.4.45.1 libcurl4-32bit-debuginfo-7.66.0-150200.4.45.1 libcurl4-7.66.0-150200.4.45.1 libcurl4-debuginfo-7.66.0-150200.4.45.1 - SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64): curl-7.66.0-150200.4.45.1 curl-debuginfo-7.66.0-150200.4.45.1 curl-debugsource-7.66.0-150200.4.45.1 libcurl4-7.66.0-150200.4.45.1 libcurl4-debuginfo-7.66.0-150200.4.45.1 - SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64): curl-7.66.0-150200.4.45.1 curl-debuginfo-7.66.0-150200.4.45.1 curl-debugsource-7.66.0-150200.4.45.1 libcurl4-7.66.0-150200.4.45.1 libcurl4-debuginfo-7.66.0-150200.4.45.1 References: https://www.suse.com/security/cve/CVE-2022-43552.html https://bugzilla.suse.com/1206309

1 0

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

2000

1999

openSUSE Security Announce December 2022