openSUSE Security Announce
Threads by month
- ----- 2024 -----
- June
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2017 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2016 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2015 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2014 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2013 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2012 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2011 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2010 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2009 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2008 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2007 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2006 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2005 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2004 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2003 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2002 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2001 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2000 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 1999 -----
- December
- November
- October
- September
- August
May 2024
- 2 participants
- 70 discussions
openSUSE-SU-2024:0119-1: important: Security update for tinyproxy
by opensuse-security@opensuse.org 10 May '24
by opensuse-security@opensuse.org 10 May '24
10 May '24
openSUSE Security Update: Security update for tinyproxy
______________________________________________________________________________
Announcement ID: openSUSE-SU-2024:0119-1
Rating: important
References: #1200028 #1203553 #1223743 #1223746
Cross-References: CVE-2012-3505 CVE-2017-11747 CVE-2022-40468
CVE-2023-40533 CVE-2023-49606
CVSS scores:
CVE-2017-11747 (NVD) : 5.5 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CVE-2022-40468 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CVE-2022-40468 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CVE-2023-40533 (SUSE): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected Products:
openSUSE Backports SLE-15-SP5
______________________________________________________________________________
An update that fixes 5 vulnerabilities is now available.
Description:
This update for tinyproxy fixes the following issues:
- Update to release 1.11.2
* Fix potential use-after-free in header handling [CVE-2023-49606,
boo#1223746]
* Prevent junk from showing up in error page in invalid requests
[CVE-2022-40468, CVE-2023-40533, boo#1223743]
- Move tinyproxy program to /usr/bin.
- Update to release 1.11.1
* New fnmatch based filtertype
- Update to release 1.11
* Support for multiple bind directives.
- update to 1.10.0:
* Configuration file has moved from /etc/tinyproxy.conf to
/etc/tinyproxy/tinyproxy.conf.
* Add support for basic HTTP authentication
* Add socks upstream support
* Log to stdout if no logfile is specified
* Activate reverse proxy by default
* Support bind with transparent mode
* Allow multiple listen statements in the configuration
* Fix CVE-2017-11747: Create PID file before dropping privileges.
* Fix CVE-2012-3505: algorithmic complexity DoS in hashmap
* Bugfixes
* BB#110: fix algorithmic complexity DoS in hashmap
* BB#106: fix CONNECT requests with IPv6 literal addresses as host
* BB#116: fix invalid free for GET requests to ipv6 literal address
* BB#115: Drop supplementary groups
* BB#109: Fix crash (infinite loop) when writing to log file fails
* BB#74: Create log and pid files after we drop privs
* BB#83: Use output of id instead of $USER
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
- openSUSE Backports SLE-15-SP5:
zypper in -t patch openSUSE-2024-119=1
Package List:
- openSUSE Backports SLE-15-SP5 (aarch64 i586 ppc64le s390x x86_64):
tinyproxy-1.11.2-bp155.3.3.1
References:
https://www.suse.com/security/cve/CVE-2012-3505.html
https://www.suse.com/security/cve/CVE-2017-11747.html
https://www.suse.com/security/cve/CVE-2022-40468.html
https://www.suse.com/security/cve/CVE-2023-40533.html
https://www.suse.com/security/cve/CVE-2023-49606.html
https://bugzilla.suse.com/1200028
https://bugzilla.suse.com/1203553
https://bugzilla.suse.com/1223743
https://bugzilla.suse.com/1223746
1
0
10 May '24
# Security update for less
Announcement ID: SUSE-SU-2024:1598-1
Rating: important
References:
* bsc#1222849
Cross-References:
* CVE-2024-32487
CVSS scores:
* CVE-2024-32487 ( SUSE ): 8.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Affected Products:
* Basesystem Module 15-SP5
* openSUSE Leap 15.4
* openSUSE Leap 15.5
* openSUSE Leap Micro 5.3
* openSUSE Leap Micro 5.4
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Micro 5.3
* SUSE Linux Enterprise Micro 5.4
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Micro for Rancher 5.3
* SUSE Linux Enterprise Micro for Rancher 5.4
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Manager Proxy 4.3
* SUSE Manager Retail Branch Server 4.3
* SUSE Manager Server 4.3
An update that solves one vulnerability can now be installed.
## Description:
This update for less fixes the following issues:
* CVE-2024-32487: Fixed mishandling of \n character in paths when LESSOPEN is
set leads to OS command execution. (bsc#1222849)
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.4
zypper in -t patch SUSE-2024-1598=1
* openSUSE Leap Micro 5.3
zypper in -t patch openSUSE-Leap-Micro-5.3-2024-1598=1
* openSUSE Leap Micro 5.4
zypper in -t patch openSUSE-Leap-Micro-5.4-2024-1598=1
* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-1598=1
* SUSE Linux Enterprise Micro for Rancher 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2024-1598=1
* SUSE Linux Enterprise Micro 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2024-1598=1
* SUSE Linux Enterprise Micro for Rancher 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2024-1598=1
* SUSE Linux Enterprise Micro 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2024-1598=1
* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2024-1598=1
* Basesystem Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1598=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1598=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1598=1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1598=1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1598=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1598=1
* SUSE Manager Proxy 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-1598=1
* SUSE Manager Retail Branch Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-
Server-4.3-2024-1598=1
* SUSE Manager Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-1598=1
## Package List:
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* less-debuginfo-590-150400.3.9.1
* less-590-150400.3.9.1
* less-debugsource-590-150400.3.9.1
* openSUSE Leap Micro 5.3 (aarch64 x86_64)
* less-debuginfo-590-150400.3.9.1
* less-590-150400.3.9.1
* less-debugsource-590-150400.3.9.1
* openSUSE Leap Micro 5.4 (aarch64 s390x x86_64)
* less-debuginfo-590-150400.3.9.1
* less-590-150400.3.9.1
* less-debugsource-590-150400.3.9.1
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* less-debuginfo-590-150400.3.9.1
* less-590-150400.3.9.1
* less-debugsource-590-150400.3.9.1
* SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64)
* less-debuginfo-590-150400.3.9.1
* less-590-150400.3.9.1
* less-debugsource-590-150400.3.9.1
* SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64)
* less-debuginfo-590-150400.3.9.1
* less-590-150400.3.9.1
* less-debugsource-590-150400.3.9.1
* SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64)
* less-debuginfo-590-150400.3.9.1
* less-590-150400.3.9.1
* less-debugsource-590-150400.3.9.1
* SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64)
* less-debuginfo-590-150400.3.9.1
* less-590-150400.3.9.1
* less-debugsource-590-150400.3.9.1
* SUSE Linux Enterprise Micro 5.5 (aarch64 s390x x86_64)
* less-debuginfo-590-150400.3.9.1
* less-590-150400.3.9.1
* less-debugsource-590-150400.3.9.1
* Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* less-debuginfo-590-150400.3.9.1
* less-590-150400.3.9.1
* less-debugsource-590-150400.3.9.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* less-debuginfo-590-150400.3.9.1
* less-590-150400.3.9.1
* less-debugsource-590-150400.3.9.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* less-debuginfo-590-150400.3.9.1
* less-590-150400.3.9.1
* less-debugsource-590-150400.3.9.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64)
* less-debuginfo-590-150400.3.9.1
* less-590-150400.3.9.1
* less-debugsource-590-150400.3.9.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x
x86_64)
* less-debuginfo-590-150400.3.9.1
* less-590-150400.3.9.1
* less-debugsource-590-150400.3.9.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* less-debuginfo-590-150400.3.9.1
* less-590-150400.3.9.1
* less-debugsource-590-150400.3.9.1
* SUSE Manager Proxy 4.3 (x86_64)
* less-debuginfo-590-150400.3.9.1
* less-590-150400.3.9.1
* less-debugsource-590-150400.3.9.1
* SUSE Manager Retail Branch Server 4.3 (x86_64)
* less-debuginfo-590-150400.3.9.1
* less-590-150400.3.9.1
* less-debugsource-590-150400.3.9.1
* SUSE Manager Server 4.3 (ppc64le s390x x86_64)
* less-debuginfo-590-150400.3.9.1
* less-590-150400.3.9.1
* less-debugsource-590-150400.3.9.1
## References:
* https://www.suse.com/security/cve/CVE-2024-32487.html
* https://bugzilla.suse.com/show_bug.cgi?id=1222849
1
0
10 May '24
# Security update for go1.21
Announcement ID: SUSE-SU-2024:1588-1
Rating: moderate
References:
* bsc#1212475
* bsc#1224017
Cross-References:
* CVE-2024-24787
CVSS scores:
* CVE-2024-24787 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Products:
* Development Tools Module 15-SP5
* openSUSE Leap 15.5
* openSUSE Leap 15.6
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
An update that solves one vulnerability and has one security fix can now be
installed.
## Description:
This update for go1.21 fixes the following issues:
Update to go1.21.10:
* CVE-2024-24787: cmd/go: arbitrary code execution during build on darwin
(bsc#1224017)
* net/http: TestRequestLimit/h2 becomes significantly more expensive and
slower after x/net(a)v0.23.0
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-1588=1
* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2024-1588=1
* Development Tools Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP5-2024-1588=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1588=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1588=1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1588=1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1588=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1588=1
## Package List:
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* go1.21-doc-1.21.10-150000.1.33.1
* go1.21-race-1.21.10-150000.1.33.1
* go1.21-1.21.10-150000.1.33.1
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
* go1.21-doc-1.21.10-150000.1.33.1
* go1.21-race-1.21.10-150000.1.33.1
* go1.21-1.21.10-150000.1.33.1
* Development Tools Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* go1.21-doc-1.21.10-150000.1.33.1
* go1.21-race-1.21.10-150000.1.33.1
* go1.21-1.21.10-150000.1.33.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* go1.21-doc-1.21.10-150000.1.33.1
* go1.21-race-1.21.10-150000.1.33.1
* go1.21-1.21.10-150000.1.33.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* go1.21-doc-1.21.10-150000.1.33.1
* go1.21-race-1.21.10-150000.1.33.1
* go1.21-1.21.10-150000.1.33.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64)
* go1.21-doc-1.21.10-150000.1.33.1
* go1.21-race-1.21.10-150000.1.33.1
* go1.21-1.21.10-150000.1.33.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x
x86_64)
* go1.21-doc-1.21.10-150000.1.33.1
* go1.21-1.21.10-150000.1.33.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 x86_64)
* go1.21-race-1.21.10-150000.1.33.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* go1.21-doc-1.21.10-150000.1.33.1
* go1.21-1.21.10-150000.1.33.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64)
* go1.21-race-1.21.10-150000.1.33.1
## References:
* https://www.suse.com/security/cve/CVE-2024-24787.html
* https://bugzilla.suse.com/show_bug.cgi?id=1212475
* https://bugzilla.suse.com/show_bug.cgi?id=1224017
1
0
SUSE-SU-2024:1591-1: important: Security update for python-Werkzeug
by OPENSUSE-SECURITY-UPDATES 10 May '24
by OPENSUSE-SECURITY-UPDATES 10 May '24
10 May '24
# Security update for python-Werkzeug
Announcement ID: SUSE-SU-2024:1591-1
Rating: important
References:
* bsc#1223979
Cross-References:
* CVE-2024-34069
CVSS scores:
* CVE-2024-34069 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products:
* openSUSE Leap 15.4
* openSUSE Leap 15.5
* openSUSE Leap 15.6
* Python 3 Module 15-SP5
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
An update that solves one vulnerability can now be installed.
## Description:
This update for python-Werkzeug fixes the following issues:
* CVE-2024-34069: Fixed a remote code execution through debugger when
interacting with attacker controlled domain (bsc#1223979).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1591=1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1591=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1591=1
* openSUSE Leap 15.4
zypper in -t patch SUSE-2024-1591=1
* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-1591=1
* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2024-1591=1
* Python 3 Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Python3-15-SP5-2024-1591=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1591=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1591=1
## Package List:
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch)
* python311-Werkzeug-2.3.6-150400.6.9.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch)
* python311-Werkzeug-2.3.6-150400.6.9.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch)
* python311-Werkzeug-2.3.6-150400.6.9.1
* openSUSE Leap 15.4 (noarch)
* python311-Werkzeug-2.3.6-150400.6.9.1
* openSUSE Leap 15.5 (noarch)
* python311-Werkzeug-2.3.6-150400.6.9.1
* openSUSE Leap 15.6 (noarch)
* python311-Werkzeug-2.3.6-150400.6.9.1
* Python 3 Module 15-SP5 (noarch)
* python311-Werkzeug-2.3.6-150400.6.9.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch)
* python311-Werkzeug-2.3.6-150400.6.9.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch)
* python311-Werkzeug-2.3.6-150400.6.9.1
## References:
* https://www.suse.com/security/cve/CVE-2024-34069.html
* https://bugzilla.suse.com/show_bug.cgi?id=1223979
1
0
10 May '24
# Security update for go1.22
Announcement ID: SUSE-SU-2024:1587-1
Rating: moderate
References:
* bsc#1218424
* bsc#1224017
* bsc#1224018
Cross-References:
* CVE-2024-24787
* CVE-2024-24788
CVSS scores:
* CVE-2024-24787 ( SUSE ): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-24788 ( SUSE ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Affected Products:
* Development Tools Module 15-SP5
* openSUSE Leap 15.5
* openSUSE Leap 15.6
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
An update that solves two vulnerabilities and has one security fix can now be
installed.
## Description:
This update for go1.22 fixes the following issues:
Update to go1.22.3:
* CVE-2024-24787: cmd/go: arbitrary code execution during build on darwin
(bsc#1224017)
* CVE-2024-24788: net: high cpu usage in extractExtendedRCode (bsc#1224018)
* cmd/compile: Go 1.22.x failed to be bootstrapped from 386 to ppc64le
* cmd/compile: changing a hot concrete method to interface method triggers a
PGO ICE
* runtime: deterministic fallback hashes across process boundary
* net/http: TestRequestLimit/h2 becomes significantly more expensive and
slower after x/net(a)v0.23.0
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-1587=1
* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2024-1587=1
* Development Tools Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP5-2024-1587=1
## Package List:
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* go1.22-1.22.3-150000.1.15.1
* go1.22-race-1.22.3-150000.1.15.1
* go1.22-doc-1.22.3-150000.1.15.1
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
* go1.22-1.22.3-150000.1.15.1
* go1.22-race-1.22.3-150000.1.15.1
* go1.22-doc-1.22.3-150000.1.15.1
* Development Tools Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* go1.22-1.22.3-150000.1.15.1
* go1.22-race-1.22.3-150000.1.15.1
* go1.22-doc-1.22.3-150000.1.15.1
## References:
* https://www.suse.com/security/cve/CVE-2024-24787.html
* https://www.suse.com/security/cve/CVE-2024-24788.html
* https://bugzilla.suse.com/show_bug.cgi?id=1218424
* https://bugzilla.suse.com/show_bug.cgi?id=1224017
* https://bugzilla.suse.com/show_bug.cgi?id=1224018
1
0
10 May '24
# Security update for ffmpeg
Announcement ID: SUSE-SU-2024:1593-1
Rating: important
References:
* bsc#1223256
Cross-References:
* CVE-2023-50010
CVSS scores:
* CVE-2023-50010 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products:
* Desktop Applications Module 15-SP5
* openSUSE Leap 15.5
* openSUSE Leap 15.6
* SUSE Enterprise Storage 7.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise High Performance Computing 15 SP2
* SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2
* SUSE Linux Enterprise High Performance Computing 15 SP3
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP2
* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2
* SUSE Linux Enterprise Server 15 SP3
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP2
* SUSE Linux Enterprise Server for SAP Applications 15 SP3
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Linux Enterprise Workstation Extension 15 SP5
* SUSE Package Hub 15 15-SP5
An update that solves one vulnerability can now be installed.
## Description:
This update for ffmpeg fixes the following issues:
* CVE-2023-50010: Fixed an arbitrary code execution via the set_encoder_id()
(bsc#1223256).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-1593=1
* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2024-1593=1
* Desktop Applications Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP5-2024-1593=1
* SUSE Package Hub 15 15-SP5
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1593=1
* SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2
zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-1593=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1593=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1593=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1593=1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1593=1
* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2
zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-1593=1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1593=1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1593=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP2
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-1593=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP3
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1593=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1593=1
* SUSE Linux Enterprise Workstation Extension 15 SP5
zypper in -t patch SUSE-SLE-Product-WE-15-SP5-2024-1593=1
* SUSE Enterprise Storage 7.1
zypper in -t patch SUSE-Storage-7.1-2024-1593=1
## Package List:
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* libavresample3-debuginfo-3.4.2-150200.11.44.1
* ffmpeg-debuginfo-3.4.2-150200.11.44.1
* libpostproc-devel-3.4.2-150200.11.44.1
* libavdevice57-debuginfo-3.4.2-150200.11.44.1
* libavdevice57-3.4.2-150200.11.44.1
* libavresample-devel-3.4.2-150200.11.44.1
* libswresample-devel-3.4.2-150200.11.44.1
* ffmpeg-debugsource-3.4.2-150200.11.44.1
* ffmpeg-private-devel-3.4.2-150200.11.44.1
* libpostproc54-debuginfo-3.4.2-150200.11.44.1
* libavcodec57-3.4.2-150200.11.44.1
* libavutil55-debuginfo-3.4.2-150200.11.44.1
* libavformat57-debuginfo-3.4.2-150200.11.44.1
* libpostproc54-3.4.2-150200.11.44.1
* libavdevice-devel-3.4.2-150200.11.44.1
* libavformat57-3.4.2-150200.11.44.1
* libswscale-devel-3.4.2-150200.11.44.1
* libavutil55-3.4.2-150200.11.44.1
* libavutil-devel-3.4.2-150200.11.44.1
* libavfilter6-3.4.2-150200.11.44.1
* libswresample2-debuginfo-3.4.2-150200.11.44.1
* libswscale4-debuginfo-3.4.2-150200.11.44.1
* libavfilter6-debuginfo-3.4.2-150200.11.44.1
* ffmpeg-3.4.2-150200.11.44.1
* libavresample3-3.4.2-150200.11.44.1
* libswresample2-3.4.2-150200.11.44.1
* libswscale4-3.4.2-150200.11.44.1
* libavcodec-devel-3.4.2-150200.11.44.1
* libavfilter-devel-3.4.2-150200.11.44.1
* libavformat-devel-3.4.2-150200.11.44.1
* libavcodec57-debuginfo-3.4.2-150200.11.44.1
* openSUSE Leap 15.5 (x86_64)
* libavfilter6-32bit-debuginfo-3.4.2-150200.11.44.1
* libavdevice57-32bit-3.4.2-150200.11.44.1
* libavutil55-32bit-debuginfo-3.4.2-150200.11.44.1
* libavresample3-32bit-3.4.2-150200.11.44.1
* libavcodec57-32bit-debuginfo-3.4.2-150200.11.44.1
* libswresample2-32bit-3.4.2-150200.11.44.1
* libavresample3-32bit-debuginfo-3.4.2-150200.11.44.1
* libavutil55-32bit-3.4.2-150200.11.44.1
* libpostproc54-32bit-3.4.2-150200.11.44.1
* libswscale4-32bit-debuginfo-3.4.2-150200.11.44.1
* libavdevice57-32bit-debuginfo-3.4.2-150200.11.44.1
* libavformat57-32bit-3.4.2-150200.11.44.1
* libswscale4-32bit-3.4.2-150200.11.44.1
* libavcodec57-32bit-3.4.2-150200.11.44.1
* libavformat57-32bit-debuginfo-3.4.2-150200.11.44.1
* libpostproc54-32bit-debuginfo-3.4.2-150200.11.44.1
* libswresample2-32bit-debuginfo-3.4.2-150200.11.44.1
* libavfilter6-32bit-3.4.2-150200.11.44.1
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
* libavresample3-debuginfo-3.4.2-150200.11.44.1
* ffmpeg-debuginfo-3.4.2-150200.11.44.1
* libpostproc-devel-3.4.2-150200.11.44.1
* libavdevice57-debuginfo-3.4.2-150200.11.44.1
* libavdevice57-3.4.2-150200.11.44.1
* libavresample-devel-3.4.2-150200.11.44.1
* libswresample-devel-3.4.2-150200.11.44.1
* ffmpeg-debugsource-3.4.2-150200.11.44.1
* ffmpeg-private-devel-3.4.2-150200.11.44.1
* libpostproc54-debuginfo-3.4.2-150200.11.44.1
* libavcodec57-3.4.2-150200.11.44.1
* libavutil55-debuginfo-3.4.2-150200.11.44.1
* libavformat57-debuginfo-3.4.2-150200.11.44.1
* libpostproc54-3.4.2-150200.11.44.1
* libavdevice-devel-3.4.2-150200.11.44.1
* libavformat57-3.4.2-150200.11.44.1
* libswscale-devel-3.4.2-150200.11.44.1
* libavutil55-3.4.2-150200.11.44.1
* libavutil-devel-3.4.2-150200.11.44.1
* libavfilter6-3.4.2-150200.11.44.1
* libswresample2-debuginfo-3.4.2-150200.11.44.1
* libswscale4-debuginfo-3.4.2-150200.11.44.1
* libavfilter6-debuginfo-3.4.2-150200.11.44.1
* ffmpeg-3.4.2-150200.11.44.1
* libavresample3-3.4.2-150200.11.44.1
* libswresample2-3.4.2-150200.11.44.1
* libswscale4-3.4.2-150200.11.44.1
* libavcodec-devel-3.4.2-150200.11.44.1
* libavfilter-devel-3.4.2-150200.11.44.1
* libavformat-devel-3.4.2-150200.11.44.1
* libavcodec57-debuginfo-3.4.2-150200.11.44.1
* openSUSE Leap 15.6 (x86_64)
* libavfilter6-32bit-debuginfo-3.4.2-150200.11.44.1
* libavdevice57-32bit-3.4.2-150200.11.44.1
* libavutil55-32bit-debuginfo-3.4.2-150200.11.44.1
* libavresample3-32bit-3.4.2-150200.11.44.1
* libavcodec57-32bit-debuginfo-3.4.2-150200.11.44.1
* libswresample2-32bit-3.4.2-150200.11.44.1
* libavresample3-32bit-debuginfo-3.4.2-150200.11.44.1
* libavutil55-32bit-3.4.2-150200.11.44.1
* libpostproc54-32bit-3.4.2-150200.11.44.1
* libswscale4-32bit-debuginfo-3.4.2-150200.11.44.1
* libavdevice57-32bit-debuginfo-3.4.2-150200.11.44.1
* libavformat57-32bit-3.4.2-150200.11.44.1
* libswscale4-32bit-3.4.2-150200.11.44.1
* libavcodec57-32bit-3.4.2-150200.11.44.1
* libavformat57-32bit-debuginfo-3.4.2-150200.11.44.1
* libpostproc54-32bit-debuginfo-3.4.2-150200.11.44.1
* libswresample2-32bit-debuginfo-3.4.2-150200.11.44.1
* libavfilter6-32bit-3.4.2-150200.11.44.1
* Desktop Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* libswscale4-3.4.2-150200.11.44.1
* libavutil55-debuginfo-3.4.2-150200.11.44.1
* ffmpeg-debuginfo-3.4.2-150200.11.44.1
* libpostproc-devel-3.4.2-150200.11.44.1
* libswresample2-debuginfo-3.4.2-150200.11.44.1
* libswscale4-debuginfo-3.4.2-150200.11.44.1
* libpostproc54-3.4.2-150200.11.44.1
* libavcodec57-3.4.2-150200.11.44.1
* libswscale-devel-3.4.2-150200.11.44.1
* libswresample-devel-3.4.2-150200.11.44.1
* ffmpeg-debugsource-3.4.2-150200.11.44.1
* libswresample2-3.4.2-150200.11.44.1
* libavutil55-3.4.2-150200.11.44.1
* libpostproc54-debuginfo-3.4.2-150200.11.44.1
* libavutil-devel-3.4.2-150200.11.44.1
* libavcodec57-debuginfo-3.4.2-150200.11.44.1
* SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x x86_64)
* libavresample3-debuginfo-3.4.2-150200.11.44.1
* libavfilter6-3.4.2-150200.11.44.1
* ffmpeg-debuginfo-3.4.2-150200.11.44.1
* libavformat57-debuginfo-3.4.2-150200.11.44.1
* libavfilter6-debuginfo-3.4.2-150200.11.44.1
* libavdevice57-debuginfo-3.4.2-150200.11.44.1
* libavdevice57-3.4.2-150200.11.44.1
* libavformat57-3.4.2-150200.11.44.1
* ffmpeg-3.4.2-150200.11.44.1
* ffmpeg-debugsource-3.4.2-150200.11.44.1
* libavresample3-3.4.2-150200.11.44.1
* SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64
x86_64)
* libavresample3-debuginfo-3.4.2-150200.11.44.1
* ffmpeg-debuginfo-3.4.2-150200.11.44.1
* libpostproc-devel-3.4.2-150200.11.44.1
* libavresample-devel-3.4.2-150200.11.44.1
* libswresample-devel-3.4.2-150200.11.44.1
* ffmpeg-debugsource-3.4.2-150200.11.44.1
* libpostproc54-debuginfo-3.4.2-150200.11.44.1
* libavcodec57-3.4.2-150200.11.44.1
* libavutil55-debuginfo-3.4.2-150200.11.44.1
* libavformat57-debuginfo-3.4.2-150200.11.44.1
* libpostproc54-3.4.2-150200.11.44.1
* libavformat57-3.4.2-150200.11.44.1
* libswscale-devel-3.4.2-150200.11.44.1
* libavutil55-3.4.2-150200.11.44.1
* libavutil-devel-3.4.2-150200.11.44.1
* libswresample2-debuginfo-3.4.2-150200.11.44.1
* libswscale4-debuginfo-3.4.2-150200.11.44.1
* libavresample3-3.4.2-150200.11.44.1
* libswresample2-3.4.2-150200.11.44.1
* libswscale4-3.4.2-150200.11.44.1
* libavcodec57-debuginfo-3.4.2-150200.11.44.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64
x86_64)
* libavresample3-debuginfo-3.4.2-150200.11.44.1
* ffmpeg-debuginfo-3.4.2-150200.11.44.1
* libpostproc-devel-3.4.2-150200.11.44.1
* libavresample-devel-3.4.2-150200.11.44.1
* libswresample-devel-3.4.2-150200.11.44.1
* ffmpeg-debugsource-3.4.2-150200.11.44.1
* libpostproc54-debuginfo-3.4.2-150200.11.44.1
* libavcodec57-3.4.2-150200.11.44.1
* libavutil55-debuginfo-3.4.2-150200.11.44.1
* libavformat57-debuginfo-3.4.2-150200.11.44.1
* libpostproc54-3.4.2-150200.11.44.1
* libavformat57-3.4.2-150200.11.44.1
* libswscale-devel-3.4.2-150200.11.44.1
* libavutil55-3.4.2-150200.11.44.1
* libavutil-devel-3.4.2-150200.11.44.1
* libswresample2-debuginfo-3.4.2-150200.11.44.1
* libswscale4-debuginfo-3.4.2-150200.11.44.1
* libavresample3-3.4.2-150200.11.44.1
* libswresample2-3.4.2-150200.11.44.1
* libswscale4-3.4.2-150200.11.44.1
* libavcodec57-debuginfo-3.4.2-150200.11.44.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* libavresample3-debuginfo-3.4.2-150200.11.44.1
* libswresample2-3.4.2-150200.11.44.1
* libswscale4-3.4.2-150200.11.44.1
* libavutil55-debuginfo-3.4.2-150200.11.44.1
* ffmpeg-debuginfo-3.4.2-150200.11.44.1
* libavformat57-debuginfo-3.4.2-150200.11.44.1
* libpostproc-devel-3.4.2-150200.11.44.1
* libswresample2-debuginfo-3.4.2-150200.11.44.1
* libswscale4-debuginfo-3.4.2-150200.11.44.1
* libpostproc54-3.4.2-150200.11.44.1
* libavcodec57-3.4.2-150200.11.44.1
* libswscale-devel-3.4.2-150200.11.44.1
* libavformat57-3.4.2-150200.11.44.1
* libswresample-devel-3.4.2-150200.11.44.1
* ffmpeg-debugsource-3.4.2-150200.11.44.1
* libavresample3-3.4.2-150200.11.44.1
* libavutil55-3.4.2-150200.11.44.1
* libpostproc54-debuginfo-3.4.2-150200.11.44.1
* libavutil-devel-3.4.2-150200.11.44.1
* libavcodec57-debuginfo-3.4.2-150200.11.44.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* libavresample3-debuginfo-3.4.2-150200.11.44.1
* libswresample2-3.4.2-150200.11.44.1
* libswscale4-3.4.2-150200.11.44.1
* libavutil55-debuginfo-3.4.2-150200.11.44.1
* ffmpeg-debuginfo-3.4.2-150200.11.44.1
* libavformat57-debuginfo-3.4.2-150200.11.44.1
* libpostproc-devel-3.4.2-150200.11.44.1
* libswresample2-debuginfo-3.4.2-150200.11.44.1
* libswscale4-debuginfo-3.4.2-150200.11.44.1
* libpostproc54-3.4.2-150200.11.44.1
* libavcodec57-3.4.2-150200.11.44.1
* libswscale-devel-3.4.2-150200.11.44.1
* libavformat57-3.4.2-150200.11.44.1
* libswresample-devel-3.4.2-150200.11.44.1
* ffmpeg-debugsource-3.4.2-150200.11.44.1
* libavresample3-3.4.2-150200.11.44.1
* libavutil55-3.4.2-150200.11.44.1
* libpostproc54-debuginfo-3.4.2-150200.11.44.1
* libavutil-devel-3.4.2-150200.11.44.1
* libavcodec57-debuginfo-3.4.2-150200.11.44.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64)
* libavresample3-debuginfo-3.4.2-150200.11.44.1
* ffmpeg-debuginfo-3.4.2-150200.11.44.1
* libpostproc-devel-3.4.2-150200.11.44.1
* libavresample-devel-3.4.2-150200.11.44.1
* libswresample-devel-3.4.2-150200.11.44.1
* ffmpeg-debugsource-3.4.2-150200.11.44.1
* libpostproc54-debuginfo-3.4.2-150200.11.44.1
* libavcodec57-3.4.2-150200.11.44.1
* libavutil55-debuginfo-3.4.2-150200.11.44.1
* libavformat57-debuginfo-3.4.2-150200.11.44.1
* libpostproc54-3.4.2-150200.11.44.1
* libavformat57-3.4.2-150200.11.44.1
* libswscale-devel-3.4.2-150200.11.44.1
* libavutil55-3.4.2-150200.11.44.1
* libavutil-devel-3.4.2-150200.11.44.1
* libswresample2-debuginfo-3.4.2-150200.11.44.1
* libswscale4-debuginfo-3.4.2-150200.11.44.1
* libavresample3-3.4.2-150200.11.44.1
* libswresample2-3.4.2-150200.11.44.1
* libswscale4-3.4.2-150200.11.44.1
* libavcodec-devel-3.4.2-150200.11.44.1
* libavformat-devel-3.4.2-150200.11.44.1
* libavcodec57-debuginfo-3.4.2-150200.11.44.1
* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x
x86_64)
* libavresample3-debuginfo-3.4.2-150200.11.44.1
* ffmpeg-debuginfo-3.4.2-150200.11.44.1
* libpostproc-devel-3.4.2-150200.11.44.1
* libavresample-devel-3.4.2-150200.11.44.1
* libswresample-devel-3.4.2-150200.11.44.1
* ffmpeg-debugsource-3.4.2-150200.11.44.1
* libpostproc54-debuginfo-3.4.2-150200.11.44.1
* libavcodec57-3.4.2-150200.11.44.1
* libavutil55-debuginfo-3.4.2-150200.11.44.1
* libavformat57-debuginfo-3.4.2-150200.11.44.1
* libpostproc54-3.4.2-150200.11.44.1
* libavformat57-3.4.2-150200.11.44.1
* libswscale-devel-3.4.2-150200.11.44.1
* libavutil55-3.4.2-150200.11.44.1
* libavutil-devel-3.4.2-150200.11.44.1
* libswresample2-debuginfo-3.4.2-150200.11.44.1
* libswscale4-debuginfo-3.4.2-150200.11.44.1
* libavresample3-3.4.2-150200.11.44.1
* libswresample2-3.4.2-150200.11.44.1
* libswscale4-3.4.2-150200.11.44.1
* libavcodec57-debuginfo-3.4.2-150200.11.44.1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x
x86_64)
* libavresample3-debuginfo-3.4.2-150200.11.44.1
* ffmpeg-debuginfo-3.4.2-150200.11.44.1
* libpostproc-devel-3.4.2-150200.11.44.1
* libavresample-devel-3.4.2-150200.11.44.1
* libswresample-devel-3.4.2-150200.11.44.1
* ffmpeg-debugsource-3.4.2-150200.11.44.1
* libpostproc54-debuginfo-3.4.2-150200.11.44.1
* libavcodec57-3.4.2-150200.11.44.1
* libavutil55-debuginfo-3.4.2-150200.11.44.1
* libavformat57-debuginfo-3.4.2-150200.11.44.1
* libpostproc54-3.4.2-150200.11.44.1
* libavformat57-3.4.2-150200.11.44.1
* libswscale-devel-3.4.2-150200.11.44.1
* libavutil55-3.4.2-150200.11.44.1
* libavutil-devel-3.4.2-150200.11.44.1
* libswresample2-debuginfo-3.4.2-150200.11.44.1
* libswscale4-debuginfo-3.4.2-150200.11.44.1
* libavresample3-3.4.2-150200.11.44.1
* libswresample2-3.4.2-150200.11.44.1
* libswscale4-3.4.2-150200.11.44.1
* libavcodec57-debuginfo-3.4.2-150200.11.44.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x
x86_64)
* libavresample3-debuginfo-3.4.2-150200.11.44.1
* libswresample2-3.4.2-150200.11.44.1
* libswscale4-3.4.2-150200.11.44.1
* libavutil55-debuginfo-3.4.2-150200.11.44.1
* ffmpeg-debuginfo-3.4.2-150200.11.44.1
* libavformat57-debuginfo-3.4.2-150200.11.44.1
* libpostproc-devel-3.4.2-150200.11.44.1
* libswresample2-debuginfo-3.4.2-150200.11.44.1
* libswscale4-debuginfo-3.4.2-150200.11.44.1
* libpostproc54-3.4.2-150200.11.44.1
* libavcodec57-3.4.2-150200.11.44.1
* libswscale-devel-3.4.2-150200.11.44.1
* libavformat57-3.4.2-150200.11.44.1
* libswresample-devel-3.4.2-150200.11.44.1
* ffmpeg-debugsource-3.4.2-150200.11.44.1
* libavresample3-3.4.2-150200.11.44.1
* libavutil55-3.4.2-150200.11.44.1
* libpostproc54-debuginfo-3.4.2-150200.11.44.1
* libavutil-devel-3.4.2-150200.11.44.1
* libavcodec57-debuginfo-3.4.2-150200.11.44.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64)
* libavresample3-debuginfo-3.4.2-150200.11.44.1
* ffmpeg-debuginfo-3.4.2-150200.11.44.1
* libpostproc-devel-3.4.2-150200.11.44.1
* libavresample-devel-3.4.2-150200.11.44.1
* libswresample-devel-3.4.2-150200.11.44.1
* ffmpeg-debugsource-3.4.2-150200.11.44.1
* libpostproc54-debuginfo-3.4.2-150200.11.44.1
* libavcodec57-3.4.2-150200.11.44.1
* libavutil55-debuginfo-3.4.2-150200.11.44.1
* libavformat57-debuginfo-3.4.2-150200.11.44.1
* libpostproc54-3.4.2-150200.11.44.1
* libavformat57-3.4.2-150200.11.44.1
* libswscale-devel-3.4.2-150200.11.44.1
* libavutil55-3.4.2-150200.11.44.1
* libavutil-devel-3.4.2-150200.11.44.1
* libswresample2-debuginfo-3.4.2-150200.11.44.1
* libswscale4-debuginfo-3.4.2-150200.11.44.1
* libavresample3-3.4.2-150200.11.44.1
* libswresample2-3.4.2-150200.11.44.1
* libswscale4-3.4.2-150200.11.44.1
* libavcodec57-debuginfo-3.4.2-150200.11.44.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64)
* libavresample3-debuginfo-3.4.2-150200.11.44.1
* ffmpeg-debuginfo-3.4.2-150200.11.44.1
* libpostproc-devel-3.4.2-150200.11.44.1
* libavresample-devel-3.4.2-150200.11.44.1
* libswresample-devel-3.4.2-150200.11.44.1
* ffmpeg-debugsource-3.4.2-150200.11.44.1
* libpostproc54-debuginfo-3.4.2-150200.11.44.1
* libavcodec57-3.4.2-150200.11.44.1
* libavutil55-debuginfo-3.4.2-150200.11.44.1
* libavformat57-debuginfo-3.4.2-150200.11.44.1
* libpostproc54-3.4.2-150200.11.44.1
* libavformat57-3.4.2-150200.11.44.1
* libswscale-devel-3.4.2-150200.11.44.1
* libavutil55-3.4.2-150200.11.44.1
* libavutil-devel-3.4.2-150200.11.44.1
* libswresample2-debuginfo-3.4.2-150200.11.44.1
* libswscale4-debuginfo-3.4.2-150200.11.44.1
* libavresample3-3.4.2-150200.11.44.1
* libswresample2-3.4.2-150200.11.44.1
* libswscale4-3.4.2-150200.11.44.1
* libavcodec57-debuginfo-3.4.2-150200.11.44.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* libavresample3-debuginfo-3.4.2-150200.11.44.1
* libswresample2-3.4.2-150200.11.44.1
* libswscale4-3.4.2-150200.11.44.1
* libavutil55-debuginfo-3.4.2-150200.11.44.1
* ffmpeg-debuginfo-3.4.2-150200.11.44.1
* libavformat57-debuginfo-3.4.2-150200.11.44.1
* libpostproc-devel-3.4.2-150200.11.44.1
* libswresample2-debuginfo-3.4.2-150200.11.44.1
* libswscale4-debuginfo-3.4.2-150200.11.44.1
* libpostproc54-3.4.2-150200.11.44.1
* libavcodec57-3.4.2-150200.11.44.1
* libswscale-devel-3.4.2-150200.11.44.1
* libavformat57-3.4.2-150200.11.44.1
* libswresample-devel-3.4.2-150200.11.44.1
* ffmpeg-debugsource-3.4.2-150200.11.44.1
* libavresample3-3.4.2-150200.11.44.1
* libavutil55-3.4.2-150200.11.44.1
* libpostproc54-debuginfo-3.4.2-150200.11.44.1
* libavutil-devel-3.4.2-150200.11.44.1
* libavcodec57-debuginfo-3.4.2-150200.11.44.1
* SUSE Linux Enterprise Workstation Extension 15 SP5 (x86_64)
* libavresample3-debuginfo-3.4.2-150200.11.44.1
* ffmpeg-debuginfo-3.4.2-150200.11.44.1
* libavcodec-devel-3.4.2-150200.11.44.1
* libavformat57-debuginfo-3.4.2-150200.11.44.1
* libavresample-devel-3.4.2-150200.11.44.1
* libavformat57-3.4.2-150200.11.44.1
* ffmpeg-debugsource-3.4.2-150200.11.44.1
* libavresample3-3.4.2-150200.11.44.1
* libavformat-devel-3.4.2-150200.11.44.1
* SUSE Enterprise Storage 7.1 (aarch64 x86_64)
* libavresample3-debuginfo-3.4.2-150200.11.44.1
* ffmpeg-debuginfo-3.4.2-150200.11.44.1
* libpostproc-devel-3.4.2-150200.11.44.1
* libavresample-devel-3.4.2-150200.11.44.1
* libswresample-devel-3.4.2-150200.11.44.1
* ffmpeg-debugsource-3.4.2-150200.11.44.1
* libpostproc54-debuginfo-3.4.2-150200.11.44.1
* libavcodec57-3.4.2-150200.11.44.1
* libavutil55-debuginfo-3.4.2-150200.11.44.1
* libavformat57-debuginfo-3.4.2-150200.11.44.1
* libpostproc54-3.4.2-150200.11.44.1
* libavformat57-3.4.2-150200.11.44.1
* libswscale-devel-3.4.2-150200.11.44.1
* libavutil55-3.4.2-150200.11.44.1
* libavutil-devel-3.4.2-150200.11.44.1
* libswresample2-debuginfo-3.4.2-150200.11.44.1
* libswscale4-debuginfo-3.4.2-150200.11.44.1
* libavresample3-3.4.2-150200.11.44.1
* libswresample2-3.4.2-150200.11.44.1
* libswscale4-3.4.2-150200.11.44.1
* libavcodec57-debuginfo-3.4.2-150200.11.44.1
## References:
* https://www.suse.com/security/cve/CVE-2023-50010.html
* https://bugzilla.suse.com/show_bug.cgi?id=1223256
1
0
SUSE-SU-2024:1590-1: moderate: Security update for ghostscript
by OPENSUSE-SECURITY-UPDATES 10 May '24
by OPENSUSE-SECURITY-UPDATES 10 May '24
10 May '24
# Security update for ghostscript
Announcement ID: SUSE-SU-2024:1590-1
Rating: moderate
References:
* bsc#1223852
Cross-References:
* CVE-2023-52722
CVSS scores:
* CVE-2023-52722 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
Affected Products:
* Basesystem Module 15-SP5
* openSUSE Leap 15.5
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
An update that solves one vulnerability can now be installed.
## Description:
This update for ghostscript fixes the following issues:
* CVE-2023-52722: Do not allow eexec seeds other than the Type 1 standard
while using SAFER mode (bsc#1223852).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-1590=1
* Basesystem Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1590=1
## Package List:
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* ghostscript-debugsource-9.52-150000.188.1
* ghostscript-x11-9.52-150000.188.1
* ghostscript-debuginfo-9.52-150000.188.1
* ghostscript-x11-debuginfo-9.52-150000.188.1
* ghostscript-devel-9.52-150000.188.1
* ghostscript-9.52-150000.188.1
* Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* ghostscript-debugsource-9.52-150000.188.1
* ghostscript-x11-9.52-150000.188.1
* ghostscript-debuginfo-9.52-150000.188.1
* ghostscript-x11-debuginfo-9.52-150000.188.1
* ghostscript-devel-9.52-150000.188.1
* ghostscript-9.52-150000.188.1
## References:
* https://www.suse.com/security/cve/CVE-2023-52722.html
* https://bugzilla.suse.com/show_bug.cgi?id=1223852
1
0
SUSE-SU-2024:1592-1: important: Security update for ffmpeg-4
by OPENSUSE-SECURITY-UPDATES 10 May '24
by OPENSUSE-SECURITY-UPDATES 10 May '24
10 May '24
# Security update for ffmpeg-4
Announcement ID: SUSE-SU-2024:1592-1
Rating: important
References:
* bsc#1223256
Cross-References:
* CVE-2023-50010
CVSS scores:
* CVE-2023-50010 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products:
* openSUSE Leap 15.4
* openSUSE Leap 15.5
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Linux Enterprise Workstation Extension 15 SP5
* SUSE Package Hub 15 15-SP5
An update that solves one vulnerability can now be installed.
## Description:
This update for ffmpeg-4 fixes the following issues:
* CVE-2023-50010: Fixed an arbitrary code execution via the set_encoder_id()
(bsc#1223256).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.4
zypper in -t patch SUSE-2024-1592=1
* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-1592=1
* SUSE Package Hub 15 15-SP5
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1592=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1592=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1592=1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1592=1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1592=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1592=1
* SUSE Linux Enterprise Workstation Extension 15 SP5
zypper in -t patch SUSE-SLE-Product-WE-15-SP5-2024-1592=1
## Package List:
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* ffmpeg-4-libpostproc-devel-4.4-150400.3.27.1
* libavresample4_0-4.4-150400.3.27.1
* libswscale5_9-4.4-150400.3.27.1
* libavutil56_70-4.4-150400.3.27.1
* libswresample3_9-4.4-150400.3.27.1
* libavutil56_70-debuginfo-4.4-150400.3.27.1
* ffmpeg-4-libavfilter-devel-4.4-150400.3.27.1
* ffmpeg-4-libswresample-devel-4.4-150400.3.27.1
* libavfilter7_110-debuginfo-4.4-150400.3.27.1
* ffmpeg-4-private-devel-4.4-150400.3.27.1
* libswresample3_9-debuginfo-4.4-150400.3.27.1
* libavcodec58_134-4.4-150400.3.27.1
* libavdevice58_13-4.4-150400.3.27.1
* ffmpeg-4-4.4-150400.3.27.1
* ffmpeg-4-debuginfo-4.4-150400.3.27.1
* libavdevice58_13-debuginfo-4.4-150400.3.27.1
* libavcodec58_134-debuginfo-4.4-150400.3.27.1
* libpostproc55_9-debuginfo-4.4-150400.3.27.1
* ffmpeg-4-debugsource-4.4-150400.3.27.1
* ffmpeg-4-libswscale-devel-4.4-150400.3.27.1
* libavfilter7_110-4.4-150400.3.27.1
* libpostproc55_9-4.4-150400.3.27.1
* ffmpeg-4-libavformat-devel-4.4-150400.3.27.1
* ffmpeg-4-libavresample-devel-4.4-150400.3.27.1
* ffmpeg-4-libavutil-devel-4.4-150400.3.27.1
* libavresample4_0-debuginfo-4.4-150400.3.27.1
* ffmpeg-4-libavdevice-devel-4.4-150400.3.27.1
* libswscale5_9-debuginfo-4.4-150400.3.27.1
* libavformat58_76-4.4-150400.3.27.1
* ffmpeg-4-libavcodec-devel-4.4-150400.3.27.1
* libavformat58_76-debuginfo-4.4-150400.3.27.1
* openSUSE Leap 15.4 (x86_64)
* libavfilter7_110-32bit-debuginfo-4.4-150400.3.27.1
* libavcodec58_134-32bit-debuginfo-4.4-150400.3.27.1
* libavfilter7_110-32bit-4.4-150400.3.27.1
* libpostproc55_9-32bit-debuginfo-4.4-150400.3.27.1
* libavutil56_70-32bit-4.4-150400.3.27.1
* libavformat58_76-32bit-4.4-150400.3.27.1
* libswscale5_9-32bit-4.4-150400.3.27.1
* libavresample4_0-32bit-4.4-150400.3.27.1
* libswscale5_9-32bit-debuginfo-4.4-150400.3.27.1
* libavcodec58_134-32bit-4.4-150400.3.27.1
* libavformat58_76-32bit-debuginfo-4.4-150400.3.27.1
* libavdevice58_13-32bit-debuginfo-4.4-150400.3.27.1
* libswresample3_9-32bit-debuginfo-4.4-150400.3.27.1
* libavdevice58_13-32bit-4.4-150400.3.27.1
* libswresample3_9-32bit-4.4-150400.3.27.1
* libpostproc55_9-32bit-4.4-150400.3.27.1
* libavresample4_0-32bit-debuginfo-4.4-150400.3.27.1
* libavutil56_70-32bit-debuginfo-4.4-150400.3.27.1
* openSUSE Leap 15.4 (aarch64_ilp32)
* libavfilter7_110-64bit-4.4-150400.3.27.1
* libavresample4_0-64bit-4.4-150400.3.27.1
* libavcodec58_134-64bit-debuginfo-4.4-150400.3.27.1
* libavutil56_70-64bit-4.4-150400.3.27.1
* libavdevice58_13-64bit-4.4-150400.3.27.1
* libavformat58_76-64bit-debuginfo-4.4-150400.3.27.1
* libpostproc55_9-64bit-4.4-150400.3.27.1
* libavcodec58_134-64bit-4.4-150400.3.27.1
* libswresample3_9-64bit-debuginfo-4.4-150400.3.27.1
* libavfilter7_110-64bit-debuginfo-4.4-150400.3.27.1
* libavresample4_0-64bit-debuginfo-4.4-150400.3.27.1
* libswscale5_9-64bit-4.4-150400.3.27.1
* libavformat58_76-64bit-4.4-150400.3.27.1
* libswscale5_9-64bit-debuginfo-4.4-150400.3.27.1
* libavutil56_70-64bit-debuginfo-4.4-150400.3.27.1
* libpostproc55_9-64bit-debuginfo-4.4-150400.3.27.1
* libavdevice58_13-64bit-debuginfo-4.4-150400.3.27.1
* libswresample3_9-64bit-4.4-150400.3.27.1
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* ffmpeg-4-libpostproc-devel-4.4-150400.3.27.1
* libavresample4_0-4.4-150400.3.27.1
* libswscale5_9-4.4-150400.3.27.1
* libavutil56_70-4.4-150400.3.27.1
* libswresample3_9-4.4-150400.3.27.1
* libavutil56_70-debuginfo-4.4-150400.3.27.1
* ffmpeg-4-libavfilter-devel-4.4-150400.3.27.1
* ffmpeg-4-libswresample-devel-4.4-150400.3.27.1
* libavfilter7_110-debuginfo-4.4-150400.3.27.1
* ffmpeg-4-private-devel-4.4-150400.3.27.1
* libswresample3_9-debuginfo-4.4-150400.3.27.1
* libavcodec58_134-4.4-150400.3.27.1
* libavdevice58_13-4.4-150400.3.27.1
* ffmpeg-4-4.4-150400.3.27.1
* ffmpeg-4-debuginfo-4.4-150400.3.27.1
* libavdevice58_13-debuginfo-4.4-150400.3.27.1
* libavcodec58_134-debuginfo-4.4-150400.3.27.1
* libpostproc55_9-debuginfo-4.4-150400.3.27.1
* ffmpeg-4-debugsource-4.4-150400.3.27.1
* ffmpeg-4-libswscale-devel-4.4-150400.3.27.1
* libavfilter7_110-4.4-150400.3.27.1
* libpostproc55_9-4.4-150400.3.27.1
* ffmpeg-4-libavformat-devel-4.4-150400.3.27.1
* ffmpeg-4-libavresample-devel-4.4-150400.3.27.1
* ffmpeg-4-libavutil-devel-4.4-150400.3.27.1
* libavresample4_0-debuginfo-4.4-150400.3.27.1
* ffmpeg-4-libavdevice-devel-4.4-150400.3.27.1
* libswscale5_9-debuginfo-4.4-150400.3.27.1
* libavformat58_76-4.4-150400.3.27.1
* ffmpeg-4-libavcodec-devel-4.4-150400.3.27.1
* libavformat58_76-debuginfo-4.4-150400.3.27.1
* openSUSE Leap 15.5 (x86_64)
* libavfilter7_110-32bit-debuginfo-4.4-150400.3.27.1
* libavcodec58_134-32bit-debuginfo-4.4-150400.3.27.1
* libavfilter7_110-32bit-4.4-150400.3.27.1
* libpostproc55_9-32bit-debuginfo-4.4-150400.3.27.1
* libavutil56_70-32bit-4.4-150400.3.27.1
* libavformat58_76-32bit-4.4-150400.3.27.1
* libswscale5_9-32bit-4.4-150400.3.27.1
* libavresample4_0-32bit-4.4-150400.3.27.1
* libswscale5_9-32bit-debuginfo-4.4-150400.3.27.1
* libavcodec58_134-32bit-4.4-150400.3.27.1
* libavformat58_76-32bit-debuginfo-4.4-150400.3.27.1
* libavdevice58_13-32bit-debuginfo-4.4-150400.3.27.1
* libswresample3_9-32bit-debuginfo-4.4-150400.3.27.1
* libavdevice58_13-32bit-4.4-150400.3.27.1
* libswresample3_9-32bit-4.4-150400.3.27.1
* libpostproc55_9-32bit-4.4-150400.3.27.1
* libavresample4_0-32bit-debuginfo-4.4-150400.3.27.1
* libavutil56_70-32bit-debuginfo-4.4-150400.3.27.1
* SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x x86_64)
* ffmpeg-4-libpostproc-devel-4.4-150400.3.27.1
* libavresample4_0-4.4-150400.3.27.1
* libswscale5_9-4.4-150400.3.27.1
* libavutil56_70-4.4-150400.3.27.1
* libswresample3_9-4.4-150400.3.27.1
* libavutil56_70-debuginfo-4.4-150400.3.27.1
* ffmpeg-4-libavfilter-devel-4.4-150400.3.27.1
* ffmpeg-4-libswresample-devel-4.4-150400.3.27.1
* libavfilter7_110-debuginfo-4.4-150400.3.27.1
* ffmpeg-4-private-devel-4.4-150400.3.27.1
* libswresample3_9-debuginfo-4.4-150400.3.27.1
* libavcodec58_134-4.4-150400.3.27.1
* libavdevice58_13-4.4-150400.3.27.1
* ffmpeg-4-4.4-150400.3.27.1
* ffmpeg-4-debuginfo-4.4-150400.3.27.1
* libavdevice58_13-debuginfo-4.4-150400.3.27.1
* libavcodec58_134-debuginfo-4.4-150400.3.27.1
* libpostproc55_9-debuginfo-4.4-150400.3.27.1
* ffmpeg-4-debugsource-4.4-150400.3.27.1
* ffmpeg-4-libswscale-devel-4.4-150400.3.27.1
* libavfilter7_110-4.4-150400.3.27.1
* libpostproc55_9-4.4-150400.3.27.1
* ffmpeg-4-libavformat-devel-4.4-150400.3.27.1
* ffmpeg-4-libavresample-devel-4.4-150400.3.27.1
* ffmpeg-4-libavutil-devel-4.4-150400.3.27.1
* libavresample4_0-debuginfo-4.4-150400.3.27.1
* ffmpeg-4-libavdevice-devel-4.4-150400.3.27.1
* libswscale5_9-debuginfo-4.4-150400.3.27.1
* libavformat58_76-4.4-150400.3.27.1
* ffmpeg-4-libavcodec-devel-4.4-150400.3.27.1
* libavformat58_76-debuginfo-4.4-150400.3.27.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* libpostproc55_9-4.4-150400.3.27.1
* ffmpeg-4-debuginfo-4.4-150400.3.27.1
* libavcodec58_134-debuginfo-4.4-150400.3.27.1
* libpostproc55_9-debuginfo-4.4-150400.3.27.1
* libswresample3_9-debuginfo-4.4-150400.3.27.1
* ffmpeg-4-debugsource-4.4-150400.3.27.1
* libavcodec58_134-4.4-150400.3.27.1
* libavformat58_76-4.4-150400.3.27.1
* libavutil56_70-4.4-150400.3.27.1
* libswresample3_9-4.4-150400.3.27.1
* libavutil56_70-debuginfo-4.4-150400.3.27.1
* libavformat58_76-debuginfo-4.4-150400.3.27.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* libpostproc55_9-4.4-150400.3.27.1
* ffmpeg-4-debuginfo-4.4-150400.3.27.1
* libavcodec58_134-debuginfo-4.4-150400.3.27.1
* libpostproc55_9-debuginfo-4.4-150400.3.27.1
* libswresample3_9-debuginfo-4.4-150400.3.27.1
* ffmpeg-4-debugsource-4.4-150400.3.27.1
* libavcodec58_134-4.4-150400.3.27.1
* libavformat58_76-4.4-150400.3.27.1
* libavutil56_70-4.4-150400.3.27.1
* libswresample3_9-4.4-150400.3.27.1
* libavutil56_70-debuginfo-4.4-150400.3.27.1
* libavformat58_76-debuginfo-4.4-150400.3.27.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64)
* libpostproc55_9-4.4-150400.3.27.1
* ffmpeg-4-debuginfo-4.4-150400.3.27.1
* libswscale5_9-4.4-150400.3.27.1
* libavcodec58_134-debuginfo-4.4-150400.3.27.1
* libpostproc55_9-debuginfo-4.4-150400.3.27.1
* libswscale5_9-debuginfo-4.4-150400.3.27.1
* libswresample3_9-debuginfo-4.4-150400.3.27.1
* ffmpeg-4-debugsource-4.4-150400.3.27.1
* libavcodec58_134-4.4-150400.3.27.1
* libavformat58_76-4.4-150400.3.27.1
* libavutil56_70-4.4-150400.3.27.1
* libswresample3_9-4.4-150400.3.27.1
* libavutil56_70-debuginfo-4.4-150400.3.27.1
* libavformat58_76-debuginfo-4.4-150400.3.27.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x
x86_64)
* libpostproc55_9-4.4-150400.3.27.1
* ffmpeg-4-debuginfo-4.4-150400.3.27.1
* libavcodec58_134-debuginfo-4.4-150400.3.27.1
* libpostproc55_9-debuginfo-4.4-150400.3.27.1
* libswresample3_9-debuginfo-4.4-150400.3.27.1
* ffmpeg-4-debugsource-4.4-150400.3.27.1
* libavcodec58_134-4.4-150400.3.27.1
* libavformat58_76-4.4-150400.3.27.1
* libavutil56_70-4.4-150400.3.27.1
* libswresample3_9-4.4-150400.3.27.1
* libavutil56_70-debuginfo-4.4-150400.3.27.1
* libavformat58_76-debuginfo-4.4-150400.3.27.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* libpostproc55_9-4.4-150400.3.27.1
* ffmpeg-4-debuginfo-4.4-150400.3.27.1
* libavcodec58_134-debuginfo-4.4-150400.3.27.1
* libpostproc55_9-debuginfo-4.4-150400.3.27.1
* libswresample3_9-debuginfo-4.4-150400.3.27.1
* ffmpeg-4-debugsource-4.4-150400.3.27.1
* libavcodec58_134-4.4-150400.3.27.1
* libavformat58_76-4.4-150400.3.27.1
* libavutil56_70-4.4-150400.3.27.1
* libswresample3_9-4.4-150400.3.27.1
* libavutil56_70-debuginfo-4.4-150400.3.27.1
* libavformat58_76-debuginfo-4.4-150400.3.27.1
* SUSE Linux Enterprise Workstation Extension 15 SP5 (x86_64)
* ffmpeg-4-debuginfo-4.4-150400.3.27.1
* libswscale5_9-4.4-150400.3.27.1
* libavcodec58_134-debuginfo-4.4-150400.3.27.1
* libswscale5_9-debuginfo-4.4-150400.3.27.1
* libswresample3_9-debuginfo-4.4-150400.3.27.1
* ffmpeg-4-debugsource-4.4-150400.3.27.1
* libavcodec58_134-4.4-150400.3.27.1
* libavformat58_76-4.4-150400.3.27.1
* libavutil56_70-4.4-150400.3.27.1
* libswresample3_9-4.4-150400.3.27.1
* libavutil56_70-debuginfo-4.4-150400.3.27.1
* libavformat58_76-debuginfo-4.4-150400.3.27.1
## References:
* https://www.suse.com/security/cve/CVE-2023-50010.html
* https://bugzilla.suse.com/show_bug.cgi?id=1223256
1
0
09 May '24
# Security update for sssd
Announcement ID: SUSE-SU-2024:1578-1
Rating: important
References:
* bsc#1223100
Cross-References:
* CVE-2023-3758
CVSS scores:
* CVE-2023-3758 ( SUSE ): 7.1 CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products:
* openSUSE Leap 15.4
* openSUSE Leap Micro 5.3
* openSUSE Leap Micro 5.4
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Micro 5.3
* SUSE Linux Enterprise Micro 5.4
* SUSE Linux Enterprise Micro for Rancher 5.3
* SUSE Linux Enterprise Micro for Rancher 5.4
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Manager Proxy 4.3
* SUSE Manager Retail Branch Server 4.3
* SUSE Manager Server 4.3
An update that solves one vulnerability can now be installed.
## Description:
This update for sssd fixes the following issues:
* CVE-2023-3758: Fixed race condition during authorization that lead to GPO
policies functioning inconsistently (bsc#1223100)
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1578=1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1578=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1578=1
* SUSE Manager Proxy 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-1578=1
* SUSE Manager Retail Branch Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-
Server-4.3-2024-1578=1
* SUSE Manager Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-1578=1
* openSUSE Leap 15.4
zypper in -t patch SUSE-2024-1578=1
* openSUSE Leap Micro 5.3
zypper in -t patch openSUSE-Leap-Micro-5.3-2024-1578=1
* openSUSE Leap Micro 5.4
zypper in -t patch openSUSE-Leap-Micro-5.4-2024-1578=1
* SUSE Linux Enterprise Micro for Rancher 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2024-1578=1
* SUSE Linux Enterprise Micro 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2024-1578=1
* SUSE Linux Enterprise Micro for Rancher 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2024-1578=1
* SUSE Linux Enterprise Micro 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2024-1578=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1578=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1578=1
## Package List:
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64)
* libipa_hbac0-2.5.2-150400.4.27.1
* sssd-dbus-debuginfo-2.5.2-150400.4.27.1
* sssd-krb5-common-debuginfo-2.5.2-150400.4.27.1
* sssd-tools-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap-devel-2.5.2-150400.4.27.1
* sssd-proxy-2.5.2-150400.4.27.1
* sssd-common-32bit-2.5.2-150400.4.27.1
* sssd-krb5-2.5.2-150400.4.27.1
* libsss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_idmap0-2.5.2-150400.4.27.1
* libsss_simpleifp0-2.5.2-150400.4.27.1
* sssd-tools-2.5.2-150400.4.27.1
* libsss_certmap-devel-2.5.2-150400.4.27.1
* sssd-ldap-debuginfo-2.5.2-150400.4.27.1
* sssd-ipa-debuginfo-2.5.2-150400.4.27.1
* sssd-winbind-idmap-debuginfo-2.5.2-150400.4.27.1
* libsss_certmap0-2.5.2-150400.4.27.1
* sssd-kcm-2.5.2-150400.4.27.1
* libipa_hbac-devel-2.5.2-150400.4.27.1
* python3-sssd-config-debuginfo-2.5.2-150400.4.27.1
* libsss_simpleifp-devel-2.5.2-150400.4.27.1
* libsss_certmap0-debuginfo-2.5.2-150400.4.27.1
* python3-sssd-config-2.5.2-150400.4.27.1
* libsss_nss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap0-2.5.2-150400.4.27.1
* sssd-common-32bit-debuginfo-2.5.2-150400.4.27.1
* sssd-krb5-debuginfo-2.5.2-150400.4.27.1
* sssd-ad-debuginfo-2.5.2-150400.4.27.1
* sssd-ldap-2.5.2-150400.4.27.1
* sssd-dbus-2.5.2-150400.4.27.1
* sssd-ipa-2.5.2-150400.4.27.1
* libsss_idmap-devel-2.5.2-150400.4.27.1
* sssd-krb5-common-2.5.2-150400.4.27.1
* sssd-proxy-debuginfo-2.5.2-150400.4.27.1
* libsss_simpleifp0-debuginfo-2.5.2-150400.4.27.1
* sssd-2.5.2-150400.4.27.1
* sssd-common-debuginfo-2.5.2-150400.4.27.1
* sssd-common-2.5.2-150400.4.27.1
* sssd-debugsource-2.5.2-150400.4.27.1
* sssd-ad-2.5.2-150400.4.27.1
* sssd-kcm-debuginfo-2.5.2-150400.4.27.1
* libipa_hbac0-debuginfo-2.5.2-150400.4.27.1
* sssd-winbind-idmap-2.5.2-150400.4.27.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x
x86_64)
* libipa_hbac0-2.5.2-150400.4.27.1
* sssd-dbus-debuginfo-2.5.2-150400.4.27.1
* sssd-krb5-common-debuginfo-2.5.2-150400.4.27.1
* sssd-tools-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap-devel-2.5.2-150400.4.27.1
* sssd-proxy-2.5.2-150400.4.27.1
* sssd-krb5-2.5.2-150400.4.27.1
* libsss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_idmap0-2.5.2-150400.4.27.1
* libsss_simpleifp0-2.5.2-150400.4.27.1
* sssd-tools-2.5.2-150400.4.27.1
* libsss_certmap-devel-2.5.2-150400.4.27.1
* sssd-ldap-debuginfo-2.5.2-150400.4.27.1
* sssd-ipa-debuginfo-2.5.2-150400.4.27.1
* sssd-winbind-idmap-debuginfo-2.5.2-150400.4.27.1
* libsss_certmap0-2.5.2-150400.4.27.1
* sssd-kcm-2.5.2-150400.4.27.1
* libipa_hbac-devel-2.5.2-150400.4.27.1
* python3-sssd-config-debuginfo-2.5.2-150400.4.27.1
* libsss_simpleifp-devel-2.5.2-150400.4.27.1
* libsss_certmap0-debuginfo-2.5.2-150400.4.27.1
* python3-sssd-config-2.5.2-150400.4.27.1
* libsss_nss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap0-2.5.2-150400.4.27.1
* sssd-krb5-debuginfo-2.5.2-150400.4.27.1
* sssd-ad-debuginfo-2.5.2-150400.4.27.1
* sssd-ldap-2.5.2-150400.4.27.1
* sssd-dbus-2.5.2-150400.4.27.1
* sssd-ipa-2.5.2-150400.4.27.1
* libsss_idmap-devel-2.5.2-150400.4.27.1
* sssd-krb5-common-2.5.2-150400.4.27.1
* sssd-proxy-debuginfo-2.5.2-150400.4.27.1
* libsss_simpleifp0-debuginfo-2.5.2-150400.4.27.1
* sssd-2.5.2-150400.4.27.1
* sssd-common-debuginfo-2.5.2-150400.4.27.1
* sssd-common-2.5.2-150400.4.27.1
* sssd-debugsource-2.5.2-150400.4.27.1
* sssd-ad-2.5.2-150400.4.27.1
* sssd-kcm-debuginfo-2.5.2-150400.4.27.1
* libipa_hbac0-debuginfo-2.5.2-150400.4.27.1
* sssd-winbind-idmap-2.5.2-150400.4.27.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (x86_64)
* sssd-common-32bit-2.5.2-150400.4.27.1
* sssd-common-32bit-debuginfo-2.5.2-150400.4.27.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* libipa_hbac0-2.5.2-150400.4.27.1
* sssd-dbus-debuginfo-2.5.2-150400.4.27.1
* sssd-krb5-common-debuginfo-2.5.2-150400.4.27.1
* sssd-tools-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap-devel-2.5.2-150400.4.27.1
* sssd-proxy-2.5.2-150400.4.27.1
* sssd-krb5-2.5.2-150400.4.27.1
* libsss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_idmap0-2.5.2-150400.4.27.1
* libsss_simpleifp0-2.5.2-150400.4.27.1
* sssd-tools-2.5.2-150400.4.27.1
* libsss_certmap-devel-2.5.2-150400.4.27.1
* sssd-ldap-debuginfo-2.5.2-150400.4.27.1
* sssd-ipa-debuginfo-2.5.2-150400.4.27.1
* sssd-winbind-idmap-debuginfo-2.5.2-150400.4.27.1
* libsss_certmap0-2.5.2-150400.4.27.1
* sssd-kcm-2.5.2-150400.4.27.1
* libipa_hbac-devel-2.5.2-150400.4.27.1
* python3-sssd-config-debuginfo-2.5.2-150400.4.27.1
* libsss_simpleifp-devel-2.5.2-150400.4.27.1
* libsss_certmap0-debuginfo-2.5.2-150400.4.27.1
* python3-sssd-config-2.5.2-150400.4.27.1
* libsss_nss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap0-2.5.2-150400.4.27.1
* sssd-krb5-debuginfo-2.5.2-150400.4.27.1
* sssd-ad-debuginfo-2.5.2-150400.4.27.1
* sssd-ldap-2.5.2-150400.4.27.1
* sssd-dbus-2.5.2-150400.4.27.1
* sssd-ipa-2.5.2-150400.4.27.1
* libsss_idmap-devel-2.5.2-150400.4.27.1
* sssd-krb5-common-2.5.2-150400.4.27.1
* sssd-proxy-debuginfo-2.5.2-150400.4.27.1
* libsss_simpleifp0-debuginfo-2.5.2-150400.4.27.1
* sssd-2.5.2-150400.4.27.1
* sssd-common-debuginfo-2.5.2-150400.4.27.1
* sssd-common-2.5.2-150400.4.27.1
* sssd-debugsource-2.5.2-150400.4.27.1
* sssd-ad-2.5.2-150400.4.27.1
* sssd-kcm-debuginfo-2.5.2-150400.4.27.1
* libipa_hbac0-debuginfo-2.5.2-150400.4.27.1
* sssd-winbind-idmap-2.5.2-150400.4.27.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64)
* sssd-common-32bit-2.5.2-150400.4.27.1
* sssd-common-32bit-debuginfo-2.5.2-150400.4.27.1
* SUSE Manager Proxy 4.3 (x86_64)
* libipa_hbac0-2.5.2-150400.4.27.1
* sssd-dbus-debuginfo-2.5.2-150400.4.27.1
* sssd-krb5-common-debuginfo-2.5.2-150400.4.27.1
* sssd-tools-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap-devel-2.5.2-150400.4.27.1
* sssd-proxy-2.5.2-150400.4.27.1
* sssd-common-32bit-2.5.2-150400.4.27.1
* sssd-krb5-2.5.2-150400.4.27.1
* libsss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_idmap0-2.5.2-150400.4.27.1
* libsss_simpleifp0-2.5.2-150400.4.27.1
* sssd-tools-2.5.2-150400.4.27.1
* libsss_certmap-devel-2.5.2-150400.4.27.1
* sssd-ldap-debuginfo-2.5.2-150400.4.27.1
* sssd-ipa-debuginfo-2.5.2-150400.4.27.1
* sssd-winbind-idmap-debuginfo-2.5.2-150400.4.27.1
* libsss_certmap0-2.5.2-150400.4.27.1
* sssd-kcm-2.5.2-150400.4.27.1
* libipa_hbac-devel-2.5.2-150400.4.27.1
* python3-sssd-config-debuginfo-2.5.2-150400.4.27.1
* libsss_simpleifp-devel-2.5.2-150400.4.27.1
* libsss_certmap0-debuginfo-2.5.2-150400.4.27.1
* python3-sssd-config-2.5.2-150400.4.27.1
* libsss_nss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap0-2.5.2-150400.4.27.1
* sssd-common-32bit-debuginfo-2.5.2-150400.4.27.1
* sssd-krb5-debuginfo-2.5.2-150400.4.27.1
* sssd-ad-debuginfo-2.5.2-150400.4.27.1
* sssd-ldap-2.5.2-150400.4.27.1
* sssd-dbus-2.5.2-150400.4.27.1
* sssd-ipa-2.5.2-150400.4.27.1
* libsss_idmap-devel-2.5.2-150400.4.27.1
* sssd-krb5-common-2.5.2-150400.4.27.1
* sssd-proxy-debuginfo-2.5.2-150400.4.27.1
* libsss_simpleifp0-debuginfo-2.5.2-150400.4.27.1
* sssd-2.5.2-150400.4.27.1
* sssd-common-debuginfo-2.5.2-150400.4.27.1
* sssd-common-2.5.2-150400.4.27.1
* sssd-debugsource-2.5.2-150400.4.27.1
* sssd-ad-2.5.2-150400.4.27.1
* sssd-kcm-debuginfo-2.5.2-150400.4.27.1
* libipa_hbac0-debuginfo-2.5.2-150400.4.27.1
* sssd-winbind-idmap-2.5.2-150400.4.27.1
* SUSE Manager Retail Branch Server 4.3 (x86_64)
* libipa_hbac0-2.5.2-150400.4.27.1
* sssd-dbus-debuginfo-2.5.2-150400.4.27.1
* sssd-krb5-common-debuginfo-2.5.2-150400.4.27.1
* sssd-tools-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap-devel-2.5.2-150400.4.27.1
* sssd-proxy-2.5.2-150400.4.27.1
* sssd-common-32bit-2.5.2-150400.4.27.1
* sssd-krb5-2.5.2-150400.4.27.1
* libsss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_idmap0-2.5.2-150400.4.27.1
* libsss_simpleifp0-2.5.2-150400.4.27.1
* sssd-tools-2.5.2-150400.4.27.1
* libsss_certmap-devel-2.5.2-150400.4.27.1
* sssd-ldap-debuginfo-2.5.2-150400.4.27.1
* sssd-ipa-debuginfo-2.5.2-150400.4.27.1
* sssd-winbind-idmap-debuginfo-2.5.2-150400.4.27.1
* libsss_certmap0-2.5.2-150400.4.27.1
* sssd-kcm-2.5.2-150400.4.27.1
* libipa_hbac-devel-2.5.2-150400.4.27.1
* python3-sssd-config-debuginfo-2.5.2-150400.4.27.1
* libsss_simpleifp-devel-2.5.2-150400.4.27.1
* libsss_certmap0-debuginfo-2.5.2-150400.4.27.1
* python3-sssd-config-2.5.2-150400.4.27.1
* libsss_nss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap0-2.5.2-150400.4.27.1
* sssd-common-32bit-debuginfo-2.5.2-150400.4.27.1
* sssd-krb5-debuginfo-2.5.2-150400.4.27.1
* sssd-ad-debuginfo-2.5.2-150400.4.27.1
* sssd-ldap-2.5.2-150400.4.27.1
* sssd-dbus-2.5.2-150400.4.27.1
* sssd-ipa-2.5.2-150400.4.27.1
* libsss_idmap-devel-2.5.2-150400.4.27.1
* sssd-krb5-common-2.5.2-150400.4.27.1
* sssd-proxy-debuginfo-2.5.2-150400.4.27.1
* libsss_simpleifp0-debuginfo-2.5.2-150400.4.27.1
* sssd-2.5.2-150400.4.27.1
* sssd-common-debuginfo-2.5.2-150400.4.27.1
* sssd-common-2.5.2-150400.4.27.1
* sssd-debugsource-2.5.2-150400.4.27.1
* sssd-ad-2.5.2-150400.4.27.1
* sssd-kcm-debuginfo-2.5.2-150400.4.27.1
* libipa_hbac0-debuginfo-2.5.2-150400.4.27.1
* sssd-winbind-idmap-2.5.2-150400.4.27.1
* SUSE Manager Server 4.3 (ppc64le s390x x86_64)
* libipa_hbac0-2.5.2-150400.4.27.1
* sssd-dbus-debuginfo-2.5.2-150400.4.27.1
* sssd-krb5-common-debuginfo-2.5.2-150400.4.27.1
* sssd-tools-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap-devel-2.5.2-150400.4.27.1
* sssd-proxy-2.5.2-150400.4.27.1
* sssd-krb5-2.5.2-150400.4.27.1
* libsss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_idmap0-2.5.2-150400.4.27.1
* libsss_simpleifp0-2.5.2-150400.4.27.1
* sssd-tools-2.5.2-150400.4.27.1
* libsss_certmap-devel-2.5.2-150400.4.27.1
* sssd-ldap-debuginfo-2.5.2-150400.4.27.1
* sssd-ipa-debuginfo-2.5.2-150400.4.27.1
* sssd-winbind-idmap-debuginfo-2.5.2-150400.4.27.1
* libsss_certmap0-2.5.2-150400.4.27.1
* sssd-kcm-2.5.2-150400.4.27.1
* libipa_hbac-devel-2.5.2-150400.4.27.1
* python3-sssd-config-debuginfo-2.5.2-150400.4.27.1
* libsss_simpleifp-devel-2.5.2-150400.4.27.1
* libsss_certmap0-debuginfo-2.5.2-150400.4.27.1
* python3-sssd-config-2.5.2-150400.4.27.1
* libsss_nss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap0-2.5.2-150400.4.27.1
* sssd-krb5-debuginfo-2.5.2-150400.4.27.1
* sssd-ad-debuginfo-2.5.2-150400.4.27.1
* sssd-ldap-2.5.2-150400.4.27.1
* sssd-dbus-2.5.2-150400.4.27.1
* sssd-ipa-2.5.2-150400.4.27.1
* libsss_idmap-devel-2.5.2-150400.4.27.1
* sssd-krb5-common-2.5.2-150400.4.27.1
* sssd-proxy-debuginfo-2.5.2-150400.4.27.1
* libsss_simpleifp0-debuginfo-2.5.2-150400.4.27.1
* sssd-2.5.2-150400.4.27.1
* sssd-common-debuginfo-2.5.2-150400.4.27.1
* sssd-common-2.5.2-150400.4.27.1
* sssd-debugsource-2.5.2-150400.4.27.1
* sssd-ad-2.5.2-150400.4.27.1
* sssd-kcm-debuginfo-2.5.2-150400.4.27.1
* libipa_hbac0-debuginfo-2.5.2-150400.4.27.1
* sssd-winbind-idmap-2.5.2-150400.4.27.1
* SUSE Manager Server 4.3 (x86_64)
* sssd-common-32bit-2.5.2-150400.4.27.1
* sssd-common-32bit-debuginfo-2.5.2-150400.4.27.1
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* libipa_hbac0-2.5.2-150400.4.27.1
* python3-ipa_hbac-debuginfo-2.5.2-150400.4.27.1
* python3-sss_nss_idmap-debuginfo-2.5.2-150400.4.27.1
* sssd-dbus-debuginfo-2.5.2-150400.4.27.1
* sssd-krb5-common-debuginfo-2.5.2-150400.4.27.1
* sssd-tools-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap-devel-2.5.2-150400.4.27.1
* sssd-proxy-2.5.2-150400.4.27.1
* sssd-krb5-2.5.2-150400.4.27.1
* libsss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_idmap0-2.5.2-150400.4.27.1
* libsss_simpleifp0-2.5.2-150400.4.27.1
* sssd-tools-2.5.2-150400.4.27.1
* libsss_certmap-devel-2.5.2-150400.4.27.1
* python3-ipa_hbac-2.5.2-150400.4.27.1
* libnfsidmap-sss-debuginfo-2.5.2-150400.4.27.1
* sssd-ldap-debuginfo-2.5.2-150400.4.27.1
* sssd-ipa-debuginfo-2.5.2-150400.4.27.1
* python3-sss-murmur-2.5.2-150400.4.27.1
* python3-sss-murmur-debuginfo-2.5.2-150400.4.27.1
* sssd-winbind-idmap-debuginfo-2.5.2-150400.4.27.1
* libsss_certmap0-2.5.2-150400.4.27.1
* sssd-kcm-2.5.2-150400.4.27.1
* libipa_hbac-devel-2.5.2-150400.4.27.1
* libsss_simpleifp-devel-2.5.2-150400.4.27.1
* libsss_certmap0-debuginfo-2.5.2-150400.4.27.1
* python3-sssd-config-debuginfo-2.5.2-150400.4.27.1
* python3-sssd-config-2.5.2-150400.4.27.1
* libsss_nss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap0-2.5.2-150400.4.27.1
* sssd-krb5-debuginfo-2.5.2-150400.4.27.1
* sssd-ldap-2.5.2-150400.4.27.1
* sssd-dbus-2.5.2-150400.4.27.1
* sssd-ipa-2.5.2-150400.4.27.1
* python3-sss_nss_idmap-2.5.2-150400.4.27.1
* libsss_idmap-devel-2.5.2-150400.4.27.1
* sssd-krb5-common-2.5.2-150400.4.27.1
* sssd-proxy-debuginfo-2.5.2-150400.4.27.1
* libnfsidmap-sss-2.5.2-150400.4.27.1
* sssd-common-2.5.2-150400.4.27.1
* libsss_simpleifp0-debuginfo-2.5.2-150400.4.27.1
* sssd-2.5.2-150400.4.27.1
* sssd-common-debuginfo-2.5.2-150400.4.27.1
* sssd-ad-debuginfo-2.5.2-150400.4.27.1
* sssd-debugsource-2.5.2-150400.4.27.1
* sssd-ad-2.5.2-150400.4.27.1
* sssd-kcm-debuginfo-2.5.2-150400.4.27.1
* libipa_hbac0-debuginfo-2.5.2-150400.4.27.1
* sssd-winbind-idmap-2.5.2-150400.4.27.1
* openSUSE Leap 15.4 (x86_64)
* sssd-common-32bit-2.5.2-150400.4.27.1
* sssd-common-32bit-debuginfo-2.5.2-150400.4.27.1
* openSUSE Leap 15.4 (aarch64_ilp32)
* sssd-common-64bit-debuginfo-2.5.2-150400.4.27.1
* sssd-common-64bit-2.5.2-150400.4.27.1
* openSUSE Leap Micro 5.3 (aarch64 x86_64)
* libsss_nss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap0-2.5.2-150400.4.27.1
* sssd-ldap-2.5.2-150400.4.27.1
* libsss_certmap0-debuginfo-2.5.2-150400.4.27.1
* sssd-ldap-debuginfo-2.5.2-150400.4.27.1
* sssd-2.5.2-150400.4.27.1
* sssd-common-debuginfo-2.5.2-150400.4.27.1
* sssd-krb5-common-debuginfo-2.5.2-150400.4.27.1
* libsss_certmap0-2.5.2-150400.4.27.1
* sssd-krb5-common-2.5.2-150400.4.27.1
* sssd-common-2.5.2-150400.4.27.1
* sssd-debugsource-2.5.2-150400.4.27.1
* libsss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_idmap0-2.5.2-150400.4.27.1
* openSUSE Leap Micro 5.4 (aarch64 s390x x86_64)
* libsss_nss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap0-2.5.2-150400.4.27.1
* sssd-ldap-2.5.2-150400.4.27.1
* libsss_certmap0-debuginfo-2.5.2-150400.4.27.1
* sssd-ldap-debuginfo-2.5.2-150400.4.27.1
* sssd-2.5.2-150400.4.27.1
* sssd-common-debuginfo-2.5.2-150400.4.27.1
* sssd-krb5-common-debuginfo-2.5.2-150400.4.27.1
* libsss_certmap0-2.5.2-150400.4.27.1
* sssd-krb5-common-2.5.2-150400.4.27.1
* sssd-common-2.5.2-150400.4.27.1
* sssd-debugsource-2.5.2-150400.4.27.1
* libsss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_idmap0-2.5.2-150400.4.27.1
* SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64)
* libsss_nss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap0-2.5.2-150400.4.27.1
* sssd-ldap-2.5.2-150400.4.27.1
* libsss_certmap0-debuginfo-2.5.2-150400.4.27.1
* sssd-ldap-debuginfo-2.5.2-150400.4.27.1
* sssd-2.5.2-150400.4.27.1
* sssd-common-debuginfo-2.5.2-150400.4.27.1
* sssd-krb5-common-debuginfo-2.5.2-150400.4.27.1
* libsss_certmap0-2.5.2-150400.4.27.1
* sssd-krb5-common-2.5.2-150400.4.27.1
* sssd-common-2.5.2-150400.4.27.1
* sssd-debugsource-2.5.2-150400.4.27.1
* libsss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_idmap0-2.5.2-150400.4.27.1
* SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64)
* libsss_nss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap0-2.5.2-150400.4.27.1
* sssd-ldap-2.5.2-150400.4.27.1
* libsss_certmap0-debuginfo-2.5.2-150400.4.27.1
* sssd-ldap-debuginfo-2.5.2-150400.4.27.1
* sssd-2.5.2-150400.4.27.1
* sssd-common-debuginfo-2.5.2-150400.4.27.1
* sssd-krb5-common-debuginfo-2.5.2-150400.4.27.1
* libsss_certmap0-2.5.2-150400.4.27.1
* sssd-krb5-common-2.5.2-150400.4.27.1
* sssd-common-2.5.2-150400.4.27.1
* sssd-debugsource-2.5.2-150400.4.27.1
* libsss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_idmap0-2.5.2-150400.4.27.1
* SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64)
* libsss_nss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap0-2.5.2-150400.4.27.1
* sssd-ldap-2.5.2-150400.4.27.1
* libsss_certmap0-debuginfo-2.5.2-150400.4.27.1
* sssd-ldap-debuginfo-2.5.2-150400.4.27.1
* sssd-2.5.2-150400.4.27.1
* sssd-common-debuginfo-2.5.2-150400.4.27.1
* sssd-krb5-common-debuginfo-2.5.2-150400.4.27.1
* libsss_certmap0-2.5.2-150400.4.27.1
* sssd-krb5-common-2.5.2-150400.4.27.1
* sssd-common-2.5.2-150400.4.27.1
* sssd-debugsource-2.5.2-150400.4.27.1
* libsss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_idmap0-2.5.2-150400.4.27.1
* SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64)
* libsss_nss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap0-2.5.2-150400.4.27.1
* sssd-ldap-2.5.2-150400.4.27.1
* libsss_certmap0-debuginfo-2.5.2-150400.4.27.1
* sssd-ldap-debuginfo-2.5.2-150400.4.27.1
* sssd-2.5.2-150400.4.27.1
* sssd-common-debuginfo-2.5.2-150400.4.27.1
* sssd-krb5-common-debuginfo-2.5.2-150400.4.27.1
* libsss_certmap0-2.5.2-150400.4.27.1
* sssd-krb5-common-2.5.2-150400.4.27.1
* sssd-common-2.5.2-150400.4.27.1
* sssd-debugsource-2.5.2-150400.4.27.1
* libsss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_idmap0-2.5.2-150400.4.27.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* libipa_hbac0-2.5.2-150400.4.27.1
* sssd-dbus-debuginfo-2.5.2-150400.4.27.1
* sssd-krb5-common-debuginfo-2.5.2-150400.4.27.1
* sssd-tools-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap-devel-2.5.2-150400.4.27.1
* sssd-proxy-2.5.2-150400.4.27.1
* sssd-krb5-2.5.2-150400.4.27.1
* libsss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_idmap0-2.5.2-150400.4.27.1
* libsss_simpleifp0-2.5.2-150400.4.27.1
* sssd-tools-2.5.2-150400.4.27.1
* libsss_certmap-devel-2.5.2-150400.4.27.1
* sssd-ldap-debuginfo-2.5.2-150400.4.27.1
* sssd-ipa-debuginfo-2.5.2-150400.4.27.1
* sssd-winbind-idmap-debuginfo-2.5.2-150400.4.27.1
* libsss_certmap0-2.5.2-150400.4.27.1
* sssd-kcm-2.5.2-150400.4.27.1
* libipa_hbac-devel-2.5.2-150400.4.27.1
* python3-sssd-config-debuginfo-2.5.2-150400.4.27.1
* libsss_simpleifp-devel-2.5.2-150400.4.27.1
* libsss_certmap0-debuginfo-2.5.2-150400.4.27.1
* python3-sssd-config-2.5.2-150400.4.27.1
* libsss_nss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap0-2.5.2-150400.4.27.1
* sssd-krb5-debuginfo-2.5.2-150400.4.27.1
* sssd-ad-debuginfo-2.5.2-150400.4.27.1
* sssd-ldap-2.5.2-150400.4.27.1
* sssd-dbus-2.5.2-150400.4.27.1
* sssd-ipa-2.5.2-150400.4.27.1
* libsss_idmap-devel-2.5.2-150400.4.27.1
* sssd-krb5-common-2.5.2-150400.4.27.1
* sssd-proxy-debuginfo-2.5.2-150400.4.27.1
* libsss_simpleifp0-debuginfo-2.5.2-150400.4.27.1
* sssd-2.5.2-150400.4.27.1
* sssd-common-debuginfo-2.5.2-150400.4.27.1
* sssd-common-2.5.2-150400.4.27.1
* sssd-debugsource-2.5.2-150400.4.27.1
* sssd-ad-2.5.2-150400.4.27.1
* sssd-kcm-debuginfo-2.5.2-150400.4.27.1
* libipa_hbac0-debuginfo-2.5.2-150400.4.27.1
* sssd-winbind-idmap-2.5.2-150400.4.27.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (x86_64)
* sssd-common-32bit-2.5.2-150400.4.27.1
* sssd-common-32bit-debuginfo-2.5.2-150400.4.27.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* libipa_hbac0-2.5.2-150400.4.27.1
* sssd-dbus-debuginfo-2.5.2-150400.4.27.1
* sssd-krb5-common-debuginfo-2.5.2-150400.4.27.1
* sssd-tools-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap-devel-2.5.2-150400.4.27.1
* sssd-proxy-2.5.2-150400.4.27.1
* sssd-krb5-2.5.2-150400.4.27.1
* libsss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_idmap0-2.5.2-150400.4.27.1
* libsss_simpleifp0-2.5.2-150400.4.27.1
* sssd-tools-2.5.2-150400.4.27.1
* libsss_certmap-devel-2.5.2-150400.4.27.1
* sssd-ldap-debuginfo-2.5.2-150400.4.27.1
* sssd-ipa-debuginfo-2.5.2-150400.4.27.1
* sssd-winbind-idmap-debuginfo-2.5.2-150400.4.27.1
* libsss_certmap0-2.5.2-150400.4.27.1
* sssd-kcm-2.5.2-150400.4.27.1
* libipa_hbac-devel-2.5.2-150400.4.27.1
* python3-sssd-config-debuginfo-2.5.2-150400.4.27.1
* libsss_simpleifp-devel-2.5.2-150400.4.27.1
* libsss_certmap0-debuginfo-2.5.2-150400.4.27.1
* python3-sssd-config-2.5.2-150400.4.27.1
* libsss_nss_idmap0-debuginfo-2.5.2-150400.4.27.1
* libsss_nss_idmap0-2.5.2-150400.4.27.1
* sssd-krb5-debuginfo-2.5.2-150400.4.27.1
* sssd-ad-debuginfo-2.5.2-150400.4.27.1
* sssd-ldap-2.5.2-150400.4.27.1
* sssd-dbus-2.5.2-150400.4.27.1
* sssd-ipa-2.5.2-150400.4.27.1
* libsss_idmap-devel-2.5.2-150400.4.27.1
* sssd-krb5-common-2.5.2-150400.4.27.1
* sssd-proxy-debuginfo-2.5.2-150400.4.27.1
* libsss_simpleifp0-debuginfo-2.5.2-150400.4.27.1
* sssd-2.5.2-150400.4.27.1
* sssd-common-debuginfo-2.5.2-150400.4.27.1
* sssd-common-2.5.2-150400.4.27.1
* sssd-debugsource-2.5.2-150400.4.27.1
* sssd-ad-2.5.2-150400.4.27.1
* sssd-kcm-debuginfo-2.5.2-150400.4.27.1
* libipa_hbac0-debuginfo-2.5.2-150400.4.27.1
* sssd-winbind-idmap-2.5.2-150400.4.27.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64)
* sssd-common-32bit-2.5.2-150400.4.27.1
* sssd-common-32bit-debuginfo-2.5.2-150400.4.27.1
## References:
* https://www.suse.com/security/cve/CVE-2023-3758.html
* https://bugzilla.suse.com/show_bug.cgi?id=1223100
1
0
09 May '24
# Security update for sssd
Announcement ID: SUSE-SU-2024:1579-1
Rating: important
References:
* bsc#1223100
Cross-References:
* CVE-2023-3758
CVSS scores:
* CVE-2023-3758 ( SUSE ): 7.1 CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products:
* Basesystem Module 15-SP5
* openSUSE Leap 15.5
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
An update that solves one vulnerability can now be installed.
## Description:
This update for sssd fixes the following issues:
* CVE-2023-3758: Fixed race condition during authorization that lead to GPO
policies functioning inconsistently (bsc#1223100)
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2024-1579=1
* Basesystem Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1579=1
* openSUSE Leap 15.5
zypper in -t patch SUSE-2024-1579=1 openSUSE-SLE-15.5-2024-1579=1
## Package List:
* SUSE Linux Enterprise Micro 5.5 (aarch64 s390x x86_64)
* libsss_idmap0-debuginfo-2.5.2-150500.10.17.1
* sssd-common-2.5.2-150500.10.17.1
* libsss_certmap0-debuginfo-2.5.2-150500.10.17.1
* sssd-krb5-common-debuginfo-2.5.2-150500.10.17.1
* sssd-ldap-2.5.2-150500.10.17.1
* sssd-debugsource-2.5.2-150500.10.17.1
* libsss_nss_idmap0-debuginfo-2.5.2-150500.10.17.1
* sssd-2.5.2-150500.10.17.1
* sssd-common-debuginfo-2.5.2-150500.10.17.1
* sssd-ldap-debuginfo-2.5.2-150500.10.17.1
* sssd-krb5-common-2.5.2-150500.10.17.1
* libsss_idmap0-2.5.2-150500.10.17.1
* libsss_certmap0-2.5.2-150500.10.17.1
* libsss_nss_idmap0-2.5.2-150500.10.17.1
* Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* libsss_certmap0-debuginfo-2.5.2-150500.10.17.1
* sssd-proxy-debuginfo-2.5.2-150500.10.17.1
* libsss_nss_idmap0-debuginfo-2.5.2-150500.10.17.1
* sssd-winbind-idmap-debuginfo-2.5.2-150500.10.17.1
* libsss_idmap-devel-2.5.2-150500.10.17.1
* sssd-dbus-debuginfo-2.5.2-150500.10.17.1
* libsss_certmap0-2.5.2-150500.10.17.1
* libsss_nss_idmap0-2.5.2-150500.10.17.1
* libsss_idmap0-debuginfo-2.5.2-150500.10.17.1
* libipa_hbac-devel-2.5.2-150500.10.17.1
* libsss_simpleifp-devel-2.5.2-150500.10.17.1
* sssd-common-2.5.2-150500.10.17.1
* sssd-ipa-2.5.2-150500.10.17.1
* sssd-debugsource-2.5.2-150500.10.17.1
* sssd-ad-2.5.2-150500.10.17.1
* python3-sssd-config-2.5.2-150500.10.17.1
* libsss_certmap-devel-2.5.2-150500.10.17.1
* sssd-krb5-common-2.5.2-150500.10.17.1
* sssd-ad-debuginfo-2.5.2-150500.10.17.1
* sssd-krb5-2.5.2-150500.10.17.1
* sssd-krb5-debuginfo-2.5.2-150500.10.17.1
* sssd-tools-2.5.2-150500.10.17.1
* sssd-krb5-common-debuginfo-2.5.2-150500.10.17.1
* sssd-winbind-idmap-2.5.2-150500.10.17.1
* sssd-ipa-debuginfo-2.5.2-150500.10.17.1
* libsss_nss_idmap-devel-2.5.2-150500.10.17.1
* sssd-tools-debuginfo-2.5.2-150500.10.17.1
* python3-sssd-config-debuginfo-2.5.2-150500.10.17.1
* sssd-kcm-2.5.2-150500.10.17.1
* sssd-ldap-2.5.2-150500.10.17.1
* libsss_simpleifp0-debuginfo-2.5.2-150500.10.17.1
* sssd-dbus-2.5.2-150500.10.17.1
* sssd-proxy-2.5.2-150500.10.17.1
* sssd-2.5.2-150500.10.17.1
* sssd-common-debuginfo-2.5.2-150500.10.17.1
* sssd-ldap-debuginfo-2.5.2-150500.10.17.1
* sssd-kcm-debuginfo-2.5.2-150500.10.17.1
* libsss_simpleifp0-2.5.2-150500.10.17.1
* libsss_idmap0-2.5.2-150500.10.17.1
* libipa_hbac0-2.5.2-150500.10.17.1
* libipa_hbac0-debuginfo-2.5.2-150500.10.17.1
* Basesystem Module 15-SP5 (x86_64)
* sssd-common-32bit-2.5.2-150500.10.17.1
* sssd-common-32bit-debuginfo-2.5.2-150500.10.17.1
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586)
* libsss_certmap0-debuginfo-2.5.2-150500.10.17.1
* sssd-proxy-debuginfo-2.5.2-150500.10.17.1
* libsss_nss_idmap0-debuginfo-2.5.2-150500.10.17.1
* sssd-winbind-idmap-debuginfo-2.5.2-150500.10.17.1
* libsss_idmap-devel-2.5.2-150500.10.17.1
* python3-sss_nss_idmap-2.5.2-150500.10.17.1
* sssd-dbus-debuginfo-2.5.2-150500.10.17.1
* libsss_certmap0-2.5.2-150500.10.17.1
* libsss_nss_idmap0-2.5.2-150500.10.17.1
* libsss_idmap0-debuginfo-2.5.2-150500.10.17.1
* libipa_hbac-devel-2.5.2-150500.10.17.1
* libsss_simpleifp-devel-2.5.2-150500.10.17.1
* sssd-common-2.5.2-150500.10.17.1
* sssd-ipa-2.5.2-150500.10.17.1
* python3-ipa_hbac-debuginfo-2.5.2-150500.10.17.1
* sssd-debugsource-2.5.2-150500.10.17.1
* libnfsidmap-sss-2.5.2-150500.10.17.1
* sssd-ad-2.5.2-150500.10.17.1
* python3-sssd-config-2.5.2-150500.10.17.1
* libsss_certmap-devel-2.5.2-150500.10.17.1
* sssd-krb5-common-2.5.2-150500.10.17.1
* sssd-ad-debuginfo-2.5.2-150500.10.17.1
* python3-ipa_hbac-2.5.2-150500.10.17.1
* sssd-krb5-2.5.2-150500.10.17.1
* sssd-krb5-debuginfo-2.5.2-150500.10.17.1
* sssd-tools-2.5.2-150500.10.17.1
* sssd-krb5-common-debuginfo-2.5.2-150500.10.17.1
* sssd-winbind-idmap-2.5.2-150500.10.17.1
* sssd-ipa-debuginfo-2.5.2-150500.10.17.1
* libsss_nss_idmap-devel-2.5.2-150500.10.17.1
* sssd-tools-debuginfo-2.5.2-150500.10.17.1
* python3-sssd-config-debuginfo-2.5.2-150500.10.17.1
* sssd-kcm-2.5.2-150500.10.17.1
* sssd-ldap-2.5.2-150500.10.17.1
* libsss_simpleifp0-debuginfo-2.5.2-150500.10.17.1
* sssd-dbus-2.5.2-150500.10.17.1
* sssd-proxy-2.5.2-150500.10.17.1
* libnfsidmap-sss-debuginfo-2.5.2-150500.10.17.1
* sssd-2.5.2-150500.10.17.1
* sssd-common-debuginfo-2.5.2-150500.10.17.1
* sssd-ldap-debuginfo-2.5.2-150500.10.17.1
* sssd-kcm-debuginfo-2.5.2-150500.10.17.1
* python3-sss_nss_idmap-debuginfo-2.5.2-150500.10.17.1
* libsss_simpleifp0-2.5.2-150500.10.17.1
* python3-sss-murmur-2.5.2-150500.10.17.1
* python3-sss-murmur-debuginfo-2.5.2-150500.10.17.1
* libsss_idmap0-2.5.2-150500.10.17.1
* libipa_hbac0-2.5.2-150500.10.17.1
* libipa_hbac0-debuginfo-2.5.2-150500.10.17.1
* openSUSE Leap 15.5 (x86_64)
* sssd-common-32bit-2.5.2-150500.10.17.1
* sssd-common-32bit-debuginfo-2.5.2-150500.10.17.1
* openSUSE Leap 15.5 (aarch64_ilp32)
* sssd-common-64bit-debuginfo-2.5.2-150500.10.17.1
* sssd-common-64bit-2.5.2-150500.10.17.1
## References:
* https://www.suse.com/security/cve/CVE-2023-3758.html
* https://bugzilla.suse.com/show_bug.cgi?id=1223100
1
0