openSUSE Security Announce
Threads by month
- ----- 2024 -----
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2023 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2022 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2021 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2020 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2019 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2018 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2017 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2016 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2015 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2014 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2013 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2012 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2011 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2010 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2009 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2008 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2007 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2006 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2005 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2004 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2003 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2002 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2001 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 2000 -----
- December
- November
- October
- September
- August
- July
- June
- May
- April
- March
- February
- January
- ----- 1999 -----
- December
- November
- October
- September
- August
August 2024
- 3 participants
- 81 discussions
Fwd: SUSE-RU-2024:2017-1: important: Recommended update for transactional-update
by Thomas Röther 20 Aug '24
by Thomas Röther 20 Aug '24
20 Aug '24
-------- Ursprüngliche Nachricht --------
Von: "Thomas Röther" <thomas(a)roether.at>
Gesendet: 20. August 2024 15:07:08 MESZ
An: opensuse-updates+unsubscribe(a)opensuse.org
Betreff: Fwd: SUSE-RU-2024:2017-1: important: Recommended update for transactional-update
-------- Ursprüngliche Nachricht --------
Von: OPENSUSE-UPDATES <null(a)suse.de>
Gesendet: 20. August 2024 14:31:05 MESZ
An: updates(a)lists.opensuse.org
Betreff: SUSE-RU-2024:2017-1: important: Recommended update for transactional-update
# Recommended update for transactional-update
Announcement ID: SUSE-RU-2024:2017-1
Rating: important
References:
* bsc#1221346
Affected Products:
* openSUSE Leap Micro 5.3
* SUSE Linux Enterprise Micro 5.3
* SUSE Linux Enterprise Micro for Rancher 5.3
An update that has one fix can now be installed.
## Description:
This update for transactional-update fixes the following issues:
* tukit: Properly handle overlay syncing failures: If the system would not be
rebooted and several snapshots accumulated in the meantime, it was possible
that the previous base snapshot "required for /etc syncing" was deleted
already. In that case changes in /etc might have been reset
(gh#openSUSE/transactional-update#116) (gh#kube-hetzner/terraform-hcloud-
kube-hetzner#1287)
* Always use zypper of installed system (bsc#1221346)
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap Micro 5.3
zypper in -t patch openSUSE-Leap-Micro-5.3-2024-2017=1
* SUSE Linux Enterprise Micro for Rancher 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2024-2017=1
* SUSE Linux Enterprise Micro 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2024-2017=1
## Package List:
* openSUSE Leap Micro 5.3 (noarch)
* transactional-update-zypp-config-4.1.8-150400.3.9.3
* dracut-transactional-update-4.1.8-150400.3.9.3
* openSUSE Leap Micro 5.3 (aarch64 x86_64)
* tukitd-debuginfo-4.1.8-150400.3.9.3
* libtukit4-debuginfo-4.1.8-150400.3.9.3
* tukit-4.1.8-150400.3.9.3
* tukitd-4.1.8-150400.3.9.3
* transactional-update-debugsource-4.1.8-150400.3.9.3
* transactional-update-debuginfo-4.1.8-150400.3.9.3
* libtukit4-4.1.8-150400.3.9.3
* tukit-debuginfo-4.1.8-150400.3.9.3
* transactional-update-4.1.8-150400.3.9.3
* SUSE Linux Enterprise Micro for Rancher 5.3 (noarch)
* transactional-update-zypp-config-4.1.8-150400.3.9.3
* dracut-transactional-update-4.1.8-150400.3.9.3
* SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64)
* tukitd-debuginfo-4.1.8-150400.3.9.3
* libtukit4-debuginfo-4.1.8-150400.3.9.3
* tukit-4.1.8-150400.3.9.3
* tukitd-4.1.8-150400.3.9.3
* transactional-update-debugsource-4.1.8-150400.3.9.3
* transactional-update-debuginfo-4.1.8-150400.3.9.3
* libtukit4-4.1.8-150400.3.9.3
* tukit-debuginfo-4.1.8-150400.3.9.3
* transactional-update-4.1.8-150400.3.9.3
* SUSE Linux Enterprise Micro 5.3 (noarch)
* transactional-update-zypp-config-4.1.8-150400.3.9.3
* dracut-transactional-update-4.1.8-150400.3.9.3
* SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64)
* tukitd-debuginfo-4.1.8-150400.3.9.3
* libtukit4-debuginfo-4.1.8-150400.3.9.3
* tukit-4.1.8-150400.3.9.3
* tukitd-4.1.8-150400.3.9.3
* transactional-update-debugsource-4.1.8-150400.3.9.3
* transactional-update-debuginfo-4.1.8-150400.3.9.3
* libtukit4-4.1.8-150400.3.9.3
* tukit-debuginfo-4.1.8-150400.3.9.3
* transactional-update-4.1.8-150400.3.9.3
## References:
* https://bugzilla.suse.com/show_bug.cgi?id=1221346
1
0
20 Aug '24
# Security update for qemu
Announcement ID: SUSE-SU-2024:2977-1
Rating: important
References:
* bsc#1212968
* bsc#1215311
* bsc#1227322
Cross-References:
* CVE-2023-2861
* CVE-2024-4467
CVSS scores:
* CVE-2023-2861 ( SUSE ): 7.5 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
* CVE-2023-2861 ( NVD ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
* CVE-2024-4467 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products:
* openSUSE Leap 15.3
* SUSE Enterprise Storage 7.1
* SUSE Linux Enterprise High Performance Computing 15 SP3
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
* SUSE Linux Enterprise Micro 5.1
* SUSE Linux Enterprise Micro 5.2
* SUSE Linux Enterprise Micro for Rancher 5.2
* SUSE Linux Enterprise Server 15 SP3
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
* SUSE Linux Enterprise Server for SAP Applications 15 SP3
An update that solves two vulnerabilities and has one security fix can now be
installed.
## Description:
This update for qemu fixes the following issues:
* CVE-2023-2861: Fixed improper access control on special files via 9p
protocol (bsc#1212968)
* CVE-2024-4467: Fixed denial of service and file read/write via qemu-img info
command (bsc#1227322)
Other fixes: \- Fixed qemu build compilation with binutils 2.41 upgrade
(bsc#1215311)
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.3
zypper in -t patch SUSE-2024-2977=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2977=1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2977=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP3
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2977=1
* SUSE Enterprise Storage 7.1
zypper in -t patch SUSE-Storage-7.1-2024-2977=1
* SUSE Linux Enterprise Micro 5.1
zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-2977=1
* SUSE Linux Enterprise Micro 5.2
zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2977=1
* SUSE Linux Enterprise Micro for Rancher 5.2
zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-2977=1
## Package List:
* openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586)
* qemu-chardev-spice-debuginfo-5.2.0-150300.130.1
* qemu-ui-spice-core-debuginfo-5.2.0-150300.130.1
* qemu-block-iscsi-debuginfo-5.2.0-150300.130.1
* qemu-vhost-user-gpu-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-vga-5.2.0-150300.130.1
* qemu-vhost-user-gpu-5.2.0-150300.130.1
* qemu-tools-5.2.0-150300.130.1
* qemu-debuginfo-5.2.0-150300.130.1
* qemu-ui-gtk-debuginfo-5.2.0-150300.130.1
* qemu-ivshmem-tools-debuginfo-5.2.0-150300.130.1
* qemu-s390x-debuginfo-5.2.0-150300.130.1
* qemu-ui-gtk-5.2.0-150300.130.1
* qemu-linux-user-debuginfo-5.2.0-150300.130.1
* qemu-block-nfs-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-qxl-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-vga-debuginfo-5.2.0-150300.130.1
* qemu-block-ssh-5.2.0-150300.130.1
* qemu-ui-spice-app-debuginfo-5.2.0-150300.130.1
* qemu-block-gluster-debuginfo-5.2.0-150300.130.1
* qemu-hw-s390x-virtio-gpu-ccw-debuginfo-5.2.0-150300.130.1
* qemu-audio-alsa-debuginfo-5.2.0-150300.130.1
* qemu-ppc-5.2.0-150300.130.1
* qemu-block-dmg-debuginfo-5.2.0-150300.130.1
* qemu-chardev-baum-debuginfo-5.2.0-150300.130.1
* qemu-chardev-spice-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-5.2.0-150300.130.1
* qemu-arm-debuginfo-5.2.0-150300.130.1
* qemu-5.2.0-150300.130.1
* qemu-hw-usb-redirect-5.2.0-150300.130.1
* qemu-ui-spice-app-5.2.0-150300.130.1
* qemu-x86-debuginfo-5.2.0-150300.130.1
* qemu-testsuite-5.2.0-150300.130.2
* qemu-ui-opengl-debuginfo-5.2.0-150300.130.1
* qemu-ui-curses-5.2.0-150300.130.1
* qemu-hw-usb-smartcard-5.2.0-150300.130.1
* qemu-block-nfs-5.2.0-150300.130.1
* qemu-audio-pa-5.2.0-150300.130.1
* qemu-audio-pa-debuginfo-5.2.0-150300.130.1
* qemu-ui-spice-core-5.2.0-150300.130.1
* qemu-lang-5.2.0-150300.130.1
* qemu-ppc-debuginfo-5.2.0-150300.130.1
* qemu-ui-curses-debuginfo-5.2.0-150300.130.1
* qemu-arm-5.2.0-150300.130.1
* qemu-ivshmem-tools-5.2.0-150300.130.1
* qemu-ui-opengl-5.2.0-150300.130.1
* qemu-audio-alsa-5.2.0-150300.130.1
* qemu-block-gluster-5.2.0-150300.130.1
* qemu-audio-spice-debuginfo-5.2.0-150300.130.1
* qemu-block-iscsi-5.2.0-150300.130.1
* qemu-x86-5.2.0-150300.130.1
* qemu-chardev-baum-5.2.0-150300.130.1
* qemu-ksm-5.2.0-150300.130.1
* qemu-extra-5.2.0-150300.130.1
* qemu-s390x-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-debuginfo-5.2.0-150300.130.1
* qemu-block-dmg-5.2.0-150300.130.1
* qemu-hw-usb-redirect-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-qxl-5.2.0-150300.130.1
* qemu-debugsource-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-pci-debuginfo-5.2.0-150300.130.1
* qemu-linux-user-5.2.0-150300.130.1
* qemu-linux-user-debugsource-5.2.0-150300.130.1
* qemu-block-ssh-debuginfo-5.2.0-150300.130.1
* qemu-extra-debuginfo-5.2.0-150300.130.1
* qemu-audio-spice-5.2.0-150300.130.1
* qemu-block-curl-debuginfo-5.2.0-150300.130.1
* qemu-guest-agent-debuginfo-5.2.0-150300.130.1
* qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.130.1
* qemu-hw-usb-smartcard-debuginfo-5.2.0-150300.130.1
* qemu-tools-debuginfo-5.2.0-150300.130.1
* qemu-guest-agent-5.2.0-150300.130.1
* qemu-block-curl-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-pci-5.2.0-150300.130.1
* openSUSE Leap 15.3 (s390x x86_64 i586)
* qemu-kvm-5.2.0-150300.130.1
* openSUSE Leap 15.3 (noarch)
* qemu-sgabios-8-150300.130.1
* qemu-seabios-1.14.0_0_g155821a-150300.130.1
* qemu-SLOF-5.2.0-150300.130.1
* qemu-skiboot-5.2.0-150300.130.1
* qemu-ipxe-1.0.0+-150300.130.1
* qemu-microvm-5.2.0-150300.130.1
* qemu-vgabios-1.14.0_0_g155821a-150300.130.1
* openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64)
* qemu-block-rbd-5.2.0-150300.130.1
* qemu-block-rbd-debuginfo-5.2.0-150300.130.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64
x86_64)
* qemu-chardev-spice-debuginfo-5.2.0-150300.130.1
* qemu-ui-spice-core-debuginfo-5.2.0-150300.130.1
* qemu-block-iscsi-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-vga-5.2.0-150300.130.1
* qemu-tools-5.2.0-150300.130.1
* qemu-debuginfo-5.2.0-150300.130.1
* qemu-ui-gtk-debuginfo-5.2.0-150300.130.1
* qemu-ui-gtk-5.2.0-150300.130.1
* qemu-hw-display-virtio-vga-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-qxl-debuginfo-5.2.0-150300.130.1
* qemu-block-ssh-5.2.0-150300.130.1
* qemu-ui-spice-app-debuginfo-5.2.0-150300.130.1
* qemu-chardev-baum-debuginfo-5.2.0-150300.130.1
* qemu-ui-spice-app-5.2.0-150300.130.1
* qemu-chardev-spice-5.2.0-150300.130.1
* qemu-5.2.0-150300.130.1
* qemu-hw-usb-redirect-5.2.0-150300.130.1
* qemu-ui-opengl-debuginfo-5.2.0-150300.130.1
* qemu-ui-curses-5.2.0-150300.130.1
* qemu-ui-spice-core-5.2.0-150300.130.1
* qemu-lang-5.2.0-150300.130.1
* qemu-ui-curses-debuginfo-5.2.0-150300.130.1
* qemu-ui-opengl-5.2.0-150300.130.1
* qemu-audio-spice-debuginfo-5.2.0-150300.130.1
* qemu-block-iscsi-5.2.0-150300.130.1
* qemu-chardev-baum-5.2.0-150300.130.1
* qemu-ksm-5.2.0-150300.130.1
* qemu-block-rbd-debuginfo-5.2.0-150300.130.1
* qemu-hw-usb-redirect-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-qxl-5.2.0-150300.130.1
* qemu-debugsource-5.2.0-150300.130.1
* qemu-block-ssh-debuginfo-5.2.0-150300.130.1
* qemu-audio-spice-5.2.0-150300.130.1
* qemu-block-curl-debuginfo-5.2.0-150300.130.1
* qemu-guest-agent-debuginfo-5.2.0-150300.130.1
* qemu-tools-debuginfo-5.2.0-150300.130.1
* qemu-block-rbd-5.2.0-150300.130.1
* qemu-guest-agent-5.2.0-150300.130.1
* qemu-block-curl-5.2.0-150300.130.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64)
* qemu-arm-debuginfo-5.2.0-150300.130.1
* qemu-arm-5.2.0-150300.130.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch)
* qemu-sgabios-8-150300.130.1
* qemu-seabios-1.14.0_0_g155821a-150300.130.1
* qemu-ipxe-1.0.0+-150300.130.1
* qemu-vgabios-1.14.0_0_g155821a-150300.130.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (x86_64)
* qemu-audio-alsa-5.2.0-150300.130.1
* qemu-audio-alsa-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-5.2.0-150300.130.1
* qemu-kvm-5.2.0-150300.130.1
* qemu-x86-5.2.0-150300.130.1
* qemu-x86-debuginfo-5.2.0-150300.130.1
* qemu-audio-pa-5.2.0-150300.130.1
* qemu-audio-pa-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-pci-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-pci-debuginfo-5.2.0-150300.130.1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x
x86_64)
* qemu-block-iscsi-debuginfo-5.2.0-150300.130.1
* qemu-tools-5.2.0-150300.130.1
* qemu-debuginfo-5.2.0-150300.130.1
* qemu-block-ssh-5.2.0-150300.130.1
* qemu-chardev-baum-debuginfo-5.2.0-150300.130.1
* qemu-5.2.0-150300.130.1
* qemu-ui-curses-5.2.0-150300.130.1
* qemu-lang-5.2.0-150300.130.1
* qemu-ui-curses-debuginfo-5.2.0-150300.130.1
* qemu-block-iscsi-5.2.0-150300.130.1
* qemu-chardev-baum-5.2.0-150300.130.1
* qemu-ksm-5.2.0-150300.130.1
* qemu-block-rbd-debuginfo-5.2.0-150300.130.1
* qemu-debugsource-5.2.0-150300.130.1
* qemu-block-ssh-debuginfo-5.2.0-150300.130.1
* qemu-block-curl-debuginfo-5.2.0-150300.130.1
* qemu-guest-agent-debuginfo-5.2.0-150300.130.1
* qemu-tools-debuginfo-5.2.0-150300.130.1
* qemu-block-rbd-5.2.0-150300.130.1
* qemu-guest-agent-5.2.0-150300.130.1
* qemu-block-curl-5.2.0-150300.130.1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64)
* qemu-arm-debuginfo-5.2.0-150300.130.1
* qemu-arm-5.2.0-150300.130.1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le x86_64)
* qemu-ui-opengl-5.2.0-150300.130.1
* qemu-chardev-spice-debuginfo-5.2.0-150300.130.1
* qemu-ui-spice-core-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-vga-5.2.0-150300.130.1
* qemu-ui-spice-app-5.2.0-150300.130.1
* qemu-chardev-spice-5.2.0-150300.130.1
* qemu-audio-spice-debuginfo-5.2.0-150300.130.1
* qemu-audio-spice-5.2.0-150300.130.1
* qemu-hw-usb-redirect-5.2.0-150300.130.1
* qemu-ui-gtk-debuginfo-5.2.0-150300.130.1
* qemu-ui-spice-core-5.2.0-150300.130.1
* qemu-ui-gtk-5.2.0-150300.130.1
* qemu-ui-opengl-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-vga-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-qxl-debuginfo-5.2.0-150300.130.1
* qemu-ui-spice-app-debuginfo-5.2.0-150300.130.1
* qemu-hw-usb-redirect-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-qxl-5.2.0-150300.130.1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch)
* qemu-sgabios-8-150300.130.1
* qemu-seabios-1.14.0_0_g155821a-150300.130.1
* qemu-SLOF-5.2.0-150300.130.1
* qemu-skiboot-5.2.0-150300.130.1
* qemu-ipxe-1.0.0+-150300.130.1
* qemu-vgabios-1.14.0_0_g155821a-150300.130.1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (ppc64le)
* qemu-ppc-debuginfo-5.2.0-150300.130.1
* qemu-ppc-5.2.0-150300.130.1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (s390x x86_64)
* qemu-kvm-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-pci-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-pci-debuginfo-5.2.0-150300.130.1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (s390x)
* qemu-s390x-debuginfo-5.2.0-150300.130.1
* qemu-hw-s390x-virtio-gpu-ccw-debuginfo-5.2.0-150300.130.1
* qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.130.1
* qemu-s390x-5.2.0-150300.130.1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (x86_64)
* qemu-audio-alsa-5.2.0-150300.130.1
* qemu-audio-alsa-debuginfo-5.2.0-150300.130.1
* qemu-x86-5.2.0-150300.130.1
* qemu-x86-debuginfo-5.2.0-150300.130.1
* qemu-audio-pa-5.2.0-150300.130.1
* qemu-audio-pa-debuginfo-5.2.0-150300.130.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64)
* qemu-chardev-spice-debuginfo-5.2.0-150300.130.1
* qemu-ui-spice-core-debuginfo-5.2.0-150300.130.1
* qemu-block-iscsi-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-vga-5.2.0-150300.130.1
* qemu-tools-5.2.0-150300.130.1
* qemu-debuginfo-5.2.0-150300.130.1
* qemu-ui-gtk-debuginfo-5.2.0-150300.130.1
* qemu-ui-gtk-5.2.0-150300.130.1
* qemu-hw-display-virtio-vga-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-qxl-debuginfo-5.2.0-150300.130.1
* qemu-block-ssh-5.2.0-150300.130.1
* qemu-ui-spice-app-debuginfo-5.2.0-150300.130.1
* qemu-chardev-baum-debuginfo-5.2.0-150300.130.1
* qemu-ui-spice-app-5.2.0-150300.130.1
* qemu-chardev-spice-5.2.0-150300.130.1
* qemu-5.2.0-150300.130.1
* qemu-hw-usb-redirect-5.2.0-150300.130.1
* qemu-ui-opengl-debuginfo-5.2.0-150300.130.1
* qemu-ui-curses-5.2.0-150300.130.1
* qemu-ui-spice-core-5.2.0-150300.130.1
* qemu-lang-5.2.0-150300.130.1
* qemu-ui-curses-debuginfo-5.2.0-150300.130.1
* qemu-ui-opengl-5.2.0-150300.130.1
* qemu-audio-spice-debuginfo-5.2.0-150300.130.1
* qemu-block-iscsi-5.2.0-150300.130.1
* qemu-chardev-baum-5.2.0-150300.130.1
* qemu-ksm-5.2.0-150300.130.1
* qemu-block-rbd-debuginfo-5.2.0-150300.130.1
* qemu-hw-usb-redirect-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-qxl-5.2.0-150300.130.1
* qemu-debugsource-5.2.0-150300.130.1
* qemu-block-ssh-debuginfo-5.2.0-150300.130.1
* qemu-audio-spice-5.2.0-150300.130.1
* qemu-block-curl-debuginfo-5.2.0-150300.130.1
* qemu-guest-agent-debuginfo-5.2.0-150300.130.1
* qemu-tools-debuginfo-5.2.0-150300.130.1
* qemu-block-rbd-5.2.0-150300.130.1
* qemu-guest-agent-5.2.0-150300.130.1
* qemu-block-curl-5.2.0-150300.130.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch)
* qemu-sgabios-8-150300.130.1
* qemu-seabios-1.14.0_0_g155821a-150300.130.1
* qemu-SLOF-5.2.0-150300.130.1
* qemu-skiboot-5.2.0-150300.130.1
* qemu-ipxe-1.0.0+-150300.130.1
* qemu-vgabios-1.14.0_0_g155821a-150300.130.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le)
* qemu-ppc-debuginfo-5.2.0-150300.130.1
* qemu-ppc-5.2.0-150300.130.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP3 (x86_64)
* qemu-audio-alsa-5.2.0-150300.130.1
* qemu-audio-alsa-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-5.2.0-150300.130.1
* qemu-kvm-5.2.0-150300.130.1
* qemu-x86-5.2.0-150300.130.1
* qemu-x86-debuginfo-5.2.0-150300.130.1
* qemu-audio-pa-5.2.0-150300.130.1
* qemu-audio-pa-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-pci-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-pci-debuginfo-5.2.0-150300.130.1
* SUSE Enterprise Storage 7.1 (aarch64 x86_64)
* qemu-chardev-spice-debuginfo-5.2.0-150300.130.1
* qemu-ui-spice-core-debuginfo-5.2.0-150300.130.1
* qemu-block-iscsi-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-vga-5.2.0-150300.130.1
* qemu-tools-5.2.0-150300.130.1
* qemu-debuginfo-5.2.0-150300.130.1
* qemu-ui-gtk-debuginfo-5.2.0-150300.130.1
* qemu-ui-gtk-5.2.0-150300.130.1
* qemu-hw-display-virtio-vga-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-qxl-debuginfo-5.2.0-150300.130.1
* qemu-block-ssh-5.2.0-150300.130.1
* qemu-ui-spice-app-debuginfo-5.2.0-150300.130.1
* qemu-chardev-baum-debuginfo-5.2.0-150300.130.1
* qemu-ui-spice-app-5.2.0-150300.130.1
* qemu-chardev-spice-5.2.0-150300.130.1
* qemu-5.2.0-150300.130.1
* qemu-hw-usb-redirect-5.2.0-150300.130.1
* qemu-ui-opengl-debuginfo-5.2.0-150300.130.1
* qemu-ui-curses-5.2.0-150300.130.1
* qemu-ui-spice-core-5.2.0-150300.130.1
* qemu-lang-5.2.0-150300.130.1
* qemu-ui-curses-debuginfo-5.2.0-150300.130.1
* qemu-ui-opengl-5.2.0-150300.130.1
* qemu-audio-spice-debuginfo-5.2.0-150300.130.1
* qemu-block-iscsi-5.2.0-150300.130.1
* qemu-chardev-baum-5.2.0-150300.130.1
* qemu-ksm-5.2.0-150300.130.1
* qemu-block-rbd-debuginfo-5.2.0-150300.130.1
* qemu-hw-usb-redirect-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-qxl-5.2.0-150300.130.1
* qemu-debugsource-5.2.0-150300.130.1
* qemu-block-ssh-debuginfo-5.2.0-150300.130.1
* qemu-audio-spice-5.2.0-150300.130.1
* qemu-block-curl-debuginfo-5.2.0-150300.130.1
* qemu-guest-agent-debuginfo-5.2.0-150300.130.1
* qemu-tools-debuginfo-5.2.0-150300.130.1
* qemu-block-rbd-5.2.0-150300.130.1
* qemu-guest-agent-5.2.0-150300.130.1
* qemu-block-curl-5.2.0-150300.130.1
* SUSE Enterprise Storage 7.1 (aarch64)
* qemu-arm-debuginfo-5.2.0-150300.130.1
* qemu-arm-5.2.0-150300.130.1
* SUSE Enterprise Storage 7.1 (noarch)
* qemu-sgabios-8-150300.130.1
* qemu-seabios-1.14.0_0_g155821a-150300.130.1
* qemu-ipxe-1.0.0+-150300.130.1
* qemu-vgabios-1.14.0_0_g155821a-150300.130.1
* SUSE Enterprise Storage 7.1 (x86_64)
* qemu-audio-alsa-5.2.0-150300.130.1
* qemu-audio-alsa-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-5.2.0-150300.130.1
* qemu-kvm-5.2.0-150300.130.1
* qemu-x86-5.2.0-150300.130.1
* qemu-x86-debuginfo-5.2.0-150300.130.1
* qemu-audio-pa-5.2.0-150300.130.1
* qemu-audio-pa-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-pci-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-pci-debuginfo-5.2.0-150300.130.1
* SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64)
* qemu-tools-5.2.0-150300.130.1
* qemu-debuginfo-5.2.0-150300.130.1
* qemu-5.2.0-150300.130.1
* qemu-tools-debuginfo-5.2.0-150300.130.1
* qemu-debugsource-5.2.0-150300.130.1
* SUSE Linux Enterprise Micro 5.1 (aarch64)
* qemu-arm-debuginfo-5.2.0-150300.130.1
* qemu-arm-5.2.0-150300.130.1
* SUSE Linux Enterprise Micro 5.1 (noarch)
* qemu-sgabios-8-150300.130.1
* qemu-seabios-1.14.0_0_g155821a-150300.130.1
* qemu-ipxe-1.0.0+-150300.130.1
* qemu-vgabios-1.14.0_0_g155821a-150300.130.1
* SUSE Linux Enterprise Micro 5.1 (s390x)
* qemu-s390x-debuginfo-5.2.0-150300.130.1
* qemu-s390x-5.2.0-150300.130.1
* SUSE Linux Enterprise Micro 5.1 (x86_64)
* qemu-x86-debuginfo-5.2.0-150300.130.1
* qemu-x86-5.2.0-150300.130.1
* SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64)
* qemu-chardev-spice-debuginfo-5.2.0-150300.130.1
* qemu-ui-spice-core-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-vga-5.2.0-150300.130.1
* qemu-tools-5.2.0-150300.130.1
* qemu-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-vga-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-qxl-debuginfo-5.2.0-150300.130.1
* qemu-chardev-spice-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-5.2.0-150300.130.1
* qemu-5.2.0-150300.130.1
* qemu-hw-usb-redirect-5.2.0-150300.130.1
* qemu-ui-opengl-debuginfo-5.2.0-150300.130.1
* qemu-ui-spice-core-5.2.0-150300.130.1
* qemu-ui-opengl-5.2.0-150300.130.1
* qemu-audio-spice-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-debuginfo-5.2.0-150300.130.1
* qemu-hw-usb-redirect-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-qxl-5.2.0-150300.130.1
* qemu-debugsource-5.2.0-150300.130.1
* qemu-audio-spice-5.2.0-150300.130.1
* qemu-guest-agent-debuginfo-5.2.0-150300.130.1
* qemu-tools-debuginfo-5.2.0-150300.130.1
* qemu-guest-agent-5.2.0-150300.130.1
* SUSE Linux Enterprise Micro 5.2 (aarch64)
* qemu-arm-debuginfo-5.2.0-150300.130.1
* qemu-arm-5.2.0-150300.130.1
* SUSE Linux Enterprise Micro 5.2 (noarch)
* qemu-sgabios-8-150300.130.1
* qemu-seabios-1.14.0_0_g155821a-150300.130.1
* qemu-ipxe-1.0.0+-150300.130.1
* qemu-vgabios-1.14.0_0_g155821a-150300.130.1
* SUSE Linux Enterprise Micro 5.2 (s390x)
* qemu-s390x-debuginfo-5.2.0-150300.130.1
* qemu-s390x-5.2.0-150300.130.1
* SUSE Linux Enterprise Micro 5.2 (x86_64)
* qemu-x86-debuginfo-5.2.0-150300.130.1
* qemu-x86-5.2.0-150300.130.1
* SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64)
* qemu-chardev-spice-debuginfo-5.2.0-150300.130.1
* qemu-ui-spice-core-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-vga-5.2.0-150300.130.1
* qemu-tools-5.2.0-150300.130.1
* qemu-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-vga-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-qxl-debuginfo-5.2.0-150300.130.1
* qemu-chardev-spice-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-5.2.0-150300.130.1
* qemu-5.2.0-150300.130.1
* qemu-hw-usb-redirect-5.2.0-150300.130.1
* qemu-ui-opengl-debuginfo-5.2.0-150300.130.1
* qemu-ui-spice-core-5.2.0-150300.130.1
* qemu-ui-opengl-5.2.0-150300.130.1
* qemu-audio-spice-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-virtio-gpu-debuginfo-5.2.0-150300.130.1
* qemu-hw-usb-redirect-debuginfo-5.2.0-150300.130.1
* qemu-hw-display-qxl-5.2.0-150300.130.1
* qemu-debugsource-5.2.0-150300.130.1
* qemu-audio-spice-5.2.0-150300.130.1
* qemu-guest-agent-debuginfo-5.2.0-150300.130.1
* qemu-tools-debuginfo-5.2.0-150300.130.1
* qemu-guest-agent-5.2.0-150300.130.1
* SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64)
* qemu-arm-debuginfo-5.2.0-150300.130.1
* qemu-arm-5.2.0-150300.130.1
* SUSE Linux Enterprise Micro for Rancher 5.2 (noarch)
* qemu-sgabios-8-150300.130.1
* qemu-seabios-1.14.0_0_g155821a-150300.130.1
* qemu-ipxe-1.0.0+-150300.130.1
* qemu-vgabios-1.14.0_0_g155821a-150300.130.1
* SUSE Linux Enterprise Micro for Rancher 5.2 (s390x)
* qemu-s390x-debuginfo-5.2.0-150300.130.1
* qemu-s390x-5.2.0-150300.130.1
* SUSE Linux Enterprise Micro for Rancher 5.2 (x86_64)
* qemu-x86-debuginfo-5.2.0-150300.130.1
* qemu-x86-5.2.0-150300.130.1
## References:
* https://www.suse.com/security/cve/CVE-2023-2861.html
* https://www.suse.com/security/cve/CVE-2024-4467.html
* https://bugzilla.suse.com/show_bug.cgi?id=1212968
* https://bugzilla.suse.com/show_bug.cgi?id=1215311
* https://bugzilla.suse.com/show_bug.cgi?id=1227322
1
0
SUSE-SU-2024:1499-2: low: Security update for java-17-openjdk
by OPENSUSE-SECURITY-UPDATES 20 Aug '24
by OPENSUSE-SECURITY-UPDATES 20 Aug '24
20 Aug '24
# Security update for java-17-openjdk
Announcement ID: SUSE-SU-2024:1499-2
Rating: low
References:
* bsc#1213470
* bsc#1222979
* bsc#1222983
* bsc#1222986
* bsc#1222987
Cross-References:
* CVE-2024-21011
* CVE-2024-21012
* CVE-2024-21068
* CVE-2024-21094
CVSS scores:
* CVE-2024-21011 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2024-21012 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2024-21068 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2024-21094 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
Affected Products:
* Basesystem Module 15-SP6
* Legacy Module 15-SP6
* openSUSE Leap 15.6
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
An update that solves four vulnerabilities and has one security fix can now be
installed.
## Description:
This update for java-17-openjdk fixes the following issues:
* CVE-2024-21011: Fixed denial of service due to long Exception message
logging (JDK-8319851,bsc#1222979)
* CVE-2024-21012: Fixed unauthorized data modification due HTTP/2 client
improper reverse DNS lookup (JDK-8315708,bsc#1222987)
* CVE-2024-21068: Fixed integer overflow in C1 compiler address generation
(JDK-8322122,bsc#1222983)
* CVE-2024-21094: Fixed unauthorized data modification due to C2 compilation
failure with "Exceeded _node_regs array"
(JDK-8317507,JDK-8325348,bsc#1222986)
Other fixes: \- Update to upstream tag jdk-17.0.11+9 (April 2024 CPU) * Security
fixes \+ JDK-8318340: Improve RSA key implementations * Other changes \+
JDK-6928542: Chinese characters in RTF are not decoded \+ JDK-7132796: [macosx]
closed/javax/swing/JComboBox/4517214/ /bug4517214.java fails on MacOS \+
JDK-7148092: [macosx] When Alt+down arrow key is pressed, the combobox popup
does not appear. \+ JDK-7167356: (javac) investigate failing tests in
JavacParserTest \+ JDK-8054022: HttpURLConnection timeouts with Expect:
100-Continue and no chunking \+ JDK-8054572: [macosx] JComboBox paints the
border incorrectly \+ JDK-8169475: WheelModifier.java fails by timeout \+
JDK-8205076: [17u] Inet6AddressImpl.c: `lookupIfLocalHost` accesses `int
InetAddress.preferIPv6Address` as a boolean \+ JDK-8209595:
MonitorVmStartTerminate.java timed out \+ JDK-8210410: Refactor
java.util.Currency:i18n shell tests to plain java tests \+ JDK-8261404:
Class.getReflectionFactory() is not thread-safe \+ JDK-8261837: SIGSEGV in
ciVirtualCallTypeData::translate_from \+ JDK-8263256: Test
java/net/Inet6Address/serialize/ /Inet6AddressSerializationTest.java fails due
to dynamic reconfigurations of network interface during test \+ JDK-8269258:
java/net/httpclient/ManyRequestsLegacy.java failed with connection timeout \+
JDK-8271118: C2: StressGCM should have higher priority than frequency-based
policy \+ JDK-8271616: oddPart in MutableBigInteger::mutableModInverse contains
info on final result \+ JDK-8272811: Document the effects of building with
_GNU_SOURCE in os_posix.hpp \+ JDK-8272853: improve `JavadocTester.runTests` \+
JDK-8273454: C2: Transform (-a) _(-b) into a_ b \+ JDK-8274060: C2: Incorrect
computation after JDK-8273454 \+ JDK-8274122:
java/io/File/createTempFile/SpecialTempFile.java fails in Windows 11 \+
JDK-8274621: NullPointerException because listenAddress[0] is null \+
JDK-8274632: Possible pointer overflow in PretouchTask chunk claiming \+
JDK-8274634: Use String.equals instead of String.compareTo in java.desktop \+
JDK-8276125: RunThese24H.java SIGSEGV in JfrThreadGroup::thread_group_id \+
JDK-8278028: [test-library] Warnings cleanup of the test library \+ JDK-8278312:
Update SimpleSSLContext keystore to use SANs for localhost IP addresses \+
JDK-8278363: Create extented container test groups \+ JDK-8280241: (aio)
AsynchronousSocketChannel init fails in IPv6 only Windows env \+ JDK-8281377:
Remove vmTestbase/nsk/monitoring/ThreadMXBean/
/ThreadInfo/Deadlock/JavaDeadlock001/TestDescription.java from problemlist. \+
JDK-8281543: Remove unused code/headerfile dtraceAttacher.hpp \+ JDK-8281585:
Remove unused imports under test/lib and jtreg/gc \+ JDK-8283400: [macos] a11y :
Screen magnifier does not reflect JRadioButton value change \+ JDK-8283626:
AArch64: Set relocInfo::offset_unit to 4 \+ JDK-8283994: Make Xerces
DatatypeException stackless \+ JDK-8286312: Stop mixing signed and unsigned
types in bit operations \+ JDK-8286846: test/jdk/javax/swing/plaf/aqua/
/CustomComboBoxFocusTest.java fails on mac aarch64 \+ JDK-8287832:
jdk/jfr/event/runtime/TestActiveSettingEvent.java failed with "Expected two
batches of Active Setting events" \+ JDK-8288663: JFR: Disabling the
JfrThreadSampler commits only a partially disabled state \+ JDK-8288846: misc
tests fail "assert(ms < 1000) failed: Un-interruptable sleep, short time use
only" \+ JDK-8289764: gc/lock tests failed with "OutOfMemoryError: Java heap
space: failed reallocation of scalar replaced objects" \+ JDK-8290041:
ModuleDescriptor.hashCode is inconsistent \+ JDK-8290203: ProblemList
vmTestbase/nsk/jvmti/scenarios/ /capability/CM03/cm03t001/TestDescription.java
on linux-all \+ JDK-8290399: [macos] Aqua LAF does not fire an action event if
combo box menu is displayed \+ JDK-8292458: Atomic operations on scoped enums
don't build with clang \+ JDK-8292946: GC lock/jni/jnilock001 test failed
"assert(gch->gc_cause() == GCCause::_scavenge_alot ||
!gch->incremental_collection_failed()) failed: Twice in a row" \+ JDK-8293117:
Add atomic bitset functions \+ JDK-8293547: Add relaxed add_and_fetch for macos
aarch64 atomics \+ JDK-8294158: HTML formatting for PassFailJFrame instructions
\+ JDK-8294254: [macOS] javax/swing/plaf/aqua/ /CustomComboBoxFocusTest.java
failure \+ JDK-8294535: Add screen capture functionality to PassFailJFrame \+
JDK-8295068: SSLEngine throws NPE parsing CertificateRequests \+ JDK-8295124:
Atomic::add to pointer type may return wrong value \+ JDK-8295274:
HelidonAppTest.java fails "assert(event->should_commit()) failed: invariant"
from compiled frame" \+ JDK-8296631: NSS tests failing on OL9 linux-aarch64
hosts \+ JDK-8297968: Crash in PrintOptoAssembly \+ JDK-8298087: XML Schema
Validation reports an required attribute twice via ErrorHandler \+ JDK-8299494:
Test vmTestbase/nsk/stress/except/except011.java failed:
ExceptionInInitializerError: target class not found \+ JDK-8300269: The selected
item in an editable JComboBox with titled border is not visible in Aqua LAF \+
JDK-8301306: java/net/httpclient/ _fail with -Xcomp \+ JDK-8301310: The
SendRawSysexMessage test may cause a JVM crash \+ JDK-8301787:
java/net/httpclient/SpecialHeadersTest failing after JDK-8301306 \+ JDK-8301846:
Invalid TargetDataLine after screen lock when using JFileChooser or COM library
\+ JDK-8302017: Allocate BadPaddingException only if it will be thrown \+
JDK-8302149: Speed up compiler/jsr292/methodHandleExceptions/
/TestAMEnotNPE.java \+ JDK-8303605: Memory leaks in Metaspace gtests \+
JDK-8304074: [JMX] Add an approximation of total bytes allocated on the Java
heap by the JVM \+ JDK-8304696: Duplicate class names in dynamicArchive tests
can lead to test failure \+ JDK-8305356: Fix ignored bad CompileCommands in
tests \+ JDK-8305900: Use loopback IP addresses in security policy files of
httpclient tests \+ JDK-8305906: HttpClient may use incorrect key when finding
pooled HTTP/2 connection for IPv6 address \+ JDK-8305962: update jcstress to
0.16 \+ JDK-8305972: Update XML Security for Java to 3.0.2 \+ JDK-8306014:
Update javax.net.ssl TLS tests to use SSLContextTemplate or SSLEngineTemplate \+
JDK-8306408: Fix the format of several tables in building.md \+ JDK-8307185:
pkcs11 native libraries make JNI calls into java code while holding GC lock \+
JDK-8307926: Support byte-sized atomic bitset operations \+ JDK-8307955: Prefer
to PTRACE_GETREGSET instead of PTRACE_GETREGS in method
'ps_proc.c::process_get_lwp_regs' \+ JDK-8307990: jspawnhelper must close its
writing side of a pipe before reading from it \+ JDK-8308043: Deadlock in
TestCSLocker.java due to blocking GC while allocating \+ JDK-8308245: Add
-proc:full to describe current default annotation processing policy \+
JDK-8308336: Test java/net/HttpURLConnection/
/HttpURLConnectionExpectContinueTest.java failed: java.net.BindException:
Address already in use \+ JDK-8309302: java/net/Socket/Timeouts.java fails with
AssertionError on test temporal post condition \+ JDK-8309305:
sun/security/ssl/SSLSocketImpl/ /BlockedAsyncClose.java fails with jtreg test
timeout \+ JDK-8309462: [AIX] vmTestbase/nsk/jvmti/RunAgentThread/
/agentthr001/TestDescription.java crashing due to empty while loop \+
JDK-8309733: [macOS, Accessibility] VoiceOver: Incorrect announcements of
JRadioButton \+ JDK-8309870: Using -proc:full should be considered requesting
explicit annotation processing \+ JDK-8310106: sun.security.ssl.SSLHandshake
.getHandshakeProducer() incorrectly checks handshakeConsumers \+ JDK-8310238:
[test bug] javax/swing/JTableHeader/6889007/ /bug6889007.java fails \+
JDK-8310380: Handle problems in core-related tests on macOS when codesign tool
does not work \+ JDK-8310631: test/jdk/sun/nio/cs/TestCharsetMapping.java is
spuriously passing \+ JDK-8310807:
java/nio/channels/DatagramChannel/Connect.java timed out \+ JDK-8310838: Correct
range notations in MethodTypeDesc specification \+ JDK-8310844: [AArch64] C1
compilation fails because monitor offset in OSR buffer is too large for
immediate \+ JDK-8310923: Refactor Currency tests to use JUnit \+ JDK-8311081:
KeytoolReaderP12Test.java fail on localized Windows platform \+ JDK-8311160:
[macOS, Accessibility] VoiceOver: No announcements on JRadioButtonMenuItem and
JCheckBoxMenuItem \+ JDK-8311581: Remove obsolete code and comments in
TestLVT.java \+ JDK-8311645: Memory leak in jspawnhelper spawnChild after
JDK-8307990 \+ JDK-8311986: Disable runtime/os/TestTracePageSizes.java for
ShenandoahGC \+ JDK-8312428: PKCS11 tests fail with NSS 3.91 \+ JDK-8312434:
SPECjvm2008/xml.transform with CDS fails with "can't seal package nu.xom" \+
JDK-8313081: MonitoringSupport_lock should be unconditionally initialized after
8304074 \+ JDK-8313082: Enable CreateCoredumpOnCrash for testing in makefiles \+
JDK-8313206: PKCS11 tests silently skip execution \+ JDK-8313575: Refactor
PKCS11Test tests \+ JDK-8313621: test/jdk/jdk/internal/math/FloatingDecimal/
/TestFloatingDecimal should use RandomFactory \+ JDK-8313643: Update HarfBuzz to
8.2.2 \+ JDK-8313816: Accessing jmethodID might lead to spurious crashes \+
JDK-8314164: java/net/HttpURLConnection/
/HttpURLConnectionExpectContinueTest.java fails intermittently in timeout \+
JDK-8314220: Configurable InlineCacheBuffer size \+ JDK-8314830:
runtime/ErrorHandling/ tests ignore external VM flags \+ JDK-8315034:
File.mkdirs() occasionally fails to create folders on Windows shared folder \+
JDK-8315042: NPE in PKCS7.parseOldSignedData \+ JDK-8315594: Open source few
headless Swing misc tests \+ JDK-8315600: Open source few more headless Swing
misc tests \+ JDK-8315602: Open source swing security manager test \+
JDK-8315611: Open source swing text/html and tree test \+ JDK-8315680:
java/lang/ref/ReachabilityFenceTest.java should run with -Xbatch \+ JDK-8315731:
Open source several Swing Text related tests \+ JDK-8315761: Open source few
swing JList and JMenuBar tests \+ JDK-8315920: C2: "control input must dominate
current control" assert failure \+ JDK-8315986: [macos14]
javax/swing/JMenuItem/4654927/ /bug4654927.java: component must be showing on
the screen to determine its location \+ JDK-8316001: GC: Make
TestArrayAllocatorMallocLimit use createTestJvm \+ JDK-8316028: Update FreeType
to 2.13.2 \+ JDK-8316030: Update Libpng to 1.6.40 \+ JDK-8316106: Open source
few swing JInternalFrame and JMenuBar tests \+ JDK-8316304: (fs) Add support for
BasicFileAttributes .creationTime() for Linux \+ JDK-8316392:
compiler/interpreter/ /TestVerifyStackAfterDeopt.java failed with SIGBUS in
PcDescContainer::find_pc_desc_internal \+ JDK-8316414: C2: large byte array
clone triggers "failed: malformed control flow" assertion failure on linux-x86
\+ JDK-8316415: Parallelize sun/security/rsa/SignedObjectChain.java subtests \+
JDK-8316418: containers/docker/TestMemoryWithCgroupV1.java get OOM killed with
Parallel GC \+ JDK-8316445: Mark com/sun/management/HotSpotDiagnosticMXBean/
/CheckOrigin.java as vm.flagless \+ JDK-8316679: C2 SuperWord: wrong result,
load should not be moved before store if not comparable \+ JDK-8316693: Simplify
at-requires checkDockerSupport() \+ JDK-8316929: Shenandoah: Shenandoah
degenerated GC and full GC need to cleanup old OopMapCache entries \+
JDK-8316947: Write a test to check textArea triggers MouseEntered/MouseExited
events properly \+ JDK-8317039: Enable specifying the JDK used to run jtreg \+
JDK-8317144: Exclude sun/security/pkcs11/sslecc/ /ClientJSSEServerJSSE.java on
Linux ppc64le \+ JDK-8317307: test/jdk/com/sun/jndi/ldap/
/LdapPoolTimeoutTest.java fails with ConnectException: Connection timed out: no
further information \+ JDK-8317603: Improve exception messages thrown by
sun.nio.ch.Net native methods (win) \+ JDK-8317771: [macos14] Expand/collapse a
JTree using keyboard freezes the application in macOS 14 Sonoma \+ JDK-8317807:
JAVA_FLAGS removed from jtreg running in JDK-8317039 \+ JDK-8317960: [17u]
Excessive CPU usage on AbstractQueuedSynchronized.isEnqueued \+ JDK-8318154:
Improve stability of WheelModifier.java test \+ JDK-8318183: C2: VM may crash
after hitting node limit \+ JDK-8318410: jdk/java/lang/instrument/BootClassPath/
/BootClassPathTest.sh fails on Japanese Windows \+ JDK-8318468:
compiler/tiered/LevelTransitionTest.java fails with -XX:CompileThreshold=100
-XX:TieredStopAtLevel=1 \+ JDK-8318490: Increase timeout for JDK tests that are
close to the limit when run with libgraal \+ JDK-8318603: Parallelize
sun/java2d/marlin/ClipShapeTest.java \+ JDK-8318607: Enable parallelism in
vmTestbase/nsk/stress/jni tests \+ JDK-8318608: Enable parallelism in
vmTestbase/nsk/stress/threads tests \+ JDK-8318689: jtreg is confused when
folder name is the same as the test name \+ JDK-8318736:
com/sun/jdi/JdwpOnThrowTest.java failed with "transport error 202: bind failed:
Address already in use" \+ JDK-8318951: Additional negative value check in JPEG
decoding \+ JDK-8318955: Add ReleaseIntArrayElements in
Java_sun_awt_X11_XlibWrapper_SetBitmapShape XlbWrapper.c to early return \+
JDK-8318957: Enhance agentlib:jdwp help output by info about allow option \+
JDK-8318961: increase javacserver connection timeout values and max retry
attempts \+ JDK-8318971: Better Error Handling for Jar Tool When Processing Non-
existent Files \+ JDK-8318983: Fix comment typo in PKCS12Passwd.java \+
JDK-8319124: Update XML Security for Java to 3.0.3 \+ JDK-8319213:
Compatibility.java reads both stdout and stderr of JdkUtils \+ JDK-8319436:
Proxy.newProxyInstance throws NPE if loader is null and interface not visible
from class loader \+ JDK-8319456: jdk/jfr/event/gc/collection/
/TestGCCauseWith[Serial|Parallel].java : GC cause 'GCLocker Initiated GC' not in
the valid causes \+ JDK-8319668: Fixup of jar filename typo in BadFactoryTest.sh
\+ JDK-8319922: libCreationTimeHelper.so fails to link in JDK 21 \+ JDK-8319961:
JvmtiEnvBase doesn't zero _ext_event_callbacks \+ JDK-8320001: javac crashes
while adding type annotations to the return type of a constructor \+
JDK-8320168: handle setsocktopt return values \+ JDK-8320208: Update Public
Suffix List to b5bf572 \+ JDK-8320300: Adjust hs_err output in malloc/mmap error
cases \+ JDK-8320363: ppc64 TypeEntries::type_unknown logic looks wrong, missed
optimization opportunity \+ JDK-8320597: RSA signature verification fails on
signed data that does not encode params correctly \+ JDK-8320798: Console read
line with zero out should zero out underlying buffer \+ JDK-8320885: Bump update
version for OpenJDK: jdk-17.0.11 \+ JDK-8320921: GHA: Parallelize
hotspot_compiler test jobs \+ JDK-8320937: support latest VS2022 MSC_VER in
abstract_vm_version.cpp \+ JDK-8321151: JDK-8294427 breaks Windows L&F on all
older Windows versions \+ JDK-8321215: Incorrect x86 instruction encoding for
VSIB addressing mode \+ JDK-8321408: Add Certainly roots R1 and E1 \+
JDK-8321480: ISO 4217 Amendment 176 Update \+ JDK-8321599: Data loss in AVX3
Base64 decoding \+ JDK-8321815: Shenandoah: gc state should be synchronized to
java threads only once per safepoint \+ JDK-8321972: test
runtime/Unsafe/InternalErrorTest.java timeout on linux-riscv64 platform \+
JDK-8322098: os::Linux::print_system_memory_info enhance the THP output with
/sys/kernel/mm/transparent_hugepage/hpage_pmd_size \+ JDK-8322321: Add man page
doc for -XX:+VerifySharedSpaces \+ JDK-8322417: Console read line with zero out
should zero out when throwing exception \+ JDK-8322583: RISC-V: Enable fast
class initialization checks \+ JDK-8322725: (tz) Update Timezone Data to 2023d
\+ JDK-8322750: Test "api/java_awt/interactive/ /SystemTrayTests.html" failed
because A blue ball icon is added outside of the system tray \+ JDK-8322772:
Clean up code after JDK-8322417 \+ JDK-8322783: prioritize /etc/os-release over
/etc/SuSE-release in hs_err/info output \+ JDK-8322968: [17u] Amend Atomics
gtest with 1-byte tests \+ JDK-8323008: filter out harmful -std_ flags added by
autoconf from CXX \+ JDK-8323021: Shenandoah: Encountered reference count always
attributed to first worker thread \+ JDK-8323086: Shenandoah: Heap could be
corrupted by oom during evacuation \+ JDK-8323243: JNI invocation of an abstract
instance method corrupts the stack \+ JDK-8323331: fix typo hpage_pdm_size \+
JDK-8323428: Shenandoah: Unused memory in regions compacted during a full GC
should be mangled \+ JDK-8323515: Create test alias "all" for all test roots \+
JDK-8323637: Capture hotspot replay files in GHA \+ JDK-8323640:
[TESTBUG]testMemoryFailCount in
jdk/internal/platform/docker/TestDockerMemoryMetrics.java always fail because
OOM killed \+ JDK-8323806: [17u] VS2017 build fails with warning after 8293117\.
\+ JDK-8324184: Windows VS2010 build failed with "error C2275: 'int64_t'" \+
JDK-8324280: RISC-V: Incorrect implementation in VM_Version::parse_satp_mode \+
JDK-8324347: Enable "maybe-uninitialized" warning for FreeType 2.13.1 \+
JDK-8324514: ClassLoaderData::print_on should print address of class loader \+
JDK-8324647: Invalid test group of lib-test after JDK-8323515 \+ JDK-8324659:
GHA: Generic jtreg errors are not reported \+ JDK-8324937: GHA: Avoid multiple
test suites per job \+ JDK-8325096: Test
java/security/cert/CertPathBuilder/akiExt/ /AKISerialNumber.java is failing \+
JDK-8325150: (tz) Update Timezone Data to 2024a \+ JDK-8325585: Remove no longer
necessary calls to set/unset-in-asgct flag in JDK 17 \+ JDK-8326000: Remove
obsolete comments for class sun.security.ssl.SunJSSE \+ JDK-8327036: [macosx-
aarch64] SIGBUS in MarkActivationClosure::do_code_blob reached from
Unsafe_CopySwapMemory0 \+ JDK-8327391: Add SipHash attribution file \+
JDK-8329836: [17u] Remove designator DEFAULT_PROMOTED_VERSION_PRE=ea for release
17.0.11
* Removed the possibility to use the system timezone-java (bsc#1213470).
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2024-1499=1
* Basesystem Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-1499=1
* Legacy Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Legacy-15-SP6-2024-1499=1
## Package List:
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
* java-17-openjdk-devel-debuginfo-17.0.11.0-150400.3.42.1
* java-17-openjdk-debuginfo-17.0.11.0-150400.3.42.1
* java-17-openjdk-demo-17.0.11.0-150400.3.42.1
* java-17-openjdk-devel-17.0.11.0-150400.3.42.1
* java-17-openjdk-debugsource-17.0.11.0-150400.3.42.1
* java-17-openjdk-headless-17.0.11.0-150400.3.42.1
* java-17-openjdk-17.0.11.0-150400.3.42.1
* java-17-openjdk-headless-debuginfo-17.0.11.0-150400.3.42.1
* java-17-openjdk-src-17.0.11.0-150400.3.42.1
* java-17-openjdk-jmods-17.0.11.0-150400.3.42.1
* openSUSE Leap 15.6 (noarch)
* java-17-openjdk-javadoc-17.0.11.0-150400.3.42.1
* Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* java-17-openjdk-devel-debuginfo-17.0.11.0-150400.3.42.1
* java-17-openjdk-debuginfo-17.0.11.0-150400.3.42.1
* java-17-openjdk-devel-17.0.11.0-150400.3.42.1
* java-17-openjdk-debugsource-17.0.11.0-150400.3.42.1
* java-17-openjdk-headless-17.0.11.0-150400.3.42.1
* java-17-openjdk-17.0.11.0-150400.3.42.1
* java-17-openjdk-headless-debuginfo-17.0.11.0-150400.3.42.1
* Legacy Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* java-17-openjdk-debuginfo-17.0.11.0-150400.3.42.1
* java-17-openjdk-demo-17.0.11.0-150400.3.42.1
* java-17-openjdk-debugsource-17.0.11.0-150400.3.42.1
## References:
* https://www.suse.com/security/cve/CVE-2024-21011.html
* https://www.suse.com/security/cve/CVE-2024-21012.html
* https://www.suse.com/security/cve/CVE-2024-21068.html
* https://www.suse.com/security/cve/CVE-2024-21094.html
* https://bugzilla.suse.com/show_bug.cgi?id=1213470
* https://bugzilla.suse.com/show_bug.cgi?id=1222979
* https://bugzilla.suse.com/show_bug.cgi?id=1222983
* https://bugzilla.suse.com/show_bug.cgi?id=1222986
* https://bugzilla.suse.com/show_bug.cgi?id=1222987
1
0
20 Aug '24
# Security update for qemu
Announcement ID: SUSE-SU-2024:2983-1
Rating: important
References:
* bsc#1227322
* bsc#1229007
Cross-References:
* CVE-2024-4467
* CVE-2024-7409
CVSS scores:
* CVE-2024-4467 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
* CVE-2024-7409 ( SUSE ): 8.2
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
* CVE-2024-7409 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products:
* Basesystem Module 15-SP6
* openSUSE Leap 15.6
* Server Applications Module 15-SP6
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Package Hub 15 15-SP6
An update that solves two vulnerabilities can now be installed.
## Description:
This update for qemu fixes the following issues:
* CVE-2024-4467: Fixed denial of service and file read/write via qemu-img info
command (bsc#1227322)
* CVE-2024-7409: Fixed denial of service via improper synchronization in QEMU
NBD Server during socket closure (bsc#1229007)
* nbd/server: Close stray clients at server-stop
* nbd/server: Drop non-negotiating clients
* nbd/server: Cap default max-connections to 100
* nbd/server: Plumb in new args to nbd_client_add()
* nbd: Minor style and typo fixes
* Update qemu to version 8.2.6
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.6
zypper in -t patch SUSE-2024-2983=1 openSUSE-SLE-15.6-2024-2983=1
* Basesystem Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-2983=1
* SUSE Package Hub 15 15-SP6
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-2983=1
* Server Applications Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2024-2983=1
## Package List:
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586)
* qemu-chardev-baum-8.2.6-150600.3.9.1
* qemu-audio-dbus-debuginfo-8.2.6-150600.3.9.1
* qemu-block-iscsi-debuginfo-8.2.6-150600.3.9.1
* qemu-ksm-8.2.6-150600.3.9.1
* qemu-ui-curses-8.2.6-150600.3.9.1
* qemu-ppc-debuginfo-8.2.6-150600.3.9.1
* qemu-ui-spice-core-8.2.6-150600.3.9.1
* qemu-block-gluster-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-display-virtio-vga-debuginfo-8.2.6-150600.3.9.1
* qemu-extra-8.2.6-150600.3.9.1
* qemu-img-8.2.6-150600.3.9.1
* qemu-ui-gtk-debuginfo-8.2.6-150600.3.9.1
* qemu-block-ssh-8.2.6-150600.3.9.1
* qemu-pr-helper-8.2.6-150600.3.9.1
* qemu-ui-spice-core-debuginfo-8.2.6-150600.3.9.1
* qemu-spice-8.2.6-150600.3.9.1
* qemu-ui-opengl-debuginfo-8.2.6-150600.3.9.1
* qemu-block-ssh-debuginfo-8.2.6-150600.3.9.1
* qemu-ppc-8.2.6-150600.3.9.1
* qemu-headless-8.2.6-150600.3.9.1
* qemu-hw-usb-redirect-debuginfo-8.2.6-150600.3.9.1
* qemu-block-iscsi-8.2.6-150600.3.9.1
* qemu-s390x-debuginfo-8.2.6-150600.3.9.1
* qemu-ui-spice-app-8.2.6-150600.3.9.1
* qemu-audio-dbus-8.2.6-150600.3.9.1
* qemu-hw-display-virtio-vga-8.2.6-150600.3.9.1
* qemu-hw-display-virtio-gpu-pci-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-usb-smartcard-8.2.6-150600.3.9.1
* qemu-accel-tcg-x86-8.2.6-150600.3.9.1
* qemu-chardev-spice-debuginfo-8.2.6-150600.3.9.1
* qemu-ui-opengl-8.2.6-150600.3.9.1
* qemu-accel-qtest-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-usb-host-debuginfo-8.2.6-150600.3.9.1
* qemu-8.2.6-150600.3.9.1
* qemu-img-debuginfo-8.2.6-150600.3.9.1
* qemu-ui-gtk-8.2.6-150600.3.9.1
* qemu-audio-pa-debuginfo-8.2.6-150600.3.9.1
* qemu-guest-agent-debuginfo-8.2.6-150600.3.9.1
* qemu-audio-pa-8.2.6-150600.3.9.1
* qemu-ivshmem-tools-debuginfo-8.2.6-150600.3.9.1
* qemu-extra-debuginfo-8.2.6-150600.3.9.1
* qemu-audio-jack-8.2.6-150600.3.9.1
* qemu-arm-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-display-virtio-gpu-pci-8.2.6-150600.3.9.1
* qemu-hw-usb-host-8.2.6-150600.3.9.1
* qemu-audio-alsa-8.2.6-150600.3.9.1
* qemu-pr-helper-debuginfo-8.2.6-150600.3.9.1
* qemu-tools-8.2.6-150600.3.9.1
* qemu-block-dmg-8.2.6-150600.3.9.1
* qemu-hw-s390x-virtio-gpu-ccw-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-display-virtio-gpu-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-usb-smartcard-debuginfo-8.2.6-150600.3.9.1
* qemu-linux-user-8.2.6-150600.3.9.1
* qemu-x86-debuginfo-8.2.6-150600.3.9.1
* qemu-ui-curses-debuginfo-8.2.6-150600.3.9.1
* qemu-linux-user-debugsource-8.2.6-150600.3.9.1
* qemu-block-nfs-debuginfo-8.2.6-150600.3.9.1
* qemu-accel-tcg-x86-debuginfo-8.2.6-150600.3.9.1
* qemu-arm-8.2.6-150600.3.9.1
* qemu-audio-jack-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-s390x-virtio-gpu-ccw-8.2.6-150600.3.9.1
* qemu-block-curl-8.2.6-150600.3.9.1
* qemu-accel-qtest-8.2.6-150600.3.9.1
* qemu-audio-pipewire-8.2.6-150600.3.9.1
* qemu-audio-alsa-debuginfo-8.2.6-150600.3.9.1
* qemu-audio-oss-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-usb-redirect-8.2.6-150600.3.9.1
* qemu-ui-spice-app-debuginfo-8.2.6-150600.3.9.1
* qemu-audio-spice-8.2.6-150600.3.9.1
* qemu-vhost-user-gpu-debuginfo-8.2.6-150600.3.9.1
* qemu-ivshmem-tools-8.2.6-150600.3.9.1
* qemu-audio-oss-8.2.6-150600.3.9.1
* qemu-audio-spice-debuginfo-8.2.6-150600.3.9.1
* qemu-ui-dbus-8.2.6-150600.3.9.1
* qemu-lang-8.2.6-150600.3.9.1
* qemu-s390x-8.2.6-150600.3.9.1
* qemu-chardev-spice-8.2.6-150600.3.9.1
* qemu-hw-display-virtio-gpu-8.2.6-150600.3.9.1
* qemu-ui-dbus-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-display-qxl-debuginfo-8.2.6-150600.3.9.1
* qemu-block-nfs-8.2.6-150600.3.9.1
* qemu-tools-debuginfo-8.2.6-150600.3.9.1
* qemu-chardev-baum-debuginfo-8.2.6-150600.3.9.1
* qemu-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-display-qxl-8.2.6-150600.3.9.1
* qemu-debugsource-8.2.6-150600.3.9.1
* qemu-block-curl-debuginfo-8.2.6-150600.3.9.1
* qemu-x86-8.2.6-150600.3.9.1
* qemu-block-gluster-8.2.6-150600.3.9.1
* qemu-guest-agent-8.2.6-150600.3.9.1
* qemu-vhost-user-gpu-8.2.6-150600.3.9.1
* qemu-audio-pipewire-debuginfo-8.2.6-150600.3.9.1
* qemu-linux-user-debuginfo-8.2.6-150600.3.9.1
* qemu-block-dmg-debuginfo-8.2.6-150600.3.9.1
* openSUSE Leap 15.6 (noarch)
* qemu-vgabios-8.2.61.16.3_3_ga95067eb-150600.3.9.1
* qemu-SLOF-8.2.6-150600.3.9.1
* qemu-seabios-8.2.61.16.3_3_ga95067eb-150600.3.9.1
* qemu-skiboot-8.2.6-150600.3.9.1
* qemu-ipxe-8.2.6-150600.3.9.1
* qemu-doc-8.2.6-150600.3.9.1
* qemu-microvm-8.2.6-150600.3.9.1
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
* qemu-block-rbd-8.2.6-150600.3.9.1
* qemu-block-rbd-debuginfo-8.2.6-150600.3.9.1
* Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* qemu-pr-helper-8.2.6-150600.3.9.1
* qemu-pr-helper-debuginfo-8.2.6-150600.3.9.1
* qemu-tools-debuginfo-8.2.6-150600.3.9.1
* qemu-img-debuginfo-8.2.6-150600.3.9.1
* qemu-tools-8.2.6-150600.3.9.1
* qemu-debuginfo-8.2.6-150600.3.9.1
* qemu-debugsource-8.2.6-150600.3.9.1
* qemu-img-8.2.6-150600.3.9.1
* SUSE Package Hub 15 15-SP6 (noarch)
* qemu-vgabios-8.2.61.16.3_3_ga95067eb-150600.3.9.1
* qemu-SLOF-8.2.6-150600.3.9.1
* qemu-seabios-8.2.61.16.3_3_ga95067eb-150600.3.9.1
* qemu-skiboot-8.2.6-150600.3.9.1
* qemu-microvm-8.2.6-150600.3.9.1
* SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64)
* qemu-vhost-user-gpu-debuginfo-8.2.6-150600.3.9.1
* qemu-ivshmem-tools-8.2.6-150600.3.9.1
* qemu-audio-oss-8.2.6-150600.3.9.1
* qemu-hw-display-virtio-gpu-debuginfo-8.2.6-150600.3.9.1
* qemu-accel-tcg-x86-8.2.6-150600.3.9.1
* qemu-chardev-spice-debuginfo-8.2.6-150600.3.9.1
* qemu-audio-spice-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-usb-smartcard-debuginfo-8.2.6-150600.3.9.1
* qemu-ui-opengl-8.2.6-150600.3.9.1
* qemu-accel-qtest-debuginfo-8.2.6-150600.3.9.1
* qemu-linux-user-8.2.6-150600.3.9.1
* qemu-hw-s390x-virtio-gpu-ccw-debuginfo-8.2.6-150600.3.9.1
* qemu-x86-debuginfo-8.2.6-150600.3.9.1
* qemu-s390x-8.2.6-150600.3.9.1
* qemu-chardev-spice-8.2.6-150600.3.9.1
* qemu-hw-display-virtio-gpu-8.2.6-150600.3.9.1
* qemu-ppc-debuginfo-8.2.6-150600.3.9.1
* qemu-ui-gtk-8.2.6-150600.3.9.1
* qemu-ui-spice-core-8.2.6-150600.3.9.1
* qemu-block-gluster-debuginfo-8.2.6-150600.3.9.1
* qemu-linux-user-debugsource-8.2.6-150600.3.9.1
* qemu-audio-pa-debuginfo-8.2.6-150600.3.9.1
* qemu-block-nfs-debuginfo-8.2.6-150600.3.9.1
* qemu-accel-tcg-x86-debuginfo-8.2.6-150600.3.9.1
* qemu-arm-8.2.6-150600.3.9.1
* qemu-extra-8.2.6-150600.3.9.1
* qemu-audio-jack-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-display-virtio-vga-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-display-qxl-debuginfo-8.2.6-150600.3.9.1
* qemu-ui-gtk-debuginfo-8.2.6-150600.3.9.1
* qemu-audio-pa-8.2.6-150600.3.9.1
* qemu-block-nfs-8.2.6-150600.3.9.1
* qemu-ivshmem-tools-debuginfo-8.2.6-150600.3.9.1
* qemu-extra-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-s390x-virtio-gpu-ccw-8.2.6-150600.3.9.1
* qemu-audio-jack-8.2.6-150600.3.9.1
* qemu-arm-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-display-virtio-gpu-pci-8.2.6-150600.3.9.1
* qemu-hw-display-qxl-8.2.6-150600.3.9.1
* qemu-debuginfo-8.2.6-150600.3.9.1
* qemu-ui-opengl-debuginfo-8.2.6-150600.3.9.1
* qemu-debugsource-8.2.6-150600.3.9.1
* qemu-ui-spice-core-debuginfo-8.2.6-150600.3.9.1
* qemu-x86-8.2.6-150600.3.9.1
* qemu-block-gluster-8.2.6-150600.3.9.1
* qemu-ppc-8.2.6-150600.3.9.1
* qemu-accel-qtest-8.2.6-150600.3.9.1
* qemu-audio-alsa-8.2.6-150600.3.9.1
* qemu-hw-usb-redirect-debuginfo-8.2.6-150600.3.9.1
* qemu-block-dmg-8.2.6-150600.3.9.1
* qemu-vhost-user-gpu-8.2.6-150600.3.9.1
* qemu-s390x-debuginfo-8.2.6-150600.3.9.1
* qemu-audio-alsa-debuginfo-8.2.6-150600.3.9.1
* qemu-audio-oss-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-usb-redirect-8.2.6-150600.3.9.1
* qemu-ui-spice-app-8.2.6-150600.3.9.1
* qemu-linux-user-debuginfo-8.2.6-150600.3.9.1
* qemu-ui-spice-app-debuginfo-8.2.6-150600.3.9.1
* qemu-block-dmg-debuginfo-8.2.6-150600.3.9.1
* qemu-audio-spice-8.2.6-150600.3.9.1
* qemu-hw-display-virtio-vga-8.2.6-150600.3.9.1
* qemu-hw-display-virtio-gpu-pci-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-usb-smartcard-8.2.6-150600.3.9.1
* Server Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* qemu-chardev-baum-8.2.6-150600.3.9.1
* qemu-audio-dbus-debuginfo-8.2.6-150600.3.9.1
* qemu-chardev-spice-debuginfo-8.2.6-150600.3.9.1
* qemu-block-iscsi-debuginfo-8.2.6-150600.3.9.1
* qemu-audio-spice-debuginfo-8.2.6-150600.3.9.1
* qemu-ksm-8.2.6-150600.3.9.1
* qemu-ui-opengl-8.2.6-150600.3.9.1
* qemu-hw-usb-host-debuginfo-8.2.6-150600.3.9.1
* qemu-ui-dbus-8.2.6-150600.3.9.1
* qemu-8.2.6-150600.3.9.1
* qemu-lang-8.2.6-150600.3.9.1
* qemu-ui-curses-8.2.6-150600.3.9.1
* qemu-chardev-spice-8.2.6-150600.3.9.1
* qemu-block-rbd-debuginfo-8.2.6-150600.3.9.1
* qemu-ui-curses-debuginfo-8.2.6-150600.3.9.1
* qemu-ui-spice-core-8.2.6-150600.3.9.1
* qemu-ui-dbus-debuginfo-8.2.6-150600.3.9.1
* qemu-block-rbd-8.2.6-150600.3.9.1
* qemu-block-nfs-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-display-virtio-vga-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-display-qxl-debuginfo-8.2.6-150600.3.9.1
* qemu-guest-agent-debuginfo-8.2.6-150600.3.9.1
* qemu-block-ssh-8.2.6-150600.3.9.1
* qemu-block-nfs-8.2.6-150600.3.9.1
* qemu-ui-spice-core-debuginfo-8.2.6-150600.3.9.1
* qemu-chardev-baum-debuginfo-8.2.6-150600.3.9.1
* qemu-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-display-qxl-8.2.6-150600.3.9.1
* qemu-block-ssh-debuginfo-8.2.6-150600.3.9.1
* qemu-debugsource-8.2.6-150600.3.9.1
* qemu-spice-8.2.6-150600.3.9.1
* qemu-block-curl-8.2.6-150600.3.9.1
* qemu-ui-opengl-debuginfo-8.2.6-150600.3.9.1
* qemu-block-curl-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-usb-host-8.2.6-150600.3.9.1
* qemu-headless-8.2.6-150600.3.9.1
* qemu-guest-agent-8.2.6-150600.3.9.1
* qemu-hw-usb-redirect-debuginfo-8.2.6-150600.3.9.1
* qemu-audio-pipewire-8.2.6-150600.3.9.1
* qemu-block-iscsi-8.2.6-150600.3.9.1
* qemu-hw-usb-redirect-8.2.6-150600.3.9.1
* qemu-audio-pipewire-debuginfo-8.2.6-150600.3.9.1
* qemu-audio-dbus-8.2.6-150600.3.9.1
* qemu-audio-spice-8.2.6-150600.3.9.1
* qemu-hw-display-virtio-vga-8.2.6-150600.3.9.1
* Server Applications Module 15-SP6 (aarch64)
* qemu-arm-debuginfo-8.2.6-150600.3.9.1
* qemu-arm-8.2.6-150600.3.9.1
* Server Applications Module 15-SP6 (noarch)
* qemu-vgabios-8.2.61.16.3_3_ga95067eb-150600.3.9.1
* qemu-SLOF-8.2.6-150600.3.9.1
* qemu-skiboot-8.2.6-150600.3.9.1
* qemu-seabios-8.2.61.16.3_3_ga95067eb-150600.3.9.1
* qemu-ipxe-8.2.6-150600.3.9.1
* Server Applications Module 15-SP6 (aarch64 ppc64le x86_64)
* qemu-ui-gtk-8.2.6-150600.3.9.1
* qemu-ui-spice-app-debuginfo-8.2.6-150600.3.9.1
* qemu-ui-spice-app-8.2.6-150600.3.9.1
* qemu-ui-gtk-debuginfo-8.2.6-150600.3.9.1
* Server Applications Module 15-SP6 (ppc64le)
* qemu-ppc-8.2.6-150600.3.9.1
* qemu-ppc-debuginfo-8.2.6-150600.3.9.1
* Server Applications Module 15-SP6 (s390x x86_64)
* qemu-hw-display-virtio-gpu-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-display-virtio-gpu-pci-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-display-virtio-gpu-pci-8.2.6-150600.3.9.1
* qemu-hw-display-virtio-gpu-8.2.6-150600.3.9.1
* Server Applications Module 15-SP6 (s390x)
* qemu-hw-s390x-virtio-gpu-ccw-debuginfo-8.2.6-150600.3.9.1
* qemu-s390x-8.2.6-150600.3.9.1
* qemu-s390x-debuginfo-8.2.6-150600.3.9.1
* qemu-hw-s390x-virtio-gpu-ccw-8.2.6-150600.3.9.1
* Server Applications Module 15-SP6 (x86_64)
* qemu-audio-alsa-8.2.6-150600.3.9.1
* qemu-accel-tcg-x86-8.2.6-150600.3.9.1
* qemu-audio-alsa-debuginfo-8.2.6-150600.3.9.1
* qemu-audio-pa-debuginfo-8.2.6-150600.3.9.1
* qemu-accel-tcg-x86-debuginfo-8.2.6-150600.3.9.1
* qemu-x86-8.2.6-150600.3.9.1
* qemu-x86-debuginfo-8.2.6-150600.3.9.1
* qemu-audio-pa-8.2.6-150600.3.9.1
## References:
* https://www.suse.com/security/cve/CVE-2024-4467.html
* https://www.suse.com/security/cve/CVE-2024-7409.html
* https://bugzilla.suse.com/show_bug.cgi?id=1227322
* https://bugzilla.suse.com/show_bug.cgi?id=1229007
1
0
SUSE-SU-2024:2786-1: important: Security update for java-1_8_0-openjdk
by OPENSUSE-SECURITY-UPDATES 20 Aug '24
by OPENSUSE-SECURITY-UPDATES 20 Aug '24
20 Aug '24
# Security update for java-1_8_0-openjdk
Announcement ID: SUSE-SU-2024:2786-1
Rating: important
References:
* bsc#1228046
* bsc#1228047
* bsc#1228048
* bsc#1228050
* bsc#1228051
* bsc#1228052
Cross-References:
* CVE-2024-21131
* CVE-2024-21138
* CVE-2024-21140
* CVE-2024-21144
* CVE-2024-21145
* CVE-2024-21147
CVSS scores:
* CVE-2024-21131 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2024-21138 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2024-21140 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
* CVE-2024-21144 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2024-21145 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
* CVE-2024-21147 ( SUSE ): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Affected Products:
* Legacy Module 15-SP5
* Legacy Module 15-SP6
* openSUSE Leap 15.5
* openSUSE Leap 15.6
* SUSE Enterprise Storage 7.1
* SUSE Linux Enterprise High Performance Computing 15 SP3
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Server 15 SP2
* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2
* SUSE Linux Enterprise Server 15 SP3
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP2
* SUSE Linux Enterprise Server for SAP Applications 15 SP3
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
An update that solves six vulnerabilities can now be installed.
## Description:
This update for java-1_8_0-openjdk fixes the following issues:
Update to version jdk8u422 (icedtea-3.32.0):
* Security fixes
* JDK-8314794, CVE-2024-21131, bsc#1228046: Improve UTF8 String supports
* JDK-8319859, CVE-2024-21138, bsc#1228047: Better symbol storage
* JDK-8320097: Improve Image transformations
* JDK-8320548, CVE-2024-21140, bsc#1228048: Improved loop handling
* JDK-8322106, CVE-2024-21144, bsc#1228050: Enhance Pack 200 loading
* JDK-8323231, CVE-2024-21147, bsc#1228052: Improve array management
* JDK-8323390: Enhance mask blit functionality
* JDK-8324559, CVE-2024-21145, bsc#1228051: Improve 2D image handling
* JDK-8325600: Better symbol storage
* Import of OpenJDK 8 u422 build 05
* JDK-8025439: [TEST BUG] [macosx] PrintServiceLookup.lookupPrintServices
doesn't work properly since jdk8b105
* JDK-8069389: CompilerOracle prefix wildcarding is broken for long strings
* JDK-8159454: [TEST_BUG] javax/swing/ToolTipManager/7123767/
/bug7123767.java: number of checked graphics configurations should be
limited
* JDK-8198321: javax/swing/JEditorPane/5076514/bug5076514.java fails
* JDK-8203691: [TESTBUG] Test /runtime/containers/cgroup/PlainRead.java fails
* JDK-8205407: [windows, vs<2017] C4800 after 8203197
* JDK-8235834: IBM-943 charset encoder needs updating
* JDK-8239965: XMLEncoder/Test4625418.java fails due to "Error: Cp943 - can't
read properly"
* JDK-8240756: [macos] SwingSet2:TableDemo:Printed Japanese characters were
garbled
* JDK-8256152: tests fail because of ambiguous method resolution
* JDK-8258855: Two tests sun/security/krb5/auto/ /ReplayCacheTestProc.java and
ReplayCacheTestProcWithMD5.java failed on OL8.3
* JDK-8262017: C2: assert(n != __null) failed: Bad immediate dominator info.
* JDK-8268916: Tests for AffirmTrust roots
* JDK-8278067: Make HttpURLConnection default keep alive timeout configurable
* JDK-8291226: Create Test Cases to cover scenarios for JDK-8278067
* JDK-8291637: HttpClient default keep alive timeout not followed if server
sends invalid value
* JDK-8291638: Keep-Alive timeout of 0 should close connection immediately
* JDK-8293562: KeepAliveCache Blocks Threads while Closing Connections
* JDK-8303466: C2: failed: malformed control flow. Limit type made precise
with MaxL/MinL
* JDK-8304074: [JMX] Add an approximation of total bytes allocated on the Java
heap by the JVM
* JDK-8313081: MonitoringSupport_lock should be unconditionally initialized
after 8304074
* JDK-8315020: The macro definition for LoongArch64 zero build is not
accurate.
* JDK-8316138: Add GlobalSign 2 TLS root certificates
* JDK-8318410: jdk/java/lang/instrument/BootClassPath/ /BootClassPathTest.sh
fails on Japanese Windows
* JDK-8320005: Allow loading of shared objects with .a extension on AIX
* JDK-8324185: [8u] Accept Xcode 12+ builds on macOS
* JDK-8325096: Test java/security/cert/CertPathBuilder/akiExt/
/AKISerialNumber.java is failing
* JDK-8325927: [8u] Backport of JDK-8170552 missed part of the test
* JDK-8326686: Bump update version of OpenJDK: 8u422
* JDK-8327440: Fix "bad source file" error during beaninfo generation
* JDK-8328809: [8u] Problem list some CA tests
* JDK-8328825: Google CAInterop test failures
* JDK-8329544: [8u] sun/security/krb5/auto/ /ReplayCacheTestProc.java cannot
find the testlibrary
* JDK-8331791: [8u] AIX build break from JDK-8320005 backport
* JDK-8331980: [8u] Problem list CAInterop.java#certignarootca test
* JDK-8335552: [8u] JDK-8303466 backport to 8u requires 3 ::Identity signature
fixes
* Bug fixes
* JDK-8331730: [8u] GHA: update sysroot for cross builds to Debian bullseye
* JDK-8333669: [8u] GHA: Dead VS2010 download link
* JDK-8318039: GHA: Bump macOS and Xcode versions
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-2786=1
* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2024-2786=1
* Legacy Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Legacy-15-SP5-2024-2786=1
* Legacy Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Legacy-15-SP6-2024-2786=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-2786=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2786=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2786=1
* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2
zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-2786=1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-2786=1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2786=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP2
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-2786=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP3
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-2786=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2786=1
* SUSE Enterprise Storage 7.1
zypper in -t patch SUSE-Storage-7.1-2024-2786=1
## Package List:
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-src-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-accessibility-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-1.8.0.422-150000.3.97.1
* openSUSE Leap 15.5 (noarch)
* java-1_8_0-openjdk-javadoc-1.8.0.422-150000.3.97.1
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
* java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-src-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-accessibility-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-1.8.0.422-150000.3.97.1
* openSUSE Leap 15.6 (noarch)
* java-1_8_0-openjdk-javadoc-1.8.0.422-150000.3.97.1
* Legacy Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-1.8.0.422-150000.3.97.1
* Legacy Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-1.8.0.422-150000.3.97.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64
x86_64)
* java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-1.8.0.422-150000.3.97.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-1.8.0.422-150000.3.97.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-1.8.0.422-150000.3.97.1
* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x
x86_64)
* java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-1.8.0.422-150000.3.97.1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x
x86_64)
* java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-1.8.0.422-150000.3.97.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x
x86_64)
* java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-1.8.0.422-150000.3.97.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64)
* java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-1.8.0.422-150000.3.97.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64)
* java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-1.8.0.422-150000.3.97.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-1.8.0.422-150000.3.97.1
* SUSE Enterprise Storage 7.1 (aarch64 x86_64)
* java-1_8_0-openjdk-devel-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-debugsource-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-devel-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-headless-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-demo-debuginfo-1.8.0.422-150000.3.97.1
* java-1_8_0-openjdk-1.8.0.422-150000.3.97.1
## References:
* https://www.suse.com/security/cve/CVE-2024-21131.html
* https://www.suse.com/security/cve/CVE-2024-21138.html
* https://www.suse.com/security/cve/CVE-2024-21140.html
* https://www.suse.com/security/cve/CVE-2024-21144.html
* https://www.suse.com/security/cve/CVE-2024-21145.html
* https://www.suse.com/security/cve/CVE-2024-21147.html
* https://bugzilla.suse.com/show_bug.cgi?id=1228046
* https://bugzilla.suse.com/show_bug.cgi?id=1228047
* https://bugzilla.suse.com/show_bug.cgi?id=1228048
* https://bugzilla.suse.com/show_bug.cgi?id=1228050
* https://bugzilla.suse.com/show_bug.cgi?id=1228051
* https://bugzilla.suse.com/show_bug.cgi?id=1228052
1
0
SUSE-SU-2024:2980-1: important: Security update for kernel-firmware
by OPENSUSE-SECURITY-UPDATES 20 Aug '24
by OPENSUSE-SECURITY-UPDATES 20 Aug '24
20 Aug '24
# Security update for kernel-firmware
Announcement ID: SUSE-SU-2024:2980-1
Rating: important
References:
* bsc#1229069
Cross-References:
* CVE-2023-31315
CVSS scores:
* CVE-2023-31315 ( SUSE ): 7.5 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Affected Products:
* openSUSE Leap 15.4
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Micro 5.3
* SUSE Linux Enterprise Micro 5.4
* SUSE Linux Enterprise Micro for Rancher 5.3
* SUSE Linux Enterprise Micro for Rancher 5.4
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Manager Proxy 4.3
* SUSE Manager Retail Branch Server 4.3
* SUSE Manager Server 4.3
An update that solves one vulnerability can now be installed.
## Description:
This update for kernel-firmware fixes the following issues:
CVE-2023-31315: Fixed validation in a model specific register (MSR) that lead to
modification of SMM configuration by malicious program with ring0 access
(bsc#1229069)
## Special Instructions and Notes:
* Please reboot the system after installing this update.
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.4
zypper in -t patch SUSE-2024-2980=1
* SUSE Linux Enterprise Micro for Rancher 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2024-2980=1
* SUSE Linux Enterprise Micro 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2024-2980=1
* SUSE Linux Enterprise Micro for Rancher 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2024-2980=1
* SUSE Linux Enterprise Micro 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2024-2980=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2980=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2980=1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2980=1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2980=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2980=1
* SUSE Manager Proxy 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-2980=1
* SUSE Manager Retail Branch Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-
Server-4.3-2024-2980=1
* SUSE Manager Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-2980=1
## Package List:
* openSUSE Leap 15.4 (noarch)
* kernel-firmware-ath10k-20220509-150400.4.28.1
* kernel-firmware-bnx2-20220509-150400.4.28.1
* kernel-firmware-brcm-20220509-150400.4.28.1
* kernel-firmware-sound-20220509-150400.4.28.1
* kernel-firmware-chelsio-20220509-150400.4.28.1
* kernel-firmware-20220509-150400.4.28.1
* kernel-firmware-mellanox-20220509-150400.4.28.1
* kernel-firmware-platform-20220509-150400.4.28.1
* kernel-firmware-i915-20220509-150400.4.28.1
* kernel-firmware-liquidio-20220509-150400.4.28.1
* kernel-firmware-all-20220509-150400.4.28.1
* kernel-firmware-amdgpu-20220509-150400.4.28.1
* kernel-firmware-intel-20220509-150400.4.28.1
* kernel-firmware-usb-network-20220509-150400.4.28.1
* kernel-firmware-ti-20220509-150400.4.28.1
* kernel-firmware-nfp-20220509-150400.4.28.1
* kernel-firmware-bluetooth-20220509-150400.4.28.1
* kernel-firmware-iwlwifi-20220509-150400.4.28.1
* kernel-firmware-marvell-20220509-150400.4.28.1
* kernel-firmware-nvidia-20220509-150400.4.28.1
* kernel-firmware-prestera-20220509-150400.4.28.1
* kernel-firmware-radeon-20220509-150400.4.28.1
* kernel-firmware-atheros-20220509-150400.4.28.1
* kernel-firmware-media-20220509-150400.4.28.1
* kernel-firmware-qlogic-20220509-150400.4.28.1
* kernel-firmware-ath11k-20220509-150400.4.28.1
* kernel-firmware-mwifiex-20220509-150400.4.28.1
* kernel-firmware-network-20220509-150400.4.28.1
* kernel-firmware-dpaa2-20220509-150400.4.28.1
* ucode-amd-20220509-150400.4.28.1
* kernel-firmware-ueagle-20220509-150400.4.28.1
* kernel-firmware-mediatek-20220509-150400.4.28.1
* kernel-firmware-serial-20220509-150400.4.28.1
* kernel-firmware-realtek-20220509-150400.4.28.1
* kernel-firmware-qcom-20220509-150400.4.28.1
* SUSE Linux Enterprise Micro for Rancher 5.3 (noarch)
* kernel-firmware-ath10k-20220509-150400.4.28.1
* kernel-firmware-bnx2-20220509-150400.4.28.1
* kernel-firmware-brcm-20220509-150400.4.28.1
* kernel-firmware-sound-20220509-150400.4.28.1
* kernel-firmware-chelsio-20220509-150400.4.28.1
* kernel-firmware-mellanox-20220509-150400.4.28.1
* kernel-firmware-platform-20220509-150400.4.28.1
* kernel-firmware-i915-20220509-150400.4.28.1
* kernel-firmware-liquidio-20220509-150400.4.28.1
* kernel-firmware-all-20220509-150400.4.28.1
* kernel-firmware-amdgpu-20220509-150400.4.28.1
* kernel-firmware-intel-20220509-150400.4.28.1
* kernel-firmware-usb-network-20220509-150400.4.28.1
* kernel-firmware-ti-20220509-150400.4.28.1
* kernel-firmware-nfp-20220509-150400.4.28.1
* kernel-firmware-bluetooth-20220509-150400.4.28.1
* kernel-firmware-iwlwifi-20220509-150400.4.28.1
* kernel-firmware-marvell-20220509-150400.4.28.1
* kernel-firmware-nvidia-20220509-150400.4.28.1
* kernel-firmware-prestera-20220509-150400.4.28.1
* kernel-firmware-radeon-20220509-150400.4.28.1
* kernel-firmware-atheros-20220509-150400.4.28.1
* kernel-firmware-media-20220509-150400.4.28.1
* kernel-firmware-qlogic-20220509-150400.4.28.1
* kernel-firmware-ath11k-20220509-150400.4.28.1
* kernel-firmware-mwifiex-20220509-150400.4.28.1
* kernel-firmware-network-20220509-150400.4.28.1
* kernel-firmware-dpaa2-20220509-150400.4.28.1
* ucode-amd-20220509-150400.4.28.1
* kernel-firmware-ueagle-20220509-150400.4.28.1
* kernel-firmware-mediatek-20220509-150400.4.28.1
* kernel-firmware-serial-20220509-150400.4.28.1
* kernel-firmware-realtek-20220509-150400.4.28.1
* kernel-firmware-qcom-20220509-150400.4.28.1
* SUSE Linux Enterprise Micro 5.3 (noarch)
* kernel-firmware-ath10k-20220509-150400.4.28.1
* kernel-firmware-bnx2-20220509-150400.4.28.1
* kernel-firmware-brcm-20220509-150400.4.28.1
* kernel-firmware-sound-20220509-150400.4.28.1
* kernel-firmware-chelsio-20220509-150400.4.28.1
* kernel-firmware-mellanox-20220509-150400.4.28.1
* kernel-firmware-platform-20220509-150400.4.28.1
* kernel-firmware-i915-20220509-150400.4.28.1
* kernel-firmware-liquidio-20220509-150400.4.28.1
* kernel-firmware-all-20220509-150400.4.28.1
* kernel-firmware-amdgpu-20220509-150400.4.28.1
* kernel-firmware-intel-20220509-150400.4.28.1
* kernel-firmware-usb-network-20220509-150400.4.28.1
* kernel-firmware-ti-20220509-150400.4.28.1
* kernel-firmware-nfp-20220509-150400.4.28.1
* kernel-firmware-bluetooth-20220509-150400.4.28.1
* kernel-firmware-iwlwifi-20220509-150400.4.28.1
* kernel-firmware-marvell-20220509-150400.4.28.1
* kernel-firmware-nvidia-20220509-150400.4.28.1
* kernel-firmware-prestera-20220509-150400.4.28.1
* kernel-firmware-radeon-20220509-150400.4.28.1
* kernel-firmware-atheros-20220509-150400.4.28.1
* kernel-firmware-media-20220509-150400.4.28.1
* kernel-firmware-qlogic-20220509-150400.4.28.1
* kernel-firmware-ath11k-20220509-150400.4.28.1
* kernel-firmware-mwifiex-20220509-150400.4.28.1
* kernel-firmware-network-20220509-150400.4.28.1
* kernel-firmware-dpaa2-20220509-150400.4.28.1
* ucode-amd-20220509-150400.4.28.1
* kernel-firmware-ueagle-20220509-150400.4.28.1
* kernel-firmware-mediatek-20220509-150400.4.28.1
* kernel-firmware-serial-20220509-150400.4.28.1
* kernel-firmware-realtek-20220509-150400.4.28.1
* kernel-firmware-qcom-20220509-150400.4.28.1
* SUSE Linux Enterprise Micro for Rancher 5.4 (noarch)
* kernel-firmware-ath10k-20220509-150400.4.28.1
* kernel-firmware-bnx2-20220509-150400.4.28.1
* kernel-firmware-brcm-20220509-150400.4.28.1
* kernel-firmware-sound-20220509-150400.4.28.1
* kernel-firmware-chelsio-20220509-150400.4.28.1
* kernel-firmware-mellanox-20220509-150400.4.28.1
* kernel-firmware-platform-20220509-150400.4.28.1
* kernel-firmware-i915-20220509-150400.4.28.1
* kernel-firmware-liquidio-20220509-150400.4.28.1
* kernel-firmware-all-20220509-150400.4.28.1
* kernel-firmware-amdgpu-20220509-150400.4.28.1
* kernel-firmware-intel-20220509-150400.4.28.1
* kernel-firmware-usb-network-20220509-150400.4.28.1
* kernel-firmware-ti-20220509-150400.4.28.1
* kernel-firmware-nfp-20220509-150400.4.28.1
* kernel-firmware-bluetooth-20220509-150400.4.28.1
* kernel-firmware-iwlwifi-20220509-150400.4.28.1
* kernel-firmware-marvell-20220509-150400.4.28.1
* kernel-firmware-nvidia-20220509-150400.4.28.1
* kernel-firmware-prestera-20220509-150400.4.28.1
* kernel-firmware-radeon-20220509-150400.4.28.1
* kernel-firmware-atheros-20220509-150400.4.28.1
* kernel-firmware-media-20220509-150400.4.28.1
* kernel-firmware-qlogic-20220509-150400.4.28.1
* kernel-firmware-ath11k-20220509-150400.4.28.1
* kernel-firmware-mwifiex-20220509-150400.4.28.1
* kernel-firmware-network-20220509-150400.4.28.1
* kernel-firmware-dpaa2-20220509-150400.4.28.1
* ucode-amd-20220509-150400.4.28.1
* kernel-firmware-ueagle-20220509-150400.4.28.1
* kernel-firmware-mediatek-20220509-150400.4.28.1
* kernel-firmware-serial-20220509-150400.4.28.1
* kernel-firmware-realtek-20220509-150400.4.28.1
* kernel-firmware-qcom-20220509-150400.4.28.1
* SUSE Linux Enterprise Micro 5.4 (noarch)
* kernel-firmware-ath10k-20220509-150400.4.28.1
* kernel-firmware-bnx2-20220509-150400.4.28.1
* kernel-firmware-brcm-20220509-150400.4.28.1
* kernel-firmware-sound-20220509-150400.4.28.1
* kernel-firmware-chelsio-20220509-150400.4.28.1
* kernel-firmware-mellanox-20220509-150400.4.28.1
* kernel-firmware-platform-20220509-150400.4.28.1
* kernel-firmware-i915-20220509-150400.4.28.1
* kernel-firmware-liquidio-20220509-150400.4.28.1
* kernel-firmware-all-20220509-150400.4.28.1
* kernel-firmware-amdgpu-20220509-150400.4.28.1
* kernel-firmware-intel-20220509-150400.4.28.1
* kernel-firmware-usb-network-20220509-150400.4.28.1
* kernel-firmware-ti-20220509-150400.4.28.1
* kernel-firmware-nfp-20220509-150400.4.28.1
* kernel-firmware-bluetooth-20220509-150400.4.28.1
* kernel-firmware-iwlwifi-20220509-150400.4.28.1
* kernel-firmware-marvell-20220509-150400.4.28.1
* kernel-firmware-nvidia-20220509-150400.4.28.1
* kernel-firmware-prestera-20220509-150400.4.28.1
* kernel-firmware-radeon-20220509-150400.4.28.1
* kernel-firmware-atheros-20220509-150400.4.28.1
* kernel-firmware-media-20220509-150400.4.28.1
* kernel-firmware-qlogic-20220509-150400.4.28.1
* kernel-firmware-ath11k-20220509-150400.4.28.1
* kernel-firmware-mwifiex-20220509-150400.4.28.1
* kernel-firmware-network-20220509-150400.4.28.1
* kernel-firmware-dpaa2-20220509-150400.4.28.1
* ucode-amd-20220509-150400.4.28.1
* kernel-firmware-ueagle-20220509-150400.4.28.1
* kernel-firmware-mediatek-20220509-150400.4.28.1
* kernel-firmware-serial-20220509-150400.4.28.1
* kernel-firmware-realtek-20220509-150400.4.28.1
* kernel-firmware-qcom-20220509-150400.4.28.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch)
* kernel-firmware-ath10k-20220509-150400.4.28.1
* kernel-firmware-bnx2-20220509-150400.4.28.1
* kernel-firmware-brcm-20220509-150400.4.28.1
* kernel-firmware-sound-20220509-150400.4.28.1
* kernel-firmware-chelsio-20220509-150400.4.28.1
* kernel-firmware-mellanox-20220509-150400.4.28.1
* kernel-firmware-platform-20220509-150400.4.28.1
* kernel-firmware-i915-20220509-150400.4.28.1
* kernel-firmware-liquidio-20220509-150400.4.28.1
* kernel-firmware-all-20220509-150400.4.28.1
* kernel-firmware-amdgpu-20220509-150400.4.28.1
* kernel-firmware-intel-20220509-150400.4.28.1
* kernel-firmware-usb-network-20220509-150400.4.28.1
* kernel-firmware-ti-20220509-150400.4.28.1
* kernel-firmware-nfp-20220509-150400.4.28.1
* kernel-firmware-bluetooth-20220509-150400.4.28.1
* kernel-firmware-iwlwifi-20220509-150400.4.28.1
* kernel-firmware-marvell-20220509-150400.4.28.1
* kernel-firmware-nvidia-20220509-150400.4.28.1
* kernel-firmware-prestera-20220509-150400.4.28.1
* kernel-firmware-radeon-20220509-150400.4.28.1
* kernel-firmware-atheros-20220509-150400.4.28.1
* kernel-firmware-media-20220509-150400.4.28.1
* kernel-firmware-qlogic-20220509-150400.4.28.1
* kernel-firmware-ath11k-20220509-150400.4.28.1
* kernel-firmware-mwifiex-20220509-150400.4.28.1
* kernel-firmware-network-20220509-150400.4.28.1
* kernel-firmware-dpaa2-20220509-150400.4.28.1
* ucode-amd-20220509-150400.4.28.1
* kernel-firmware-ueagle-20220509-150400.4.28.1
* kernel-firmware-mediatek-20220509-150400.4.28.1
* kernel-firmware-serial-20220509-150400.4.28.1
* kernel-firmware-realtek-20220509-150400.4.28.1
* kernel-firmware-qcom-20220509-150400.4.28.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch)
* kernel-firmware-ath10k-20220509-150400.4.28.1
* kernel-firmware-bnx2-20220509-150400.4.28.1
* kernel-firmware-brcm-20220509-150400.4.28.1
* kernel-firmware-sound-20220509-150400.4.28.1
* kernel-firmware-chelsio-20220509-150400.4.28.1
* kernel-firmware-mellanox-20220509-150400.4.28.1
* kernel-firmware-platform-20220509-150400.4.28.1
* kernel-firmware-i915-20220509-150400.4.28.1
* kernel-firmware-liquidio-20220509-150400.4.28.1
* kernel-firmware-all-20220509-150400.4.28.1
* kernel-firmware-amdgpu-20220509-150400.4.28.1
* kernel-firmware-intel-20220509-150400.4.28.1
* kernel-firmware-usb-network-20220509-150400.4.28.1
* kernel-firmware-ti-20220509-150400.4.28.1
* kernel-firmware-nfp-20220509-150400.4.28.1
* kernel-firmware-bluetooth-20220509-150400.4.28.1
* kernel-firmware-iwlwifi-20220509-150400.4.28.1
* kernel-firmware-marvell-20220509-150400.4.28.1
* kernel-firmware-nvidia-20220509-150400.4.28.1
* kernel-firmware-prestera-20220509-150400.4.28.1
* kernel-firmware-radeon-20220509-150400.4.28.1
* kernel-firmware-atheros-20220509-150400.4.28.1
* kernel-firmware-media-20220509-150400.4.28.1
* kernel-firmware-qlogic-20220509-150400.4.28.1
* kernel-firmware-ath11k-20220509-150400.4.28.1
* kernel-firmware-mwifiex-20220509-150400.4.28.1
* kernel-firmware-network-20220509-150400.4.28.1
* kernel-firmware-dpaa2-20220509-150400.4.28.1
* ucode-amd-20220509-150400.4.28.1
* kernel-firmware-ueagle-20220509-150400.4.28.1
* kernel-firmware-mediatek-20220509-150400.4.28.1
* kernel-firmware-serial-20220509-150400.4.28.1
* kernel-firmware-realtek-20220509-150400.4.28.1
* kernel-firmware-qcom-20220509-150400.4.28.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch)
* kernel-firmware-ath10k-20220509-150400.4.28.1
* kernel-firmware-bnx2-20220509-150400.4.28.1
* kernel-firmware-brcm-20220509-150400.4.28.1
* kernel-firmware-sound-20220509-150400.4.28.1
* kernel-firmware-chelsio-20220509-150400.4.28.1
* kernel-firmware-mellanox-20220509-150400.4.28.1
* kernel-firmware-platform-20220509-150400.4.28.1
* kernel-firmware-i915-20220509-150400.4.28.1
* kernel-firmware-liquidio-20220509-150400.4.28.1
* kernel-firmware-all-20220509-150400.4.28.1
* kernel-firmware-amdgpu-20220509-150400.4.28.1
* kernel-firmware-intel-20220509-150400.4.28.1
* kernel-firmware-usb-network-20220509-150400.4.28.1
* kernel-firmware-ti-20220509-150400.4.28.1
* kernel-firmware-nfp-20220509-150400.4.28.1
* kernel-firmware-bluetooth-20220509-150400.4.28.1
* kernel-firmware-iwlwifi-20220509-150400.4.28.1
* kernel-firmware-marvell-20220509-150400.4.28.1
* kernel-firmware-nvidia-20220509-150400.4.28.1
* kernel-firmware-prestera-20220509-150400.4.28.1
* kernel-firmware-radeon-20220509-150400.4.28.1
* kernel-firmware-atheros-20220509-150400.4.28.1
* kernel-firmware-media-20220509-150400.4.28.1
* kernel-firmware-qlogic-20220509-150400.4.28.1
* kernel-firmware-ath11k-20220509-150400.4.28.1
* kernel-firmware-mwifiex-20220509-150400.4.28.1
* kernel-firmware-network-20220509-150400.4.28.1
* kernel-firmware-dpaa2-20220509-150400.4.28.1
* ucode-amd-20220509-150400.4.28.1
* kernel-firmware-ueagle-20220509-150400.4.28.1
* kernel-firmware-mediatek-20220509-150400.4.28.1
* kernel-firmware-serial-20220509-150400.4.28.1
* kernel-firmware-realtek-20220509-150400.4.28.1
* kernel-firmware-qcom-20220509-150400.4.28.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch)
* kernel-firmware-ath10k-20220509-150400.4.28.1
* kernel-firmware-bnx2-20220509-150400.4.28.1
* kernel-firmware-brcm-20220509-150400.4.28.1
* kernel-firmware-sound-20220509-150400.4.28.1
* kernel-firmware-chelsio-20220509-150400.4.28.1
* kernel-firmware-mellanox-20220509-150400.4.28.1
* kernel-firmware-platform-20220509-150400.4.28.1
* kernel-firmware-i915-20220509-150400.4.28.1
* kernel-firmware-liquidio-20220509-150400.4.28.1
* kernel-firmware-all-20220509-150400.4.28.1
* kernel-firmware-amdgpu-20220509-150400.4.28.1
* kernel-firmware-intel-20220509-150400.4.28.1
* kernel-firmware-usb-network-20220509-150400.4.28.1
* kernel-firmware-ti-20220509-150400.4.28.1
* kernel-firmware-nfp-20220509-150400.4.28.1
* kernel-firmware-bluetooth-20220509-150400.4.28.1
* kernel-firmware-iwlwifi-20220509-150400.4.28.1
* kernel-firmware-marvell-20220509-150400.4.28.1
* kernel-firmware-nvidia-20220509-150400.4.28.1
* kernel-firmware-prestera-20220509-150400.4.28.1
* kernel-firmware-radeon-20220509-150400.4.28.1
* kernel-firmware-atheros-20220509-150400.4.28.1
* kernel-firmware-media-20220509-150400.4.28.1
* kernel-firmware-qlogic-20220509-150400.4.28.1
* kernel-firmware-ath11k-20220509-150400.4.28.1
* kernel-firmware-mwifiex-20220509-150400.4.28.1
* kernel-firmware-network-20220509-150400.4.28.1
* kernel-firmware-dpaa2-20220509-150400.4.28.1
* ucode-amd-20220509-150400.4.28.1
* kernel-firmware-ueagle-20220509-150400.4.28.1
* kernel-firmware-mediatek-20220509-150400.4.28.1
* kernel-firmware-serial-20220509-150400.4.28.1
* kernel-firmware-realtek-20220509-150400.4.28.1
* kernel-firmware-qcom-20220509-150400.4.28.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch)
* kernel-firmware-ath10k-20220509-150400.4.28.1
* kernel-firmware-bnx2-20220509-150400.4.28.1
* kernel-firmware-brcm-20220509-150400.4.28.1
* kernel-firmware-sound-20220509-150400.4.28.1
* kernel-firmware-chelsio-20220509-150400.4.28.1
* kernel-firmware-mellanox-20220509-150400.4.28.1
* kernel-firmware-platform-20220509-150400.4.28.1
* kernel-firmware-i915-20220509-150400.4.28.1
* kernel-firmware-liquidio-20220509-150400.4.28.1
* kernel-firmware-all-20220509-150400.4.28.1
* kernel-firmware-amdgpu-20220509-150400.4.28.1
* kernel-firmware-intel-20220509-150400.4.28.1
* kernel-firmware-usb-network-20220509-150400.4.28.1
* kernel-firmware-ti-20220509-150400.4.28.1
* kernel-firmware-nfp-20220509-150400.4.28.1
* kernel-firmware-bluetooth-20220509-150400.4.28.1
* kernel-firmware-iwlwifi-20220509-150400.4.28.1
* kernel-firmware-marvell-20220509-150400.4.28.1
* kernel-firmware-nvidia-20220509-150400.4.28.1
* kernel-firmware-prestera-20220509-150400.4.28.1
* kernel-firmware-radeon-20220509-150400.4.28.1
* kernel-firmware-atheros-20220509-150400.4.28.1
* kernel-firmware-media-20220509-150400.4.28.1
* kernel-firmware-qlogic-20220509-150400.4.28.1
* kernel-firmware-ath11k-20220509-150400.4.28.1
* kernel-firmware-mwifiex-20220509-150400.4.28.1
* kernel-firmware-network-20220509-150400.4.28.1
* kernel-firmware-dpaa2-20220509-150400.4.28.1
* ucode-amd-20220509-150400.4.28.1
* kernel-firmware-ueagle-20220509-150400.4.28.1
* kernel-firmware-mediatek-20220509-150400.4.28.1
* kernel-firmware-serial-20220509-150400.4.28.1
* kernel-firmware-realtek-20220509-150400.4.28.1
* kernel-firmware-qcom-20220509-150400.4.28.1
* SUSE Manager Proxy 4.3 (noarch)
* kernel-firmware-ath10k-20220509-150400.4.28.1
* kernel-firmware-bnx2-20220509-150400.4.28.1
* kernel-firmware-brcm-20220509-150400.4.28.1
* kernel-firmware-sound-20220509-150400.4.28.1
* kernel-firmware-chelsio-20220509-150400.4.28.1
* kernel-firmware-mellanox-20220509-150400.4.28.1
* kernel-firmware-platform-20220509-150400.4.28.1
* kernel-firmware-i915-20220509-150400.4.28.1
* kernel-firmware-liquidio-20220509-150400.4.28.1
* kernel-firmware-all-20220509-150400.4.28.1
* kernel-firmware-amdgpu-20220509-150400.4.28.1
* kernel-firmware-intel-20220509-150400.4.28.1
* kernel-firmware-usb-network-20220509-150400.4.28.1
* kernel-firmware-ti-20220509-150400.4.28.1
* kernel-firmware-nfp-20220509-150400.4.28.1
* kernel-firmware-bluetooth-20220509-150400.4.28.1
* kernel-firmware-iwlwifi-20220509-150400.4.28.1
* kernel-firmware-marvell-20220509-150400.4.28.1
* kernel-firmware-nvidia-20220509-150400.4.28.1
* kernel-firmware-prestera-20220509-150400.4.28.1
* kernel-firmware-radeon-20220509-150400.4.28.1
* kernel-firmware-atheros-20220509-150400.4.28.1
* kernel-firmware-media-20220509-150400.4.28.1
* kernel-firmware-qlogic-20220509-150400.4.28.1
* kernel-firmware-ath11k-20220509-150400.4.28.1
* kernel-firmware-mwifiex-20220509-150400.4.28.1
* kernel-firmware-network-20220509-150400.4.28.1
* kernel-firmware-dpaa2-20220509-150400.4.28.1
* ucode-amd-20220509-150400.4.28.1
* kernel-firmware-ueagle-20220509-150400.4.28.1
* kernel-firmware-mediatek-20220509-150400.4.28.1
* kernel-firmware-serial-20220509-150400.4.28.1
* kernel-firmware-realtek-20220509-150400.4.28.1
* kernel-firmware-qcom-20220509-150400.4.28.1
* SUSE Manager Retail Branch Server 4.3 (noarch)
* kernel-firmware-ath10k-20220509-150400.4.28.1
* kernel-firmware-bnx2-20220509-150400.4.28.1
* kernel-firmware-brcm-20220509-150400.4.28.1
* kernel-firmware-sound-20220509-150400.4.28.1
* kernel-firmware-chelsio-20220509-150400.4.28.1
* kernel-firmware-mellanox-20220509-150400.4.28.1
* kernel-firmware-platform-20220509-150400.4.28.1
* kernel-firmware-i915-20220509-150400.4.28.1
* kernel-firmware-liquidio-20220509-150400.4.28.1
* kernel-firmware-all-20220509-150400.4.28.1
* kernel-firmware-amdgpu-20220509-150400.4.28.1
* kernel-firmware-intel-20220509-150400.4.28.1
* kernel-firmware-usb-network-20220509-150400.4.28.1
* kernel-firmware-ti-20220509-150400.4.28.1
* kernel-firmware-nfp-20220509-150400.4.28.1
* kernel-firmware-bluetooth-20220509-150400.4.28.1
* kernel-firmware-iwlwifi-20220509-150400.4.28.1
* kernel-firmware-marvell-20220509-150400.4.28.1
* kernel-firmware-nvidia-20220509-150400.4.28.1
* kernel-firmware-prestera-20220509-150400.4.28.1
* kernel-firmware-radeon-20220509-150400.4.28.1
* kernel-firmware-atheros-20220509-150400.4.28.1
* kernel-firmware-media-20220509-150400.4.28.1
* kernel-firmware-qlogic-20220509-150400.4.28.1
* kernel-firmware-ath11k-20220509-150400.4.28.1
* kernel-firmware-mwifiex-20220509-150400.4.28.1
* kernel-firmware-network-20220509-150400.4.28.1
* kernel-firmware-dpaa2-20220509-150400.4.28.1
* ucode-amd-20220509-150400.4.28.1
* kernel-firmware-ueagle-20220509-150400.4.28.1
* kernel-firmware-mediatek-20220509-150400.4.28.1
* kernel-firmware-serial-20220509-150400.4.28.1
* kernel-firmware-realtek-20220509-150400.4.28.1
* kernel-firmware-qcom-20220509-150400.4.28.1
* SUSE Manager Server 4.3 (noarch)
* kernel-firmware-ath10k-20220509-150400.4.28.1
* kernel-firmware-bnx2-20220509-150400.4.28.1
* kernel-firmware-brcm-20220509-150400.4.28.1
* kernel-firmware-sound-20220509-150400.4.28.1
* kernel-firmware-chelsio-20220509-150400.4.28.1
* kernel-firmware-mellanox-20220509-150400.4.28.1
* kernel-firmware-platform-20220509-150400.4.28.1
* kernel-firmware-i915-20220509-150400.4.28.1
* kernel-firmware-liquidio-20220509-150400.4.28.1
* kernel-firmware-all-20220509-150400.4.28.1
* kernel-firmware-amdgpu-20220509-150400.4.28.1
* kernel-firmware-intel-20220509-150400.4.28.1
* kernel-firmware-usb-network-20220509-150400.4.28.1
* kernel-firmware-ti-20220509-150400.4.28.1
* kernel-firmware-nfp-20220509-150400.4.28.1
* kernel-firmware-bluetooth-20220509-150400.4.28.1
* kernel-firmware-iwlwifi-20220509-150400.4.28.1
* kernel-firmware-marvell-20220509-150400.4.28.1
* kernel-firmware-nvidia-20220509-150400.4.28.1
* kernel-firmware-prestera-20220509-150400.4.28.1
* kernel-firmware-radeon-20220509-150400.4.28.1
* kernel-firmware-atheros-20220509-150400.4.28.1
* kernel-firmware-media-20220509-150400.4.28.1
* kernel-firmware-qlogic-20220509-150400.4.28.1
* kernel-firmware-ath11k-20220509-150400.4.28.1
* kernel-firmware-mwifiex-20220509-150400.4.28.1
* kernel-firmware-network-20220509-150400.4.28.1
* kernel-firmware-dpaa2-20220509-150400.4.28.1
* ucode-amd-20220509-150400.4.28.1
* kernel-firmware-ueagle-20220509-150400.4.28.1
* kernel-firmware-mediatek-20220509-150400.4.28.1
* kernel-firmware-serial-20220509-150400.4.28.1
* kernel-firmware-realtek-20220509-150400.4.28.1
* kernel-firmware-qcom-20220509-150400.4.28.1
## References:
* https://www.suse.com/security/cve/CVE-2023-31315.html
* https://bugzilla.suse.com/show_bug.cgi?id=1229069
1
0
SUSE-SU-2024:2982-1: important: Security update for python311
by OPENSUSE-SECURITY-UPDATES 20 Aug '24
by OPENSUSE-SECURITY-UPDATES 20 Aug '24
20 Aug '24
# Security update for python311
Announcement ID: SUSE-SU-2024:2982-1
Rating: important
References:
* bsc#1225660
* bsc#1226447
* bsc#1226448
* bsc#1227378
* bsc#1227999
* bsc#1228780
Cross-References:
* CVE-2023-27043
* CVE-2024-0397
* CVE-2024-4032
* CVE-2024-6923
CVSS scores:
* CVE-2023-27043 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2023-27043 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2024-0397 ( SUSE ): 4.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L
* CVE-2024-4032 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2024-6923 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Affected Products:
* Basesystem Module 15-SP6
* openSUSE Leap 15.6
* Python 3 Module 15-SP6
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
An update that solves four vulnerabilities and has two security fixes can now be
installed.
## Description:
This update for python311 fixes the following issues:
Security issues fixed:
* CVE-2024-6923: Fixed email header injection due to unquoted newlines
(bsc#1228780)
* CVE-2024-5642: Removed support for anything but OpenSSL 1.1.1 or newer
(bsc#1227233)
* CVE-2024-4032: Fixed incorrect IPv4 and IPv6 private ranges (bsc#1226448)
Non-security issues fixed:
* Fixed executable bits for /usr/bin/idle* (bsc#1227378).
* Improve python reproducible builds (bsc#1227999)
* Make pip and modern tools install directly in /usr/local when used by the
user (bsc#1225660)
* %{profileopt} variable is set according to the variable %{do_profiling}
(bsc#1227999)
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* Python 3 Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Python3-15-SP6-2024-2982=1
* openSUSE Leap 15.6
zypper in -t patch SUSE-2024-2982=1 openSUSE-SLE-15.6-2024-2982=1
* Basesystem Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-2982=1
## Package List:
* Python 3 Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* python311-3.11.9-150600.3.3.1
* python311-idle-3.11.9-150600.3.3.1
* python311-dbm-3.11.9-150600.3.3.1
* python311-devel-3.11.9-150600.3.3.1
* python311-core-debugsource-3.11.9-150600.3.3.1
* python311-debuginfo-3.11.9-150600.3.3.1
* python311-curses-3.11.9-150600.3.3.1
* python311-tk-3.11.9-150600.3.3.1
* python311-tk-debuginfo-3.11.9-150600.3.3.1
* python311-tools-3.11.9-150600.3.3.1
* python311-dbm-debuginfo-3.11.9-150600.3.3.1
* python311-curses-debuginfo-3.11.9-150600.3.3.1
* python311-debugsource-3.11.9-150600.3.3.1
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586)
* python311-doc-devhelp-3.11.9-150600.3.3.1
* python311-dbm-3.11.9-150600.3.3.1
* python311-tk-3.11.9-150600.3.3.1
* python311-debuginfo-3.11.9-150600.3.3.1
* python311-tools-3.11.9-150600.3.3.1
* python311-testsuite-3.11.9-150600.3.3.1
* python311-base-3.11.9-150600.3.3.1
* python311-idle-3.11.9-150600.3.3.1
* libpython3_11-1_0-3.11.9-150600.3.3.1
* python311-curses-3.11.9-150600.3.3.1
* python311-doc-3.11.9-150600.3.3.1
* python311-3.11.9-150600.3.3.1
* python311-devel-3.11.9-150600.3.3.1
* python311-core-debugsource-3.11.9-150600.3.3.1
* python311-testsuite-debuginfo-3.11.9-150600.3.3.1
* python311-tk-debuginfo-3.11.9-150600.3.3.1
* libpython3_11-1_0-debuginfo-3.11.9-150600.3.3.1
* python311-dbm-debuginfo-3.11.9-150600.3.3.1
* python311-base-debuginfo-3.11.9-150600.3.3.1
* python311-curses-debuginfo-3.11.9-150600.3.3.1
* python311-debugsource-3.11.9-150600.3.3.1
* openSUSE Leap 15.6 (x86_64)
* python311-32bit-3.11.9-150600.3.3.1
* python311-base-32bit-3.11.9-150600.3.3.1
* python311-32bit-debuginfo-3.11.9-150600.3.3.1
* libpython3_11-1_0-32bit-3.11.9-150600.3.3.1
* python311-base-32bit-debuginfo-3.11.9-150600.3.3.1
* libpython3_11-1_0-32bit-debuginfo-3.11.9-150600.3.3.1
* openSUSE Leap 15.6 (aarch64_ilp32)
* libpython3_11-1_0-64bit-debuginfo-3.11.9-150600.3.3.1
* python311-64bit-debuginfo-3.11.9-150600.3.3.1
* python311-base-64bit-debuginfo-3.11.9-150600.3.3.1
* libpython3_11-1_0-64bit-3.11.9-150600.3.3.1
* python311-64bit-3.11.9-150600.3.3.1
* python311-base-64bit-3.11.9-150600.3.3.1
* Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* libpython3_11-1_0-debuginfo-3.11.9-150600.3.3.1
* libpython3_11-1_0-3.11.9-150600.3.3.1
* python311-core-debugsource-3.11.9-150600.3.3.1
* python311-base-debuginfo-3.11.9-150600.3.3.1
* python311-base-3.11.9-150600.3.3.1
## References:
* https://www.suse.com/security/cve/CVE-2023-27043.html
* https://www.suse.com/security/cve/CVE-2024-0397.html
* https://www.suse.com/security/cve/CVE-2024-4032.html
* https://www.suse.com/security/cve/CVE-2024-6923.html
* https://bugzilla.suse.com/show_bug.cgi?id=1225660
* https://bugzilla.suse.com/show_bug.cgi?id=1226447
* https://bugzilla.suse.com/show_bug.cgi?id=1226448
* https://bugzilla.suse.com/show_bug.cgi?id=1227378
* https://bugzilla.suse.com/show_bug.cgi?id=1227999
* https://bugzilla.suse.com/show_bug.cgi?id=1228780
1
0
SUSE-SU-2024:2984-1: important: Security update for libqt5-qt3d
by OPENSUSE-SECURITY-UPDATES 20 Aug '24
by OPENSUSE-SECURITY-UPDATES 20 Aug '24
20 Aug '24
# Security update for libqt5-qt3d
Announcement ID: SUSE-SU-2024:2984-1
Rating: important
References:
* bsc#1228204
Cross-References:
* CVE-2024-40724
CVSS scores:
* CVE-2024-40724 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2024-40724 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products:
* Desktop Applications Module 15-SP6
* openSUSE Leap 15.6
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
An update that solves one vulnerability can now be installed.
## Description:
This update for libqt5-qt3d fixes the following issues:
* CVE-2024-40724: Fixed a heap-based buffer overflow in the PLY importer class
(bsc#1228204)
* Checked for a nullptr returned from the shader manager
* Fill image with transparency by default to avoid having junk if it's not
filled properly before the first paint call
* Fixed QTextureAtlas parenting that could lead to crashes due to being used
after free'd
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* Desktop Applications Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP6-2024-2984=1
* openSUSE Leap 15.6
zypper in -t patch SUSE-2024-2984=1 openSUSE-SLE-15.6-2024-2984=1
## Package List:
* Desktop Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* libQt53DInput5-5.15.12+kde0-150600.3.3.1
* libqt5-qt3d-tools-5.15.12+kde0-150600.3.3.1
* libQt53DAnimation-devel-5.15.12+kde0-150600.3.3.1
* libQt53DQuickInput5-5.15.12+kde0-150600.3.3.1
* libQt53DQuickRender5-5.15.12+kde0-150600.3.3.1
* libQt53DCore5-5.15.12+kde0-150600.3.3.1
* libQt53DQuick-devel-5.15.12+kde0-150600.3.3.1
* libQt53DQuickAnimation5-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DInput5-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DQuick5-5.15.12+kde0-150600.3.3.1
* libqt5-qt3d-imports-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DExtras5-5.15.12+kde0-150600.3.3.1
* libQt53DAnimation5-5.15.12+kde0-150600.3.3.1
* libQt53DExtras-devel-5.15.12+kde0-150600.3.3.1
* libQt53DAnimation5-debuginfo-5.15.12+kde0-150600.3.3.1
* libqt5-qt3d-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DInput-devel-5.15.12+kde0-150600.3.3.1
* libQt53DRender5-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DQuickRender5-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DQuickInput5-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DQuickExtras-devel-5.15.12+kde0-150600.3.3.1
* libQt53DQuick5-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DQuickScene2D5-debuginfo-5.15.12+kde0-150600.3.3.1
* libqt5-qt3d-debugsource-5.15.12+kde0-150600.3.3.1
* libQt53DCore5-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DQuickInput-devel-5.15.12+kde0-150600.3.3.1
* libQt53DExtras5-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DLogic5-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DLogic5-5.15.12+kde0-150600.3.3.1
* libQt53DQuickScene2D5-5.15.12+kde0-150600.3.3.1
* libQt53DRender5-5.15.12+kde0-150600.3.3.1
* libQt53DRender-devel-5.15.12+kde0-150600.3.3.1
* libqt5-qt3d-devel-5.15.12+kde0-150600.3.3.1
* libQt53DQuickExtras5-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DCore-devel-5.15.12+kde0-150600.3.3.1
* libQt53DQuickRender-devel-5.15.12+kde0-150600.3.3.1
* libQt53DQuickAnimation5-5.15.12+kde0-150600.3.3.1
* libqt5-qt3d-imports-5.15.12+kde0-150600.3.3.1
* libQt53DQuickScene2D-devel-5.15.12+kde0-150600.3.3.1
* libQt53DLogic-devel-5.15.12+kde0-150600.3.3.1
* libQt53DQuickAnimation-devel-5.15.12+kde0-150600.3.3.1
* libQt53DQuickExtras5-5.15.12+kde0-150600.3.3.1
* Desktop Applications Module 15-SP6 (noarch)
* libqt5-qt3d-private-headers-devel-5.15.12+kde0-150600.3.3.1
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586)
* libQt53DInput5-5.15.12+kde0-150600.3.3.1
* libqt5-qt3d-tools-5.15.12+kde0-150600.3.3.1
* libQt53DAnimation-devel-5.15.12+kde0-150600.3.3.1
* libQt53DQuickInput5-5.15.12+kde0-150600.3.3.1
* libQt53DQuickRender5-5.15.12+kde0-150600.3.3.1
* libQt53DCore5-5.15.12+kde0-150600.3.3.1
* libQt53DQuick-devel-5.15.12+kde0-150600.3.3.1
* libQt53DQuickAnimation5-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DInput5-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DQuick5-5.15.12+kde0-150600.3.3.1
* libqt5-qt3d-imports-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DExtras5-5.15.12+kde0-150600.3.3.1
* libqt5-qt3d-examples-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DAnimation5-5.15.12+kde0-150600.3.3.1
* libQt53DExtras-devel-5.15.12+kde0-150600.3.3.1
* libQt53DAnimation5-debuginfo-5.15.12+kde0-150600.3.3.1
* libqt5-qt3d-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DInput-devel-5.15.12+kde0-150600.3.3.1
* libQt53DRender5-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DQuickRender5-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DQuickInput5-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DQuickExtras-devel-5.15.12+kde0-150600.3.3.1
* libQt53DQuick5-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DQuickScene2D5-debuginfo-5.15.12+kde0-150600.3.3.1
* libqt5-qt3d-debugsource-5.15.12+kde0-150600.3.3.1
* libQt53DCore5-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DQuickInput-devel-5.15.12+kde0-150600.3.3.1
* libQt53DExtras5-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DLogic5-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DLogic5-5.15.12+kde0-150600.3.3.1
* libQt53DQuickScene2D5-5.15.12+kde0-150600.3.3.1
* libQt53DRender5-5.15.12+kde0-150600.3.3.1
* libqt5-qt3d-examples-5.15.12+kde0-150600.3.3.1
* libQt53DRender-devel-5.15.12+kde0-150600.3.3.1
* libqt5-qt3d-devel-5.15.12+kde0-150600.3.3.1
* libQt53DQuickExtras5-debuginfo-5.15.12+kde0-150600.3.3.1
* libQt53DCore-devel-5.15.12+kde0-150600.3.3.1
* libQt53DQuickRender-devel-5.15.12+kde0-150600.3.3.1
* libQt53DQuickAnimation5-5.15.12+kde0-150600.3.3.1
* libqt5-qt3d-imports-5.15.12+kde0-150600.3.3.1
* libQt53DQuickScene2D-devel-5.15.12+kde0-150600.3.3.1
* libQt53DLogic-devel-5.15.12+kde0-150600.3.3.1
* libQt53DQuickAnimation-devel-5.15.12+kde0-150600.3.3.1
* libQt53DQuickExtras5-5.15.12+kde0-150600.3.3.1
* openSUSE Leap 15.6 (noarch)
* libqt5-qt3d-private-headers-devel-5.15.12+kde0-150600.3.3.1
## References:
* https://www.suse.com/security/cve/CVE-2024-40724.html
* https://bugzilla.suse.com/show_bug.cgi?id=1228204
1
0
SUSE-SU-2024:2985-1: important: Security update for libqt5-qtquick3d
by OPENSUSE-SECURITY-UPDATES 20 Aug '24
by OPENSUSE-SECURITY-UPDATES 20 Aug '24
20 Aug '24
# Security update for libqt5-qtquick3d
Announcement ID: SUSE-SU-2024:2985-1
Rating: important
References:
* bsc#1228199
Cross-References:
* CVE-2024-40724
CVSS scores:
* CVE-2024-40724 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2024-40724 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products:
* openSUSE Leap 15.6
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Package Hub 15 15-SP6
An update that solves one vulnerability can now be installed.
## Description:
This update for libqt5-qtquick3d fixes the following issues:
* CVE-2024-40724: Fixed a heap-based buffer overflow in the PLY importer class
(bsc#1228199)
* Fixed progressive anti-aliasing, which doesn't work if any object in the
scene used a PrincipledMaterial
* Fixed a crash when a custom material/effect shader variable changes
* Skipped processing unknown uniforms, as those that are vendor specific
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.6
zypper in -t patch SUSE-2024-2985=1 openSUSE-SLE-15.6-2024-2985=1
* SUSE Package Hub 15 15-SP6
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-2985=1
## Package List:
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586)
* libqt5-qtquick3d-debuginfo-5.15.12+kde1-150600.3.3.1
* libQt5Quick3D5-5.15.12+kde1-150600.3.3.1
* libqt5-qtquick3d-examples-5.15.12+kde1-150600.3.3.1
* libqt5-qtquick3d-imports-debuginfo-5.15.12+kde1-150600.3.3.1
* libqt5-qtquick3d-private-headers-devel-5.15.12+kde1-150600.3.3.1
* libqt5-qtquick3d-tools-5.15.12+kde1-150600.3.3.1
* libQt5Quick3DAssetImport5-5.15.12+kde1-150600.3.3.1
* libqt5-qtquick3d-examples-debuginfo-5.15.12+kde1-150600.3.3.1
* libqt5-qtquick3d-tools-debuginfo-5.15.12+kde1-150600.3.3.1
* libqt5-qtquick3d-imports-5.15.12+kde1-150600.3.3.1
* libqt5-qtquick3d-devel-5.15.12+kde1-150600.3.3.1
* libQt5Quick3DAssetImport5-debuginfo-5.15.12+kde1-150600.3.3.1
* libQt5Quick3D5-debuginfo-5.15.12+kde1-150600.3.3.1
* libqt5-qtquick3d-debugsource-5.15.12+kde1-150600.3.3.1
* SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64)
* libqt5-qtquick3d-debuginfo-5.15.12+kde1-150600.3.3.1
* libQt5Quick3D5-5.15.12+kde1-150600.3.3.1
* libQt5Quick3DAssetImport5-5.15.12+kde1-150600.3.3.1
* libQt5Quick3DAssetImport5-debuginfo-5.15.12+kde1-150600.3.3.1
* libQt5Quick3D5-debuginfo-5.15.12+kde1-150600.3.3.1
* libqt5-qtquick3d-debugsource-5.15.12+kde1-150600.3.3.1
## References:
* https://www.suse.com/security/cve/CVE-2024-40724.html
* https://bugzilla.suse.com/show_bug.cgi?id=1228199
1
0
SUSE-SU-2024:2976-1: important: Security update for libqt5-qt3d
by OPENSUSE-SECURITY-UPDATES 20 Aug '24
by OPENSUSE-SECURITY-UPDATES 20 Aug '24
20 Aug '24
# Security update for libqt5-qt3d
Announcement ID: SUSE-SU-2024:2976-1
Rating: important
References:
* bsc#1228204
Cross-References:
* CVE-2024-40724
CVSS scores:
* CVE-2024-40724 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2024-40724 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products:
* openSUSE Leap 15.4
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
An update that solves one vulnerability can now be installed.
## Description:
This update for libqt5-qt3d fixes the following issues:
* CVE-2024-40724: Fixed heap-based buffer overflow in the PLY importer class
in assimp (bsc#1228204)
Other fixes: \- Check for a nullptr returned from the shader manager \- Fill
image with transparency by default to avoid having junk if it's not filled
properly before the first paint call \- Fix QTextureAtlas parenting that could
lead to crashes due to being used after free'd.
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.4
zypper in -t patch SUSE-2024-2976=1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-2976=1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-2976=1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-2976=1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-2976=1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-2976=1
## Package List:
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* libQt53DExtras-devel-5.15.2+kde39-150400.3.3.1
* libQt53DInput-devel-5.15.2+kde39-150400.3.3.1
* libQt53DCore-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuickRender5-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickAnimation5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickScene2D5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickRender-devel-5.15.2+kde39-150400.3.3.1
* libQt53DAnimation-devel-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-devel-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-imports-5.15.2+kde39-150400.3.3.1
* libQt53DInput5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickExtras-devel-5.15.2+kde39-150400.3.3.1
* libQt53DAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickScene2D-devel-5.15.2+kde39-150400.3.3.1
* libQt53DAnimation5-5.15.2+kde39-150400.3.3.1
* libQt53DLogic5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DCore5-5.15.2+kde39-150400.3.3.1
* libQt53DQuick-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuick5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickInput-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuickRender5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DInput5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickAnimation-devel-5.15.2+kde39-150400.3.3.1
* libQt53DLogic5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickInput5-5.15.2+kde39-150400.3.3.1
* libQt53DCore5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DExtras5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuick5-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-tools-5.15.2+kde39-150400.3.3.1
* libQt53DQuickExtras5-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-examples-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-imports-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DRender-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuickExtras5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DExtras5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickInput5-debuginfo-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-debugsource-5.15.2+kde39-150400.3.3.1
* libQt53DLogic-devel-5.15.2+kde39-150400.3.3.1
* libQt53DRender5-debuginfo-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-examples-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickScene2D5-5.15.2+kde39-150400.3.3.1
* libQt53DRender5-5.15.2+kde39-150400.3.3.1
* openSUSE Leap 15.4 (noarch)
* libqt5-qt3d-private-headers-devel-5.15.2+kde39-150400.3.3.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* libQt53DExtras-devel-5.15.2+kde39-150400.3.3.1
* libQt53DInput-devel-5.15.2+kde39-150400.3.3.1
* libQt53DCore-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuickRender5-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickAnimation5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickScene2D5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickRender-devel-5.15.2+kde39-150400.3.3.1
* libQt53DAnimation-devel-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-devel-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-imports-5.15.2+kde39-150400.3.3.1
* libQt53DInput5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickExtras-devel-5.15.2+kde39-150400.3.3.1
* libQt53DAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickScene2D-devel-5.15.2+kde39-150400.3.3.1
* libQt53DAnimation5-5.15.2+kde39-150400.3.3.1
* libQt53DLogic5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DCore5-5.15.2+kde39-150400.3.3.1
* libQt53DQuick-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuick5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickInput-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuickRender5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DInput5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickAnimation-devel-5.15.2+kde39-150400.3.3.1
* libQt53DLogic5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickInput5-5.15.2+kde39-150400.3.3.1
* libQt53DCore5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DExtras5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuick5-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-tools-5.15.2+kde39-150400.3.3.1
* libQt53DQuickExtras5-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-imports-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DRender-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuickExtras5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DExtras5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickInput5-debuginfo-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-debugsource-5.15.2+kde39-150400.3.3.1
* libQt53DLogic-devel-5.15.2+kde39-150400.3.3.1
* libQt53DRender5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickScene2D5-5.15.2+kde39-150400.3.3.1
* libQt53DRender5-5.15.2+kde39-150400.3.3.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch)
* libqt5-qt3d-private-headers-devel-5.15.2+kde39-150400.3.3.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* libQt53DExtras-devel-5.15.2+kde39-150400.3.3.1
* libQt53DInput-devel-5.15.2+kde39-150400.3.3.1
* libQt53DCore-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuickRender5-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickAnimation5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickScene2D5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickRender-devel-5.15.2+kde39-150400.3.3.1
* libQt53DAnimation-devel-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-devel-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-imports-5.15.2+kde39-150400.3.3.1
* libQt53DInput5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickExtras-devel-5.15.2+kde39-150400.3.3.1
* libQt53DAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickScene2D-devel-5.15.2+kde39-150400.3.3.1
* libQt53DAnimation5-5.15.2+kde39-150400.3.3.1
* libQt53DLogic5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DCore5-5.15.2+kde39-150400.3.3.1
* libQt53DQuick-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuick5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickInput-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuickRender5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DInput5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickAnimation-devel-5.15.2+kde39-150400.3.3.1
* libQt53DLogic5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickInput5-5.15.2+kde39-150400.3.3.1
* libQt53DCore5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DExtras5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuick5-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-tools-5.15.2+kde39-150400.3.3.1
* libQt53DQuickExtras5-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-imports-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DRender-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuickExtras5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DExtras5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickInput5-debuginfo-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-debugsource-5.15.2+kde39-150400.3.3.1
* libQt53DLogic-devel-5.15.2+kde39-150400.3.3.1
* libQt53DRender5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickScene2D5-5.15.2+kde39-150400.3.3.1
* libQt53DRender5-5.15.2+kde39-150400.3.3.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch)
* libqt5-qt3d-private-headers-devel-5.15.2+kde39-150400.3.3.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64)
* libQt53DExtras-devel-5.15.2+kde39-150400.3.3.1
* libQt53DInput-devel-5.15.2+kde39-150400.3.3.1
* libQt53DCore-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuickRender5-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickAnimation5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickScene2D5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickRender-devel-5.15.2+kde39-150400.3.3.1
* libQt53DAnimation-devel-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-devel-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-imports-5.15.2+kde39-150400.3.3.1
* libQt53DInput5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickExtras-devel-5.15.2+kde39-150400.3.3.1
* libQt53DAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickScene2D-devel-5.15.2+kde39-150400.3.3.1
* libQt53DAnimation5-5.15.2+kde39-150400.3.3.1
* libQt53DLogic5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DCore5-5.15.2+kde39-150400.3.3.1
* libQt53DQuick-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuick5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickInput-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuickRender5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DInput5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickAnimation-devel-5.15.2+kde39-150400.3.3.1
* libQt53DLogic5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickInput5-5.15.2+kde39-150400.3.3.1
* libQt53DCore5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DExtras5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuick5-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-tools-5.15.2+kde39-150400.3.3.1
* libQt53DQuickExtras5-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-imports-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DRender-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuickExtras5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DExtras5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickInput5-debuginfo-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-debugsource-5.15.2+kde39-150400.3.3.1
* libQt53DLogic-devel-5.15.2+kde39-150400.3.3.1
* libQt53DRender5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickScene2D5-5.15.2+kde39-150400.3.3.1
* libQt53DRender5-5.15.2+kde39-150400.3.3.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch)
* libqt5-qt3d-private-headers-devel-5.15.2+kde39-150400.3.3.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x
x86_64)
* libQt53DExtras-devel-5.15.2+kde39-150400.3.3.1
* libQt53DInput-devel-5.15.2+kde39-150400.3.3.1
* libQt53DCore-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuickRender5-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickAnimation5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickScene2D5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickRender-devel-5.15.2+kde39-150400.3.3.1
* libQt53DAnimation-devel-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-devel-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-imports-5.15.2+kde39-150400.3.3.1
* libQt53DInput5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickExtras-devel-5.15.2+kde39-150400.3.3.1
* libQt53DAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickScene2D-devel-5.15.2+kde39-150400.3.3.1
* libQt53DAnimation5-5.15.2+kde39-150400.3.3.1
* libQt53DLogic5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DCore5-5.15.2+kde39-150400.3.3.1
* libQt53DQuick-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuick5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickInput-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuickRender5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DInput5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickAnimation-devel-5.15.2+kde39-150400.3.3.1
* libQt53DLogic5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickInput5-5.15.2+kde39-150400.3.3.1
* libQt53DCore5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DExtras5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuick5-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-tools-5.15.2+kde39-150400.3.3.1
* libQt53DQuickExtras5-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-imports-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DRender-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuickExtras5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DExtras5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickInput5-debuginfo-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-debugsource-5.15.2+kde39-150400.3.3.1
* libQt53DLogic-devel-5.15.2+kde39-150400.3.3.1
* libQt53DRender5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickScene2D5-5.15.2+kde39-150400.3.3.1
* libQt53DRender5-5.15.2+kde39-150400.3.3.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch)
* libqt5-qt3d-private-headers-devel-5.15.2+kde39-150400.3.3.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* libQt53DExtras-devel-5.15.2+kde39-150400.3.3.1
* libQt53DInput-devel-5.15.2+kde39-150400.3.3.1
* libQt53DCore-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuickRender5-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickAnimation5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickScene2D5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickRender-devel-5.15.2+kde39-150400.3.3.1
* libQt53DAnimation-devel-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-devel-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-imports-5.15.2+kde39-150400.3.3.1
* libQt53DInput5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickExtras-devel-5.15.2+kde39-150400.3.3.1
* libQt53DAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickScene2D-devel-5.15.2+kde39-150400.3.3.1
* libQt53DAnimation5-5.15.2+kde39-150400.3.3.1
* libQt53DLogic5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DCore5-5.15.2+kde39-150400.3.3.1
* libQt53DQuick-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuick5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickAnimation5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickInput-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuickRender5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DInput5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickAnimation-devel-5.15.2+kde39-150400.3.3.1
* libQt53DLogic5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickInput5-5.15.2+kde39-150400.3.3.1
* libQt53DCore5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DExtras5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuick5-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-tools-5.15.2+kde39-150400.3.3.1
* libQt53DQuickExtras5-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-imports-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DRender-devel-5.15.2+kde39-150400.3.3.1
* libQt53DQuickExtras5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DExtras5-5.15.2+kde39-150400.3.3.1
* libQt53DQuickInput5-debuginfo-5.15.2+kde39-150400.3.3.1
* libqt5-qt3d-debugsource-5.15.2+kde39-150400.3.3.1
* libQt53DLogic-devel-5.15.2+kde39-150400.3.3.1
* libQt53DRender5-debuginfo-5.15.2+kde39-150400.3.3.1
* libQt53DQuickScene2D5-5.15.2+kde39-150400.3.3.1
* libQt53DRender5-5.15.2+kde39-150400.3.3.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch)
* libqt5-qt3d-private-headers-devel-5.15.2+kde39-150400.3.3.1
## References:
* https://www.suse.com/security/cve/CVE-2024-40724.html
* https://bugzilla.suse.com/show_bug.cgi?id=1228204
1
0