openSUSE Security October 2016

security@lists.opensuse.org

6 participants
4 discussions

[opensuse-security] Linux Kernel Vulnerabliltiy and OpenSuSE 13.2
by Robert Sichler 02 Nov '16

02 Nov '16

Should I expect a patch for OpenSUSE 13.2 (x86_64) to address the Linux kernel vulnerability known as Dirty COW (CVE-2016-5195)? Or is there another direction I should turn? Best regards, -Bob ________________________________ Notice: This communication, including attachments, may contain confidential or proprietary information to be conveyed solely for the intended recipient(s). If you are not the intended recipient, or if you otherwise received this message in error, please notify the sender immediately by return e-mail and promptly delete this e-mail, including attachments, without reading or saving them in any manner. The unauthorized use, dissemination, distribution, or reproduction of this e-mail, including attachments, is strictly prohibited and may be unlawful. -- To unsubscribe, e-mail: opensuse-security+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse-security+owner(a)opensuse.org

3 5

[opensuse-security] Re: [security-announce] openSUSE-SU-2016:2386-1: important: Security update for MozillaFirefox, mozilla-nss
by Carlos E. R. 19 Oct '16

19 Oct '16

On 2016-09-26 18:10, opensuse-security(a)opensuse.org wrote: > openSUSE Security Update: Security update for MozillaFirefox, mozilla-nss > ______________________________________________________________________________ > > Announcement ID: openSUSE-SU-2016:2386-1 > Rating: important > References: #999701 > Cross-References: CVE-2016-2827 CVE-2016-5256 CVE-2016-5257 > CVE-2016-5270 CVE-2016-5271 CVE-2016-5272 > CVE-2016-5273 CVE-2016-5274 CVE-2016-5275 > CVE-2016-5276 CVE-2016-5277 CVE-2016-5278 > CVE-2016-5279 CVE-2016-5280 CVE-2016-5281 > CVE-2016-5282 CVE-2016-5283 CVE-2016-5284 > > Affected Products: > openSUSE 13.1 > ______________________________________________________________________________ > > An update that fixes 18 vulnerabilities is now available. I get an error Box: +++................. An error occurred while loading or saving configuration information for [Firefox|thunderbird-bin]. Some of your configuration settings may not work properly. Details: Configuration server couldn't be contacted: D-BUS error: The GConf daemon is currently shutting down. Configuration server couldn't be contacted: D-BUS error: The GConf daemon is currently shutting down. Configuration server couldn't be contacted: D-BUS error: The GConf daemon is currently shutting down. Configuration server couldn't be contacted: D-BUS error: The GConf daemon is currently shutting down. .................++- The daemon is and was running. FF also says: +++....................... Firefox is not currently set as your default browser. Would you like to make it your default browser? [V] Always perform this check when starting Firefox .......................++- Saying Yes does not work, it asks again the next time. -- Cheers / Saludos, Carlos E. R. (from 13.1 x86_64 "Bottle" at Telcontar)

3 5

[opensuse-security] FYI AppArmor abstraction for AMD proprietary driver
by Malte Gell 10 Oct '16

10 Oct '16

This is an abstraction for those folks who prefer to use the proprietary AMD driver It needs to be added to every profile for X11 apps. It may be more convenient to copy the whole rule into abstractions/x to avoid changing existing profiles. To be honest, this is, what I did when I used fglrx.

2 3

[opensuse-security] RPM signature verification
by Malte Gell 06 Oct '16

06 Oct '16

Hi there, does RPM need to run gpg to verify signatures or is this hardcoded directly into RPM? What is the default behaviour of rpm if signature verification fails for whatever reason, does rpm abort installation of the package? thanx -- To unsubscribe, e-mail: opensuse-security+unsubscribe(a)opensuse.org To contact the owner, e-mail: opensuse-security+owner(a)opensuse.org

3 5

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

2000

1999

1998

1997

1996

openSUSE Security October 2016