openSUSE Security Update: update for cgit
______________________________________________________________________________
Announcement ID: openSUSE-SU-2012:1422-1
Rating: important
References: #783012
Cross-References: CVE-2012-4465
Affected Products:
openSUSE 12.2
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
Specially-crafted commits could trigger a heap-based buffer
overflow
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE 12.2:
zypper in -t patch openSUSE-2012-752
To bring your system up-to-date, use "zypper patch".
Package List:
- openSUSE 12.2 (i586 x86_64):
cgit-0.9.0.2-14.4.1
cgit-debuginfo-0.9.0.2-14.4.1
cgit-debugsource-0.9.0.2-14.4.1
References:
http://support.novell.com/security/cve/CVE-2012-4465.htmlhttps://bugzilla.novell.com/783012
openSUSE Security Update: update for cgit
______________________________________________________________________________
Announcement ID: openSUSE-SU-2012:1421-1
Rating: important
References: #783012
Cross-References: CVE-2012-4465
Affected Products:
openSUSE 12.1
______________________________________________________________________________
An update that fixes one vulnerability is now available.
Description:
Specially-crafted commits could trigger a heap-based buffer
overflow
Patch Instructions:
To install this openSUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE 12.1:
zypper in -t patch openSUSE-2012-753
To bring your system up-to-date, use "zypper patch".
Package List:
- openSUSE 12.1 (i586 x86_64):
cgit-0.9.0.2-9.4.1
cgit-debuginfo-0.9.0.2-9.4.1
cgit-debugsource-0.9.0.2-9.4.1
References:
http://support.novell.com/security/cve/CVE-2012-4465.htmlhttps://bugzilla.novell.com/783012
openSUSE Recommended Update: nfs-utils: Several bug-fixes
______________________________________________________________________________
Announcement ID: openSUSE-RU-2012:1416-1
Rating: low
References: #772534 #779851 #785803
Affected Products:
openSUSE 12.2
______________________________________________________________________________
An update that has three recommended fixes can now be
installed.
Description:
This update fixes the following issues for nfs-utils:
- bnc#779851: Add dependency on "netcfg" to ensure
/etc/services is present
- bnc#772534: nfs4-no-mount does send MOUNT_UMNT rpcs when
unmounting an 'nfs4' filesystem. They are only required
for nfs2,3
- bnc#785803: Make sure /usr/sbin/nfsidmap uses correct
domain name for username mapping
Patch Instructions:
To install this openSUSE Recommended Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE 12.2:
zypper in -t patch openSUSE-2012-748
To bring your system up-to-date, use "zypper patch".
Package List:
- openSUSE 12.2 (i586 x86_64):
nfs-client-1.2.6-2.12.1
nfs-client-debuginfo-1.2.6-2.12.1
nfs-doc-1.2.6-2.12.1
nfs-kernel-server-1.2.6-2.12.1
nfs-kernel-server-debuginfo-1.2.6-2.12.1
nfs-utils-debugsource-1.2.6-2.12.1
References:
https://bugzilla.novell.com/772534https://bugzilla.novell.com/779851https://bugzilla.novell.com/785803
openSUSE Recommended Update: timezone: update to 2012h
______________________________________________________________________________
Announcement ID: openSUSE-RU-2012:1413-1
Rating: important
References: #787005
Affected Products:
openSUSE 12.2
openSUSE 12.1
openSUSE 11.4
______________________________________________________________________________
An update that has one recommended fix can now be installed.
Description:
This update fixes the following issues for timezone:
- bnc#787005: update to 2012h:
* Samoa fall 2012 and later
* Palestine fall 2012
* Bahia no longer has DST
* Tocantins has DST
* Israel has new DST rules next year
* Jordan stays on DST this winter
- Update Url from the glibc page (which doesn't talk about
timezone data at all (anymore?)) to the IANA page which
is much more informative.
Patch Instructions:
To install this openSUSE Recommended Update use YaST online_update.
Alternatively you can run the command listed for your product:
- openSUSE 12.2:
zypper in -t patch openSUSE-2012-746
- openSUSE 12.1:
zypper in -t patch openSUSE-2012-746
- openSUSE 11.4:
zypper in -t patch openSUSE-2012-746
To bring your system up-to-date, use "zypper patch".
Package List:
- openSUSE 12.2 (i586 x86_64):
timezone-2012h-1.8.1
timezone-debuginfo-2012h-1.8.1
timezone-debugsource-2012h-1.8.1
- openSUSE 12.2 (noarch):
timezone-java-2012h-1.8.1
- openSUSE 12.1 (i586 x86_64):
timezone-2012h-1.10.1
timezone-debuginfo-2012h-1.10.1
timezone-debugsource-2012h-1.10.1
- openSUSE 12.1 (noarch):
timezone-java-2012h-1.10.1
- openSUSE 11.4 (i586 x86_64):
timezone-2012h-10.1
timezone-debuginfo-2012h-10.1
timezone-debugsource-2012h-10.1
- openSUSE 11.4 (noarch):
timezone-java-2012h-10.1
References:
https://bugzilla.novell.com/787005