openSUSE Updates May 2019

updates@lists.opensuse.org

2 participants
177 discussions

openSUSE-RU-2019:1460-1: moderate: Recommended update for gtk3

by maintenance＠opensuse.org

openSUSE Recommended Update: Recommended update for gtk3 ______________________________________________________________________________ Announcement ID: openSUSE-RU-2019:1460-1 Rating: moderate References: #1134062 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 ______________________________________________________________________________ An update that has one recommended fix can now be installed. Description: This update for gtk3 provides the following fixes: - Set a transparent background for windows to prevent them to blink black when opened. (bsc#1134062) This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Recommended Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.1: zypper in -t patch openSUSE-2019-1460=1 - openSUSE Leap 15.0: zypper in -t patch openSUSE-2019-1460=1 Package List: - openSUSE Leap 15.1 (i586 x86_64): gettext-its-gtk3-3.22.30-lp151.6.3.1 gtk3-debugsource-3.22.30-lp151.6.3.1 gtk3-devel-3.22.30-lp151.6.3.1 gtk3-devel-debuginfo-3.22.30-lp151.6.3.1 gtk3-immodule-amharic-3.22.30-lp151.6.3.1 gtk3-immodule-amharic-debuginfo-3.22.30-lp151.6.3.1 gtk3-immodule-broadway-3.22.30-lp151.6.3.1 gtk3-immodule-broadway-debuginfo-3.22.30-lp151.6.3.1 gtk3-immodule-inuktitut-3.22.30-lp151.6.3.1 gtk3-immodule-inuktitut-debuginfo-3.22.30-lp151.6.3.1 gtk3-immodule-multipress-3.22.30-lp151.6.3.1 gtk3-immodule-multipress-debuginfo-3.22.30-lp151.6.3.1 gtk3-immodule-thai-3.22.30-lp151.6.3.1 gtk3-immodule-thai-debuginfo-3.22.30-lp151.6.3.1 gtk3-immodule-vietnamese-3.22.30-lp151.6.3.1 gtk3-immodule-vietnamese-debuginfo-3.22.30-lp151.6.3.1 gtk3-immodule-xim-3.22.30-lp151.6.3.1 gtk3-immodule-xim-debuginfo-3.22.30-lp151.6.3.1 gtk3-immodules-tigrigna-3.22.30-lp151.6.3.1 gtk3-immodules-tigrigna-debuginfo-3.22.30-lp151.6.3.1 gtk3-tools-3.22.30-lp151.6.3.1 gtk3-tools-debuginfo-3.22.30-lp151.6.3.1 libgtk-3-0-3.22.30-lp151.6.3.1 libgtk-3-0-debuginfo-3.22.30-lp151.6.3.1 typelib-1_0-Gtk-3_0-3.22.30-lp151.6.3.1 - openSUSE Leap 15.1 (noarch): gtk3-branding-upstream-3.22.30-lp151.6.3.1 gtk3-data-3.22.30-lp151.6.3.1 gtk3-lang-3.22.30-lp151.6.3.1 gtk3-schema-3.22.30-lp151.6.3.1 - openSUSE Leap 15.1 (x86_64): gtk3-devel-32bit-3.22.30-lp151.6.3.1 gtk3-devel-32bit-debuginfo-3.22.30-lp151.6.3.1 gtk3-immodule-amharic-32bit-3.22.30-lp151.6.3.1 gtk3-immodule-amharic-32bit-debuginfo-3.22.30-lp151.6.3.1 gtk3-immodule-inuktitut-32bit-3.22.30-lp151.6.3.1 gtk3-immodule-inuktitut-32bit-debuginfo-3.22.30-lp151.6.3.1 gtk3-immodule-multipress-32bit-3.22.30-lp151.6.3.1 gtk3-immodule-multipress-32bit-debuginfo-3.22.30-lp151.6.3.1 gtk3-immodule-thai-32bit-3.22.30-lp151.6.3.1 gtk3-immodule-thai-32bit-debuginfo-3.22.30-lp151.6.3.1 gtk3-immodule-vietnamese-32bit-3.22.30-lp151.6.3.1 gtk3-immodule-vietnamese-32bit-debuginfo-3.22.30-lp151.6.3.1 gtk3-immodule-xim-32bit-3.22.30-lp151.6.3.1 gtk3-immodule-xim-32bit-debuginfo-3.22.30-lp151.6.3.1 gtk3-immodules-tigrigna-32bit-3.22.30-lp151.6.3.1 gtk3-immodules-tigrigna-32bit-debuginfo-3.22.30-lp151.6.3.1 gtk3-tools-32bit-3.22.30-lp151.6.3.1 gtk3-tools-32bit-debuginfo-3.22.30-lp151.6.3.1 libgtk-3-0-32bit-3.22.30-lp151.6.3.1 libgtk-3-0-32bit-debuginfo-3.22.30-lp151.6.3.1 - openSUSE Leap 15.0 (i586 x86_64): gettext-its-gtk3-3.22.30-lp150.3.10.1 gtk3-debugsource-3.22.30-lp150.3.10.1 gtk3-devel-3.22.30-lp150.3.10.1 gtk3-devel-debuginfo-3.22.30-lp150.3.10.1 gtk3-immodule-amharic-3.22.30-lp150.3.10.1 gtk3-immodule-amharic-debuginfo-3.22.30-lp150.3.10.1 gtk3-immodule-broadway-3.22.30-lp150.3.10.1 gtk3-immodule-broadway-debuginfo-3.22.30-lp150.3.10.1 gtk3-immodule-inuktitut-3.22.30-lp150.3.10.1 gtk3-immodule-inuktitut-debuginfo-3.22.30-lp150.3.10.1 gtk3-immodule-multipress-3.22.30-lp150.3.10.1 gtk3-immodule-multipress-debuginfo-3.22.30-lp150.3.10.1 gtk3-immodule-thai-3.22.30-lp150.3.10.1 gtk3-immodule-thai-debuginfo-3.22.30-lp150.3.10.1 gtk3-immodule-vietnamese-3.22.30-lp150.3.10.1 gtk3-immodule-vietnamese-debuginfo-3.22.30-lp150.3.10.1 gtk3-immodule-xim-3.22.30-lp150.3.10.1 gtk3-immodule-xim-debuginfo-3.22.30-lp150.3.10.1 gtk3-immodules-tigrigna-3.22.30-lp150.3.10.1 gtk3-immodules-tigrigna-debuginfo-3.22.30-lp150.3.10.1 gtk3-tools-3.22.30-lp150.3.10.1 gtk3-tools-debuginfo-3.22.30-lp150.3.10.1 libgtk-3-0-3.22.30-lp150.3.10.1 libgtk-3-0-debuginfo-3.22.30-lp150.3.10.1 typelib-1_0-Gtk-3_0-3.22.30-lp150.3.10.1 - openSUSE Leap 15.0 (x86_64): gtk3-devel-32bit-3.22.30-lp150.3.10.1 gtk3-devel-32bit-debuginfo-3.22.30-lp150.3.10.1 gtk3-immodule-amharic-32bit-3.22.30-lp150.3.10.1 gtk3-immodule-amharic-32bit-debuginfo-3.22.30-lp150.3.10.1 gtk3-immodule-inuktitut-32bit-3.22.30-lp150.3.10.1 gtk3-immodule-inuktitut-32bit-debuginfo-3.22.30-lp150.3.10.1 gtk3-immodule-multipress-32bit-3.22.30-lp150.3.10.1 gtk3-immodule-multipress-32bit-debuginfo-3.22.30-lp150.3.10.1 gtk3-immodule-thai-32bit-3.22.30-lp150.3.10.1 gtk3-immodule-thai-32bit-debuginfo-3.22.30-lp150.3.10.1 gtk3-immodule-vietnamese-32bit-3.22.30-lp150.3.10.1 gtk3-immodule-vietnamese-32bit-debuginfo-3.22.30-lp150.3.10.1 gtk3-immodule-xim-32bit-3.22.30-lp150.3.10.1 gtk3-immodule-xim-32bit-debuginfo-3.22.30-lp150.3.10.1 gtk3-immodules-tigrigna-32bit-3.22.30-lp150.3.10.1 gtk3-immodules-tigrigna-32bit-debuginfo-3.22.30-lp150.3.10.1 gtk3-tools-32bit-3.22.30-lp150.3.10.1 gtk3-tools-32bit-debuginfo-3.22.30-lp150.3.10.1 libgtk-3-0-32bit-3.22.30-lp150.3.10.1 libgtk-3-0-32bit-debuginfo-3.22.30-lp150.3.10.1 - openSUSE Leap 15.0 (noarch): gtk3-branding-upstream-3.22.30-lp150.3.10.1 gtk3-data-3.22.30-lp150.3.10.1 gtk3-lang-3.22.30-lp150.3.10.1 gtk3-schema-3.22.30-lp150.3.10.1 References: https://bugzilla.suse.com/1134062

3 years, 1 month

openSUSE-RU-2019:1469-1: moderate: Recommended update for xfdesktop

by maintenance＠opensuse.org

3 years, 1 month

openSUSE-RU-2019:1465-1: moderate: Recommended update for vhostmd

by maintenance＠opensuse.org

openSUSE Recommended Update: Recommended update for vhostmd ______________________________________________________________________________ Announcement ID: openSUSE-RU-2019:1465-1 Rating: moderate References: #1129772 Affected Products: openSUSE Leap 15.0 ______________________________________________________________________________ An update that has one recommended fix can now be installed. Description: This update for vhostmd fixes the following issues: Update to vhostmd 1.1 (bsc#1129772) - Merge libserialclient with libmetrics - Add virtio as transport mechanism - Update to work with modern Xen - Add SIGPIPE handler and reconnect - Add systemd service file - Modernize build files - Misc bug fixes and improvements This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Recommended Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.0: zypper in -t patch openSUSE-2019-1465=1 Package List: - openSUSE Leap 15.0 (x86_64): libmetrics-devel-1.1-lp150.7.1 libmetrics0-1.1-lp150.7.1 libmetrics0-debuginfo-1.1-lp150.7.1 vhostmd-1.1-lp150.7.1 vhostmd-debuginfo-1.1-lp150.7.1 vhostmd-debugsource-1.1-lp150.7.1 vm-dump-metrics-1.1-lp150.7.1 vm-dump-metrics-debuginfo-1.1-lp150.7.1 References: https://bugzilla.suse.com/1129772

3 years, 1 month

openSUSE-RU-2019:1464-1: moderate: Recommended update for monitoring-plugins

by maintenance＠opensuse.org

openSUSE Recommended Update: Recommended update for monitoring-plugins ______________________________________________________________________________ Announcement ID: openSUSE-RU-2019:1464-1 Rating: moderate References: #1132350 #1132903 #1133107 Affected Products: openSUSE Leap 15.0 ______________________________________________________________________________ An update that has three recommended fixes can now be installed. Description: This update for monitoring-plugins fixes the following issues: - update AppArmor profiles for usrMerge (related to bsc#1132350) - grep in check_cups - ps in check_procs and check_procs.sle15 - update usr.lib.nagios.plugins.check_procs to bash in /usr - support IPv4 ping for dual stacked host again (bsc#1132903) - update usr.lib.nagios.plugins.check_procs again for sle15 and above so that ptrace is allowed (bsc#1133107) - add /etc/nrpe.d/*.cfg snipplets - copy usr.lib.nagios.plugins.check_procs as usr.lib.nagios.plugins.check_procs.sle15 and use that for sle15 and above. "ptrace" to enable ptrace globally is needed here. This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Recommended Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.0: zypper in -t patch openSUSE-2019-1464=1 Package List: - openSUSE Leap 15.0 (x86_64): monitoring-plugins-2.2-lp150.2.3.1 monitoring-plugins-all-2.2-lp150.2.3.1 monitoring-plugins-breeze-2.2-lp150.2.3.1 monitoring-plugins-by_ssh-2.2-lp150.2.3.1 monitoring-plugins-by_ssh-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-cluster-2.2-lp150.2.3.1 monitoring-plugins-cluster-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-common-2.2-lp150.2.3.1 monitoring-plugins-common-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-cups-2.2-lp150.2.3.1 monitoring-plugins-dbi-2.2-lp150.2.3.1 monitoring-plugins-dbi-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-dbi-mysql-2.2-lp150.2.3.1 monitoring-plugins-dbi-pgsql-2.2-lp150.2.3.1 monitoring-plugins-dbi-sqlite3-2.2-lp150.2.3.1 monitoring-plugins-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-debugsource-2.2-lp150.2.3.1 monitoring-plugins-dhcp-2.2-lp150.2.3.1 monitoring-plugins-dhcp-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-dig-2.2-lp150.2.3.1 monitoring-plugins-dig-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-disk-2.2-lp150.2.3.1 monitoring-plugins-disk-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-disk_smb-2.2-lp150.2.3.1 monitoring-plugins-dns-2.2-lp150.2.3.1 monitoring-plugins-dns-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-dummy-2.2-lp150.2.3.1 monitoring-plugins-dummy-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-extras-2.2-lp150.2.3.1 monitoring-plugins-file_age-2.2-lp150.2.3.1 monitoring-plugins-flexlm-2.2-lp150.2.3.1 monitoring-plugins-fping-2.2-lp150.2.3.1 monitoring-plugins-fping-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-hpjd-2.2-lp150.2.3.1 monitoring-plugins-hpjd-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-http-2.2-lp150.2.3.1 monitoring-plugins-http-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-icmp-2.2-lp150.2.3.1 monitoring-plugins-icmp-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-ide_smart-2.2-lp150.2.3.1 monitoring-plugins-ide_smart-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-ifoperstatus-2.2-lp150.2.3.1 monitoring-plugins-ifstatus-2.2-lp150.2.3.1 monitoring-plugins-ircd-2.2-lp150.2.3.1 monitoring-plugins-ldap-2.2-lp150.2.3.1 monitoring-plugins-ldap-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-load-2.2-lp150.2.3.1 monitoring-plugins-load-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-log-2.2-lp150.2.3.1 monitoring-plugins-mailq-2.2-lp150.2.3.1 monitoring-plugins-mrtg-2.2-lp150.2.3.1 monitoring-plugins-mrtg-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-mrtgtraf-2.2-lp150.2.3.1 monitoring-plugins-mrtgtraf-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-mysql-2.2-lp150.2.3.1 monitoring-plugins-mysql-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-nagios-2.2-lp150.2.3.1 monitoring-plugins-nagios-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-nt-2.2-lp150.2.3.1 monitoring-plugins-nt-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-ntp_peer-2.2-lp150.2.3.1 monitoring-plugins-ntp_peer-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-ntp_time-2.2-lp150.2.3.1 monitoring-plugins-ntp_time-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-nwstat-2.2-lp150.2.3.1 monitoring-plugins-nwstat-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-oracle-2.2-lp150.2.3.1 monitoring-plugins-overcr-2.2-lp150.2.3.1 monitoring-plugins-overcr-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-pgsql-2.2-lp150.2.3.1 monitoring-plugins-pgsql-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-ping-2.2-lp150.2.3.1 monitoring-plugins-ping-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-procs-2.2-lp150.2.3.1 monitoring-plugins-procs-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-radius-2.2-lp150.2.3.1 monitoring-plugins-radius-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-real-2.2-lp150.2.3.1 monitoring-plugins-real-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-rpc-2.2-lp150.2.3.1 monitoring-plugins-sensors-2.2-lp150.2.3.1 monitoring-plugins-smtp-2.2-lp150.2.3.1 monitoring-plugins-smtp-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-snmp-2.2-lp150.2.3.1 monitoring-plugins-snmp-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-ssh-2.2-lp150.2.3.1 monitoring-plugins-ssh-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-swap-2.2-lp150.2.3.1 monitoring-plugins-swap-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-tcp-2.2-lp150.2.3.1 monitoring-plugins-tcp-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-time-2.2-lp150.2.3.1 monitoring-plugins-time-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-ups-2.2-lp150.2.3.1 monitoring-plugins-ups-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-users-2.2-lp150.2.3.1 monitoring-plugins-users-debuginfo-2.2-lp150.2.3.1 monitoring-plugins-wave-2.2-lp150.2.3.1 References: https://bugzilla.suse.com/1132350 https://bugzilla.suse.com/1132903 https://bugzilla.suse.com/1133107

3 years, 1 month

openSUSE-RU-2019:1457-1: important: Recommended update for glib-networking

by maintenance＠opensuse.org

openSUSE Recommended Update: Recommended update for glib-networking ______________________________________________________________________________ Announcement ID: openSUSE-RU-2019:1457-1 Rating: important References: #1134795 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 ______________________________________________________________________________ An update that has one recommended fix can now be installed. Description: This update for glib-networking fixes the following issues: - Fix invalid TLS sessions when TLS 1.3 is used (bsc#1134795) This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Recommended Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.1: zypper in -t patch openSUSE-2019-1457=1 - openSUSE Leap 15.0: zypper in -t patch openSUSE-2019-1457=1 Package List: - openSUSE Leap 15.1 (i586 x86_64): glib-networking-2.54.1-lp151.3.3.1 glib-networking-debuginfo-2.54.1-lp151.3.3.1 glib-networking-debugsource-2.54.1-lp151.3.3.1 - openSUSE Leap 15.1 (noarch): glib-networking-lang-2.54.1-lp151.3.3.1 - openSUSE Leap 15.1 (x86_64): glib-networking-32bit-2.54.1-lp151.3.3.1 glib-networking-32bit-debuginfo-2.54.1-lp151.3.3.1 - openSUSE Leap 15.0 (i586 x86_64): glib-networking-2.54.1-lp150.2.3.1 glib-networking-debuginfo-2.54.1-lp150.2.3.1 glib-networking-debugsource-2.54.1-lp150.2.3.1 - openSUSE Leap 15.0 (x86_64): glib-networking-32bit-2.54.1-lp150.2.3.1 glib-networking-32bit-debuginfo-2.54.1-lp150.2.3.1 - openSUSE Leap 15.0 (noarch): glib-networking-lang-2.54.1-lp150.2.3.1 References: https://bugzilla.suse.com/1134795

3 years, 1 month

openSUSE-SU-2019:1455-1: Security update for transfig

by opensuse-security＠opensuse.org

openSUSE Security Update: Security update for transfig ______________________________________________________________________________ Announcement ID: openSUSE-SU-2019:1455-1 Rating: low References: #1106531 Cross-References: CVE-2018-16140 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for transfig fixes the following issues: Security issue fixed: - CVE-2018-16140: Fixed a buffer underwrite vulnerability in get_line() in read.c, which allowed an attacker to write prior to the beginning of the buffer via specially crafted .fig file (bsc#1106531) This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.1: zypper in -t patch openSUSE-2019-1455=1 - openSUSE Leap 15.0: zypper in -t patch openSUSE-2019-1455=1 Package List: - openSUSE Leap 15.1 (x86_64): transfig-3.2.6a-lp151.4.3.1 transfig-debuginfo-3.2.6a-lp151.4.3.1 transfig-debugsource-3.2.6a-lp151.4.3.1 - openSUSE Leap 15.0 (x86_64): transfig-3.2.6a-lp150.3.3.2 transfig-debuginfo-3.2.6a-lp150.3.3.2 transfig-debugsource-3.2.6a-lp150.3.3.2 References: https://www.suse.com/security/cve/CVE-2018-16140.html https://bugzilla.suse.com/1106531

3 years, 1 month

openSUSE-SU-2019:1456-1: important: Security update for chromium

by opensuse-security＠opensuse.org

openSUSE Security Update: Security update for chromium ______________________________________________________________________________ Announcement ID: openSUSE-SU-2019:1456-1 Rating: important References: #1134218 Cross-References: CVE-2019-5824 CVE-2019-5827 Affected Products: openSUSE Leap 42.3 openSUSE Leap 15.1 openSUSE Leap 15.0 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for chromium fixes the following issues: Chromium was updated to 74.0.3729.157: - Various security fixes from internal audits, fuzzing and other initiatives Includes security fixes from 74.0.3729.131 (boo#1134218): - CVE-2019-5827: Out-of-bounds access in SQLite - CVE-2019-5824: Parameter passing error in media player Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 42.3: zypper in -t patch openSUSE-2019-1456=1 - openSUSE Leap 15.1: zypper in -t patch openSUSE-2019-1456=1 - openSUSE Leap 15.0: zypper in -t patch openSUSE-2019-1456=1 Package List: - openSUSE Leap 42.3 (x86_64): chromedriver-74.0.3729.157-211.1 chromedriver-debuginfo-74.0.3729.157-211.1 chromium-74.0.3729.157-211.1 chromium-debuginfo-74.0.3729.157-211.1 chromium-debugsource-74.0.3729.157-211.1 - openSUSE Leap 15.1 (x86_64): chromedriver-74.0.3729.157-lp151.2.3.1 chromedriver-debuginfo-74.0.3729.157-lp151.2.3.1 chromium-74.0.3729.157-lp151.2.3.1 chromium-debuginfo-74.0.3729.157-lp151.2.3.1 chromium-debugsource-74.0.3729.157-lp151.2.3.1 - openSUSE Leap 15.0 (x86_64): chromedriver-74.0.3729.157-lp150.212.1 chromedriver-debuginfo-74.0.3729.157-lp150.212.1 chromium-74.0.3729.157-lp150.212.1 chromium-debuginfo-74.0.3729.157-lp150.212.1 chromium-debugsource-74.0.3729.157-lp150.212.1 References: https://www.suse.com/security/cve/CVE-2019-5824.html https://www.suse.com/security/cve/CVE-2019-5827.html https://bugzilla.suse.com/1134218

3 years, 1 month

openSUSE-SU-2019:1450-1: important: Security update for systemd

by opensuse-security＠opensuse.org

openSUSE Security Update: Security update for systemd ______________________________________________________________________________ Announcement ID: openSUSE-SU-2019:1450-1 Rating: important References: #1080919 #1121563 #1125352 #1126056 #1127557 #1128657 #1130230 #1132348 #1132400 #1132721 #955942 Cross-References: CVE-2018-6954 CVE-2019-3842 CVE-2019-6454 Affected Products: openSUSE Leap 42.3 ______________________________________________________________________________ An update that solves three vulnerabilities and has 8 fixes is now available. Description: This update for systemd fixes the following issues: Security issues fixed: - CVE-2018-6954: Fixed a vulnerability in the symlink handling of systemd-tmpfiles which allowed a local user to obtain ownership of arbitrary files (bsc#1080919). - CVE-2019-3842: Fixed a vulnerability in pam_systemd which allowed a local user to escalate privileges (bsc#1132348). - CVE-2019-6454: Fixed a denial of service caused by long dbus messages (bsc#1125352). Non-security issues fixed: - systemd-coredump: generate a stack trace of all core dumps (jsc#SLE-5933) - udevd: notify when max number value of children is reached only once per batch of events (bsc#1132400) - sd-bus: bump message queue size again (bsc#1132721) - core: only watch processes when it's really necessary (bsc#955942 bsc#1128657) - rules: load drivers only on "add" events (bsc#1126056) - sysctl: Don't pass null directive argument to '%s' (bsc#1121563) - Do not automatically online memory on s390x (bsc#1127557) This update was imported from the SUSE:SLE-12-SP2:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 42.3: zypper in -t patch openSUSE-2019-1450=1 Package List: - openSUSE Leap 42.3 (i586 x86_64): libsystemd0-228-71.1 libsystemd0-debuginfo-228-71.1 libsystemd0-mini-228-71.1 libsystemd0-mini-debuginfo-228-71.1 libudev-devel-228-71.1 libudev-mini-devel-228-71.1 libudev-mini1-228-71.1 libudev-mini1-debuginfo-228-71.1 libudev1-228-71.1 libudev1-debuginfo-228-71.1 nss-myhostname-228-71.1 nss-myhostname-debuginfo-228-71.1 nss-mymachines-228-71.1 nss-mymachines-debuginfo-228-71.1 systemd-228-71.1 systemd-debuginfo-228-71.1 systemd-debugsource-228-71.1 systemd-devel-228-71.1 systemd-logger-228-71.1 systemd-mini-228-71.1 systemd-mini-debuginfo-228-71.1 systemd-mini-debugsource-228-71.1 systemd-mini-devel-228-71.1 systemd-mini-sysvinit-228-71.1 systemd-sysvinit-228-71.1 udev-228-71.1 udev-debuginfo-228-71.1 udev-mini-228-71.1 udev-mini-debuginfo-228-71.1 - openSUSE Leap 42.3 (noarch): systemd-bash-completion-228-71.1 systemd-mini-bash-completion-228-71.1 - openSUSE Leap 42.3 (x86_64): libsystemd0-32bit-228-71.1 libsystemd0-debuginfo-32bit-228-71.1 libudev1-32bit-228-71.1 libudev1-debuginfo-32bit-228-71.1 nss-myhostname-32bit-228-71.1 nss-myhostname-debuginfo-32bit-228-71.1 systemd-32bit-228-71.1 systemd-debuginfo-32bit-228-71.1 References: https://www.suse.com/security/cve/CVE-2018-6954.html https://www.suse.com/security/cve/CVE-2019-3842.html https://www.suse.com/security/cve/CVE-2019-6454.html https://bugzilla.suse.com/1080919 https://bugzilla.suse.com/1121563 https://bugzilla.suse.com/1125352 https://bugzilla.suse.com/1126056 https://bugzilla.suse.com/1127557 https://bugzilla.suse.com/1128657 https://bugzilla.suse.com/1130230 https://bugzilla.suse.com/1132348 https://bugzilla.suse.com/1132400 https://bugzilla.suse.com/1132721 https://bugzilla.suse.com/955942

3 years, 1 month

openSUSE-RU-2019:1454-1: moderate: Recommended update for xfdesktop

by maintenance＠opensuse.org

openSUSE Recommended Update: Recommended update for xfdesktop ______________________________________________________________________________ Announcement ID: openSUSE-RU-2019:1454-1 Rating: moderate References: #1134125 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 openSUSE Backports SLE-15 ______________________________________________________________________________ An update that has one recommended fix can now be installed. Description: This update for xfdesktop fixes the following issues: - Wallpaper scaling failed if image contained EXIF markup for rotation (boo#1134125) Patch Instructions: To install this openSUSE Recommended Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.1: zypper in -t patch openSUSE-2019-1454=1 - openSUSE Leap 15.0: zypper in -t patch openSUSE-2019-1454=1 - openSUSE Backports SLE-15: zypper in -t patch openSUSE-2019-1454=1 Package List: - openSUSE Leap 15.1 (x86_64): xfdesktop-4.12.4-lp151.4.3.1 xfdesktop-debuginfo-4.12.4-lp151.4.3.1 xfdesktop-debugsource-4.12.4-lp151.4.3.1 - openSUSE Leap 15.1 (noarch): xfdesktop-branding-upstream-4.12.4-lp151.4.3.1 xfdesktop-lang-4.12.4-lp151.4.3.1 - openSUSE Leap 15.0 (noarch): xfdesktop-branding-upstream-4.12.4-lp150.2.3.1 xfdesktop-lang-4.12.4-lp150.2.3.1 - openSUSE Leap 15.0 (x86_64): xfdesktop-4.12.4-lp150.2.3.1 xfdesktop-debuginfo-4.12.4-lp150.2.3.1 xfdesktop-debugsource-4.12.4-lp150.2.3.1 - openSUSE Backports SLE-15 (aarch64 ppc64le s390x x86_64): xfdesktop-4.12.4-bp150.3.3.1 - openSUSE Backports SLE-15 (noarch): xfdesktop-branding-upstream-4.12.4-bp150.3.3.1 xfdesktop-lang-4.12.4-bp150.3.3.1 References: https://bugzilla.suse.com/1134125

3 years, 1 month

openSUSE-SU-2019:1453-1: moderate: Security update for evolution

by opensuse-security＠opensuse.org

openSUSE Security Update: Security update for evolution ______________________________________________________________________________ Announcement ID: openSUSE-SU-2019:1453-1 Rating: moderate References: #1125230 Cross-References: CVE-2018-15587 Affected Products: openSUSE Leap 15.0 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for evolution fixes the following issues: Security issue fixed: - CVE-2018-15587: Fixed an issue with spoofed pgp signatures by using specially crafted emails (bsc#1125230). This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.0: zypper in -t patch openSUSE-2019-1453=1 Package List: - openSUSE Leap 15.0 (noarch): evolution-lang-3.26.6-lp150.3.3.1 - openSUSE Leap 15.0 (x86_64): evolution-3.26.6-lp150.3.3.1 evolution-debuginfo-3.26.6-lp150.3.3.1 evolution-debugsource-3.26.6-lp150.3.3.1 evolution-devel-3.26.6-lp150.3.3.1 evolution-plugin-bogofilter-3.26.6-lp150.3.3.1 evolution-plugin-bogofilter-debuginfo-3.26.6-lp150.3.3.1 evolution-plugin-pst-import-3.26.6-lp150.3.3.1 evolution-plugin-pst-import-debuginfo-3.26.6-lp150.3.3.1 evolution-plugin-spamassassin-3.26.6-lp150.3.3.1 evolution-plugin-spamassassin-debuginfo-3.26.6-lp150.3.3.1 glade-catalog-evolution-3.26.6-lp150.3.3.1 glade-catalog-evolution-debuginfo-3.26.6-lp150.3.3.1 References: https://www.suse.com/security/cve/CVE-2018-15587.html https://bugzilla.suse.com/1125230

3 years, 1 month

Jump to page:

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

openSUSE Updates May 2019