openSUSE Security Update: Security update for the_silver_searcher ______________________________________________________________________________ Announcement ID: openSUSE-SU-2017:1984-1 Rating: moderate References: #1050057 Affected Products: openSUSE Leap 42.3 openSUSE Leap 42.2 ______________________________________________________________________________ An update that contains security fixes can now be installed. Description: This update for the_silver_searcher to version 2.0.0 fixes a minor security issue and includes various improvements. New and updated functionality: - New and updated support for various file types - Performance improvements, including faster substring search - Add --print-all-files options to print all files searched - Add support for inverting ignore rules (e.g. !blah.txt) - Add zsh completion function The following functionality has changed: - No longer read from .agignore, .ignore is used The following potential security issue was fixed: - Heap buffer overflow when searching an absolute path (boo#1050057) The following bug fixes are included: - Fix context line printing when reading from a pipe - Ignore local-domain socket just like named pipes - Fix --word-regexp not applying to alternates Patch Instructions: To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE Leap 42.3: zypper in -t patch openSUSE-2017-850=1 - openSUSE Leap 42.2: zypper in -t patch openSUSE-2017-850=1 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE Leap 42.3 (i586 x86_64): the_silver_searcher-2.0.0-6.1 the_silver_searcher-debuginfo-2.0.0-6.1 the_silver_searcher-debugsource-2.0.0-6.1 - openSUSE Leap 42.2 (i586 x86_64): the_silver_searcher-2.0.0-3.3.1 the_silver_searcher-debuginfo-2.0.0-3.3.1 the_silver_searcher-debugsource-2.0.0-3.3.1 References: https://bugzilla.suse.com/1050057