[opensuse] Re: [security-announce] openSUSE-SU-2014:1115-1: important: glibc
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thursday, 2014-09-11 at 09:04 +0200, opensuse-security@opensuse.org wrote:
openSUSE Security Update: glibc ______________________________________________________________________________
Announcement ID: openSUSE-SU-2014:1115-1 Rating: important References: #887022 #892073 #894553 Cross-References: CVE-2014-0475 CVE-2014-5119 CVE-2014-6040
Affected Products: openSUSE 13.1 openSUSE 12.3 ______________________________________________________________________________
An update that fixes three vulnerabilities is now available.
...
Patch Instructions:
To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product:
- openSUSE 13.1:
zypper in -t patch openSUSE-2014-536
- openSUSE 12.3:
zypper in -t patch openSUSE-2014-536
To bring your system up-to-date, use "zypper patch".
I think a reboot should be recomended. I just did the update, and the list of stale apps (zypper ps) is tremendous. Even an "init 1" does not clear all. - -- Cheers, Carlos E. R. (from 13.1 x86_64 "Bottle" at Telcontar) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (GNU/Linux) iEUEARECAAYFAlQRWyYACgkQtTMYHG2NR9U2ngCgi9JZOpOhIGZDSjLutjNvwGDV opEAmMHVfq5ERZtXnHeWCD8irDyEchA= =WIRA -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org
On Thu, Sep 11, 2014 at 10:19:43AM +0200, Carlos E. R. wrote:
On Thursday, 2014-09-11 at 09:04 +0200, opensuse-security@opensuse.org wrote:
openSUSE Security Update: glibc ______________________________________________________________________________
Announcement ID: openSUSE-SU-2014:1115-1 Rating: important References: #887022 #892073 #894553 Cross-References: CVE-2014-0475 CVE-2014-5119 CVE-2014-6040
Affected Products: openSUSE 13.1 openSUSE 12.3 ______________________________________________________________________________
An update that fixes three vulnerabilities is now available.
...
Patch Instructions:
To install this openSUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product:
- openSUSE 13.1:
zypper in -t patch openSUSE-2014-536
- openSUSE 12.3:
zypper in -t patch openSUSE-2014-536
To bring your system up-to-date, use "zypper patch".
I think a reboot should be recomended. I just did the update, and the list of stale apps (zypper ps) is tremendous. Even an "init 1" does not clear all.
Partially yes. However the security issues itself are mostly exploitable by freshly started applications. Ciao, Marcus -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org
participants (2)
-
Carlos E. R. -
Marcus Meissner