openSUSE Recommended Update: update for kadu ______________________________________________________________________________ Announcement ID: openSUSE-RU-2012:0350-1 Rating: moderate References: #749036 Affected Products: openSUSE 12.1 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: Specially crafted messages could inject Javascript code Patch Instructions: To install this openSUSE Recommended Update use YaST online_update. Alternatively you can run the command listed for your product: - openSUSE 12.1: zypper in -t patch openSUSE-2012-150 To bring your system up-to-date, use "zypper patch". Package List: - openSUSE 12.1 (i586 x86_64): kadu-0.10.1-2.5.1 kadu-anonymous_check-0.10.1-2.5.1 kadu-anonymous_check-debuginfo-0.10.1-2.5.1 kadu-debuginfo-0.10.1-2.5.1 kadu-debugsource-0.10.1-2.5.1 kadu-devel-0.10.1-2.5.1 kadu-globalhotkeys-0.10.1-2.5.1 kadu-globalhotkeys-debuginfo-0.10.1-2.5.1 kadu-import_history-0.10.1-2.5.1 kadu-import_history-debuginfo-0.10.1-2.5.1 kadu-lednotify-0.10.1-2.5.1 kadu-lednotify-debuginfo-0.10.1-2.5.1 kadu-messagessplitter-0.10.1-2.5.1 kadu-messagessplitter-debuginfo-0.10.1-2.5.1 kadu-mimetex-0.10.1-2.5.1 kadu-mimetex-debuginfo-0.10.1-2.5.1 kadu-networkping-0.10.1-2.5.1 kadu-networkping-debuginfo-0.10.1-2.5.1 kadu-nextinfo-0.10.1-2.5.1 kadu-nextinfo-debuginfo-0.10.1-2.5.1 kadu-panelkadu-0.10.1-2.5.1 kadu-panelkadu-debuginfo-0.10.1-2.5.1 kadu-senthistory-0.10.1-2.5.1 kadu-senthistory-debuginfo-0.10.1-2.5.1 kadu-sound-bns-0.10.1-2.5.1 kadu-sound-drums-0.10.1-2.5.1 kadu-sound-florkus-0.10.1-2.5.1 kadu-sound-michalsrodek-0.10.1-2.5.1 kadu-sound-percussion-0.10.1-2.5.1 kadu-sound-ultr-0.10.1-2.5.1 References: http://support.novell.com/security/cve/CVE-2012-1410.html https://bugzilla.novell.com/749036