Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 0 articles for you...
100
security advisorymoderatethreatopenSUSE 2026-2116-1 Moderate CSYNC2 Temp Directory Issue
An update that solves one vulnerability can now be installed.. # Security update for csync2 Announcement ID: SUSE-SU-2026:2116-1 Release Date: 2026-05-29T15:29:09Z Rating: moderate References: * bsc#1262472 Cross-References: * CVE-2026-41051 CVSS scores: * CVE-2026-41051 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-41051 ( SUSE ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H * CVE-2026-41051 ( NVD ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-41051 ( NVD ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Availability Extension 15 SP4 * SUSE Linux Enterprise High Availability Extension 15 SP5 * SUSE Linux Enterprise High Availability Extension 15 SP6 * SUSE Linux Enterprise High Availability Extension 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for csync2 fixes the following issue * CVE-2026-41051: uses insecure temporary directories when compiled with C99 or later (bsc#1262472). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Availability Extension 15 SP4 zypper in -t patch SUSE-SLE-Product-HA-15-SP4-2026-2116=1 * SUSE Linux Enterprise High Availability Extension 15 SP5 zypper in -t patch SUSE-SLE-Product-HA-15-SP5-2026-2116=1 * SUSE Linux Enterprise High Availability Extension 15 SP6 zypper in -t patch SUSE-SLE-Product-HA-15-SP6-2026-2116=1 * openSUSE Leap 15.3 zypper in -t patch SUSE-2026-2116=1 * SUSE Linux Enterprise High Availability Extension 15 SP7 zypper in -t patch SUSE-SLE-Product-HA-15-SP7-2026-2116=1 ## Package List: * SUSE Linux Enterprise High Availability Extension 15 SP4 (aarch64 ppc64le s390x x86_64) * csync2-debuginfo-2.0+git.1600444747.83b3644-150300.3.6.1 * csync2-2.0+git.1600444747.83b3644-150300.3.6.1 * csync2-debugsource-2.0+git.1600444747.83b3644-150300.3.6.1 * SUSE Linux Enterprise High Availability Extension 15 SP5 (aarch64 ppc64le s390x x86_64) * csync2-debuginfo-2.0+git.1600444747.83b3644-150300.3.6.1 * csync2-2.0+git.1600444747.83b3644-150300.3.6.1 * csync2-debugsource-2.0+git.1600444747.83b3644-150300.3.6.1 * SUSE Linux Enterprise High Availability Extension 15 SP6 (aarch64 ppc64le s390x x86_64) * csync2-debuginfo-2.0+git.1600444747.83b3644-150300.3.6.1 * csync2-2.0+git.1600444747.83b3644-150300.3.6.1 * csync2-debugsource-2.0+git.1600444747.83b3644-150300.3.6.1 * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * csync2-debuginfo-2.0+git.1600444747.83b3644-150300.3.6.1 * csync2-2.0+git.1600444747.83b3644-150300.3.6.1 * csync2-debugsource-2.0+git.1600444747.83b3644-150300.3.6.1 * SUSE Linux Enterprise High Availability Extension 15 SP7 (aarch64 ppc64le s390x x86_64) * csync2-debuginfo-2.0+git.1600444747.83b3644-150300.3.6.1 * csync2-2.0+git.1600444747.83b3644-150300.3.6.1 * csync2-debugsource-2.0+git.1600444747.83b3644-150300.3.6.1 ## References: *https://www.suse.com/security/cve/CVE-2026-41051.html * https://bugzilla.suse.com/show_bug.cgi?id=1262472 . Update for csync2 addresses a temporary directory security issue, improving protection against potential exploits.. csync2 update, SUSE security advisory, temporary directory risk. . Severity: moderate. LinuxSecurity.com Team
May 29, 2026
•moderate
SuSE
202
security advisorymoderateOpenSUSEopenSUSE Csync2 Moderate Directory Issue Fix Vulnerability CVE-2026-41051
An update that solves one vulnerability can now be installed.. # Security update for csync2 Announcement ID: SUSE-SU-2026:2116-1 Release Date: 2026-05-29T15:29:09Z Rating: moderate References: * bsc#1262472 Cross-References: * CVE-2026-41051 CVSS scores: * CVE-2026-41051 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2026-41051 ( SUSE ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H * CVE-2026-41051 ( NVD ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X * CVE-2026-41051 ( NVD ): 5.0 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Availability Extension 15 SP4 * SUSE Linux Enterprise High Availability Extension 15 SP5 * SUSE Linux Enterprise High Availability Extension 15 SP6 * SUSE Linux Enterprise High Availability Extension 15 SP7 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for csync2 fixes the following issue * CVE-2026-41051: uses insecure temporary directories when compiled with C99 or later (bsc#1262472). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise High Availability Extension 15 SP4 zypper in -t patch SUSE-SLE-Product-HA-15-SP4-2026-2116=1 * SUSE Linux Enterprise High Availability Extension 15 SP5 zypper in -t patch SUSE-SLE-Product-HA-15-SP5-2026-2116=1 * SUSE Linux Enterprise High Availability Extension 15 SP6 zypper in -t patch SUSE-SLE-Product-HA-15-SP6-2026-2116=1 * openSUSE Leap 15.3 zypper in -t patch SUSE-2026-2116=1 * SUSE Linux Enterprise High Availability Extension 15 SP7 zypper in -t patch SUSE-SLE-Product-HA-15-SP7-2026-2116=1 ## Package List: * SUSE Linux Enterprise High Availability Extension 15 SP4 (aarch64 ppc64le s390x x86_64) * csync2-debuginfo-2.0+git.1600444747.83b3644-150300.3.6.1 * csync2-2.0+git.1600444747.83b3644-150300.3.6.1 * csync2-debugsource-2.0+git.1600444747.83b3644-150300.3.6.1 * SUSE Linux Enterprise High Availability Extension 15 SP5 (aarch64 ppc64le s390x x86_64) * csync2-debuginfo-2.0+git.1600444747.83b3644-150300.3.6.1 * csync2-2.0+git.1600444747.83b3644-150300.3.6.1 * csync2-debugsource-2.0+git.1600444747.83b3644-150300.3.6.1 * SUSE Linux Enterprise High Availability Extension 15 SP6 (aarch64 ppc64le s390x x86_64) * csync2-debuginfo-2.0+git.1600444747.83b3644-150300.3.6.1 * csync2-2.0+git.1600444747.83b3644-150300.3.6.1 * csync2-debugsource-2.0+git.1600444747.83b3644-150300.3.6.1 * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * csync2-debuginfo-2.0+git.1600444747.83b3644-150300.3.6.1 * csync2-2.0+git.1600444747.83b3644-150300.3.6.1 * csync2-debugsource-2.0+git.1600444747.83b3644-150300.3.6.1 * SUSE Linux Enterprise High Availability Extension 15 SP7 (aarch64 ppc64le s390x x86_64) * csync2-debuginfo-2.0+git.1600444747.83b3644-150300.3.6.1 * csync2-2.0+git.1600444747.83b3644-150300.3.6.1 * csync2-debugsource-2.0+git.1600444747.83b3644-150300.3.6.1 ## References: *https://www.suse.com/security/cve/CVE-2026-41051.html * https://bugzilla.suse.com/show_bug.cgi?id=1262472 . # Security update for csync2 Announcement ID: SUSE-SU-2026:2116-1 Release Date: 2026-05-29T15:29:09Z. update, solves, vulnerability, installed, security, csync2, announcem. . Severity: moderate. LinuxSecurity.com Team
May 29, 2026
•moderate
OpenSUSE
202
security advisorymoderateinstallationopenSUSE Tumbleweed csync2 Moderate Fix CVE-2026-41051 2026-10600-1
An update that solves one vulnerability can now be installed.. # csync2-2.0+git.1600444747.83b3644-3.1 on GA media Announcement ID: openSUSE-SU-2026:10600-1 Rating: moderate Cross-References: * CVE-2026-41051 CVSS scores: * CVE-2026-41051 ( SUSE ): 5 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H * CVE-2026-41051 ( SUSE ): 5.1 CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N Affected Products: * openSUSE Tumbleweed An update that solves one vulnerability can now be installed. ## Description: These are all security issues fixed in the csync2-2.0+git.1600444747.83b3644-3.1 package on the GA media of openSUSE Tumbleweed. ## Package List: * openSUSE Tumbleweed: * csync2 2.0+git.1600444747.83b3644-3.1 ## References: * https://www.suse.com/security/cve/CVE-2026-41051.html . Update released for openSUSE Tumbleweed addresses moderate issue in csync2 package, enhancing system security.. openSUSE Tumbleweed csync2 update security. . LinuxSecurity.com Team
Apr 23, 2026
OpenSUSE
202
security advisorymoderateOpenSUSEopenSUSE Leap 15.2: csync2 Moderate TLS Issues 2021:0853-1
An update that fixes two vulnerabilities is now available.. openSUSE Security Update: Security update for csync2 =5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F= =5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F= =5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F= =5F=5F=5F Announcement ID: openSUSE-SU-2021:0853-1 Rating: moderate References: #1147137 #1147139 Cross-References: CVE-2019-15522 CVE-2019-15523 CVSS scores: CVE-2019-15522 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N= /S:U/C:H/I:H/A:H CVE-2019-15522 (SUSE): 3.5 CVSS:3.0/AV:A/AC:L/PR:L/UI:N= /S:U/C:N/I:L/A:N CVE-2019-15523 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N= /S:U/C:N/I:L/A:N CVE-2019-15523 (SUSE): 2.6 CVSS:3.0/AV:A/AC:H/PR:L/UI:N= /S:U/C:N/I:L/A:N Affected Products: openSUSE Leap 15.2 =5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F= =5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F= =5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F=5F= =5F=5F=5F An update that fixes two vulnerabilities is now available. Description: This update for csync2 fixes the following issues: - CVE-2019-15522: Fixed an issue where daemon fails to enforce TLS (bsc#1147137) - CVE-2019-15523: Fixed an incorrect TLS handshake error handling (bsc#1147139) This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended instal= lation methods like YaST online=5Fupdate or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.2: zypper in -t patch openSUSE-2021-853=3D1 Package List: - openSUSE Leap 15.2 (x86=5F64): csync2-2.0+git.1461714863.10636a4-lp152.5.3.1 csync2-debuginfo-2.0+git.1461714863.10636a4-lp152.5.3.1 csync2-debugsource-2.0+git.1461714863.10636a4-lp152.5.3.1 References: https://www.suse.com/security/cve/CVE-2019-15522.html https://www.suse.com/security/cve/CVE-2019-15523.html https://bugzilla.suse.com/1147137 https://bugzilla.suse.com/1147139 . An update for Debian has been released, targeting potential weaknesses in the application ksync with elevated importance. Explore the enhancements.. openSUSE Update, csync2 Vulnerabilities, Security Advisory. . LinuxSecurity.com Team
Sep 26, 2025
OpenSUSE
100
security advisorymoderatesecurity updateSUSE: 2021:14763-1 Moderate: Csync2 TLS Enforcement Security Update
An update that solves one vulnerability and has one errata is now available. . SUSE Security Update: Security update for csync2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:14763-1 Rating: moderate References: #1145032 #1147137 Cross-References: CVE-2019-15522 CVSS scores: CVE-2019-15522 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-15522 (SUSE): 7.3 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N Affected Products: SUSE Linux Enterprise High Availability Extension 11-SP4 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for csync2 fixes the following issues: - CVE-2019-15522: Fixed an issue where daemon fails to enforce TLS (bsc#1147137) - Fixed an issue where the TLS keys were not created correctly during installation (bsc#1145032) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise High Availability Extension 11-SP4: zypper in -t patch slehasp4-csync2-14763=1 Package List: - SUSE Linux Enterprise High Availability Extension 11-SP4 (i586 ppc64 s390x x86_64): csync2-1.34-0.13.7.1 References: https://www.suse.com/security/cve/CVE-2019-15522.html https://bugzilla.suse.com/1145032 https://bugzilla.suse.com/1147137 . SUSE Security Alert: Resolution for csync2's moderate TLS compliance concern alongside detailed installation guidelines.. SUSE Linux High Availability, csync2 Security Fix, TLS Enforcement. . LinuxSecurity.com Team
Jul 12, 2021
SuSE
202
security advisorysecurity updatemoderate severityopenSUSE Leap 15.2 Security Update: 2021:0853-1 Moderate TLS Issues
An update that fixes two vulnerabilities is now available. . openSUSE Security Update: Security update for csync2 ______________________________________________________________________________ Announcement ID: openSUSE-SU-2021:0853-1 Rating: moderate References: #1147137 #1147139 Cross-References: CVE-2019-15522 CVE-2019-15523 CVSS scores: CVE-2019-15522 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-15522 (SUSE): 3.5 CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N CVE-2019-15523 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2019-15523 (SUSE): 2.6 CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N Affected Products: openSUSE Leap 15.2 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for csync2 fixes the following issues: - CVE-2019-15522: Fixed an issue where daemon fails to enforce TLS (bsc#1147137) - CVE-2019-15523: Fixed an incorrect TLS handshake error handling (bsc#1147139) This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.2: zypper in -t patch openSUSE-2021-853=1 Package List: - openSUSE Leap 15.2 (x86_64): csync2-2.0+git.1461714863.10636a4-lp152.5.3.1 csync2-debuginfo-2.0+git.1461714863.10636a4-lp152.5.3.1 csync2-debugsource-2.0+git.1461714863.10636a4-lp152.5.3.1 References: https://www.suse.com/security/cve/CVE-2019-15522.html https://www.suse.com/security/cve/CVE-2019-15523.html https://bugzilla.suse.com/1147137 https://bugzilla.suse.com/1147139 . Debian has released a security patch for ntpd,tackling minor vulnerabilities related to network time synchronization and potential denial-of-service conditions.. openSUSE csync2 security update, moderate TLS issues, csync2 vulnerabilities. . LinuxSecurity.com Team
Jun 07, 2021
OpenSUSE
100
security advisorymoderatesuseSUSE: 2021:1858-1 Important Update: Csync2 TLS Security Issue Fix
An update that fixes two vulnerabilities is now available. . SUSE Security Update: Security update for csync2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:1858-1 Rating: moderate References: #1147137 #1147139 Cross-References: CVE-2019-15522 CVE-2019-15523 CVSS scores: CVE-2019-15522 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-15522 (SUSE): 3.5 CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N CVE-2019-15523 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2019-15523 (SUSE): 2.6 CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N Affected Products: SUSE Linux Enterprise High Availability 15-SP2 SUSE Linux Enterprise High Availability 15-SP1 SUSE Linux Enterprise High Availability 15 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for csync2 fixes the following issues: - CVE-2019-15522: Fixed an issue where daemon fails to enforce TLS (bsc#1147137) - CVE-2019-15523: Fixed an incorrect TLS handshake error handling (bsc#1147139) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise High Availability 15-SP2: zypper in -t patch SUSE-SLE-Product-HA-15-SP2-2021-1858=1 - SUSE Linux Enterprise High Availability 15-SP1: zypper in -t patch SUSE-SLE-Product-HA-15-SP1-2021-1858=1 - SUSE Linux Enterprise High Availability 15: zypper in -t patch SUSE-SLE-Product-HA-15-2021-1858=1 Package List: - SUSE Linux Enterprise High Availability 15-SP2 (aarch64 ppc64le s390x x86_64): csync2-2.0+git.1461714863.10636a4-4.6.1 csync2-debuginfo-2.0+git.1461714863.10636a4-4.6.1 csync2-debugsource-2.0+git.1461714863.10636a4-4.6.1 - SUSE Linux Enterprise High Availability 15-SP1 (aarch64 ppc64le s390x x86_64): csync2-2.0+git.1461714863.10636a4-4.6.1 csync2-debuginfo-2.0+git.1461714863.10636a4-4.6.1 csync2-debugsource-2.0+git.1461714863.10636a4-4.6.1 - SUSE Linux Enterprise High Availability 15 (aarch64 ppc64le s390x x86_64): csync2-2.0+git.1461714863.10636a4-4.6.1 csync2-debuginfo-2.0+git.1461714863.10636a4-4.6.1 csync2-debugsource-2.0+git.1461714863.10636a4-4.6.1 References: https://www.suse.com/security/cve/CVE-2019-15522.html https://www.suse.com/security/cve/CVE-2019-15523.html https://bugzilla.suse.com/1147137 https://bugzilla.suse.com/1147139 . SUSE Security Patch mitigates moderate vulnerabilities in TLS for various SUSE High Availability releases concerning csync2.. SUSE Update, TLS Issues, csync2 Security, Security Patches. . Severity: Important. LinuxSecurity.com Team
Jun 04, 2021
•Important
SuSE
100
security advisorysoftware updatesecurity fixSUSE Linux High Availability: 2021:0647-1 Low Csync2 TLS Key Issue
An update that contains security fixes can now be installed. . SUSE Security Update: Security update for csync2 ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:0647-1 Rating: low References: #1145032 Affected Products: SUSE Linux Enterprise High Availability 12-SP5 SUSE Linux Enterprise High Availability 12-SP4 SUSE Linux Enterprise High Availability 12-SP3 ______________________________________________________________________________ An update that contains security fixes can now be installed. Description: This update for csync2 fixes the following issues: - Fixed an issue where TLS keys were generated wrongly during installation (bsc#1145032) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise High Availability 12-SP5: zypper in -t patch SUSE-SLE-HA-12-SP5-2021-647=1 - SUSE Linux Enterprise High Availability 12-SP4: zypper in -t patch SUSE-SLE-HA-12-SP4-2021-647=1 - SUSE Linux Enterprise High Availability 12-SP3: zypper in -t patch SUSE-SLE-HA-12-SP3-2021-647=1 Package List: - SUSE Linux Enterprise High Availability 12-SP5 (ppc64le s390x x86_64): csync2-2.0+git.1368794815.cf835a7-3.6.29 csync2-debuginfo-2.0+git.1368794815.cf835a7-3.6.29 csync2-debugsource-2.0+git.1368794815.cf835a7-3.6.29 - SUSE Linux Enterprise High Availability 12-SP4 (ppc64le s390x x86_64): csync2-2.0+git.1368794815.cf835a7-3.6.29 csync2-debuginfo-2.0+git.1368794815.cf835a7-3.6.29 csync2-debugsource-2.0+git.1368794815.cf835a7-3.6.29 - SUSE Linux Enterprise High Availability 12-SP3 (ppc64le s390x x86_64): csync2-2.0+git.1368794815.cf835a7-3.6.29 csync2-debuginfo-2.0+git.1368794815.cf835a7-3.6.29 csync2-debugsource-2.0+git.1368794815.cf835a7-3.6.29 References: https://bugzilla.suse.com/1145032 . Csync2 security patch addresses an issue in TLS key generation, relevant to various releases of SUSE's high availability solutions.. SUSE High Availability, csync2 security update, software patch, TLS keys. . Severity: Low. LinuxSecurity.com Team
Feb 26, 2021
•Low
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!