Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 3 articles for you...
202
security advisorymoderatebuffer overflowopenSUSE 15.x: 2023:3518-1 Moderate: Exempi Buffer Overflow
This update for exempi fixes the following issues: CVE-2020-18652: Fixed buffer overflow vulnerability in WEBP_Support.cpp (bsc#1214488).. # Security update for exempi Announcement ID: SUSE-SU-2023:3518-1 Rating: moderate References: * #1214488 Cross-References: * CVE-2020-18652 CVSS scores: * CVE-2020-18652 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2020-18652 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * Desktop Applications Module 15-SP4 * Desktop Applications Module 15-SP5 * openSUSE Leap 15.4 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves one vulnerability can now be installed. ## Description: This update for exempi fixes the following issues: * CVE-2020-18652: Fixed buffer overflow vulnerability in WEBP_Support.cpp (bsc#1214488). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch openSUSE-SLE-15.4-2023-3518=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2023-3518=1 * Desktop Applications Module 15-SP4 zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP4-2023-3518=1 * Desktop Applications Module 15-SP5 zypper in -t patchSUSE-SLE-Module-Desktop-Applications-15-SP5-2023-3518=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64) * libexempi3-debuginfo-2.4.5-150000.3.6.1 * exempi-tools-2.4.5-150000.3.6.1 * exempi-tools-debuginfo-2.4.5-150000.3.6.1 * libexempi-devel-2.4.5-150000.3.6.1 * exempi-debugsource-2.4.5-150000.3.6.1 * libexempi3-2.4.5-150000.3.6.1 * openSUSE Leap 15.4 (x86_64) * libexempi3-32bit-2.4.5-150000.3.6.1 * libexempi3-32bit-debuginfo-2.4.5-150000.3.6.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * libexempi3-debuginfo-2.4.5-150000.3.6.1 * exempi-tools-2.4.5-150000.3.6.1 * exempi-tools-debuginfo-2.4.5-150000.3.6.1 * libexempi-devel-2.4.5-150000.3.6.1 * exempi-debugsource-2.4.5-150000.3.6.1 * libexempi3-2.4.5-150000.3.6.1 * openSUSE Leap 15.5 (x86_64) * libexempi3-32bit-2.4.5-150000.3.6.1 * libexempi3-32bit-debuginfo-2.4.5-150000.3.6.1 * Desktop Applications Module 15-SP4 (aarch64 ppc64le s390x x86_64) * libexempi3-2.4.5-150000.3.6.1 * libexempi3-debuginfo-2.4.5-150000.3.6.1 * libexempi-devel-2.4.5-150000.3.6.1 * exempi-debugsource-2.4.5-150000.3.6.1 * Desktop Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libexempi3-2.4.5-150000.3.6.1 * libexempi3-debuginfo-2.4.5-150000.3.6.1 * libexempi-devel-2.4.5-150000.3.6.1 * exempi-debugsource-2.4.5-150000.3.6.1 ## References: * https://www.suse.com/security/cve/CVE-2020-18652.html * https://bugzilla.suse.com/show_bug.cgi?id=1214488 . Critical patch released for exempi mitigating potential memory corruption vulnerabilities. Apply now to ensure your infrastructure remains protected.. exempi Update, Security Advisory, Buffer Overflow Fix, openSUSE Security, Patch Instructions. . LinuxSecurity.com Team
Sep 05, 2023
OpenSUSE
100
security advisorysoftware updatenull pointerSUSE: 2022:2678-1 Medium Severity: Wavpack Buffer Overrun Vulnerability
An update that fixes one vulnerability is now available. . SUSE Security Update: Security update for wavpack ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:2681-1 Rating: low References: #1201716 Cross-References: CVE-2022-2476 CVSS scores: CVE-2022-2476 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2022-2476 (SUSE): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Affected Products: SUSE Linux Enterprise Desktop 15-SP3 SUSE Linux Enterprise Desktop 15-SP4 SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Module for Basesystem 15-SP4 SUSE Linux Enterprise Module for Desktop Applications 15-SP3 SUSE Linux Enterprise Module for Desktop Applications 15-SP4 SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Linux Enterprise Storage 7.1 SUSE Manager Proxy 4.2 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.2 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.2 SUSE Manager Server 4.3 openSUSE Leap 15.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for wavpack fixes the following issues: - CVE-2022-2476: Fixed a Null pointerdereference in wvunpack (bsc#1201716). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-2681=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-2681=1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP4: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP4-2022-2681=1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP3: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP3-2022-2681=1 - SUSE Linux Enterprise Module for Basesystem 15-SP4: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2022-2681=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2022-2681=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): libwavpack1-5.4.0-150000.4.15.1 libwavpack1-debuginfo-5.4.0-150000.4.15.1 wavpack-5.4.0-150000.4.15.1 wavpack-debuginfo-5.4.0-150000.4.15.1 wavpack-debugsource-5.4.0-150000.4.15.1 wavpack-devel-5.4.0-150000.4.15.1 - openSUSE Leap 15.4 (x86_64): libwavpack1-32bit-5.4.0-150000.4.15.1 libwavpack1-32bit-debuginfo-5.4.0-150000.4.15.1 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): libwavpack1-5.4.0-150000.4.15.1 libwavpack1-debuginfo-5.4.0-150000.4.15.1 wavpack-5.4.0-150000.4.15.1 wavpack-debuginfo-5.4.0-150000.4.15.1 wavpack-debugsource-5.4.0-150000.4.15.1 wavpack-devel-5.4.0-150000.4.15.1 - openSUSE Leap 15.3 (x86_64): libwavpack1-32bit-5.4.0-150000.4.15.1 libwavpack1-32bit-debuginfo-5.4.0-150000.4.15.1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP4 (aarch64 ppc64le s390x x86_64): wavpack-5.4.0-150000.4.15.1 wavpack-debuginfo-5.4.0-150000.4.15.1 wavpack-debugsource-5.4.0-150000.4.15.1 wavpack-devel-5.4.0-150000.4.15.1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP3 (aarch64 ppc64le s390x x86_64): wavpack-5.4.0-150000.4.15.1 wavpack-debuginfo-5.4.0-150000.4.15.1 wavpack-debugsource-5.4.0-150000.4.15.1 wavpack-devel-5.4.0-150000.4.15.1 - SUSE Linux Enterprise Module for Basesystem 15-SP4 (aarch64 ppc64le s390x x86_64): libwavpack1-5.4.0-150000.4.15.1 libwavpack1-debuginfo-5.4.0-150000.4.15.1 wavpack-debuginfo-5.4.0-150000.4.15.1 wavpack-debugsource-5.4.0-150000.4.15.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): libwavpack1-5.4.0-150000.4.15.1 libwavpack1-debuginfo-5.4.0-150000.4.15.1 wavpack-debuginfo-5.4.0-150000.4.15.1 wavpack-debugsource-5.4.0-150000.4.15.1 References: https://www.suse.com/security/cve/CVE-2022-2476.html https://bugzilla.suse.com/1201716 . SUSE Security Update resolves minor severity null dereference vulnerability in wavpack, including guidance for applying patches and listing of impacted products.. SUSE Linux,wavpack patch,security update,openSUSE update,update instructions. . Severity: Medium. LinuxSecurity.com Team
Aug 05, 2022
•Medium
SuSE
100
security advisorymoderate severityupdate instructionsSUSE: 2021:3368-2 High: libgtk3-core Buffer Overflow Risk
An update that fixes one vulnerability is now available. . SUSE Security Update: Security update for libqt5-qtsvg ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:3354-1 Rating: moderate References: #1184783 Cross-References: CVE-2021-3481 CVSS scores: CVE-2021-3481 (SUSE): 5.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L Affected Products: SUSE Linux Enterprise Module for Desktop Applications 15-SP3 SUSE Linux Enterprise Module for Desktop Applications 15-SP2 SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Module for Basesystem 15-SP2 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for libqt5-qtsvg fixes the following issues: - CVE-2021-3481: Fixed an out of bounds read in function QRadialFetchSimd from crafted svg file. (bsc#1184783) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Module for Desktop Applications 15-SP3: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP3-2021-3354=1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP2: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP2-2021-3354=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2021-3354=1 - SUSE Linux Enterprise Module for Basesystem 15-SP2: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP2-2021-3354=1 Package List: - SUSE Linux Enterprise Module for Desktop Applications 15-SP3 (noarch): libqt5-qtsvg-private-headers-devel-5.12.7-3.3.1 - SUSE LinuxEnterprise Module for Desktop Applications 15-SP2 (noarch): libqt5-qtsvg-private-headers-devel-5.12.7-3.3.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): libQt5Svg5-5.12.7-3.3.1 libQt5Svg5-debuginfo-5.12.7-3.3.1 libqt5-qtsvg-debugsource-5.12.7-3.3.1 libqt5-qtsvg-devel-5.12.7-3.3.1 - SUSE Linux Enterprise Module for Basesystem 15-SP2 (aarch64 ppc64le s390x x86_64): libQt5Svg5-5.12.7-3.3.1 libQt5Svg5-debuginfo-5.12.7-3.3.1 libqt5-qtsvg-debugsource-5.12.7-3.3.1 libqt5-qtsvg-devel-5.12.7-3.3.1 References: https://www.suse.com/security/cve/CVE-2021-3481.html https://bugzilla.suse.com/1184783 . The latest libqt5-qtsvg update addresses a significant security vulnerability. Detailed patch notes and installation guidelines are included.. SUSE Linux, libqt5-qtsvg, moderate security issue, update instructions. . LinuxSecurity.com Team
Oct 12, 2021
SuSE
100
security advisorysoftware updatememory corruptionSUSE: 2021:2774-1 Important: MozillaFirefox Memory Issues Fix
An update that fixes 6 vulnerabilities, contains one feature is now available. . SUSE Security Update: Security update for MozillaFirefox ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:2774-1 Rating: important References: #1188891 SLE-18626 Cross-References: CVE-2021-29980 CVE-2021-29984 CVE-2021-29985 CVE-2021-29986 CVE-2021-29988 CVE-2021-29989 Affected Products: SUSE Linux Enterprise Module for Desktop Applications 15-SP3 SUSE Linux Enterprise Module for Desktop Applications 15-SP2 ______________________________________________________________________________ An update that fixes 6 vulnerabilities, contains one feature is now available. Description: This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 78.13.0 ESR (MFSA 2021-34, bsc#1188891): - CVE-2021-29986: Race condition when resolving DNS names could have led to memory corruption - CVE-2021-29988: Memory corruption as a result of incorrect style treatment - CVE-2021-29984: Incorrect instruction reordering during JIT optimization - CVE-2021-29980: Uninitialized memory in a canvas object could have led to memory corruption - CVE-2021-29985: Use-after-free media channels - CVE-2021-29989: Memory safety bugs fixed in Firefox 91 and Firefox ESR 78.13 Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Module for Desktop Applications 15-SP3: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP3-2021-2774=1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP2: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP2-2021-2774=1 Package List: - SUSE LinuxEnterprise Module for Desktop Applications 15-SP3 (aarch64 ppc64le s390x x86_64): MozillaFirefox-78.13.0-8.49.1 MozillaFirefox-debuginfo-78.13.0-8.49.1 MozillaFirefox-debugsource-78.13.0-8.49.1 MozillaFirefox-translations-common-78.13.0-8.49.1 MozillaFirefox-translations-other-78.13.0-8.49.1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP3 (aarch64 ppc64le x86_64): MozillaFirefox-devel-78.13.0-8.49.1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP2 (aarch64 ppc64le s390x x86_64): MozillaFirefox-78.13.0-8.49.1 MozillaFirefox-debuginfo-78.13.0-8.49.1 MozillaFirefox-debugsource-78.13.0-8.49.1 MozillaFirefox-devel-78.13.0-8.49.1 MozillaFirefox-translations-common-78.13.0-8.49.1 MozillaFirefox-translations-other-78.13.0-8.49.1 References: https://www.suse.com/security/cve/CVE-2021-29980.html https://www.suse.com/security/cve/CVE-2021-29984.html https://www.suse.com/security/cve/CVE-2021-29985.html https://www.suse.com/security/cve/CVE-2021-29986.html https://www.suse.com/security/cve/CVE-2021-29988.html https://www.suse.com/security/cve/CVE-2021-29989.html https://bugzilla.suse.com/1188891 . Important SUSE upgrade for MozillaFirefox fixes memory errors and DNS vulnerabilities; detailed patch guidelines are provided.. SUSE Update, MozillaFirefox Security, Memory Issues, Software Patch. . Severity: Important. LinuxSecurity.com Team
Aug 19, 2021
•Important
SuSE
100
security advisorymoderateupdateSUSE Linux 15-SP3: 2021:2457-1 Moderate: Wireshark Infinite Loop
An update that contains security fixes can now be installed. . SUSE Security Update: Security update for wireshark ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:2457-1 Rating: moderate References: #1186790 Affected Products: SUSE Linux Enterprise Module for Desktop Applications 15-SP3 SUSE Linux Enterprise Module for Desktop Applications 15-SP2 SUSE Linux Enterprise Module for Basesystem 15-SP3 SUSE Linux Enterprise Module for Basesystem 15-SP2 ______________________________________________________________________________ An update that contains security fixes can now be installed. Description: This update for wireshark fixes the following issues: Update wireshark to 3.4.6. Including a fix for: - DVB-S2-BB dissector infinite loop (bsc#1186790). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Module for Desktop Applications 15-SP3: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP3-2021-2457=1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP2: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP2-2021-2457=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2021-2457=1 - SUSE Linux Enterprise Module for Basesystem 15-SP2: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP2-2021-2457=1 Package List: - SUSE Linux Enterprise Module for Desktop Applications 15-SP3 (aarch64 ppc64le s390x x86_64): wireshark-debuginfo-3.4.6-3.56.1 wireshark-debugsource-3.4.6-3.56.1 wireshark-devel-3.4.6-3.56.1 wireshark-ui-qt-3.4.6-3.56.1 wireshark-ui-qt-debuginfo-3.4.6-3.56.1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP2 (aarch64 ppc64le s390x x86_64): wireshark-debuginfo-3.4.6-3.56.1 wireshark-debugsource-3.4.6-3.56.1 wireshark-devel-3.4.6-3.56.1 wireshark-ui-qt-3.4.6-3.56.1 wireshark-ui-qt-debuginfo-3.4.6-3.56.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): libwireshark14-3.4.6-3.56.1 libwireshark14-debuginfo-3.4.6-3.56.1 libwiretap11-3.4.6-3.56.1 libwiretap11-debuginfo-3.4.6-3.56.1 libwsutil12-3.4.6-3.56.1 libwsutil12-debuginfo-3.4.6-3.56.1 wireshark-3.4.6-3.56.1 wireshark-debuginfo-3.4.6-3.56.1 wireshark-debugsource-3.4.6-3.56.1 - SUSE Linux Enterprise Module for Basesystem 15-SP2 (aarch64 ppc64le s390x x86_64): libwireshark14-3.4.6-3.56.1 libwireshark14-debuginfo-3.4.6-3.56.1 libwiretap11-3.4.6-3.56.1 libwiretap11-debuginfo-3.4.6-3.56.1 libwsutil12-3.4.6-3.56.1 libwsutil12-debuginfo-3.4.6-3.56.1 wireshark-3.4.6-3.56.1 wireshark-debuginfo-3.4.6-3.56.1 wireshark-debugsource-3.4.6-3.56.1 References: https://bugzilla.suse.com/1186790 . This SUSE Security Advisory reveals updates for wireshark, accompanied by setup directives and details regarding severity.. SUSE Update, Wireshark Fix, Security Update, Package Management. . LinuxSecurity.com Team
Jul 22, 2021
SuSE
100
security advisorymoderatesuseSUSE: 2021:2291-1 Moderate Update: Fixes for Bluez Security Issues
An update that fixes two vulnerabilities is now available. . SUSE Security Update: Security update for bluez ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:2291-1 Rating: moderate References: #1186463 Cross-References: CVE-2020-26558 CVE-2021-0129 CVSS scores: CVE-2020-26558 (NVD) : 4.2 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N CVE-2020-26558 (SUSE): 4.2 CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N CVE-2021-0129 (NVD) : 5.7 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVE-2021-0129 (SUSE): 6.4 CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N Affected Products: SUSE Linux Enterprise Workstation Extension 15-SP3 SUSE Linux Enterprise Module for Desktop Applications 15-SP3 SUSE Linux Enterprise Module for Basesystem 15-SP3 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for bluez fixes the following issues: - CVE-2021-0129,CVE-2020-26558: Check bluetooth security flags (bsc#1186463). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Workstation Extension 15-SP3: zypper in -t patch SUSE-SLE-Product-WE-15-SP3-2021-2291=1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP3: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP3-2021-2291=1 - SUSE Linux Enterprise Module for Basesystem 15-SP3: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2021-2291=1 Package List: - SUSE Linux Enterprise Workstation Extension 15-SP3 (x86_64): bluez-cups-5.55-3.3.1 bluez-cups-debuginfo-5.55-3.3.1 bluez-debuginfo-5.55-3.3.1 bluez-debugsource-5.55-3.3.1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP3 (aarch64 ppc64le s390x x86_64): bluez-debuginfo-5.55-3.3.1 bluez-debugsource-5.55-3.3.1 bluez-devel-5.55-3.3.1 - SUSE Linux Enterprise Module for Basesystem 15-SP3 (aarch64 ppc64le s390x x86_64): bluez-5.55-3.3.1 bluez-debuginfo-5.55-3.3.1 bluez-debugsource-5.55-3.3.1 libbluetooth3-5.55-3.3.1 libbluetooth3-debuginfo-5.55-3.3.1 References: https://www.suse.com/security/cve/CVE-2020-26558.html https://www.suse.com/security/cve/CVE-2021-0129.html https://bugzilla.suse.com/1186463 . Ubuntu Security Patch resolves several moderate flaws in OpenSSH, boosting system safety for its users.. SUSE Security Update, Bluez Vulnerabilities, Linux Enterprise Patch. . LinuxSecurity.com Team
Jul 12, 2021
SuSE
100
security advisoryupdateimportantSUSE: 2023:0912-1 Critical: MozillaFirefox Memory Leakage Resolution
An update that fixes one vulnerability is now available. . SUSE Security Update: Security update for MozillaFirefox ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:0071-1 Rating: important References: #1180623 Cross-References: CVE-2020-16044 Affected Products: SUSE Linux Enterprise Module for Desktop Applications 15-SP2 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for MozillaFirefox fixes the following issues: - Firefox Extended Support Release 78.6.1 ESR * Fixed: Critical security issue MFSA 2021-01 (bsc#1180623) * CVE-2020-16044 Use-after-free write when handling a malicious COOKIE-ECHO SCTP chunk Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Module for Desktop Applications 15-SP2: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP2-2021-71=1 Package List: - SUSE Linux Enterprise Module for Desktop Applications 15-SP2 (aarch64 ppc64le s390x x86_64): MozillaFirefox-78.6.1-8.23.1 MozillaFirefox-debuginfo-78.6.1-8.23.1 MozillaFirefox-debugsource-78.6.1-8.23.1 MozillaFirefox-devel-78.6.1-8.23.1 MozillaFirefox-translations-common-78.6.1-8.23.1 MozillaFirefox-translations-other-78.6.1-8.23.1 References: https://www.suse.com/security/cve/CVE-2020-16044.html https://bugzilla.suse.com/1180623 . Essential security enhancement for Mozilla Firefox addressed significant vulnerabilities in the SUSE environment, complete with comprehensive patch guidelines.. SUSE Firefox Update, Important Security Patch, Browser Vulnerability Fix, Mozilla Technical Update. . Severity: Important. LinuxSecurity.comTeam
Jan 12, 2021
•Important
SuSE
100
security advisoryinformation leakmoderate severitySUSE: 2020:3866-1 Moderate: OpenSSH Information Leak Fix
An update that solves one vulnerability and has 5 fixes is now available. . SUSE Security Update: Security update for openssh ______________________________________________________________________________ Announcement ID: SUSE-SU-2020:3866-1 Rating: moderate References: #1115550 #1139398 #1142000 #1148566 #1173513 #1174162 Cross-References: CVE-2020-14145 Affected Products: SUSE Linux Enterprise Module for Server Applications 15-SP1 SUSE Linux Enterprise Module for Desktop Applications 15-SP1 SUSE Linux Enterprise Module for Basesystem 15-SP1 ______________________________________________________________________________ An update that solves one vulnerability and has 5 fixes is now available. Description: This update for openssh fixes the following issues: - CVE-2020-14145: Fixed a potential information leak during host key exchange (bsc#1173513). - Supplement libgtk-3-0 instead of libX11-6 to avoid installation on a textmode install (bsc#1142000) - Fixed an issue where oracle cluster with cluvfy using "scp" failing/missinterpreted (bsc#1148566). - Fixed sshd termination of multichannel sessions with non-root users (bsc#1115550,bsc#1174162). - Added speculative hardening for key storage (bsc#1139398). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Module for Server Applications 15-SP1: zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP1-2020-3866=1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP1: zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP1-2020-3866=1 - SUSE Linux Enterprise Module for Basesystem 15-SP1: zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP1-2020-3866=1 PackageList: - SUSE Linux Enterprise Module for Server Applications 15-SP1 (aarch64 ppc64le s390x x86_64): openssh-debuginfo-7.9p1-6.22.1 openssh-debugsource-7.9p1-6.22.1 openssh-fips-7.9p1-6.22.1 - SUSE Linux Enterprise Module for Desktop Applications 15-SP1 (aarch64 ppc64le s390x x86_64): openssh-askpass-gnome-7.9p1-6.22.1 openssh-askpass-gnome-debuginfo-7.9p1-6.22.1 openssh-askpass-gnome-debugsource-7.9p1-6.22.1 - SUSE Linux Enterprise Module for Basesystem 15-SP1 (aarch64 ppc64le s390x x86_64): openssh-7.9p1-6.22.1 openssh-debuginfo-7.9p1-6.22.1 openssh-debugsource-7.9p1-6.22.1 openssh-helpers-7.9p1-6.22.1 openssh-helpers-debuginfo-7.9p1-6.22.1 References: https://www.suse.com/security/cve/CVE-2020-14145.html https://bugzilla.suse.com/1115550 https://bugzilla.suse.com/1139398 https://bugzilla.suse.com/1142000 https://bugzilla.suse.com/1148566 https://bugzilla.suse.com/1173513 https://bugzilla.suse.com/1174162 . SUSE has released a security update for OpenSSH addressing severe vulnerabilities and gaps, includes detailed patching guidelines. For full security details, refer to the documentation.. SUSE Linux Updates, OpenSSH Security, Patch Instructions, Server Applications, Desktop Applications. . LinuxSecurity.com Team
Dec 17, 2020
SuSE
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!