Stay Vigilant with Timely Linux Security Advisories

security advisorysecurity updateimportant

openSUSE Leap 15.3 Security Update: 2021:4154-1 Important p11-kit Fix

An update that solves one vulnerability and has one errata is now available. . openSUSE Security Update: Security update for p11-kit ______________________________________________________________________________ Announcement ID: openSUSE-SU-2021:4154-1 Rating: important References: #1180064 #1187993 Cross-References: CVE-2020-29361 CVSS scores: CVE-2020-29361 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2020-29361 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Leap 15.3 ______________________________________________________________________________ An update that solves one vulnerability and has one errata is now available. Description: This update for p11-kit fixes the following issues: - CVE-2020-29361: Fixed multiple integer overflows in rpc code (bsc#1180064) - Add support for CKA_NSS_{SERVER,EMAIL}_DISTRUST_AFTER (bsc#1187993). Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2021-4154=1 Package List: - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): libp11-kit0-0.23.2-4.13.1 libp11-kit0-debuginfo-0.23.2-4.13.1 p11-kit-0.23.2-4.13.1 p11-kit-debuginfo-0.23.2-4.13.1 p11-kit-debugsource-0.23.2-4.13.1 p11-kit-devel-0.23.2-4.13.1 p11-kit-nss-trust-0.23.2-4.13.1 p11-kit-tools-0.23.2-4.13.1 p11-kit-tools-debuginfo-0.23.2-4.13.1 - openSUSE Leap 15.3 (x86_64): libp11-kit0-32bit-0.23.2-4.13.1 libp11-kit0-32bit-debuginfo-0.23.2-4.13.1 p11-kit-32bit-0.23.2-4.13.1 p11-kit-32bit-debuginfo-0.23.2-4.13.1 p11-kit-nss-trust-32bit-0.23.2-4.13.1 References: https://www.suse.com/security/cve/CVE-2020-29361.html https://bugzilla.suse.com/1180064 https://bugzilla.suse.com/1187993 . Ubuntu rolls out an important fix for curl tackling a buffer overflow vulnerability. Ensure your system’s security with this update.. openSUSE security,p11-kit update,integer overflow fix,software patching. . Severity: Important. LinuxSecurity.com Team

Dec 22, 2021 •Important OpenSUSE

security advisorybuffer overflowkernel update

SUSE: 2021:3748-1 Important Kernel Security Fixes and Updates

An update that solves 13 vulnerabilities and has 25 fixes is now available. . SUSE Security Update: Security update for the Linux Kernel ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:3748-1 Rating: important References: #1050549 #1065729 #1085030 #1114648 #1180624 #1184673 #1186063 #1186109 #1188563 #1188601 #1188983 #1188985 #1190006 #1190067 #1190317 #1190349 #1190397 #1190479 #1190620 #1190795 #1190941 #1191241 #1191315 #1191317 #1191349 #1191450 #1191452 #1191455 #1191500 #1191579 #1191628 #1191662 #1191667 #1191713 #1191801 #1191888 #1192145 #1192267 Cross-References: CVE-2018-13405 CVE-2021-33033 CVE-2021-34556 CVE-2021-3542 CVE-2021-35477 CVE-2021-3655 CVE-2021-3715 CVE-2021-37159 CVE-2021-3760 CVE-2021-41864 CVE-2021-42008 CVE-2021-42252 CVE-2021-42739 CVSS scores: CVE-2018-13405 (NVD) : 7.8 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2018-13405 (SUSE): 4.4 CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N CVE-2021-33033 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2021-33033 (SUSE): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H CVE-2021-34556 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVE-2021-3542 (SUSE): 6.4 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H CVE-2021-35477 (SUSE): 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N CVE-2021-3655 (SUSE): 4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2021-3715 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2021-37159 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2021-37159 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2021-3760 (SUSE): 6.4 CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-41864 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2021-42008 (NVD) : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2021-42008 (SUSE): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-42252 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2021-42739 (SUSE): 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: SUSE Linux Enterprise Workstation Extension 12-SP5 SUSE Linux Enterprise Software Development Kit 12-SP5 SUSE Linux Enterprise Server 12-SP5 SUSE Linux Enterprise Live Patching 12-SP5 SUSE Linux Enterprise High Availability 12-SP5 ______________________________________________________________________________ An update that solves 13 vulnerabilities and has 25 fixes is now available. Description: The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3655: Fixed a missing size validations on inbound SCTP packets, which may have allowed the kernel to read uninitialized memory (bsc#1188563). - CVE-2021-3715: Fixed a use-after-free in route4_change() in net/sched/cls_route.c (bsc#1190349). - CVE-2021-33033: Fixed a use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c because the CIPSO and CALIPSO refcounting for the DOI definitions is mishandled (bsc#1186109). - CVE-2021-3760: Fixed a use-after-free vulnerability with the ndev-> rf_conn_info object (bsc#1190067). - CVE-2021-42739: The firewire subsystem had a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c,because avc_ca_pmt mishandled bounds checking (bsc#1184673). - CVE-2021-3542: Fixed heap buffer overflow in firedtv driver (bsc#1186063). - CVE-2021-34556: Fixed side-channel attack via a Speculative Store Bypass via unprivileged BPF program that could have obtain sensitive information from kernel memory (bsc#1188983). - CVE-2021-35477: Fixed BPF stack frame pointer which could have been abused to disclose content of arbitrary kernel memory (bsc#1188985). - CVE-2021-42252: Fixed an issue inside aspeed_lpc_ctrl_mmap that could have allowed local attackers to access the Aspeed LPC control interface to overwrite memory in the kernel and potentially execute privileges (bnc#1190479). - CVE-2021-41864: Fixed prealloc_elems_and_freelist that allowed unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write (bnc#1191317). - CVE-2021-42008: Fixed a slab out-of-bounds write in the decode_data function in drivers/net/hamradio/6pack.c. Input from a process that had the CAP_NET_ADMIN capability could have lead to root access (bsc#1191315). - CVE-2021-37159: Fixed use-after-free and a double free inside hso_free_net_device in drivers/net/usb/hso.c when unregister_netdev is called without checking for the NETREG_REGISTERED state (bnc#1188601). The following non-security bugs were fixed: - IB/hfi1: Fix abba locking issue with sc_disable() (git-fixes) - KVM: PPC: Book3S HV: Save host FSCR in the P7/8 path (bsc#1065729). - NFS: Do uncached readdir when we're seeking a cookie in an empty page cache (bsc#1191628). - NFS: Fix backport error - dir_cookie is a pointer to a u64, not a u64. - PM: base: power: do not try to use non-existing RTC for storing data (git-fixes). - SMB3.1.1: Fix ids returned in POSIX query dir (bsc#1190317). - SMB3.1.1: do not log warning message if server does not populate salt (bsc#1190317). - SMB3.1.1: fix mount failureto some servers when compression enabled (bsc#1190317). - SMB3.1.1: remove confusing mount warning when no SPNEGO info on negprot rsp (bsc#1190317). - SMB3.1.1: update comments clarifying SPNEGO info in negprot response (bsc#1190317). - SMB3: Add new info level for query directory (bsc#1190317). - SMB3: Add support for getting and setting SACLs (bsc#1190317). - SMB3: Fix mkdir when idsfromsid configured on mount (bsc#1190317). - SMB3: Resolve data corruption of TCP server info fields (bsc#1190317). - SMB3: add support for recognizing WSL reparse tags (bsc#1190317). - SMB3: avoid confusing warning message on mount to Azure (bsc#1190317). - SMB3: fix readpage for large swap cache (bsc#1190317). - SMB3: incorrect file id in requests compounded with open (bsc#1190317). - SMB3: update structures for new compression protocol definitions (bsc#1190317). - USB: cdc-acm: fix break reporting (git-fixes). - USB: cdc-acm: fix racy tty buffer accesses (git-fixes). - USB: iowarrior: fix control-message timeouts (git-fixes). - USB: serial: cp210x: add ID for GW Instek GDM-834x Digital Multimeter (git-fixes). - USB: serial: keyspan: fix memleak on probe errors (git-fixes). - USB: serial: option: add Telit LN920 compositions (git-fixes). - USB: serial: option: add device id for Foxconn T99W265 (git-fixes). - USB: xhci: dbc: fix tty registration race (git-fixes). - bitmap: remove unused function declaration (git-fixes). - blktrace: Fix uaf in blk_trace access after removing by sysfs (bsc#1191452). - cdc_ncm: Set NTB format again after altsetting switch for Huawei devices (git-fixes). - ceph: take snap_empty_lock atomically with snaprealm refcount change (bsc#1191888). - cifs: Add get_security_type_str function to return sec type (bsc#1190317). - cifs: Avoid field over-reading memcpy() (bsc#1190317). - cifs: Change SIDs in ACEs while transferring file ownership (bsc#1190317). - cifs: Clarify SMB1 codefor POSIX Create (bsc#1190317). - cifs: Clarify SMB1 code for POSIX Lock (bsc#1190317). - cifs: Clarify SMB1 code for POSIX delete file (bsc#1190317). - cifs: Clarify SMB1 code for SetFileSize (bsc#1190317). - cifs: Clarify SMB1 code for UnixCreateSymLink (bsc#1190317). - cifs: Clarify SMB1 code for UnixSetPathInfo (bsc#1190317). - cifs: Clarify SMB1 code for delete (bsc#1190317). - cifs: Clarify SMB1 code for rename open file (bsc#1190317). - cifs: Display local UID details for SMB sessions in DebugData (bsc#1190317). - cifs: Do not use the original cruid when following DFS links for multiuser mounts (bsc#1190317). - cifs: Enable sticky bit with cifsacl mount option (bsc#1190317). - cifs: Fix cached_fid refcnt leak in open_shroot (bsc#1190317). - cifs: Fix chmod with modefromsid when an older ACE already exists (bsc#1190317). - cifs: Fix cifsacl ACE mask for group and others (bsc#1190317). - cifs: Fix double add page to memcg when cifs_readpages (bsc#1190317). - cifs: Fix in error types returned for out-of-credit situations (bsc#1190317). - cifs: Fix unix perm bits to cifsacl conversion for "other" bits (bsc#1190317). - cifs: Grab a reference for the dentry of the cached directory during the lifetime of the cache (bsc#1190317). - cifs: If a corrupted DACL is returned by the server, bail out (bsc#1190317). - cifs: Make extract_hostname function public (bsc#1190317). - cifs: Make extract_sharename function public (bsc#1190317). - cifs: Print the address and port we are connecting to in generic_ip_connect() (bsc#1190317). - cifs: Retain old ACEs when converting between mode bits and ACL (bsc#1190317). - cifs: Silently ignore unknown oplock break handle (bsc#1190317). - cifs: add FALLOC_FL_INSERT_RANGE support (bsc#1190317). - cifs: add a function to get a cached dir based on its dentry (bsc#1190317). - cifs: add a timestamp to track when the lease of the cached dir was taken(bsc#1190317). - cifs: add shutdown support (bsc#1190317). - cifs: add support for FALLOC_FL_COLLAPSE_RANGE (bsc#1190317). - cifs: added WARN_ON for all the count decrements (bsc#1190317). - cifs: ask for more credit on async read/write code paths (bsc#1190317). - cifs: avoid extra calls in posix_info_parse (bsc#1190317). - cifs: check pointer before freeing (bsc#1190317). - cifs: check the timestamp for the cached dirent when deciding on revalidate (bsc#1190317). - cifs: clarify SMB1 code for UnixCreateHardLink (bsc#1190317). - cifs: cleanup a few le16 vs. le32 uses in cifsacl.c (bsc#1190317). - cifs: cleanup misc.c (bsc#1190317). - cifs: compute full_path already in cifs_readdir() (bsc#1190317). - cifs: constify path argument of -> make_node() (bsc#1190317). - cifs: constify pathname arguments in a bunch of helpers (bsc#1190317). - cifs: convert list_for_each to entry variant in cifs_debug.c (bsc#1190317). - cifs: convert list_for_each to entry variant in smb2misc.c (bsc#1190317). - cifs: convert to use be32_add_cpu() (bsc#1190317). - cifs: create sd context must be a multiple of 8 (bsc#1190317). - cifs: detect dead connections only when echoes are enabled (bsc#1190317). - cifs: do not fail __smb_send_rqst if non-fatal signals are pending (bsc#1190317). - cifs: dump Security Type info in DebugData (bsc#1190317). - cifs: fix DFS mount with cifsacl/modefromsid (bsc#1190317). - cifs: fix NULL dereference in smb2_check_message() (bsc#1190317). - cifs: fix SMB1 error path in cifs_get_file_info_unix (bsc#1190317). - cifs: fix a memleak with modefromsid (bsc#1190317). - cifs: fix allocation size on newly created files (bsc#1190317). - cifs: fix chown and chgrp when idsfromsid mount option enabled (bsc#1190317). - cifs: fix fallocate when trying to allocate a hole (bsc#1190317). - cifs: fix leaked reference on requeued write (bsc#1190317). - cifs: fix missing null session check in mount (bsc#1190317). - cifs:fix missing spinlock around update to ses-> status (bsc#1190317). - cifs: fix out-of-bound memory access when calling smb3_notify() at mount point (bsc#1190317). - cifs: fix reference leak for tlink (bsc#1190317). - cifs: fix rsize/wsize to be negotiated values (bsc#1190317). - cifs: fix string declarations and assignments in tracepoints (bsc#1190317). - cifs: fix the out of range assignment to bit fields in parse_server_interfaces (bsc#1190317). - cifs: handle "nolease" option for vers=1.0 (bsc#1190317). - cifs: handle -EINTR in cifs_setattr (bsc#1190317). - cifs: handle ERRBaduid for SMB1 (bsc#1190317). - cifs: handle reconnect of tcon when there is no cached dfs referral (bsc#1190317). - cifs: have -> mkdir() handle race with another client sanely (bsc#1190317). - cifs: improve fallocate emulation (bsc#1190317). - cifs: make build_path_from_dentry() return const char * (bsc#1190317). - cifs: make const array static, makes object smaller (bsc#1190317). - cifs: make locking consistent around the server session status (bsc#1190317). - cifs: map STATUS_ACCOUNT_LOCKED_OUT to -EACCES (bsc#1190317). - cifs: minor kernel style fixes for comments (bsc#1190317). - cifs: minor simplification to smb2_is_network_name_deleted (bsc#1190317). - cifs: missing null check for newinode pointer (bsc#1190317). - cifs: move some variables off the stack in smb2_ioctl_query_info (bsc#1190317). - cifs: move the check for nohandlecache into open_shroot (bsc#1190317). - cifs: only write 64kb at a time when fallocating a small region of a file (bsc#1190317). - cifs: pass a path to open_shroot and check if it is the root or not (bsc#1190317). - cifs: pass the dentry instead of the inode down to the revalidation check functions (bsc#1190317). - cifs: prevent truncation from long to int in wait_for_free_credits (bsc#1190317). - cifs: reduce stack use in smb2_compound_op (bsc#1190317). - cifs: refactorcreate_sd_buf() and and avoid corrupting the buffer (bsc#1190317). - cifs: remove old dead code (bsc#1190317). - cifs: remove some minor warnings pointed out by kernel test robot (bsc#1190317). - cifs: remove the retry in cifs_poxis_lock_set (bsc#1190317). - cifs: remove two cases where rc is set unnecessarily in sid_to_id (bsc#1190317). - cifs: remove unnecessary copies of tcon-> crfid.fid (bsc#1190317). - cifs: remove various function description warnings (bsc#1190317). - cifs: rename the *_shroot* functions to *_cached_dir* (bsc#1190317). - cifs: retry lookup and readdir when EAGAIN is returned (bsc#1190317). - cifs: return cached_fid from open_shroot (bsc#1190317). - cifs: revalidate mapping when we open files for SMB1 POSIX (bsc#1190317). - cifs: set server-> cipher_type to AES-128-CCM for SMB3.0 (bsc#1190317). - cifs: smb1: Try failing back to SetFileInfo if SetPathInfo fails (bsc#1190317). - cifs: store a pointer to the root dentry in cifs_sb_info once we have completed mounting the share (bsc#1190317). - cifs: update ctime and mtime during truncate (bsc#1190317). - cifs: update new ACE pointer after populate_new_aces (bsc#1190317). - cifs: use echo_interval even when connection not ready (bsc#1190317). - cifs: use the expiry output of dns_query to schedule next resolution (bsc#1190317). - crypto: qat - detect PFVF collision after ACK (git-fixes). - crypto: qat - disregard spurious PFVF interrupts (git-fixes). - crypto: s5p-sss - Add error handling in s5p_aes_probe() (git-fixes). - ext4: fix potential infinite loop in ext4_dx_readdir() (bsc#1191662). - ext4: fix reserved space counter leakage (bsc#1191450). - fs, mm: fix race in unlinking swapfile (bsc#1191455). - fs: copy BTRFS_IOC_[SG]ET_FSLABEL to vfs (bsc#1191500). - ftrace: Fix scripts/recordmcount.pl due to new binutils (bsc#1192267). - gianfar: Account for Tx PTP timestamp in the skb headroom (git-fixes). - gianfar: Fix TX timestampingwith a stacked DSA driver (git-fixes). - gianfar: Replace skb_realloc_headroom with skb_cow_head for PTP (git-fixes). - gianfar: simplify FCS handling and fix memory leak (git-fixes). - icmpv6: Add ICMPv6 Parameter Problem, code 3 definition (bsc#1191241). - ipc: remove memcg accounting for sops objects in do_semtimedop() - ipv4: fix race condition between route lookup and invalidation (bsc#1190397). - ipv6/netfilter: Discard first fragment not including all headers (bsc#1191241). - ipv6: reply ICMP error if the first fragment do not include all headers (bsc#1191241). - kernel, fs: Introduce and use set_restart_fn() and arch_set_restart_data() (bsc#1191713). - kernel/locking/mutex.c: remove caller signal_pending branch predictions (bsc#1050549). - lib: iov_iter_fault_in_readable() should do nothing in xarray case (bsc#1191579). - locking/mutex: clear MUTEX_FLAGS if wait_list is empty due to signal (git-fixes). - locking/pvqspinlock/x86: Use LOCK_PREFIX in __pv_queued_spin_unlock() assembly code (bsc#1050549). - net: cdc_eem: fix tx fixup skb leak (git-fixes). - net: cdc_ncm: correct overhead in delayed_ndp_size (git-fixes). - net: cdc_ncm: use tasklet_init() for tasklet_struct init (git-fixes). - net: hso: add failure handler for add_net_device (git-fixes). - net: hso: fix NULL-deref on disconnect regression (git-fixes). - net: hso: fix null-ptr-deref during tty device unregistration (git-fixes). - net: hso: remove redundant unused variable dev (git-fixes). - net: ipv6: Discard next-hop MTU less than minimum link MTU (bsc#1191241). - net: mana: Fix error handling in mana_create_rxq() (git-fixes, bsc#1191801). - net: usb: Fix uninit-was-stored issue in asix_read_phy_addr() (git-fixes). - net: usb: qmi_wwan: added support for Thales Cinterion PLSx3 modem family (git-fixes). - net: usb: qmi_wwan: support ZTE P685M modem (git-fixes). - net_sched: cls_route: remove the right filterfrom hashtable (networking-stable-20_03_28). - netfilter: Drop fragmented ndisc packets assembled in netfilter (git-fixes). - ocfs2: Fix data corruption after conversion from inline format (bsc#1190795). - ocfs2: Fix data corruption on truncate (bsc#1190795). - ocfs2: do not zero pages beyond i_size (bsc#1190795). - ocfs2: drop acl cache for directories too (bsc#1191667). - powerpc/64s: Fix crashes when toggling entry flush barrier - powerpc/bpf: Fix BPF_MOD when imm == 1 (bsc#1065729). - powerpc/bpf: Fix BPF_SUB when imm == 0x80000000 (bsc#1065729). - powerpc/bpf: Use bctrl for making function calls (bsc#1065729). - powerpc/lib: Fix emulate_step() std test (bsc#1065729). - powerpc/pseries: Fix build error when NUMA=n (bsc#1190620 ltc#194498 git-fixes). - powerpc/xive: Discard disabled interrupts in get_irqchip_state() (bsc#1085030 git-fixes). - pseries/eeh: Fix the kdump kernel crash during eeh_pseries_init (git-fixes). - s390x: Turn off CONFIG_NUMA_EMU (jsc#SLE-11600). - scsi: lpfc: Allow PLOGI retry if previous PLOGI was aborted (bsc#1192145). - scsi: lpfc: Allow fabric node recovery if recovery is in progress before devloss (bsc#1192145). - scsi: lpfc: Correct sysfs reporting of loop support after SFP status change (bsc#1192145). - scsi: lpfc: Fix crash when nvmet transport calls host_release (bsc#1192145). - scsi: lpfc: Fix link down processing to address NULL pointer dereference (bsc#1192145). - scsi: lpfc: Fix memory overwrite during FC-GS I/O abort handling (bsc#1191349). - scsi: lpfc: Fix use-after-free in lpfc_unreg_rpi() routine (bsc#1192145). - scsi: lpfc: Revert LOG_TRACE_EVENT back to LOG_INIT prior to driver_resource_setup() (bsc#1192145). - scsi: lpfc: Update lpfc version to 14.0.0.3 (bsc#1192145). - scsi: lpfc: Wait for successful restart of SLI3 adapter during host sg_reset (bsc#1192145). - scsi: qla2xxx: Add debug print of 64G link speed(bsc#1190941). - scsi: qla2xxx: Add host attribute to trigger MPI hang (bsc#1190941). - scsi: qla2xxx: Add support for mailbox passthru (bsc#1190941). - scsi: qla2xxx: Adjust request/response queue size for 28xx (bsc#1190941). - scsi: qla2xxx: Call process_response_queue() in Tx path (bsc#1190941). - scsi: qla2xxx: Changes to support FCP2 Target (bsc#1190941). - scsi: qla2xxx: Changes to support kdump kernel (bsc#1190941). - scsi: qla2xxx: Changes to support kdump kernel for NVMe BFS (bsc#1190941). - scsi: qla2xxx: Check for firmware capability before creating QPair (bsc#1190941). - scsi: qla2xxx: Display 16G only as supported speeds for 3830c card (bsc#1190941). - scsi: qla2xxx: Do not call fc_block_scsi_eh() during bus reset (bsc#1190941). - scsi: qla2xxx: Fix NPIV create erroneous error (bsc#1190941). - scsi: qla2xxx: Fix NVMe retry (bsc#1190941). - scsi: qla2xxx: Fix NVMe session down detection (bsc#1190941). - scsi: qla2xxx: Fix NVMe | FCP personality change (bsc#1190941). - scsi: qla2xxx: Fix crash in NVMe abort path (bsc#1190941). - scsi: qla2xxx: Fix excessive messages during device logout (bsc#1190941). - scsi: qla2xxx: Fix hang during NVMe session tear down (bsc#1190941). - scsi: qla2xxx: Fix hang on NVMe command timeouts (bsc#1190941). - scsi: qla2xxx: Fix kernel crash when accessing port_speed sysfs file (bsc#1190941). - scsi: qla2xxx: Fix port type info (bsc#1190941). - scsi: qla2xxx: Fix unsafe removal from linked list (bsc#1190941). - scsi: qla2xxx: Fix use after free in eh_abort path (bsc#1190941). - scsi: qla2xxx: Move heartbeat handling from DPC thread to workqueue (bsc#1190941). - scsi: qla2xxx: Open-code qla2xxx_eh_device_reset() (bsc#1190941). - scsi: qla2xxx: Open-code qla2xxx_eh_target_reset() (bsc#1190941). - scsi: qla2xxx: Remove redundant initialization of pointer req (bsc#1190941). - scsi: qla2xxx: Restore initiator in dual mode (bsc#1190941). - scsi: qla2xxx: Show OSname and version in FDMI-1 (bsc#1190941). - scsi: qla2xxx: Suppress unnecessary log messages during login (bsc#1190941). - scsi: qla2xxx: Sync queue idx with queue_pair_map idx (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.06.100-k (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.06.200-k (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.07.100-k (bsc#1190941). - scsi: qla2xxx: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (bsc#1190941). - scsi: qla2xxx: edif: Add N2N support for EDIF (bsc#1190941). - scsi: qla2xxx: edif: Do secure PLOGI when auth app is present (bsc#1190941). - scsi: qla2xxx: edif: Fix EDIF enable flag (bsc#1190941). - scsi: qla2xxx: edif: Fix returnvar.cocci warnings (bsc#1190941). - scsi: qla2xxx: edif: Fix stale session (bsc#1190941). - scsi: qla2xxx: edif: Reject AUTH ELS on session down (bsc#1190941). - scsi: qla2xxx: edif: Use link event to wake up app (bsc#1190941). - scsi: smartpqi: Fix an error code in pqi_get_raid_map() (git-fixes). - sctp: fully initialize v4 addr in some functions (bsc#1188563). - selinux: fix error initialization in inode_doinit_with_dentry() (git-fixes). - selinux: fix inode_doinit_with_dentry() LABEL_INVALID error handling (git-fxes). - smb2: fix use-after-free in smb2_ioctl_query_info() (bsc#1190317). - smb3: Add debug message for new file creation with idsfromsid mount option (bsc#1190317). - smb3: Add new parm "nodelete" (bsc#1190317). - smb3: Avoid Mid pending list corruption (bsc#1190317). - smb3: Call cifs reconnect from demultiplex thread (bsc#1190317). - smb3: Handle error case during offload read path (bsc#1190317). - smb3: add indatalen that can be a non-zero value to calculation of credit charge in smb2 ioctl (bsc#1190317). - smb3: add some missing definitions from MS-FSCC (bsc#1190317). - smb3: allow uid and gid owners to be set on create with idsfromsid mount option (bsc#1190317). - smb3: do not try tocache root directory if dir leases not supported (bsc#1190317). - smb3: fix access denied on change notify request to some servers (bsc#1190317). - smb3: fix cached file size problems in duplicate extents (reflink) (bsc#1190317). - smb3: fix incorrect number of credits when ioctl MaxOutputResponse > 64K (bsc#1190317). - smb3: fix possible access to uninitialized pointer to DACL (bsc#1190317). - smb3: fix stat when special device file and mounted with modefromsid (bsc#1190317). - smb3: fix unneeded error message on change notify (bsc#1190317). - smb3: limit noisy error (bsc#1190317). - smb3: minor update to compression header definitions (bsc#1190317). - smb3: prevent races updating CurrentMid (bsc#1190317). - smb3: rc uninitialized in one fallocate path (bsc#1190317). - smb3: remove static checker warning (bsc#1190317). - tcp/dccp: fix possible race __inet_lookup_established() (bsc#1180624). - tpm: ibmvtpm: Avoid error message when process gets signal while waiting (bsc#1065729). - uapi: nfnetlink_cthelper.h: fix userspace compilation error (git-fixes). - update structure definitions from updated protocol documentation (bsc#1190317). - usb-storage: Add quirk for ScanLogic SL11R-IDE older than 2.6c (git-fixes). - usb: hso: fix error handling code of hso_create_net_device (git-fixes). - usb: typec: tcpm: handle SRC_STARTUP state if cc changes (git-fixes). - usb: xhci-mtk: fix broken streams issue on 0.96 xHCI (git-fixes). - usb: xhci: dbc: Simplify error handling in 'xhci_dbc_alloc_requests()' (git-fixes). - usb: xhci: dbc: Use GFP_KERNEL instead of GFP_ATOMIC in 'xhci_dbc_alloc_requests()' (git-fixes). - x86/reboot: Limit Dell Optiplex 990 quirk to early BIOS versions (bsc#1114648). - x86/resctrl: Free the ctrlval arrays when domain_setup_mon_state() fails (bsc#1114648). - xen: fix setting of max_pfn in shared_info (git-fixes). - xen: reset legacy rtc flag for PV domU(git-fixes). - xfs: Fixed non-directory creation in SGID directories introduced by CVE-2018-13405 patch (bsc#1190006). - xfs: always honor OWN_UNKNOWN rmap removal requests (bsc#1191500). - xfs: convert growfs AG header init to use buffer lists (bsc#1191500). - xfs: factor ag btree root block initialisation (bsc#1191500). - xfs: factor out AG header initialisation from growfs core (bsc#1191500). - xfs: fix check on struct_version for versions 4 or greater (bsc#1191500, git-fixes). - xfs: fix string handling in label get/set functions (bsc#1191500, git-fixes). - xfs: hoist xfs_fs_geometry to libxfs (bsc#1191500). - xfs: implement online get/set fs label (bsc#1191500). - xfs: make imaxpct changes in growfs separate (bsc#1191500). - xfs: move growfs core to libxfs (bsc#1191500). - xfs: one-shot cached buffers (bsc#1191500). - xfs: refactor the geometry structure filling function (bsc#1191500). - xfs: rework secondary superblock updates in growfs (bsc#1191500). - xfs: separate secondary sb update in growfs (bsc#1191500). - xfs: turn ag header initialisation into a table driven operation (bsc#1191500). - xfs: xfs_fsops: drop useless LIST_HEAD (bsc#1191500, git-fixes). Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Workstation Extension 12-SP5: zypper in -t patch SUSE-SLE-WE-12-SP5-2021-3748=1 - SUSE Linux Enterprise Software Development Kit 12-SP5: zypper in -t patch SUSE-SLE-SDK-12-SP5-2021-3748=1 - SUSE Linux Enterprise Server 12-SP5: zypper in -t patch SUSE-SLE-SERVER-12-SP5-2021-3748=1 - SUSE Linux Enterprise Live Patching 12-SP5: zypper in -t patch SUSE-SLE-Live-Patching-12-SP5-2021-3748=1 - SUSE LinuxEnterprise High Availability 12-SP5: zypper in -t patch SUSE-SLE-HA-12-SP5-2021-3748=1 Package List: - SUSE Linux Enterprise Workstation Extension 12-SP5 (x86_64): kernel-default-debuginfo-4.12.14-122.98.1 kernel-default-debugsource-4.12.14-122.98.1 kernel-default-extra-4.12.14-122.98.1 kernel-default-extra-debuginfo-4.12.14-122.98.1 - SUSE Linux Enterprise Software Development Kit 12-SP5 (aarch64 ppc64le s390x x86_64): kernel-obs-build-4.12.14-122.98.1 kernel-obs-build-debugsource-4.12.14-122.98.1 - SUSE Linux Enterprise Software Development Kit 12-SP5 (noarch): kernel-docs-4.12.14-122.98.1 - SUSE Linux Enterprise Server 12-SP5 (aarch64 ppc64le s390x x86_64): kernel-default-4.12.14-122.98.1 kernel-default-base-4.12.14-122.98.1 kernel-default-base-debuginfo-4.12.14-122.98.1 kernel-default-debuginfo-4.12.14-122.98.1 kernel-default-debugsource-4.12.14-122.98.1 kernel-default-devel-4.12.14-122.98.1 kernel-syms-4.12.14-122.98.1 - SUSE Linux Enterprise Server 12-SP5 (x86_64): kernel-default-devel-debuginfo-4.12.14-122.98.1 - SUSE Linux Enterprise Server 12-SP5 (noarch): kernel-devel-4.12.14-122.98.1 kernel-macros-4.12.14-122.98.1 kernel-source-4.12.14-122.98.1 - SUSE Linux Enterprise Server 12-SP5 (s390x): kernel-default-man-4.12.14-122.98.1 - SUSE Linux Enterprise Live Patching 12-SP5 (ppc64le s390x x86_64): kernel-default-debuginfo-4.12.14-122.98.1 kernel-default-debugsource-4.12.14-122.98.1 kernel-default-kgraft-4.12.14-122.98.1 kernel-default-kgraft-devel-4.12.14-122.98.1 kgraft-patch-4_12_14-122_98-default-1-8.7.1 - SUSE Linux Enterprise High Availability 12-SP5 (ppc64le s390x x86_64): cluster-md-kmp-default-4.12.14-122.98.1 cluster-md-kmp-default-debuginfo-4.12.14-122.98.1 dlm-kmp-default-4.12.14-122.98.1 dlm-kmp-default-debuginfo-4.12.14-122.98.1 gfs2-kmp-default-4.12.14-122.98.1 gfs2-kmp-default-debuginfo-4.12.14-122.98.1 kernel-default-debuginfo-4.12.14-122.98.1 kernel-default-debugsource-4.12.14-122.98.1 ocfs2-kmp-default-4.12.14-122.98.1 ocfs2-kmp-default-debuginfo-4.12.14-122.98.1 References: https://www.suse.com/security/cve/CVE-2018-13405.html https://www.suse.com/security/cve/CVE-2021-33033.html https://www.suse.com/security/cve/CVE-2021-34556.html https://www.suse.com/security/cve/CVE-2021-3542.html https://www.suse.com/security/cve/CVE-2021-35477.html https://www.suse.com/security/cve/CVE-2021-3655.html https://www.suse.com/security/cve/CVE-2021-3715.html https://www.suse.com/security/cve/CVE-2021-37159.html https://www.suse.com/security/cve/CVE-2021-3760.html https://www.suse.com/security/cve/CVE-2021-41864.html https://www.suse.com/security/cve/CVE-2021-42008.html https://www.suse.com/security/cve/CVE-2021-42252.html https://www.suse.com/security/cve/CVE-2021-42739.html https://bugzilla.suse.com/1050549 https://bugzilla.suse.com/1065729 https://bugzilla.suse.com/1085030 https://bugzilla.suse.com/1114648 https://bugzilla.suse.com/1180624 https://bugzilla.suse.com/1184673 https://bugzilla.suse.com/1186063 https://bugzilla.suse.com/1186109 https://bugzilla.suse.com/1188563 https://bugzilla.suse.com/1188601 https://bugzilla.suse.com/1188983 https://bugzilla.suse.com/1188985 https://bugzilla.suse.com/1190006 https://bugzilla.suse.com/1190067 https://bugzilla.suse.com/1190317 https://bugzilla.suse.com/1190349 https://bugzilla.suse.com/1190397 https://bugzilla.suse.com/1190479 https://bugzilla.suse.com/1190620 https://bugzilla.suse.com/1190795 https://bugzilla.suse.com/1190941 https://bugzilla.suse.com/1191241 https://bugzilla.suse.com/1191315 https://bugzilla.suse.com/1191317 https://bugzilla.suse.com/1191349 https://bugzilla.suse.com/1191450 https://bugzilla.suse.com/1191452 https://bugzilla.suse.com/1191455 https://bugzilla.suse.com/1191500 https://bugzilla.suse.com/1191579 https://bugzilla.suse.com/1191628 https://bugzilla.suse.com/1191662 https://bugzilla.suse.com/1191667 https://bugzilla.suse.com/1191713 https://bugzilla.suse.com/1191801 https://bugzilla.suse.com/1191888 https://bugzilla.suse.com/1192145 https://bugzilla.suse.com/1192267 . Improvements made to 13 vulnerabilities and 25 modifications boosting the safety of SUSE's Linux Kernel, tackling severe threats.. SUSE Kernel Update,SUSE Security Fixes,KERNEL Patch,Kernel Fixes. . Severity: Important. LinuxSecurity.com Team

Nov 19, 2021 •Important SuSE

security advisorymoderatesecurity update

Fedora 34: 2022:1002-2 Critical: libarchive Buffer Overflow

An update that fixes one vulnerability is now available. . openSUSE Security Update: Security update for hivex ______________________________________________________________________________ Announcement ID: openSUSE-SU-2021:3201-1 Rating: moderate References: #1189060 Cross-References: CVE-2021-3622 CVSS scores: CVE-2021-3622 (SUSE): 4.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Affected Products: openSUSE Leap 15.3 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for hivex fixes the following issues: - CVE-2021-3622: Fixed stack overflow due to recursive call of _get_children() (bsc#1189060). Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2021-3201=1 Package List: - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): hivex-1.3.14-5.6.1 hivex-debuginfo-1.3.14-5.6.1 hivex-debugsource-1.3.14-5.6.1 hivex-devel-1.3.14-5.6.1 libhivex0-1.3.14-5.6.1 libhivex0-debuginfo-1.3.14-5.6.1 ocaml-hivex-1.3.14-5.6.1 ocaml-hivex-debuginfo-1.3.14-5.6.1 ocaml-hivex-devel-1.3.14-5.6.1 perl-Win-Hivex-1.3.14-5.6.1 perl-Win-Hivex-debuginfo-1.3.14-5.6.1 python-hivex-1.3.14-5.6.1 python-hivex-debuginfo-1.3.14-5.6.1 - openSUSE Leap 15.3 (noarch): hivex-lang-1.3.14-5.6.1 References: https://www.suse.com/security/cve/CVE-2021-3622.html https://bugzilla.suse.com/1189060 . A new release for hivex tackles a significant security concern; Usage guidelines are available for Fedora deployments.. openSUSE Security, Stack Overflow Fix, hivex Update, Software Patching, Linux Maintenance. .LinuxSecurity.com Team

Sep 23, 2021 OpenSUSE

security advisorymoderatethreat mitigation

SUSE: 2020:3343-1 Moderate: PostgreSQL Server Patch Announcement

An update that contains security fixes and contains three features can now be installed. . SUSE Security Update: Security update for postgresql, postgresql96, postgresql10 and postgresql12 ______________________________________________________________________________ Announcement ID: SUSE-SU-2020:3343-1 Rating: moderate References: #1171924 ECO-923 PM-1472 SLE-11078 Affected Products: SUSE OpenStack Cloud Crowbar 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 7 SUSE Linux Enterprise Software Development Kit 12-SP5 SUSE Linux Enterprise Server for SAP 12-SP4 SUSE Linux Enterprise Server for SAP 12-SP3 SUSE Linux Enterprise Server for SAP 12-SP2 SUSE Linux Enterprise Server 12-SP5 SUSE Linux Enterprise Server 12-SP4-LTSS SUSE Linux Enterprise Server 12-SP3-LTSS SUSE Linux Enterprise Server 12-SP3-BCL SUSE Linux Enterprise Server 12-SP2-LTSS SUSE Linux Enterprise Server 12-SP2-BCL SUSE Enterprise Storage 5 HPE Helion Openstack 8 ______________________________________________________________________________ An update that contains security fixes and contains three features can now be installed. Description: This update changes the internal packaging for postgresql, and so contains all currently maintained postgresql versions across our SUSE Linux Enterprise 12 products. * postgresql12 is shipped new in version 12.3 (bsc#1171924). The server and client packages only on SUSE Linux Enterprise Server 12 SP5, the libraries on SUSE Linux Enterprise Server 12 SP2 LTSS up to 12 SP5. + https:// + https://www.postgresql.org/docs/12/release-12-3.html *postgresql10 is updated to 10.13 (bsc#1171924). On SUSE Linux Enterprise Server 12 SP2 LTSS up to 12 SP5. + https:// + https://www.postgresql.org/docs/10/release-10-13.html * postgresql96 is updated to 9.6.18 (bsc#1171924): + https:// + https://www.postgresql.org/docs/9.6/release-9-6-18.html On SUSE Linux Enterprise Server 12-SP2 and 12-SP3 LTSS only. * postgresql 9.4 is updated to 9.4.26: + https://www.postgresql.org/about/news/postgresql-122-117-1012-9617-9521-and-9426-released-2011/ + https://www.postgresql.org/docs/9.4/release-9-4-26.html + https://www.postgresql.org/about/news/postgresql-121-116-1011-9616-9520-and-9425-released-1994/ + https://www.postgresql.org/docs/9.4/release-9-4-25.html Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE OpenStack Cloud Crowbar 9: zypper in -t patch SUSE-OpenStack-Cloud-Crowbar-9-2020-3343=1 - SUSE OpenStack Cloud Crowbar 8: zypper in -t patch SUSE-OpenStack-Cloud-Crowbar-8-2020-3343=1 - SUSE OpenStack Cloud 9: zypper in -t patch SUSE-OpenStack-Cloud-9-2020-3343=1 - SUSE OpenStack Cloud 8: zypper in -t patch SUSE-OpenStack-Cloud-8-2020-3343=1 - SUSE OpenStack Cloud 7: zypper in -t patch SUSE-OpenStack-Cloud-7-2020-3343=1 - SUSE Linux Enterprise Software Development Kit 12-SP5: zypper in -t patch SUSE-SLE-SDK-12-SP5-2020-3343=1 - SUSE Linux Enterprise Server for SAP 12-SP4: zypper in -t patch SUSE-SLE-SAP-12-SP4-2020-3343=1 - SUSE Linux Enterprise Server for SAP 12-SP3: zypper in -t patch SUSE-SLE-SAP-12-SP3-2020-3343=1 - SUSE Linux Enterprise Server for SAP 12-SP2: zypper in -t patch SUSE-SLE-SAP-12-SP2-2020-3343=1 - SUSE Linux Enterprise Server 12-SP5: zypper in -t patch SUSE-SLE-SERVER-12-SP5-2020-3343=1 - SUSELinux Enterprise Server 12-SP4-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP4-LTSS-2020-3343=1 - SUSE Linux Enterprise Server 12-SP3-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP3-2020-3343=1 - SUSE Linux Enterprise Server 12-SP3-BCL: zypper in -t patch SUSE-SLE-SERVER-12-SP3-BCL-2020-3343=1 - SUSE Linux Enterprise Server 12-SP2-LTSS: zypper in -t patch SUSE-SLE-SERVER-12-SP2-2020-3343=1 - SUSE Linux Enterprise Server 12-SP2-BCL: zypper in -t patch SUSE-SLE-SERVER-12-SP2-BCL-2020-3343=1 - SUSE Enterprise Storage 5: zypper in -t patch SUSE-Storage-5-2020-3343=1 - HPE Helion Openstack 8: zypper in -t patch HPE-Helion-OpenStack-8-2020-3343=1 Package List: - SUSE OpenStack Cloud Crowbar 9 (x86_64): libecpg6-12.4-3.5.1 libecpg6-debuginfo-12.4-3.5.1 libpq5-12.4-3.5.1 libpq5-32bit-12.4-3.5.1 libpq5-debuginfo-12.4-3.5.1 libpq5-debuginfo-32bit-12.4-3.5.1 postgresql10-10.14-4.4.1 postgresql10-contrib-10.14-4.4.1 postgresql10-contrib-debuginfo-10.14-4.4.1 postgresql10-debuginfo-10.14-4.4.1 postgresql10-debugsource-10.14-4.4.1 postgresql10-plperl-10.14-4.4.1 postgresql10-plperl-debuginfo-10.14-4.4.1 postgresql10-plpython-10.14-4.4.1 postgresql10-plpython-debuginfo-10.14-4.4.1 postgresql10-pltcl-10.14-4.4.1 postgresql10-pltcl-debuginfo-10.14-4.4.1 postgresql10-server-10.14-4.4.1 postgresql10-server-debuginfo-10.14-4.4.1 - SUSE OpenStack Cloud Crowbar 9 (noarch): postgresql-12.0.1-4.4.1 postgresql-contrib-12.0.1-4.4.1 postgresql-docs-12.0.1-4.4.1 postgresql-plperl-12.0.1-4.4.1 postgresql-plpython-12.0.1-4.4.1 postgresql-pltcl-12.0.1-4.4.1 postgresql-server-12.0.1-4.4.1 postgresql10-docs-10.14-4.4.1 - SUSE OpenStack Cloud Crowbar 8 (noarch): postgresql-12.0.1-4.4.1 postgresql-contrib-12.0.1-4.4.1 postgresql-docs-12.0.1-4.4.1 postgresql-plperl-12.0.1-4.4.1 postgresql-plpython-12.0.1-4.4.1 postgresql-pltcl-12.0.1-4.4.1 postgresql-server-12.0.1-4.4.1 postgresql10-docs-10.14-4.4.1 postgresql96-docs-9.6.19-6.4.1 - SUSE OpenStack Cloud Crowbar 8 (x86_64): libecpg6-12.4-3.5.1 libecpg6-debuginfo-12.4-3.5.1 libpq5-12.4-3.5.1 libpq5-32bit-12.4-3.5.1 libpq5-debuginfo-12.4-3.5.1 libpq5-debuginfo-32bit-12.4-3.5.1 postgresql10-10.14-4.4.1 postgresql10-contrib-10.14-4.4.1 postgresql10-contrib-debuginfo-10.14-4.4.1 postgresql10-debuginfo-10.14-4.4.1 postgresql10-debugsource-10.14-4.4.1 postgresql10-plperl-10.14-4.4.1 postgresql10-plperl-debuginfo-10.14-4.4.1 postgresql10-plpython-10.14-4.4.1 postgresql10-plpython-debuginfo-10.14-4.4.1 postgresql10-pltcl-10.14-4.4.1 postgresql10-pltcl-debuginfo-10.14-4.4.1 postgresql10-server-10.14-4.4.1 postgresql10-server-debuginfo-10.14-4.4.1 postgresql96-9.6.19-6.4.1 postgresql96-contrib-9.6.19-6.4.1 postgresql96-contrib-debuginfo-9.6.19-6.4.1 postgresql96-debuginfo-9.6.19-6.4.1 postgresql96-debugsource-9.6.19-6.4.1 postgresql96-plperl-9.6.19-6.4.1 postgresql96-plperl-debuginfo-9.6.19-6.4.1 postgresql96-plpython-9.6.19-6.4.1 postgresql96-plpython-debuginfo-9.6.19-6.4.1 postgresql96-pltcl-9.6.19-6.4.1 postgresql96-pltcl-debuginfo-9.6.19-6.4.1 postgresql96-server-9.6.19-6.4.1 postgresql96-server-debuginfo-9.6.19-6.4.1 - SUSE OpenStack Cloud 9 (noarch): postgresql-12.0.1-4.4.1 postgresql-contrib-12.0.1-4.4.1 postgresql-docs-12.0.1-4.4.1 postgresql-plperl-12.0.1-4.4.1 postgresql-plpython-12.0.1-4.4.1 postgresql-pltcl-12.0.1-4.4.1 postgresql-server-12.0.1-4.4.1 postgresql10-docs-10.14-4.4.1 - SUSE OpenStack Cloud 9 (x86_64): libecpg6-12.4-3.5.1 libecpg6-debuginfo-12.4-3.5.1 libpq5-12.4-3.5.1 libpq5-32bit-12.4-3.5.1 libpq5-debuginfo-12.4-3.5.1 libpq5-debuginfo-32bit-12.4-3.5.1 postgresql10-10.14-4.4.1 postgresql10-contrib-10.14-4.4.1 postgresql10-contrib-debuginfo-10.14-4.4.1 postgresql10-debuginfo-10.14-4.4.1 postgresql10-debugsource-10.14-4.4.1 postgresql10-plperl-10.14-4.4.1 postgresql10-plperl-debuginfo-10.14-4.4.1 postgresql10-plpython-10.14-4.4.1 postgresql10-plpython-debuginfo-10.14-4.4.1 postgresql10-pltcl-10.14-4.4.1 postgresql10-pltcl-debuginfo-10.14-4.4.1 postgresql10-server-10.14-4.4.1 postgresql10-server-debuginfo-10.14-4.4.1 - SUSE OpenStack Cloud 8 (noarch): postgresql-12.0.1-4.4.1 postgresql-contrib-12.0.1-4.4.1 postgresql-docs-12.0.1-4.4.1 postgresql-plperl-12.0.1-4.4.1 postgresql-plpython-12.0.1-4.4.1 postgresql-pltcl-12.0.1-4.4.1 postgresql-server-12.0.1-4.4.1 postgresql10-docs-10.14-4.4.1 postgresql96-docs-9.6.19-6.4.1 - SUSE OpenStack Cloud 8 (x86_64): libecpg6-12.4-3.5.1 libecpg6-debuginfo-12.4-3.5.1 libpq5-12.4-3.5.1 libpq5-32bit-12.4-3.5.1 libpq5-debuginfo-12.4-3.5.1 libpq5-debuginfo-32bit-12.4-3.5.1 postgresql10-10.14-4.4.1 postgresql10-contrib-10.14-4.4.1 postgresql10-contrib-debuginfo-10.14-4.4.1 postgresql10-debuginfo-10.14-4.4.1 postgresql10-debugsource-10.14-4.4.1 postgresql10-plperl-10.14-4.4.1 postgresql10-plperl-debuginfo-10.14-4.4.1 postgresql10-plpython-10.14-4.4.1 postgresql10-plpython-debuginfo-10.14-4.4.1 postgresql10-pltcl-10.14-4.4.1 postgresql10-pltcl-debuginfo-10.14-4.4.1 postgresql10-server-10.14-4.4.1 postgresql10-server-debuginfo-10.14-4.4.1 postgresql96-9.6.19-6.4.1 postgresql96-contrib-9.6.19-6.4.1 postgresql96-contrib-debuginfo-9.6.19-6.4.1 postgresql96-debuginfo-9.6.19-6.4.1 postgresql96-debugsource-9.6.19-6.4.1 postgresql96-plperl-9.6.19-6.4.1 postgresql96-plperl-debuginfo-9.6.19-6.4.1 postgresql96-plpython-9.6.19-6.4.1 postgresql96-plpython-debuginfo-9.6.19-6.4.1 postgresql96-pltcl-9.6.19-6.4.1 postgresql96-pltcl-debuginfo-9.6.19-6.4.1 postgresql96-server-9.6.19-6.4.1 postgresql96-server-debuginfo-9.6.19-6.4.1 - SUSE OpenStack Cloud 7 (s390x x86_64): libecpg6-12.4-3.5.1 libecpg6-debuginfo-12.4-3.5.1 libpq5-12.4-3.5.1 libpq5-32bit-12.4-3.5.1 libpq5-debuginfo-12.4-3.5.1 libpq5-debuginfo-32bit-12.4-3.5.1 postgresql10-10.14-4.4.1 postgresql10-contrib-10.14-4.4.1 postgresql10-contrib-debuginfo-10.14-4.4.1 postgresql10-debuginfo-10.14-4.4.1 postgresql10-debugsource-10.14-4.4.1 postgresql10-plperl-10.14-4.4.1 postgresql10-plperl-debuginfo-10.14-4.4.1 postgresql10-plpython-10.14-4.4.1 postgresql10-plpython-debuginfo-10.14-4.4.1 postgresql10-pltcl-10.14-4.4.1 postgresql10-pltcl-debuginfo-10.14-4.4.1 postgresql10-server-10.14-4.4.1 postgresql10-server-debuginfo-10.14-4.4.1 postgresql94-9.4.26-24.3.1 postgresql94-contrib-9.4.26-24.3.1 postgresql94-contrib-debuginfo-9.4.26-24.3.1 postgresql94-debuginfo-9.4.26-24.3.1 postgresql94-debugsource-9.4.26-24.3.1 postgresql94-plperl-9.4.26-24.3.1 postgresql94-plperl-debuginfo-9.4.26-24.3.1 postgresql94-plpython-9.4.26-24.3.1 postgresql94-plpython-debuginfo-9.4.26-24.3.1 postgresql94-pltcl-9.4.26-24.3.1 postgresql94-pltcl-debuginfo-9.4.26-24.3.1 postgresql94-server-9.4.26-24.3.1 postgresql94-server-debuginfo-9.4.26-24.3.1 postgresql96-9.6.19-6.4.1 postgresql96-contrib-9.6.19-6.4.1 postgresql96-contrib-debuginfo-9.6.19-6.4.1 postgresql96-debuginfo-9.6.19-6.4.1 postgresql96-debugsource-9.6.19-6.4.1 postgresql96-plperl-9.6.19-6.4.1 postgresql96-plperl-debuginfo-9.6.19-6.4.1 postgresql96-plpython-9.6.19-6.4.1 postgresql96-plpython-debuginfo-9.6.19-6.4.1 postgresql96-pltcl-9.6.19-6.4.1 postgresql96-pltcl-debuginfo-9.6.19-6.4.1 postgresql96-server-9.6.19-6.4.1 postgresql96-server-debuginfo-9.6.19-6.4.1 - SUSE OpenStack Cloud 7 (noarch): postgresql-12.0.1-4.4.1 postgresql-contrib-12.0.1-4.4.1 postgresql-docs-12.0.1-4.4.1 postgresql-plperl-12.0.1-4.4.1 postgresql-plpython-12.0.1-4.4.1 postgresql-pltcl-12.0.1-4.4.1 postgresql-server-12.0.1-4.4.1 postgresql10-docs-10.14-4.4.1 postgresql94-docs-9.4.26-24.3.1 postgresql96-docs-9.6.19-6.4.1 - SUSE Linux Enterprise Software Development Kit 12-SP5 (aarch64 ppc64le s390x x86_64): postgresql10-debugsource-10.14-4.4.1 postgresql10-devel-10.14-4.4.1 postgresql10-devel-debuginfo-10.14-4.4.1 postgresql12-debugsource-12.4-3.5.1 postgresql12-devel-12.4-3.5.1 postgresql12-devel-debuginfo-12.4-3.5.1 - SUSE Linux Enterprise Software Development Kit 12-SP5 (ppc64le s390x x86_64): postgresql12-server-devel-12.4-3.5.1 postgresql12-server-devel-debuginfo-12.4-3.5.1 - SUSE Linux Enterprise Software Development Kit 12-SP5 (noarch): postgresql-devel-12.0.1-4.4.1 postgresql-server-devel-12.0.1-4.4.1 - SUSE Linux Enterprise Server for SAP 12-SP4 (ppc64le x86_64): libecpg6-12.4-3.5.1 libecpg6-debuginfo-12.4-3.5.1 libpq5-12.4-3.5.1 libpq5-debuginfo-12.4-3.5.1 postgresql10-10.14-4.4.1 postgresql10-contrib-10.14-4.4.1 postgresql10-contrib-debuginfo-10.14-4.4.1 postgresql10-debuginfo-10.14-4.4.1 postgresql10-debugsource-10.14-4.4.1 postgresql10-plperl-10.14-4.4.1 postgresql10-plperl-debuginfo-10.14-4.4.1 postgresql10-plpython-10.14-4.4.1 postgresql10-plpython-debuginfo-10.14-4.4.1 postgresql10-pltcl-10.14-4.4.1 postgresql10-pltcl-debuginfo-10.14-4.4.1 postgresql10-server-10.14-4.4.1 postgresql10-server-debuginfo-10.14-4.4.1 - SUSELinux Enterprise Server for SAP 12-SP4 (x86_64): libpq5-32bit-12.4-3.5.1 libpq5-debuginfo-32bit-12.4-3.5.1 - SUSE Linux Enterprise Server for SAP 12-SP4 (noarch): postgresql-12.0.1-4.4.1 postgresql-contrib-12.0.1-4.4.1 postgresql-docs-12.0.1-4.4.1 postgresql-plperl-12.0.1-4.4.1 postgresql-plpython-12.0.1-4.4.1 postgresql-pltcl-12.0.1-4.4.1 postgresql-server-12.0.1-4.4.1 postgresql10-docs-10.14-4.4.1 - SUSE Linux Enterprise Server for SAP 12-SP3 (ppc64le x86_64): libecpg6-12.4-3.5.1 libecpg6-debuginfo-12.4-3.5.1 libpq5-12.4-3.5.1 libpq5-debuginfo-12.4-3.5.1 postgresql10-10.14-4.4.1 postgresql10-contrib-10.14-4.4.1 postgresql10-contrib-debuginfo-10.14-4.4.1 postgresql10-debuginfo-10.14-4.4.1 postgresql10-debugsource-10.14-4.4.1 postgresql10-plperl-10.14-4.4.1 postgresql10-plperl-debuginfo-10.14-4.4.1 postgresql10-plpython-10.14-4.4.1 postgresql10-plpython-debuginfo-10.14-4.4.1 postgresql10-pltcl-10.14-4.4.1 postgresql10-pltcl-debuginfo-10.14-4.4.1 postgresql10-server-10.14-4.4.1 postgresql10-server-debuginfo-10.14-4.4.1 postgresql96-9.6.19-6.4.1 postgresql96-contrib-9.6.19-6.4.1 postgresql96-contrib-debuginfo-9.6.19-6.4.1 postgresql96-debuginfo-9.6.19-6.4.1 postgresql96-debugsource-9.6.19-6.4.1 postgresql96-plperl-9.6.19-6.4.1 postgresql96-plperl-debuginfo-9.6.19-6.4.1 postgresql96-plpython-9.6.19-6.4.1 postgresql96-plpython-debuginfo-9.6.19-6.4.1 postgresql96-pltcl-9.6.19-6.4.1 postgresql96-pltcl-debuginfo-9.6.19-6.4.1 postgresql96-server-9.6.19-6.4.1 postgresql96-server-debuginfo-9.6.19-6.4.1 - SUSE Linux Enterprise Server for SAP 12-SP3 (x86_64): libpq5-32bit-12.4-3.5.1 libpq5-debuginfo-32bit-12.4-3.5.1 - SUSE Linux Enterprise Server for SAP 12-SP3 (noarch): postgresql-12.0.1-4.4.1 postgresql-contrib-12.0.1-4.4.1 postgresql-docs-12.0.1-4.4.1 postgresql-plperl-12.0.1-4.4.1 postgresql-plpython-12.0.1-4.4.1 postgresql-pltcl-12.0.1-4.4.1 postgresql-server-12.0.1-4.4.1 postgresql10-docs-10.14-4.4.1 postgresql96-docs-9.6.19-6.4.1 - SUSE Linux Enterprise Server for SAP 12-SP2 (ppc64le x86_64): libecpg6-12.4-3.5.1 libecpg6-debuginfo-12.4-3.5.1 libpq5-12.4-3.5.1 libpq5-debuginfo-12.4-3.5.1 postgresql10-10.14-4.4.1 postgresql10-contrib-10.14-4.4.1 postgresql10-contrib-debuginfo-10.14-4.4.1 postgresql10-debuginfo-10.14-4.4.1 postgresql10-debugsource-10.14-4.4.1 postgresql10-plperl-10.14-4.4.1 postgresql10-plperl-debuginfo-10.14-4.4.1 postgresql10-plpython-10.14-4.4.1 postgresql10-plpython-debuginfo-10.14-4.4.1 postgresql10-pltcl-10.14-4.4.1 postgresql10-pltcl-debuginfo-10.14-4.4.1 postgresql10-server-10.14-4.4.1 postgresql10-server-debuginfo-10.14-4.4.1 postgresql94-9.4.26-24.3.1 postgresql94-contrib-9.4.26-24.3.1 postgresql94-contrib-debuginfo-9.4.26-24.3.1 postgresql94-debuginfo-9.4.26-24.3.1 postgresql94-debugsource-9.4.26-24.3.1 postgresql94-plperl-9.4.26-24.3.1 postgresql94-plperl-debuginfo-9.4.26-24.3.1 postgresql94-plpython-9.4.26-24.3.1 postgresql94-plpython-debuginfo-9.4.26-24.3.1 postgresql94-pltcl-9.4.26-24.3.1 postgresql94-pltcl-debuginfo-9.4.26-24.3.1 postgresql94-server-9.4.26-24.3.1 postgresql94-server-debuginfo-9.4.26-24.3.1 postgresql96-9.6.19-6.4.1 postgresql96-contrib-9.6.19-6.4.1 postgresql96-contrib-debuginfo-9.6.19-6.4.1 postgresql96-debuginfo-9.6.19-6.4.1 postgresql96-debugsource-9.6.19-6.4.1 postgresql96-plperl-9.6.19-6.4.1 postgresql96-plperl-debuginfo-9.6.19-6.4.1 postgresql96-plpython-9.6.19-6.4.1 postgresql96-plpython-debuginfo-9.6.19-6.4.1 postgresql96-pltcl-9.6.19-6.4.1 postgresql96-pltcl-debuginfo-9.6.19-6.4.1 postgresql96-server-9.6.19-6.4.1 postgresql96-server-debuginfo-9.6.19-6.4.1 - SUSE Linux Enterprise Server for SAP 12-SP2 (noarch): postgresql-12.0.1-4.4.1 postgresql-contrib-12.0.1-4.4.1 postgresql-docs-12.0.1-4.4.1 postgresql-plperl-12.0.1-4.4.1 postgresql-plpython-12.0.1-4.4.1 postgresql-pltcl-12.0.1-4.4.1 postgresql-server-12.0.1-4.4.1 postgresql10-docs-10.14-4.4.1 postgresql94-docs-9.4.26-24.3.1 postgresql96-docs-9.6.19-6.4.1 - SUSE Linux Enterprise Server for SAP 12-SP2 (x86_64): libpq5-32bit-12.4-3.5.1 libpq5-debuginfo-32bit-12.4-3.5.1 - SUSE Linux Enterprise Server 12-SP5 (aarch64 ppc64le s390x x86_64): libecpg6-12.4-3.5.1 libecpg6-debuginfo-12.4-3.5.1 libpq5-12.4-3.5.1 libpq5-debuginfo-12.4-3.5.1 postgresql10-10.14-4.4.1 postgresql10-contrib-10.14-4.4.1 postgresql10-contrib-debuginfo-10.14-4.4.1 postgresql10-debuginfo-10.14-4.4.1 postgresql10-debugsource-10.14-4.4.1 postgresql10-plperl-10.14-4.4.1 postgresql10-plperl-debuginfo-10.14-4.4.1 postgresql10-plpython-10.14-4.4.1 postgresql10-plpython-debuginfo-10.14-4.4.1 postgresql10-pltcl-10.14-4.4.1 postgresql10-pltcl-debuginfo-10.14-4.4.1 postgresql10-server-10.14-4.4.1 postgresql10-server-debuginfo-10.14-4.4.1 postgresql12-12.4-3.5.1 postgresql12-contrib-12.4-3.5.1 postgresql12-contrib-debuginfo-12.4-3.5.1 postgresql12-debuginfo-12.4-3.5.1 postgresql12-debugsource-12.4-3.5.1 postgresql12-plperl-12.4-3.5.1 postgresql12-plperl-debuginfo-12.4-3.5.1 postgresql12-plpython-12.4-3.5.1 postgresql12-plpython-debuginfo-12.4-3.5.1 postgresql12-pltcl-12.4-3.5.1 postgresql12-pltcl-debuginfo-12.4-3.5.1 postgresql12-server-12.4-3.5.1 postgresql12-server-debuginfo-12.4-3.5.1 - SUSE Linux Enterprise Server 12-SP5 (s390x x86_64): libpq5-32bit-12.4-3.5.1 libpq5-debuginfo-32bit-12.4-3.5.1 - SUSE Linux Enterprise Server 12-SP5 (noarch): postgresql-12.0.1-4.4.1 postgresql-contrib-12.0.1-4.4.1 postgresql-docs-12.0.1-4.4.1 postgresql-plperl-12.0.1-4.4.1 postgresql-plpython-12.0.1-4.4.1 postgresql-pltcl-12.0.1-4.4.1 postgresql-server-12.0.1-4.4.1 postgresql10-docs-10.14-4.4.1 postgresql12-docs-12.4-3.5.1 - SUSE Linux Enterprise Server 12-SP4-LTSS (aarch64 ppc64le s390x x86_64): libecpg6-12.4-3.5.1 libecpg6-debuginfo-12.4-3.5.1 libpq5-12.4-3.5.1 libpq5-debuginfo-12.4-3.5.1 postgresql10-10.14-4.4.1 postgresql10-contrib-10.14-4.4.1 postgresql10-contrib-debuginfo-10.14-4.4.1 postgresql10-debuginfo-10.14-4.4.1 postgresql10-debugsource-10.14-4.4.1 postgresql10-plperl-10.14-4.4.1 postgresql10-plperl-debuginfo-10.14-4.4.1 postgresql10-plpython-10.14-4.4.1 postgresql10-plpython-debuginfo-10.14-4.4.1 postgresql10-pltcl-10.14-4.4.1 postgresql10-pltcl-debuginfo-10.14-4.4.1 postgresql10-server-10.14-4.4.1 postgresql10-server-debuginfo-10.14-4.4.1 - SUSE Linux Enterprise Server 12-SP4-LTSS (s390x x86_64): libpq5-32bit-12.4-3.5.1 libpq5-debuginfo-32bit-12.4-3.5.1 - SUSE Linux Enterprise Server 12-SP4-LTSS (noarch): postgresql-12.0.1-4.4.1 postgresql-contrib-12.0.1-4.4.1 postgresql-docs-12.0.1-4.4.1 postgresql-plperl-12.0.1-4.4.1 postgresql-plpython-12.0.1-4.4.1 postgresql-pltcl-12.0.1-4.4.1 postgresql-server-12.0.1-4.4.1 postgresql10-docs-10.14-4.4.1 - SUSE Linux Enterprise Server 12-SP3-LTSS (aarch64 ppc64le s390x x86_64): libecpg6-12.4-3.5.1 libecpg6-debuginfo-12.4-3.5.1 libpq5-12.4-3.5.1 libpq5-debuginfo-12.4-3.5.1 postgresql10-10.14-4.4.1 postgresql10-contrib-10.14-4.4.1 postgresql10-contrib-debuginfo-10.14-4.4.1 postgresql10-debuginfo-10.14-4.4.1 postgresql10-debugsource-10.14-4.4.1 postgresql10-plperl-10.14-4.4.1 postgresql10-plperl-debuginfo-10.14-4.4.1 postgresql10-plpython-10.14-4.4.1 postgresql10-plpython-debuginfo-10.14-4.4.1 postgresql10-pltcl-10.14-4.4.1 postgresql10-pltcl-debuginfo-10.14-4.4.1 postgresql10-server-10.14-4.4.1 postgresql10-server-debuginfo-10.14-4.4.1 postgresql96-9.6.19-6.4.1 postgresql96-contrib-9.6.19-6.4.1 postgresql96-contrib-debuginfo-9.6.19-6.4.1 postgresql96-debuginfo-9.6.19-6.4.1 postgresql96-debugsource-9.6.19-6.4.1 postgresql96-plperl-9.6.19-6.4.1 postgresql96-plperl-debuginfo-9.6.19-6.4.1 postgresql96-plpython-9.6.19-6.4.1 postgresql96-plpython-debuginfo-9.6.19-6.4.1 postgresql96-pltcl-9.6.19-6.4.1 postgresql96-pltcl-debuginfo-9.6.19-6.4.1 postgresql96-server-9.6.19-6.4.1 postgresql96-server-debuginfo-9.6.19-6.4.1 - SUSE Linux Enterprise Server 12-SP3-LTSS (s390x x86_64): libpq5-32bit-12.4-3.5.1 libpq5-debuginfo-32bit-12.4-3.5.1 - SUSE Linux Enterprise Server 12-SP3-LTSS (noarch): postgresql-12.0.1-4.4.1 postgresql-contrib-12.0.1-4.4.1 postgresql-docs-12.0.1-4.4.1 postgresql-plperl-12.0.1-4.4.1 postgresql-plpython-12.0.1-4.4.1 postgresql-pltcl-12.0.1-4.4.1 postgresql-server-12.0.1-4.4.1 postgresql10-docs-10.14-4.4.1 postgresql96-docs-9.6.19-6.4.1 - SUSE Linux Enterprise Server 12-SP3-BCL (x86_64): libecpg6-12.4-3.5.1 libecpg6-debuginfo-12.4-3.5.1 libpq5-12.4-3.5.1 libpq5-32bit-12.4-3.5.1 libpq5-debuginfo-12.4-3.5.1 libpq5-debuginfo-32bit-12.4-3.5.1 postgresql10-10.14-4.4.1 postgresql10-contrib-10.14-4.4.1 postgresql10-contrib-debuginfo-10.14-4.4.1 postgresql10-debuginfo-10.14-4.4.1 postgresql10-debugsource-10.14-4.4.1 postgresql10-plperl-10.14-4.4.1 postgresql10-plperl-debuginfo-10.14-4.4.1 postgresql10-plpython-10.14-4.4.1 postgresql10-plpython-debuginfo-10.14-4.4.1 postgresql10-pltcl-10.14-4.4.1 postgresql10-pltcl-debuginfo-10.14-4.4.1 postgresql10-server-10.14-4.4.1 postgresql10-server-debuginfo-10.14-4.4.1 postgresql96-9.6.19-6.4.1 postgresql96-contrib-9.6.19-6.4.1 postgresql96-contrib-debuginfo-9.6.19-6.4.1 postgresql96-debuginfo-9.6.19-6.4.1 postgresql96-debugsource-9.6.19-6.4.1 postgresql96-plperl-9.6.19-6.4.1 postgresql96-plperl-debuginfo-9.6.19-6.4.1 postgresql96-plpython-9.6.19-6.4.1 postgresql96-plpython-debuginfo-9.6.19-6.4.1 postgresql96-pltcl-9.6.19-6.4.1 postgresql96-pltcl-debuginfo-9.6.19-6.4.1 postgresql96-server-9.6.19-6.4.1 postgresql96-server-debuginfo-9.6.19-6.4.1 - SUSE Linux Enterprise Server 12-SP3-BCL (noarch): postgresql-12.0.1-4.4.1 postgresql-contrib-12.0.1-4.4.1 postgresql-docs-12.0.1-4.4.1 postgresql-plperl-12.0.1-4.4.1 postgresql-plpython-12.0.1-4.4.1 postgresql-pltcl-12.0.1-4.4.1 postgresql-server-12.0.1-4.4.1 postgresql10-docs-10.14-4.4.1 postgresql96-docs-9.6.19-6.4.1 - SUSE Linux Enterprise Server 12-SP2-LTSS (ppc64le s390x x86_64): libecpg6-12.4-3.5.1 libecpg6-debuginfo-12.4-3.5.1 libpq5-12.4-3.5.1 libpq5-debuginfo-12.4-3.5.1 postgresql10-10.14-4.4.1 postgresql10-contrib-10.14-4.4.1 postgresql10-contrib-debuginfo-10.14-4.4.1 postgresql10-debuginfo-10.14-4.4.1 postgresql10-debugsource-10.14-4.4.1 postgresql10-plperl-10.14-4.4.1 postgresql10-plperl-debuginfo-10.14-4.4.1 postgresql10-plpython-10.14-4.4.1 postgresql10-plpython-debuginfo-10.14-4.4.1 postgresql10-pltcl-10.14-4.4.1 postgresql10-pltcl-debuginfo-10.14-4.4.1 postgresql10-server-10.14-4.4.1 postgresql10-server-debuginfo-10.14-4.4.1 postgresql94-9.4.26-24.3.1 postgresql94-contrib-9.4.26-24.3.1 postgresql94-contrib-debuginfo-9.4.26-24.3.1 postgresql94-debuginfo-9.4.26-24.3.1 postgresql94-debugsource-9.4.26-24.3.1 postgresql94-plperl-9.4.26-24.3.1 postgresql94-plperl-debuginfo-9.4.26-24.3.1 postgresql94-plpython-9.4.26-24.3.1 postgresql94-plpython-debuginfo-9.4.26-24.3.1 postgresql94-pltcl-9.4.26-24.3.1 postgresql94-pltcl-debuginfo-9.4.26-24.3.1 postgresql94-server-9.4.26-24.3.1 postgresql94-server-debuginfo-9.4.26-24.3.1 postgresql96-9.6.19-6.4.1 postgresql96-contrib-9.6.19-6.4.1 postgresql96-contrib-debuginfo-9.6.19-6.4.1 postgresql96-debuginfo-9.6.19-6.4.1 postgresql96-debugsource-9.6.19-6.4.1 postgresql96-plperl-9.6.19-6.4.1 postgresql96-plperl-debuginfo-9.6.19-6.4.1 postgresql96-plpython-9.6.19-6.4.1 postgresql96-plpython-debuginfo-9.6.19-6.4.1 postgresql96-pltcl-9.6.19-6.4.1 postgresql96-pltcl-debuginfo-9.6.19-6.4.1 postgresql96-server-9.6.19-6.4.1 postgresql96-server-debuginfo-9.6.19-6.4.1 - SUSE Linux Enterprise Server 12-SP2-LTSS (s390x x86_64): libpq5-32bit-12.4-3.5.1 libpq5-debuginfo-32bit-12.4-3.5.1 - SUSE Linux Enterprise Server 12-SP2-LTSS (noarch): postgresql-12.0.1-4.4.1 postgresql-contrib-12.0.1-4.4.1 postgresql-docs-12.0.1-4.4.1 postgresql-plperl-12.0.1-4.4.1 postgresql-plpython-12.0.1-4.4.1 postgresql-pltcl-12.0.1-4.4.1 postgresql-server-12.0.1-4.4.1 postgresql10-docs-10.14-4.4.1 postgresql94-docs-9.4.26-24.3.1 postgresql96-docs-9.6.19-6.4.1 - SUSE Linux Enterprise Server 12-SP2-BCL (x86_64): libecpg6-12.4-3.5.1 libecpg6-debuginfo-12.4-3.5.1 libpq5-12.4-3.5.1 libpq5-32bit-12.4-3.5.1 libpq5-debuginfo-12.4-3.5.1 libpq5-debuginfo-32bit-12.4-3.5.1 postgresql10-10.14-4.4.1 postgresql10-contrib-10.14-4.4.1 postgresql10-contrib-debuginfo-10.14-4.4.1 postgresql10-debuginfo-10.14-4.4.1 postgresql10-debugsource-10.14-4.4.1 postgresql10-plperl-10.14-4.4.1 postgresql10-plperl-debuginfo-10.14-4.4.1 postgresql10-plpython-10.14-4.4.1 postgresql10-plpython-debuginfo-10.14-4.4.1 postgresql10-pltcl-10.14-4.4.1 postgresql10-pltcl-debuginfo-10.14-4.4.1 postgresql10-server-10.14-4.4.1 postgresql10-server-debuginfo-10.14-4.4.1 postgresql94-9.4.26-24.3.1 postgresql94-contrib-9.4.26-24.3.1 postgresql94-contrib-debuginfo-9.4.26-24.3.1 postgresql94-debuginfo-9.4.26-24.3.1 postgresql94-debugsource-9.4.26-24.3.1 postgresql94-plperl-9.4.26-24.3.1 postgresql94-plperl-debuginfo-9.4.26-24.3.1 postgresql94-plpython-9.4.26-24.3.1 postgresql94-plpython-debuginfo-9.4.26-24.3.1 postgresql94-pltcl-9.4.26-24.3.1 postgresql94-pltcl-debuginfo-9.4.26-24.3.1 postgresql94-server-9.4.26-24.3.1 postgresql94-server-debuginfo-9.4.26-24.3.1 postgresql96-9.6.19-6.4.1 postgresql96-contrib-9.6.19-6.4.1 postgresql96-contrib-debuginfo-9.6.19-6.4.1 postgresql96-debuginfo-9.6.19-6.4.1 postgresql96-debugsource-9.6.19-6.4.1 postgresql96-plperl-9.6.19-6.4.1 postgresql96-plperl-debuginfo-9.6.19-6.4.1 postgresql96-plpython-9.6.19-6.4.1 postgresql96-plpython-debuginfo-9.6.19-6.4.1 postgresql96-pltcl-9.6.19-6.4.1 postgresql96-pltcl-debuginfo-9.6.19-6.4.1 postgresql96-server-9.6.19-6.4.1 postgresql96-server-debuginfo-9.6.19-6.4.1 - SUSE Linux Enterprise Server 12-SP2-BCL (noarch): postgresql-12.0.1-4.4.1 postgresql-contrib-12.0.1-4.4.1 postgresql-docs-12.0.1-4.4.1 postgresql-plperl-12.0.1-4.4.1 postgresql-plpython-12.0.1-4.4.1 postgresql-pltcl-12.0.1-4.4.1 postgresql-server-12.0.1-4.4.1 postgresql10-docs-10.14-4.4.1 postgresql94-docs-9.4.26-24.3.1 postgresql96-docs-9.6.19-6.4.1 - SUSE Enterprise Storage 5 (aarch64 x86_64): libecpg6-12.4-3.5.1 libecpg6-debuginfo-12.4-3.5.1 libpq5-12.4-3.5.1 libpq5-debuginfo-12.4-3.5.1 postgresql10-10.14-4.4.1 postgresql10-contrib-10.14-4.4.1 postgresql10-contrib-debuginfo-10.14-4.4.1 postgresql10-debuginfo-10.14-4.4.1 postgresql10-debugsource-10.14-4.4.1 postgresql10-plperl-10.14-4.4.1 postgresql10-plperl-debuginfo-10.14-4.4.1 postgresql10-plpython-10.14-4.4.1 postgresql10-plpython-debuginfo-10.14-4.4.1 postgresql10-pltcl-10.14-4.4.1 postgresql10-pltcl-debuginfo-10.14-4.4.1 postgresql10-server-10.14-4.4.1 postgresql10-server-debuginfo-10.14-4.4.1 postgresql96-9.6.19-6.4.1 postgresql96-contrib-9.6.19-6.4.1 postgresql96-contrib-debuginfo-9.6.19-6.4.1 postgresql96-debuginfo-9.6.19-6.4.1 postgresql96-debugsource-9.6.19-6.4.1 postgresql96-plperl-9.6.19-6.4.1 postgresql96-plperl-debuginfo-9.6.19-6.4.1 postgresql96-plpython-9.6.19-6.4.1 postgresql96-plpython-debuginfo-9.6.19-6.4.1 postgresql96-pltcl-9.6.19-6.4.1 postgresql96-pltcl-debuginfo-9.6.19-6.4.1 postgresql96-server-9.6.19-6.4.1 postgresql96-server-debuginfo-9.6.19-6.4.1 - SUSE Enterprise Storage 5 (x86_64): libpq5-32bit-12.4-3.5.1 libpq5-debuginfo-32bit-12.4-3.5.1 - SUSE Enterprise Storage 5 (noarch): postgresql-12.0.1-4.4.1 postgresql-contrib-12.0.1-4.4.1 postgresql-docs-12.0.1-4.4.1 postgresql-plperl-12.0.1-4.4.1 postgresql-plpython-12.0.1-4.4.1 postgresql-pltcl-12.0.1-4.4.1 postgresql-server-12.0.1-4.4.1 postgresql10-docs-10.14-4.4.1 postgresql96-docs-9.6.19-6.4.1 - HPE Helion Openstack 8 (x86_64): libecpg6-12.4-3.5.1 libecpg6-debuginfo-12.4-3.5.1 libpq5-12.4-3.5.1 libpq5-32bit-12.4-3.5.1 libpq5-debuginfo-12.4-3.5.1 libpq5-debuginfo-32bit-12.4-3.5.1 postgresql10-10.14-4.4.1 postgresql10-contrib-10.14-4.4.1 postgresql10-contrib-debuginfo-10.14-4.4.1 postgresql10-debuginfo-10.14-4.4.1 postgresql10-debugsource-10.14-4.4.1 postgresql10-plperl-10.14-4.4.1 postgresql10-plperl-debuginfo-10.14-4.4.1 postgresql10-plpython-10.14-4.4.1 postgresql10-plpython-debuginfo-10.14-4.4.1 postgresql10-pltcl-10.14-4.4.1 postgresql10-pltcl-debuginfo-10.14-4.4.1 postgresql10-server-10.14-4.4.1 postgresql10-server-debuginfo-10.14-4.4.1 postgresql96-9.6.19-6.4.1 postgresql96-contrib-9.6.19-6.4.1 postgresql96-contrib-debuginfo-9.6.19-6.4.1 postgresql96-debuginfo-9.6.19-6.4.1 postgresql96-debugsource-9.6.19-6.4.1 postgresql96-plperl-9.6.19-6.4.1 postgresql96-plperl-debuginfo-9.6.19-6.4.1 postgresql96-plpython-9.6.19-6.4.1 postgresql96-plpython-debuginfo-9.6.19-6.4.1 postgresql96-pltcl-9.6.19-6.4.1 postgresql96-pltcl-debuginfo-9.6.19-6.4.1 postgresql96-server-9.6.19-6.4.1 postgresql96-server-debuginfo-9.6.19-6.4.1 - HPE Helion Openstack 8 (noarch): postgresql-12.0.1-4.4.1 postgresql-contrib-12.0.1-4.4.1 postgresql-docs-12.0.1-4.4.1 postgresql-plperl-12.0.1-4.4.1 postgresql-plpython-12.0.1-4.4.1 postgresql-pltcl-12.0.1-4.4.1 postgresql-server-12.0.1-4.4.1 postgresql10-docs-10.14-4.4.1 postgresql96-docs-9.6.19-6.4.1 References: https://bugzilla.suse.com/1171924 . Navigate through this SUSE security patch for PostgreSQL that tackles vital updates on multiple server editions.. PostgreSQL Update,SUSE Security Advisory,Moderate Patches,Software Security Fixes. . LinuxSecurity.com Team

Nov 16, 2020 SuSE

security advisorysecurity updateimportant

SUSE: 2023:0523-1 Critical: MozillaFirefox Security Enhancement

An update that fixes 14 vulnerabilities is now available. An update that fixes 14 vulnerabilities is now available. An update that fixes 14 vulnerabilities is now available. It includes two new package versions. It includes two new package versions.. SUSE Security Update: Security update for MozillaFirefox ______________________________________________________________________________ Announcement ID: SUSE-SU-2014:0248-1 Rating: important References: #859055 #861847 Cross-References: CVE-2014-1477 CVE-2014-1479 CVE-2014-1480 CVE-2014-1481 CVE-2014-1482 CVE-2014-1483 CVE-2014-1484 CVE-2014-1485 CVE-2014-1486 CVE-2014-1487 CVE-2014-1488 CVE-2014-1489 CVE-2014-1490 CVE-2014-1491 Affected Products: SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Server 11 SP3 for VMware SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Desktop 11 SP3 ______________________________________________________________________________ An update that fixes 14 vulnerabilities is now available. It includes two new package versions. Description: This updates the Mozilla Firefox browser to the 24.3.0ESR security release. The Mozilla NSS libraries are now on version 3.15.4. The following security issues have been fixed: * MFSA 2014-01: Memory safety bugs fixed in Firefox ESR 24.3 and Firefox 27.0 (CVE-2014-1477)(bnc#862345) * MFSA 2014-02: Using XBL scopes its possible to steal(clone) native anonymous content (CVE-2014-1479)(bnc#862348) * MFSA 2014-03: Download "open file" dialog delay is too quick, doesn't prevent clickjacking (CVE-2014-1480) * MFSA 2014-04: Image decoding causing FireFox to crash with Goo Create (CVE-2014-1482)(bnc#862356) * MFSA 2014-05: caretPositionFromPoint and elementFromPoint leak information about iframe contentsvia timing information (CVE-2014-1483)(bnc#862360) * MFSA 2014-06: Fennec leaks profile path to logcat (CVE-2014-1484) * MFSA 2014-07: CSP should block XSLT as script, not as style (CVE-2014-1485) * MFSA 2014-08: imgRequestProxy Use-After-Free Remote Code Execution Vulnerability (CVE-2014-1486) * MFSA 2014-09: Cross-origin information disclosure with error message of Web Workers (CVE-2014-1487) * MFSA 2014-10: settings & history ID bug (CVE-2014-1489) * MFSA 2014-11: Firefox reproducibly crashes when using asm.js code in workers and transferable objects (CVE-2014-1488) * MFSA 2014-12: TOCTOU, potential use-after-free in libssl's session ticket processing (CVE-2014-1490)(bnc#862300) Do not allow p-1 as a public DH value (CVE-2014-1491)(bnc#862289) * MFSA 2014-13: Inconsistent this value when invoking getters on window (CVE-2014-1481)(bnc#862309) Security Issue references: * CVE-2014-1477 * CVE-2014-1479 * CVE-2014-1480 * CVE-2014-1481 * CVE-2014-1482 * CVE-2014-1483 * CVE-2014-1484 * CVE-2014-1485 * CVE-2014-1486 * CVE-2014-1487 * CVE-2014-1488 * CVE-2014-1489 * CVE-2014-1490 * CVE-2014-1491 Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 11 SP3: zypper in -t patch sdksp3-firefox-201402-8879 - SUSE Linux Enterprise Server 11 SP3 for VMware: zypper in -t patch slessp3-firefox-201402-8879 - SUSE Linux Enterprise Server 11 SP3: zypper in -t patch slessp3-firefox-201402-8879 - SUSE Linux Enterprise Desktop 11 SP3: zypper in -t patch sledsp3-firefox-201402-8879 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Software Development Kit 11 SP3 (i586 ia64 ppc64s390x x86_64) [New Version: 3.15.4]: MozillaFirefox-devel-24.3.0esr-0.8.1 mozilla-nss-devel-3.15.4-0.7.1 - SUSE Linux Enterprise Server 11 SP3 for VMware (i586 x86_64) [New Version: 24.3.0esr and 3.15.4]: MozillaFirefox-24.3.0esr-0.8.1 MozillaFirefox-translations-24.3.0esr-0.8.1 libfreebl3-3.15.4-0.7.1 libsoftokn3-3.15.4-0.7.1 mozilla-nss-3.15.4-0.7.1 mozilla-nss-tools-3.15.4-0.7.1 - SUSE Linux Enterprise Server 11 SP3 for VMware (x86_64) [New Version: 3.15.4]: libfreebl3-32bit-3.15.4-0.7.1 libsoftokn3-32bit-3.15.4-0.7.1 mozilla-nss-32bit-3.15.4-0.7.1 - SUSE Linux Enterprise Server 11 SP3 (i586 ia64 ppc64 s390x x86_64) [New Version: 24.3.0esr and 3.15.4]: MozillaFirefox-24.3.0esr-0.8.1 MozillaFirefox-branding-SLED-24-0.7.14 MozillaFirefox-translations-24.3.0esr-0.8.1 libfreebl3-3.15.4-0.7.1 libsoftokn3-3.15.4-0.7.1 mozilla-nss-3.15.4-0.7.1 mozilla-nss-tools-3.15.4-0.7.1 - SUSE Linux Enterprise Server 11 SP3 (ppc64 s390x x86_64) [New Version: 3.15.4]: libfreebl3-32bit-3.15.4-0.7.1 libsoftokn3-32bit-3.15.4-0.7.1 mozilla-nss-32bit-3.15.4-0.7.1 - SUSE Linux Enterprise Server 11 SP3 (ia64) [New Version: 3.15.4]: libfreebl3-x86-3.15.4-0.7.1 libsoftokn3-x86-3.15.4-0.7.1 mozilla-nss-x86-3.15.4-0.7.1 - SUSE Linux Enterprise Desktop 11 SP3 (i586 x86_64) [New Version: 24.3.0esr and 3.15.4]: MozillaFirefox-24.3.0esr-0.8.1 MozillaFirefox-branding-SLED-24-0.7.14 MozillaFirefox-translations-24.3.0esr-0.8.1 libfreebl3-3.15.4-0.7.1 libsoftokn3-3.15.4-0.7.1 mozilla-nss-3.15.4-0.7.1 mozilla-nss-tools-3.15.4-0.7.1 - SUSE Linux Enterprise Desktop 11 SP3 (x86_64) [New Version: 3.15.4]: libfreebl3-32bit-3.15.4-0.7.1 libsoftokn3-32bit-3.15.4-0.7.1 mozilla-nss-32bit-3.15.4-0.7.1 References: https://www.suse.com/security/cve/CVE-2014-1477.html https://www.suse.com/security/cve/CVE-2014-1479.html https://www.suse.com/security/cve/CVE-2014-1480.html https://www.suse.com/security/cve/CVE-2014-1481.html https://www.suse.com/security/cve/CVE-2014-1482.html https://www.suse.com/security/cve/CVE-2014-1483.html https://www.suse.com/security/cve/CVE-2014-1484.html https://www.suse.com/security/cve/CVE-2014-1485.html https://www.suse.com/security/cve/CVE-2014-1486.html https://www.suse.com/security/cve/CVE-2014-1487.html https://www.suse.com/security/cve/CVE-2014-1488.html https://www.suse.com/security/cve/CVE-2014-1489.html https://www.suse.com/security/cve/CVE-2014-1490.html https://www.suse.com/security/cve/CVE-2014-1491.html . SUSE patches address 14 vulnerabilities in MozillaFirefox, improving security. Refer to the announcement ID for further information.. SUSE Update Announcements, Mozilla Firefox Updates, Software Patching. . Severity: Important. LinuxSecurity.com Team

Feb 18, 2014 •Important SuSE

security advisorycritical issuesecurity update

SUSE: 2011:0925-1 Critical: Xen Crash Risk in Virtualization

An update that fixes one vulnerability is now available. An update that fixes one vulnerability is now available. An update that fixes one vulnerability is now available.. SUSE Security Update: Security update for Xen ______________________________________________________________________________ Announcement ID: SUSE-SU-2011:0925-1 Rating: important References: #704380 Cross-References: CVE-2011-1936 Affected Products: SUSE Linux Enterprise Server 10 SP4 SUSE Linux Enterprise Desktop 10 SP4 SLE SDK 10 SP4 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: A security bug was fixed in Xen * CVE-2011-1936 A bug was found in the way Xen handles CPUID instruction emulation during VM exits. An unprivileged guest user can potentially use this flaw to crash the guest. This issue only affected systems running on x86 architecture with Intel processor and VMX virtualization extension enabled. Security Issue references: * CVE-2011-1898 * CVE-2011-1936 Indications: Please install this update. Package List: - SUSE Linux Enterprise Server 10 SP4 (i586 x86_64): xen-3.2.3_17040_37-0.7.1 xen-devel-3.2.3_17040_37-0.7.1 xen-doc-html-3.2.3_17040_37-0.7.1 xen-doc-pdf-3.2.3_17040_37-0.7.1 xen-doc-ps-3.2.3_17040_37-0.7.1 xen-kmp-debug-3.2.3_17040_37_2.6.16.60_0.87.9-0.7.1 xen-kmp-default-3.2.3_17040_37_2.6.16.60_0.87.9-0.7.1 xen-kmp-kdump-3.2.3_17040_37_2.6.16.60_0.87.9-0.7.1 xen-kmp-smp-3.2.3_17040_37_2.6.16.60_0.87.9-0.7.1 xen-libs-3.2.3_17040_37-0.7.1 xen-tools-3.2.3_17040_37-0.7.1 xen-tools-domU-3.2.3_17040_37-0.7.1 xen-tools-ioemu-3.2.3_17040_37-0.7.1 - SUSE Linux Enterprise Server 10 SP4 (x86_64): xen-libs-32bit-3.2.3_17040_37-0.7.1 - SUSE Linux Enterprise Server 10 SP4 (i586): xen-kmp-bigsmp-3.2.3_17040_37_2.6.16.60_0.87.9-0.7.1 xen-kmp-kdumppae-3.2.3_17040_37_2.6.16.60_0.87.9-0.7.1 xen-kmp-vmi-3.2.3_17040_37_2.6.16.60_0.87.9-0.7.1 xen-kmp-vmipae-3.2.3_17040_37_2.6.16.60_0.87.9-0.7.1 - SUSE Linux Enterprise Desktop 10 SP4 (i586 x86_64): xen-3.2.3_17040_37-0.7.1 xen-devel-3.2.3_17040_37-0.7.1 xen-doc-html-3.2.3_17040_37-0.7.1 xen-doc-pdf-3.2.3_17040_37-0.7.1 xen-doc-ps-3.2.3_17040_37-0.7.1 xen-kmp-default-3.2.3_17040_37_2.6.16.60_0.87.9-0.7.1 xen-kmp-smp-3.2.3_17040_37_2.6.16.60_0.87.9-0.7.1 xen-libs-3.2.3_17040_37-0.7.1 xen-tools-3.2.3_17040_37-0.7.1 xen-tools-domU-3.2.3_17040_37-0.7.1 xen-tools-ioemu-3.2.3_17040_37-0.7.1 - SUSE Linux Enterprise Desktop 10 SP4 (x86_64): xen-libs-32bit-3.2.3_17040_37-0.7.1 - SUSE Linux Enterprise Desktop 10 SP4 (i586): xen-kmp-bigsmp-3.2.3_17040_37_2.6.16.60_0.87.9-0.7.1 - SLE SDK 10 SP4 (i586 x86_64): xen-3.2.3_17040_37-0.7.1 xen-devel-3.2.3_17040_37-0.7.1 xen-kmp-debug-3.2.3_17040_37_2.6.16.60_0.87.9-0.7.1 xen-kmp-kdump-3.2.3_17040_37_2.6.16.60_0.87.9-0.7.1 xen-libs-3.2.3_17040_37-0.7.1 xen-tools-3.2.3_17040_37-0.7.1 xen-tools-ioemu-3.2.3_17040_37-0.7.1 - SLE SDK 10 SP4 (x86_64): xen-libs-32bit-3.2.3_17040_37-0.7.1 References: https://www.suse.com/security/cve/CVE-2011-1936.html . SUSE Security Update for Kubernetes: urgent patch release, enhancements, and impacted software with risk assessments outlined.. Xen Security Fix, SUSE Security Update, Xen Vulnerability, SUSE Linux Advisory. . Severity: Important. LinuxSecurity.com Team

Aug 19, 2011 •Important SuSE

security advisorydenial of servicecritical

Debian 5.0: DSA-2000-1 Critical: ffmpeg Denial Of Service

Several vulnerabilities have been discovered in ffmpeg, a multimedia player, server and encoder, which also provides a range of multimedia libraries used in applications like MPlayer: . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2000-1 This email address is being protected from spambots. You need JavaScript enabled to view it. http://www.debian.org/security/ Moritz Muehlenhoff February 18, 2010 http://www.debian.org/security/faq - ------------------------------------------------------------------------ Package : ffmpeg-debian Vulnerability : several Problem type : local(remote) Debian-specific: no CVE Id(s) : CVE-2009-4631 CVE-2009-4632 CVE-2009-4633 CVE-2009-4634 CVE-2009-4635 CVE-2009-4636 CVE-2009-4637 CVE-2009-4638 CVE-2009-4640 Several vulnerabilities have been discovered in ffmpeg, a multimedia player, server and encoder, which also provides a range of multimedia libraries used in applications like MPlayer: Various programming errors in container and codec implementations may lead to denial of service or the execution of arbitrary code if the user is tricked into opening a malformed media file or stream. Affected and updated have been the implementations of the following codecs and container formats: - - the Vorbis audio codec - - the Ogg container implementation - - the FF Video 1 codec - - the MPEG audio codec - - the H264 video codec - - the MOV container implementation - - the Oggedc container implementation For the stable distribution (lenny), these problems have been fixed in version 0.svn20080206-18+lenny1. For the unstable distribution (sid), these problems have been fixed in version 4:0.5+svn20090706-5. We recommend that you upgrade your ffmpeg packages. Upgrade instructions - -------------------- wget url will fetch the file for you dpkg -i file.deb will install the referenced file. If you are using the apt-get package manager, use the line for sources.list asgiven below: apt-get update will update the internal database apt-get upgrade will install corrected packages You may use an automated update by adding the resources from the footer to the proper configuration. Debian GNU/Linux 5.0 alias lenny - -------------------------------- Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc. Source archives: Size/MD5 checksum: 47151 fed9d4a54eeabb8173d8d709a56cf095 Size/MD5 checksum: 2095 7b95f9547056a2e3476086def011b460 Architecture independent packages: Size/MD5 checksum: 12122858 8a18d72784468ee18742ad46efe87ea1 alpha architecture (DEC Alpha) Size/MD5 checksum: 76368 331d6316aaa9ddf160a219b1a334d04a Size/MD5 checksum: 60340 11e42949f12f2cec51e7fb2f083179b1 Size/MD5 checksum: 110932 1fe5fb7d4d26fd30b9b9ed5dfbd12300 Size/MD5 checksum: 59168 153af9684d71c484fecce4778a6a36ee Size/MD5 checksum: 60700 6e39c2745e05534987b6839b884af9b1 Size/MD5 checksum: 356280 64568359b94e3faf23927eaaf6654901 Size/MD5 checksum: 48808 dd58f41ecb4f8c549016b406e309df10 Size/MD5 checksum: 53758 3c215a4b4cd94762745cb13bb8112d40 Size/MD5 checksum: 2088016 e1c3c0cbcdd178e5a3dd88ad3e4ba537 Size/MD5 checksum: 233984 b7c5646a1973c51ea894ca9f098d3dab Size/MD5 checksum: 3699706 a88fa8d49c0672cfc9def436bf132613 Size/MD5 checksum: 546800 4fef24b017a4781c418552fc3994648a Size/MD5 checksum: 91658 87aede2da75c79231f7eba4759039437 Size/MD5 checksum: 2448334 10264d01add22851466437ac2bd89b17 amd64 architecture (AMD x86_64 (AMD64)) Size/MD5 checksum: 402922 de07340d2f8bd1bb05b13d969bd99578 Size/MD5 checksum: 51276 1003864ecbd0e7c81ea584ef969013d2 Size/MD5 checksum: 51968 fa6fa9eeac06f05e06503c569cb27b29 Size/MD5 checksum: 67936 fa1e07989b7d2e5b984113661013dcc1 Size/MD5 checksum: 221908 5317f61459580f6dd75dee7db768a8d0 Size/MD5 checksum: 51890 7dcaa104c42dee7884671e13da23034f Size/MD5 checksum: 4225922 cbd661e9f647e415e91c641fcdfb5a91 Size/MD5 checksum: 47554 b89719ce81f6e8c385dace9ffe63fd20 Size/MD5 checksum: 2004972 fcc6758caf4a129c128c5a01ea0066f3 Size/MD5 checksum: 1772818 7626334580d42beb743802ba218b93e5 Size/MD5 checksum: 322392 d9cb3617eb86b05c49d928f8323f5c58 Size/MD5 checksum: 93928 907bd476acf7e5a969c8ffd9ccefe48c Size/MD5 checksum: 48336 e521ea04d0249dac5b76df76c75f8865 Size/MD5 checksum: 104662 ebc163d2600fc48f819e665c81ebea36 arm architecture (ARM) Size/MD5 checksum: 84060 013df0b9fc7147f5633fed44e7d25f31 Size/MD5 checksum: 2021900 32a10e29d3599e9e95c543897169effd Size/MD5 checksum: 2207564 f8f4a2dcc62927aa0634bdd021ae1a02 Size/MD5 checksum: 86980 e05859a7b2ed6087cd052e38336cb747 Size/MD5 checksum: 54008 9d1a2fc62734b26d4c6856fdc1ffac1e Size/MD5 checksum: 324706 11573c8261909b08a2cceaaee9c8bd0a Size/MD5 checksum: 57818 c325bad09e77c1d3adbcf8e5a53eae39 Size/MD5 checksum: 48506 2e90c645b3ad3314bc505ac1f1c809ae Size/MD5 checksum: 3803948 fb3577883a6810399b756daf1144fdc3 Size/MD5 checksum: 392704 45a71947a4656d816ca7e55c5a97d33a Size/MD5 checksum: 69532 d831c71dea57c5206e2643de64676222 Size/MD5 checksum: 226252 4c49062c7d3b7446e00a76ebe9175511 Size/MD5 checksum: 53858 1adbcc553ca45450116dec5dc0405aab Size/MD5 checksum: 47226 64976308a5e47b92cdc5754d75dce2b1 armel architecture (ARM EABI) Size/MD5 checksum: 49414 97e22214693f558c075db239de8ea66c Size/MD5 checksum: 238770 df5169a9dcdcfa570e339817c5fdf53a Size/MD5 checksum: 47716 229abefcb8a4541c3dee93700eac1229 Size/MD5 checksum: 60554 60152bf17bf95f14d58c381aa69d67fc Size/MD5 checksum: 395182 da4572d879dac4ebd33a0f0c41259e29 Size/MD5 checksum: 326368 b521585d3e5cd5d83b5a3431462a4844 Size/MD5 checksum: 2189656 b5a7b7e57978b57dc3203c8ebcdc8037 Size/MD5 checksum: 1997374 3e462fa63e9f61c32e5ced8acfb9ba9b Size/MD5 checksum: 3813068 3a442457140ef78989077c1227d2099e Size/MD5 checksum: 54720 7d31caa2d372f005a693112cc6d75ef5 Size/MD5 checksum: 85626 a65ba78089d8477d120b16b9b7ac192c Size/MD5 checksum: 70556 b2cf2aec4bc3bb21de6f3e0c72be7e1b Size/MD5 checksum: 56220 27fad60d0e17596bf905c74e2ff2ea28 Size/MD5 checksum: 87294 6ec48489beab7c60ec476d4a41675305 hppa architecture (HP PA RISC) Size/MD5 checksum: 72982 eb1bc13433da683d398243f8ae7f180a Size/MD5 checksum: 383266 782d5f095e7b1b72e160854eb109b2da Size/MD5 checksum: 2005678 5292e7881f33ba23e43da8bcb8fecc4f Size/MD5 checksum: 83902 b411ecc7233b32ee1a15a7f594fc6215 Size/MD5 checksum: 93734 a43b92ecf089e9783e4f66b2ffdca5b7 Size/MD5 checksum: 57334 b93cace09e3b1fe133e867c2b27c46d3 Size/MD5 checksum: 52052 6919f7fd8c3372c70014a0df87946d56 Size/MD5 checksum: 2234580 1401d51da785f57a20848a7647ad296a Size/MD5 checksum: 50560 cbd05ef875f83c5eb9f918899b163ad9 Size/MD5 checksum: 459408 716ce5b5d91444c7237aea18aa9296d2 Size/MD5 checksum: 57462 6d2c65f22446e5c240157770e6adece0 Size/MD5 checksum: 239318 3da02a7926fa3f690588ef448508497a Size/MD5 checksum: 3663744 3a4c4d6bfe140709ce8fd02fee6cf6d4 Size/MD5 checksum: 59726 88531257d5a24bac980b4d96838415b9 i386 architecture (Intel ia32) Size/MD5 checksum: 100074 f95b9ceacb4dd14aa9865409d8c03e9a Size/MD5 checksum: 156752 8bc350384d38ed09c25f39c0daedc75e Size/MD5 checksum: 622460 b877204e13e9b7c3f240c3a4b2c70844 Size/MD5 checksum: 8005358 2652587c27a45743970bab3743f23744 Size/MD5 checksum: 386814 9c4523bcb796c422584a42864dc90c33 Size/MD5 checksum: 52006 424d4806a45d400a8e7d40c3b8f3b64d Size/MD5 checksum: 47778 aeecfd8c294b5b6e207ef7a609bbfe2b Size/MD5 checksum: 70126 e8187800b373c1b1d4ce4f47a3402853 Size/MD5 checksum: 61722fa20a299535571d18aaada01e5402c60 Size/MD5 checksum: 76604 615031a4bca439a837b61aea0c089f82 Size/MD5 checksum: 66836 5273afdce199740c2e9752cfd249afcf Size/MD5 checksum: 3504116 d7a3767017c9e1f5dd8d4c6d002e92ec Size/MD5 checksum: 236946 8b318ea541e81dd3713220fa1b322393 Size/MD5 checksum: 1961030 5b4353189b73e22474fab88085c15129 ia64 architecture (Intel ia64) Size/MD5 checksum: 610698 639ff8da3ae97d4367154be9dacfe32d Size/MD5 checksum: 277818 8e7989daea4da526a9c8b3aeb4801b82 Size/MD5 checksum: 100226 7a511a7838da98a7fdd43cf942e1e3da Size/MD5 checksum: 65314 cae624d04e2fdc453d799b2f86ee6588 Size/MD5 checksum: 56688 fad14bfa6813fb2d010345790a490a7f Size/MD5 checksum: 55410 9700b8869b60cbd9196ee0c9cf4a1f1c Size/MD5 checksum: 81940 e59e53d0fb2c3e43f463c5a21dfe538e Size/MD5 checksum: 2917752 fd4611a54c65103074b331969aaf990b Size/MD5 checksum: 68646 5d994a254e6581dbd7b08011a2172175 Size/MD5 checksum: 3896030 f7cbfae565a5a76a4eeeccb4d40af5c3 Size/MD5 checksum: 109064 d9ab84031907dbbf4fd3b453b2e2e47f Size/MD5 checksum: 482326 1a51675c7d1acde639fed408079530f1 Size/MD5 checksum: 3238334 8eb665c06cc4da14eb8fea398011c990 Size/MD5 checksum: 68160 19779e43c0565edd3172ef70a0fa25e1 mips architecture (MIPS (Big Endian)) Size/MD5 checksum: 1763402 385328322a43f4fd6d3d27e3af42f30d Size/MD5 checksum: 2062230 1c7786786c66dfe8fc06417edf361f04 Size/MD5 checksum: 56084 77d8887ba7a26aa3d480ddde06ddb372 Size/MD5 checksum: 50382 e1f0af77e6937159610d63dd44055cb4 Size/MD5 checksum: 458434 7020beda7d793dfd36e97df2e95f3180 Size/MD5 checksum: 87402 29b6db5cc5d13187360340859057d5ab Size/MD5 checksum: 61002 a47e4693813b2f18279a7631241bb829 Size/MD5 checksum: 227580 d1524b60aa1e55794f6acb289d31bf9c Size/MD5 checksum: 347184 977716193af4d0233d4247f67beec722 Size/MD5 checksum: 742008e0506221f567cf3c778f448af71fcd9 Size/MD5 checksum: 48942 90e4809cc5927b496d3b914b341bc5bc Size/MD5 checksum: 78802 91204cce32e95fa46622e368c5fde603 Size/MD5 checksum: 56866 c2aa63902918b0e475633b706228c69d Size/MD5 checksum: 3859566 4407f4f19472149bbd5905b8292f3666 mipsel architecture (MIPS (Little Endian)) Size/MD5 checksum: 1774576 f266f580f233021062a6fc69d25c968d Size/MD5 checksum: 227864 714c76bd29728e6d7e694d116568ef88 Size/MD5 checksum: 78330 7d57dd60eb157c9b323e48bd55e4c246 Size/MD5 checksum: 73914 b8411fb9324faef6faad47a31bf076e7 Size/MD5 checksum: 59742 449b684b4c628c3387491acc540b14e9 Size/MD5 checksum: 3724358 551f6c2539f9ba74419ef53c44a2ba0e Size/MD5 checksum: 56758 5c4b30ce8f1e28de617bd261bc1f3fae Size/MD5 checksum: 86862 50a476f0d0497a31c8ac18ee369bcd2b Size/MD5 checksum: 56040 d4bef8f95a86c2899a0ce46e5fbbf4b3 Size/MD5 checksum: 345112 fc1ca3920495927ace1d784a50ad40d3 Size/MD5 checksum: 49118 4f3b6e04a1b5f4da03da10ca5d8d1dba Size/MD5 checksum: 50392 367d6415d073e640972ad885992e3182 Size/MD5 checksum: 457538 edf7e0da65e3b465b3a06d873a810c56 Size/MD5 checksum: 2066024 442a06e330c25c43b2edd9b82e4209ab powerpc architecture (PowerPC) Size/MD5 checksum: 60632 ea5cf72fe05413b85abb93dee6ce3899 Size/MD5 checksum: 2104684 8bae78b164abfcf4af1f78b86da54c82 Size/MD5 checksum: 87698 c515b179b306f16124b38e8c7d4a46aa Size/MD5 checksum: 87928 3edca2caf1630663be60c2cdb5fce98e Size/MD5 checksum: 278148 f29927e10f422d8aa0b45c95717aa3b4 Size/MD5 checksum: 440996 19e426ab5d518efad61eca9073d2685e Size/MD5 checksum: 71600 4cef447365ef0a8fdd16fd2130298267 Size/MD5 checksum: 7523478 236e7a14ea1b4a52d6d014f6c0c26e2c Size/MD5 checksum: 3583968 600b8e6c83347d1d00d64b47ffd1a2f3 Size/MD5 checksum: 141056 e713eda5967c66a5cb20b615d5d7a7cd Size/MD5 checksum: 71156ce9bb43172156da0862ee8d5f1aa4c84 Size/MD5 checksum: 687586 5bb654308ebbc898ac17d429f4aeb9d4 Size/MD5 checksum: 101900 4199e816e43ce4b16ee96ef709c42fc2 Size/MD5 checksum: 49268 51224013e6116349848745dd43151328 s390 architecture (IBM S/390) Size/MD5 checksum: 49062 e2e7ef11e9a0284a14e581b5f7e688d1 Size/MD5 checksum: 70886 da9d3a31aee303200eecd2f6cdd85390 Size/MD5 checksum: 232622 4b531762a58ed43fce473fec4d3b7372 Size/MD5 checksum: 86766 0588ff05322c118f0422e0059a2ea225 Size/MD5 checksum: 60548 351e65828fcc7cfe71f92f66d2fca303 Size/MD5 checksum: 1855428 4528349ece3a0734c2c1962ccf7bf322 Size/MD5 checksum: 1987930 ce3e0bbd4cb9bd6b8e9447f54efe4585 Size/MD5 checksum: 55750 ec345a7cf7133591c12343404ed93722 Size/MD5 checksum: 3882524 1b1442dc76b3ad1192a2f19f01b6fded Size/MD5 checksum: 56372 72ba66501769bfe85609a6d40cae8d25 Size/MD5 checksum: 48142 cf1be10156a44c5bd160878be35fd47e Size/MD5 checksum: 85140 13cc16f5c5d03b0622070ac323236ea1 Size/MD5 checksum: 362638 b0fab024a88b70ae155f4a9db09ac2dc Size/MD5 checksum: 412112 5bc0602f1439215a0faa331b491bab52 sparc architecture (Sun SPARC/UltraSPARC) Size/MD5 checksum: 2137158 17398e4005bd2364e83c472eea21a680 Size/MD5 checksum: 77392 4d83e8cf704628f7bdc254d219c080ca Size/MD5 checksum: 81886 95bc96ca87c0d09d9a1c94ddc8314179 Size/MD5 checksum: 6859566 55aad2473e6bd6a958a5ec66655a5ac4 Size/MD5 checksum: 86846 094212ebd6092062374fb53d0f10adea Size/MD5 checksum: 71876 0894b30af3548c13ce739172efb7e606 Size/MD5 checksum: 56306 da0f7077fced3a779ce19434f95b8dec Size/MD5 checksum: 631966 2f1dd49c0d6a7ea8bff3ef9cae6459d4 Size/MD5 checksum: 122772 f6a7c6d93c1d50f21d214b6d1fedace5 Size/MD5 checksum: 404392 a7ee9b1fe465c27b02819eabe04160e4 Size/MD5 checksum: 47776 d4b8bd18537e4fbf64b26fbeec262999 Size/MD5 checksum: 2471564ae4690c9407ad61be8b97d822251bea Size/MD5 checksum: 59492 65344c8d6f63228d9fee476300950532 Size/MD5 checksum: 3697804 384eded1df67ddb26997f29af8a8a3bd These files will probably be moved into the stable distribution on its next update. - --------------------------------------------------------------------------------- For apt-get: deb https://www.debian.org/security/ stable/updates main For dpkg-ftp: dists/stable/updates/main Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it. Package info: `apt-cache show ' and https://www.debian.org/distrib/packages . Multiple security flaws identified in ffmpeg components have been addressed. Check the advisory for detailed patching guidelines.. ffmpeg vulnerabilities, Debian security update, software patching, multimedia security. . Severity: Critical. LinuxSecurity.com Team

Feb 18, 2010 •Critical Debian

Community Poll

More Polls

Stay Secure with the Latest Linux Advisories

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

openSUSE Leap 15.3 Security Update: 2021:4154-1 Important p11-kit Fix

SUSE: 2021:3748-1 Important Kernel Security Fixes and Updates

Fedora 34: 2022:1002-2 Critical: libarchive Buffer Overflow

SUSE: 2020:3343-1 Moderate: PostgreSQL Server Patch Announcement

SUSE: 2023:0523-1 Critical: MozillaFirefox Security Enhancement

SUSE: 2011:0925-1 Critical: Xen Crash Risk in Virtualization

Debian 5.0: DSA-2000-1 Critical: ffmpeg Denial Of Service

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!