Alerts This Week
Warning Icon 1 637
Alerts This Week
Warning Icon 1 637

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found 43 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisoryupdatebuffer overflow

SUSE: 2022:4068-1 Important: Fix for PHP74 Buffer Overflow Issue

An update that fixes 18 vulnerabilities, contains one feature is now available. . SUSE Security Update: Security update for php74 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4068-1 Rating: important References: #1203867 #1203870 #1204577 #1204979 SLE-23639 Cross-References: CVE-2017-8923 CVE-2020-7068 CVE-2020-7069 CVE-2020-7070 CVE-2020-7071 CVE-2021-21702 CVE-2021-21703 CVE-2021-21704 CVE-2021-21705 CVE-2021-21706 CVE-2021-21707 CVE-2021-21708 CVE-2022-31625 CVE-2022-31626 CVE-2022-31628 CVE-2022-31629 CVE-2022-31630 CVE-2022-37454 CVSS scores: CVE-2017-8923 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2017-8923 (SUSE): 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2020-7068 (NVD) : 3.6 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:L CVE-2020-7068 (SUSE): 4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2020-7069 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N CVE-2020-7069 (SUSE): 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N CVE-2020-7070 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2020-7070 (SUSE): 6.8 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N CVE-2020-7071 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2020-7071 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2021-21702 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-21702 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-21703 (NVD) : 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2021-21703 (SUSE): 6.4CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H CVE-2021-21704 (NVD) : 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-21704 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-21705 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2021-21705 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2021-21706 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N CVE-2021-21707 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2021-21707 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2021-21708 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2021-21708 (SUSE): 7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H CVE-2022-31625 (NVD) : 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-31625 (SUSE): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2022-31626 (NVD) : 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-31626 (SUSE): 7.5 CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-31628 (NVD) : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2022-31628 (SUSE): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H CVE-2022-31629 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N CVE-2022-31630 (NVD) : 7.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H CVE-2022-31630 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2022-37454 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-37454 (SUSE): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: SUSE Linux Enterprise High Performance Computing 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Server 12-SP4 SUSE Linux Enterprise Server 12-SP5 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12-SP3 SUSE Linux Enterprise Server for SAP Applications 12-SP4 SUSE Linux Enterprise Server for SAP Applications 12-SP5 SUSE Linux Enterprise Software Development Kit 12-SP5 ______________________________________________________________________________ An update that fixes 18 vulnerabilities, contains one feature is now available. Description: This update for php74 fixes the following issues: - Version update to 7.4.33: - CVE-2022-31630: Fixed out-of-bounds read due to insufficient input validation in imageloadfont() (bsc#1204979). - CVE-2022-37454: Fixed buffer overflow in hash_update() on long parameter (bsc#1204577). - Version update to 7.4.32 (jsc#SLE-23639) - CVE-2022-31628: Fixed an uncontrolled recursion in the phar uncompressor while decompressing "quines" gzip files. (bsc#1203867) - CVE-2022-31629: Fixed a bug which could lead an attacker to set an insecure cookie that will treated as secure in the victim's browser. (bsc#1203870) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP5: zypper in -t patch SUSE-SLE-SDK-12-SP5-2022-4068=1 - SUSE Linux Enterprise Module for Web Scripting 12: zypper in -t patch SUSE-SLE-Module-Web-Scripting-12-2022-4068=1 Package List: - SUSE Linux Enterprise Software Development Kit 12-SP5 (aarch64 ppc64le s390x x86_64): php74-debuginfo-7.4.33-1.47.2 php74-debugsource-7.4.33-1.47.2 php74-devel-7.4.33-1.47.2 - SUSE Linux Enterprise Module for Web Scripting 12 (aarch64 ppc64le s390x x86_64): apache2-mod_php74-7.4.33-1.47.2 apache2-mod_php74-debuginfo-7.4.33-1.47.2 php74-7.4.33-1.47.2 php74-bcmath-7.4.33-1.47.2 php74-bcmath-debuginfo-7.4.33-1.47.2 php74-bz2-7.4.33-1.47.2 php74-bz2-debuginfo-7.4.33-1.47.2 php74-calendar-7.4.33-1.47.2 php74-calendar-debuginfo-7.4.33-1.47.2 php74-ctype-7.4.33-1.47.2 php74-ctype-debuginfo-7.4.33-1.47.2 php74-curl-7.4.33-1.47.2 php74-curl-debuginfo-7.4.33-1.47.2 php74-dba-7.4.33-1.47.2 php74-dba-debuginfo-7.4.33-1.47.2 php74-debuginfo-7.4.33-1.47.2 php74-debugsource-7.4.33-1.47.2 php74-dom-7.4.33-1.47.2 php74-dom-debuginfo-7.4.33-1.47.2 php74-enchant-7.4.33-1.47.2 php74-enchant-debuginfo-7.4.33-1.47.2 php74-exif-7.4.33-1.47.2 php74-exif-debuginfo-7.4.33-1.47.2 php74-fastcgi-7.4.33-1.47.2 php74-fastcgi-debuginfo-7.4.33-1.47.2 php74-fileinfo-7.4.33-1.47.2 php74-fileinfo-debuginfo-7.4.33-1.47.2 php74-fpm-7.4.33-1.47.2 php74-fpm-debuginfo-7.4.33-1.47.2 php74-ftp-7.4.33-1.47.2 php74-ftp-debuginfo-7.4.33-1.47.2 php74-gd-7.4.33-1.47.2 php74-gd-debuginfo-7.4.33-1.47.2 php74-gettext-7.4.33-1.47.2 php74-gettext-debuginfo-7.4.33-1.47.2 php74-gmp-7.4.33-1.47.2 php74-gmp-debuginfo-7.4.33-1.47.2 php74-iconv-7.4.33-1.47.2 php74-iconv-debuginfo-7.4.33-1.47.2 php74-intl-7.4.33-1.47.2 php74-intl-debuginfo-7.4.33-1.47.2 php74-json-7.4.33-1.47.2 php74-json-debuginfo-7.4.33-1.47.2 php74-ldap-7.4.33-1.47.2 php74-ldap-debuginfo-7.4.33-1.47.2 php74-mbstring-7.4.33-1.47.2 php74-mbstring-debuginfo-7.4.33-1.47.2 php74-mysql-7.4.33-1.47.2 php74-mysql-debuginfo-7.4.33-1.47.2 php74-odbc-7.4.33-1.47.2 php74-odbc-debuginfo-7.4.33-1.47.2 php74-opcache-7.4.33-1.47.2 php74-opcache-debuginfo-7.4.33-1.47.2 php74-openssl-7.4.33-1.47.2 php74-openssl-debuginfo-7.4.33-1.47.2 php74-pcntl-7.4.33-1.47.2 php74-pcntl-debuginfo-7.4.33-1.47.2 php74-pdo-7.4.33-1.47.2 php74-pdo-debuginfo-7.4.33-1.47.2 php74-pgsql-7.4.33-1.47.2 php74-pgsql-debuginfo-7.4.33-1.47.2 php74-phar-7.4.33-1.47.2 php74-phar-debuginfo-7.4.33-1.47.2 php74-posix-7.4.33-1.47.2 php74-posix-debuginfo-7.4.33-1.47.2 php74-readline-7.4.33-1.47.2 php74-readline-debuginfo-7.4.33-1.47.2 php74-shmop-7.4.33-1.47.2 php74-shmop-debuginfo-7.4.33-1.47.2 php74-snmp-7.4.33-1.47.2 php74-snmp-debuginfo-7.4.33-1.47.2 php74-soap-7.4.33-1.47.2 php74-soap-debuginfo-7.4.33-1.47.2 php74-sockets-7.4.33-1.47.2 php74-sockets-debuginfo-7.4.33-1.47.2 php74-sodium-7.4.33-1.47.2 php74-sodium-debuginfo-7.4.33-1.47.2 php74-sqlite-7.4.33-1.47.2 php74-sqlite-debuginfo-7.4.33-1.47.2 php74-sysvmsg-7.4.33-1.47.2 php74-sysvmsg-debuginfo-7.4.33-1.47.2 php74-sysvsem-7.4.33-1.47.2 php74-sysvsem-debuginfo-7.4.33-1.47.2 php74-sysvshm-7.4.33-1.47.2 php74-sysvshm-debuginfo-7.4.33-1.47.2 php74-tidy-7.4.33-1.47.2 php74-tidy-debuginfo-7.4.33-1.47.2 php74-tokenizer-7.4.33-1.47.2 php74-tokenizer-debuginfo-7.4.33-1.47.2 php74-xmlreader-7.4.33-1.47.2 php74-xmlreader-debuginfo-7.4.33-1.47.2 php74-xmlrpc-7.4.33-1.47.2 php74-xmlrpc-debuginfo-7.4.33-1.47.2 php74-xmlwriter-7.4.33-1.47.2 php74-xmlwriter-debuginfo-7.4.33-1.47.2 php74-xsl-7.4.33-1.47.2 php74-xsl-debuginfo-7.4.33-1.47.2 php74-zip-7.4.33-1.47.2 php74-zip-debuginfo-7.4.33-1.47.2 php74-zlib-7.4.33-1.47.2 php74-zlib-debuginfo-7.4.33-1.47.2 References: https://www.suse.com/security/cve/CVE-2017-8923.html https://www.suse.com/security/cve/CVE-2020-7068.html https://www.suse.com/security/cve/CVE-2020-7069.html https://www.suse.com/security/cve/CVE-2020-7070.html https://www.suse.com/security/cve/CVE-2020-7071.html https://www.suse.com/security/cve/CVE-2021-21702.html https://www.suse.com/security/cve/CVE-2021-21703.html https://www.suse.com/security/cve/CVE-2021-21704.html https://www.suse.com/security/cve/CVE-2021-21705.html https://www.suse.com/security/cve/CVE-2021-21706.html https://www.suse.com/security/cve/CVE-2021-21707.html https://www.suse.com/security/cve/CVE-2021-21708.html https://www.suse.com/security/cve/CVE-2022-31625.html https://www.suse.com/security/cve/CVE-2022-31626.html https://www.suse.com/security/cve/CVE-2022-31628.html https://www.suse.com/security/cve/CVE-2022-31629.html https://www.suse.com/security/cve/CVE-2022-31630.html https://www.suse.com/security/cve/CVE-2022-37454.html https://bugzilla.suse.com/1203867 https://bugzilla.suse.com/1203870 https://bugzilla.suse.com/1204577 https://bugzilla.suse.com/1204979 . SUSE Security Update for php80 tackles severe vulnerabilities within the software, providing essential updates alongside a significant feature upgrade.. php74 Update,SUSE Security Patch,SUSE Linux Feature Fix. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Nov 18, 2022 Important SuSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorycritical issuebuffer overflow

SUSE: 2022:4005-1 Urgent: php8 Buffer Overflow Resolution Available

An update that fixes two vulnerabilities is now available. . SUSE Security Update: Security update for php8 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:4005-1 Rating: important References: #1204577 #1204979 Cross-References: CVE-2022-31630 CVE-2022-37454 CVSS scores: CVE-2022-31630 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2022-37454 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-37454 (SUSE): 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Web Scripting 15-SP4 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for php8 fixes the following issues: - CVE-2022-37454: Fixed buffer overflow in hash_update() on long parameter (bug#81738) (bsc#1204577). - CVE-2022-31630: Fixed OOB read due to insufficient input validation in imageloadfont() (bug#81739) (bsc#1204979). - version update to 8.0.25 (27 Oct 2022) * Session: Fixed bug GH-9583 (session_create_id() fails with user defined save handler that doesn't have a validateId() method). * Streams: Fixed bug GH-9590 (stream_select does not abort upon exception or empty valid fd set). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-4005=1 - SUSE Linux Enterprise Module for Web Scripting 15-SP4: zypper in -t patch SUSE-SLE-Module-Web-Scripting-15-SP4-2022-4005=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): apache2-mod_php8-8.0.25-150400.4.17.1 apache2-mod_php8-debuginfo-8.0.25-150400.4.17.1 apache2-mod_php8-debugsource-8.0.25-150400.4.17.1 php8-8.0.25-150400.4.17.1 php8-bcmath-8.0.25-150400.4.17.1 php8-bcmath-debuginfo-8.0.25-150400.4.17.1 php8-bz2-8.0.25-150400.4.17.1 php8-bz2-debuginfo-8.0.25-150400.4.17.1 php8-calendar-8.0.25-150400.4.17.1 php8-calendar-debuginfo-8.0.25-150400.4.17.1 php8-cli-8.0.25-150400.4.17.1 php8-cli-debuginfo-8.0.25-150400.4.17.1 php8-ctype-8.0.25-150400.4.17.1 php8-ctype-debuginfo-8.0.25-150400.4.17.1 php8-curl-8.0.25-150400.4.17.1 php8-curl-debuginfo-8.0.25-150400.4.17.1 php8-dba-8.0.25-150400.4.17.1 php8-dba-debuginfo-8.0.25-150400.4.17.1 php8-debuginfo-8.0.25-150400.4.17.1 php8-debugsource-8.0.25-150400.4.17.1 php8-devel-8.0.25-150400.4.17.1 php8-dom-8.0.25-150400.4.17.1 php8-dom-debuginfo-8.0.25-150400.4.17.1 php8-embed-8.0.25-150400.4.17.1 php8-embed-debuginfo-8.0.25-150400.4.17.1 php8-embed-debugsource-8.0.25-150400.4.17.1 php8-enchant-8.0.25-150400.4.17.1 php8-enchant-debuginfo-8.0.25-150400.4.17.1 php8-exif-8.0.25-150400.4.17.1 php8-exif-debuginfo-8.0.25-150400.4.17.1 php8-fastcgi-8.0.25-150400.4.17.1 php8-fastcgi-debuginfo-8.0.25-150400.4.17.1 php8-fastcgi-debugsource-8.0.25-150400.4.17.1 php8-fileinfo-8.0.25-150400.4.17.1 php8-fileinfo-debuginfo-8.0.25-150400.4.17.1 php8-fpm-8.0.25-150400.4.17.1 php8-fpm-debuginfo-8.0.25-150400.4.17.1 php8-fpm-debugsource-8.0.25-150400.4.17.1 php8-ftp-8.0.25-150400.4.17.1 php8-ftp-debuginfo-8.0.25-150400.4.17.1 php8-gd-8.0.25-150400.4.17.1 php8-gd-debuginfo-8.0.25-150400.4.17.1 php8-gettext-8.0.25-150400.4.17.1 php8-gettext-debuginfo-8.0.25-150400.4.17.1 php8-gmp-8.0.25-150400.4.17.1 php8-gmp-debuginfo-8.0.25-150400.4.17.1 php8-iconv-8.0.25-150400.4.17.1 php8-iconv-debuginfo-8.0.25-150400.4.17.1 php8-intl-8.0.25-150400.4.17.1 php8-intl-debuginfo-8.0.25-150400.4.17.1 php8-ldap-8.0.25-150400.4.17.1 php8-ldap-debuginfo-8.0.25-150400.4.17.1 php8-mbstring-8.0.25-150400.4.17.1 php8-mbstring-debuginfo-8.0.25-150400.4.17.1 php8-mysql-8.0.25-150400.4.17.1 php8-mysql-debuginfo-8.0.25-150400.4.17.1 php8-odbc-8.0.25-150400.4.17.1 php8-odbc-debuginfo-8.0.25-150400.4.17.1 php8-opcache-8.0.25-150400.4.17.1 php8-opcache-debuginfo-8.0.25-150400.4.17.1 php8-openssl-8.0.25-150400.4.17.1 php8-openssl-debuginfo-8.0.25-150400.4.17.1 php8-pcntl-8.0.25-150400.4.17.1 php8-pcntl-debuginfo-8.0.25-150400.4.17.1 php8-pdo-8.0.25-150400.4.17.1 php8-pdo-debuginfo-8.0.25-150400.4.17.1 php8-pgsql-8.0.25-150400.4.17.1 php8-pgsql-debuginfo-8.0.25-150400.4.17.1 php8-phar-8.0.25-150400.4.17.1 php8-phar-debuginfo-8.0.25-150400.4.17.1 php8-posix-8.0.25-150400.4.17.1 php8-posix-debuginfo-8.0.25-150400.4.17.1 php8-readline-8.0.25-150400.4.17.1 php8-readline-debuginfo-8.0.25-150400.4.17.1 php8-shmop-8.0.25-150400.4.17.1 php8-shmop-debuginfo-8.0.25-150400.4.17.1 php8-snmp-8.0.25-150400.4.17.1 php8-snmp-debuginfo-8.0.25-150400.4.17.1 php8-soap-8.0.25-150400.4.17.1 php8-soap-debuginfo-8.0.25-150400.4.17.1 php8-sockets-8.0.25-150400.4.17.1 php8-sockets-debuginfo-8.0.25-150400.4.17.1 php8-sodium-8.0.25-150400.4.17.1 php8-sodium-debuginfo-8.0.25-150400.4.17.1 php8-sqlite-8.0.25-150400.4.17.1 php8-sqlite-debuginfo-8.0.25-150400.4.17.1 php8-sysvmsg-8.0.25-150400.4.17.1 php8-sysvmsg-debuginfo-8.0.25-150400.4.17.1 php8-sysvsem-8.0.25-150400.4.17.1 php8-sysvsem-debuginfo-8.0.25-150400.4.17.1 php8-sysvshm-8.0.25-150400.4.17.1 php8-sysvshm-debuginfo-8.0.25-150400.4.17.1 php8-test-8.0.25-150400.4.17.1 php8-tidy-8.0.25-150400.4.17.1 php8-tidy-debuginfo-8.0.25-150400.4.17.1 php8-tokenizer-8.0.25-150400.4.17.1 php8-tokenizer-debuginfo-8.0.25-150400.4.17.1 php8-xmlreader-8.0.25-150400.4.17.1 php8-xmlreader-debuginfo-8.0.25-150400.4.17.1 php8-xmlwriter-8.0.25-150400.4.17.1 php8-xmlwriter-debuginfo-8.0.25-150400.4.17.1 php8-xsl-8.0.25-150400.4.17.1 php8-xsl-debuginfo-8.0.25-150400.4.17.1 php8-zip-8.0.25-150400.4.17.1 php8-zip-debuginfo-8.0.25-150400.4.17.1 php8-zlib-8.0.25-150400.4.17.1 php8-zlib-debuginfo-8.0.25-150400.4.17.1 - SUSE Linux Enterprise Module for Web Scripting 15-SP4 (aarch64 ppc64le s390x x86_64): apache2-mod_php8-8.0.25-150400.4.17.1 apache2-mod_php8-debuginfo-8.0.25-150400.4.17.1 apache2-mod_php8-debugsource-8.0.25-150400.4.17.1 php8-8.0.25-150400.4.17.1 php8-bcmath-8.0.25-150400.4.17.1 php8-bcmath-debuginfo-8.0.25-150400.4.17.1 php8-bz2-8.0.25-150400.4.17.1 php8-bz2-debuginfo-8.0.25-150400.4.17.1 php8-calendar-8.0.25-150400.4.17.1 php8-calendar-debuginfo-8.0.25-150400.4.17.1 php8-cli-8.0.25-150400.4.17.1 php8-cli-debuginfo-8.0.25-150400.4.17.1 php8-ctype-8.0.25-150400.4.17.1 php8-ctype-debuginfo-8.0.25-150400.4.17.1 php8-curl-8.0.25-150400.4.17.1 php8-curl-debuginfo-8.0.25-150400.4.17.1 php8-dba-8.0.25-150400.4.17.1 php8-dba-debuginfo-8.0.25-150400.4.17.1 php8-debuginfo-8.0.25-150400.4.17.1 php8-debugsource-8.0.25-150400.4.17.1 php8-devel-8.0.25-150400.4.17.1 php8-dom-8.0.25-150400.4.17.1 php8-dom-debuginfo-8.0.25-150400.4.17.1 php8-embed-8.0.25-150400.4.17.1 php8-embed-debuginfo-8.0.25-150400.4.17.1 php8-embed-debugsource-8.0.25-150400.4.17.1 php8-enchant-8.0.25-150400.4.17.1 php8-enchant-debuginfo-8.0.25-150400.4.17.1 php8-exif-8.0.25-150400.4.17.1 php8-exif-debuginfo-8.0.25-150400.4.17.1 php8-fastcgi-8.0.25-150400.4.17.1 php8-fastcgi-debuginfo-8.0.25-150400.4.17.1 php8-fastcgi-debugsource-8.0.25-150400.4.17.1 php8-fileinfo-8.0.25-150400.4.17.1 php8-fileinfo-debuginfo-8.0.25-150400.4.17.1 php8-fpm-8.0.25-150400.4.17.1 php8-fpm-debuginfo-8.0.25-150400.4.17.1 php8-fpm-debugsource-8.0.25-150400.4.17.1 php8-ftp-8.0.25-150400.4.17.1 php8-ftp-debuginfo-8.0.25-150400.4.17.1 php8-gd-8.0.25-150400.4.17.1 php8-gd-debuginfo-8.0.25-150400.4.17.1 php8-gettext-8.0.25-150400.4.17.1 php8-gettext-debuginfo-8.0.25-150400.4.17.1 php8-gmp-8.0.25-150400.4.17.1 php8-gmp-debuginfo-8.0.25-150400.4.17.1 php8-iconv-8.0.25-150400.4.17.1 php8-iconv-debuginfo-8.0.25-150400.4.17.1 php8-intl-8.0.25-150400.4.17.1 php8-intl-debuginfo-8.0.25-150400.4.17.1 php8-ldap-8.0.25-150400.4.17.1 php8-ldap-debuginfo-8.0.25-150400.4.17.1 php8-mbstring-8.0.25-150400.4.17.1 php8-mbstring-debuginfo-8.0.25-150400.4.17.1 php8-mysql-8.0.25-150400.4.17.1 php8-mysql-debuginfo-8.0.25-150400.4.17.1 php8-odbc-8.0.25-150400.4.17.1 php8-odbc-debuginfo-8.0.25-150400.4.17.1 php8-opcache-8.0.25-150400.4.17.1 php8-opcache-debuginfo-8.0.25-150400.4.17.1 php8-openssl-8.0.25-150400.4.17.1 php8-openssl-debuginfo-8.0.25-150400.4.17.1 php8-pcntl-8.0.25-150400.4.17.1 php8-pcntl-debuginfo-8.0.25-150400.4.17.1 php8-pdo-8.0.25-150400.4.17.1 php8-pdo-debuginfo-8.0.25-150400.4.17.1 php8-pgsql-8.0.25-150400.4.17.1 php8-pgsql-debuginfo-8.0.25-150400.4.17.1 php8-phar-8.0.25-150400.4.17.1 php8-phar-debuginfo-8.0.25-150400.4.17.1 php8-posix-8.0.25-150400.4.17.1 php8-posix-debuginfo-8.0.25-150400.4.17.1 php8-readline-8.0.25-150400.4.17.1 php8-readline-debuginfo-8.0.25-150400.4.17.1 php8-shmop-8.0.25-150400.4.17.1 php8-shmop-debuginfo-8.0.25-150400.4.17.1 php8-snmp-8.0.25-150400.4.17.1 php8-snmp-debuginfo-8.0.25-150400.4.17.1 php8-soap-8.0.25-150400.4.17.1 php8-soap-debuginfo-8.0.25-150400.4.17.1 php8-sockets-8.0.25-150400.4.17.1 php8-sockets-debuginfo-8.0.25-150400.4.17.1 php8-sodium-8.0.25-150400.4.17.1 php8-sodium-debuginfo-8.0.25-150400.4.17.1 php8-sqlite-8.0.25-150400.4.17.1 php8-sqlite-debuginfo-8.0.25-150400.4.17.1 php8-sysvmsg-8.0.25-150400.4.17.1 php8-sysvmsg-debuginfo-8.0.25-150400.4.17.1 php8-sysvsem-8.0.25-150400.4.17.1 php8-sysvsem-debuginfo-8.0.25-150400.4.17.1 php8-sysvshm-8.0.25-150400.4.17.1 php8-sysvshm-debuginfo-8.0.25-150400.4.17.1 php8-test-8.0.25-150400.4.17.1 php8-tidy-8.0.25-150400.4.17.1 php8-tidy-debuginfo-8.0.25-150400.4.17.1 php8-tokenizer-8.0.25-150400.4.17.1 php8-tokenizer-debuginfo-8.0.25-150400.4.17.1 php8-xmlreader-8.0.25-150400.4.17.1 php8-xmlreader-debuginfo-8.0.25-150400.4.17.1 php8-xmlwriter-8.0.25-150400.4.17.1 php8-xmlwriter-debuginfo-8.0.25-150400.4.17.1 php8-xsl-8.0.25-150400.4.17.1 php8-xsl-debuginfo-8.0.25-150400.4.17.1 php8-zip-8.0.25-150400.4.17.1 php8-zip-debuginfo-8.0.25-150400.4.17.1 php8-zlib-8.0.25-150400.4.17.1 php8-zlib-debuginfo-8.0.25-150400.4.17.1 References: https://www.suse.com/security/cve/CVE-2022-31630.html https://www.suse.com/security/cve/CVE-2022-37454.html https://bugzilla.suse.com/1204577 https://bugzilla.suse.com/1204979 . SUSE Security Patch resolves issues in python3 with essential updates and repairs. Ensure your safety!. SUSE Linux Security, php8 Updates, Buffer Overflow Fixes, Web Scripting Security, Important Security Alerts. . Severity:Important. LinuxSecurity.com Team

Calendar 2 Nov 15, 2022 Important SuSE
Banner 3 1028x280 1708121785 1771599793
100
Ls Advisories Suse Esm H240
Price Tag 1security advisoryimportantSUSE

SUSE 15 SP4: 2022:3656-1 Important: Nodejs16 Fixes for Multiple Threats

An update that fixes four vulnerabilities is now available. . SUSE Security Update: Security update for nodejs16 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:3656-1 Rating: important References: #1201325 #1201327 #1203831 #1203832 Cross-References: CVE-2022-32213 CVE-2022-32215 CVE-2022-35255 CVE-2022-35256 CVSS scores: CVE-2022-32213 (NVD) : 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N CVE-2022-32213 (SUSE): 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H CVE-2022-32215 (NVD) : 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N CVE-2022-32215 (SUSE): 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N CVE-2022-35255 (SUSE): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N CVE-2022-35256 (SUSE): 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N Affected Products: SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Web Scripting 15-SP4 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes four vulnerabilities is now available. Description: This update for nodejs16 fixes the following issues: Updated to version 16.17.1: - CVE-2022-32213: Fixed bypass via obs-fold mechanic (bsc#1201325). - CVE-2022-32215: Fixed incorrect Parsing of Multi-line Transfer-Encoding (bsc#1201327). - CVE-2022-35256: Fixed incorrect Parsing of Header Fields (bsc#1203832). - CVE-2022-35255: FIxed weak randomness in WebCrypto keygen(bsc#1203831). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-3656=1 - SUSE Linux Enterprise Module for Web Scripting 15-SP4: zypper in -t patch SUSE-SLE-Module-Web-Scripting-15-SP4-2022-3656=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): corepack16-16.17.1-150400.3.9.1 nodejs16-16.17.1-150400.3.9.1 nodejs16-debuginfo-16.17.1-150400.3.9.1 nodejs16-debugsource-16.17.1-150400.3.9.1 nodejs16-devel-16.17.1-150400.3.9.1 npm16-16.17.1-150400.3.9.1 - openSUSE Leap 15.4 (noarch): nodejs16-docs-16.17.1-150400.3.9.1 - SUSE Linux Enterprise Module for Web Scripting 15-SP4 (aarch64 ppc64le s390x x86_64): nodejs16-16.17.1-150400.3.9.1 nodejs16-debuginfo-16.17.1-150400.3.9.1 nodejs16-debugsource-16.17.1-150400.3.9.1 nodejs16-devel-16.17.1-150400.3.9.1 npm16-16.17.1-150400.3.9.1 - SUSE Linux Enterprise Module for Web Scripting 15-SP4 (noarch): nodejs16-docs-16.17.1-150400.3.9.1 References: https://www.suse.com/security/cve/CVE-2022-32213.html https://www.suse.com/security/cve/CVE-2022-32215.html https://www.suse.com/security/cve/CVE-2022-35255.html https://www.suse.com/security/cve/CVE-2022-35256.html https://bugzilla.suse.com/1201325 https://bugzilla.suse.com/1201327 https://bugzilla.suse.com/1203831 https://bugzilla.suse.com/1203832 . Node.js 16 brings vital updates aimed at fixing serious vulnerabilities in SUSE systems, enhancing the security of your software environment and encouraging upgrades. NodeJS Security Fix, SUSE Updates, NodeJS Vulnerabilities, Important Security Advisory, SUSE NodeJS Patch. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Oct 19, 2022 Important SuSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorysecurity fixmoderate severity

SUSE: 2022:3196-1 Moderate Security Update for Nodejs16 Released

An update that solves four vulnerabilities and has one errata is now available. . SUSE Security Update: Security update for nodejs16 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:3196-1 Rating: moderate References: #1200303 #1200517 #1201710 #1202382 #1202383 Cross-References: CVE-2022-29244 CVE-2022-31150 CVE-2022-35948 CVE-2022-35949 CVSS scores: CVE-2022-29244 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2022-29244 (SUSE): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N CVE-2022-31150 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N CVE-2022-31150 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-35948 (NVD) : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-35948 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N CVE-2022-35949 (NVD) : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2022-35949 (SUSE): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N Affected Products: SUSE Linux Enterprise High Performance Computing 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Server 12-SP4 SUSE Linux Enterprise Server 12-SP5 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12-SP3 SUSE Linux Enterprise Server for SAP Applications 12-SP4 SUSE Linux Enterprise Server for SAP Applications 12-SP5 ______________________________________________________________________________ An update that solves four vulnerabilities and hasone errata is now available. Description: This update for nodejs16 fixes the following issues: - CVE-2022-35949: Fixed SSRF when an application takes in user input into the path/pathname option of undici.request (bsc#1202382). - CVE-2022-35948: Fixed CRLF injection via Content-Type (bsc#1202383). - CVE-2022-29244: Fixed npm pack ignores root-level .gitignore and .npmignore file exclusion directives when run in a workspace (bsc#1200517). - CVE-2022-31150: Fixed CRLF injection in node-undici (bsc#1201710). Bugfixes: - Enable crypto-policies for SLE15 SP4+ and TW (bsc#1200303) Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Module for Web Scripting 12: zypper in -t patch SUSE-SLE-Module-Web-Scripting-12-2022-3196=1 Package List: - SUSE Linux Enterprise Module for Web Scripting 12 (aarch64 ppc64le s390x x86_64): nodejs16-16.17.0-8.9.1 nodejs16-debuginfo-16.17.0-8.9.1 nodejs16-debugsource-16.17.0-8.9.1 nodejs16-devel-16.17.0-8.9.1 npm16-16.17.0-8.9.1 - SUSE Linux Enterprise Module for Web Scripting 12 (noarch): nodejs16-docs-16.17.0-8.9.1 References: https://www.suse.com/security/cve/CVE-2022-29244.html https://www.suse.com/security/cve/CVE-2022-31150.html https://www.suse.com/security/cve/CVE-2022-35948.html https://www.suse.com/security/cve/CVE-2022-35949.html https://bugzilla.suse.com/1200303 https://bugzilla.suse.com/1200517 https://bugzilla.suse.com/1201710 https://bugzilla.suse.com/1202382 https://bugzilla.suse.com/1202383 . A recent update for nodejs16 fixes multiple vulnerabilities, bolstering security for SUSE installations. Take immediate action to safeguard your systems.. SUSE Linux Enterprise,nodejs security patch,web scripting module,system safety update. . LinuxSecurity.comTeam

Calendar 2 Sep 08, 2022 SuSE
Banner 3 1028x280 1708121785 1771599793
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorysecurity updatelow severity

SUSE: Security Advisory 2022:1768-1 Low: Php7 Filter Bypass Vulnerability

An update that contains security fixes can now be installed. . SUSE Security Update: Security update for php7 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:1768-1 Rating: low References: #1197644 Affected Products: SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3 SUSE Linux Enterprise Module for Web Scripting 15-SP3 SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Manager Proxy 4.2 SUSE Manager Server 4.2 openSUSE Leap 15.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that contains security fixes can now be installed. Description: This update for php7 fixes the following issues: - Fixed filter_var bypass vulnerability (bsc#1197644). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-1768=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-1768=1 - SUSE Linux Enterprise Module for Web Scripting 15-SP3: zypper in -t patch SUSE-SLE-Module-Web-Scripting-15-SP3-2022-1768=1 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3: zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2022-1768=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): php7-firebird-7.4.6-150200.3.38.2 php7-firebird-debuginfo-7.4.6-150200.3.38.2 - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): apache2-mod_php7-7.4.6-150200.3.38.2 apache2-mod_php7-debuginfo-7.4.6-150200.3.38.2 php7-7.4.6-150200.3.38.2 php7-bcmath-7.4.6-150200.3.38.2 php7-bcmath-debuginfo-7.4.6-150200.3.38.2 php7-bz2-7.4.6-150200.3.38.2 php7-bz2-debuginfo-7.4.6-150200.3.38.2 php7-calendar-7.4.6-150200.3.38.2 php7-calendar-debuginfo-7.4.6-150200.3.38.2 php7-ctype-7.4.6-150200.3.38.2 php7-ctype-debuginfo-7.4.6-150200.3.38.2 php7-curl-7.4.6-150200.3.38.2 php7-curl-debuginfo-7.4.6-150200.3.38.2 php7-dba-7.4.6-150200.3.38.2 php7-dba-debuginfo-7.4.6-150200.3.38.2 php7-debuginfo-7.4.6-150200.3.38.2 php7-debugsource-7.4.6-150200.3.38.2 php7-devel-7.4.6-150200.3.38.2 php7-dom-7.4.6-150200.3.38.2 php7-dom-debuginfo-7.4.6-150200.3.38.2 php7-embed-7.4.6-150200.3.38.2 php7-embed-debuginfo-7.4.6-150200.3.38.2 php7-enchant-7.4.6-150200.3.38.2 php7-enchant-debuginfo-7.4.6-150200.3.38.2 php7-exif-7.4.6-150200.3.38.2 php7-exif-debuginfo-7.4.6-150200.3.38.2 php7-fastcgi-7.4.6-150200.3.38.2 php7-fastcgi-debuginfo-7.4.6-150200.3.38.2 php7-fileinfo-7.4.6-150200.3.38.2 php7-fileinfo-debuginfo-7.4.6-150200.3.38.2 php7-firebird-7.4.6-150200.3.38.2 php7-firebird-debuginfo-7.4.6-150200.3.38.2 php7-fpm-7.4.6-150200.3.38.2 php7-fpm-debuginfo-7.4.6-150200.3.38.2 php7-ftp-7.4.6-150200.3.38.2 php7-ftp-debuginfo-7.4.6-150200.3.38.2 php7-gd-7.4.6-150200.3.38.2 php7-gd-debuginfo-7.4.6-150200.3.38.2 php7-gettext-7.4.6-150200.3.38.2 php7-gettext-debuginfo-7.4.6-150200.3.38.2 php7-gmp-7.4.6-150200.3.38.2 php7-gmp-debuginfo-7.4.6-150200.3.38.2 php7-iconv-7.4.6-150200.3.38.2 php7-iconv-debuginfo-7.4.6-150200.3.38.2 php7-intl-7.4.6-150200.3.38.2 php7-intl-debuginfo-7.4.6-150200.3.38.2 php7-json-7.4.6-150200.3.38.2 php7-json-debuginfo-7.4.6-150200.3.38.2 php7-ldap-7.4.6-150200.3.38.2 php7-ldap-debuginfo-7.4.6-150200.3.38.2 php7-mbstring-7.4.6-150200.3.38.2 php7-mbstring-debuginfo-7.4.6-150200.3.38.2 php7-mysql-7.4.6-150200.3.38.2 php7-mysql-debuginfo-7.4.6-150200.3.38.2 php7-odbc-7.4.6-150200.3.38.2 php7-odbc-debuginfo-7.4.6-150200.3.38.2 php7-opcache-7.4.6-150200.3.38.2 php7-opcache-debuginfo-7.4.6-150200.3.38.2 php7-openssl-7.4.6-150200.3.38.2 php7-openssl-debuginfo-7.4.6-150200.3.38.2 php7-pcntl-7.4.6-150200.3.38.2 php7-pcntl-debuginfo-7.4.6-150200.3.38.2 php7-pdo-7.4.6-150200.3.38.2 php7-pdo-debuginfo-7.4.6-150200.3.38.2 php7-pgsql-7.4.6-150200.3.38.2 php7-pgsql-debuginfo-7.4.6-150200.3.38.2 php7-phar-7.4.6-150200.3.38.2 php7-phar-debuginfo-7.4.6-150200.3.38.2 php7-posix-7.4.6-150200.3.38.2 php7-posix-debuginfo-7.4.6-150200.3.38.2 php7-readline-7.4.6-150200.3.38.2 php7-readline-debuginfo-7.4.6-150200.3.38.2 php7-shmop-7.4.6-150200.3.38.2 php7-shmop-debuginfo-7.4.6-150200.3.38.2 php7-snmp-7.4.6-150200.3.38.2 php7-snmp-debuginfo-7.4.6-150200.3.38.2 php7-soap-7.4.6-150200.3.38.2 php7-soap-debuginfo-7.4.6-150200.3.38.2 php7-sockets-7.4.6-150200.3.38.2 php7-sockets-debuginfo-7.4.6-150200.3.38.2 php7-sodium-7.4.6-150200.3.38.2 php7-sodium-debuginfo-7.4.6-150200.3.38.2 php7-sqlite-7.4.6-150200.3.38.2 php7-sqlite-debuginfo-7.4.6-150200.3.38.2 php7-sysvmsg-7.4.6-150200.3.38.2 php7-sysvmsg-debuginfo-7.4.6-150200.3.38.2 php7-sysvsem-7.4.6-150200.3.38.2 php7-sysvsem-debuginfo-7.4.6-150200.3.38.2 php7-sysvshm-7.4.6-150200.3.38.2 php7-sysvshm-debuginfo-7.4.6-150200.3.38.2 php7-test-7.4.6-150200.3.38.2 php7-tidy-7.4.6-150200.3.38.2 php7-tidy-debuginfo-7.4.6-150200.3.38.2 php7-tokenizer-7.4.6-150200.3.38.2 php7-tokenizer-debuginfo-7.4.6-150200.3.38.2 php7-xmlreader-7.4.6-150200.3.38.2 php7-xmlreader-debuginfo-7.4.6-150200.3.38.2 php7-xmlrpc-7.4.6-150200.3.38.2 php7-xmlrpc-debuginfo-7.4.6-150200.3.38.2 php7-xmlwriter-7.4.6-150200.3.38.2 php7-xmlwriter-debuginfo-7.4.6-150200.3.38.2 php7-xsl-7.4.6-150200.3.38.2 php7-xsl-debuginfo-7.4.6-150200.3.38.2 php7-zip-7.4.6-150200.3.38.2 php7-zip-debuginfo-7.4.6-150200.3.38.2 php7-zlib-7.4.6-150200.3.38.2 php7-zlib-debuginfo-7.4.6-150200.3.38.2 - SUSE Linux Enterprise Module for Web Scripting 15-SP3 (aarch64 ppc64le s390x x86_64): apache2-mod_php7-7.4.6-150200.3.38.2 apache2-mod_php7-debuginfo-7.4.6-150200.3.38.2 php7-7.4.6-150200.3.38.2 php7-bcmath-7.4.6-150200.3.38.2 php7-bcmath-debuginfo-7.4.6-150200.3.38.2 php7-bz2-7.4.6-150200.3.38.2 php7-bz2-debuginfo-7.4.6-150200.3.38.2 php7-calendar-7.4.6-150200.3.38.2 php7-calendar-debuginfo-7.4.6-150200.3.38.2 php7-ctype-7.4.6-150200.3.38.2 php7-ctype-debuginfo-7.4.6-150200.3.38.2 php7-curl-7.4.6-150200.3.38.2 php7-curl-debuginfo-7.4.6-150200.3.38.2 php7-dba-7.4.6-150200.3.38.2 php7-dba-debuginfo-7.4.6-150200.3.38.2 php7-debuginfo-7.4.6-150200.3.38.2 php7-debugsource-7.4.6-150200.3.38.2 php7-devel-7.4.6-150200.3.38.2 php7-dom-7.4.6-150200.3.38.2 php7-dom-debuginfo-7.4.6-150200.3.38.2 php7-enchant-7.4.6-150200.3.38.2 php7-enchant-debuginfo-7.4.6-150200.3.38.2 php7-exif-7.4.6-150200.3.38.2 php7-exif-debuginfo-7.4.6-150200.3.38.2 php7-fastcgi-7.4.6-150200.3.38.2 php7-fastcgi-debuginfo-7.4.6-150200.3.38.2 php7-fileinfo-7.4.6-150200.3.38.2 php7-fileinfo-debuginfo-7.4.6-150200.3.38.2 php7-fpm-7.4.6-150200.3.38.2 php7-fpm-debuginfo-7.4.6-150200.3.38.2 php7-ftp-7.4.6-150200.3.38.2 php7-ftp-debuginfo-7.4.6-150200.3.38.2 php7-gd-7.4.6-150200.3.38.2 php7-gd-debuginfo-7.4.6-150200.3.38.2 php7-gettext-7.4.6-150200.3.38.2 php7-gettext-debuginfo-7.4.6-150200.3.38.2 php7-gmp-7.4.6-150200.3.38.2 php7-gmp-debuginfo-7.4.6-150200.3.38.2 php7-iconv-7.4.6-150200.3.38.2 php7-iconv-debuginfo-7.4.6-150200.3.38.2 php7-intl-7.4.6-150200.3.38.2 php7-intl-debuginfo-7.4.6-150200.3.38.2 php7-json-7.4.6-150200.3.38.2 php7-json-debuginfo-7.4.6-150200.3.38.2 php7-ldap-7.4.6-150200.3.38.2 php7-ldap-debuginfo-7.4.6-150200.3.38.2 php7-mbstring-7.4.6-150200.3.38.2 php7-mbstring-debuginfo-7.4.6-150200.3.38.2 php7-mysql-7.4.6-150200.3.38.2 php7-mysql-debuginfo-7.4.6-150200.3.38.2 php7-odbc-7.4.6-150200.3.38.2 php7-odbc-debuginfo-7.4.6-150200.3.38.2 php7-opcache-7.4.6-150200.3.38.2 php7-opcache-debuginfo-7.4.6-150200.3.38.2 php7-openssl-7.4.6-150200.3.38.2 php7-openssl-debuginfo-7.4.6-150200.3.38.2 php7-pcntl-7.4.6-150200.3.38.2 php7-pcntl-debuginfo-7.4.6-150200.3.38.2 php7-pdo-7.4.6-150200.3.38.2 php7-pdo-debuginfo-7.4.6-150200.3.38.2 php7-pgsql-7.4.6-150200.3.38.2 php7-pgsql-debuginfo-7.4.6-150200.3.38.2 php7-phar-7.4.6-150200.3.38.2 php7-phar-debuginfo-7.4.6-150200.3.38.2 php7-posix-7.4.6-150200.3.38.2 php7-posix-debuginfo-7.4.6-150200.3.38.2 php7-readline-7.4.6-150200.3.38.2 php7-readline-debuginfo-7.4.6-150200.3.38.2 php7-shmop-7.4.6-150200.3.38.2 php7-shmop-debuginfo-7.4.6-150200.3.38.2 php7-snmp-7.4.6-150200.3.38.2 php7-snmp-debuginfo-7.4.6-150200.3.38.2 php7-soap-7.4.6-150200.3.38.2 php7-soap-debuginfo-7.4.6-150200.3.38.2 php7-sockets-7.4.6-150200.3.38.2 php7-sockets-debuginfo-7.4.6-150200.3.38.2 php7-sodium-7.4.6-150200.3.38.2 php7-sodium-debuginfo-7.4.6-150200.3.38.2 php7-sqlite-7.4.6-150200.3.38.2 php7-sqlite-debuginfo-7.4.6-150200.3.38.2 php7-sysvmsg-7.4.6-150200.3.38.2 php7-sysvmsg-debuginfo-7.4.6-150200.3.38.2 php7-sysvsem-7.4.6-150200.3.38.2 php7-sysvsem-debuginfo-7.4.6-150200.3.38.2 php7-sysvshm-7.4.6-150200.3.38.2 php7-sysvshm-debuginfo-7.4.6-150200.3.38.2 php7-tidy-7.4.6-150200.3.38.2 php7-tidy-debuginfo-7.4.6-150200.3.38.2 php7-tokenizer-7.4.6-150200.3.38.2 php7-tokenizer-debuginfo-7.4.6-150200.3.38.2 php7-xmlreader-7.4.6-150200.3.38.2 php7-xmlreader-debuginfo-7.4.6-150200.3.38.2 php7-xmlrpc-7.4.6-150200.3.38.2 php7-xmlrpc-debuginfo-7.4.6-150200.3.38.2 php7-xmlwriter-7.4.6-150200.3.38.2 php7-xmlwriter-debuginfo-7.4.6-150200.3.38.2 php7-xsl-7.4.6-150200.3.38.2 php7-xsl-debuginfo-7.4.6-150200.3.38.2 php7-zip-7.4.6-150200.3.38.2 php7-zip-debuginfo-7.4.6-150200.3.38.2 php7-zlib-7.4.6-150200.3.38.2 php7-zlib-debuginfo-7.4.6-150200.3.38.2 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3 (aarch64 ppc64le s390x x86_64): php7-debuginfo-7.4.6-150200.3.38.2 php7-debugsource-7.4.6-150200.3.38.2 php7-embed-7.4.6-150200.3.38.2 php7-embed-debuginfo-7.4.6-150200.3.38.2 References: https://bugzilla.suse.com/1197644 . Update for php7 resolves a security flaw in SUSE systems, providing minor-severity patches and installation options.. SUSE Linux Enterprise, PHP security patch, SUSE security update, filter bypass, web scripting. . Severity: Low. LinuxSecurity.com Team

Calendar 2 May 20, 2022 Low SuSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorysoftware updateSUSE Linux

SUSE: 2022:1714-1 Low: php72 Filter Bypass Vulnerability Report

An update that contains security fixes can now be installed. . SUSE Security Update: Security update for php72 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:1714-1 Rating: low References: #1197644 Affected Products: SUSE Linux Enterprise High Performance Computing 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Server 12-SP4 SUSE Linux Enterprise Server 12-SP5 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12-SP3 SUSE Linux Enterprise Server for SAP Applications 12-SP4 SUSE Linux Enterprise Server for SAP Applications 12-SP5 SUSE Linux Enterprise Software Development Kit 12-SP5 ______________________________________________________________________________ An update that contains security fixes can now be installed. Description: This update for php72 fixes the following issues: - Fixed filter_var bypass vulnerability (bsc#1197644). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Software Development Kit 12-SP5: zypper in -t patch SUSE-SLE-SDK-12-SP5-2022-1714=1 - SUSE Linux Enterprise Module for Web Scripting 12: zypper in -t patch SUSE-SLE-Module-Web-Scripting-12-2022-1714=1 Package List: - SUSE Linux Enterprise Software Development Kit 12-SP5 (aarch64 ppc64le s390x x86_64): php72-debuginfo-7.2.5-1.78.1 php72-debugsource-7.2.5-1.78.1 php72-devel-7.2.5-1.78.1 - SUSE Linux Enterprise Module for WebScripting 12 (aarch64 ppc64le s390x x86_64): apache2-mod_php72-7.2.5-1.78.1 apache2-mod_php72-debuginfo-7.2.5-1.78.1 php72-7.2.5-1.78.1 php72-bcmath-7.2.5-1.78.1 php72-bcmath-debuginfo-7.2.5-1.78.1 php72-bz2-7.2.5-1.78.1 php72-bz2-debuginfo-7.2.5-1.78.1 php72-calendar-7.2.5-1.78.1 php72-calendar-debuginfo-7.2.5-1.78.1 php72-ctype-7.2.5-1.78.1 php72-ctype-debuginfo-7.2.5-1.78.1 php72-curl-7.2.5-1.78.1 php72-curl-debuginfo-7.2.5-1.78.1 php72-dba-7.2.5-1.78.1 php72-dba-debuginfo-7.2.5-1.78.1 php72-debuginfo-7.2.5-1.78.1 php72-debugsource-7.2.5-1.78.1 php72-dom-7.2.5-1.78.1 php72-dom-debuginfo-7.2.5-1.78.1 php72-enchant-7.2.5-1.78.1 php72-enchant-debuginfo-7.2.5-1.78.1 php72-exif-7.2.5-1.78.1 php72-exif-debuginfo-7.2.5-1.78.1 php72-fastcgi-7.2.5-1.78.1 php72-fastcgi-debuginfo-7.2.5-1.78.1 php72-fileinfo-7.2.5-1.78.1 php72-fileinfo-debuginfo-7.2.5-1.78.1 php72-fpm-7.2.5-1.78.1 php72-fpm-debuginfo-7.2.5-1.78.1 php72-ftp-7.2.5-1.78.1 php72-ftp-debuginfo-7.2.5-1.78.1 php72-gd-7.2.5-1.78.1 php72-gd-debuginfo-7.2.5-1.78.1 php72-gettext-7.2.5-1.78.1 php72-gettext-debuginfo-7.2.5-1.78.1 php72-gmp-7.2.5-1.78.1 php72-gmp-debuginfo-7.2.5-1.78.1 php72-iconv-7.2.5-1.78.1 php72-iconv-debuginfo-7.2.5-1.78.1 php72-imap-7.2.5-1.78.1 php72-imap-debuginfo-7.2.5-1.78.1 php72-intl-7.2.5-1.78.1 php72-intl-debuginfo-7.2.5-1.78.1 php72-json-7.2.5-1.78.1 php72-json-debuginfo-7.2.5-1.78.1 php72-ldap-7.2.5-1.78.1 php72-ldap-debuginfo-7.2.5-1.78.1 php72-mbstring-7.2.5-1.78.1 php72-mbstring-debuginfo-7.2.5-1.78.1 php72-mysql-7.2.5-1.78.1 php72-mysql-debuginfo-7.2.5-1.78.1 php72-odbc-7.2.5-1.78.1 php72-odbc-debuginfo-7.2.5-1.78.1 php72-opcache-7.2.5-1.78.1 php72-opcache-debuginfo-7.2.5-1.78.1 php72-openssl-7.2.5-1.78.1 php72-openssl-debuginfo-7.2.5-1.78.1 php72-pcntl-7.2.5-1.78.1 php72-pcntl-debuginfo-7.2.5-1.78.1 php72-pdo-7.2.5-1.78.1 php72-pdo-debuginfo-7.2.5-1.78.1 php72-pgsql-7.2.5-1.78.1 php72-pgsql-debuginfo-7.2.5-1.78.1 php72-phar-7.2.5-1.78.1 php72-phar-debuginfo-7.2.5-1.78.1 php72-posix-7.2.5-1.78.1 php72-posix-debuginfo-7.2.5-1.78.1 php72-pspell-7.2.5-1.78.1 php72-pspell-debuginfo-7.2.5-1.78.1 php72-readline-7.2.5-1.78.1 php72-readline-debuginfo-7.2.5-1.78.1 php72-shmop-7.2.5-1.78.1 php72-shmop-debuginfo-7.2.5-1.78.1 php72-snmp-7.2.5-1.78.1 php72-snmp-debuginfo-7.2.5-1.78.1 php72-soap-7.2.5-1.78.1 php72-soap-debuginfo-7.2.5-1.78.1 php72-sockets-7.2.5-1.78.1 php72-sockets-debuginfo-7.2.5-1.78.1 php72-sodium-7.2.5-1.78.1 php72-sodium-debuginfo-7.2.5-1.78.1 php72-sqlite-7.2.5-1.78.1 php72-sqlite-debuginfo-7.2.5-1.78.1 php72-sysvmsg-7.2.5-1.78.1 php72-sysvmsg-debuginfo-7.2.5-1.78.1 php72-sysvsem-7.2.5-1.78.1 php72-sysvsem-debuginfo-7.2.5-1.78.1 php72-sysvshm-7.2.5-1.78.1 php72-sysvshm-debuginfo-7.2.5-1.78.1 php72-tidy-7.2.5-1.78.1 php72-tidy-debuginfo-7.2.5-1.78.1 php72-tokenizer-7.2.5-1.78.1 php72-tokenizer-debuginfo-7.2.5-1.78.1 php72-wddx-7.2.5-1.78.1 php72-wddx-debuginfo-7.2.5-1.78.1 php72-xmlreader-7.2.5-1.78.1 php72-xmlreader-debuginfo-7.2.5-1.78.1 php72-xmlrpc-7.2.5-1.78.1 php72-xmlrpc-debuginfo-7.2.5-1.78.1 php72-xmlwriter-7.2.5-1.78.1 php72-xmlwriter-debuginfo-7.2.5-1.78.1 php72-xsl-7.2.5-1.78.1 php72-xsl-debuginfo-7.2.5-1.78.1 php72-zip-7.2.5-1.78.1 php72-zip-debuginfo-7.2.5-1.78.1 php72-zlib-7.2.5-1.78.1 php72-zlib-debuginfo-7.2.5-1.78.1 - SUSE Linux Enterprise Module for Web Scripting 12 (noarch): php72-pear-7.2.5-1.78.1 php72-pear-Archive_Tar-7.2.5-1.78.1 References: https://bugzilla.suse.com/1197644 . SUSE Rollout for php72 addresses vulnerabilities in filter_var; apply updates to protect impacted applications.. SUSE Security Update, php72 Patch, Filter Bypass Issue, SUSE Security Fixes. . Severity: Low. LinuxSecurity.com Team

Calendar 2 May 17, 2022 Low SuSE
Banner 3 1028x280 1708121785 1771599793
100
Ls Advisories Suse Esm H240
Price Tag 1security advisoryimportantSUSE

SUSE: 2022:1304-1 Important: Tomcat Hardening Patch for Spring Issues

An update that contains security fixes can now be installed. . SUSE Security Update: Security update for tomcat ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:1304-1 Rating: important References: #1198136 Affected Products: SUSE Enterprise Storage 7 SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS SUSE Linux Enterprise High Performance Computing 15-SP3 SUSE Linux Enterprise High Performance Computing 15-SP4 SUSE Linux Enterprise Module for Web Scripting 15-SP3 SUSE Linux Enterprise Module for Web Scripting 15-SP4 SUSE Linux Enterprise Server 15-SP2-BCL SUSE Linux Enterprise Server 15-SP2-LTSS SUSE Linux Enterprise Server 15-SP3 SUSE Linux Enterprise Server 15-SP4 SUSE Linux Enterprise Server for SAP 15-SP2 SUSE Linux Enterprise Server for SAP Applications 15-SP3 SUSE Linux Enterprise Server for SAP Applications 15-SP4 SUSE Manager Proxy 4.1 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.1 SUSE Manager Server 4.1 SUSE Manager Server 4.2 openSUSE Leap 15.3 openSUSE Leap 15.4 ______________________________________________________________________________ An update that contains security fixes can now be installed. Description: This update for tomcat fixes the following issues: Security hardening, related to Spring Framework vulnerabilities: - Deprecate getResources() and always return null (bsc#1198136). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2022-1304=1 - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2022-1304=1 - SUSE Manager Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-1304=1 - SUSE Manager Retail Branch Server 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-1304=1 - SUSE Manager Proxy 4.1: zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-1304=1 - SUSE Linux Enterprise Server for SAP 15-SP2: zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2022-1304=1 - SUSE Linux Enterprise Server 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-1304=1 - SUSE Linux Enterprise Server 15-SP2-BCL: zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-BCL-2022-1304=1 - SUSE Linux Enterprise Module for Web Scripting 15-SP4: zypper in -t patch SUSE-SLE-Module-Web-Scripting-15-SP4-2022-1304=1 - SUSE Linux Enterprise Module for Web Scripting 15-SP3: zypper in -t patch SUSE-SLE-Module-Web-Scripting-15-SP3-2022-1304=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-1304=1 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-1304=1 - SUSE Enterprise Storage 7: zypper in -t patch SUSE-Storage-7-2022-1304=1 Package List: - openSUSE Leap 15.4 (noarch): tomcat-9.0.36-150200.22.1 tomcat-admin-webapps-9.0.36-150200.22.1 tomcat-docs-webapp-9.0.36-150200.22.1 tomcat-el-3_0-api-9.0.36-150200.22.1 tomcat-embed-9.0.36-150200.22.1 tomcat-javadoc-9.0.36-150200.22.1 tomcat-jsp-2_3-api-9.0.36-150200.22.1 tomcat-jsvc-9.0.36-150200.22.1 tomcat-lib-9.0.36-150200.22.1 tomcat-servlet-4_0-api-9.0.36-150200.22.1 tomcat-webapps-9.0.36-150200.22.1 - openSUSE Leap 15.3 (noarch): tomcat-9.0.36-150200.22.1 tomcat-admin-webapps-9.0.36-150200.22.1 tomcat-docs-webapp-9.0.36-150200.22.1 tomcat-el-3_0-api-9.0.36-150200.22.1 tomcat-embed-9.0.36-150200.22.1 tomcat-javadoc-9.0.36-150200.22.1 tomcat-jsp-2_3-api-9.0.36-150200.22.1 tomcat-jsvc-9.0.36-150200.22.1 tomcat-lib-9.0.36-150200.22.1 tomcat-servlet-4_0-api-9.0.36-150200.22.1 tomcat-webapps-9.0.36-150200.22.1 - SUSE Manager Server 4.1 (noarch): tomcat-9.0.36-150200.22.1 tomcat-admin-webapps-9.0.36-150200.22.1 tomcat-el-3_0-api-9.0.36-150200.22.1 tomcat-jsp-2_3-api-9.0.36-150200.22.1 tomcat-lib-9.0.36-150200.22.1 tomcat-servlet-4_0-api-9.0.36-150200.22.1 tomcat-webapps-9.0.36-150200.22.1 - SUSE Manager Retail Branch Server 4.1 (noarch): tomcat-9.0.36-150200.22.1 tomcat-admin-webapps-9.0.36-150200.22.1 tomcat-el-3_0-api-9.0.36-150200.22.1 tomcat-jsp-2_3-api-9.0.36-150200.22.1 tomcat-lib-9.0.36-150200.22.1 tomcat-servlet-4_0-api-9.0.36-150200.22.1 tomcat-webapps-9.0.36-150200.22.1 - SUSE Manager Proxy 4.1 (noarch): tomcat-9.0.36-150200.22.1 tomcat-admin-webapps-9.0.36-150200.22.1 tomcat-el-3_0-api-9.0.36-150200.22.1 tomcat-jsp-2_3-api-9.0.36-150200.22.1 tomcat-lib-9.0.36-150200.22.1 tomcat-servlet-4_0-api-9.0.36-150200.22.1 tomcat-webapps-9.0.36-150200.22.1 - SUSE Linux Enterprise Server for SAP 15-SP2 (noarch): tomcat-9.0.36-150200.22.1 tomcat-admin-webapps-9.0.36-150200.22.1 tomcat-el-3_0-api-9.0.36-150200.22.1 tomcat-jsp-2_3-api-9.0.36-150200.22.1 tomcat-lib-9.0.36-150200.22.1 tomcat-servlet-4_0-api-9.0.36-150200.22.1 tomcat-webapps-9.0.36-150200.22.1 - SUSE Linux Enterprise Server 15-SP2-LTSS (noarch): tomcat-9.0.36-150200.22.1 tomcat-admin-webapps-9.0.36-150200.22.1 tomcat-el-3_0-api-9.0.36-150200.22.1 tomcat-jsp-2_3-api-9.0.36-150200.22.1 tomcat-lib-9.0.36-150200.22.1 tomcat-servlet-4_0-api-9.0.36-150200.22.1 tomcat-webapps-9.0.36-150200.22.1 - SUSE Linux Enterprise Server 15-SP2-BCL (noarch): tomcat-9.0.36-150200.22.1 tomcat-admin-webapps-9.0.36-150200.22.1 tomcat-el-3_0-api-9.0.36-150200.22.1 tomcat-jsp-2_3-api-9.0.36-150200.22.1 tomcat-lib-9.0.36-150200.22.1 tomcat-servlet-4_0-api-9.0.36-150200.22.1 tomcat-webapps-9.0.36-150200.22.1 - SUSE Linux Enterprise Module for Web Scripting 15-SP4 (noarch): tomcat-9.0.36-150200.22.1 tomcat-admin-webapps-9.0.36-150200.22.1 tomcat-el-3_0-api-9.0.36-150200.22.1 tomcat-jsp-2_3-api-9.0.36-150200.22.1 tomcat-lib-9.0.36-150200.22.1 tomcat-servlet-4_0-api-9.0.36-150200.22.1 tomcat-webapps-9.0.36-150200.22.1 - SUSE Linux Enterprise Module for Web Scripting 15-SP3 (noarch): tomcat-9.0.36-150200.22.1 tomcat-admin-webapps-9.0.36-150200.22.1 tomcat-el-3_0-api-9.0.36-150200.22.1 tomcat-jsp-2_3-api-9.0.36-150200.22.1 tomcat-lib-9.0.36-150200.22.1 tomcat-servlet-4_0-api-9.0.36-150200.22.1 tomcat-webapps-9.0.36-150200.22.1 - SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS (noarch): tomcat-9.0.36-150200.22.1 tomcat-admin-webapps-9.0.36-150200.22.1 tomcat-el-3_0-api-9.0.36-150200.22.1 tomcat-jsp-2_3-api-9.0.36-150200.22.1 tomcat-lib-9.0.36-150200.22.1 tomcat-servlet-4_0-api-9.0.36-150200.22.1 tomcat-webapps-9.0.36-150200.22.1 - SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS (noarch): tomcat-9.0.36-150200.22.1 tomcat-admin-webapps-9.0.36-150200.22.1 tomcat-el-3_0-api-9.0.36-150200.22.1 tomcat-jsp-2_3-api-9.0.36-150200.22.1 tomcat-lib-9.0.36-150200.22.1 tomcat-servlet-4_0-api-9.0.36-150200.22.1 tomcat-webapps-9.0.36-150200.22.1 - SUSE Enterprise Storage 7 (noarch): tomcat-9.0.36-150200.22.1 tomcat-admin-webapps-9.0.36-150200.22.1 tomcat-el-3_0-api-9.0.36-150200.22.1 tomcat-jsp-2_3-api-9.0.36-150200.22.1 tomcat-lib-9.0.36-150200.22.1 tomcat-servlet-4_0-api-9.0.36-150200.22.1 tomcat-webapps-9.0.36-150200.22.1 References: https://bugzilla.suse.com/1198136 . Critical Security Patch Released for Tomcat: Resolving Vulnerabilities and Guidance for Setup. Delve into Major Enhancements and Fixes.. Tomcat Security Patch, SUSE Update, Spring Framework Fix. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Apr 22, 2022 Important SuSE
100
Ls Advisories Suse Esm H240
Price Tag 1security advisoryimportantSUSE

SUSE 12: 2022:0935-1 Important: Nodejs12 Infinite Loop Fix

An update that fixes one vulnerability is now available. . SUSE Security Update: Security update for nodejs12 ______________________________________________________________________________ Announcement ID: SUSE-SU-2022:0935-1 Rating: important References: #1196877 Cross-References: CVE-2022-0778 CVSS scores: CVE-2022-0778 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2022-0778 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: SUSE Linux Enterprise High Performance Computing 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Server 12-SP4 SUSE Linux Enterprise Server 12-SP5 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12-SP3 SUSE Linux Enterprise Server for SAP Applications 12-SP4 SUSE Linux Enterprise Server for SAP Applications 12-SP5 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for nodejs12 fixes the following issues: Update to 12.22.11, which adjusts dependencies for openssl sources to 1.1.1n. Addressing the following issue in openssl: - CVE-2022-0778: Infinite loop in BN_mod_sqrt() reachable when parsing certificates (bsc#1196877). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Module for Web Scripting 12: zypper in -t patch SUSE-SLE-Module-Web-Scripting-12-2022-935=1 Package List: - SUSE LinuxEnterprise Module for Web Scripting 12 (aarch64 ppc64le s390x x86_64): nodejs12-12.22.11-1.45.1 nodejs12-debuginfo-12.22.11-1.45.1 nodejs12-debugsource-12.22.11-1.45.1 nodejs12-devel-12.22.11-1.45.1 npm12-12.22.11-1.45.1 - SUSE Linux Enterprise Module for Web Scripting 12 (noarch): nodejs12-docs-12.22.11-1.45.1 References: https://www.suse.com/security/cve/CVE-2022-0778.html https://bugzilla.suse.com/1196877 . SUSE Security Patch: Critical nodejs12 upgrade resolves endless loop vulnerability. Utilize zypper or YaST for installation.. SUSE Nodejs Update, OpenSSL Security, Linux Patch Management. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Mar 22, 2022 Important SuSE
Banner 3 1028x280 1708121785 1771599793
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here