-----------------------------------------
Version unknown 2021-08-14T07:45:23

-----------------------------------------
Patch: SUSE-2014-85
Released: Tue Nov  4 16:29:29 2014
Summary: Recommended update for dirmngr
Severity: moderate
References: 901845
Description:
This update for dirmngr fixes a segmentation fault at start up. (bnc#901845)

-----------------------------------------
Patch: SUSE-2014-72
Released: Tue Nov  4 16:41:11 2014
Summary: Recommended update for xmlstarlet
Severity: low
References: 900891
Description:
This update for xmlstarlet adds a symbolic link /usr/bin/xmlstarlet pointing to the 'xml' binary.

-----------------------------------------
Patch: SUSE-2014-68
Released: Tue Nov  4 16:52:21 2014
Summary: Security update for java-1_7_0-openjdk
Severity: important
References: 901242,CVE-2014-6457,CVE-2014-6502,CVE-2014-6504,CVE-2014-6506,CVE-2014-6511,CVE-2014-6512,CVE-2014-6513,CVE-2014-6517,CVE-2014-6519,CVE-2014-6531,CVE-2014-6558
Description:

OpenJDK was updated to icedtea 2.5.3 (OpenJDK 7u71) fixing security issues and bugs.

* Security:
- S8015256: Better class accessibility
- S8022783, CVE-2014-6504: Optimize C2 optimizations
- S8035162: Service printing service
- S8035781: Improve equality for annotations
- S8036805: Correct linker method lookup.
- S8036810: Correct linker field lookup
- S8036936: Use local locales
- S8037066, CVE-2014-6457: Secure transport layer
- S8037846, CVE-2014-6558: Ensure streaming of input cipher streams
- S8038364: Use certificate exceptions correctly
- S8038899: Safer safepoints
- S8038903: More native monitor monitoring
- S8038908: Make Signature more robust
- S8038913: Bolster XML support
- S8039509, CVE-2014-6512: Wrap sockets more thoroughly
- S8039533, CVE-2014-6517: Higher resolution resolvers
- S8041540, CVE-2014-6511: Better use of pages in font processing
- S8041529: Better parameterization of parameter lists
- S8041545: Better validation of generated rasters
- S8041564, CVE-2014-6506: Improved management of logger resources
- S8041717, CVE-2014-6519: Issue with class file parser
- S8042609, CVE-2014-6513: Limit splashiness of splash images
- S8042797, CVE-2014-6502: Avoid strawberries in LogRecord
- S8044274, CVE-2014-6531: Proper property processing

* Backports:
- S4963723: Implement SHA-224
- S7044060: Need to support NSA Suite B Cryptography algorithms
- S7122142: (ann) Race condition between isAnnotationPresent
  and getAnnotations
- S7160837: DigestOutputStream does not turn off digest
  calculation when 'close()' is called
- S8006935: Need to take care of long secret keys in HMAC/PRF
  computation
- S8012637: Adjust CipherInputStream class to work in AEAD/GCM mode
- S8028192: Use of PKCS11-NSS provider in FIPS mode broken
- S8038000: java.awt.image.RasterFormatException: Incorrect scanline stride
- S8039396: NPE when writing a class descriptor object to a
  custom ObjectOutputStream
- S8042603: 'SafepointPollOffset' was not declared in static member
  function 'static bool Arguments::check_vm_args_consistency()'
- S8042850: Extra unused entries in ICU ScriptCodes enum
- S8052162: REGRESSION: sun/java2d/cmm/ColorConvertOp tests fail
  since 7u71 b01
- S8053963: (dc) Use DatagramChannel.receive() instead of read()
  in connect()
- S8055176: 7u71 l10n resource file translation update

* Bugfixes:
- PR1988: C++ Interpreter should no longer be used on ppc64
- PR1989: Make jdk_generic_profile.sh handle missing programs
  better and be more verbose
- PR1992, RH735336: Support retrieving proxy settings on GNOME 3.12.2
- PR2000: Synchronise HEAD tarball paths with release branch paths
- PR2002: Fix references to hotspot.map following PR2000
- PR2003: --disable-system-gtk option broken by refactoring in PR1736
- PR2009: Checksum of policy JAR files changes on every build
- PR2014: Use version from hotspot.map to create tarball filename
- PR2015: Update hotspot.map documentation in INSTALL
- PR2025: LCMS_CFLAGS and LCMS_LIBS should not be used unless
  SYSTEM_LCMS is enabled
- RH1015432: java-1.7.0-openjdk: Fails on PPC with StackOverflowError
  (revised comprehensive fix)

* CACAO
- PR2030, G453612, CA172: ARM hardfloat support for CACAO

* AArch64 port
- AArch64 C2 instruct for smull
- Add frame anchor fences.
- Add MacroAssembler::maybe_isb()
- Add missing instruction synchronization barriers and cache flushes.
- Add support for a few simple intrinsics
- Add support for builtin crc32 instructions
- Add support for Neon implementation of CRC32
- All address constants are 48 bits in size.
- array load must only read 32 bits
- Define uabs().  Use it everywhere an absolute value is wanted.
- Fast string comparison
- Fast String.equals()
- Fix register usage in generate_verify_oop().
- Fix thinko in Atomic::xchg_ptr.
- Fix typo in fsqrts
- Improve C1 performance improvements in ic_cache checks
- Performance improvement and ease of use changes pulled from upstream
- Remove obsolete C1 patching code.
- Replace hotspot jtreg test suite with tests from jdk7u
- S8024648: 7141246 breaks Zero port
- Save intermediate state before removing C1 patching code.
- Unwind native AArch64 frames.
- Use 2- and 3-instruction immediate form of movoop and mov_metadata
  in C2-generated code.
- Various concurrency fixes.


-----------------------------------------
Patch: SUSE-2014-76
Released: Wed Nov  5 16:41:10 2014
Summary: Security update for wget
Severity: moderate
References: 902709,CVE-2014-4877
Description:
wget was updated to fix one security issue.
	  
This security issue was fixed:
- FTP symlink arbitrary filesystem access (CVE-2014-4877).


-----------------------------------------
Patch: SUSE-2014-66
Released: Thu Nov  6 06:23:15 2014
Summary: Recommended update for gcc48
Severity: moderate
References: 899871
Description:
This update for gcc48 fixes a performance degradation issue caused by generation of unneeded code whe using option -pg.


-----------------------------------------
Patch: SUSE-2014-97
Released: Fri Nov 28 10:20:32 2014
Summary: Security update for file
Severity: moderate
References: 888308,902367,CVE-2014-3710
Description:
file was updated to fix one security issue.

This security issue was fixed:
- Out-of-bounds read in elf note headers (CVE-2014-3710).

This non-security issues was fixed:
- Correctly identify GDBM files created by libgdbm4 (bnc#888308).
  

-----------------------------------------
Patch: SUSE-2014-120
Released: Mon Dec  1 18:03:03 2014
Summary: Security update for openvpn
Severity: important
References: 907764,CVE-2014-8104
Description:

A remote denial of service attack against openvpn was fixed, where
a authenticated client cloud stop the server by triggering
a server-side ASSERT (CVE-2014-8104),


-----------------------------------------
Patch: SUSE-2014-123
Released: Mon Dec  1 18:03:36 2014
Summary: Recommended update for libXi
Severity: moderate
References: 883553
Description:
This update for libXi fixes a double unlock issue when connecting to an X server with XInputExtension version lower than 2.0. This could result, for example, in a segmentation fault when starting YaST over an ssh connection from SUSE Linux Enterprise 11.

-----------------------------------------
Patch: SUSE-2014-115
Released: Mon Dec  1 18:06:24 2014
Summary: Security update for flac
Severity: moderate
References: 906831,907016,CVE-2014-8962,CVE-2014-9028
Description:
flac was updated to fix two security issues.

These security issues were fixed:
- Stack overflow may result in arbitrary code execution (CVE-2014-8962).
- Heap overflow via specially crafted .flac files (CVE-2014-9028).
  

-----------------------------------------
Patch: SUSE-2014-102
Released: Tue Dec  2 16:19:32 2014
Summary: Security update for ImageMagick
Severity: moderate
References: 903204,903216,903638,905260,CVE-2014-8354,CVE-2014-8355,CVE-2014-8562,CVE-2014-8716
Description:

ImageMagick was updated to fix four security issues.

These security issues were fixed:
- Crafted JPEG file could lead to DOS (CVE-2014-8716).
- Out-of-bounds memory access in PCX parser (CVE-2014-8355).
- Out-of-bounds memory access in resize code (CVE-2014-8354).
- Out-of-bounds memory error in DCM decode (CVE-2014-8562).
  

-----------------------------------------
Patch: SUSE-2014-113
Released: Tue Dec  2 18:17:57 2014
Summary: Security update for cpio
Severity: moderate
References: 658010,907456,CVE-2014-9112
Description:

This cpio security update fixes the following buffer overflow issue and
two non security issues:

- fix an OOB write with cpio -i (bnc#907456) (CVE-2014-9112)
- prevent cpio from extracting over a symlink (bnc#658010)
- fix a truncation check in mt


-----------------------------------------
Patch: SUSE-2015-4
Released: Wed Dec  3 15:57:25 2014
Summary: Security update for libyaml
Severity: moderate
References: 907809,CVE-2014-9130
Description:

This libyaml update fixes the following security issue:

- bnc#907809: assert failure when processing wrapped strings
  (CVE-2014-9130)


-----------------------------------------
Patch: SUSE-2015-15
Released: Thu Dec  4 15:24:10 2014
Summary: Security update for libjpeg-turbo, libjpeg62-turbo
Severity: moderate
References: 906761,CVE-2014-9092
Description:
libjpeg-turbo, libjpeg62-turbo were updated to fix one security issue.

This security issue was fixed:
- Passing special crafted jpeg file smashes stack (CVE-2014-9092).
  

-----------------------------------------
Patch: SUSE-2015-3
Released: Fri Dec  5 15:49:30 2014
Summary: Security update for mutt
Severity: important
References: 899712,907453,CVE-2014-9116
Description:
mutt was updated to fix one security issue.

This security issue was fixed:
- Heap-based buffer overflow in mutt_substrdup() (CVE-2014-9116).

This non-security issue was fixed:
- Handle text/html by default (bnc#899712)
  

-----------------------------------------
Patch: SUSE-2014-81
Released: Sat Dec  6 17:14:40 2014
Summary: Security update for MozillaFirefox and mozilla-nss
Severity: important
References: 897890,900941,908009,CVE-2014-1568,CVE-2014-1574,CVE-2014-1575,CVE-2014-1576,CVE-2014-1577,CVE-2014-1578,CVE-2014-1581,CVE-2014-1583,CVE-2014-1585,CVE-2014-1586,CVE-2014-1587,CVE-2014-1588,CVE-2014-1590,CVE-2014-1592,CVE-2014-1593,CVE-2014-1594,CVE-2014-1595
Description:

Mozilla Firefox was updated to 31.3.0 ESR (bnc#900941) (bnc#908009).

Security issues fixed:
MFSA 2014-83 / CVE-2014-1588 / CVE-2014-1587: Mozilla developers and
community identified and fixed several memory safety bugs in the browser
engine used in Firefox and other Mozilla-based products. Some of these
bugs showed evidence of memory corruption under certain circumstances,
and we presume that with enough effort at least some of these could be
exploited to run arbitrary code.

MFSA 2014-85 / CVE-2014-1590: Security researcher Joe Vennix from Rapid7
reported that passing a JavaScript object to XMLHttpRequest that mimics
an input stream will a crash. This crash is not exploitable and can only
be used for denial of service attacks.

MFSA 2014-87 / CVE-2014-1592: Security researcher Berend-Jan Wever
reported a use-after-free created by triggering the creation of a
second root element while parsing HTML written to a document created
with document.open(). This leads to a potentially exploitable crash.

MFSA 2014-88 / CVE-2014-1593: Security researcher Abhishek Arya (Inferno)
of the Google Chrome Security Team used the Address Sanitizer tool to
discover a buffer overflow during the parsing of media content. This
leads to a potentially exploitable crash.

MFSA 2014-89 / CVE-2014-1594: Security researchers Byoungyoung Lee,
Chengyu Song, and Taesoo Kim at the Georgia Tech Information Security
Center (GTISC) reported a bad casting from the BasicThebesLayer to
BasicContainerLayer, resulting in undefined behavior. This behavior is
potentially exploitable with some compilers but no clear mechanism to
trigger it through web content was identified.

MFSA 2014-90 / CVE-2014-1595: Security researcher Kent Howard reported an
Apple issue present in OS X 10.10 (Yosemite) where log files are created
by the CoreGraphics framework of OS X in the /tmp local directory. These
log files contain a record of all inputs into Mozilla programs during
their operation. In versions of OS X from versions 10.6 through 10.9,
the CoreGraphics had this logging ability but it was turned off by
default. In OS X 10.10, this logging was turned on by default for some
applications that use a custom memory allocator, such as jemalloc,
because of an initialization bug in the framework. This issue has been
addressed in Mozilla products by explicitly turning off the framework's
logging of input events. On vulnerable systems, this issue can result
in private data such as usernames, passwords, and other inputed data
being saved to a log file on the local system.

MFSA 2014-74 / CVE-2014-1574 / CVE-2014-1575:
Mozilla developers and community identified and fixed several memory
safety bugs in the browser engine used in Firefox and other Mozilla-based
products. Some of these bugs showed evidence of memory corruption under
certain circumstances, and we presume that with enough effort at least
some of these could be exploited to run arbitrary code.

Bobby Holley, Christian Holler, David Bolter, Byron Campen, and Jon
Coppeard reported memory safety problems and crashes that affect Firefox
ESR 31.1 and Firefox 32.

Carsten Book, Christian Holler, Martijn Wargers, Shih-Chiang Chien,
Terrence Cole, Eric Rahm , and Jeff Walden reported memory safety problems
and crashes that affect Firefox 32.

MFSA 2014-75 / CVE-2014-1576: Using the Address Sanitizer tool, security
researcher Atte Kettunen from OUSPG discovered a buffer overflow when
making capitalization style changes during CSS parsing. This can cause
a crash that is potentially exploitable.

MFSA 2014-76 / CVE-2014-1577: Security researcher Holger Fuhrmannek
used the used the Address Sanitizer tool to discover an out-of-bounds
read issue with Web Audio when interacting with custom waveforms with
invalid values. This results in a crash and could allow for the reading
of random memory which may contain sensitive data, or of memory addresses
that could be used in combination with another bug.

MFSA 2014-77 / CVE-2014-1578: Using the Address Sanitizer tool, security
researcher Abhishek Arya (Inferno) of the Google Chrome Security Team
found an out-of-bounds write when buffering WebM format video containing
frames with invalid tile sizes. This can lead to a potentially exploitable
crash during WebM video playback.

MFSA 2014-79 / CVE-2014-1581: Security researcher regenrecht reported,
via TippingPoint's Zero Day Initiative, a use-after-free during text
layout when interacting with text direction. This results in a crash
which can lead to arbitrary code execution.

MFSA 2014-81 / CVE-2014-1585 / CVE-2014-1586: Mozilla developers Eric
Shepherd and Jan-Ivar Bruaroey reported issues with privacy and video
sharing using WebRTC. Once video sharing has started within a WebRTC
session running within an <iframe>, video will continue to be shared even
if the user selects the 'Stop Sharing' button in the controls. The
camera will also remain on even if the user navigates to another site and
will begin streaming again if the user returns to the original site. This
is a privacy problem and can lead to inadvertent video streaming. This
does not affect implementations that are not within an <iframe>.

MFSA 2014-82 / CVE-2014-1583: Mozilla developer Boris Zbarsky reported
that a malicious app could use the AlarmAPI to read the values of
cross-origin references, such as an iframe's location object, as part of
an alarm's JSON data. This allows a malicious app to bypass same-origin
policy.

SSLv3 is disabled by default. See README.POODLE for more
detailed information.

Mozilla NSS was updated to 3.17.2 (bnc#900941)
Bugfix release
  * bmo#1049435 - Importing an RSA private key fails if p < q
  * bmo#1057161 - NSS hangs with 100% CPU on invalid EC key
  * bmo#1078669 - certutil crashes when using the --certVersion
    parameter
- changes from earlier version of the 3.17 branch:
  update to 3.17.1 (bnc#897890)
  * MFSA 2014-73/CVE-2014-1568 (bmo#1064636, bmo#1069405)
    RSA Signature Forgery in NSS
  * Change library's signature algorithm default to SHA256
  * Add support for draft-ietf-tls-downgrade-scsv
  * Add clang-cl support to the NSS build system
  * Implement TLS 1.3:
    * Part 1. Negotiate TLS 1.3
    * Part 2. Remove deprecated cipher suites andcompression.
  * Add support for little-endian powerpc64
  update to 3.17
  * required for Firefox 33
  New functionality:
  * When using ECDHE, the TLS server code may be configured to
    generate a fresh ephemeral ECDH key for each handshake, by
    setting the SSL_REUSE_SERVER_ECDHE_KEY socket option to
    PR_FALSE. The SSL_REUSE_SERVER_ECDHE_KEY option defaults to
    PR_TRUE, which means the server's ephemeral ECDH key is reused
    for multiple handshakes.  This option does not affect the TLS
    client code, which always generates a fresh ephemeral ECDH key
    for each handshake.
  New Macros
  * SSL_REUSE_SERVER_ECDHE_KEY
  Notable Changes:
  * The manual pages for the certutil and pp tools have been
    updated to document the new parameters that had been added in
    NSS 3.16.2.


-----------------------------------------
Patch: SUSE-2015-16
Released: Thu Dec 11 09:25:27 2014
Summary: Security update for libksba
Severity: moderate
References: 907074,CVE-2014-9087
Description:
This libksba update fixes the following security issue:

- bnc#907074: buffer overflow in OID processing (CVE-2014-9087)


-----------------------------------------
Patch: SUSE-2014-114
Released: Thu Dec 11 15:18:56 2014
Summary: Security update for mailx
Severity: moderate
References: 909208,CVE-2004-2771,CVE-2014-7844
Description:

This mailx update fixes the following security and non security issues:

- bsc#909208: shell command injection via crafted email addresses
  (CVE-2004-2771, CVE-2014-7844)
- Correct comment in spec file 

-----------------------------------------
Patch: SUSE-2014-122
Released: Mon Dec 15 14:25:41 2014
Summary: Security update for tcpdump
Severity: moderate
References: 905870,905871,905872,CVE-2014-8767,CVE-2014-8768,CVE-2014-8769
Description:
This tcpdump update fixes the following security issues:

- fix CVE-2014-8767 (bnc#905870)
  * denial of service in verbose mode using malformed OLSR payload
- fix CVE-2014-8768 (bnc#905871)
  * denial of service in verbose mode using malformed Geonet payload
- fix CVE-2014-8769 (bnc#905872)
  * unreliable output using malformed AOVD payload


-----------------------------------------
Patch: SUSE-2015-34
Released: Fri Dec 19 15:16:12 2014
Summary: Security update for ruby2.1
Severity: moderate
References: 902851,905326,CVE-2014-8080,CVE-2014-8090
Description:
This ruby update fixes the following two security issues:

- bnc#902851: fix CVE-2014-8080: Denial Of Service XML Expansion
- bnc#905326: fix CVE-2014-8090: Another Denial Of Service XML Expansion
- Enable tests to run during the build. This way we can compare
  the results on different builds.


-----------------------------------------
Patch: SUSE-2015-5
Released: Fri Dec 19 19:56:21 2014
Summary: Security update for jasper
Severity: moderate
References: 906364,909474,909475,CVE-2014-8137,CVE-2014-9029
Description:
This libjasper update fixes the following three security issues:

- bnc#906364: heap overflows in libjasper (CVE-2014-9029)
- bnc#909474: double-free in jas_iccattrval_destroy() (CVE-2014-8137)
- bnc#909475: heap overflow in jas_decode() (CVE-2014-8138)


-----------------------------------------
Patch: SUSE-2014-126
Released: Fri Dec 19 20:16:00 2014
Summary: Security update for file
Severity: moderate
References: 910252,910253,CVE-2014-8116,CVE-2014-8117
Description:
This file update fixes the following security issues:

- bsc#910252: multiple denial of service issues (resource consumption)
              (CVE-2014-8116)
- bsc#910253: denial of service issue (resource consumption)
              (CVE-2014-8117)


-----------------------------------------
Patch: SUSE-2015-22
Released: Mon Dec 22 20:12:03 2014
Summary: Recommended update for perl-Net-DNS
Severity: low
References: 904041
Description:
This update for perl-Net-DNS fixes handling of TSIG algorithms, no longer removing dots and dashes from their names.

-----------------------------------------
Patch: SUSE-2015-2
Released: Tue Dec 23 10:32:16 2014
Summary: Optional update for mtx
Severity: low
References: 904234
Description:
The tape library utility 'mtx' was missing from SUSE Linux Enterprise Server 12, this update adds it back.

-----------------------------------------
Patch: SUSE-2015-12
Released: Wed Jan  7 11:24:10 2015
Summary: Security update for unzip
Severity: moderate
References: 909214,CVE-2014-8139,CVE-2014-8140,CVE-2014-8141
Description:

  This update fixes the following security issues:

- CVE-2014-8139: fix heap overflow condition in
  the CRC32 verification (fixes bnc#909214)
- CVE-2014-8140 and CVE-2014-8141: fix write error
  (*_8349_*) shows a problem in extract.c:test_compr_eb(), and:
  read errors (*_6430_*, *_3422_*) show problems in
  process.c:getZip64Data() (fixes bnc#909214)



-----------------------------------------
Patch: SUSE-2015-46
Released: Thu Jan  8 11:52:33 2015
Summary: Security update for libsndfile
Severity: moderate
References: 911796,CVE-2014-9496
Description:

      This update fixes the following security issue:
      - two buffer read overflows in sd2_parse_rsrc_fork() (CVE-2014-9496, bnc#911796): backported upstream fix patches


-----------------------------------------
Patch: SUSE-2015-37
Released: Mon Jan 12 16:54:17 2015
Summary: Security update for git
Severity: moderate
References: 910756,CVE-2014-9390
Description:

      This update fixes the following security issue:

      - CVE-2014-9390: arbitrary command execution vulnerability on case- insensitive file system (bnc#910756)


-----------------------------------------
Patch: SUSE-2015-53
Released: Tue Jan 13 12:24:12 2015
Summary: Security update for mpfr
Severity: moderate
References: 911812,CVE-2014-9474
Description:

      This update fixes the following security issue: 
      - CVE-2014-9474: possible buffer overflow in mpfr_strtofr (bnc#911812)


-----------------------------------------
Patch: SUSE-2015-33
Released: Wed Jan 14 10:47:09 2015
Summary: Security update for libpng16
Severity: important
References: 912076,912929,CVE-2014-9495,CVE-2015-0973
Description:

  This update fixes the following security issues:

  * CVE-2014-9495: libpng versions heap overflow vulnerability, that under certain circumstances could be exploit. [bnc#912076]

  * CVE-2015-0973: A heap-based overflow was found in the png_combine_row() function of the libpng library, when very large interlaced images were used.[bnc#912929]



-----------------------------------------
Patch: SUSE-2015-40
Released: Thu Jan 15 18:35:11 2015
Summary: Security update for rpm
Severity: important
References: 892431,906803,908128,911228,CVE-2013-6435,CVE-2014-8118
Description:
This rpm update fixes the following security and non-security issues:

- bnc#908128: Check for bad invalid name sizes (CVE-2014-8118)
- bnc#906803: Create files with mode 0 (CVE-2013-6435)
- bnc#892431: Honor --noglob in install mode 
- bnc#911228: Fix noglob patch, it broke files with space.

-----------------------------------------
Patch: SUSE-2015-26
Released: Fri Jan 16 18:54:45 2015
Summary: Security update for MozillaFirefox
Severity: important
References: 909563,910647,910669,CVE-2014-1569,CVE-2014-8634,CVE-2014-8635,CVE-2014-8638,CVE-2014-8639,CVE-2014-8641
Description:

This update fixes the following security issues in MozillaFirefox:
- MFSA 2015-01/CVE-2014-8634/CVE-2014-8635
   (bmo#1109889, bmo#1111737, bmo#1026774, bmo#1027300,
     bmo#1054538, bmo#1067473, bmo#1070962, bmo#1072130,
     bmo#1072871, bmo#1098583)
    Miscellaneous memory safety hazards (rv:35.0 / rv:31.4)
- MFSA 2015-03/CVE-2014-8638
   (bmo#1080987)
   sendBeacon requests lack an Origin header
- MFSA 2015-04/CVE-2014-8639
  (bmo#1095859)
  Cookie injection through Proxy Authenticate responses
- MFSA 2015-06/CVE-2014-8641
  (bmo#1108455)
  Read-after-free in WebRTC

Also Mozilla NSS was updated to 3.17.3 to fix:
* The QuickDER decoder now decodes lengths robustly
  (bmo#1064670/CVE-2014-1569)
* Support for TLS_FALLBACK_SCSV has been added to the ssltap
  and tstclnt utilities
* Changes in CA certificates


-----------------------------------------
Patch: SUSE-2015-44
Released: Tue Jan 20 00:18:26 2015
Summary: Security update for binutils
Severity: moderate
References: 902676,902677,903655,905735,905736,CVE-2014-8484,CVE-2014-8485,CVE-2014-8501,CVE-2014-8502,CVE-2014-8503,CVE-2014-8504,CVE-2014-8737,CVE-2014-8738
Description:
This binutils update fixes the following security issues:

- bnc#902676: lack of range checking leading to controlled write in 
  _bfd_elf_setup_sections() (CVE-2014-8485)
- bnc#902677: invalid read flaw in libbfd (CVE-2014-8484)
- bnc#903655: Multiple memory corruption issues in binary parsers of 
  libbfd (CVE-2014-8501, CVE-2014-8502, CVE-2014-8503, CVE-2014-8504)
- bnc#905735: Out-of-bounds memory write while processing a crafted 'ar'
  archive (CVE-2014-8738)
- bnc#905736: Directory traversal vulnerability allowing random file 
  deletion/creation (CVE-2014-8737)


-----------------------------------------
Patch: SUSE-2015-81
Released: Thu Jan 22 11:06:12 2015
Summary: Security update for wireshark
Severity: moderate
References: 912365,912368,912369,912370,912372,CVE-2015-0559,CVE-2015-0560,CVE-2015-0561,CVE-2015-0562,CVE-2015-0563,CVE-2015-0564
Description:

      This update fixes the following security issues:

- The following vulnerabilities allowed Wireshark to be crashed by
  injecting a malformed packet onto the wire or by convincing someone
  to read a malformed packet trace file.
  + The WCCP dissector could crash
    wnpa-sec-2015-01 CVE-2015-0559 CVE-2015-0560 [boo#912365]
  + The LPP dissector could crash.
    wnpa-sec-2015-02 CVE-2015-0561 [boo#912368]
  + The DEC DNA Routing Protocol dissector could crash.
    wnpa-sec-2015-03 CVE-2015-0562 [boo#912369]
  + The SMTP dissector could crash. 
    wnpa-sec-2015-04 CVE-2015-0563 [boo#912370]
  + Wireshark could crash while decypting TLS/SSL sessions.
    wnpa-sec-2015-05 CVE-2015-0564 [boo#912372]


-----------------------------------------
Patch: SUSE-2015-83
Released: Mon Jan 26 11:03:45 2015
Summary: Security update for hivex
Severity: moderate
References: 908614,CVE-2014-9273
Description:

    This update fixes the following security issue:
      - CVE-2014-9273: Possible DOS because of missing size checks (bnc#908614)


-----------------------------------------
Patch: SUSE-2015-71
Released: Wed Jan 28 13:44:32 2015
Summary: Security update for strongswan
Severity: moderate
References: 856322,897048,897512,910491,CVE-2014-9221
Description:
This strongswan update fixes the following security and non security
issues.

- Disallow brainpool elliptic curve groups in fips mode (bnc#856322).
- Applied an upstream fix for a denial-of-service vulnerability,
  which can be triggered by an IKEv2 Key Exchange payload, that
  contains the Diffie-Hellman group 1025 (bsc#910491,CVE-2014-9221).
- Adjusted whilelist of approved algorithms in fips mode (bsc#856322).
- Updated strongswan-hmac package description (bsc#856322).
- Disabled explicit gpg validation; osc source_validator does it.
- Guarded fipscheck and hmac package in the spec file for >13.1.
- Added generation of fips hmac hash files using fipshmac utility
  and a _fipscheck script to verify binaries/libraries/plugings
  shipped in the strongswan-hmac package.
  With enabled fips in the kernel, the ipsec script will call it
  before any action or in a enforced/manual 'ipsec _fipscheck' call.
  Added config file to load openssl and kernel af-alg plugins, but
  not all the other modules which provide further/alternative algs.
  Applied a filter disallowing non-approved algorithms in fips mode.
  (fate#316931,bnc#856322).
- Fixed file list in the optional (disabled) strongswan-test package.
- Fixed build of the strongswan built-in integrity checksum library
  and enabled building it only on architectures tested to work.
- Fix to use bug number 897048 instead 856322 in last changes entry.
- Applied an upstream patch reverting to store algorithms in the
  registration order again as ordering them by identifier caused
  weaker algorithms to be proposed first by default (bsc#897512).

-----------------------------------------
Patch: SUSE-2015-96
Released: Thu Jan 29 10:54:25 2015
Summary: Security update for vorbis-tools
Severity: moderate
References: 914938,CVE-2014-9640
Description:

      This update fixes the following security issue:

      - A crafted raw file used as input could cause a segmentation fault (CVE-2014-9640, bsc#914938)


-----------------------------------------
Patch: SUSE-2015-92
Released: Fri Jan 30 14:51:02 2015
Summary: Security update for unzip
Severity: moderate
References: 914442,CVE-2014-9636
Description:
unzip was updated to fix one security issue.

This security issue was fixed:
- Out-of-bounds read/write in test_compr_eb() in extract.c (CVE-2014-9636).
  

-----------------------------------------
Patch: SUSE-2015-95
Released: Fri Jan 30 15:00:54 2015
Summary: Security update for libmspack
Severity: moderate
References: 912214,CVE-2014-9556
Description:
libmspack was updated to fix one security issue.

This security issue was fixed:
- Possible DoS by infinite loop (bnc#912214, CVE-2014-9556)
  

-----------------------------------------
Patch: SUSE-2015-76
Released: Fri Jan 30 15:01:03 2015
Summary: Security update for elfutils
Severity: moderate
References: 911662,CVE-2014-9447
Description:
elfutils was updated to fix one security issue.

This security issue was fixed:
- Directory traversal vulnerability in the read_long_names function (CVE-2014-9447).
  

-----------------------------------------
Patch: SUSE-2015-73
Released: Mon Feb  2 11:53:55 2015
Summary: Security update for jasper
Severity: moderate
References: 911837,CVE-2014-8157,CVE-2014-8158
Description:
jasper was updated to fix two security issues.

These security issues were fixed:
- CVE-2014-8157: Off-by-one error in the jpc_dec_process_sot function in JasPer 1.900.1 and earlier allowed remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 2000 image, which triggers a heap-based buffer overflow (bnc#911837).
CVE-2014-8158: Multiple stack-based buffer overflows in jpc_qmfb.c in JasPer 1.900.1 and earlier allowed remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 2000 image (bnc#911837).
  

-----------------------------------------
Patch: SUSE-2015-121
Released: Tue Feb  3 16:30:16 2015
Summary: Recommended update for pam
Severity: low
References: 912922
Description:
This update for pam fixes updating of NIS passwords.

-----------------------------------------
Patch: SUSE-2015-215
Released: Tue Feb 10 15:23:13 2015
Summary: Security update for perl-YAML-LibYAML
Severity: moderate
References: 860617,868944,907809,911782,CVE-2013-6393,CVE-2014-2525,CVE-2014-9130
Description:
perl-YAML-LibYAML was updated to fix three security issues.

These security issues were fixed:
- CVE-2013-6393: The yaml_parser_scan_tag_uri function in scanner.c in LibYAML before 0.1.5 performed an incorrect cast, which allowed remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted tags in a YAML document, which triggered a heap-based buffer overflow (bnc#860617, bnc#911782).
- CVE-2014-9130: scanner.c in LibYAML 0.1.5 and 0.1.6, as used in the YAML-LibYAML (aka YAML-XS) module for Perl, allowed context-dependent attackers to cause a denial of service (assertion failure and crash) via vectors involving line-wrapping (bnc#907809, bnc#911782).
- CVE-2014-2525: Heap-based buffer overflow in the yaml_parser_scan_uri_escapes function in LibYAML before 0.1.6 allowed context-dependent attackers to execute arbitrary code via a long sequence of percent-encoded characters in a URI in a YAML file (bnc#868944, bnc#911782).
  

-----------------------------------------
Patch: SUSE-2015-108
Released: Fri Feb 20 00:30:53 2015
Summary: Optional update for libgsm1-32bit, p11-kit-32bit
Severity: low
References: 904890
Description:
This update delivers a 32bit versions of p11-kit and libgsm1. These libraries are required by some 3rd-party applications.

-----------------------------------------
Patch: SUSE-2015-69
Released: Mon Feb 23 11:53:02 2015
Summary: Recommended update for timezone
Severity: important
References: 912415,915422,915693
Description:
This update provides the latest timezone information (2015a) for your system, including the following changes:

- Add positive leap second on 2015-06-30 23:59:60 UTC, as per IERS Bulletin C 49. (bsc#912415)
- Mexico state Quintana Roo (America/Cancun) shifts from Central Time with DST to Eastern Time without DST on 2015-02-01 02:00. (bsc#915422)
- Chile (America/Santiago) will retain old DST as standard time from April, also Pacific/Easter, and Antarctica/Palmer.

This release also includes changes affecting past time stamps, documentation and some minor bug fixes. For a comprehensive list, refer to the release announcement from ICANN:

- [http://mm.icann.org/pipermail/tz-announce/2015-January/000028.html](http://mm.icann.org/pipermail/tz-announce/2015-January/000028.html)


-----------------------------------------
Patch: SUSE-2015-274
Released: Mon Feb 23 22:21:35 2015
Summary: Recommended update for openslp
Severity: moderate
References: 909195
Description:
This update for openslp provides the following fixes:

- Fix storage handling in predicate code. It clashed with gcc's fortify_source extension and this could cause a segmentation fault.
- Bring back allowDoubleEqualInPredicate option.


-----------------------------------------
Patch: SUSE-2015-118
Released: Wed Feb 25 13:26:03 2015
Summary: Security update for postgresql93
Severity: moderate
References: 888564,916953,CVE-2014-8161,CVE-2015-0241,CVE-2015-0243,CVE-2015-0244
Description:
postgresql93 was updated to version 9.3.6 to fix four security issues.

These security issues were fixed:
- CVE-2015-0241: Fix buffer overruns in to_char() (bnc#916953).
- CVE-2015-0243: Fix buffer overruns in contrib/pgcrypto (bnc#916953).
- CVE-2015-0244: Fix possible loss of frontend/backend protocol synchronization after an error (bnc#916953).
- CVE-2014-8161: Fix information leak via constraint-violation error messages (bnc#916953).

This non-security issue was fixed:
- Move the server socket from /tmp to /var/run to avoid
  problems with clients that use PrivateTmp (bnc#888564).

More information is available at http://www.postgresql.org/docs/9.3/static/release-9-3-6.html


-----------------------------------------
Patch: SUSE-2015-117
Released: Fri Feb 27 19:25:58 2015
Summary: Optional update for boost
Severity: low
References: 918723
Description:
This updated adds two Boost libraries to SUSE Linux Enterprise Server 12 (libboost_date_time and libboost_iostreams) and one to SUSE Linux Enterprise Desktop (libboost_atomic).

-----------------------------------------
Patch: SUSE-2015-127
Released: Mon Mar  2 16:19:03 2015
Summary: Security update for vsftpd
Severity: low
References: 900326,915522,CVE-2015-1419
Description:
vsftpd was updated to fix one security issue.

This security issue was fixed:
- CVE-2015-1419: vsftpd config option deny_file was not handled correctly (bnc#915522).

Note: deny_file shouldn't be used to restrict access, as stated in the documentation. Please
use more reliable methods.


-----------------------------------------
Patch: SUSE-2015-123
Released: Mon Mar  2 16:19:05 2015
Summary: Security update for libmspack
Severity: moderate
References: 912214,CVE-2014-9556
Description:

libmspack was updated to fix one security issue.

This security issue was fixed:
- Possible DoS by infinite loop (bnc#912214, CVE-2014-9556)

The previous fix was not fully fixing this problem.


-----------------------------------------
Patch: SUSE-2015-110
Released: Mon Mar  2 17:43:50 2015
Summary: Security update for icu
Severity: moderate
References: 917129,CVE-2014-9654
Description:
icu was updated to fix one security issue.

This security issue was fixed:
- CVE-2014-9654: Insufficient size limit checks in regular expression compiler (bnc#917129).
  

-----------------------------------------
Patch: SUSE-2015-116
Released: Mon Mar  2 21:22:56 2015
Summary: Security update for cups, cups154
Severity: moderate
References: 917799,CVE-2014-9679
Description:
cups, cups154 was updated to fix one security issue.

This security issue was fixed:
- CVE-2014-9679: A malformed compressed raster file can trigger a buffer overflow in cupsRasterReadPixels (bnc#917799).
  

-----------------------------------------
Patch: SUSE-2015-104
Released: Mon Mar  2 21:23:22 2015
Summary: Security update for MozillaFirefox
Severity: important
References: 917597,CVE-2015-0822,CVE-2015-0827,CVE-2015-0831,CVE-2015-0835,CVE-2015-0836
Description:
MozillaFirefox was updated to version 31.5.0 ESR to fix five security issues.

These security issues were fixed:
- CVE-2015-0836: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 31.5 allowed remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors (bnc#917597).
- CVE-2015-0827: Heap-based buffer overflow in the mozilla::gfx::CopyRect function in Mozilla Firefox before 31.5 allowed remote attackers to obtain sensitive information from uninitialized process memory via a malformed SVG graphic (bnc#917597).
- CVE-2015-0835: Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 36.0 allowed remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors (bnc#917597).
- CVE-2015-0831: Use-after-free vulnerability in the mozilla::dom::IndexedDB::IDBObjectStore::CreateIndex function in Mozilla Firefox before 31.5 allowed remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via crafted content that is improperly handled during IndexedDB index creation (bnc#917597).
- CVE-2015-0822: The Form Autocompletion feature in Mozilla Firefox before 31.5 allowed remote attackers to read arbitrary files via crafted JavaScript code (bnc#917597).
  

-----------------------------------------
Patch: SUSE-2015-245
Released: Mon Mar  9 11:19:05 2015
Summary: Security update for vorbis-tools
Severity: moderate
References: 914439,914441,CVE-2014-9638,CVE-2014-9639
Description:

Vorbis tools was updated to fix division by zero and integer overflows by crafted WAV files (CVE-2014-9638, CVE-2014-9639, bnc#914439, bnc#914441),
that would allow attackers to crash the vorbis tools processes.


-----------------------------------------
Patch: SUSE-2015-144
Released: Mon Mar  9 16:19:26 2015
Summary: Security update for Xerces-C
Severity: moderate
References: 920810,CVE-2015-0252
Description:

The Xerces-C XML parsing library was updated to fix mishandling certain kinds of malformed input documents,
that could have resulted in a segmentation faults during a parse operation, leading to denial of service
or potential code execution. (bnc#920810,CVE-2015-0252)


-----------------------------------------
Patch: SUSE-2015-122
Released: Mon Mar  9 16:51:29 2015
Summary: Security update for java-1_7_0-openjdk
Severity: important
References: 901223,914041,CVE-2014-3566,CVE-2014-6585,CVE-2014-6587,CVE-2014-6591,CVE-2014-6593,CVE-2014-6601,CVE-2015-0383,CVE-2015-0395,CVE-2015-0400,CVE-2015-0407,CVE-2015-0408,CVE-2015-0410,CVE-2015-0412
Description:
This update fixes 13 security issues.

These security issues were fixed:
- CVE-2015-0395: Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allowed remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot (bnc#914041).
- CVE-2015-0400: Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allowed remote attackers to affect confidentiality via unknown vectors related to Libraries (bnc#914041).
- CVE-2015-0383: Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit R27.8.4 and R28.3.4 allowed local users to affect integrity and availability via unknown vectors related to Hotspot (bnc#914041).
- CVE-2015-0412: Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allowed remote attackers to affect confidentiality, integrity, and availability via vectors related to JAX-WS (bnc#914041).
- CVE-2015-0407: Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allowed remote attackers to affect confidentiality via unknown vectors related to Swing (bnc#914041).
- CVE-2015-0408: Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allowed remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI (bnc#914041).
- CVE-2014-6585: Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allowed remote attackers to affect confidentiality via unknown vectors reelated to 2D, a different vulnerability than CVE-2014-6591 (bnc#914041).
- CVE-2014-6587: Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allowed local users to affect confidentiality, integrity, and availability via unknown vectors related to Libraries (bnc#914041).
- CVE-2014-6591: Unspecified vulnerability in the Java SE component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25 allowed remote attackers to affect confidentiality via unknown vectors related to 2D, a different vulnerability than CVE-2014-6585 (bnc#914041).
- CVE-2014-6593: Unspecified vulnerability in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit 27.8.4 and 28.3.4 allowed remote attackers to affect confidentiality and integrity via vectors related to JSSE (bnc#914041).
- CVE-2014-6601: Unspecified vulnerability in Oracle Java SE 6u85, 7u72, and 8u25 allowed remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot (bnc#914041).
- CVE-2015-0410: Unspecified vulnerability in the Java SE, Java SE Embedded, JRockit component in Oracle Java SE 5.0u75, 6u85, 7u72, and 8u25; Java SE Embedded 7u71 and 8u6; and JRockit R27.8.4 and R28.3.4 allowed remote attackers to affect availability via unknown vectors related to Security (bnc#914041).
- CVE-2014-3566: The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, used nondeterministic CBC padding, which made it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, aka the 'POODLE' issue (bnc#901223).

These non-security issues were fixed:
- Update protocol support (S8046656).
- Fewer escapes from escape analysis (S8047130).
- Better GC validation (S8049253).
- TLAB stability (S8055479).


-----------------------------------------
Patch: SUSE-2015-157
Released: Tue Mar 10 09:01:41 2015
Summary: Security update for libssh2_org
Severity: moderate
References: 921070,CVE-2015-1782
Description:

The ssh client library libssh2_org was updated to fix a security issue.

CVE-2015-1782: A malicious server could send a crafted SSH_MSG_KEXINIT
packet, that could lead to a buffer overread and to a crash of the
libssh2_org using application.


-----------------------------------------
Patch: SUSE-2015-153
Released: Tue Mar 10 16:32:52 2015
Summary: Recommended update for strongswan
Severity: moderate
References: 918474
Description:

The IPSec IKE strongswan was updated to fix a bug in the 'ipsec pki' helper
tool that caused crashes of this tool during startup.
This bug was exposed by the previously released FIPS patches. (bsc#918474)


-----------------------------------------
Patch: SUSE-2015-208
Released: Thu Mar 12 10:43:10 2015
Summary: Security update for python-PyYAML
Severity: moderate
References: 921588,CVE-2014-9130
Description:
python-PyYAML was updated to fix one security issue which could have allowed an attacker to cause a denial of service by supplying specially crafted strings

The following issue was fixed:
- #921588: python-PyYAML: assert failure when processing wrapped strings (equivalent to CVE-2014-9130 in LibYAML) 


-----------------------------------------
Patch: SUSE-2015-151
Released: Thu Mar 12 12:40:06 2015
Summary: Security update for wireshark
Severity: moderate
References: 920696,920697,920699,CVE-2015-2188,CVE-2015-2189,CVE-2015-2191
Description:
Wireshark was updated to 1.10.13 to fix bugs and security issues.

The following security issues were fixed:
* The WCP dissector could crash.
  wnpa-sec-2015-07 CVE-2015-2188 [bnc#920696]
* The pcapng file parser could crash.
  wnpa-sec-2015-08 CVE-2015-2189 [bnc#920697]
* The TNEF dissector could go into an infinite loop.
  wnpa-sec-2015-10 CVE-2015-2191 [bnc#920699]
- Further bug fixes and updated protocol support as listed in:
  https://www.wireshark.org/docs/relnotes/wireshark-1.10.13.html


-----------------------------------------
Patch: SUSE-2015-313
Released: Fri Mar 13 00:47:47 2015
Summary: Recommended update for pciutils
Severity: low
References: 837347
Description:
This update for pciutils fixes a memory leak in function get_cache_name().

-----------------------------------------
Patch: SUSE-2015-155
Released: Mon Mar 16 10:21:09 2015
Summary: Security update for libarchive
Severity: moderate
References: 800024,920870,CVE-2013-0211,CVE-2015-2304
Description:

libarchive was updated to fix a directory traversal in the bsdcpio tool, which
allowed attackers supplying crafted archives to overwrite files. (CVE-2015-2304)

Also, a integer overflow was fixed that could also overflow buffers. (CVE-2013-0211)


-----------------------------------------
Patch: SUSE-2015-275
Released: Wed Mar 18 18:21:44 2015
Summary: Recommended update for procps
Severity: low
References: 901202,908516
Description:
This update for procps provides the following fixes:

- Add description of pgrep's --list-full parameter to usage instructions (--help). (bsc#901202)
- Fix handling of arguments to -s option in free(1). (bsc#908516)
- Correct package name in descriptions: procps, not props.

-----------------------------------------
Patch: SUSE-2015-154
Released: Fri Mar 20 14:44:18 2015
Summary: Security update for libzip
Severity: moderate
References: 923240,CVE-2015-2331
Description:
Libzip was updated to fix one security issue.

A zip file with an unusually large number of entries could have caused an integer overflow leading to a write past the heap boundary, crashing the application. (CVE-2015-2331 bnc#923240)


-----------------------------------------
Patch: SUSE-2015-159
Released: Fri Mar 20 15:25:46 2015
Summary: Security update for tcpdump
Severity: moderate
References: 922220,922221,922222,922223,923142,CVE-2014-9140,CVE-2015-0261,CVE-2015-2153,CVE-2015-2154,CVE-2015-2155
Description:
tcpdump was updated to fix five vulnerabilities in protocol printers

When running tcpdump, a remote unauthenticated user could have crashed the application or, potentially, execute arbitrary code by injecting crafted packages into the network.

The following vulnerabilities were fixed:
 * IPv6 mobility printer remote DoS (CVE-2015-0261, bnc#922220)
 * PPP printer remote DoS (CVE-2014-9140, bnc#923142)
 * force printer remote DoS (CVE-2015-2155, bnc#922223)
 * ethernet printer remote DoS (CVE-2015-2154, bnc#922222)
 * tcp printer remote DoS (CVE-2015-2153, bnc#922221)


-----------------------------------------
Patch: SUSE-2015-141
Released: Fri Mar 20 18:36:12 2015
Summary: Optional update for adjtimex
Severity: low
References: 923448
Description:
This patch adds the package adjtimex to SUSE Linux Enterprise 12 (FATE#318579).

-----------------------------------------
Patch: SUSE-2015-146
Released: Mon Mar 23 11:45:22 2015
Summary: Recommended update for timezone
Severity: low
References: 923498
Description:
This update provides the latest timezone information (2015b) for your system, including the following changes:

- Mongolia will start observing DST again in 2015, from the last Saturday in March to the last Saturday in September.
- Palestine will start DST on March 28, not March 27.
- Fix integer overflow bug in reference 'mktime' implementation.

This release also includes changes affecting past time stamps and documentation. For a comprehensive list, refer to the release announcement from ICANN:

- http://mm.icann.org/pipermail/tz-announce/2015-March/000029.html


-----------------------------------------
Patch: SUSE-2015-194
Released: Tue Mar 24 17:21:25 2015
Summary: Security update for gd
Severity: low
References: 923945,CVE-2014-9709
Description:
The graphics drawing library gd was updated to fix one security issue.

The following vulnerability was fixed:
* possible buffer read overflow (CVE-2014-9709)


-----------------------------------------
Patch: SUSE-2015-148
Released: Tue Mar 24 17:24:23 2015
Summary: Security update for MozillaFirefox
Severity: important
References: 923534,CVE-2015-0817,CVE-2015-0818
Description:
MozillaFirefox was updated to the 31.5.3ESR release to fix two security vulnerabilities:

MFSA 2015-29 / CVE-2015-0817: Security researcher ilxu1a reported, through HP Zero Day Initiative's Pwn2Own contest, a flaw in Mozilla's implementation of typed array bounds checking in JavaScript just-in-time compilation (JIT) and its management of bounds checking for heap access. This flaw can be leveraged into the reading and writing of memory allowing for arbitary code execution on the local system.

MFSA 2015-28 / CVE-2015-0818:
Security researcher Mariusz Mlynski reported, through HP Zero Day Initiative's Pwn2Own contest, a method to run arbitrary scripts in a privileged context. This bypassed the same-origin policy protections by using a flaw in the processing of SVG format content navigation.


-----------------------------------------
Patch: SUSE-2015-156
Released: Tue Mar 24 17:51:59 2015
Summary: Security update for pigz
Severity: moderate
References: 913627,CVE-2015-1191
Description:
Pigz, a multi-threaded implementation of gzip, was updated to fix one vulnerability.

The following vulnerability was fixed:

* A crafted file could have caused an unwanted directory traversal on extract (CVE-2015-1191)


-----------------------------------------
Patch: SUSE-2015-186
Released: Tue Mar 31 12:21:25 2015
Summary: Recommended update for python-netifaces
Severity: low
References: 917053
Description:

This update provides python-netifaces 0.10.4, which brings many bug fixes
and enhancements. For a comprehensive list of changes, please refer to the
package's change log.


-----------------------------------------
Patch: SUSE-2015-165
Released: Thu Apr  2 21:58:53 2015
Summary: Security update for MozillaFirefox
Severity: important
References: 925368,CVE-2015-0801,CVE-2015-0807,CVE-2015-0813,CVE-2015-0814,CVE-2015-0815,CVE-2015-0816
Description:
Mozilla Firefox was updated to 31.6.0 ESR to fix five security issues.

The following vulnerabilities were fixed:

* Miscellaneous memory safety hazards (MFSA 2015-30/CVE-2015-0814/CVE-2015-0815)
* Use-after-free when using the Fluendo MP3 GStreamer plugin (MFSA 2015-31/CVE-2015-0813)
* resource:// documents can load privileged pages (MFSA 2015-33/CVE-2015-0816)
* CORS requests should not follow 30x redirections after preflight (MFSA 2015-37/CVE-2015-0807)
* Same-origin bypass through anchor navigation (MFSA 2015-40/CVE-2015-0801)


-----------------------------------------
Patch: SUSE-2015-169
Released: Wed Apr 15 02:34:35 2015
Summary: Recommended update for timezone
Severity: low
References: 927184
Description:
This update provides the latest timezone information (2015c) for your
system, including the following changes:

- Egypt's spring-forward transition in 2015 will be on Thursday, April 30 at 24:00,
  not Friday, April 24 at 00:00.

This release also includes changes affecting past time stamps and documentation.
For a comprehensive list, refer to the release announcement from ICANN:

- http://mm.icann.org/pipermail/tz-announce/2015-April/000030.html


-----------------------------------------
Patch: SUSE-2015-234
Released: Thu Apr 16 15:41:43 2015
Summary: Recommended update for yp-tools
Severity: low
References: 902507
Description:
This update for yp-tools provides the following fixes:

- Add a workround for a Solaris ypbind bug, which let NIS use a 
  french server as NIS server.
- ypchfn/ypchsh are not deprecated and should not call the chfn/chsh
  variants.


-----------------------------------------
Patch: SUSE-2015-224
Released: Mon Apr 20 16:16:31 2015
Summary: Recommended update for vsftpd
Severity: moderate
References: 900326,915522,922538,925963,927612
Description:
vsftpd was updated to improve upon previous fixes and address a regression.

The following bugs have been fixed:

- Handle the deny_file option better. (bnc#900326, bnc#915522)
- Avoid wildcard regressions introduced by previous update. (bnc#922538, bnc#927612)
- stat(2) is sometimes run on wrong path and results in ENOENT. (bnc#925963)


-----------------------------------------
Patch: SUSE-2015-244
Released: Tue Apr 21 16:31:10 2015
Summary: Security update for wpa_supplicant
Severity: moderate
References: 900611,915323,927558,CVE-2014-3686,CVE-2015-0210,CVE-2015-1863
Description:
wpa_supplicant was updated to fix three security issues:

- CVE-2015-0210: wpa_supplicant: broken certificate subject check
  this adds the 'domain_match' config option from upstream
  (additional to the already existing domain_suffix_match)
- CVE-2014-3686: hostapd command execution
- CVE-2015-1863: P2P SSID processing vulnerability


-----------------------------------------
Patch: SUSE-2015-185
Released: Thu Apr 23 13:19:09 2015
Summary: Security update for DirectFB
Severity: important
References: 878345,878349,CVE-2014-2977,CVE-2014-2978
Description:
DirectFB was updated to fix two security issues.

The following vulnerabilities were fixed:

* CVE-2014-2977: Multiple integer signedness errors could allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the Voodoo interface, which triggers a stack-based buffer overflow.
* CVE-2014-2978: Remote attackers could cause a denial of service (crash) and possibly execute arbitrary code via the Voodoo interface, which triggers an out-of-bounds write.


-----------------------------------------
Patch: SUSE-2015-201
Released: Fri Apr 24 03:24:35 2015
Summary: Optional update for libgnomecups
Severity: low
References: 923385
Description:
This update adds the library libgnomecups to SUSE Linux Enterprise Desktop 12.

-----------------------------------------
Patch: SUSE-2015-176
Released: Fri Apr 24 16:50:12 2015
Summary: Security update for java-1_7_0-openjdk, java-1_7_0-openjdk-bootstrap
Severity: moderate
References: 927591,CVE-2015-0458,CVE-2015-0459,CVE-2015-0460,CVE-2015-0469,CVE-2015-0477,CVE-2015-0478,CVE-2015-0480,CVE-2015-0484,CVE-2015-0488,CVE-2015-0491,CVE-2015-0492
Description:
OpenJDK was updated to 2.5.5 - OpenJdk 7u79 to fix security issues and bugs:

The following vulnerabilities were fixed:

* CVE-2015-0458: Deployment: unauthenticated remote attackers could execute arbitrary code via multiple protocols.
* CVE-2015-0459: 2D: unauthenticated remote attackers could execute arbitrary code via multiple protocols.
* CVE-2015-0460: Hotspot: unauthenticated remote attackers could execute arbitrary code via multiple protocols.
* CVE-2015-0469: 2D: unauthenticated remote attackers could execute arbitrary code via multiple protocols.
* CVE-2015-0477: Beans: unauthenticated remote attackers could update, insert or delete some JAVA accessible data via multiple protocols
* CVE-2015-0478: JCE: unauthenticated remote attackers could read some JAVA accessible data via multiple protocols
* CVE-2015-0480: Tools: unauthenticated remote attackers could update, insert or delete some JAVA accessible data via multiple protocols and cause a partial denial of service (partial DOS)
* CVE-2015-0484: JavaFX: unauthenticated remote attackers could read, update, insert or delete access some Java accessible data via multiple protocols and cause a partial denial of service (partial DOS).
* CVE-2015-0488: JSSE: unauthenticated remote attackers could cause a partial denial of service (partial DOS).
* CVE-2015-0491: 2D: unauthenticated remote attackers could execute arbitrary code via multiple protocols.
* CVE-2015-0492: JavaFX: unauthenticated remote attackers could execute arbitrary code via multiple protocols.


-----------------------------------------
Patch: SUSE-2015-174
Released: Sat Apr 25 15:13:10 2015
Summary: Recommended update for timezone
Severity: low
References: 928246
Description:
This update adjusts Egypt's time zone definitions, canceling DST from 2015 onwards.

-----------------------------------------
Patch: SUSE-2015-368
Released: Sat Apr 25 15:54:03 2015
Summary: Optional update for freeglut
Severity: low
References: 921942
Description:
This update adds the library libglut3 to SUSE Linux Enterprise Desktop 12.

-----------------------------------------
Patch: SUSE-2015-210
Released: Tue May 19 18:10:29 2015
Summary: Security update for tigervnc, fltk
Severity: moderate
References: 908738,911577,915782,915810,920969,CVE-2015-0255
Description:
tigervnc and fltk were updated to fix security issues and non-security bugs.

This security issue was fixed:
- CVE-2015-0255: Information leak in the XkbSetGeometry request of X servers (bnc#915810).

These non-security issues were fixed:
- vncviewer-tigervnc does not display mouse cursor shape changes (bnc#908738).
- vnc module for Xorg fails to load on startup, module mismatch (bnc#911577).
- An Xvnc session may become unusable when user logs out (bnc#920969)

fltk was updated to fix one non-security issue:
- vncviewer-tigervnc does not display mouse cursor shape changes (bnc#908738).

Additionally tigervnc was updated to 1.4.1, the contained X server was updated to to 1.15.2.


-----------------------------------------
Patch: SUSE-2015-267
Released: Wed May 20 14:45:05 2015
Summary: Security update for fuse
Severity: moderate
References: 931452,CVE-2015-3202
Description:

This update fixes a vulnerability in fuse that 
did not clear the environment upon execution of external programs. 
CVE-2015-3202 has been assigned to this issue


-----------------------------------------
Patch: SUSE-2015-217
Released: Thu May 21 13:36:30 2015
Summary: Security update for MozillaFirefox
Severity: important
References: 930622,CVE-2015-0797,CVE-2015-2708,CVE-2015-2709,CVE-2015-2710,CVE-2015-2713,CVE-2015-2716
Description:

This update to Firefox 31.7.0 ESR (bsc#930622) fixes the following issues:

  * MFSA 2015-46/CVE-2015-2708/CVE-2015-2709
    (bmo#1120655, bmo#1143299, bmo#1151139, bmo#1152177,
     bmo#1111251, bmo#1117977, bmo#1128064, bmo#1135066,
     bmo#1143194, bmo#1146101, bmo#1149526, bmo#1153688,
     bmo#1155474)
    Miscellaneous memory safety hazards (rv:38.0 / rv:31.7)
  * MFSA 2015-47/CVE-2015-0797
    (bmo#1080995)
    Buffer overflow parsing H.264 video with Linux Gstreamer
  * MFSA 2015-48/CVE-2015-2710
    (bmo#1149542)
    Buffer overflow with SVG content and CSS
  * MFSA 2015-51/CVE-2015-2713
    (bmo#1153478)
    Use-after-free during text processing with vertical text
    enabled
  * MFSA 2015-54/CVE-2015-2716
    (bmo#1140537)
    Buffer overflow when parsing compressed XML


-----------------------------------------
Patch: SUSE-2015-268
Released: Wed May 27 19:30:37 2015
Summary: Security update for stunnel
Severity: moderate
References: 931517,CVE-2015-3644
Description:

This update fixes an authentication bypass when using
the 'redirect' option (CVE-2015-3644, bsc#931517, backport from v5.17).


-----------------------------------------
Patch: SUSE-2015-266
Released: Wed Jun  3 13:23:28 2015
Summary: Security update for wireshark
Severity: moderate
References: 930689,930691,CVE-2015-3811,CVE-2015-3812,CVE-2015-3813,CVE-2015-3814
Description:
Wireshark was updated to 1.10.14 to fix four security issues.

The following vulnerabilities have been fixed:

* CVE-2015-3811: The WCP dissector could crash while decompressing data. (wnpa-sec-2015-14)
* CVE-2015-3812: The X11 dissector could leak memory. (wnpa-sec-2015-15)
* CVE-2015-3813: The packet reassembly code could leak memory. (wnpa-sec-2015-16)
* CVE-2015-3814: The IEEE 802.11 dissector could go into an infinite loop. (wnpa-sec-2015-17)


-----------------------------------------
Patch: SUSE-2015-247
Released: Wed Jun  3 13:57:56 2015
Summary: Security update for patch
Severity: moderate
References: 904519,913678,915328,915329,CVE-2015-1196,CVE-2015-1395,CVE-2015-1396
Description:
The GNU patch utility was updated to 2.7.5 to fix three security issues and one non-security bug.

The following vulnerabilities were fixed:

* CVE-2015-1196: directory traversal flaw when handling git-style patches. This could allow an attacker to overwrite arbitrary files by tricking the user into applying a specially crafted patch. (bsc#913678)
* CVE-2015-1395: directory traversal flaw when handling patches which rename files. This could allow an attacker to overwrite arbitrary files by tricking the user into applying a specially crafted patch. (bsc#915328) 
* CVE-2015-1396: directory traversal flaw via symbolic links. This could allow an attacker to overwrite arbitrary files by tricking the user into applying a by applying a specially crafted patch. (bsc#915329)

The following bug was fixed:

* bsc#904519:  Function names in hunks (from diff -p) are now preserved in  reject files.


-----------------------------------------
Patch: SUSE-2015-297
Released: Mon Jun  8 10:08:18 2015
Summary: Security update for strongswan
Severity: moderate
References: 933591,CVE-2015-4171
Description:
Strongswan was updated to fix one security issue.

The following vulnerability was fixed:

* CVE-2015-4171: Rogue servers were able to authenticate themselves with certificate issued by any CA the client trusts, to gain user credentials from a client in certain IKEv2 setups (bsc#933591)


-----------------------------------------
Patch: SUSE-2015-380
Released: Mon Jun  8 10:51:44 2015
Summary: Security update for libqt4
Severity: moderate
References: 847880,921999,927806,927807,927808,929688,CVE-2015-0295,CVE-2015-1858,CVE-2015-1859,CVE-2015-1860
Description:
The libqt4 library was updated to fix several security and non security issues.

The following vulnerabilities were fixed:
- bsc#921999: CVE-2015-0295: division by zero when processing malformed BMP files
- bsc#927806: CVE-2015-1858: segmentation fault in BMP Qt Image Format Handling
- bsc#927807: CVE-2015-1859: segmentation fault in ICO Qt Image Format Handling
- bsc#927808: CVE-2015-1860: segmentation fault in GIF Qt Image Format Handling

The following non-secuirty issues were fixed:
- bsc#929688: Critical Problem in Qt Network Stack
- bsc#847880: kde/qt rendering error in qemu cirrus i586
- Update use-freetype-default.diff to use same method as with
  libqt5-qtbase package: Qt itself already does runtime check
  whether subpixel rendering is available, but only when
  FT_CONFIG_OPTION_SUBPIXEL_RENDERING is defined. Thus it is enough
  to only remove that condition
- The -devel subpackage requires Mesa-devel, not only at build time 
- Fixed compilation on SLE_11_SP3 by making it build against
  Mesa-devel on that system
- Replace patch l-qclipboard_fix_recursive.patch with
  qtcore-4.8.5-qeventdispatcher-recursive.patch. The later one 
  seems to work better and really resolves the issue in LibreOffice
- Added kde4_qt_plugin_path.patch, so kde4 plugins are magically
  found/known outside kde4 enviroment/session
- added _constraints. building took up to 7GB of disk space on
  s390x, and more than 6GB on x86_64 
- Add 3 patches for Qt bugs to make LibreOffice KDE4 file
  picker work properly again:
  * Add glib-honor-ExcludeSocketNotifiers-flag.diff (QTBUG-37380)
  * Add l-qclipboard_fix_recursive.patch (QTBUG-34614)
  * Add l-qclipboard_delay.patch (QTBUG-38585)

-----------------------------------------
Patch: SUSE-2015-334
Released: Tue Jun  9 17:09:01 2015
Summary: Recommended update for tcsh
Severity: low
References: 901076
Description:
This update for tcsh fixes locking of .history files when multiple instances of the shell run simultaneously.

-----------------------------------------
Patch: SUSE-2015-264
Released: Wed Jun 10 16:31:35 2015
Summary: Security update for cups
Severity: critical
References: 924208,CVE-2012-5519,CVE-2015-1158,CVE-2015-1159
Description:
The following issues are fixed by this update:

* CVE-2012-5519: privilege escalation via cross-site scripting
  and bad print job submission used to replace cupsd.conf on server (bsc#924208).
* CVE-2015-1158: Improper Update of Reference Count
* CVE-2015-1159: Cross-Site Scripting



-----------------------------------------
Patch: SUSE-2015-296
Released: Thu Jun 11 15:46:59 2015
Summary: Security update for libgcrypt
Severity: moderate
References: 896202,896435,898003,899524,900275,900276,905483,920057,928740,929919,CVE-2014-3591
Description:

This update of libgcrypt fixes one security issue and brings various FIPS 140-2 related improvements.

libgcrypt now uses ciphertext blinding for Elgamal decryption (CVE-2014-3591)

FIPS 140-2 related changes:
* The library performs its self-tests when the module is complete (the -hmac file is also installed).

* Added a NIST 800-90a compliant DRBG.

* Change DSA key generation to be FIPS 186-4 compliant.

* Change RSA key generation to be FIPS 186-4 compliant.

* Enable HW support in fips mode (bnc#896435)

* Make DSA selftest use 2048 bit keys (bnc#898003)

* Added ECDSA selftests and add support for it to the CAVS testing
  framework (bnc#896202)

* Various CAVS testing improvements.


-----------------------------------------
Patch: SUSE-2015-376
Released: Thu Jun 11 22:43:24 2015
Summary: Recommended update for libyajl
Severity: low
References: 921152
Description:
This update for libyajl fixes parsing of VM disk statistics in xentop.

-----------------------------------------
Patch: SUSE-2015-283
Released: Tue Jun 16 15:02:53 2015
Summary: Recommended update for timezone
Severity: low
References: 928841,934654
Description:

This update provides the latest timezone information (2015e) for your
system, including the following changes:

- Morocco will suspend DST from 2015-06-14 03:00 through 2015-07-19 02:00,
  not 06-13 and 07-18.
- Assume Cayman Islands will observe DST starting next year, using US rules.
- Fix post-install script to overwrite the temporary file when attempting
  to create /etc/localtime as a hard link. (bsc#928841)

This release also includes changes affecting past time stamps and documentation.
For a comprehensive list, refer to the release announcements from ICANN:

http://mm.icann.org/pipermail/tz-announce/2015-June/000032.html
http://mm.icann.org/pipermail/tz-announce/2015-April/000031.html


-----------------------------------------
Patch: SUSE-2015-302
Released: Wed Jun 17 20:53:57 2015
Summary: Recommended update for libcpuset
Severity: moderate
References: 916803
Description:
This update fixes an issue that made cpuset_latestcpu() return error always.

-----------------------------------------
Patch: SUSE-2015-326
Released: Thu Jun 18 09:23:54 2015
Summary: Recommended update for git
Severity: low
References: 919105
Description:
This update for git fixes a syntax error in the csh completion script.

-----------------------------------------
Patch: SUSE-2015-309
Released: Thu Jun 18 10:53:17 2015
Summary: Recommended update for ipsec-tools
Severity: moderate
References: 905780,928313
Description:

This update allows ipsec-tools racoon to operate in FIPS mode.

- MD5 algorithm usage has been replaced by SHA1 usage in a hash table, and
  for a remotely driven part allowed bsc#905780

- The minimum RSA public exponent in plainrsa-gen has been raised from 3
  to 65567. bsc#928313


-----------------------------------------
Patch: SUSE-2015-310
Released: Fri Jun 19 21:15:14 2015
Summary: Recommended update for mcstrans
Severity: moderate
References: 935217
Description:

This update corrects the security context label of /run/setrans. The incorrect
label prevented mcstrans from starting up.

-----------------------------------------
Patch: SUSE-2015-328
Released: Wed Jun 24 13:28:14 2015
Summary: Security update for postgresql93
Severity: moderate
References: 931972,931973,931974,CVE-2015-3165,CVE-2015-3166,CVE-2015-3167
Description:

PostgreSQL was updated to the security and bugfix release 9.3.8 including 9.3.7.

Security issues fixed:

* CVE-2015-3165, bsc#931972: Avoid possible crash when client disconnects just before the authentication timeout expires.
* CVE-2015-3166, bsc#931973: Consistently check for failure of the printf() family of functions.
* CVE-2015-3167, bsc#931974: In contrib/pgcrypto, uniformly report decryption failures as 'Wrong key or corrupt data'

Bugs fixed:

* Protect against wraparound of multixact member IDs.
* Avoid failures while fsync'ing data directory during crash restart.
* Fix pg_get_functiondef() to show functions' LEAKPROOF property, if set.
* Allow libpq to use TLS protocol versions beyond v1.

- For the full release notes, see the following two URLs
  http://www.postgresql.org/docs/9.3/static/release-9-3-8.html
  http://www.postgresql.org/docs/9.3/static/release-9-3-7.html


-----------------------------------------
Patch: SUSE-2015-383
Released: Thu Jul  2 11:46:55 2015
Summary: Recommended update for aide
Severity: moderate
References: 932421
Description:
The AIDE intrusion detection software was updated to work when the system operates in FIPS mode.


-----------------------------------------
Patch: SUSE-2015-411
Released: Fri Jul  3 22:39:42 2015
Summary: Recommended update for openvpn
Severity: moderate
References: 914166,928802
Description:
This update for OpenVPN provides the following fixes:

- Use correct SHA digest data length and, when running in FIPS mode,
  use AES instead of the disallowed blowfish crypto. (bsc#914166)
- Mention actual plugin/doc dirs in openvpn(8) man page.
- Build with large file support on 32 bit systems.
- Applied backport patch to permit TLS 1.1/1.2 version negotiation
  instead of sticking to TLS 1.0 exclusively. (bsc#928802)


-----------------------------------------
Patch: SUSE-2015-330
Released: Tue Jul 14 20:28:10 2015
Summary: Security update for MozillaFirefox, mozilla-nspr, mozilla-nss
Severity: important
References: 856315,935033,935979,CVE-2015-2721,CVE-2015-2722,CVE-2015-2724,CVE-2015-2725,CVE-2015-2726,CVE-2015-2728,CVE-2015-2730,CVE-2015-2733,CVE-2015-2734,CVE-2015-2735,CVE-2015-2736,CVE-2015-2737,CVE-2015-2738,CVE-2015-2739,CVE-2015-2740,CVE-2015-2743,CVE-2015-4000
Description:
MozillaFirefox, mozilla-nspr and  mozilla-nss were updated to fix 17 security issues.

For more details please check the changelogs.
- CVE-2015-2724/CVE-2015-2725/CVE-2015-2726: Miscellaneous memory safety hazards (bsc#935979).
- CVE-2015-2728: Type confusion in Indexed Database Manager (bsc#935979).
- CVE-2015-2730: ECDSA signature validation fails to handle some signatures correctly (bsc#935979).
- CVE-2015-2722/CVE-2015-2733: Use-after-free in workers while using XMLHttpRequest (bsc#935979).
- CVE-2015-2734/CVE-2015-2735/CVE-2015-2736/CVE-2015-2737/CVE-2015-2738/CVE-2015-2739/CVE-2015-2740: Vulnerabilities found through code inspection (bsc#935979).
- CVE-2015-2743: Privilege escalation in PDF.js (bsc#935979).
- CVE-2015-4000: NSS accepts export-length DHE keys with regular DHE cipher suites (bsc#935033).
- CVE-2015-2721: NSS incorrectly permits skipping of ServerKeyExchange (bsc#935979).


-----------------------------------------
Patch: SUSE-2015-361
Released: Wed Jul 15 08:26:27 2015
Summary: Recommended update for gcc48, libffi48, libgcj48
Severity: moderate
References: 889990,917169,919274,922534,924525,924687,927993,930176,934689
Description:

The system compiler gcc48 was updated to the GCC 4.8.5 release, fixing
a lot of bugs and bringing some improvements.

It includes various bug fixes found by our customers:

* Fixes bogus integer overflow in constant expression.  [bnc#934689]
* Fixes ICE with atomics on aarch64.  [bnc#930176]
* Includes fix for -imacros bug.  [bnc#917169]
* Includes fix for incorrect -Warray-bounds warnings.  [bnc#919274]
* Includes updated -mhotpatch for s390x.  [bnc#924525]
* Includes fix for ppc64le issue with doubleword vector extract.  [bnc#924687]
* Includes patches to allow building against ISL 0.14.
* Backport rework of the memory allocator for C++ exceptions used in OOM situations.  [bnc#889990]
* Fix a reload issue on S390 (GCC PR66306).
* Avoid accessing invalid memory when passing aggregates by value. [bnc#922534]
  

-----------------------------------------
Patch: SUSE-2015-352
Released: Thu Jul 23 05:36:45 2015
Summary: Security update for java-1_7_0-openjdk
Severity: important
References: 938248,CVE-2015-2590,CVE-2015-2596,CVE-2015-2597,CVE-2015-2601,CVE-2015-2613,CVE-2015-2619,CVE-2015-2621,CVE-2015-2625,CVE-2015-2627,CVE-2015-2628,CVE-2015-2632,CVE-2015-2637,CVE-2015-2638,CVE-2015-2664,CVE-2015-2808,CVE-2015-4000,CVE-2015-4729,CVE-2015-4731,CVE-2015-4732,CVE-2015-4733,CVE-2015-4736,CVE-2015-4748,CVE-2015-4749,CVE-2015-4760
Description:
OpenJDK was updated to 2.6.1 - OpenJDK 7u85 to fix security issues and bugs.

The following vulnerabilities were fixed:

* CVE-2015-2590: Easily exploitable vulnerability in the Libraries component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability could have resulted in unauthorized Operating System takeover including arbitrary code execution.
* CVE-2015-2596: Difficult to exploit vulnerability in the Hotspot component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability could have resulted in unauthorized update, insert or delete access to some Java accessible data.
* CVE-2015-2597: Easily exploitable vulnerability in the Install component requiring logon to Operating System. Successful attack of this vulnerability could have resulted in unauthorized Operating System takeover including arbitrary code execution.
* CVE-2015-2601: Easily exploitable vulnerability in the JCE component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability could have resulted in unauthorized read access to a subset of Java accessible data.
* CVE-2015-2613: Easily exploitable vulnerability in the JCE component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability could have resulted in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data.
* CVE-2015-2619: Easily exploitable vulnerability in the 2D component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability could have resulted in unauthorized read access to a subset of Java accessible data.
* CVE-2015-2621: Easily exploitable vulnerability in the JMX component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability could have resulted in unauthorized read access to a subset of Java accessible data.
* CVE-2015-2625: Very difficult to exploit vulnerability in the JSSE component allowed successful unauthenticated network attacks via SSL/TLS. Successful attack of this vulnerability could have resulted in unauthorized read access to a subset of Java accessible data.
* CVE-2015-2627: Very difficult to exploit vulnerability in the Install component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability could have resulted in unauthorized read access to a subset of Java accessible data.
* CVE-2015-2628: Easily exploitable vulnerability in the CORBA component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability could have resulted in unauthorized Operating System takeover including arbitrary code execution.
* CVE-2015-2632: Easily exploitable vulnerability in the 2D component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability could have resulted in unauthorized read access to a subset of Java accessible data.
* CVE-2015-2637: Easily exploitable vulnerability in the 2D component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability could have resulted in unauthorized read access to a subset of Java accessible data.
* CVE-2015-2638: Easily exploitable vulnerability in the 2D component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability could have resulted in unauthorized Operating System takeover including arbitrary code execution.
* CVE-2015-2664: Difficult to exploit vulnerability in the Deployment component requiring logon to Operating System. Successful attack of this vulnerability could have resulted in unauthorized Operating System takeover including arbitrary code execution.
* CVE-2015-2808: Very difficult to exploit vulnerability in the JSSE component allowed successful unauthenticated network attacks via SSL/TLS. Successful attack of this vulnerability could have resulted in unauthorized update, insert or delete access to some Java accessible data as well as read access to a subset of Java accessible data.
* CVE-2015-4000: Very difficult to exploit vulnerability in the JSSE component allowed successful unauthenticated network attacks via SSL/TLS. Successful attack of this vulnerability could have resulted in unauthorized update, insert or delete access to some Java accessible data as well as read access to a subset of Java Embedded accessible data. 
* CVE-2015-4729: Very difficult to exploit vulnerability in the Deployment component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability could have resulted in unauthorized update, insert or delete access to some Java SE accessible data as well as read access to a subset of Java SE accessible data.
* CVE-2015-4731: Easily exploitable vulnerability in the JMX component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability could have resulted in unauthorized Operating System takeover including arbitrary code execution.
* CVE-2015-4732: Easily exploitable vulnerability in the Libraries component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability could have resulted in unauthorized Operating System takeover including arbitrary code execution.
* CVE-2015-4733: Easily exploitable vulnerability in the RMI component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability could have resulted in unauthorized Operating System takeover including arbitrary code execution.
* CVE-2015-4736: Difficult to exploit vulnerability in the Deployment component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability could have resulted in unauthorized Operating System takeover including arbitrary code execution.
* CVE-2015-4748: Very difficult to exploit vulnerability in the Security component allowed successful unauthenticated network attacks via OCSP. Successful attack of this vulnerability could have resulted in unauthorized Operating System takeover including arbitrary code execution.
* CVE-2015-4749: Difficult to exploit vulnerability in the JNDI component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability could have resulted in unauthorized ability to cause a partial denial of service (partial DOS).
* CVE-2015-4760: Easily exploitable vulnerability in the 2D component allowed successful unauthenticated network attacks via multiple protocols. Successful attack of this vulnerability could have resulted in unauthorized Operating System takeover including arbitrary code execution.

-----------------------------------------
Patch: SUSE-2015-422
Released: Tue Jul 28 06:25:51 2015
Summary: The Toolchain module containing GCC 5.2
Severity: low
References: 926412,936050,937823
Description:

This update contains the release of the new SUSE Linux Enterprise Toolchain module.

Its major feature is the GNU Compiler Collection 5.2, please see
https://gcc.gnu.org/gcc-5/changes.html for important changes.

This update also includes a version update of binutils to 2.25 release branch
to provide features and bugfixes.

Following features have been added to binutils:

* IBM zSeries z13 hardware support (fate#318036, bnc#936050).
* various IBM Power8 improvements (fate#318238, bnc#926412).
* AVX512 support on the Intel EM64T platform (fate#318520).


The GNU Debugger gdb was updated to version 7.9.1 bringing
various features and lots of bugfixes. Also IBM zSeries z13 hardware
support has been added to gdb. (fate#318039)


-----------------------------------------
Patch: SUSE-2015-397
Released: Fri Jul 31 16:22:11 2015
Summary: Recommended update for openwsman, wsmancli
Severity: low
References: 901882,910037,911088
Description:

This update for openwsman and wsmancli provides the following fixes:

- Fix parsing of vendor namespaces defined in the configuration file. (bsc#910037)
- Make SSL protocols configurable: introduce new option 'ssl_disabled_protocols'. (bsc#901882)
- Store client option properties as list to keep order. (bsc#911088)
- Fix memory leaks in bindings.
- Change wsmancli to use the Openwsman API instead of internal data structures to set properties. (bsc#911088)


-----------------------------------------
Patch: SUSE-2015-442
Released: Fri Jul 31 17:25:19 2015
Summary: Security update for perl-XML-LibXML
Severity: moderate
References: 929237,CVE-2015-3451
Description:

perl-XML-LibXML was updated to fix the expand_entities option to be preserved in all cases. (CVE-2015-3451).


-----------------------------------------
Patch: SUSE-2015-437
Released: Fri Aug  7 11:05:22 2015
Summary: Security update for p7zip
Severity: moderate
References: 912878,CVE-2015-1038
Description:

      This update fixes the following security issue:
      - CVE-2015-1038: directory traversal vulnerability [bnc#912878]

       This could for the overwriting of arbitrary files through uncompressing a crafted archive, with the privileges of the user running 7z


-----------------------------------------
Patch: SUSE-2015-416
Released: Tue Aug 11 18:18:42 2015
Summary: Recommended update for timezone
Severity: low
References: 941249
Description:

This update provides the latest timezone information (2015f) for your
system, including the following changes:

- North Korea switches to +0830 on 2015-08-15. The abbreviation remains 'KST'.
- Uruguay no longer observes DST.
- Moldova starts and ends DST at 00:00 UTC, not at 01:00 UTC.

This release also includes changes affecting past time stamps, documentation
and some minor code fixes. For a comprehensive list, refer to the release
announcement from ICANN:

http://mm.icann.org/pipermail/tz-announce/2015-August/000033.html


-----------------------------------------
Patch: SUSE-2015-395
Released: Wed Aug 12 12:33:47 2015
Summary: Security update for MozillaFirefox
Severity: critical
References: 940918,CVE-2015-4495
Description:


This security update (bsc#940918) fixes the following issues:

  * MFSA 2015-78: (CVE-2015-4495, bmo#1178058): Same origin violation
  * Remove PlayPreview registration from PDF Viewer (bmo#1179262)


-----------------------------------------
Patch: SUSE-2015-500
Released: Mon Aug 17 11:36:33 2015
Summary: Security update for libgcrypt
Severity: moderate
References: 920057,938343,CVE-2015-0837
Description:

This update fixes the following issues:

Security:
* Fixed data-dependent timing variations in modular exponentiation
  [related to CVE-2015-0837, Last-Level Cache Side-Channel Attacks
   are Practical] (bsc#920057)

Bugfixes:
* don't drop privileges when locking secure memory (bsc#938343)


-----------------------------------------
Patch: SUSE-2015-531
Released: Fri Aug 21 13:44:15 2015
Summary: Recommended update for cronie
Severity: low
References: 900604
Description:
cronie has been updated to fix loading of PAM environment from the pam_env module.

-----------------------------------------
Patch: SUSE-2015-498
Released: Fri Aug 21 13:44:31 2015
Summary: Recommended update for mailx
Severity: low
References: 922543
Description:
This update for mailx provides the following fixes:

- Allow Form Feed as valid characters within mail messages. (bsc#922543)


-----------------------------------------
Patch: SUSE-2015-600
Released: Fri Aug 21 14:46:46 2015
Summary: Recommended update for tftp
Severity: low
References: 793883,928283
Description:
This update for tftp provides the following fixes:

- Prevent buffer overflow in handling of \x macro. (bsc#793883)
- For \i and \x, expand v6-mapped addresses as native IPv4. (bsc#793883)
- Respond from the destination address taken from the first udp
  message's ancillary data. (bsc#928283)


-----------------------------------------
Patch: SUSE-2015-520
Released: Fri Aug 21 14:57:27 2015
Summary: Recommended update for mgetty
Severity: low
References: 914661
Description:
This update for mgetty adds systemd service files for mgetty and vgetty.

-----------------------------------------
Patch: SUSE-2015-595
Released: Fri Aug 21 15:06:37 2015
Summary: Recommended update for os-prober
Severity: moderate
References: 892364
Description:
This update for os-proper improves probing of operating systems on btrfs volumes for grub2.

-----------------------------------------
Patch: SUSE-2015-605
Released: Fri Aug 21 15:20:22 2015
Summary: Recommended update for alsa-utils
Severity: low
References: 940950
Description:
This update for alsa-utils supresses alsactl invocations on systems without
sound cards.

-----------------------------------------
Patch: SUSE-2015-573
Released: Fri Aug 21 15:55:14 2015
Summary: Recommended update for libXi
Severity: moderate
References: 940529
Description:
This update provides libXi 1.7.4, which brings several fixes and
enhancements:

- Fix handling of request elements for the XIChangeHierarchy(XIAddMaster) 
  request.
- Fix display locking inside _XIPassiveGrabDevice for error paths.
- Fix locking problems in XIGrabTouchBegin(), XIAllowTouchEvents()
  and XIUngrabTouchBegin().
- Remove fallback for _XEatDataWords, no longer needed on SLE 12.


-----------------------------------------
Patch: SUSE-2015-684
Released: Fri Aug 21 15:55:28 2015
Summary: Recommended update for sblim-cmpi-sysfs
Severity: low
References: 927344
Description:
This update for sblim-cmpi-sysfs fixes enumeration of devices represented as symlinks in /sys/block.

-----------------------------------------
Patch: SUSE-2015-567
Released: Fri Aug 21 20:54:55 2015
Summary: Recommended update for LibVNCServer
Severity: low
References: 893343,904676
Description:
This update adds libvncclient.so.0 to SUSE Linux Enterprise Desktop 12.

It also marks the old LibVNCServer as obsolete in libvncclient0 package. The old
version included binaries, devel and runtime libs. But nothing removes the old
package, which leads to file conflicts during upgrade if linuxvnc.rpm is not on
the install media.


-----------------------------------------
Patch: SUSE-2015-473
Released: Tue Aug 25 16:06:40 2015
Summary: Security update for tiff
Severity: moderate
References: 914890,916927,CVE-2014-8127,CVE-2014-8128,CVE-2014-8129,CVE-2014-8130,CVE-2014-9655
Description:

LibTiff was updated to the 4.0.4 stable release fixing various security
issues and bugs.

These security issues were fixed:
- CVE-2014-8127: Out-of-bounds write (bnc#914890).
- CVE-2014-8128: Out-of-bounds write (bnc#914890).
- CVE-2014-8129: Out-of-bounds write (bnc#914890).
- CVE-2014-8130: Out-of-bounds write (bnc#914890).
- CVE-2014-9655: Access of uninitialized memory (bnc#916927).


-----------------------------------------
Patch: SUSE-2015-530
Released: Wed Aug 26 03:07:07 2015
Summary: Recommended update for sed
Severity: low
References: 933029
Description:

This update for sed fixes the behavior of --follow-symlinks when reading from the
standard input (stdin).

The behavior of 'sed --follow-symlinks -' is now identical to 'sed -'. In both
cases, sed will read from the standard input and no longer from a file named '-'.


-----------------------------------------
Patch: SUSE-2015-546
Released: Wed Aug 26 21:16:17 2015
Summary: Recommended update for tar
Severity: low
References: 940120
Description:

This update for tar enables support for ACLs, extended attributes (Xattr) and SELinux.


-----------------------------------------
Patch: SUSE-2015-561
Released: Tue Sep  1 21:05:50 2015
Summary: Recommended update for kbd
Severity: low
References: 915473
Description:

This update fixes loading of some console keymaps, including the default keymap
used by 'loadkeys -d'.


-----------------------------------------
Patch: SUSE-2015-472
Released: Wed Sep  2 08:25:03 2015
Summary: Security update for MozillaFirefox, mozilla-nss
Severity: important
References: 940806,943557,943558,943608,CVE-2015-4473,CVE-2015-4474,CVE-2015-4475,CVE-2015-4478,CVE-2015-4479,CVE-2015-4484,CVE-2015-4485,CVE-2015-4486,CVE-2015-4487,CVE-2015-4488,CVE-2015-4489,CVE-2015-4491,CVE-2015-4492,CVE-2015-4495,CVE-2015-4497,CVE-2015-4498
Description:

Mozilla Firefox was updated to version 38.2.1 ESR to fix several
critical and non critical security vulnerabilities.

- Firefox was updated to 38.2.1 ESR (bsc#943608)
  * MFSA 2015-94/CVE-2015-4497 (bsc#943557)
    Use-after-free when resizing canvas element during restyling
  * MFSA 2015-95/CVE-2015-4498 (bsc#943558)
    Add-on notification bypass through data URLs

- Firefox was updated to 38.2.0 ESR (bsc#940806)
  * MFSA 2015-78/CVE-2015-4495
    (bmo#1178058, bmo#1179262)
    Same origin violation and local file stealing via PDF reader
  * MFSA 2015-79/CVE-2015-4473/CVE-2015-4474
    (bmo#1143130, bmo#1161719, bmo#1177501, bmo#1181204,
     bmo#1184068, bmo#1188590, bmo#1146213, bmo#1178890,
     bmo#1182711)
    Miscellaneous memory safety hazards (rv:40.0 / rv:38.2)
  * MFSA 2015-80/CVE-2015-4475
    (bmo#1175396)
    Out-of-bounds read with malformed MP3 file
  * MFSA 2015-82/CVE-2015-4478
    (bmo#1105914)
    Redefinition of non-configurable JavaScript object properties
  * MFSA 2015-83/CVE-2015-4479
    (bmo#1185115, bmo#1144107, bmo#1170344, bmo#1186718)
    Overflow issues in libstagefright
  * MFSA 2015-87/CVE-2015-4484
    (bmo#1171540)
    Crash when using shared memory in JavaScript
  * MFSA 2015-88/CVE-2015-4491
    (bmo#1184009)
    Heap overflow in gdk-pixbuf when scaling bitmap images
  * MFSA 2015-89/CVE-2015-4485/CVE-2015-4486
    (bmo#1177948, bmo#1178148)
    Buffer overflows on Libvpx when decoding WebM video
  * MFSA 2015-90/CVE-2015-4487/CVE-2015-4488/CVE-2015-4489
    (bmo#1176270, bmo#1182723, bmo#1171603)
    Vulnerabilities found through code inspection
  * MFSA 2015-92/CVE-2015-4492
    (bmo#1185820)
    Use-after-free in XMLHttpRequest with shared workers

Mozilla NSS switched the CKBI ABI from 1.98 to 2.4, which is what Firefox 38ESR uses.


-----------------------------------------
Patch: SUSE-2015-502
Released: Thu Sep  3 14:53:31 2015
Summary: Optional update for mozjs17
Severity: low
References: 944331
Description:
This update for mozjs17 includes fixes specific to the ARM64 architecture.

-----------------------------------------
Patch: SUSE-2015-606
Released: Tue Sep  8 17:59:56 2015
Summary: Recommended update for blktrace
Severity: low
References: 939307
Description:
This update fixes blktrace to run on systems with more than 512 CPUs.

-----------------------------------------
Patch: SUSE-2015-651
Released: Mon Sep 14 21:12:59 2015
Summary: Recommended update for nss_ldap
Severity: low
References: 934444
Description:
This update for nss_ldap provides the following fixes:

- Fix an LDAP connection issue in one-shot operation mode. (bsc#934444)


-----------------------------------------
Patch: SUSE-2015-568
Released: Wed Sep 16 13:30:12 2015
Summary: Recommended update for grep
Severity: low
References: 920386
Description:
This update for grep fixes undefined behaviour with -P and non-utf-8 data.

-----------------------------------------
Patch: SUSE-2015-661
Released: Wed Sep 16 13:54:20 2015
Summary: Security update for wireshark
Severity: moderate
References: 935158,941500,CVE-2015-3813,CVE-2015-6241,CVE-2015-6242,CVE-2015-6243,CVE-2015-6244,CVE-2015-6245,CVE-2015-6246,CVE-2015-6247,CVE-2015-6248,CVE-2015-6249
Description:

Wireshark has been updated to 1.12.7. (FATE#319388)

The following vulnerabilities have been fixed:
* Wireshark could crash when adding an item to the protocol tree. wnpa-sec-2015-21 CVE-2015-6241
* Wireshark could attempt to free invalid memory. wnpa-sec-2015-22 CVE-2015-6242
* Wireshark could crash when searching for a protocol dissector. wnpa-sec-2015-23 CVE-2015-6243
* The ZigBee dissector could crash. wnpa-sec-2015-24 CVE-2015-6244
* The GSM RLC/MAC dissector could go into an infinite loop. wnpa-sec-2015-25 CVE-2015-6245
* The WaveAgent dissector could crash. wnpa-sec-2015-26 CVE-2015-6246
* The OpenFlow dissector could go into an infinite loop. wnpa-sec-2015-27 CVE-2015-6247
* Wireshark could crash due to invalid ptvcursor length checking. wnpa-sec-2015-28 CVE-2015-6248
* The WCCP dissector could crash. wnpa-sec-2015-29 CVE-2015-6249
* Further bug fixes and updated protocol support as listed in:
    https://www.wireshark.org/docs/relnotes/wireshark-1.12.7.html 

Also a fix from 1.12.6 in GSM DTAP was backported. (bnc#935158)


-----------------------------------------
Patch: SUSE-2015-571
Released: Wed Sep 16 15:27:13 2015
Summary: Recommended update for make
Severity: low
References: 934131
Description:
This update for make provides the following fixes:

- Force recomputing .VARIABLES when a variable was made undefined. (bsc#934131)


-----------------------------------------
Patch: SUSE-2015-640
Released: Wed Sep 23 20:20:09 2015
Summary: Security update for MozillaFirefox, mozilla-nspr
Severity: important
References: 947003,CVE-2015-4500,CVE-2015-4501,CVE-2015-4506,CVE-2015-4509,CVE-2015-4511,CVE-2015-4517,CVE-2015-4519,CVE-2015-4520,CVE-2015-4521,CVE-2015-4522,CVE-2015-7174,CVE-2015-7175,CVE-2015-7176,CVE-2015-7177,CVE-2015-7180
Description:

Mozilla Firefox was updated to version 38.3.0 ESR (bsc#947003),
fixing bugs and security issues.

* MFSA 2015-96/CVE-2015-4500/CVE-2015-4501
  Miscellaneous memory safety hazards (rv:41.0 / rv:38.3)
* MFSA 2015-101/CVE-2015-4506
  Buffer overflow in libvpx while parsing vp9 format video
* MFSA 2015-105/CVE-2015-4511
  Buffer overflow while decoding WebM video
* MFSA 2015-106/CVE-2015-4509
  Use-after-free while manipulating HTML media content
* MFSA 2015-110/CVE-2015-4519
  Dragging and dropping images exposes final URL after
  redirects
* MFSA 2015-111/CVE-2015-4520
  Errors in the handling of CORS preflight request headers
* MFSA 2015-112/CVE-2015-4517/CVE-2015-4521/CVE-2015-4522
  CVE-2015-7174/CVE-2015-7175/CVE-2015-7176/CVE-2015-7177
  CVE-2015-7180
  Vulnerabilities found through code inspection

More details can be found on
	https://www.mozilla.org/en-US/security/advisories/

The Mozilla NSPR library was updated to version 4.10.9, fixing various bugs.


-----------------------------------------
Patch: SUSE-2015-664
Released: Fri Sep 25 03:11:36 2015
Summary: Recommended update for openhpi
Severity: moderate
References: 916934
Description:
This update for openhpi provides the following fixes:

- Make configuration file's permissions more strict. (bsc#916934)
- Fix a build issue that prevented openhpi from building when MD5
  is disabled in net-snmp.


-----------------------------------------
Patch: SUSE-2015-673
Released: Fri Sep 25 16:02:40 2015
Summary: Recommended update for tgt
Severity: moderate
References: 828214,934642,945604,947346
Description:
This update for tgt provides the following fixes:

- Allow passing of command line options via sysconfig. (bsc#828214)
- Fix tgtd start-up by giving tgtd time to open the socket. (bsc#934642)
- Fix rctgtd systemd service symlink. (bsc#945604)
- Drop invalid ExecStopPre entry from tgtd.service. (bsc#947346)


-----------------------------------------
Patch: SUSE-2015-652
Released: Sat Sep 26 00:34:52 2015
Summary: Recommended update for openvpn
Severity: moderate
References: 941569,946977
Description:

This update provides OpenVPN 2.3.8, which brings several fixes and enhancements.
For a comprehensive list of changes between 2.3.2 and 2.3.8, please refer to the
release notes in https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn23.


-----------------------------------------
Patch: SUSE-2015-704
Released: Sat Sep 26 10:51:29 2015
Summary: Security update for vorbis-tools
Severity: moderate
References: 943795,CVE-2015-6749
Description:

vorbis-tools was updated to fix a buffer overflow in aiff_open() that could be triggered
by opening prepared malicious files. (CVE-2015-6749, bsc#943795).


-----------------------------------------
Patch: SUSE-2015-607
Released: Mon Sep 28 12:18:17 2015
Summary: Recommended update for python3
Severity: moderate
References: 935856
Description:

This update fixes a python3 testsuite failure due to the openssl LOGJAM fixes.  (bsc#935856)
It also fixes a python3-base build issue on aarch64.

(It is not meant for public channels)


-----------------------------------------
Patch: SUSE-2015-682
Released: Fri Oct  2 19:17:57 2015
Summary: Recommended update for timezone
Severity: low
References: 948227,948568
Description:

This update provides the latest timezone information (2015g) for your
system, including the following changes:

- Turkey's 2015 fall-back transition is scheduled for Nov. 8, not Oct. 25.
- Norfolk moves from +1130 to +1100 on 2015-10-04 at 02:00 local time.
- Fiji's 2016 fall-back transition is scheduled for January 17, not 24.
- Fort Nelson, British Columbia will not fall back on 2015-11-01.  It has 
  effectively been on MST (-0700) since it advanced its clocks on 2015-03-08.
  Add new zone America/Fort_Nelson.

This release also includes changes affecting past time stamps, documentation
and some minor code fixes. For a comprehensive list, refer to the release
announcement from ICANN:

http://mm.icann.org/pipermail/tz/2015-October/022728.html


-----------------------------------------
Patch: SUSE-2015-756
Released: Wed Oct  7 07:07:48 2015
Summary: Security update for gcc48
Severity: moderate
References: 945842,947772,947791,948168,949000,CVE-2015-5276
Description:
This update for GCC 4.8 provides the following fixes:

- Fix C++11 std::random_device short read issue that could lead to predictable
  randomness. (CVE-2015-5276, bsc#945842)
- Fix linker segmentation fault when building SLOF on ppc64le. (bsc#949000)
- Fix no_instrument_function attribute handling on PPC64 with -mprofile-kernel. (bsc#947791)
- Fix internal compiler error with aarch64 target using PCH and builtin functions. (bsc#947772)
- Fix libffi issues on aarch64. (bsc#948168)


-----------------------------------------
Patch: SUSE-2015-663
Released: Wed Oct  7 16:01:20 2015
Summary: Optional update for binutils
Severity: low
References: 949066
Description:

ARM64 (aarch64) binaries produced by binutils 2.25 gold linker had incorrect (4k)
section alignment. As a result, those binaries could not be mapped when being
executed on a SLE 12 kernel.

This update adjusts the section alignment to 64k, as required by the ABI.


-----------------------------------------
Patch: SUSE-2015-797
Released: Sat Oct 10 04:42:14 2015
Summary: Recommended update for LibreOffice
Severity: moderate
References: 470073,806250,829430,86241,87222,890735,900186,900877,907966,910805,910806,913042,914911,915996,916181,918852,919409,926375,929793,934423,936188,936190,940838,943075,945692,CVE-2014-8146,CVE-2014-8147,CVE-2015-1774,CVE-2015-4551,CVE-2015-5212,CVE-2015-5213,CVE-2015-5214
Description:

This update brings LibreOffice to version 5.0.2, a major version
update.

It brings lots of new features, bugfixes and also security fixes.

Features as seen on http://www.libreoffice.org/discover/new-features/

* LibreOffice 5.0 ships an impressive number of new features for
  its spreadsheet module, Calc: complex formulae image cropping, new
  functions, more powerful conditional formatting, table addressing
  and much more. Calc's blend of performance and features makes it
  an enterprise-ready, heavy duty spreadsheet application capable of
  handling all kinds of workload for an impressive range of use cases
* New icons, major improvements to menus and sidebar : no other
  LibreOffice version has looked that good and helped you be creative and
  get things done the right way. In addition, style management is now more
  intuitive thanks to the visualization of styles right in the interface.
* LibreOffice 5 ships with numerous improvements to document import and
  export filters for MS Office, PDF, RTF, and more. You can now timestamp
  PDF documents generated with LibreOffice and enjoy enhanced document
  conversion fidelity all around.

The Pentaho Flow Reporting Engine is now added and used.

Security issues fixed:

* CVE-2014-8146: The resolveImplicitLevels function in common/ubidi.c
  in the Unicode Bidirectional Algorithm implementation in ICU4C in
  International Components for Unicode (ICU) before 55.1 did not properly
  track directionally isolated pieces of text, which allowed remote
  attackers to cause a denial of service (heap-based buffer overflow)
  or possibly execute arbitrary code via crafted text.
* CVE-2014-8147: The resolveImplicitLevels function in common/ubidi.c
  in the Unicode Bidirectional Algorithm implementation in ICU4C in
  International Components for Unicode (ICU) before 55.1 used an integer
  data type that is inconsistent with a header file, which allowed remote
  attackers to cause a denial of service (incorrect malloc followed by
  invalid free) or possibly execute arbitrary code via crafted text.
* CVE-2015-4551: An arbitrary file disclosure vulnerability in Libreoffice
  and Openoffice Calc and Writer was fixed.
* CVE-2015-1774: The HWP filter in LibreOffice allowed remote attackers
  to cause a denial of service (crash) or possibly execute arbitrary code
  via a crafted HWP document, which triggered an out-of-bounds write.
* CVE-2015-5212: A LibreOffice 'PrinterSetup Length' integer underflow
  vulnerability could be used by attackers supplying documents to execute
  code as the user opening the document.
* CVE-2015-5213: A LibreOffice 'Piece Table Counter' invalid check design
  error vulnerability allowed attackers supplying documents to execute
  code as the user opening the document.
* CVE-2015-5214: Multiple Vendor LibreOffice Bookmark Status Memory
  Corruption Vulnerability allowed attackers supplying documents to execute
  code as the user opening the document.
  

-----------------------------------------
Patch: SUSE-2015-798
Released: Wed Oct 14 17:26:11 2015
Summary: Recommended update for openwsman
Severity: moderate
References: 929021
Description:

This update for openwsman adds support for a new option in the client configuration:
curlopt_nosignal. If this option is enabled in openwsman_client.conf, openwsman will
set the CURLOPT_NOSIGNAL flag in libcurl.

It's recommended to enable this option when running multi-threaded applications linked
against libwsman.


-----------------------------------------
Patch: SUSE-2015-737
Released: Thu Oct 15 11:02:24 2015
Summary: Recommended update for tgt
Severity: low
References: 949468
Description:
This update for tgt contains the following changes:

- Update systemd service file, based on the
  latest upstream (bnc#949468)

- Remove duplicate inclusion of target configuration
  from /etc/tgt/conf.d in /etc/tgt/targets.conf,
  modifying patch setup-tgt-conf.d.patch


-----------------------------------------
Patch: SUSE-2015-702
Released: Thu Oct 15 17:12:14 2015
Summary: Recommended update for libzip
Severity: low
References: 949461
Description:
This update for libzip releases libzip2-32bit to the SLE-12 codestream.

-----------------------------------------
Patch: SUSE-2015-760
Released: Mon Oct 19 15:06:01 2015
Summary: Recommended update for sysstat
Severity: low
References: 935144,944951
Description:
This update for sysstat provides the following fixes:

- Fix missing ',' in JSON output before 'file-utc-time' parameter. (bsc#944951)
- Add libsensors4-devel to BuildRequires on x86_64, so that sensors support is included. (bsc#935144)


-----------------------------------------
Patch: SUSE-2015-767
Released: Wed Oct 21 10:36:53 2015
Summary: Optional update for postgresql94
Severity: moderate
References: 941886,945706,949669,949670,950486,CVE-2015-5288,CVE-2015-5289
Description:

This update delivers PostgreSQL 9.4.5 to the SUSE Linux Enterprise 12 codebase.

Major enhancements:

* Security and bugfix release 9.4.5:
  * CVE-2015-5289, bsc#949670: json or jsonb input values
    constructed from arbitrary user input can crash the PostgreSQL
    server and cause a denial of service.
  * CVE-2015-5288, bsc#949669: The crypt() function included with
    the optional pgCrypto extension could be exploited to read a
    few additional bytes of memory. No working exploit for this
    issue has been developed.

* Add jsonb, a more capable and efficient data type for storing JSON data
* Add new SQL command ALTER SYSTEM for changing postgresql.conf configuration file entries
* Reduce lock strength for some ALTER TABLE commands
* Allow materialized views to be refreshed without blocking concurrent reads
* Add support for logical decoding of WAL data, to allow database changes to be streamed out in a customizable format
* Allow background worker processes to be dynamically registered, started and terminated
* For the full release notse, see:
  http://www.postgresql.org/docs/current/static/release-9-4-5.html
* Move systemd related stuff and user creation to postgresql-init (bsc#950486)
* Remove some obsolete %suse_version conditionals
* Adjust build time dependencies.
* Fix some more rpmlint warnings.
* Relax dependency on libpq to major version.
* Make sure that plpgsql.h gets installed, because pldebugger
  needs it.
* Move ~postgres/.bash_profile to postgresql-server to avoid a
  file conflict between the versioned server packages.

Full release notes can be found here:
http://www.postgresql.org/docs/9.4/static/release-9-4.html


The existing client libraries libecpg6 and libpq5 are now taken from the postgresql94 build instgead
of the postgresql93 build.


-----------------------------------------
Patch: SUSE-2015-759
Released: Thu Oct 22 09:44:27 2015
Summary: Security update for polkit
Severity: moderate
References: 912889,933922,935119,939246,943816,950114,CVE-2015-3218,CVE-2015-3255,CVE-2015-3256,CVE-2015-4625
Description:

polkit was updated to the 0.113 release, fixing security issues and bugs.

Security issues fixed:
* Fixes CVE-2015-4625, a local privilege escalation due to predictable
  authentication session cookie values. Thanks to Tavis Ormandy, Google Project
  Zero for reporting this issue. For the future, authentication agents are
  encouraged to use PolkitAgentSession instead of using the D-Bus agent response
  API directly. (bsc#935119)
* Fixes CVE-2015-3256, various memory corruption vulnerabilities in use of the
  JavaScript interpreter, possibly leading to local privilege escalation.
  (bsc#943816)
* Fixes CVE-2015-3255, a memory corruption vulnerability in handling duplicate
  action IDs, possibly leading to local privilege escalation. Thanks to
  Laurent Bigonville for reporting this issue. (bsc#939246)
* Fixes CVE-2015-3218, which allowed any local user to crash polkitd. Thanks to
  Tavis Ormandy, Google Project Zero, for reporting this issue. (bsc#933922)

Other issues fixed:
* On systemd-213 and later, the 'active' state is shared across all sessions of
  an user, instead of being tracked separately.
* pkexec, when not given a program to execute, runs the users shell by
  default.
* Fixed shutdown problems on powerpc64le (bsc#950114)
* polkit had a memory leak (bsc#912889)


-----------------------------------------
Patch: SUSE-2015-777
Released: Sun Oct 25 21:43:35 2015
Summary: Recommended update for vacation
Severity: low
References: 944326
Description:

This update for the vacation tool fixes handling of 'From' mail headers that are
too long and can be folded in two lines.


-----------------------------------------
Patch: SUSE-2015-781
Released: Tue Oct 27 11:39:52 2015
Summary: Security update for java-1_7_0-openjdk
Severity: important
References: 951376,CVE-2015-4734,CVE-2015-4803,CVE-2015-4805,CVE-2015-4806,CVE-2015-4835,CVE-2015-4840,CVE-2015-4842,CVE-2015-4843,CVE-2015-4844,CVE-2015-4860,CVE-2015-4872,CVE-2015-4881,CVE-2015-4882,CVE-2015-4883,CVE-2015-4893,CVE-2015-4903,CVE-2015-4911
Description:
java-1_7_0-openjdk was updated to version 7u91 to fix 17 security issues.

These security issues were fixed:
- CVE-2015-4843: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allowed remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries (bsc#951376).
- CVE-2015-4842: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allowed remote attackers to affect confidentiality via vectors related to JAXP (bsc#951376).
- CVE-2015-4840: Unspecified vulnerability in Oracle Java SE 7u85 and 8u60, and Java SE Embedded 8u51, allowed remote attackers to affect confidentiality via unknown vectors related to 2D (bsc#951376).
- CVE-2015-4872: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allowed remote attackers to affect integrity via unknown vectors related to Security (bsc#951376).
- CVE-2015-4860: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allowed remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI, a different vulnerability than CVE-2015-4883 (bsc#951376).
- CVE-2015-4844: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allowed remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D (bsc#951376).
- CVE-2015-4883: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allowed remote attackers to affect confidentiality, integrity, and availability via vectors related to RMI, a different vulnerability than CVE-2015-4860 (bsc#951376).
- CVE-2015-4893: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allowed remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2015-4803 and CVE-2015-4911 (bsc#951376).
- CVE-2015-4911: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allowed remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2015-4803 and CVE-2015-4893 (bsc#951376).
- CVE-2015-4882: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allowed remote attackers to affect availability via vectors related to CORBA (bsc#951376).
- CVE-2015-4881: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allowed remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2015-4835 (bsc#951376).
- CVE-2015-4734: Unspecified vulnerability in Oracle Java SE 6u101, 7u85 and 8u60, and Java SE Embedded 8u51, allowed remote attackers to affect confidentiality via vectors related to JGSS (bsc#951376).
- CVE-2015-4806: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allowed remote attackers to affect confidentiality and integrity via unknown vectors related to Libraries (bsc#951376).
- CVE-2015-4805: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allowed remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Serialization (bsc#951376).
- CVE-2015-4803: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51; and JRockit R28.3.7 allowed remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2015-4893 and CVE-2015-4911 (bsc#951376).
- CVE-2015-4835: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allowed remote attackers to affect confidentiality, integrity, and availability via vectors related to CORBA, a different vulnerability than CVE-2015-4881 (bsc#951376).
- CVE-2015-4903: Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60, and Java SE Embedded 8u51, allowed remote attackers to affect confidentiality via vectors related to RMI (bsc#951376).
  

-----------------------------------------
Patch: SUSE-2015-776
Released: Fri Oct 30 08:06:58 2015
Summary: Recommended update for libyaml
Severity: low
References: 952625
Description:
This update adjusts libyaml's packaging to require pkg-config at build time.

-----------------------------------------
Patch: SUSE-2015-799
Released: Tue Nov  3 19:11:32 2015
Summary: Recommended update for libxkbfile, libxkbcommon
Severity: low
References: 952403
Description:

This update adds xkeyboard-config as a runtime dependency of libxkbcommon and libxkbfile.
This is needed to ensure the keymap datasets will be available even on systems installed
with the Minimal pattern.


-----------------------------------------
Patch: SUSE-2015-807
Released: Thu Nov  5 07:48:32 2015
Summary: Security update for MozillaFirefox, mozilla-nspr, mozilla-nss
Severity: important
References: 908275,952810,CVE-2015-4513,CVE-2015-7181,CVE-2015-7182,CVE-2015-7183,CVE-2015-7188,CVE-2015-7189,CVE-2015-7193,CVE-2015-7194,CVE-2015-7196,CVE-2015-7197,CVE-2015-7198,CVE-2015-7199,CVE-2015-7200
Description:

This Mozilla Firefox, NSS and NSPR update fixes the following security
and non security issues.

- mozilla-nspr was updated to version 4.10.10 (bsc#952810)
  * MFSA 2015-133/CVE-2015-7183
    (bmo#1205157)
    NSPR memory corruption issues

- mozilla-nss was updated to 3.19.2.1 (bsc#952810)
  * MFSA 2015-133/CVE-2015-7181/CVE-2015-7182
    (bmo#1192028, bmo#1202868)
    NSS and NSPR memory corruption issues

- MozillaFirefox was updated to 38.4.0 ESR (bsc#952810)
  * MFSA 2015-116/CVE-2015-4513
    (bmo#1107011, bmo#1191942, bmo#1193038, bmo#1204580,
     bmo#1204669, bmo#1204700, bmo#1205707, bmo#1206564,
     bmo#1208665, bmo#1209471, bmo#1213979)
    Miscellaneous memory safety hazards (rv:42.0 / rv:38.4)
  * MFSA 2015-122/CVE-2015-7188
    (bmo#1199430)
    Trailing whitespace in IP address hostnames can bypass
    same-origin policy
  * MFSA 2015-123/CVE-2015-7189
    (bmo#1205900)
    Buffer overflow during image interactions in canvas
  * MFSA 2015-127/CVE-2015-7193
    (bmo#1210302)
    CORS preflight is bypassed when non-standard Content-Type
    headers are received
  * MFSA 2015-128/CVE-2015-7194
    (bmo#1211262)
    Memory corruption in libjar through zip files
  * MFSA 2015-130/CVE-2015-7196
    (bmo#1140616)
    JavaScript garbage collection crash with Java applet
  * MFSA 2015-131/CVE-2015-7198/CVE-2015-7199/CVE-2015-7200
    (bmo#1204061, bmo#1188010, bmo#1204155)
    Vulnerabilities found through code inspection
  * MFSA 2015-132/CVE-2015-7197
    (bmo#1204269)
    Mixed content WebSocket policy bypass through workers
  * MFSA 2015-133/CVE-2015-7181/CVE-2015-7182/CVE-2015-7183
    (bmo#1202868, bmo#1192028, bmo#1205157)
    NSS and NSPR memory corruption issues
- fix printing on landscape media (bsc#908275)


-----------------------------------------
Patch: SUSE-2015-838
Released: Thu Nov 12 18:02:41 2015
Summary: Recommended update for tgt
Severity: low
References: 950946
Description:

This update for tgt improves integration with SystemD. The tgt daemon will now
inform SystemD after it finishes its initialization procedure. This ensures
that other services which depend on iSCSI targets will be started only after
tgtd is ready.


-----------------------------------------
Patch: SUSE-2015-854
Released: Wed Nov 18 10:40:35 2015
Summary: Security update for libpng12
Severity: moderate
References: 952051,954980,CVE-2015-7981,CVE-2015-8126
Description:
The libpng12 package was updated to fix the following security issues:

- CVE-2015-8126: Fixed a buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions (bsc#954980).
- CVE-2015-7981: Fixed an out-of-bound read (bsc#952051).


-----------------------------------------
Patch: SUSE-2015-855
Released: Wed Nov 18 10:41:00 2015
Summary: Security update for libpng16
Severity: moderate
References: 954980,CVE-2015-8126
Description:
The libpng16 package was updated to fix the following security issue:

- CVE-2015-8126: Fixed a buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions (bsc#954980).


-----------------------------------------
Patch: SUSE-2015-865
Released: Thu Nov 19 18:01:11 2015
Summary: Recommended update for os-prober
Severity: low
References: 931955
Description:
This update fixes os-prober to not attempt to mount btrfs snapshots.

-----------------------------------------
Patch: SUSE-2015-979
Released: Wed Dec 16 11:09:30 2015
Summary: Recommended update for ntp
Severity: important
References: 954982
Description:

This update for ntp fixes synchronization of local clocks. This issue was
introduced with the update to ntp 4.2.8p4 in SLE 12-SP1.


-----------------------------------------
Patch: SUSE-2015-983
Released: Wed Dec 16 13:34:32 2015
Summary: Recommended update for tgt
Severity: moderate
References: 922526,954801
Description:
This update for tgt provides the following fixes:

- Silence bogus error message when backing-store directory is not present. (bsc#954801)
- Handle possible target removal while accessing it. (bsc#922526)


-----------------------------------------
Patch: SUSE-2015-913
Released: Wed Dec 16 17:35:46 2015
Summary: Recommended update for ImageMagick
Severity: low
References: 948017,950872
Description:

This update for ImageMagick fixes usage of compression when converting image files
to PDF format. This can significantly reduce the size of the PDFs generated.


-----------------------------------------
Patch: SUSE-2015-863
Released: Thu Dec 17 16:02:51 2015
Summary: Recommended update for tar
Severity: moderate
References: 950785
Description:

The tar(1) archiving utility has been updated to fix one issue:

When the --acls option is used, explicitly set or delete default ACLs for extracted
directories. Prior to this update, arbitrary default ACLs based on standard file
permissions were being created.


-----------------------------------------
Patch: SUSE-2015-857
Released: Sat Dec 19 12:22:51 2015
Summary: Recommended update for git
Severity: moderate
References: 948969,CVE-2015-7545
Description:
The git package was updated to fix the following security issue:

- CVE-2015-7545: Fix remote code execution with recursive fetch of submodules (bsc#948969).


-----------------------------------------
Patch: SUSE-2015-1001
Released: Mon Dec 21 17:19:22 2015
Summary: Security update for MozillaFirefox
Severity: important
References: 959277,CVE-2015-7201,CVE-2015-7202,CVE-2015-7205,CVE-2015-7210,CVE-2015-7212,CVE-2015-7213,CVE-2015-7214,CVE-2015-7222
Description:

MozillaFirefox was updated to version 38.5.0 ESR to fix the following issues: 

* MFSA 2015-134/CVE-2015-7201/CVE-2015-7202
  Miscellaneous memory safety hazards (rv:43.0 / rv:38.5)
* MFSA 2015-138/CVE-2015-7210
  A use-after-free in WebRTC when datachannel is used after being
  destroyed
* MFSA 2015-139/CVE-2015-7212
  An integer overflow allocating extremely large textures
* MFSA 2015-145/CVE-2015-7205
  A underflow found through code inspection
* MFSA 2015-146/CVE-2015-7213
  A integer overflow in MP4 playback in 64-bit versions
* MFSA 2015-147/CVE-2015-7222
  Integer underflow and buffer overflow processing MP4 metadata
  in libstagefright
* MFSA 2015-149/CVE-2015-7214
  Cross-site reading attack through data and view-source URIs


-----------------------------------------
Patch: SUSE-2015-934
Released: Mon Dec 21 20:00:03 2015
Summary: Security update for strongswan
Severity: important
References: 953817,CVE-2015-8023
Description:
The strongswan package was updated to fix the following security issue:

- CVE-2015-8023: Fixed an authentication bypass vulnerability in the eap-mschapv2 plugin (bsc#953817).


-----------------------------------------
Patch: SUSE-2015-922
Released: Tue Dec 22 08:44:25 2015
Summary: Security update for gpg2
Severity: moderate
References: 918089,918090,952347,955753,CVE-2015-1606,CVE-2015-1607
Description:
The gpg2 package was updated to fix the following security and non security issues:

- CVE-2015-1606: Fixed invalid memory read using a garbled keyring (bsc#918089).
- CVE-2015-1607: Fixed memcpy with overlapping ranges (bsc#918090).

- bsc#955753: Fixed a regression of 'gpg --recv' due to keyserver import filter (also boo#952347). 


-----------------------------------------
Patch: SUSE-2015-869
Released: Wed Dec 23 10:01:16 2015
Summary: Recommended update for libksba
Severity: moderate
References: 926826
Description:
The libksba package was updated to fix the following security issues:

- Fixed an integer overflow, an out of bounds read and a stack overflow issues (bsc#926826).


-----------------------------------------
Patch: SUSE-2015-862
Released: Wed Dec 23 17:40:51 2015
Summary: Recommended update for acl
Severity: moderate
References: 945899
Description:
This update for acl provides the following fixes:

- Fix segmentation fault of getfacl -e on overly long group name.
- Make sure that acl_from_text() always sets errno when it fails.
- Fix memory and resource leaks in getfacl.


-----------------------------------------
Patch: SUSE-2015-846
Released: Fri Dec 25 11:51:23 2015
Summary: Security update for libsndfile
Severity: moderate
References: 953516,953519,953521,CVE-2014-9756,CVE-2015-7805,CVE-2015-8075
Description:
The libsndfile package was updated to fix the following security issue:

- CVE-2014-9756: Fixed a divide by zero problem that can lead to a Denial of Service (DoS) (bsc#953521).
- CVE-2015-7805: Fixed heap overflow issue (bsc#953516).
- CVE-2015-8075: Fixed heap overflow issue (bsc#953519).


-----------------------------------------
Patch: SUSE-2015-870
Released: Tue Dec 29 16:55:52 2015
Summary: Security update for xscreensaver
Severity: moderate
References: 952062,CVE-2015-8025
Description:
The xscreensaver package was updated to fix the following security issue:

- CVE-2015-8025: Fixed a crash when hot-swapping monitors while locked (bsc#952062).


-----------------------------------------
Patch: SUSE-2015-890
Released: Wed Dec 30 14:03:49 2015
Summary: Security update for LibVNCServer
Severity: moderate
References: 854151,897031,CVE-2014-6051,CVE-2014-6052,CVE-2014-6053,CVE-2014-6054,CVE-2014-6055
Description:
The LibVNCServer package was updated to fix the following security issues:

- bsc#897031: fix several security issues:
  * CVE-2014-6051: Integer overflow in MallocFrameBuffer() on client side.
  * CVE-2014-6052: Lack of malloc() return value checking on client side.
  * CVE-2014-6053: Server crash on a very large ClientCutText message.
  * CVE-2014-6054: Server crash when scaling factor is set to zero.
  * CVE-2014-6055: Multiple stack overflows in File Transfer feature.
- bsc#854151: Restrict the SSL cipher suite.


-----------------------------------------
Patch: SUSE-2016-2
Released: Mon Jan  4 10:18:31 2016
Summary: Security update for libmspack
Severity: moderate
References: 934524,934525,934526,934527,934528,934529,CVE-2014-9732,CVE-2015-4467,CVE-2015-4468,CVE-2015-4469,CVE-2015-4470,CVE-2015-4471,CVE-2015-4472
Description:
libmspack was updated to fix security issues.

These security issues were fixed:
* CVE-2014-9732: The cabd_extract function in cabd.c in libmspack did not properly maintain decompression callbacks in certain cases where an invalid file follows a valid file, which allowed remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted CAB archive (bnc#934524).
* CVE-2015-4467: The chmd_init_decomp function in chmd.c in libmspack did not properly validate the reset interval, which allowed remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted CHM file (bnc#934525).
* CVE-2015-4468: Multiple integer overflows in the search_chunk function in chmd.c in libmspack allowed remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted CHM file (bnc#934526).
* CVE-2015-4469: The chmd_read_headers function in chmd.c in libmspack did not validate name lengths, which allowed remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted CHM file (bnc#934526).
* CVE-2015-4470: Off-by-one error in the inflate function in mszipd.c in libmspack allowed remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted CAB archive (bnc#934527).
* CVE-2015-4471: Off-by-one error in the lzxd_decompress function in lzxd.c in libmspack allowed remote attackers to cause a denial of service (buffer under-read and application crash) via a crafted CAB archive (bnc#934528).
* CVE-2015-4472: Off-by-one error in the READ_ENCINT macro in chmd.c in libmspack allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted CHM file (bnc#934529).
  

-----------------------------------------
Patch: SUSE-2016-16
Released: Tue Jan  5 15:13:34 2016
Summary: Security update for libpng16
Severity: moderate
References: 954980,CVE-2015-8126
Description:

  This update fixes the following security issue:

  * CVE-2015-8126 Multiple buffer overflows in the png_set_PLTE and png_get_PLTE functions
    allow remote attackers to cause a denial of service (application crash) or possibly have 
    unspecified other impact [bsc#954980]


-----------------------------------------
Patch: SUSE-2016-17
Released: Tue Jan  5 16:00:46 2016
Summary: Recommended update for libnet
Severity: low
References: 949391
Description:

This update for libnet ensures the library is always built with AF_PACKET support
enabled.


-----------------------------------------
Patch: SUSE-2016-31
Released: Thu Jan  7 10:18:49 2016
Summary: Recommended update for os-prober
Severity: moderate
References: 910654,947487,953987,954225,956337,957018
Description:

This update for os-prober fixes the following issues: 

- Detect Operating System on default sub-volume in btrfs snapshot. (bsc#954225)
- Fix detection of Windows 8. (bsc#910654)
- Detect Windows 10 installations. (bsc#947487)
- Also skip legacy grub if /boot/grub2/grub.cfg is present. (bsc#956337)
- Fix failure to detect operating system in btrfs root trees. (bsc#957018)
- Optimize identification of Linux distributions, avoiding expensive file
  system traversal. (bsc#953987)


-----------------------------------------
Patch: SUSE-2016-33
Released: Thu Jan  7 10:52:11 2016
Summary: Security update for libpng15
Severity: moderate
References: 954980,CVE-2015-8126
Description:

      This update fixes the following security issue:

      * CVE-2015-8126 Possible buffer overflow vulnerabilities in png_get_PLTE and png_set_PLTE functions could cause a denial of service (application crash) or possibly have an unspecified impact [bsc#954980]



-----------------------------------------
Patch: SUSE-2016-37
Released: Thu Jan  7 13:40:33 2016
Summary: Security update for libpng12
Severity: moderate
References: 954980,CVE-2015-8126
Description:

  This update fixes the following security issue
  * CVE-2015-8126 Multiple buffer overflows in the png_set_PLTE and png_get_PLTE functions
    allow remote attackers to cause a denial of service (application crash) or possibly have 
    unspecified other impact [bsc#954980]
  

-----------------------------------------
Patch: SUSE-2016-46
Released: Fri Jan  8 12:37:34 2016
Summary: Recommended update for gcr, gnome-keyring, libgcrypt, libsecret
Severity: moderate
References: 932232
Description:

This update for gcr, gnome-keyring, libgcrypt, libsecret fixes issues when the system
operates in FIPS mode.

The various GNOME libraries and tool have been changed to use the default libgcrypt
allocators.

GNOME keyring was changed not to use MD5 anymore.

libgcrypt was adjusted to free the DRBG on exit to avoid crashes.


-----------------------------------------
Patch: SUSE-2016-61
Released: Tue Jan 12 15:44:14 2016
Summary: Recommended update for deltarpm
Severity: low
References: 948504
Description:
This update for deltarpm provides the following fixes:

- Fix off-by-one error in delta generation code which could lead to a segmentation
  fault in some rare circumstances. (bsc#948504)
- Return error rather than crashing if memory allocation fails.
- Add newline in missing prelink error.
- Do not finish applydeltarpm jobs when in the middle of a request.


-----------------------------------------
Patch: SUSE-2016-76
Released: Wed Jan 13 15:18:08 2016
Summary: Security update for wireshark
Severity: low
References: 950437,960382,CVE-2015-7830,CVE-2015-8711,CVE-2015-8712,CVE-2015-8713,CVE-2015-8714,CVE-2015-8715,CVE-2015-8716,CVE-2015-8717,CVE-2015-8718,CVE-2015-8719,CVE-2015-8720,CVE-2015-8721,CVE-2015-8722,CVE-2015-8723,CVE-2015-8724,CVE-2015-8725,CVE-2015-8726,CVE-2015-8727,CVE-2015-8728,CVE-2015-8729,CVE-2015-8730,CVE-2015-8731,CVE-2015-8732,CVE-2015-8733
Description:

This update contains Wireshark 1.12.9 and fixes the following issues:

* CVE-2015-7830: pcapng file parser could crash while copying an interface filter (bsc#950437)
* CVE-2015-8711: epan/dissectors/packet-nbap.c in the NBAP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate conversation data, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted packet.
* CVE-2015-8712: The dissect_hsdsch_channel_info function in epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark 1.12.x before 1.12.9 does not validate the number of PDUs, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
* CVE-2015-8713: epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark 1.12.x before 1.12.9 does not properly reserve memory for channel ID mappings, which allows remote attackers to cause a denial of service (out-of-bounds memory access and application crash) via a crafted packet.
* CVE-2015-8714: The dissect_dcom_OBJREF function in epan/dissectors/packet-dcom.c in the DCOM dissector in Wireshark 1.12.x before 1.12.9 does not initialize a certain IPv4 data structure, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
* CVE-2015-8715: epan/dissectors/packet-alljoyn.c in the AllJoyn dissector in Wireshark 1.12.x before 1.12.9 does not check for empty arguments, which allows remote attackers to cause a denial of service (infinite loop) via a crafted packet.
* CVE-2015-8716: The init_t38_info_conv function in epan/dissectors/packet-t38.c in the T.38 dissector in Wireshark 1.12.x before 1.12.9 does not ensure that a conversation exists, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
* CVE-2015-8717: The dissect_sdp function in epan/dissectors/packet-sdp.c in the SDP dissector in Wireshark 1.12.x before 1.12.9 does not prevent use of a negative media count, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
* CVE-2015-8718: Double free vulnerability in epan/dissectors/packet-nlm.c in the NLM dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1, when the 'Match MSG/RES packets for async NLM' option is enabled, allows remote attackers to cause a denial of service (application crash) via a crafted packet.
* CVE-2015-8719: The dissect_dns_answer function in epan/dissectors/packet-dns.c in the DNS dissector in Wireshark 1.12.x before 1.12.9 mishandles the EDNS0 Client Subnet option, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
* CVE-2015-8720: The dissect_ber_GeneralizedTime function in epan/dissectors/packet-ber.c in the BER dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 improperly checks an sscanf return value, which allows remote attackers to cause a denial of service (application crash) via a crafted packet.
* CVE-2015-8721: Buffer overflow in the tvb_uncompress function in epan/tvbuff_zlib.c in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 allows remote attackers to cause a denial of service (application crash) via a crafted packet with zlib compression.
* CVE-2015-8722: epan/dissectors/packet-sctp.c in the SCTP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the frame pointer, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted packet.
* CVE-2015-8723: The AirPDcapPacketProcess function in epan/crypt/airpdcap.c in the 802.11 dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the relationship between the total length and the capture length, which allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) via a crafted
* CVE-2015-8724: The AirPDcapDecryptWPABroadcastKey function in epan/crypt/airpdcap.c in the 802.11 dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not verify the WPA broadcast key length, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet.
* CVE-2015-8725: The dissect_diameter_base_framed_ipv6_prefix function in epan/dissectors/packet-diameter.c in the DIAMETER dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the IPv6 prefix length, which allows remote attackers to cause a denial of service (stack-based buffer overflow and application crash) via a crafted packet.
* CVE-2015-8726: wiretap/vwr.c in the VeriWave file parser in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate certain signature and Modulation and Coding Scheme (MCS) data, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted file.
* CVE-2015-8727: The dissect_rsvp_common function in epan/dissectors/packet-rsvp.c in the RSVP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not properly maintain request-key data, which allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted packet.
* CVE-2015-8728: The Mobile Identity parser in (1) epan/dissectors/packet-ansi_a.c in the ANSI A dissector and (2) epan/dissectors/packet-gsm_a_common.c in the GSM A dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 improperly uses the tvb_bcd_dig_to_wmem_packet_str function, which allows remote attackers to cause a denial of service (buffer overflow and application crash) via a crafted packet.
* CVE-2015-8729: The ascend_seek function in wiretap/ascendtext.c in the Ascend file parser in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not ensure the presence of a '\0' character at the end of a date string, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted file.
* CVE-2015-8730: epan/dissectors/packet-nbap.c in the NBAP dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the number of items, which allows remote attackers to cause a denial of service (invalid read operation and application crash) via a crafted packet.
* CVE-2015-8731: The dissct_rsl_ipaccess_msg function in epan/dissectors/packet-rsl.c in the RSL dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not reject unknown TLV types, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet.
* CVE-2015-8732: The dissect_zcl_pwr_prof_pwrprofstatersp function in epan/dissectors/packet-zbee-zcl-general.c in the ZigBee ZCL dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the Total Profile Number field, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet.
* CVE-2015-8733: The ngsniffer_process_record function in wiretap/ngsniffer.c in the Sniffer file parser in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate the relationships between record lengths and record header lengths, which allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted file.



-----------------------------------------
Patch: SUSE-2016-98
Released: Mon Jan 18 10:20:53 2016
Summary: Security update for mozilla-nss
Severity: moderate
References: 959888,CVE-2015-7575
Description:
This update contains mozilla-nss 3.19.2.2 and fixes the following security issue:

  - CVE-2015-7575: MD5 signatures accepted within TLS 1.2 ServerKeyExchange in server signature (bsc#959888).


-----------------------------------------
Patch: SUSE-2016-104
Released: Mon Jan 18 18:38:06 2016
Summary: Security update for tiff
Severity: moderate
References: 942690,960341,CVE-2015-7554
Description:

This update to tiff 4.0.6 fixes the following issues:

- CVE-2015-7554: Out-of-bounds write in the thumbnail and tiffcmp tools allowed attacker to cause a denial of service or have unspecified further impact (bsc#960341)
- bsc#942690: potential out-of-bound write in NeXTDecode() (#2508)


-----------------------------------------
Patch: SUSE-2016-136
Released: Fri Jan 22 11:35:41 2016
Summary: Security update for giflib
Severity: moderate
References: 949160,960319,CVE-2015-7555
Description:

This update for giflib fixes the following issues:

- CVE-2015-7555: Heap overflow in giffix (bsc#960319)
- bsc#949160: Fix a memory leak


-----------------------------------------
Patch: SUSE-2016-153
Released: Mon Jan 25 17:34:10 2016
Summary: Security update for ecryptfs-utils
Severity: moderate
References: 920160,962052,CVE-2014-9687,CVE-2016-1572
Description:

This update for ecryptfs-utils fixes the following issues:

- CVE-2016-1572: A local user could have escalated privileges by mounting over special filesystems (bsc#962052)
- CVE-2014-9687: A default salt value reduced complexity of offline precomputation attacks (bsc#920160)


-----------------------------------------
Patch: SUSE-2016-155
Released: Mon Jan 25 18:10:54 2016
Summary: Recommended update for polkit
Severity: moderate
References: 954139
Description:

The previous version update of polkit to fix security and stability issues brought
a small regression in session activeness detection. This update reverts the small
part responsible for the regression.


-----------------------------------------
Patch: SUSE-2016-160
Released: Wed Jan 27 11:55:37 2016
Summary: Security update for java-1_8_0-openjdk
Severity: critical
References: 960996,962743,CVE-2015-7575,CVE-2015-8126,CVE-2016-0402,CVE-2016-0448,CVE-2016-0466,CVE-2016-0475,CVE-2016-0483,CVE-2016-0494
Description:
java-1_8_0-openjdk was updated to version 7u95 to fix several security issues. (bsc#962743)
    
The following vulnerabilities were fixed:

- CVE-2015-7575: Further reduce use of MD5 (SLOTH) (bsc#960996)
- CVE-2015-8126: Vulnerability in the AWT component related to splashscreen displays
- CVE-2015-8472: Vulnerability in the AWT component, addressed by same fix
- CVE-2016-0402: Vulnerability in the Networking component related to URL processing
- CVE-2016-0448: Vulnerability in the JMX comonent related to attribute processing
- CVE-2016-0466: Vulnerability in the JAXP component, related to limits
- CVE-2016-0483: Vulnerability in the AWT component related to image decoding
- CVE-2016-0494: Vulnerability in 2D component related to font actions


-----------------------------------------
Patch: SUSE-2016-169
Released: Wed Jan 27 17:34:41 2016
Summary: Security update for java-1_7_0-openjdk
Severity: critical
References: 939523,960996,962743,CVE-2015-4871,CVE-2015-7575,CVE-2015-8126,CVE-2015-8472,CVE-2016-0402,CVE-2016-0448,CVE-2016-0466,CVE-2016-0483,CVE-2016-0494
Description:
java-1_7_0-openjdk was updated to version 7u95 to fix 9 security issues. (bsc#962743)

- CVE-2015-4871: Rebinding of the receiver of a DirectMethodHandle may allow a protected method to be accessed
- CVE-2015-7575: Further reduce use of MD5 (SLOTH) (bsc#960996)
- CVE-2015-8126: Vulnerability in the AWT component related to splashscreen displays
- CVE-2015-8472: Vulnerability in the AWT component, addressed by same fix
- CVE-2016-0402: Vulnerability in the Networking component related to URL processing
- CVE-2016-0448: Vulnerability in the JMX comonent related to attribute processing
- CVE-2016-0466: Vulnerability in the JAXP component, related to limits
- CVE-2016-0483: Vulnerability in the AWT component related to image decoding
- CVE-2016-0494: Vulnerability in 2D component related to font actions

The following bugs were fixed:

- bsc#939523: java-1_7_0-openjdk-headless had X dependencies, move libjavagtk to full package


-----------------------------------------
Patch: SUSE-2016-184
Released: Mon Feb  1 11:58:56 2016
Summary: Recommended update for libzip
Severity: moderate
References: 963071
Description:

This update for libzip fixes a segmentation fault when attempting to open an
invalid zip file.


-----------------------------------------
Patch: SUSE-2016-199
Released: Thu Feb  4 15:48:09 2016
Summary: Security update for MozillaFirefox, MozillaFirefox-branding-SLE, mozilla-nss
Severity: important
References: 954447,963520,963632,963635,963731,964332,CVE-2016-1930,CVE-2016-1935,CVE-2016-1938
Description:

This update for MozillaFirefox, MozillaFirefox-branding-SLE, mozilla-nss fixes the following issues: (bsc#963520)

Mozilla Firefox was updated to 38.6.0 ESR.
Mozilla NSS was updated to 3.20.2.

The following vulnerabilities were fixed:

- CVE-2016-1930: Memory safety bugs fixed in Firefox ESR 38.6 (bsc#963632)
- CVE-2016-1935: Buffer overflow in WebGL after out of memory allocation (bsc#963635)
- CVE-2016-1938: Calculations with mp_div and mp_exptmod in Network Security Services (NSS) canproduce wrong results (bsc#963731)

The following improvements were added:

- bsc#954447: Mozilla NSS now supports a number of new DHE ciphersuites
- Tracking protection is now enabled by default
- bsc#964332: Fixed leaking file descriptors inside FIPS selfcheck code


-----------------------------------------
Patch: SUSE-2016-207
Released: Thu Feb  4 18:05:06 2016
Summary: Optional update for libXaw7, libXaw3d8
Severity: low
References: 963687
Description:

This update provides 32bit builds of libXaw7 and libXaw3d8 for SUSE Linux Enterprise
Server 12 and 12-SP1.


-----------------------------------------
Patch: SUSE-2016-209
Released: Fri Feb  5 10:11:49 2016
Summary: Security update for socat
Severity: moderate
References: 938913,964844,CVE-2015-4000
Description:

This update for socat fixed the following issues:

- bsc#964844: Fixed security advisory 8, Stack overflow in parser, http://www.openwall.com/lists/oss-security/2016/02/01/5.
- bsc#938913: Improved resilience against Logjam attacks (CVE-2015-4000) by increasing the size of the default DH group from 512 to 2048 bit. This change avoids the non-prime 1024 bit DH p parameter in OpenSSL http://www.dest-unreach.org/socat/contrib/socat-secadv7.html.


-----------------------------------------
Patch: SUSE-2016-252
Released: Fri Feb 12 14:58:06 2016
Summary: Recommended update for timezone
Severity: low
References: 963921
Description:

This update provides the latest timezone information (2016a) for your
system, including the following changes:

- America/Cayman will not observe daylight saving this year.
- Asia/Chita switches from +0800 to +0900 on 2016-03-27 at 02:00.
- Asia/Tehran now has DST predictions for the year 2038 and later.
- America/Metlakatla switched from PST all year to AKST/AKDT on
  2015-11-01 at 02:00.
- America/Santa_Isabel has been removed, and replaced with a
  backward compatibility link to America/Tijuana.
- Asia/Karachi's two transition times in 2002 were off by a minute.

This release also includes changes affecting past time stamps, documentation
and some minor code fixes. For a comprehensive list, refer to the release
announcement from ICANN:

http://mm.icann.org/pipermail/tz/2016-January/023106.html


-----------------------------------------
Patch: SUSE-2016-259
Released: Mon Feb 15 14:25:02 2016
Summary: Security update for libnettle
Severity: moderate
References: 964845,964847,964849,CVE-2015-8803,CVE-2015-8804,CVE-2015-8805
Description:
This update for libnettle fixes the following security issues: 

- CVE-2015-8803: Fixed miscomputation bugs in secp-256r1 modulo functions. (bsc#964845)
- CVE-2015-8804: Fixed carry folding bug in x86_64 ecc_384_modp. (bsc#964847)
- CVE-2015-8805: Fixed miscomputation bugs in secp-256r1 modulo functions. (bsc#964849)


-----------------------------------------
Patch: SUSE-2016-291
Released: Fri Feb 19 19:31:54 2016
Summary: Recommended update for openslp
Severity: low
References: 950777
Description:

This update for OpenSLP adjusts slpd's initialization to use SystemD's forking
mechanism, avoiding stale PID files after the daemon is stopped.


-----------------------------------------
Patch: SUSE-2016-294
Released: Mon Feb 22 14:36:09 2016
Summary: Security update for dhcp
Severity: moderate
References: 880984,936923,956159,960506,961305,CVE-2015-8605
Description:

This update for dhcp fixes the following issues:

- CVE-2015-8605: A remote attacker could have used badly formed packets with an invalid IPv4 UDP length field to cause a DHCP server, client, or relay program to terminate abnormally (bsc#961305)

The following bugs were fixed:

- bsc#936923: Improper lease duration checking
- bsc#880984: Integer overflows in the date and time handling code
- bsc#956159: fixed service files to start dhcpd after slapd
- bsc#960506: Improve exit reason and logging when /sbin/dhclient-script is unable to pre-init requested interface


-----------------------------------------
Patch: SUSE-2016-304
Released: Tue Feb 23 16:16:05 2016
Summary: Recommended update for libspectre
Severity: low
References: 898327,958630
Description:

This update for libspectre fixes rotation of Postscript documents.

-----------------------------------------
Patch: SUSE-2016-305
Released: Tue Feb 23 16:17:11 2016
Summary: Recommended update for python-sip
Severity: moderate
References: 955823
Description:
This update for python-sip provides the following fixes:

- Fixed the handling of non-pointer object variables so that they are only wrapped
  once and the Python object cached. 
- Fixed a regression in the handling of static non-pointer object variables.
- Fixed the /KeepReference/ function annotation when applied to static functions.
- The PyQt4 and PyQt5 specific data structures are now completely separate in
  preparation for the signal changes needed by PyQt5.
- Renamed the PyQt4Flags and PyQt4NoQMetaObject annotations so that they are not
  PyQt4 specific.
- Implemented the PyQt5 signal emitters.
- Add a space between 'const' and the variable name for multi-const types in
  generated code.
- Added the /NoSetter/ variable annotation. In order to not generate code that
  changes values of const variables.
- Changed the handling of timelines so that the latest version is enabled if no
  known version is explicitly enabled.
- Added the -B option to sip to allow timeline backstops to be defined.


-----------------------------------------
Patch: SUSE-2016-306
Released: Wed Feb 24 10:00:58 2016
Summary: Security update for postgresql94
Severity: important
References: 578053,966435,966436,CVE-2007-4772,CVE-2016-0766,CVE-2016-0773
Description:

This update for postgresql94 fixes the following issues: 

- Security and bugfix release 9.4.6:
  * *** IMPORTANT ***
    Users of version 9.4 will need to reindex any jsonb_path_ops
    indexes they have created, in order to fix a persistent issue
    with missing index entries.
  * Fix infinite loops and buffer-overrun problems in regular
    expressions (CVE-2016-0773, bsc#966436).
  * Fix regular-expression compiler to handle loops of constraint
    arcs (CVE-2007-4772).
  * Prevent certain PL/Java parameters from being set by
    non-superusers (CVE-2016-0766, bsc#966435).
  * Fix many issues in pg_dump with specific object types
  * Prevent over-eager pushdown of HAVING clauses for
    GROUPING SETS
  * Fix deparsing error with ON CONFLICT ... WHERE clauses
  * Fix tableoid errors for postgres_fdw
  * Prevent floating-point exceptions in pgbench
  * Make \det search Foreign Table names consistently
  * Fix quoting of domain constraint names in pg_dump
  * Prevent putting expanded objects into Const nodes
  * Allow compile of PL/Java on Windows
  * Fix 'unresolved symbol' errors in PL/Python execution
  * Allow Python2 and Python3 to be used in the same database
  * Add support for Python 3.5 in PL/Python
  * Fix issue with subdirectory creation during initdb
  * Make pg_ctl report status correctly on Windows
  * Suppress confusing error when using pg_receivexlog with older
    servers
  * Multiple documentation corrections and additions
  * Fix erroneous hash calculations in gin_extract_jsonb_path()
- For the full release notse, see:
  http://www.postgresql.org/docs/9.4/static/release-9-4-6.html

- PL/Perl still needs to be linked with rpath, so that it can find
  libperl.so at runtime.
  bsc#578053, postgresql-plperl-keep-rpath.patch


-----------------------------------------
Patch: SUSE-2016-307
Released: Wed Feb 24 10:05:53 2016
Summary: Security update for MozillaFirefox
Severity: important
References: 967087,CVE-2016-1523
Description:

This update for MozillaFirefox fixes the following issues: 

- update to Firefox 38.6.1 ESR (bsc#967087)
  * MFSA 2016-14/CVE-2016-1523
    (bmo#1246093)
    Vulnerabilities in Graphite 2


-----------------------------------------
Patch: SUSE-2016-333
Released: Fri Feb 26 13:08:07 2016
Summary: Recommended update for jack
Severity: low
References: 951213
Description:
Jack was updated to no longer rely on CPU cycles to measure time.

-----------------------------------------
Patch: SUSE-2016-374
Released: Fri Mar  4 15:56:02 2016
Summary: Recommended update for Qt5
Severity: moderate
References: 955381,964864
Description:

The Qt5 library was updated to version 5.5.1.

The base libraries shipped within SUSE Linux Enterprise Desktop and Server 12 SP1
received several bug fixes, performance enhancements and new features.

The complete set of Qt5 libraries is shipped within SUSE Linux Enterprise Software
Development Kit 12 SP1. There, the following new libraries have been added:
3DCollision, 3DCore, 3DInput, 3DLogic, 3DQuick, 3DQuickRenderer, 3DRenderer,
Bluetooth, Nfc and WebChannel.

Qt 5.5.x also introduces new runtime dependencies: libinput10, libprotobuf9 and
libsrtp1.

For a comprehensive overview of new features available in the updated Qt5, please
refer to the upstream release notes:

  http://blog.qt.io/blog/2015/07/01/qt-5-5-released/
  http://blog.qt.io/blog/2015/10/15/qt-5-5-1-released/


-----------------------------------------
Patch: SUSE-2016-382
Released: Mon Mar  7 14:43:46 2016
Summary: Recommended update for SDL
Severity: low
References: 953861
Description:

This update for SDL disables usage of backing storage by default due to tearing
effects. Users who would like to enable it can set the SDL_VIDEO_X11_BACKINGSTORE
environment variable.


-----------------------------------------
Patch: SUSE-2016-393
Released: Tue Mar  8 10:44:28 2016
Summary: Optional update for sbc
Severity: low
References: 949416
Description:
This update for sbc enables building of libsbc1-32bit.

-----------------------------------------
Patch: SUSE-2016-396
Released: Tue Mar  8 17:27:26 2016
Summary: Recommended update for dnsmasq
Severity: low
References: 902511,904537
Description:

This update for dnsmasq fixes the following issues:

- Drop PrivateDevices=yes from service file to fix logging. (bsc#902511, bsc#904537)


-----------------------------------------
Patch: SUSE-2016-404
Released: Wed Mar  9 19:01:30 2016
Summary: Security update for libotr
Severity: moderate
References: 969785,CVE-2016-2851
Description:

This update for libotr fixes the following issue:

- Apply 'libotr-CVE-2016-2851.patch' to fix integer overflows that
  used to occur on 64-bit architectures when receiving 4GB messages.
  This flaw could potentially have been exploited by an attacker to
  remotely execute arbitrary code on the user's machine
  * (CVE-2016-2851, bsc#969785)


-----------------------------------------
Patch: SUSE-2016-408
Released: Thu Mar 10 15:14:49 2016
Summary: Optional update for libwebp
Severity: low
References: 965150
Description:

This update adds the libwebpdecoder1 library to SLE Software Development Kit 12 SP1.


-----------------------------------------
Patch: SUSE-2016-413
Released: Fri Mar 11 10:17:57 2016
Summary: Security update for libssh2_org
Severity: moderate
References: 933336,961964,967026,CVE-2016-0787
Description:

This update for libssh2_org fixes the following issues: 

Security issue fixed:
- CVE-2016-0787 (bsc#967026):
  Weakness in diffie-hellman secret key generation lead to much shorter DH groups
  then needed, which could be used to retrieve server keys.

A feature was added:
- Support of SHA256 digests for DH group exchanges was added (fate#320343, bsc#961964)

Bug fixed:
- Properly detect EVP_aes_128_ctr at configure time (bsc#933336)


-----------------------------------------
Patch: SUSE-2016-419
Released: Fri Mar 11 16:25:09 2016
Summary: Security update for MozillaFirefox, mozilla-nspr, mozilla-nss
Severity: important
References: 969894,CVE-2016-1950,CVE-2016-1952,CVE-2016-1953,CVE-2016-1954,CVE-2016-1957,CVE-2016-1958,CVE-2016-1960,CVE-2016-1961,CVE-2016-1962,CVE-2016-1964,CVE-2016-1965,CVE-2016-1966,CVE-2016-1974,CVE-2016-1977,CVE-2016-1978,CVE-2016-1979,CVE-2016-2790,CVE-2016-2791,CVE-2016-2792,CVE-2016-2793,CVE-2016-2794,CVE-2016-2795,CVE-2016-2796,CVE-2016-2797,CVE-2016-2798,CVE-2016-2799,CVE-2016-2800,CVE-2016-2801,CVE-2016-2802
Description:

This update for MozillaFirefox, mozilla-nspr, mozilla-nss fixes the following issues:

Mozilla Firefox was updated to 38.7.0 ESR (bsc#969894), fixing
following security issues:
* MFSA 2016-16/CVE-2016-1952/CVE-2016-1953
  Miscellaneous memory safety hazards (rv:45.0 / rv:38.7)
* MFSA 2016-17/CVE-2016-1954
  Local file overwriting and potential privilege escalation
  through CSP reports
* MFSA 2016-20/CVE-2016-1957
  Memory leak in libstagefright when deleting an array during
  MP4 processing
* MFSA 2016-21/CVE-2016-1958
  Displayed page address can be overridden
* MFSA 2016-23/CVE-2016-1960
  Use-after-free in HTML5 string parser
* MFSA 2016-24/CVE-2016-1961
  Use-after-free in SetBody
* MFSA 2016-25/CVE-2016-1962
  Use-after-free when using multiple WebRTC data channels
* MFSA 2016-27/CVE-2016-1964
  Use-after-free during XML transformations
* MFSA 2016-28/CVE-2016-1965
  Addressbar spoofing though history navigation and Location
  protocol property
* MFSA 2016-31/CVE-2016-1966
  Memory corruption with malicious NPAPI plugin
* MFSA 2016-34/CVE-2016-1974
  Out-of-bounds read in HTML parser following a failed
  allocation
* MFSA 2016-35/CVE-2016-1950
  Buffer overflow during ASN.1 decoding in NSS
* MFSA 2016-37/CVE-2016-1977/CVE-2016-2790/CVE-2016-2791/
  CVE-2016-2792/CVE-2016-2793/CVE-2016-2794/CVE-2016-2795/
  CVE-2016-2796/CVE-2016-2797/CVE-2016-2798/CVE-2016-2799/
  CVE-2016-2800/CVE-2016-2801/CVE-2016-2802
  Font vulnerabilities in the Graphite 2 library

Mozilla NSPR was updated to version 4.12 (bsc#969894), fixing following bugs:
* added a PR_GetEnvSecure function, which attempts to detect if
  the program is being executed with elevated privileges, and
  returns NULL if detected. It is recommended to use this function
  in general purpose library code.
* fixed a memory allocation bug related to the PR_*printf functions
* exported API PR_DuplicateEnvironment, which had already been
  added in NSPR 4.10.9
* added support for FreeBSD aarch64
* several minor correctness and compatibility fixes

Mozilla NSS was updated to fix security issues (bsc#969894):
* MFSA 2016-15/CVE-2016-1978
  Use-after-free in NSS during SSL connections in low memory
* MFSA 2016-35/CVE-2016-1950
  Buffer overflow during ASN.1 decoding in NSS
* MFSA 2016-36/CVE-2016-1979
  Use-after-free during processing of DER encoded keys in NSS


-----------------------------------------
Patch: SUSE-2016-456
Released: Tue Mar 15 18:01:12 2016
Summary: Security update for graphite2
Severity: important
References: 965803,965807,965810,CVE-2016-1521,CVE-2016-1523,CVE-2016-1526
Description:

This update for graphite2 fixes the following issues:

- CVE-2016-1521: The directrun function in directmachine.cpp in
  Libgraphite did not validate a certain skip operation, which allowed
  remote attackers to execute arbitrary code, obtain sensitive information,
  or cause a denial of service (out-of-bounds read and application crash)
  via a crafted Graphite smart font.

- CVE-2016-1523: The SillMap::readFace function in FeatureMap.cpp in
  Libgraphite mishandled a return value, which allowed remote attackers
  to cause a denial of service (missing initialization, NULL pointer
  dereference, and application crash) via a crafted Graphite smart font.

- CVE-2016-1526: The TtfUtil:LocaLookup function in TtfUtil.cpp in
  Libgraphite incorrectly validated a size value, which allowed remote
  attackers to obtain sensitive information or cause a denial of service
  (out-of-bounds read and application crash) via a crafted Graphite
  smart font.


-----------------------------------------
Patch: SUSE-2016-462
Released: Wed Mar 16 18:17:59 2016
Summary: Recommended update for libcap
Severity: low
References: 967838
Description:

This update for libcap adds two new capabilities (CAP_WAKE_ALARM and CAP_BLOCK_SUSPEND)
which are available in Linux Kernel 3.12.


-----------------------------------------
Patch: SUSE-2016-467
Released: Wed Mar 16 19:14:46 2016
Summary: Security update for git
Severity: important
References: 971328,CVE-2016-2315,CVE-2016-2324
Description:
This update for git fixes a buffer overflow issue that had the potential to be abused for remote execution of arbitrary code (CVE-2016-2315, CVE-2016-2324, bsc#971328).


-----------------------------------------
Patch: SUSE-2016-490
Released: Mon Mar 21 16:45:13 2016
Summary: Recommended update for timezone
Severity: low
References: 971377
Description:

This update provides the latest timezone information (2016b) for your system, including
the following changes:

- New zones Europe/Astrakhan and Europe/Ulyanovsk for Astrakhan and Ulyanovsk Oblasts,
  Russia, both of which will switch from +03 to +04 on 2016-03-27 at 02:00 local time.
- New zone Asia/Barnaul for Altai Krai and Altai Republic, Russia, which will switch
  from +06 to +07 on the same date and local time.
- Asia/Sakhalin moves from +10 to +11 on 2016-03-27 at 02:00.
- As a trial of a new system that needs less information to be made up, the new zones
  use numeric time zone abbreviations like '+04' instead of invented abbreviations
  like 'ASTT'.
- Haiti will not observe DST in 2016.
- Palestine's spring-forward transition on 2016-03-26 is at 01:00, not 00:00.
- tzselect's diagnostics and checking, and checktab.awk's checking, have been improved.
- tzselect now tests Julian-date TZ settings more accurately.


-----------------------------------------
Patch: SUSE-2016-491
Released: Tue Mar 22 12:41:08 2016
Summary: Security update for libqt4
Severity: moderate
References: 865241
Description:

This update for libqt4 fixes the following issues:

Various unsafe SSL ciphers have been disabled in the standard SSL classes.
Also the RC4 based ciphers have been disabled. (bsc#865241)


-----------------------------------------
Patch: SUSE-2016-509
Released: Thu Mar 24 12:40:52 2016
Summary: Security update for ghostscript
Severity: low
References: 939342,963017,CVE-2015-3228
Description:
ghostscript was updated to fix one security issue and one bug.

The following vulnerability was fixed:

* CVE-2015-3228: Specially crafted ps files could have caused an out of
  bound read/write due to an integer overflow, causing a segfault in the
  application or having unspecified further impact.

Also a non security bug was fixed:
- fix a crash in mutex handling (bsc#963017)


-----------------------------------------
Patch: SUSE-2016-510
Released: Thu Mar 24 15:40:28 2016
Summary: Recommended update for timezone
Severity: low
References: 972433
Description:

This update provides the latest timezone information (2016c) for your
system, including the following changes:

- Azerbaijan no longer observes DST (Asia/Baku)
- Chile reverts from permanent to seasonal DST

This release also includes changes affecting past time stamps and documentation.
For a comprehensive list, please refer to the release announcement from ICANN:

http://mm.icann.org/pipermail/tz-announce/2016-March/000037.html


-----------------------------------------
Patch: SUSE-2016-526
Released: Wed Mar 30 17:07:30 2016
Summary: Recommended update for sysstat
Severity: moderate
References: 970770
Description:

This update for sysstat fixes the following issues:

- Don't send signal to pid 1 in signal handler (bsc#970770)


-----------------------------------------
Patch: SUSE-2016-527
Released: Wed Mar 30 17:09:50 2016
Summary: Recommended update for SMT
Severity: moderate
References: 956632,961135,966898,967536,968124
Description:

SMT has been updated to version 3.0.10 which includes the following changes:

- Fix path of file storing cron jobs in reschedule-sync.sh. (bsc#966898)
- Do not enable SSL for Apache on installation of the smt package. (bsc#956632)
- Implement forwarding a delete system request to SCC. (bsc#961135)
- If --todir is given then Orders are downloaded. This is needed for SUSE Manager. (fate#320646)
- Add res-signingkeys package to SLES 12-SP1. (fate#320611, bsc#967536)
- Fix RES registration. (bsc#968124)

The YaST SMT module was also updated to fix the following issue:

- Adjust correct file when defining scheduled jobs. (bsc#966898)
- Only set Apache server flag SSL when there is a certificate. (bsc#956632)


-----------------------------------------
Patch: SUSE-2016-543
Released: Fri Apr  1 18:44:16 2016
Summary: Recommended update for libgcrypt
Severity: moderate
References: 970882
Description:

This update for libgcrypt fixes a crash in GPG key generation when operating in FIPS mode. (bsc#970882)


-----------------------------------------
Patch: SUSE-2016-552
Released: Tue Apr  5 12:49:54 2016
Summary: Recommended update for nfs4-acl-tools
Severity: low
References: 784551,967251
Description:

This update for nfs4-acl-tools fixes the following issues:

- Allow recursive set_acl to set inheritance flags. (bsc#967251)
- Allow spaces in principal names. (bsc#784551)


-----------------------------------------
Patch: SUSE-2016-555
Released: Tue Apr  5 14:38:18 2016
Summary: Security update for java-1_8_0-openjdk
Severity: important
References: 972468,CVE-2016-0636
Description:

This update for java-1_8_0-openjdk to version jdk8u77-b03 fixes the following security issue:

* CVE-2016-0636: Improve MethodHandle consistency, which had allowed attackers to execute code. (bsc#972468)


-----------------------------------------
Patch: SUSE-2016-556
Released: Tue Apr  5 14:38:31 2016
Summary: Security update for java-1_7_0-openjdk
Severity: important
References: 972468,CVE-2016-0636
Description:

The OpenJDK Java java-1_7_0-openjdk was updated to 2.6.5 to fix the following issues:

Update to 2.6.5 - OpenJDK 7u99 (bsc#972468)
* Security fixes
  - S8152335, CVE-2016-0636: Improve MethodHandle consistency
* Import of OpenJDK 7 u99 build 0
  - S6425769, PR2858: Allow specifying an address to bind JMX
    remote connector
  - S6961123: setWMClass fails to null-terminate WM_CLASS string
  - S8145982, PR2858: JMXInterfaceBindingTest is failing
    intermittently
  - S8146015, PR2858: JMXInterfaceBindingTest is failing
    intermittently for IPv6 addresses
* Backports
  - S8028727, PR2814: [parfait] warnings from b116 for
   jdk.src.share.native.sun.security.ec: JNI pending exceptions
  - S8048512, PR2814: Uninitialised memory in
    jdk/src/share/native/sun/security/ec/ECC_JNI.cpp
  - S8071705. PR2819, RH1182694: Java application menu misbehaves
    when running multiple screen stacked vertically
  - S8150954, PR2866, RH1176206: AWT Robot not compatible with
    GNOME Shell
* Bug fixes
  - PR2803: Make system CUPS optional
  - PR2886: Location of 'stap' executable is hard-coded
  - PR2893: test/tapset/jstaptest.pl should be executable
  - PR2894: Add missing test directory in make check.
* CACAO
  - PR2781, CA195: typeinfo.cpp: typeinfo_merge_nonarrays:
    Assertion `dest && result && x.any && y.any' failed
* AArch64 port
  - PR2852: Add support for large code cache
  - PR2852: Apply ReservedCodeCacheSize default limiting to
    AArch64 only.
  - S8081289, PR2852: aarch64: add support for
    RewriteFrequentPairs in interpreter
  - S8131483, PR2852: aarch64: illegal stlxr instructions
  - S8133352, PR2852: aarch64: generates constrained unpredictable
    instructions
  - S8133842, PR2852: aarch64: C2 generates illegal instructions
    with int shifts >=32
  - S8134322, PR2852: AArch64: Fix several errors in C2 biased
    locking implementation
  - S8136615, PR2852: aarch64: elide DecodeN when followed by
    CmpP 0
  - S8138575, PR2852: Improve generated code for profile counters
  - S8138641, PR2852: Disable C2 peephole by default for aarch64
  - S8138966, PR2852: Intermittent SEGV running ParallelGC
  - S8143067, PR2852: aarch64: guarantee failure in javac
  - S8143285, PR2852: aarch64: Missing load acquire when checking
    if ConstantPoolCacheEntry is resolved
  - S8143584, PR2852: Load constant pool tag and class status with
 load acquire
  - S8144201, PR2852: aarch64:
    jdk/test/com/sun/net/httpserver/Test6a.java fails with
    --enable-unlimited-crypto
  - S8144582, PR2852: AArch64 does not generate correct branch
    profile data
  - S8146709, PR2852: AArch64: Incorrect use of ADRP for
    byte_map_base
  - S8147805, PR2852: aarch64: C1 segmentation fault due to inline
    Unsafe.getAndSetObject
  - S8148240, PR2852: aarch64: random infrequent null pointer
    exceptions in javac
* PPC & AIX port
  - S8034797, PR2851: AIX: Fix os::naked_short_sleep() in
    os_aix.cpp after 8028280
  - S8139258, PR2851: PPC64LE: argument passing problem when
    passing 15 floats in native call
  - S8139421, PR2851: PPC64LE: MacroAssembler::bxx64_patchable
    kill register R12

Update to 2.6.5 - OpenJDK 7u99 (bsc#972468)
* Security fixes
  - S8152335, CVE-2016-0636: Improve MethodHandle consistency
* Import of OpenJDK 7 u99 build 0
  - S6425769, PR2858: Allow specifying an address to bind JMX
    remote connector
  - S6961123: setWMClass fails to null-terminate WM_CLASS string
  - S8145982, PR2858: JMXInterfaceBindingTest is failing
    intermittently
  - S8146015, PR2858: JMXInterfaceBindingTest is failing
    intermittently for IPv6 addresses
* Backports
  - S8028727, PR2814: [parfait] warnings from b116 for
   jdk.src.share.native.sun.security.ec: JNI pending exceptions
  - S8048512, PR2814: Uninitialised memory in
    jdk/src/share/native/sun/security/ec/ECC_JNI.cpp
  - S8071705. PR2819, RH1182694: Java application menu misbehaves
    when running multiple screen stacked vertically
  - S8150954, PR2866, RH1176206: AWT Robot not compatible with
    GNOME Shell
* Bug fixes
  - PR2803: Make system CUPS optional
  - PR2886: Location of 'stap' executable is hard-coded
  - PR2893: test/tapset/jstaptest.pl should be executable
  - PR2894: Add missing test directory in make check.
* CACAO
  - PR2781, CA195: typeinfo.cpp: typeinfo_merge_nonarrays:
    Assertion `dest && result && x.any && y.any' failed
* AArch64 port
  - PR2852: Add support for large code cache
  - PR2852: Apply ReservedCodeCacheSize default limiting to
    AArch64 only.
  - S8081289, PR2852: aarch64: add support for
    RewriteFrequentPairs in interpreter
  - S8131483, PR2852: aarch64: illegal stlxr instructions
  - S8133352, PR2852: aarch64: generates constrained unpredictable
    instructions
  - S8133842, PR2852: aarch64: C2 generates illegal instructions
    with int shifts >=32
  - S8134322, PR2852: AArch64: Fix several errors in C2 biased
    locking implementation
  - S8136615, PR2852: aarch64: elide DecodeN when followed by
    CmpP 0
  - S8138575, PR2852: Improve generated code for profile counters
  - S8138641, PR2852: Disable C2 peephole by default for aarch64
  - S8138966, PR2852: Intermittent SEGV running ParallelGC
  - S8143067, PR2852: aarch64: guarantee failure in javac
  - S8143285, PR2852: aarch64: Missing load acquire when checking
    if ConstantPoolCacheEntry is resolved
  - S8143584, PR2852: Load constant pool tag and class status with
 load acquire
  - S8144201, PR2852: aarch64:
    jdk/test/com/sun/net/httpserver/Test6a.java fails with
    --enable-unlimited-crypto
  - S8144582, PR2852: AArch64 does not generate correct branch
    profile data
  - S8146709, PR2852: AArch64: Incorrect use of ADRP for
    byte_map_base
  - S8147805, PR2852: aarch64: C1 segmentation fault due to inline
    Unsafe.getAndSetObject
  - S8148240, PR2852: aarch64: random infrequent null pointer
    exceptions in javac
* PPC & AIX port
  - S8034797, PR2851: AIX: Fix os::naked_short_sleep() in
    os_aix.cpp after 8028280
  - S8139258, PR2851: PPC64LE: argument passing problem when
    passing 15 floats in native call
  - S8139421, PR2851: PPC64LE: MacroAssembler::bxx64_patchable
    kill register R12


-----------------------------------------
Patch: SUSE-2016-565
Released: Wed Apr  6 16:26:42 2016
Summary: Security update for gcc5
Severity: moderate
References: 939460,945842,952151,953831,954002,955382,962765,964468,966220,968771,CVE-2015-5276
Description:

The GNU Compiler Collection was updated to version 5.3.1, which brings several fixes
and enhancements.

The following security issue has been fixed:

- Fix C++11 std::random_device short read issue that could lead to predictable
  randomness. (CVE-2015-5276, bsc#945842)

The following non-security issues have been fixed:

- Enable frame pointer for TARGET_64BIT_MS_ABI when stack is misaligned. Fixes internal
  compiler error when building Wine. (bsc#966220)
- Fix a PowerPC specific issue in gcc-go that broke compilation of newer versions of
  Docker. (bsc#964468)
- Fix HTM built-ins on PowerPC. (bsc#955382)
- Fix libgo certificate lookup. (bsc#953831)
- Suppress deprecated-declarations warnings for inline definitions of deprecated virtual
  methods. (bsc#939460)
- Build s390[x] with '--with-tune=z9-109 --with-arch=z900' on SLE11 again. (bsc#954002)
- Revert accidental libffi ABI breakage on aarch64. (bsc#968771)
- On x86_64, set default 32bit code generation to -march=x86-64 rather than -march=i586.
- Add experimental File System TS library.


-----------------------------------------
Patch: SUSE-2016-575
Released: Thu Apr  7 15:45:32 2016
Summary: Recommended update for at
Severity: low
References: 945124
Description:

This update for 'at' provides the following fixes:

- Don't loop on corrupted files and prevent their creation. (bsc#945124)


-----------------------------------------
Patch: SUSE-2016-606
Released: Wed Apr 13 11:31:49 2016
Summary: Security update for xerces-c
Severity: moderate
References: 966822,CVE-2016-0729
Description:

This update for xerces-c fixes the following security issue:

- CVE-2016-0729: Fixed mishandling certain kinds of malformed input documents,
  that resulted in buffer overlows during processing and error reporting.
  The overflows can manifest as a segmentation fault or as memory
  corruption during a parse operation. (bsc#966822)


-----------------------------------------
Patch: SUSE-2016-636
Released: Mon Apr 18 09:18:19 2016
Summary: Security update for libgcrypt
Severity: moderate
References: 965902,CVE-2015-7511
Description:
libgcrypt was updated to fix one security issue.

This security issue was fixed:
- CVE-2015-7511: Side-channel attack on ECDH with Weierstrass curves (bsc#965902).
  

-----------------------------------------
Patch: SUSE-2016-643
Released: Tue Apr 19 09:23:39 2016
Summary: Recommended update for bzip2
Severity: low
References: 970260
Description:

This update for bzip2 fixes the following issues:

- Fix bzgrep wrapper that always returns 0 as exit code when working on multiple
  archives, even when the pattern is not found.


-----------------------------------------
Patch: SUSE-2016-652
Released: Wed Apr 20 10:34:05 2016
Summary: Recommended update for SUSE Manager Client Tools
Severity: moderate
References: 956981,970550,970989,974864,975093
Description:

This update for SUSE Manager Client Tools provides the following new features:

- Integrate SaltStack for configuration management. (fate#312447)
- Replace upstream subscription counting with new subscription matching. (fate#311619)

This update fixes the following issues:

osad:

- Fix file permissions. (bsc#970550)
- Add possibility for OSAD to work in failover mode.

rhn-custom-info:

- Version update.

rhn-virtualization:

- Version update.

rhncfg:

- Fix file permissions. (bsc#970550)
- Fix removal of temporary files during transaction rollback for rhncfg-manager.
- Fix removal of directories which rhncfg-manager didn't create.
- Remove temporary files when exception occurs.
- Make rhncfg support sha256 and use it by default.
- Fix for assigning all groups user belongs to running process.
- Show server modified time with rhncfg-client diff.

rhnlib:

- Use TLSv1_METHOD in SSL Context. (bsc#970989)

rhnpush:

- Don't count on having newest rhn-client-tools.
- Allow to use existing rpcServer when creating RhnServer.
- Wire in timeout for rhnpush.

spacecmd:

- Text description missing for remote command by Spacecmd.
- Added functions to add/edit SSL certificates for repositories.
- Mimetype detection to set the binary flag requires 'file' tool.
- Always base64 encode to avoid trim() bugs in the XML-RPC library.
- Replace upstream subscription counting with new subscription matching. (fate#311619)

spacewalk-backend:

- Version update.

spacewalk-client-tools:

- Convert dbus.Int32 to int to fix a TypeError during registration. (bsc#974864)
- Fix client registration for network interfaces with labels. (bsc#956981)
- Show a descriptive message on reboot.
- Replace upstream subscription counting with new subscription matching. (fate#311619)

spacewalk-koan:

- Fix file permissions. (bsc#970550)
- Switch to KVM if possible.

spacewalk-oscap:

- Still require openscap-utils on RHEL5.

spacewalk-remote-utils:

- Add RHEL 7.2 channel definitions.
- Update RHEL 6.7 and 7.1 channel definitions.
- Use hostname instead of localhost for https connections.
- Spacewalk-create-channel added -o option to clone channel to current state.

spacewalksd:

- Delete file with input files after template is created.

suseRegisterInfo:

- Fix file permissions. (bsc#970550)


-----------------------------------------
Patch: SUSE-2016-663
Released: Fri Apr 22 15:33:50 2016
Summary: Recommended update for timezone
Severity: low
References: 975875
Description:

This update provides the latest timezone information (2016d) for your
system, including the following changes:

- Venezuela (America/Caracas) switches from -0430 to -04 on 2016-05-01 at 02:30.
- Asia/Magadan switches from +10 to +11 on 2016-04-24 at 02:00.
- New zone Asia/Tomsk, split off from Asia/Novosibirsk. It covers Tomsk Oblast,
  Russia, which switches from +06 to +07 on 2016-05-29 at 02:00.

This release also includes changes affecting past time stamps. For a comprehensive
list, please refer to the release announcement from ICANN:

http://mm.icann.org/pipermail/tz/2016-April/023563.html


-----------------------------------------
Patch: SUSE-2016-667
Released: Mon Apr 25 09:16:19 2016
Summary: Security update for giflib
Severity: moderate
References: 974847,CVE-2016-3977
Description:
giflib was updated to fix one security issue.

This security issue was fixed:
- CVE-2016-3977: Heap buffer overflow in gif2rgb (bsc#974847).
  

-----------------------------------------
Patch: SUSE-2016-689
Released: Wed Apr 27 20:08:42 2016
Summary: Recommended update for ruby2.1
Severity: low
References: 973073
Description:

This update for ruby2.1 brings performance improvements of Ruby on the IBM POWER platform.


-----------------------------------------
Patch: SUSE-2016-694
Released: Thu Apr 28 15:45:16 2016
Summary: Security update for ntp
Severity: important
References: 782060,916617,937837,951559,951629,956773,962318,962784,962802,962960,962966,962970,962988,962994,962995,962997,963000,963002,975496,975981,CVE-2015-5300,CVE-2015-7973,CVE-2015-7974,CVE-2015-7975,CVE-2015-7976,CVE-2015-7977,CVE-2015-7978,CVE-2015-7979,CVE-2015-8138,CVE-2015-8139,CVE-2015-8140,CVE-2015-8158
Description:
ntp was updated to version 4.2.8p6 to fix 12 security issues.

Also yast2-ntp-client was updated to match some sntp syntax changes. (bsc#937837)

These security issues were fixed:
- CVE-2015-8158: Fixed potential infinite loop in ntpq (bsc#962966).
- CVE-2015-8138: Zero Origin Timestamp Bypass (bsc#963002).
- CVE-2015-7979: Off-path Denial of Service (DoS) attack on authenticated broadcast mode (bsc#962784).
- CVE-2015-7978: Stack exhaustion in recursive traversal of restriction list (bsc#963000).
- CVE-2015-7977: reslist NULL pointer dereference (bsc#962970).
- CVE-2015-7976: ntpq saveconfig command allows dangerous characters in filenames (bsc#962802).
- CVE-2015-7975: nextvar() missing length check (bsc#962988).
- CVE-2015-7974: Skeleton Key: Missing key check allows impersonation between authenticated peers (bsc#962960).
- CVE-2015-7973: Replay attack on authenticated broadcast mode (bsc#962995).
- CVE-2015-8140: ntpq vulnerable to replay attacks (bsc#962994).
- CVE-2015-8139: Origin Leak: ntpq and ntpdc, disclose origin (bsc#962997).
- CVE-2015-5300: MITM attacker could have forced ntpd to make a step larger than the panic threshold (bsc#951629).

These non-security issues were fixed:
- fate#320758 bsc#975981: Enable compile-time support for MS-SNTP
  (--enable-ntp-signd).  This replaces the w32 patches in 4.2.4 that added
  the authreg directive.
- bsc#962318: Call /usr/sbin/sntp with full path to synchronize in start-ntpd.
  When run as cron job, /usr/sbin/ is not in the path, which caused
  the synchronization to fail.
- bsc#782060: Speedup ntpq.
- bsc#916617: Add /var/db/ntp-kod.
- bsc#956773: Add ntp-ENOBUFS.patch to limit a warning that might happen quite a lot on loaded systems.
- bsc#951559,bsc#975496: Fix the TZ offset output of sntp during DST.
- Add ntp-fork.patch and build with threads disabled to allow name resolution even when running chrooted.


-----------------------------------------
Patch: SUSE-2016-697
Released: Thu Apr 28 16:03:24 2016
Summary: Recommended update for libssh2_org
Severity: important
References: 974691
Description:

This update for libssh2_org fixes a regression introduced by a previous update
which could result in a segmentation fault in EVP_DigestInit_Ex().


-----------------------------------------
Patch: SUSE-2016-724
Released: Fri May  6 09:49:13 2016
Summary: Security update for java-1_8_0-openjdk
Severity: important
References: 976340,CVE-2016-0686,CVE-2016-0687,CVE-2016-0695,CVE-2016-3425,CVE-2016-3426,CVE-2016-3427
Description:
This update for java-1_8_0-openjdk fixes the following security issues - April 2016 Oracle CPU (bsc#976340):

- CVE-2016-0686: Unspecified vulnerability allowed remote attackers to affect confidentiality, integrity, and availability via vectors related to Serialization. 
- CVE-2016-0687: Unspecified vulnerability allowed remote attackers to affect confidentiality, integrity, and availability via vectors related to the Hotspot sub-component
- CVE-2016-0695: Unspecified vulnerability allowed remote attackers to affect confidentiality via vectors related to the Security Component
- CVE-2016-3425: Unspecified vulnerability allowed remote attackers to affect availability via vectors related to JAXP
- CVE-2016-3426: Unspecified vulnerability allowed remote attackers to affect confidentiality via vectors related to JCE
- CVE-2016-3427: Unspecified vulnerability allowed remote attackers to affect confidentiality, integrity, and availability via vectors related to JMX


-----------------------------------------
Patch: SUSE-2016-725
Released: Fri May  6 09:49:38 2016
Summary: Security update for java-1_7_0-openjdk
Severity: important
References: 976340,CVE-2016-0686,CVE-2016-0687,CVE-2016-0695,CVE-2016-3425,CVE-2016-3427
Description:
This update for java-1_7_0-openjdk to version 2.6.6 fixes five security issues.

These security issues were fixed:
- CVE-2016-0686: Ensure thread consistency (bsc#976340).
- CVE-2016-0687: Better byte behavior (bsc#976340).
- CVE-2016-0695: Make DSA more fair (bsc#976340).
- CVE-2016-3425: Better buffering of XML strings (bsc#976340).
- CVE-2016-3427: Improve JMX connections (bsc#976340).


-----------------------------------------
Patch: SUSE-2016-731
Released: Fri May  6 15:54:27 2016
Summary: Recommended update for apache2-mod_nss
Severity: low
References: 952691,954447,961907
Description:

This update for apache2-mod_nss fixes the following issues:

- Add more ciphers to mod_nss.conf.in: (bsc#952691)
  * ecdhe_rsa_aes_128_sha256
  * rsa_aes_128_sha256
  * rsa_aes_256_sha256

- Add support for DHE ciphers: (bsc#954447)
  * dhe_rsa_3des_sha
  * dhe_rsa_aes_128_sha
  * dhe_rsa_aes_256_sha
  * dhe_rsa_camellia_128_sha
  * dhe_rsa_camellia_256_sha
  * dhe_rsa_aes_128_sha_256
  * dhe_rsa_aes_256_sha_256
  * dhe_rsa_aes_128_gcm_sha_256

- Use whitelist for keeping directives in migrate.pl. (bsc#961907)


-----------------------------------------
Patch: SUSE-2016-732
Released: Fri May  6 16:49:10 2016
Summary: Security update for MozillaFirefox
Severity: important
References: 977333,977374,977376,977381,977386,CVE-2016-2805,CVE-2016-2807,CVE-2016-2808,CVE-2016-2814
Description:
This update to MozillaFirefox 38.8.0 ESR fixes the following issues (bsc#977333):

- CVE-2016-2805: Miscellaneous memory safety hazards - MFSA 2016-39 (bsc#977374)
- CVE-2016-2807: Miscellaneous memory safety hazards - MFSA 2016-39 (bsc#977376)
- CVE-2016-2814: Buffer overflow in libstagefright with CENC offsets - MFSA 2016-44 (bsc#977381)
- CVE-2016-2808: Write to invalid HashMap entry through JavaScript.watch() - MFSA 2016-47 (bsc#977386)


-----------------------------------------
Patch: SUSE-2016-733
Released: Sat May  7 09:44:50 2016
Summary: Security update for ImageMagick
Severity: important
References: 978061,CVE-2016-3714,CVE-2016-3715,CVE-2016-3716,CVE-2016-3717,CVE-2016-3718
Description:

This update for ImageMagick fixes the following issues:

Security issues fixed:
- Several coders were vulnerable to remote code execution attacks, 
  these coders have now been disabled by default but can be 
  re-enabled by editing '/etc/ImageMagick-*/policy.xml' (bsc#978061)
- CVE-2016-3714: Insufficient shell characters filtering leads to
  (potentially remote) code execution
- CVE-2016-3715: Possible file deletion by using ImageMagick's
  'ephemeral' pseudo protocol which deletes files after reading.
- CVE-2016-3716: Possible file moving by using ImageMagick's 'msl'
  pseudo protocol with any extension in any folder.
- CVE-2016-3717: Possible local file read by using ImageMagick's 
  'label' pseudo protocol to get content of the files from the server.
- CVE-2016-3718: Possible Server Side Request Forgery (SSRF) to make
  HTTP GET or FTP request.

Bugs fixed:
- Use external svg loader (rsvg)


-----------------------------------------
Patch: SUSE-2016-757
Released: Wed May 11 19:07:55 2016
Summary: Recommended update for fetchmail
Severity: low
References: 905673,959682
Description:

This update for fetchmail provides the following fixes:

- Introduce a wrapper to start up fetchmail and properly convert settings from
  /etc/sysconfig/fetchmail to command line parameters. (bsc#905673)
- Install fetchmail.service with mode 0644 instead of 0755. (bsc#959682)


-----------------------------------------
Patch: SUSE-2016-764
Released: Thu May 12 16:58:18 2016
Summary: Security update for ntp
Severity: important
References: 957226,977446,977450,977451,977452,977455,977457,977458,977459,977461,977464,CVE-2015-7704,CVE-2015-7705,CVE-2015-7974,CVE-2016-1547,CVE-2016-1548,CVE-2016-1549,CVE-2016-1550,CVE-2016-1551,CVE-2016-2516,CVE-2016-2517,CVE-2016-2518,CVE-2016-2519
Description:

This update for ntp to 4.2.8p7 fixes the following issues:

* CVE-2016-1547, bsc#977459:
  Validate crypto-NAKs, AKA: CRYPTO-NAK DoS.
* CVE-2016-1548, bsc#977461: Interleave-pivot
* CVE-2016-1549, bsc#977451:
  Sybil vulnerability: ephemeral association attack.
* CVE-2016-1550, bsc#977464: Improve NTP security against buffer
  comparison timing attacks.
* CVE-2016-1551, bsc#977450:
  Refclock impersonation vulnerability
* CVE-2016-2516, bsc#977452: Duplicate IPs on unconfig
  directives will cause an assertion botch in ntpd.
* CVE-2016-2517, bsc#977455: remote configuration trustedkey/
  requestkey/controlkey values are not properly validated.
* CVE-2016-2518, bsc#977457: Crafted addpeer with hmode > 7
  causes array wraparound with MATCH_ASSOC.
* CVE-2016-2519, bsc#977458: ctl_getitem() return value not
  always checked.
* This update also improves the fixes for:
  CVE-2015-7704, CVE-2015-7705, CVE-2015-7974

Bugs fixed:
- Restrict the parser in the startup script to the first
  occurrance of 'keys' and 'controlkey' in ntp.conf (bsc#957226).


-----------------------------------------
Patch: SUSE-2016-781
Released: Wed May 18 14:01:57 2016
Summary: Optional update for flac
Severity: low
References: 975377
Description:
This update adds libFLAC++6 to SUSE Linux Enterprise Desktop 12 SP1.

-----------------------------------------
Patch: SUSE-2016-788
Released: Wed May 18 14:36:03 2016
Summary: Security update for wireshark
Severity: moderate
References: 968565,976944,CVE-2016-2523,CVE-2016-2530,CVE-2016-2531,CVE-2016-2532
Description:
This update to Wireshark 1 12.11 fixes a number issues in protocol dissectors that could have allowed a remote attacker to crash Wireshark or cause excessive CPU usage through specially crafted packages inserted into the network or a capture file.

- The PKTC dissector could crash (wnpa-sec-2016-22)
- The PKTC dissector could crash (wnpa-sec-2016-23)
- The IAX2 dissector could go into an infinite loop (wnpa-sec-2016-24)
- Wireshark and TShark could exhaust the stack (wnpa-sec-2016-25) 
- The GSM CBCH dissector could crash (wnpa-sec-2016-26)
- The NCP dissector could crash (wnpa-sec-2016-28)
- CVE-2016-2523: DNP dissector infinite loop (wnpa-sec-2016-03)
- CVE-2016-2530: RSL dissector crash (wnpa-sec-2016-10)
- CVE-2016-2531: RSL dissector crash (wnpa-sec-2016-10)
- CVE-2016-2532: LLRP dissector crash (wnpa-sec-2016-11)
- GSM A-bis OML dissector crash (wnpa-sec-2016-14)
- ASN.1 BER dissector crash (wnpa-sec-2016-15)
- ASN.1 BER dissector crash (wnpa-sec-2016-18) 

Also containsfurther bug fixes and updated protocol support as listed in:
https://www.wireshark.org/docs/relnotes/wireshark-1.12.11.html 
https://www.wireshark.org/docs/relnotes/wireshark-1.12.10.html


-----------------------------------------
Patch: SUSE-2016-812
Released: Mon May 23 14:36:18 2016
Summary: Recommended update for tcpdump
Severity: low
References: 944294
Description:

This update for tcpdump removes a duplicated binary (/usr/sbin/tcpdump.4.5.1) from the package.


-----------------------------------------
Patch: SUSE-2016-835
Released: Wed May 25 18:27:30 2016
Summary: Recommended update for libgcrypt
Severity: moderate
References: 979629
Description:

This update for libgcrypt fixes the following issue:

- Fix failing reboot after installing fips pattern (bsc#979629) 


-----------------------------------------
Patch: SUSE-2016-890
Released: Mon Jun  6 08:33:13 2016
Summary: Recommended update for mailx
Severity: low
References: 974561
Description:

This update for mailx fixes the following issues:

- Correct parenthese expansion to fulfill natural order (bsc#974561)


-----------------------------------------
Patch: SUSE-2016-898
Released: Tue Jun  7 09:48:12 2016
Summary: Security update for expat
Severity: important
References: 979441,980391,CVE-2015-1283,CVE-2016-0718
Description:

This update for expat fixes the following issues: 

Security issue fixed:
- CVE-2016-0718: Fix Expat XML parser that mishandles certain kinds of malformed input documents. (bsc#979441)
- CVE-2015-1283: Fix multiple integer overflows. (bnc#980391)


-----------------------------------------
Patch: SUSE-2016-900
Released: Tue Jun  7 10:58:37 2016
Summary: Security update for libksba
Severity: moderate
References: 979261,979906,CVE-2016-4574,CVE-2016-4579
Description:

This update for libksba fixes the following issues:

- CVE-2016-4579: Out-of-bounds read in _ksba_ber_parse_tl()
- CVE-2016-4574: two OOB read access bugs (remote DoS) (bsc#979261)

Also adding reliability fixes from v1.3.4.



-----------------------------------------
Patch: SUSE-2016-912
Released: Thu Jun  9 09:33:11 2016
Summary: Recommended update for vsftpd
Severity: moderate
References: 786024,935279,968138,969411,970982,971784,972169
Description:

This update for vsftpd fixes the following issues:

- ? wildcard matching broken (bsc#969411).
- Hang when using seccomp and syslog (bsc#971784).
- User creation to not report errors when user already exists (bsc#972169).
- Hang on pam_exec in pam.d (bsc#970982).
- Memory leaks in ls.c (bsc#968138).
- Logrotate script fails when vsftpd is not running. (bsc#935279)


-----------------------------------------
Patch: SUSE-2016-929
Released: Mon Jun 13 13:43:27 2016
Summary: Recommended update for mtools
Severity: low
References: 957007
Description:

This update for mtools provides the following fixes:

- Add glibc-locale as a runtime dependency. Tools like mcopy(1) use it. (bsc#957007)


-----------------------------------------
Patch: SUSE-2016-930
Released: Mon Jun 13 14:31:22 2016
Summary: Security update for ntp
Severity: important
References: 979302,979981,981422,982056,982064,982065,982066,982067,982068,CVE-2016-4953,CVE-2016-4954,CVE-2016-4955,CVE-2016-4956,CVE-2016-4957
Description:
ntp was updated to version 4.2.8p8 to fix five security issues.

These security issues were fixed:
- CVE-2016-4953: Bad authentication demobilizes ephemeral associations (bsc#982065).
- CVE-2016-4954: Processing spoofed server packets (bsc#982066).
- CVE-2016-4955: Autokey association reset (bsc#982067).
- CVE-2016-4956: Broadcast interleave (bsc#982068).
- CVE-2016-4957: CRYPTO_NAK crash (bsc#982064).

These non-security issues were fixed:
- Keep the parent process alive until the daemon has finished initialisation, to make sure that the PID file exists when the parent returns.
- bsc#979302: Change the process name of the forking DNS worker process to avoid the impression that ntpd is started twice.
- bsc#981422: Don't ignore SIGCHILD because it breaks wait().
- bsc#979981: ntp-wait does not accept fractional seconds, so use 1 instead of 0.2 in ntp-wait.service.
- Separate the creation of ntp.keys and key #1 in it to avoid problems when upgrading installations that have the file, but no key #1, which is needed e.g. by 'rcntp addserver'.


-----------------------------------------
Patch: SUSE-2016-935
Released: Tue Jun 14 12:47:14 2016
Summary: Security update for ImageMagick
Severity: important
References: 867943,982178,CVE-2016-5118
Description:
 This update for ImageMagick fixes the following issues:

This security issue was fixed:
- CVE-2016-5118: Prevent code execution via popen() (bsc#982178)

This non-security issue was fixed:
- Fix encoding of /Title in generated PDFs. (bsc#867943)


-----------------------------------------
Patch: SUSE-2016-940
Released: Wed Jun 15 11:45:37 2016
Summary: Security update for libarchive
Severity: moderate
References: 979005,CVE-2016-1541
Description:

This update for libarchive fixes the following issue: 

- Fix a heap-based buffer overflow (CVE-2016-1541, bsc#979005)



-----------------------------------------
Patch: SUSE-2016-941
Released: Wed Jun 15 14:26:35 2016
Summary: Recommended update for gcc48
Severity: moderate
References: 955382,970009,976627,977654
Description:

This update for gcc48 fixes the following issues:

- Fix internal compiler error specific to the ppc64le architecture. (bsc#976627)
- Fix issue with using gcov and #pragma pack. (bsc#977654)
- Fix internal compiler error when building samba on aarch64. (bsc#970009)
- Fix HTM built-ins on PowerPC. (bsc#955382)
- Build without GRAPHITE where cloog-isl is not available.


-----------------------------------------
Patch: SUSE-2016-943
Released: Thu Jun 16 08:05:59 2016
Summary: Security update for p7zip
Severity: moderate
References: 979823,CVE-2016-2335
Description:

This update for p7zip fixes the following issues: 

- add p7zip-9.20.1-CVE-2016-2335.patch to fix 7zip UDF
  CInArchive::ReadFileItem code execution vulnerability
  [bsc#979823], [CVE-2016-2335]


-----------------------------------------
Patch: SUSE-2016-953
Released: Fri Jun 17 13:25:32 2016
Summary: Recommended update for libcap1
Severity: low
References: 982232
Description:

This update fixes building of libcap1 with newer versions of glibc.


-----------------------------------------
Patch: SUSE-2016-956
Released: Fri Jun 17 13:37:56 2016
Summary: Recommended update for nethogs
Severity: low
References: 970024
Description:

This update for nethogs fixes the following issues:

- Fix buffer overflow for command line strings of length greater than 80.
- Fix creating socket by using normal DGRAM sockets. (bsc#970024)
- Correctly display PID's up to 7 characters.
- Get all running non-loopback devices by default.
- Consider the terminal height when printing the 'total' row.
- Add new command line switches: -s, -c, -v.
- Change needrefresh default value from true to false.


-----------------------------------------
Patch: SUSE-2016-962
Released: Fri Jun 17 15:50:39 2016
Summary: Recommended update for perl-Net-SSLeay
Severity: low
References: 982234
Description:

This update for perl-Net-SSLeay removes a test which is executed at build time
and is now obsolete with newer (1.0.1n+) versions of OpenSSL.


-----------------------------------------
Patch: SUSE-2016-967
Released: Mon Jun 20 12:05:16 2016
Summary: Recommended update for timezone
Severity: low
References: 982833
Description:

This update provides the latest timezone information (2016e) for your
system, including the following changes:

- Africa/Cairo observes DST in 2016 from July 7 to the end of October.

This release also includes changes affecting past time stamps. For a comprehensive
list, please refer to the release announcement from ICANN:

http://mm.icann.org/pipermail/tz-announce/2016-June/000039.html


-----------------------------------------
Patch: SUSE-2016-987
Released: Wed Jun 22 14:32:18 2016
Summary: Recommended update for procps
Severity: low
References: 981616
Description:

This update for procps fixes the following issues:

- Improve pmap(1) to be compatible with kernel 4.4. (bsc#981616)


-----------------------------------------
Patch: SUSE-2016-1003
Released: Mon Jun 27 17:01:45 2016
Summary: Security update for MozillaFirefox, MozillaFirefox-branding-SLE, mozilla-nspr, mozilla-nss
Severity: important
References: 982366,983549,983638,983639,983643,983646,983651,983652,983653,983655,984006,984126,985659,CVE-2016-2815,CVE-2016-2818,CVE-2016-2819,CVE-2016-2821,CVE-2016-2822,CVE-2016-2824,CVE-2016-2828,CVE-2016-2831,CVE-2016-2834
Description:
MozillaFirefox, MozillaFirefox-branding-SLE, mozilla-nss and mozilla-nspr were updated to fix nine security issues.

MozillaFirefox was updated to version 45.2.0 ESR. mozilla-nss was updated to version 3.21.1.

These security issues were fixed:
- CVE-2016-2834: Memory safety bugs in NSS (MFSA 2016-61) (bsc#983639).
- CVE-2016-2824: Out-of-bounds write with WebGL shader (MFSA 2016-53) (bsc#983651).
- CVE-2016-2822: Addressbar spoofing though the SELECT element (MFSA 2016-52) (bsc#983652).
- CVE-2016-2821: Use-after-free deleting tables from a contenteditable document (MFSA 2016-51) (bsc#983653).
- CVE-2016-2819: Buffer overflow parsing HTML5 fragments (MFSA 2016-50) (bsc#983655).
- CVE-2016-2828: Use-after-free when textures are used in WebGL operations after recycle pool destruction (MFSA 2016-56) (bsc#983646).
- CVE-2016-2831: Entering fullscreen and persistent pointerlock without user permission (MFSA 2016-58) (bsc#983643).
- CVE-2016-2815, CVE-2016-2818: Miscellaneous memory safety hazards (MFSA 2016-49) (bsc#983638)
  
These non-security issues were fixed:
- bsc#982366: Unknown SSL protocol error in connections 
- Fix crashes on aarch64
  * Determine page size at runtime (bsc#984006)
  * Allow aarch64 to work in safe mode (bsc#985659)
- Fix crashes on mainframes

All extensions must now be signed by addons.mozilla.org. Please read README.SUSE for more details.


-----------------------------------------
Patch: SUSE-2016-1014
Released: Thu Jun 30 21:23:05 2016
Summary: Recommended update for haveged
Severity: moderate
References: 958562,959237
Description:

This update for haveged fixes the following issues:

- Remedy the potential for deadlocks when booting the system: journald reads from
  /dev/random, which receives entropy from haveged, which in turn logs to syslog
  before providing any. (bsc#959237)
- Remove 'After=systemd-random-seed.service' from systemd service file to avoid
  the potential for deadlocks when booting the system: systemd-random-seed needs
  /var to read its previous state; mounting /var needs journald; journald needs
  entropy; and entropy is provided by haveged, which needs systemd-random-seed.
  (bsc#959237)
- Add missing dependency on coreutils for initrd macros. (bsc#958562)


-----------------------------------------
Patch: SUSE-2016-1016
Released: Fri Jul  1 14:37:29 2016
Summary: Security update for LibreOffice
Severity: moderate
References: 718113,856729,939998,945443,945445,955832,965294,965296,967014,967015,977784,CVE-2016-0794,CVE-2016-0795
Description:

LibreOffice was updated to version 5.1.3.2, bringing many new features and bug fixes.

Two security issues have been fixed:

- CVE-2016-0795: LibreOffice allowed remote attackers to cause a denial of service
  (memory corruption) or possibly have unspecified other impact via a crafted
  LwpTocSuperLayout record in a LotusWordPro (lwp) document.
- CVE-2016-0794: The lwp filter in LibreOffice allowed remote attackers to cause a
  denial of service (memory corruption) or possibly have unspecified other impact
  via a crafted LotusWordPro (lwp) document.

A comprehensive list of new features and improvements in this release is provided by
the Document Foundation at https://wiki.documentfoundation.org/ReleaseNotes/5.1 .


-----------------------------------------
Patch: SUSE-2016-1018
Released: Mon Jul  4 14:31:15 2016
Summary: Recommended update for libcpuset
Severity: low
References: 546310,978841,984832
Description:

This update for libcpuset fixes the following issues:

- Insufficient error handling in functions cpuset_pin(), cpuset_size() and cpuset_where()
  could lead to a segmentation fault when number of open files reached the limit.
  (bsc#978841)
- Missing initialization of buffer that stores data read from /proc files. (bsc#984832,
  bsc#546310)


-----------------------------------------
Patch: SUSE-2016-1022
Released: Mon Jul  4 18:05:08 2016
Summary: Recommended update for cups
Severity: low
References: 968706
Description:

This update for cups fixes the following issues:

- Fix raw printing multiple files by adding the gziptoany filter. (bsc#968706)
- Avoid warnings in error_log of the form 'Unexpected 'document-name' operation
  attribute in a Create-Job request'.


-----------------------------------------
Patch: SUSE-2016-1026
Released: Wed Jul  6 17:20:17 2016
Summary: Recommended update for timezone
Severity: moderate
References: 987720
Description:

This update provides the latest timezone information (2016f) for your system, including the following changes:

- Egypt (Africa/Cairo) DST change 2016-07-07 cancelled (bsc#987720)
- Asia/Novosibirsk switches from +06 to +07 on 2016-07-24 02:00
- Asia/Novokuznetsk and Asia/Novosibirsk now use numeric time zone abbreviations instead of invented ones
- Europe/Minsk's 1992-03-29 spring-forward transition was at 02:00 not 00:00



-----------------------------------------
Patch: SUSE-2016-1028
Released: Thu Jul  7 11:50:47 2016
Summary: Recommended update for findutils
Severity: moderate
References: 986935
Description:

This update for findutils fixes the following issues:

- find -exec + would not pass all arguments for certain specific filename lengths (bsc#986935)


-----------------------------------------
Patch: SUSE-2016-1029
Released: Thu Jul  7 11:52:21 2016
Summary: Recommended update for w3m
Severity: moderate
References: 950468,950800
Description:

This update for w3m fixes the following issues:

- Segmentation fault when doing an https request to an unresolvable host. (bsc#950468)
- w3mman(1) displays invalid characters. (bsc#950800)


-----------------------------------------
Patch: SUSE-2016-1036
Released: Fri Jul  8 11:38:35 2016
Summary: Recommended update for xinit
Severity: moderate
References: 921172,973559,981437
Description:

This update for xinit fixes the following issues:
 
- xinitrc.common: Run numbered scripts sequentially. All non-numbered scripts will still be run in background to avoid stalling on non-daemonizing 'services' (bsc#973559)
- xinitrc.common: Remove '$' from error message, increase timeout
- xinitrc.common: Don't expand $WINDOWMANAGER (bsc#981437, bsc#921172)
- xinitrc.common: Accept more WMs as fallbacks and make fallback errors more descriptive



-----------------------------------------
Patch: SUSE-2016-1041
Released: Mon Jul 11 12:11:11 2016
Summary: Security update for ImageMagick
Severity: important
References: 983232,983234,983253,983259,983292,983305,983308,983521,983523,983527,983533,983739,983746,983752,983774,983794,983796,983799,983803,984014,984018,984023,984028,984032,984035,984135,984137,984142,984144,984145,984149,984150,984160,984166,984172,984179,984181,984183,984184,984185,984186,984187,984191,984193,984370,984372,984373,984374,984375,984379,984394,984398,984400,984401,984404,984406,984408,984409,984427,984433,984436,985442,985448,985451,985456,985460,986608,986609,CVE-2014-9805,CVE-2014-9806,CVE-2014-9807,CVE-2014-9808,CVE-2014-9809,CVE-2014-9810,CVE-2014-9811,CVE-2014-9812,CVE-2014-9813,CVE-2014-9814,CVE-2014-9815,CVE-2014-9816,CVE-2014-9817,CVE-2014-9818,CVE-2014-9819,CVE-2014-9820,CVE-2014-9821,CVE-2014-9822,CVE-2014-9823,CVE-2014-9824,CVE-2014-9825,CVE-2014-9826,CVE-2014-9828,CVE-2014-9829,CVE-2014-9830,CVE-2014-9831,CVE-2014-9832,CVE-2014-9833,CVE-2014-9834,CVE-2014-9835,CVE-2014-9836,CVE-2014-9837,CVE-2014-9838,CVE-2014-9839,CVE-2014-9840,CVE-2014-9841,CVE-2014-9842,CVE-2014-9843,CVE-2014-9844,CVE-2014-9845,CVE-2014-9846,CVE-2014-9847,CVE-2014-9848,CVE-2014-9849,CVE-2014-9850,CVE-2014-9851,CVE-2014-9852,CVE-2014-9853,CVE-2014-9854,CVE-2015-8894,CVE-2015-8895,CVE-2015-8896,CVE-2015-8897,CVE-2015-8898,CVE-2015-8900,CVE-2015-8901,CVE-2015-8902,CVE-2015-8903,CVE-2016-4562,CVE-2016-4563,CVE-2016-4564,CVE-2016-5687,CVE-2016-5688,CVE-2016-5689,CVE-2016-5690,CVE-2016-5691,CVE-2016-5841,CVE-2016-5842
Description:
ImageMagick was updated to fix 66 security issues.

These security issues were fixed:
- CVE-2014-9810: SEGV in dpx file handler. (bsc#983803).
- CVE-2014-9811: Crash in xwd file handler (bsc#984032).
- CVE-2014-9812: NULL pointer dereference in ps file handling (bsc#984137).
- CVE-2014-9813: Crash on corrupted viff file (bsc#984035).
- CVE-2014-9814: NULL pointer dereference in wpg file handling (bsc#984193).
- CVE-2014-9815: Crash on corrupted wpg file (bsc#984372).
- CVE-2014-9816: Out of bound access in viff image (bsc#984398).
- CVE-2014-9817: Heap buffer overflow in pdb file handling (bsc#984400).
- CVE-2014-9818: Out of bound access on malformed sun file (bsc#984181).
- CVE-2014-9819: Heap overflow in palm files (bsc#984142).
- CVE-2014-9830: Handling of corrupted sun file (bsc#984135).
- CVE-2014-9831: Handling of corrupted wpg file (bsc#984375).
- CVE-2014-9850: Incorrect thread limit logic (bsc#984149).
- CVE-2014-9851: Crash when parsing resource block (bsc#984160).
- CVE-2014-9852: Incorrect usage of object after it has been destroyed (bsc#984191).
- CVE-2014-9853: Memory leak in rle file handling (bsc#984408).
- CVE-2015-8902: PDB file DoS (CPU consumption) (bsc#983253).
- CVE-2015-8903: Denial of service (cpu) in vicar (bsc#983259).
- CVE-2015-8900: HDR file DoS (endless loop) (bsc#983232).
- CVE-2015-8901: MIFF file DoS (endless loop) (bsc#983234).
- CVE-2016-5688: Various invalid memory reads in ImageMagick WPG (bsc#985442).
- CVE-2014-9834: Heap overflow in pict file (bsc#984436).
- CVE-2014-9806: Prevent leak of file descriptor due to corrupted file. (bsc#983774).
- CVE-2016-5687: Out of bounds read in DDS coder (bsc#985448).
- CVE-2014-9838: Out of memory crash in magick/cache.c (bsc#984370).
- CVE-2014-9854: Filling memory during identification of TIFF image (bsc#984184).
- CVE-2015-8898: Prevent null pointer access in magick/constitute.c (bsc#983746).
- CVE-2014-9833: Heap overflow in psd file (bsc#984406).
- CVE-2015-8894: Double free in coders/tga.c:221 (bsc#983523).
- CVE-2015-8895: Integer and Buffer overflow in coders/icon.c (bsc#983527).
- CVE-2015-8896: Double free / integer truncation issue in coders/pict.c:2000 (bsc#983533).
- CVE-2015-8897: Out of bounds error in SpliceImage (bsc#983739).
- CVE-2016-5690: Bad foor loop in  DCM coder (bsc#985451).
- CVE-2016-5691: Checks for pixel.red/green/blue in dcm coder (bsc#985456).
- CVE-2014-9836: Crash in xpm file handling (bsc#984023).
- CVE-2014-9808: SEGV due to corrupted dpc images. (bsc#983796).
- CVE-2014-9821: Avoid heap overflow in pnm files. (bsc#984014).
- CVE-2014-9820: Heap overflow in xpm files (bsc#984150).
- CVE-2014-9823: Heap overflow in palm file (bsc#984401).
- CVE-2014-9822: Heap overflow in quantum file (bsc#984187).
- CVE-2014-9825: Heap overflow in corrupted psd file (bsc#984427).
- CVE-2014-9824: Heap overflow in psd file (bsc#984185).
- CVE-2014-9809: SEGV due to corrupted xwd images. (bsc#983799).
- CVE-2014-9826: Incorrect error handling in sun files (bsc#984186).
- CVE-2014-9843: Incorrect boundary checks in DecodePSDPixels (bsc#984179).
- CVE-2014-9842: Memory leak in psd handling (bsc#984374).
- CVE-2014-9841: Throwing of exceptions in psd handling (bsc#984172).
- CVE-2014-9840: Out of bound access in palm file (bsc#984433).
- CVE-2014-9847: Incorrect handling of 'previous' image in the JNG decoder (bsc#984144).
- CVE-2014-9846: Added checks to prevent overflow in rle file. (bsc#983521).
- CVE-2014-9845: Crash due to corrupted dib file (bsc#984394).
- CVE-2014-9844: Out of bound issue in rle file (bsc#984373).
- CVE-2014-9849: Crash in png coder (bsc#984018).
- CVE-2014-9848: Memory leak in quantum management (bsc#984404).
- CVE-2014-9807: Double free in pdb coder. (bsc#983794).
- CVE-2014-9829: Out of bound access in sun file (bsc#984409).
- CVE-2014-9832: Heap overflow in pcx file (bsc#984183).
- CVE-2014-9805: SEGV due to a corrupted pnm file. (bsc#983752).
- CVE-2016-4564: The DrawImage function in MagickCore/draw.c in ImageMagick made an incorrect function call in attempting to locate the next token, which allowed remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file (bsc#983308).
- CVE-2016-4563: The TraceStrokePolygon function in MagickCore/draw.c in ImageMagick mishandled the relationship between the BezierQuantum value and certain strokes data, which allowed remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file (bsc#983305).
- CVE-2016-4562: The DrawDashPolygon function in MagickCore/draw.c in ImageMagick mishandled calculations of certain vertices integer data, which allowed remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file (bsc#983292).
- CVE-2014-9839: Theoretical out of bound access in magick/colormap-private.h (bsc#984379).
- CVE-2016-5689: NULL ptr dereference in dcm coder (bsc#985460).
- CVE-2014-9837: Additional PNM sanity checks (bsc#984166).
- CVE-2014-9835: Heap overflow in wpf file (bsc#984145).
- CVE-2014-9828: Corrupted (too many colors) psd file (bsc#984028).
- CVE-2016-5841: Integer overflow could have read to RCE (bnc#986609).
- CVE-2016-5842: Out-of-bounds read in MagickCore/property.c:1396 could have lead to memory leak (bnc#986608).


-----------------------------------------
Patch: SUSE-2016-1048
Released: Wed Jul 13 12:26:15 2016
Summary: Security update for dhcp
Severity: moderate
References: 969820,972907,CVE-2016-2774
Description:

This update for dhcp fixes the following issues:

Security issue fixed:
- CVE-2016-2774: Fixed a denial of service attack against the DHCP server over the OMAPI TCP socket, which could be used
  by network adjacent attackers to make the DHCP server non-functional (bsc#969820).

Non security issues fixed:
- Rename freeaddrinfo(), getaddrinfo() and getnameinfo() in the internal libirs
  library that does not consider /etc/hosts and /etc/nsswitch.conf to use irs_
  prefix. This prevents name conflicts which would result in overriding standard
  glibc functions used by libldap. (bsc#972907)


-----------------------------------------
Patch: SUSE-2016-1085
Released: Thu Jul 21 18:45:30 2016
Summary: Recommended update for strace
Severity: low
References: 983282
Description:

This update for strace provides the following fixes:

- If the set of headers are unable to produce a valid list, printflags will try
  to pass NULL to tprints which crashes. Add a sanity check for this edge case.
  (bsc#983282)


-----------------------------------------
Patch: SUSE-2016-1091
Released: Fri Jul 22 20:13:08 2016
Summary: Recommended update for mozjs17
Severity: low
References: 984126
Description:

This update for mozjs17 adds support for 48 bits virtual address space, used
in the arm64 architecture.


-----------------------------------------
Patch: SUSE-2016-1094
Released: Mon Jul 25 14:26:33 2016
Summary: Recommended update for smt
Severity: moderate
References: 949480,962982,965590,973801,974584,974649,977002,979459
Description:

This update for smt fixes the following issues:

- Add credentials info to subscriptions/products API endpoint
  to support auth for docker container (bsc#979459)
- Convert Patches table to UTF8 (bsc#977002)
- Fix smt-jobqueue-cleanup returning Undefined subroutine isa
  (bsc#974584)
- Fix duplicate ProductCatalogs entries (bsc#973801)
- Add shortname to returned product (bsc#949480)
- clientSetup4SMT: Fail if machine is already registered and
  suggest to de-register (bsc#962982)
- Store host and virttype attribute separate to identify virtual
  machines correctly (bsc#974649)
- Prevent listing products as one without subscriptions (bsc#965590)


-----------------------------------------
Patch: SUSE-2016-1111
Released: Thu Jul 28 10:10:34 2016
Summary: Recommended update for ipsec-tools
Severity: low
References: 968926
Description:

This update for ipsec-tools fixes the package post installation script to create
the /run/racoon directory, which will be later used when starting up racoon.


-----------------------------------------
Patch: SUSE-2016-1115
Released: Thu Jul 28 12:40:36 2016
Summary: Recommended update for psmisc
Severity: low
References: 908063,930760,974161
Description:

This update for psmisc prevents attempts to close files which are not open. This
issue could make pstree(1) terminate with a segmentation fault.


-----------------------------------------
Patch: SUSE-2016-1117
Released: Thu Jul 28 15:53:43 2016
Summary: Recommended update for gnome-nettool
Severity: moderate
References: 977225
Description:

This update for gnome-nettool fixes the following issues:

- Add new network type: infiniband (bsc#977225)


-----------------------------------------
Patch: SUSE-2016-1123
Released: Fri Jul 29 10:19:58 2016
Summary: Security update for libarchive
Severity: important
References: 984990,985609,985665,985669,985673,985675,985679,985682,985685,985688,985689,985697,985698,985700,985703,985704,985706,985826,985832,985835,CVE-2015-8918,CVE-2015-8919,CVE-2015-8920,CVE-2015-8921,CVE-2015-8922,CVE-2015-8923,CVE-2015-8924,CVE-2015-8925,CVE-2015-8926,CVE-2015-8928,CVE-2015-8929,CVE-2015-8930,CVE-2015-8931,CVE-2015-8932,CVE-2015-8933,CVE-2015-8934,CVE-2016-4300,CVE-2016-4301,CVE-2016-4302,CVE-2016-4809
Description:
libarchive was updated to fix 20 security issues.

These security issues were fixed:
- CVE-2015-8918: Overlapping memcpy in CAB parser (bsc#985698).
- CVE-2015-8919: Heap out of bounds read in LHA/LZH parser (bsc#985697).
- CVE-2015-8920: Stack out of bounds read in ar parser (bsc#985675).
- CVE-2015-8921: Global out of bounds read in mtree parser (bsc#985682).
- CVE-2015-8922: Null pointer access in 7z parser (bsc#985685).
- CVE-2015-8923: Unclear crashes in ZIP parser (bsc#985703).
- CVE-2015-8924: Heap buffer read overflow in tar (bsc#985609).
- CVE-2015-8925: Unclear invalid memory read in mtree parser (bsc#985706).
- CVE-2015-8926: NULL pointer access in RAR parser (bsc#985704).
- CVE-2015-8928: Heap out of bounds read in mtree parser (bsc#985679).
- CVE-2015-8929: Memory leak in tar parser (bsc#985669).
- CVE-2015-8930: Endless loop in ISO parser (bsc#985700).
- CVE-2015-8931: Undefined behavior / signed integer overflow in mtree parser (bsc#985689).
- CVE-2015-8932: Compress handler left shifting larger than int size (bsc#985665).
- CVE-2015-8933: Undefined behavior / signed integer overflow in TAR parser (bsc#985688).
- CVE-2015-8934: Out of bounds read in RAR (bsc#985673).
- CVE-2016-4300: Heap buffer overflow vulnerability in the 7zip read_SubStreamsInfo (bsc#985832).
- CVE-2016-4301: Stack buffer overflow in the mtree parse_device (bsc#985826).
- CVE-2016-4302: Heap buffer overflow in the Rar decompression functionality (bsc#985835).
- CVE-2016-4809: Memory allocate error with symbolic links in cpio archives (bsc#984990).


-----------------------------------------
Patch: SUSE-2016-1124
Released: Fri Jul 29 13:27:52 2016
Summary: Recommended update for libxcb
Severity: low
References: 984368
Description:

This update for libxcb provides the following fixes:

- Fix encoding of 64-bit elements in PRESENT extension. (bsc#984368)


-----------------------------------------
Patch: SUSE-2016-1141
Released: Wed Aug  3 15:24:30 2016
Summary: Security update for sqlite3
Severity: moderate
References: 987394,CVE-2016-6153
Description:

This update for sqlite3 fixes the following issues: 

The following security issue was fixed:
- CVE-2016-6153: Fixed a tempdir selection vulnerability (bsc#987394)


-----------------------------------------
Patch: SUSE-2016-1149
Released: Thu Aug  4 14:06:16 2016
Summary: Recommended update for gcc48
Severity: low
References: 981311
Description:

This update for gcc48 fixes a miscompilation issue specific to the aarch64 architecture.


-----------------------------------------
Patch: SUSE-2016-1152
Released: Thu Aug  4 15:02:18 2016
Summary: Recommended update for binutils
Severity: low
References: 970239,985642
Description:

GNU Binutils was updated to version 2.26.1, which brings several fixes and
enhancements:

- Add -mrelax-relocations on x86 but keep it disabled on old products.
- Add --fix-stm32l4xx-629360 to the ARM linker to enable a link-time workaround
  for a bug in the bus matrix / memory controller for some of the STM32 Cortex-M4
  based products (STM32L4xx).
- Add a configure option --enable-compressed-debug-sections={all,ld} to decide
  whether DWARF debug sections should be compressed by default.
- Add support for the ARC EM/HS, and ARC600/700 architectures.
- Experimental support for linker garbage collection (--gc-sections) has been
  enabled for COFF and PE based targets.
- New command line option for ELF targets to compress DWARF debug sections,
  --compress-debug-sections=[none|zlib|zlib-gnu|zlib-gabi].
- New command line option, --orphan-handling=[place|warn|error|discard], to
  adjust how orphan sections are handled.  The default is 'place' which gives
  the current behavior, 'warn' and 'error' issue a warning or error respectively
  when orphan sections are found, and 'discard' will discard all orphan sections.
- Add support for LLVM plugin.
- Add --print-memory-usage option to report memory blocks usage.
- Add --require-defined option, it's like --undefined except the new symbol must
  be defined by the end of the link.
- Add a configure option --enable-compressed-debug-sections={all,gas} to decide
  whether DWARF debug sections should be compressed by default.
- Add support for the ARC EM/HS, and ARC600/700 architectures.  Remove assembler
  support for Argonaut RISC architectures.
- Add option to objcopy to insert new symbols into a file:
  --add-symbol <name>=[<section>:]<value>[,<flags>]
- Add support for the ARC EM/HS, and ARC600/700 architectures.
- Extend objcopy --compress-debug-sections option to support
  --compress-debug-sections=[none|zlib|zlib-gnu|zlib-gabi] for ELF targets.
- Add --update-section option to objcopy.
- Add --output-separator option to strings.
- Fix internal error when applying TLSDESC relocations with no TLS segment
- Fix wrong insn type for troo insn.
- Change default common-page-size to 64K on aarch64.


-----------------------------------------
Patch: SUSE-2016-1162
Released: Fri Aug  5 13:44:21 2016
Summary: Recommended update for emacs
Severity: low
References: 953745
Description:
This update for emacs provides the following fixes:

- Do not enforce the usage of the glibc regular expression as the GNU emacs ctags
  program depends on the emacs version.


-----------------------------------------
Patch: SUSE-2016-1186
Released: Tue Aug  9 13:33:00 2016
Summary: Security update for java-1_7_0-openjdk
Severity: important
References: 982366,984684,988651,989722,989723,989725,989727,989728,989729,989730,989731,989732,989733,989734,CVE-2016-3458,CVE-2016-3485,CVE-2016-3498,CVE-2016-3500,CVE-2016-3503,CVE-2016-3508,CVE-2016-3511,CVE-2016-3550,CVE-2016-3598,CVE-2016-3606,CVE-2016-3610
Description:

This update for java-1_7_0-openjdk fixes the following issues:

- Update to 2.6.7 - OpenJDK 7u111
  * Security fixes
    - S8079718, CVE-2016-3458: IIOP Input Stream Hooking
      (bsc#989732)
    - S8145446, CVE-2016-3485: Perfect pipe placement (Windows
      only)  (bsc#989734)
    - S8147771: Construction of static protection domains under
      Javax custom policy
    - S8148872, CVE-2016-3500: Complete name checking (bsc#989730)
    - S8149962, CVE-2016-3508: Better delineation of XML processing
      (bsc#989731)
    - S8150752: Share Class Data
    - S8151925: Font reference improvements
    - S8152479, CVE-2016-3550: Coded byte streams (bsc#989733)
    - S8155981, CVE-2016-3606: Bolster bytecode verification
      (bsc#989722)
    - S8155985, CVE-2016-3598: Persistent Parameter Processing
      (bsc#989723)
    - S8158571, CVE-2016-3610: Additional method handle validation
      (bsc#989725)
    - CVE-2016-3511 (bsc#989727)
    - CVE-2016-3503 (bsc#989728)
    - CVE-2016-3498 (bsc#989729)
  * Import of OpenJDK 7 u111 build 0
    - S6953295: Move few sun.security.{util, x509, pkcs} classes
      used by keytool/jarsigner to another package
    - S7060849: Eliminate pack200 build warnings
    - S7064075: Security libraries don't build with
      javac -Xlint:all,-deprecation -Werror
    - S7069870: Parts of the JDK erroneously rely on generic array
      initializers with diamond
    - S7102686: Restructure timestamp code so that jars and modules
      can more easily share the same code
    - S7105780: Add SSLSocket client/SSLEngine server to templates
      directory
    - S7142339: PKCS7.java is needlessly creating SHA1PRNG
      SecureRandom instances when timestamping is not done
    - S7152582: PKCS11 tests should use the NSS libraries available
      in the OS
    - S7192202: Make sure keytool prints both unknown and
      unparseable extensions
    - S7194449: String resources for Key Tool and Policy Tool
      should be in their respective packages
    - S7196855: autotest.sh fails on ubuntu because libsoftokn.so
      not found
    - S7200682: TEST_BUG: keytool/autotest.sh still has problems
      with libsoftokn.so
    - S8002306: (se) Selector.open fails if invoked with thread
      interrupt status set [win]
    - S8009636: JARSigner including TimeStamp PolicyID
      (TSAPolicyID) as defined in RFC3161
    - S8019341: Update CookieHttpsClientTest to use the newer
      framework.
    - S8022228: Intermittent test failures in
      sun/security/ssl/javax/net/ssl/NewAPIs
    - S8022439: Fix lint warnings in sun.security.ec
    - S8022594: Potential deadlock in <clinit> of
      sun.nio.ch.Util/IOUtil
    - S8023546: sun/security/mscapi/ShortRSAKey1024.sh fails
      intermittently
    - S8036612: [parfait] JNI exception pending in
      jdk/src/windows/native/sun/security/mscapi/security.cpp
    - S8037557: test SessionCacheSizeTests.java timeout
    - S8038837: Add support to jarsigner for specifying timestamp
      hash algorithm
    - S8079410: Hotspot version to share the same update and build
      version from JDK
    - S8130735: javax.swing.TimerQueue: timer fires late when
      another timer starts
    - S8139436: sun.security.mscapi.KeyStore might load incomplete
      data
    - S8144313: Test SessionTimeOutTests can be timeout
    - S8146387: Test SSLSession/SessionCacheSizeTests socket
      accept timed out
    - S8146669: Test SessionTimeOutTests fails intermittently
    - S8146993: Several javax/management/remote/mandatory regression
      tests fail after JDK-8138811
    - S8147857: [TEST] RMIConnector logs attribute names incorrectly
    - S8151841, PR3098: Build needs additional flags to compile
      with GCC 6
    - S8151876: (tz) Support tzdata2016d
    - S8157077: 8u101 L10n resource file updates
    - S8161262: Fix jdk build with gcc 4.1.2: -fno-strict-overflow
      not known.
  * Import of OpenJDK 7 u111 build 1
    - S7081817: test/sun/security/provider/certpath/X509CertPath/IllegalCertificates.java failing
    - S8140344: add support for 3 digit update release numbers
    - S8145017: Add support for 3 digit hotspot minor version
      numbers
    - S8162344: The API changes made by CR 7064075 need to be
      reverted
  * Backports
    - S2178143, PR2958: JVM crashes if the number of bound CPUs
      changed during runtime
    - S4900206, PR3101: Include worst-case rounding tests for Math
      library functions
    - S6260348, PR3067: GTK+ L&F JTextComponent not respecting
      desktop caret blink rate
    - S6934604, PR3075: enable parts of EliminateAutoBox by default
    - S7043064, PR3020: sun/java2d/cmm/ tests failed against
      RI b141 & b138-nightly
    - S7051394, PR3020: NullPointerException when running
      regression tests LoadProfileTest by using openjdk-7-b144
    - S7086015, PR3013: fix
      test/tools/javac/parser/netbeans/JavacParserTest.java
    - S7119487, PR3013: JavacParserTest.java test fails on Windows
      platforms
    - S7124245, PR3020: [lcms] ColorConvertOp to color space
      CS_GRAY apparently converts orange to 244,244,0
    - S7159445, PR3013: (javac) emits inaccurate diagnostics for
      enhanced for-loops
    - S7175845, PR1437, RH1207129: 'jar uf' changes file
      permissions unexpectedly
    - S8005402, PR3020: Need to provide benchmarks for color
      management
    - S8005530, PR3020: [lcms] Improve performance of ColorConverOp
      for default destinations
    - S8005930, PR3020: [lcms] ColorConvertOp: Alpha channel is not
      transferred from source to destination.
    - S8013430, PR3020: REGRESSION:
      closed/java/awt/color/ICC_Profile/LoadProfileTest/LoadProfileTest.java
      fails with java.io.StreamCorruptedException: invalid type
      code: EE since 8b87
    - S8014286, PR3075: failed java/lang/Math/DivModTests.java
      after 6934604 changes
    - S8014959, PR3075: assert(Compile::current()->live_nodes() < (uint)MaxNodeLimit)
      failed: Live Node limit exceeded limit
    - S8019247, PR3075: SIGSEGV in compiled method
      c8e.e.t_.getArray(Ljava/lang/Class;)[Ljava/lang/Object
    - S8024511, PR3020: Crash during color profile destruction
    - S8025429, PR3020: [parfait] warnings from b107 for
      sun.java2d.cmm: JNI exception pending
    - S8026702, PR3020: Fix for 8025429 breaks jdk build on windows
    - S8026780, PR3020, RH1142587: Crash on PPC and PPC v2 for
      Java_awt test suit
    - S8047066, PR3020: Test test/sun/awt/image/bug8038000.java
      fails with ClassCastException
    - S8069181, PR3012, RH1015612: java.lang.AssertionError when
      compiling JDK 1.4 code in JDK 8
    - S8158260, PR2992, RH1341258: PPC64: unaligned Unsafe.getInt
      can lead to the generation of illegal instructions (bsc#988651)
    - S8159244, PR3075: Partially initialized string object created
      by C2's string concat optimization may escape
  * Bug fixes
    - PR2799, RH1195203: Files are missing from resources.jar
    - PR2900: Don't use WithSeed versions of NSS functions as they
      don't fully process the seed
    - PR3091: SystemTap is heavily confused by multiple JDKs
    - PR3102: Extend 8022594 to AixPollPort
    - PR3103: Handle case in clean-fonts where
      linux.fontconfig.Gentoo.properties.old has not been created
    - PR3111: Provide option to disable SystemTap tests
    - PR3114: Don't assume system mime.types supports
      text/x-java-source
    - PR3115: Add check for elliptic curve cryptography
      implementation
    - PR3116: Add tests for Java debug info and source files
    - PR3118: Path to agpl-3.0.txt not updated
    - PR3119: Makefile handles cacerts as a symlink, but the
      configure check doesn't
  * AArch64 port
    - S8148328, PR3100: aarch64: redundant lsr instructions in stub
      code.
    - S8148783, PR3100: aarch64: SEGV running SpecJBB2013
    - S8148948, PR3100: aarch64: generate_copy_longs calls align()
      incorrectly
    - S8150045, PR3100: arraycopy causes segfaults in SATB during
      garbage collection
    - S8154537, PR3100: AArch64: some integer rotate instructions
      are never emitted
    - S8154739, PR3100: AArch64: TemplateTable::fast_xaccess loads
      in wrong mode
    - S8157906, PR3100: aarch64: some more integer rotate
      instructions are never emitted
- Enable SunEC for SLE12 and Leap (bsc#982366)

- Fix aarch64 running with 48 bits va space (bsc#984684)



-----------------------------------------
Patch: SUSE-2016-1187
Released: Tue Aug  9 13:33:08 2016
Summary: Security update for java-1_8_0-openjdk
Severity: important
References: 984684,987895,988651,989721,989722,989723,989725,989726,989727,989728,989729,989730,989731,989732,989733,989734,CVE-2016-3458,CVE-2016-3485,CVE-2016-3498,CVE-2016-3500,CVE-2016-3503,CVE-2016-3508,CVE-2016-3511,CVE-2016-3550,CVE-2016-3552,CVE-2016-3587,CVE-2016-3598,CVE-2016-3606,CVE-2016-3610
Description:

This update for java-1_8_0-openjdk fixes the following issues:

- Upgrade to version jdk8u101 (icedtea 3.1.0)
- New in release 3.1.0 (2016-07-25):
  * Security fixes
    - S8079718, CVE-2016-3458: IIOP Input Stream Hooking
      (bsc#989732)
    - S8145446, CVE-2016-3485: Perfect pipe placement (Windows
      only) (bsc#989734)
    - S8146514: Enforce GCM limits
    - S8147771: Construction of static protection domains under
      Javax custom policy
    - S8148872, CVE-2016-3500: Complete name checking (bsc#989730)
    - S8149070: Enforce update ordering
    - S8149962, CVE-2016-3508: Better delineation of XML processing
      (bsc#989731)
    - S8150752: Share Class Data
    - S8151925: Font reference improvements
    - S8152479, CVE-2016-3550: Coded byte streams (bsc#989733)
    - S8153312: Constrain AppCDS behavior
    - S8154475, CVE-2016-3587: Clean up lookup visibility
      (bsc#989721)
    - S8155981, CVE-2016-3606: Bolster bytecode verification
      (bsc#989722)
    - S8155985, CVE-2016-3598: Persistent Parameter Processing
      (bsc#989723)
    - S8158571, CVE-2016-3610: Additional method handle validation
      (bsc#989725)
    - CVE-2016-3552 (bsc#989726)
    - CVE-2016-3511 (bsc#989727)
    - CVE-2016-3503 (bsc#989728)
    - CVE-2016-3498 (bsc#989729)
  * New features
    - S8145547, PR1061: [AWT/Swing] Conditional support for GTK 3
      on Linux
    - PR2821: Support building OpenJDK with --disable-headful
    - PR2931, G478960: Provide Infinality Support via fontconfig
    - PR3079: Provide option to build Shenandoah on x86_64
  * Import of OpenJDK 8 u92 build 14
    - S6869327: Add new C2 flag to keep safepoints in counted
      loops.
    - S8022865: [TESTBUG] Compressed Oops testing needs to be
      revised
    - S8029630: Thread id should be displayed as a hex number in
      error report
    - S8029726: On OS X some dtrace probe names are mismatched with
      Solaris
    - S8029727: On OS X dtrace probes
      Call<type>MethodA/Call<type>MethodV are not fired.
    - S8029728: On OS X dtrace probes SetStaticBooleanField are not
      fired
    - S8038184: XMLSignature throws StringIndexOutOfBoundsException
      if ID attribute value is empty String
    - S8038349: Signing XML with DSA throws Exception when key is
      larger than 1024 bits
    - S8041501: ImageIO reader is not capable of reading JPEGs
      without JFIF header
    - S8041900: [macosx] Java forces the use of discrete GPU
    - S8044363: Remove special build options for unpack200 executable
    - S8046471: Use OPENJDK_TARGET_CPU_ARCH instead of legacy value
      for hotspot ARCH
    - S8046611: Build errors with gcc on sparc/fastdebug
    - S8047763: Recognize sparc64 as a sparc platform
    - S8048232: Fix for 8046471 breaks PPC64 build
    - S8052396: Catch exceptions resulting from missing font cmap
    - S8058563: InstanceKlass::_dependencies list isn't cleared from
      empty nmethodBucket entries
    - S8061624: [TESTBUG] Some tests cannot be ran under compact
      profiles and therefore shall be excluded
    - S8062901: Iterators is spelled incorrectly in the Javadoc for
      Spliterator
    - S8064330: Remove SHA224 from the default support list if
      SunMSCAPI enabled
    - S8065579: WB method to start G1 concurrent mark cycle should
      be introduced
    - S8065986: Compiler fails to NullPointerException when calling
      super with Object<>()
    - S8066974: Compiler doesn't infer method's generic type
      information in lambda body
    - S8067800: Clarify java.time.chrono.Chronology.isLeapYear for
      out of range years
    - S8068033: JNI exception pending in jdk/src/share/bin/java.c
    - S8068042: Check jdk/src/share/native/sun/misc/URLClassPath.c
      for JNI pending
    - S8068162: jvmtiRedefineClasses.cpp: guarantee(false) failed:
      OLD and/or OBSOLETE method(s) found
    - S8068254: Method reference uses wrong qualifying type
    - S8074696: Remote debugging session hangs for several minutes
      when calling findBootType
    - S8074935: jdk8 keytool doesn't validate pem files for RFC 1421
      correctness, as jdk7 did
    - S8078423: [TESTBUG] javax/print/PrintSEUmlauts/PrintSEUmlauts.java
      relies on system locale
    - S8080492: [Parfait] Uninitialised variable in
      jdk/src/java/desktop/windows/native/libawt/
    - S8080650: Enable stubs to use frame pointers correctly
    - S8122944: perfdata used is seen as too high on sparc zone with
      jdk1.9 and causes a test failure
    - S8129348: Debugger hangs in trace mode with TRACE_SENDS
    - S8129847: Compiling methods generated by Nashorn triggers high
      memory usage in C2
    - S8130506: javac AssertionError when invoking
      MethodHandle.invoke with lambda parameter
    - S8130910: hsperfdata file is created in wrong directory and
      not cleaned up if /tmp/hsperfdata_<username> has wrong permissions
    - S8131129: Attempt to define a duplicate BMH$Species class
    - S8131665: Bad exception message in HandshakeHash.getFinishedHash
    - S8131782: C1 Class.cast optimization breaks when Class is
      loaded from static final
    - S8132503: [macosx] Chinese full stop symbol cannot be entered
      with Pinyin IM on OS X
    - S8133207: ParallelProbes.java test fails after changes for
      JDK-8080115
    - S8133924: NPE may be thrown when xsltc select a non-existing
      node after JDK-8062518
    - S8134007: Improve string folding
    - S8134759: jdb: Incorrect stepping inside finally block
    - S8134963: [Newtest] New stress test for changing the coarseness
      level of G1 remembered set
    - S8136442: Don't tie Certificate signature algorithms to
      ciphersuites
    - S8137106: EUDC (End User Defined Characters) are not displayed
      on Windows with Java 8u60+
    - S8138745: Implement ExitOnOutOfMemory and CrashOnOutOfMemory
      in HotSpot
    - S8138764: In some cases the usage of TreeLock can be replaced
      by other synchronization
    - S8139373: [TEST_BUG] java/net/MulticastSocket/MultiDead.java
      failed with timeout
    - S8139424: SIGSEGV, Problematic frame: # V [libjvm.so+0xd0c0cc]
      void InstanceKlass::oop_oop_iterate_oop_maps_specialized<true,oopDesc*,MarkAndPushClosure>
    - S8139436: sun.security.mscapi.KeyStore might load incomplete
      data
    - S8139751: Javac crash with -XDallowStringFolding=false
    - S8139863: [TESTBUG] Need to port tests for JDK-8134903 to
      8u-dev
    - S8139985: JNI exception pending in
      jdk/src/jdk/hprof/agent/share/native/libhprof
    - S8140031: SA: Searching for a value in Threads does not work
    - S8140249: JVM Crashing During startUp If Flight Recording is
      enabled
    - S8140344: add support for 3 digit update release numbers
    - S8140587: Atomic*FieldUpdaters should use Class.isInstance
      instead of direct class check
    - S8141260: isReachable crash in windows xp
    - S8143297: Nashorn compilation time reported in nanoseconds
    - S8143397: It looks like InetAddress.isReachable(timeout) works
      incorrectly
    - S8143855: Bad printf formatting in frame_zero.cpp
    - S8143896: java.lang.Long is implicitly converted to double
    - S8143963: improve ClassLoader::trace_class_path to accept an
      additional outputStream* arg
    - S8144020: Remove long as an internal numeric type
    - S8144131: ArrayData.getInt implementations do not convert to
      int32
    - S8144483: One long Safepoint pause directly after each GC log
      rotation
    - S8144487: PhaseIdealLoop::build_and_optimize() must restore
      major_progress flag if skip_loop_opts is true
    - S8144885: agent/src/os/linux/libproc.h needs to support
      Linux/SPARC builds
    - S8144935: C2: safepoint is pruned from a non-counted loop
    - S8144937: [TEST_BUG] testlibrary_tests should be excluded for
      compact1 and compact2 execution
    - S8145017: Add support for 3 digit hotspot minor version numbers
    - S8145099: Better error message when SA can't attach to a process
    - S8145442: Add the facility to verify remembered sets for G1
    - S8145466: javac: No line numbers in compilation error
    - S8145539: (coll) AbstractMap.keySet and .values should not be
      volatile
    - S8145550: Megamorphic invoke should use CompiledFunction
      variants without any LinkLogic
    - S8145669: apply2call optimized callsite fails after becoming
      megamorphic
    - S8145722: NullPointerException in javadoc
    - S8145754: PhaseIdealLoop::is_scaled_iv_plus_offset() does not
      match AddI
    - S8146147: Java linker indexed property getter does not work
      for computed nashorn string
    - S8146566: OpenJDK build can't handle commas in LDFLAGS
    - S8146725: Issues with SignatureAndHashAlgorithm.getSupportedAlgorithms
    - S8146979: Backport of 8046471 breaks ppc64 build in jdk8u
      because 8072383 was badly backported before
    - S8147087: Race when reusing PerRegionTable bitmaps may result
      in dropped remembered set entries
    - S8147630: Wrong test result pushed to 8u-dev
    - S8147845: Varargs Array functions still leaking longs
    - S8147857: RMIConnector logs attribute names incorrectly
    - S8148353: [linux-sparc] Crash in libawt.so on Linux SPARC
    - S8150791: 8u76 L10n resource file translation update
  * Import of OpenJDK 8 u101 build 13
    - S6483657: MSCAPI provider does not create unique alias names
    - S6675699: need comprehensive fix for unconstrained ConvI2L
      with narrowed type
    - S8037557: test SessionCacheSizeTests.java timeout
    - S8038837: Add support to jarsigner for specifying timestamp
      hash algorithm
    - S8081778: Use Intel x64 CPU instructions for RSA acceleration
    - S8130150: Implement BigInteger.montgomeryMultiply intrinsic
    - S8130735: javax.swing.TimerQueue: timer fires late when
      another timer starts
    - S8143913: MSCAPI keystore should accept Certificate[] in
      setEntry()
    - S8144313: Test SessionTimeOutTests can be timeout
    - S8146240: Three nashorn files contain 'GNU General Public
      License' header
    - S8146387: Test SSLSession/SessionCacheSizeTests socket accept
      timed out
    - S8146669: Test SessionTimeOutTests fails intermittently
    - S8146993: Several javax/management/remote/mandatory regression
      tests fail after JDK-8138811
    - S8147994: [macosx] JScrollPane jitters up/down during trackpad
      scrolling on MacOS/Aqua
    - S8151522: Disable 8130150 and 8081778 intrinsics by default
    - S8151876: (tz) Support tzdata2016d
    - S8152098: Fix 8151522 caused test
      compiler/intrinsics/squaretolen/TestSquareToLen.java to fail
    - S8157077: 8u101 L10n resource file updates
  * Backports
    - S6260348, PR3066: GTK+ L&F JTextComponent not respecting
      desktop caret blink rate
    - S6778087, PR1061: getLocationOnScreen() always returns (0, 0)
      for mouse wheel events
    - S6961123, PR2972: setWMClass fails to null-terminate WM_CLASS
      string
    - S8008657, PR3077: JSpinner setComponentOrientation doesn't
      affect on text orientation
    - S8014212, PR2866: Robot captures black screen
    - S8029339, PR1061: Custom MultiResolution image support on
      HiDPI displays
    - S8031145, PR3077: Re-examine closed i18n tests to see it they
      can be moved to the jdk repository.
    - S8034856, PR3095: gcc warnings compiling
      src/solaris/native/sun/security/pkcs11
    - S8034857, PR3095: gcc warnings compiling
      src/solaris/native/sun/management
    - S8035054, PR3095: JarFacade.c should not include ctype.h
    - S8035287, PR3095: gcc warnings compiling various libraries
      files
    - S8038631, PR3077: Create wrapper for awt.Robot with additional
      functionality
    - S8039279, PR3077: Move awt tests to openjdk repository
    - S8041561, PR3077: Inconsistent opacity behaviour between
      JCheckBox and JRadioButton
    - S8041592, PR3077: [TEST_BUG] Move 42 AWT hw/lw mixing tests
      to jdk
    - S8041915, PR3077: Move 8 awt tests to OpenJDK regression
      tests tree
    - S8043126, PR3077: move awt automated functional tests from
      AWT_Events/Lw and AWT_Events/AWT to OpenJDK repository
    - S8043131, PR3077: Move ShapedAndTranslucentWindows and GC
      functional AWT tests to regression tree
    - S8044157, PR3077: [TEST_BUG] Improve recently submitted
      AWT_Mixing tests
    - S8044172, PR3077: [TEST_BUG] Move regtests for 4523758 and
      AltPlusNumberKeyCombinationsTest to jdk
    - S8044429, PR3077: move awt automated tests for AWT_Modality
      to OpenJDK repository
    - S8044762, PR2960: com/sun/jdi/OptionTest.java test time out
    - S8044765, PR3077: Move functional tests
      AWT_SystemTray/Automated to openjdk repository
    - S8047180, PR3077: Move functional tests AWT_Headless/Automated
      to OpenJDK repository
    - S8047367, PR3077: move awt automated tests from AWT_Modality
      to OpenJDK repository - part 2
    - S8048246, PR3077: Move AWT_DnD/Clipboard/Automated functional
      tests to OpenJDK
    - S8049226, PR2960: com/sun/jdi/OptionTest.java test times out
      again
    - S8049617, PR3077: move awt automated tests from AWT_Modality
      to OpenJDK repository - part 3
    - S8049694, PR3077: Migrate functional
      AWT_DesktopProperties/Automated tests to OpenJDK
    - S8050885, PR3077: move awt automated tests from AWT_Modality
      to OpenJDK repository - part 4
    - S8051440, PR3077: move tests about maximizing undecorated to
      OpenJDK
    - S8052012, PR3077: move awt automated tests from AWT_Modality
      to OpenJDK repository - part 5
    - S8052408, PR3077: Move AWT_BAT functional tests to OpenJDK (3
      of 3)
    - S8053657, PR3077: [TEST_BUG] move some 5 tests related to
      undecorated Frame/JFrame to JDK
    - S8054143, PR3077: move awt automated tests from AWT_Modality
      to OpenJDK repository - part 6
    - S8054358, PR3077: move awt automated tests from AWT_Modality
      to OpenJDK repository - part 7
    - S8054359, PR3077: move awt automated tests from AWT_Modality
      to OpenJDK repository - part 8
    - S8055360, PR3077: Move the rest part of AWT
      ShapedAndTranslucent tests to OpenJDK
    - S8055664, PR3077: move 14 tests about setLocationRelativeTo
      to jdk
    - S8055836, PR3077: move awt tests from AWT_Modality to OpenJDK
      repository - part 9
    - S8056911, PR3077: Remove internal API usage from ExtendedRobot
      class
    - S8057694, PR3077: move awt tests from AWT_Modality to OpenJDK
      repository - part 10
    - S8058959, PR1061: closed/java/awt/event/ComponentEvent/MovedResizedTwiceTest/MovedResizedTwiceTest.java
      failed automatically
    - S8062606, PR3077: Fix a typo in java.awt.Robot class
    - S8063102, PR3077: Change open awt regression tests to avoid
      sun.awt.SunToolkit.realSync, part 1
    - S8063104, PR3077: Change open awt regression tests to avoid
      sun.awt.SunToolkit.realSync, part 2
    - S8063106, PR3077: Change open swing regression tests to avoid
      sun.awt.SunToolkit.realSync, part 1
    - S8063107, PR3077: Change open swing regression tests to avoid
      sun.awt.SunToolkit.realSync, part 2
    - S8064573, PR3077: [TEST_BUG] javax/swing/text/AbstractDocument/6968363/Test6968363.java
      is asocial pressing VK_LEFT and not releasing
    - S8064575, PR3077: [TEST_BUG] javax/swing/JEditorPane/6917744/bug6917744.java
      100 times press keys and never releases
    - S8064809, PR3077: [TEST_BUG] javax/swing/JComboBox/4199622/bug4199622.java
      contains a lot of keyPress and not a single keyRelease
    - S8067441, PR3077: Some tests fails with error: cannot find symbol
      getSystemMnemonicKeyCodes()
    - S8068228, PR3077: Test closed/java/awt/Mouse/MaximizedFrameTest/MaximizedFrameTest
      fails with GTKLookAndFeel
    - S8069361, PR1061: SunGraphics2D.getDefaultTransform() does not
      include scale factor
    - S8073320, PR1061: Windows HiDPI Graphics support
    - S8074807, PR3077: Fix some tests unnecessary using internal API
    - S8076315, PR3077: move 4 manual functional swing tests to
      regression suite
    - S8078504, PR3094: Zero lacks declaration of
      VM_Version::initialize()
    - S8129822, PR3077: Define 'headful' jtreg keyword
    - S8132123, PR1061: MultiResolutionCachedImage unnecessarily
      creates base image to get its size
    - S8133539, PR1061: [TEST_BUG] Split
      java/awt/image/MultiResolutionImageTest.java in two to allow
      restricted access
    - S8137571, PR1061: Linux HiDPI Graphics support
    - S8142406, PR1061: [TEST] MultiResolution image: need test to
      cover the case when @2x image is corrupted
    - S8145188, PR2945: No LocalVariableTable generated for the
      entire JDK
    - S8150258, PR1061: [TEST] HiDPI: create a test for
      multiresolution menu items icons
    - S8150724, PR1061: [TEST] HiDPI: create a test for
      multiresolution icons
    - S8150844, PR1061: [hidpi] [macosx] -Dsun.java2d.uiScale should
      be taken into account for OS X
    - S8151841, PR2882: Build needs additional flags to compile with
      GCC 6 [plus parts of 8149647 & 8032045]
    - S8155613, PR1061: [PIT] crash in
      AWT_Desktop/Automated/Exceptions/BasicTest
    - S8156020, PR1061: 8145547 breaks AIX and and uses RTLD_NOLOAD
      incorrectly
    - S8156128, PR1061: Tests for [AWT/Swing] Conditional support
      for GTK 3 on Linux
    - S8158260, PR2991, RH1341258: PPC64: unaligned Unsafe.getInt
      can lead to the generation of illegal instructions (bsc#988651)
    - S8159244, PR3074: Partially initialized string object created
      by C2's string concat optimization may escape
    - S8159690, PR3077: [TESTBUG] Mark headful tests with @key
      headful.
    - S8160294, PR2882, PR3095: Some client libraries cannot be
      built with GCC 6
  * Bug fixes
    - PR1958: GTKLookAndFeel does not honor
      gtk-alternative-button-order
    - PR2822: Feed LIBS & CFLAGS into configure rather than make to
      avoid re-discovery by OpenJDK configure
    - PR2932: Support ccache in a non-automagic manner
    - PR2933: Support ccache 3.2 and later
    - PR2964: Set system defaults based on OS
    - PR2974, RH1337583: PKCS#10 certificate requests now use CRLF
      line endings rather than system line endings
    - PR3078: Remove duplicated line dating back to 6788347 and
      6894807
    - PR3083, RH1346460: Regression in SSL debug output without an
      ECC provider
    - PR3089: Remove old memory limits patch
    - PR3090, RH1204159: SystemTap is heavily confused by multiple
      JDKs
    - PR3095: Fix warnings in URLClassPath.c
    - PR3096: Remove dead --disable-optimizations option
    - PR3105: Use version from hotspot.map to create tarball filename
    - PR3106: Handle both correctly-spelt property
      'enableCustomValueHandler' introduced by S8079718 and typo
      version
    - PR3108: Shenandoah patches not included in release tarball
    - PR3110: Update hotspot.map documentation in INSTALL
  * AArch64 port
    - S8145320, PR3078: Create unsafe_arraycopy and
      generic_arraycopy for AArch64
    - S8148328, PR3078: aarch64: redundant lsr instructions in stub
      code.
    - S8148783, PR3078: aarch64: SEGV running SpecJBB2013
    - S8148948, PR3078: aarch64: generate_copy_longs calls align()
      incorrectly
    - S8149080, PR3078: AArch64: Recognise disjoint array copy in
      stub code
    - S8149365, PR3078: aarch64: memory copy does not prefetch on
      backwards copy
    - S8149907, PR3078: aarch64: use load/store pair instructions
      in call_stub
    - S8150038, PR3078: aarch64: make use of CBZ and CBNZ when
      comparing narrow pointer with zero
    - S8150045, PR3078: arraycopy causes segfaults in SATB during
      garbage collection
    - S8150082, PR3078: aarch64: optimise small array copy
    - S8150229, PR3078: aarch64: pipeline class for several
      instructions is not set correctly
    - S8150313, PR3078: aarch64: optimise array copy using SIMD
      instructions
    - S8150394, PR3078: aarch64: add support for 8.1 LSE CAS
      instructions
    - S8151340, PR3078: aarch64: prefetch the destination word for
      write prior to ldxr/stxr loops.
    - S8151502, PR3078: optimize pd_disjoint_words and
      pd_conjoint_words
    - S8151775, PR3078: aarch64: add support for 8.1 LSE atomic
      operations
    - S8152537, PR3078: aarch64: Make use of CBZ and CBNZ when
      comparing unsigned values with zero.
    - S8152840, PR3078: aarch64: improve _unsafe_arraycopy stub
      routine
    - S8153713, PR3078: aarch64: improve short array clearing using
      store pair
    - S8153797, PR3078: aarch64: Add Arrays.fill stub code
    - S8154537, PR3078: AArch64: some integer rotate instructions
      are never emitted
    - S8154739, PR3078: AArch64: TemplateTable::fast_xaccess loads
      in wrong mode
    - S8155015, PR3078: Aarch64: bad assert in spill generation
      code
    - S8155100, PR3078: AArch64: Relax alignment requirement for
      byte_map_base
    - S8155612, PR3078: Aarch64: vector nodes need to support
      misaligned offset
    - S8155617, PR3078: aarch64: ClearArray does not use DC ZVA
    - S8155653, PR3078: TestVectorUnalignedOffset.java not pushed
      with 8155612
    - S8156731, PR3078: aarch64: java/util/Arrays/Correct.java fails
      due to _generic_arraycopy stub routine
    - S8157841, PR3078: aarch64: prefetch ignores cache line size
    - S8157906, PR3078: aarch64: some more integer rotate
      instructions are never emitted
    - S8158913, PR3078: aarch64: SEGV running Spark terasort
    - S8159052, PR3078: aarch64: optimise unaligned copies in
      pd_disjoint_words and pd_conjoint_words
    - S8159063, PR3078: aarch64: optimise unaligned array copy long
    - PR3078: Cleanup remaining differences from aarch64/jdk8u tree
- Fix script linking /usr/share/javazi/tzdb.dat for platform where
  it applies (bsc#987895)

- Fix aarch64 running with 48 bits va space (bsc#984684)

 avoid some crashes


-----------------------------------------
Patch: SUSE-2016-1192
Released: Tue Aug  9 15:22:42 2016
Summary: Recommended update for nss_ldap
Severity: low
References: 934444
Description:

This update for nss_ldap provides the following fixes:

- Properly initialize context structure in _nss_ldap_getbyname(). This is a follow-up
  fix to address issues with LDAP connections in one-shot operation mode. (bsc#934444)


-----------------------------------------
Patch: SUSE-2016-1202
Released: Thu Aug 11 13:27:55 2016
Summary: Recommended update for udhcp
Severity: low
References: 890844
Description:

This update for udhcp fixes the following issues:

- Don't strip binary files during build, so that debuginfo packages can be created
  later. (bsc#890844)


-----------------------------------------
Patch: SUSE-2016-1203
Released: Thu Aug 11 13:37:33 2016
Summary: Recommended update for python-sip
Severity: low
References: 967817
Description:

This update for python-sip fixes the following issues:

- Fix a shell syntax error in %preun due to missing spaces. (bsc#967817)


-----------------------------------------
Patch: SUSE-2016-1205
Released: Thu Aug 11 15:02:18 2016
Summary: Recommended update for rpm
Severity: low
References: 829717,894610,940315,953532,965322,967728
Description:

This update for rpm provides the following fixes:

- Add is_opensuse and leap_version macros to suse_macros. (bsc#940315)
- Add option to make postinstall scriptlet errors fatal. (bsc#967728)
- Normalize big blocksizes to 4096 bytes. (bsc#894610, bsc#829717, bsc#965322)
- Fix updating of sources/patches when recursing because of a BuildArch. (bsc#953532)


-----------------------------------------
Patch: SUSE-2016-1210
Released: Fri Aug 12 18:08:18 2016
Summary: Recommended update for smt
Severity: low
References: 943355,983755,985396,986018,989748,990105,990861,991439,991453
Description:

This update provides smt version 3.0.17, which brings the following fixes:

- Prevent endless loop and cleanup repository entries if migration failed (bsc#990861)
- Report error if a not available product should be registered (bsc#991453)
- Increase column size for NAME, VER and REL in Packages table (bsc#991439)
- Make dependency on perl-DBD-mysql hard (bsc#983755)
- Fix typo in clientSetup4SMT.sh (bsc#989748)
- Skip repositories reported with invalid data (bsc#990861)
- Order by target product id downwards (bsc#986018)
- Add a generic error handler to return json format (bsc#943355)
- Do not return incomplete activations (bsc#985396)
- Handle release stage of products (fate#319909)
- Implement installer update repositories (fate#319716)
- Add registration codes for SLE10/SLE11 products to forwarding call (bsc#990105)


-----------------------------------------
Patch: SUSE-2016-1222
Released: Mon Aug 15 13:43:46 2016
Summary: Security update for ImageMagick
Severity: moderate
References: 991444,991445,991872,CVE-2016-5010,CVE-2016-6491,CVE-2016-6520
Description:

This update for ImageMagick fixes the following issues:

- security update:
  * CVE-2016-6520: buffer overflow [bsc#991872]
  * CVE-2016-5010: Out-of-bounds read in CopyMagickMemory [bsc#991444]
  * CVE-2016-6491: Out-of-bounds read when processing crafted tiff files [bsc#991445]


-----------------------------------------
Patch: SUSE-2016-1228
Released: Tue Aug 16 09:29:01 2016
Summary: Security update for libidn
Severity: moderate
References: 923241,990189,990190,990191,CVE-2015-2059,CVE-2015-8948,CVE-2016-6261,CVE-2016-6262,CVE-2016-6263
Description:

This update for libidn fixes the following issues:

- CVE-2016-6262 and CVE-2015-8948: Out-of-bounds-read when reading one zero byte as input (bsc#990189)

- CVE-2016-6261: Out-of-bounds stack read in idna_to_ascii_4i (bsc#990190) 

- CVE-2016-6263: stringprep_utf8_nfkc_normalize reject invalid UTF-8 (bsc#990191)

- CVE-2015-2059: out-of-bounds read with stringprep on invalid UTF-8 (bsc#923241) 



-----------------------------------------
Patch: SUSE-2016-1239
Released: Thu Aug 18 11:52:33 2016
Summary: Security update for ctags
Severity: low
References: 899486,976920,CVE-2014-7204
Description:

This update for ctags fixes the following issues:

- CVE-2014-7204: Potential denial of service (infinite loop and CPU and disk
  consumption) via a crafted JavaScript file. (bsc#899486)
- Missing Requires(post) on coreutils as it is using rm(1). (bsc#976920)


-----------------------------------------
Patch: SUSE-2016-1245
Released: Fri Aug 19 10:31:11 2016
Summary: Security update for python
Severity: moderate
References: 984751,985177,985348,989523,CVE-2016-0772,CVE-2016-1000110,CVE-2016-5636,CVE-2016-5699
Description:

This update for python fixes the following issues:

- CVE-2016-0772: smtplib vulnerability opens startTLS stripping attack (bsc#984751)
- CVE-2016-5636: heap overflow when importing malformed zip files (bsc#985177)
- CVE-2016-5699: incorrect validation of HTTP headers allow header injection (bsc#985348)
- CVE-2016-1000110: HTTPoxy vulnerability in urllib, fixed by disregarding HTTP_PROXY when REQUEST_METHOD is also set (bsc#989523)


-----------------------------------------
Patch: SUSE-2016-1247
Released: Fri Aug 19 12:58:39 2016
Summary: Security update for cracklib
Severity: moderate
References: 992966,CVE-2016-6318
Description:

This update for cracklib fixes the following issues:

- Add patch to fix a buffer overflow in GECOS parser (bsc#992966 CVE-2016-6318)



-----------------------------------------
Patch: SUSE-2016-1252
Released: Mon Aug 22 15:12:43 2016
Summary: Recommended update for timezone
Severity: low
References: 988184
Description:

This update for timezone adds a positive leap second at the end of 2016-12-31.


-----------------------------------------
Patch: SUSE-2016-1253
Released: Mon Aug 22 16:31:36 2016
Summary: Recommended update for openvpn
Severity: low
References: 934237,959714
Description:

This update for openvpn fixes the following issues:

- Possible heap overflow on read accessing getaddrinfo result. (bsc#959714)
- Multiple low severity issues. (bsc#934237)


-----------------------------------------
Patch: SUSE-2016-1254
Released: Mon Aug 22 16:37:26 2016
Summary: Security update for MozillaFirefox
Severity: important
References: 989196,990628,990856,991809,CVE-2016-2830,CVE-2016-2835,CVE-2016-2836,CVE-2016-2837,CVE-2016-2838,CVE-2016-2839,CVE-2016-5252,CVE-2016-5254,CVE-2016-5258,CVE-2016-5259,CVE-2016-5262,CVE-2016-5263,CVE-2016-5264,CVE-2016-5265,CVE-2016-6354
Description:

MozillaFirefox was updated to 45.3.0 ESR to fix the following issues
(bsc#991809):

* MFSA 2016-62/CVE-2016-2835/CVE-2016-2836
  Miscellaneous memory safety hazards (rv:48.0 / rv:45.3)
* MFSA 2016-63/CVE-2016-2830
  Favicon network connection can persist when page is closed
* MFSA 2016-64/CVE-2016-2838
  Buffer overflow rendering SVG with bidirectional content
* MFSA 2016-65/CVE-2016-2839
  Cairo rendering crash due to memory allocation issue with
  FFmpeg 0.10
* MFSA 2016-67/CVE-2016-5252
  Stack underflow during 2D graphics rendering
* MFSA 2016-70/CVE-2016-5254
  Use-after-free when using alt key and toplevel menus
* MFSA 2016-72/CVE-2016-5258
  Use-after-free in DTLS during WebRTC session shutdown
* MFSA 2016-73/CVE-2016-5259
  Use-after-free in service workers with nested sync events
* MFSA 2016-76/CVE-2016-5262
  Scripts on marquee tag can execute in sandboxed iframes
* MFSA 2016-77/CVE-2016-2837
  Buffer overflow in ClearKey Content Decryption Module (CDM)
  during video playback
* MFSA 2016-78/CVE-2016-5263
  Type confusion in display transformation
* MFSA 2016-79/CVE-2016-5264
  Use-after-free when applying SVG effects
* MFSA 2016-80/CVE-2016-5265
  Same-origin policy violation using local HTML file and saved
  shortcut file
* CVE-2016-6354: Fix for possible buffer overrun (bsc#990856)

Also a temporary workaround was added:
- Temporarily bind Firefox to the first CPU as a hotfix
  for an apparent race condition (bsc#989196, bsc#990628)


-----------------------------------------
Patch: SUSE-2016-1259
Released: Tue Aug 23 17:25:28 2016
Summary: Recommended update for libpcap
Severity: low
References: 874131,992262
Description:

This update for libpcap provides the following fixes:

- Do not apply userspace filter until VLAN tag is reconstructed. (bsc#874131)
- Use TPID value passed by kernel rather than wild-guess 802.1Q. (bsc#874131)
- In 'vlan' filter BPF code, check also for 802.1ad (0x88a8) TPID in addition to
  802.1Q (0x8100) and non-standard 0x9100 Q-in-Q. (bsc#874131)
- Add missing DLT_INFINIBAND to dlt_choices table. (bsc#992262, fate#319438)


-----------------------------------------
Patch: SUSE-2016-1263
Released: Wed Aug 24 13:55:39 2016
Summary: Security update for dosfstools
Severity: moderate
References: 912607,980364,980377,CVE-2015-8872,CVE-2016-4804
Description:
dosfstools was updated to fix two security issues.

These security issues were fixed:
- CVE-2015-8872: The set_fat function in fat.c in dosfstools might have allowed attackers to corrupt a FAT12 filesystem or cause a denial of service (invalid memory read and crash) by writing an odd number of clusters to the third to last entry on a FAT12 filesystem, which triggers an 'off-by-two error (bsc#980364).
- CVE-2016-4804: The read_boot function in boot.c in dosfstools allowed attackers to cause a denial of service (crash) via a crafted filesystem, which triggers a heap-based buffer overflow in the (1) read_fat function or an out-of-bounds heap read in (2) get_fat function (bsc#980377).

This non-security issue was fixed:
- bsc#912607: Attempt to rename root dir in fsck due to uninitialized fields.
  

-----------------------------------------
Patch: SUSE-2016-1271
Released: Thu Aug 25 12:58:01 2016
Summary: Security update for xerces-c
Severity: moderate
References: 979208,985860,CVE-2016-2099,CVE-2016-4463
Description:
xerces-c was updated to fix one security issue.

This security issue was fixed:
- CVE-2016-2099: Use-after-free vulnerability in validators/DTD/DTDScanner.cpp in Apache Xerces C++ did not properly handle exceptions raised in the XMLReader class, which allowed context-dependent attackers to have unspecified impact via an invalid character in an XML document (bsc#979208).
- CVE-2016-4463: Apache Xerces-C XML Parser crashed on malformed DTD (bnc#985860).
  

-----------------------------------------
Patch: SUSE-2016-1277
Released: Fri Aug 26 14:35:54 2016
Summary: Recommended update for libbluray
Severity: low
References: 981767
Description:

This update for libbluray prevents logging of debug messages to standard error.


-----------------------------------------
Patch: SUSE-2016-1309
Released: Fri Sep  2 13:37:41 2016
Summary: Security update for wget
Severity: moderate
References: 937096,958342,984060,CVE-2015-2059,CVE-2016-4971
Description:

This update for wget fixes the following issues:

 - Fix for HTTP to a FTP redirection file name confusion vulnerability
   (bsc#984060, CVE-2016-4971).
 - Work around a libidn  vulnerability
   (bsc#937096, CVE-2015-2059).
 - Fix for wget fails with basicauth: Failed writing HTTP request:
   Bad file descriptor
   (bsc#958342)


-----------------------------------------
Patch: SUSE-2016-1325
Released: Wed Sep  7 17:34:46 2016
Summary: Recommended update for fetchmail
Severity: low
References: 979534
Description:

This update for fetchmail fixes the helper script used to run fetchmail in
daemon mode to return exit status 5 on configuration errors instead of 1.


-----------------------------------------
Patch: SUSE-2016-1326
Released: Thu Sep  8 11:37:44 2016
Summary: Security update for perl
Severity: moderate
References: 928292,932894,967082,984906,987887,988311,CVE-2015-8853,CVE-2016-1238,CVE-2016-2381,CVE-2016-6185
Description:

This update for Perl fixes the following issues:

- CVE-2016-6185: Xsloader looking at a '(eval)' directory. (bsc#988311)
- CVE-2016-1238: Searching current directory for optional modules. (bsc#987887)
- CVE-2015-8853: Regular expression engine hanging on bad utf8. (bsc)
- CVE-2016-2381: Environment dup handling bug. (bsc#967082)
- 'Insecure dependency in require' error in taint mode. (bsc#984906)
- Memory leak in 'use utf8' handling. (bsc#928292)
- Missing lock prototype to the debugger. (bsc#932894)


-----------------------------------------
Patch: SUSE-2016-1330
Released: Fri Sep  9 09:00:53 2016
Summary: Security update for tiff
Severity: moderate
References: 964225,973340,984808,984831,984837,984842,987351,CVE-2015-8781,CVE-2015-8782,CVE-2015-8783,CVE-2016-3186,CVE-2016-5314,CVE-2016-5316,CVE-2016-5317,CVE-2016-5320,CVE-2016-5875
Description:

This update for tiff fixes the following issues:

* CVE-2015-8781, CVE-2015-8782, CVE-2015-8783: Out-of-bounds writes for invalid images (bsc#964225)
* CVE-2016-3186: Buffer overflow in gif2tiff (bnc#973340).
* CVE-2016-5875: heap-based buffer overflow when using the PixarLog compressionformat (bsc#987351)
* CVE-2016-5316: Out-of-bounds read in PixarLogCleanup() function in tif_pixarlog.c (bsc#984837)
* CVE-2016-5314: Out-of-bounds write in PixarLogDecode() function (bsc#984831)
* CVE-2016-5317: Out-of-bounds write in PixarLogDecode() function in libtiff.so (bsc#984842)
* CVE-2016-5320: Out-of-bounds write in PixarLogDecode() function in tif_pixarlog.c (bsc#984808) 



-----------------------------------------
Patch: SUSE-2016-1335
Released: Sat Sep 10 12:52:32 2016
Summary: Security update for apache2-mod_nss
Severity: moderate
References: 972968,975394,979688,CVE-2013-4566,CVE-2014-3566,CVE-2015-5244,CVE-2016-3099
Description:

This update provides apache2-mod_nss 1.0.14, which brings several fixes and
enhancements:

- Fix OpenSSL ciphers stopped parsing at +. (CVE-2016-3099)
- Created valgrind suppression files to ease debugging.
- Implement SSL_PPTYPE_FILTER to call executables to get the key password pins.
- Improvements to migrate.pl.
- Update default ciphers to something more modern and secure.
- Check for host and netstat commands in gencert before trying to use them.
- Add server support for DHE ciphers.
- Extract SAN from server/client certificates into env
- Fix memory leaks and other coding issues caught by clang analyzer.
- Add support for Server Name Indication (SNI).
- Add support for SNI for reverse proxy connections.
- Add RenegBufferSize? option.
- Add support for TLS Session Tickets (RFC 5077).
- Fix logical AND support in OpenSSL cipher compatibility.
- Correctly handle disabled ciphers. (CVE-2015-5244)
- Implement a slew more OpenSSL cipher macros.
- Fix a number of illegal memory accesses and memory leaks.
- Support for SHA384 ciphers if they are available in NSS.
- Add compatibility for mod_ssl-style cipher definitions.
- Add TLSv1.2-specific ciphers.
- Completely remove support for SSLv2.
- Add support for sqlite NSS databases.
- Compare subject CN and VS hostname during server start up.
- Add support for enabling TLS v1.2.
- Don't enable SSL 3 by default. (CVE-2014-3566)
- Fix CVE-2013-4566.
- Move nss_pcache to /usr/libexec.
- Support httpd 2.4+.
- Use apache2-systemd-ask-pass to prompt for a certificate passphrase.
  (bsc#972968, bsc#975394)


-----------------------------------------
Patch: SUSE-2016-1344
Released: Tue Sep 13 18:10:21 2016
Summary: Recommended update for kbd
Severity: low
References: 984958
Description:

This update for kbd adds mapping for two keycodes to br-abnt2 map:

- Slash (/): alt-gr + q
- Question mark (?): alt-gr + w


-----------------------------------------
Patch: SUSE-2016-1347
Released: Wed Sep 14 09:12:04 2016
Summary: Security update for gd
Severity: moderate
References: 982176,987577,988032,991436,991622,991710,995034,CVE-2016-5116,CVE-2016-6128,CVE-2016-6132,CVE-2016-6161,CVE-2016-6207,CVE-2016-6214,CVE-2016-6905
Description:

This update for gd fixes the following issues:

  * CVE-2016-6214: Buffer over-read issue when parsing crafted TGA file [bsc#991436]
  * CVE-2016-6132: read out-of-bands was found in the parsing of TGA files using libgd [bsc#987577]
  * CVE-2016-6128: Invalid color index not properly handled [bsc#991710]
  * CVE-2016-6207: Integer overflow error within _gdContributionsAlloc() [bsc#991622]
  * CVE-2016-6161: global out of bounds read when encoding gif from malformed input withgd2togif [bsc#988032]
  * CVE-2016-5116: avoid stack overflow (read) with large names [bsc#982176]
  * CVE-2016-6905: Out-of-bounds read in function read_image_tga in gd_tga.c [bsc#995034]



-----------------------------------------
Patch: SUSE-2016-1351
Released: Wed Sep 14 15:37:04 2016
Summary: Security update for wpa_supplicant
Severity: moderate
References: 930077,930078,930079,937419,952254,CVE-2015-4141,CVE-2015-4142,CVE-2015-4143,CVE-2015-5310,CVE-2015-8041
Description:

This update for wpa_supplicant fixes the following issues:

- CVE-2015-4141: WPS UPnP vulnerability with HTTP chunked transfer encoding. (bnc#930077)
- CVE-2015-4142: Integer underflow in AP mode WMM Action frame processing.  (bnc#930078)
- CVE-2015-4143: EAP-pwd missing payload length validation. (bnc#930079) 
- CVE-2015-5310: Ignore Key Data in WNM Sleep Mode Response frame if no PMF in use. (bsc#952254)
- CVE-2015-8041: Fix payload length validation in NDEF record parser. (bsc#937419)


-----------------------------------------
Patch: SUSE-2016-1352
Released: Wed Sep 14 16:48:56 2016
Summary: Recommended update for libspectre
Severity: low
References: 975503
Description:

This update for libspectre fixes handling of PostScript files with embedded EPS files.
Such documents contains two '%%EOF' DSC comments and the first one stopped the parsing
of the file as if the real EOF was reached.


-----------------------------------------
Patch: SUSE-2016-1358
Released: Thu Sep 15 20:54:21 2016
Summary: Optional update for gcc6
Severity: low
References: 983206
Description:

This update ships the GNU Compiler Collection (GCC) in version 6.2.

This update is shipped in two parts:

- SUSE Linux Enterprise Server 12 and Desktop:

  The runtime libraries libgcc_s1, libstdc++6, libatomic1, libgomp1, libitm1
  and some others can now be used by GCC 6 built binaries.

- SUSE Linux Enterprise 12 Toolchain Module:

  The Toolchain module received the GCC 6 compiler suite with this update.

Changes:

- The default mode for C++ is now -std=gnu++14 instead of -std=gnu++98.

Generic Optimization improvements:

- UndefinedBehaviorSanitizer gained a new sanitization option,
  -fsanitize=bounds-strict, which enables strict checking of array
  bounds. In particular, it enables -fsanitize=bounds as well as
  instrumentation of flexible array member-like arrays.
- Type-based alias analysis now disambiguates accesses to different
  pointers. This improves precision of the alias oracle by about 20-30%
  on higher-level C++ programs. Programs doing invalid type punning of
  pointer types may now need -fno-strict-aliasing to work correctly.
- Alias analysis now correctly supports weakref and alias attributes. This
  makes it possible to access both a variable and its alias in one
  translation unit which is common with link-time optimization.
- Value range propagation now assumes that the this pointer of C++
  member functions is non-null. This eliminates common null pointer checks
  but also breaks some non-conforming code-bases (such as Qt-5, Chromium,
  KDevelop). As a temporary work-around -fno-delete-null-pointer-checks
  can be used. Wrong code can be identified by using -fsanitize=undefined.
- Various Link-time optimization improvements.
- Inter-procedural optimization improvements:
    - Basic jump threading is now performed before profile construction
      and inline analysis, resulting in more realistic size and time
      estimates that drive the heuristics of the of inliner and function
      cloning passes.
    - Function cloning now more aggressively eliminates unused function
      parameters.
- Compared to GCC 5, the GCC 6 release series includes a much improved
  implementation of the OpenACC 2.0a specification.

C language specific improvements:

- Version 4.5 of the OpenMP specification is now supported in the C and C++ compilers.
- Source locations for the C and C++ compilers are now tracked as ranges,
  rather than just points, making it easier to identify the subexpression
  of interest within a complicated expression. In addition, there is
  now initial support for precise diagnostic locations within strings,
- Diagnostics can now contain 'fix-it hints', which are displayed in
  context underneath the relevant source code.
- The C and C++ compilers now offer suggestions for misspelled field names.
- New command-line options have been added for the C and C++ compilers:
    - -Wshift-negative-value warns about left shifting a negative value.
    - -Wshift-overflow warns about left shift overflows. This warning is
      enabled by default. -Wshift-overflow=2 also warns about left-shifting
      1 into the sign bit.
    - -Wtautological-compare warns if a self-comparison always evaluates
      to true or false. This warning is enabled by -Wall.
    - -Wnull-dereference warns if the compiler detects paths that
      trigger erroneous or undefined behavior due to dereferencing a null
      pointer. This option is only active when -fdelete-null-pointer-checks
      is active, which is enabled by optimizations in most targets. The
      precision of the warnings depends on the optimization options used.
    - -Wduplicated-cond warns about duplicated conditions in an if-else-if chain.
    - -Wmisleading-indentation warns about places where the indentation
      of the code gives a misleading idea of the block structure of the
      code to a human reader. This warning is enabled by -Wall.
- The C and C++ compilers now emit saner error messages if merge-conflict markers
  are present in a source file.

C improvements:

- It is possible to disable warnings when an initialized field
  of a structure or a union with side effects is being overridden
  when using designated initializers via a new warning option
  -Woverride-init-side-effects.
- A new type attribute scalar_storage_order applying to structures
  and unions has been introduced. It specifies the storage order (aka
  endianness) in memory of scalar fields in structures or unions.

C++ improvements:

- The default mode has been changed to -std=gnu++14.
- C++ Concepts are now supported when compiling with -fconcepts.
- -flifetime-dse is more aggressive in dead-store elimination in situations where
  a memory store to a location precedes a constructor to that memory location.
- G++ now supports C++17 fold expressions, u8 character literals, extended static_assert,
  and nested namespace definitions.
- G++ now allows constant evaluation for all non-type template arguments.
- G++ now supports C++ Transactional Memory when compiling with -fgnu-tm.

libstdc++ improvements:

- Extensions to the C++ Library to support mathematical special functions
  (ISO/IEC 29124:2010), thanks to Edward Smith-Rowland.
- Experimental support for C++17.
- An experimental implementation of the File System TS.
- Experimental support for most features of the second version of the
  Library Fundamentals TS. This includes polymorphic memory resources and
  array support in shared_ptr, thanks to Fan You.
- Some assertions checked by Debug Mode can now also be enabled by
  _GLIBCXX_ASSERTIONS. The subset of checks enabled by the new macro have
  less run-time overhead than the full _GLIBCXX_DEBUG checks and don't
  affect the library ABI, so can be enabled per-translation unit.

Fortran improvements:

- Fortran 2008 SUBMODULE support.
- Fortran 2015 EVENT_TYPE, EVENT_POST, EVENT_WAIT, and EVENT_QUERY support.
- Improved support for Fortran 2003 deferred-length character variables.
- Improved support for OpenMP and OpenACC.
- The MATMUL intrinsic is now inlined for straightforward cases if
  front-end optimization is active. The maximum size for inlining can be
  set to n with the -finline-matmul-limit=n option and turned off with
  -finline-matmul-limit=0.
- The -Wconversion-extra option will warn about REAL constants which
  have excess precision for their kind.
- The -Winteger-division option has been added, which warns about
  divisions of integer constants which are truncated. This option is
  included in -Wall by default.

Architecture improvements:

- AArch64 received a lot of improvements.

IA-32/x86-64 improvements:

- GCC now supports the Intel CPU named Skylake with AVX-512 extensions
  through -march=skylake-avx512. The switch enables the following ISA
  extensions: AVX-512F, AVX512VL, AVX-512CD, AVX-512BW, AVX-512DQ.
- Support for new AMD instructions monitorx and mwaitx has been
  added. This includes new intrinsic and built-in support. It is enabled
  through option -mmwaitx. The instructions monitorx and mwaitx implement
  the same functionality as the old monitor and mwait instructions. In
  addition mwaitx adds a configurable timer. The timer value is received
  as third argument and stored in register %ebx.
- x86-64 targets now allow stack realignment from a word-aligned stack
  pointer using the command-line option -mstackrealign or __attribute__
  ((force_align_arg_pointer)). This allows functions compiled with
  a vector-aligned stack to be invoked from objects that keep only
  word-alignment.
- Support for address spaces __seg_fs, __seg_gs, and __seg_tls. These
  can be used to access data via the %fs and %gs segments without having
  to resort to inline assembly.
- Support for AMD Zen (family 17h) processors is now available through
  the -march=znver1 and -mtune=znver1 options.

PowerPC / PowerPC64 / RS6000 improvements:

- PowerPC64 now supports IEEE 128-bit floating-point using the
  __float128 data type. In GCC 6, this is not enabled by default, but you
  can enable it with -mfloat128. The IEEE 128-bit floating-point support
  requires the use of the VSX instruction set. IEEE 128-bit floating-point
  values are passed and returned as a single vector value. The software
  emulator for IEEE 128-bit floating-point support is only built on
  PowerPC GNU/Linux systems where the default CPU is at least power7. On
  future ISA 3.0 systems (POWER 9 and later), you will be able to use the
  -mfloat128-hardware option to use the ISA 3.0 instructions that support
  IEEE 128-bit floating-point. An additional type (__ibm128) has been added
  to refer to the IBM extended double type that normally implements long
  double. This will allow for a future transition to implementing long
  double with IEEE 128-bit floating-point.
- Basic support has been added for POWER9 hardware that will use the
  recently published OpenPOWER ISA 3.0 instructions. The following new
  switches are available:
     - -mcpu=power9: Implement all of the ISA 3.0 instructions supported by
       the compiler.
     - -mtune=power9: In the future, apply tuning for POWER9 systems. Currently,
       POWER8 tunings are used.
     - -mmodulo: Generate code using the ISA 3.0 integer instructions (modulus,
       count trailing zeros, array index support, integer multiply/add).
     - -mpower9-fusion: Generate code to suitably fuse instruction sequences for
       a POWER9 system.
     - -mpower9-dform: Generate code to use the new D-form (register+offset) memory
       instructions for the vector registers.
     - -mpower9-vector: Generate code using the new ISA 3.0 vector (VSX or Altivec)
       instructions.
     - -mpower9-minmax: Reserved for future development.
     - -mtoc-fusion: Keep TOC entries together to provide more fusion opportunities.
- New constraints have been added to support IEEE 128-bit floating-point and ISA 3.0
  instructions.
- Support has been added for __builtin_cpu_is() and __builtin_cpu_supports(),
  allowing for very fast access to AT_PLATFORM, AT_HWCAP, and AT_HWCAP2 values.
  This requires use of glibc 2.23 or later.
- All hardware transactional memory builtins now correctly behave as
  memory barriers. Programmers can use #ifdef __TM_FENCE__ to determine
  whether their 'old' compiler treats the builtins as barriers.
- Split-stack support has been added for gccgo on PowerPC64 for both
  big- and little-endian (but not for 32-bit). The gold linker from at
  least binutils 2.25.1 must be available in the PATH when configuring and
  building gccgo to enable split stack. (The requirement for binutils 2.25.1
  applies to PowerPC64 only.) The split-stack feature allows a small initial
  stack size to be allocated for each goroutine, which increases as needed.
- GCC on PowerPC now supports the standard lround function.
- The 'q', 'S', 'T', and 't' asm-constraints have been removed.
- The 'b', 'B', 'm', 'M', and 'W' format modifiers have been removed.

S/390, System z, IBM z Systems improvements:

- Support for the IBM z13 processor has been added. When using the
  -march=z13 option, the compiler will generate code making use of the
  new instructions and registers introduced with the vector extension
  facility. The -mtune=z13 option enables z13 specific instruction
  scheduling without making use of new instructions.
- Compiling code with -march=z13 reduces the default alignment of vector
  types bigger than 8 bytes to 8. This is an ABI change and care must be
  taken when linking modules compiled with different arch levels which
  interchange variables containing vector type values. For newly compiled
  code the GNU linker will emit a warning.
- The -mzvector option enables a C/C++ language extension. This extension
  provides a new keyword vector which can be used to define vector type
  variables. (Note: This is not available when enforcing strict standard
  compliance e.g. with -std=c99. Either enable GNU extensions with
  e.g. -std=gnu99 or use __vector instead of vector.)
- Additionally a set of overloaded builtins is provided which is partially
  compatible to the PowerPC Altivec builtins. In order to make use of
  these builtins the vecintrin.h header file needs to be included.
- The new command line options -march=native, and -mtune=native are now
  available on native IBM z Systems. Specifying these options will cause
  GCC to auto-detect the host CPU and rewrite these options to the optimal
  setting for that system. If GCC is unable to detect the host CPU these
  options have no effect.
- The IBM z Systems port now supports target attributes and
  pragmas. Please refer to the documentation for details of available
  attributes and pragmas as well as usage instructions.
- -fsplit-stack is now supported as part of the IBM z Systems port. This
  feature requires a recent gold linker to be used.
- Support for the g5 and g6 -march=/-mtune= CPU level switches has been
  deprecated and will be removed in a future GCC release. -m31 from now
  on defaults to -march=z900 if not specified otherwise. -march=native on
  a g5/g6 machine will default to -march=z900.

An even more detailed list of features can be found at:
https://gcc.gnu.org/gcc-6/changes.html


-----------------------------------------
Patch: SUSE-2016-1370
Released: Wed Sep 21 12:58:14 2016
Summary: Security update for libgcrypt
Severity: moderate
References: 994157,CVE-2016-6313
Description:

This update for libgcrypt fixes the following issues:

  - RNG prediction vulnerability (bsc#994157, CVE-2016-6313)



-----------------------------------------
Patch: SUSE-2016-1374
Released: Thu Sep 22 22:36:13 2016
Summary: Recommended update for gconf-editor
Severity: low
References: 989348
Description:

This update for gconf-editor fixes an assertion failure while navigating the left tree view.


-----------------------------------------
Patch: SUSE-2016-1379
Released: Fri Sep 23 12:50:29 2016
Summary: Recommended update for ceph
Severity: moderate
References: 995150,995632
Description:

This update provides Ceph 0.94.7, which brings several fixes and enhancements:

- Improved compatibility with SES 2.1 and SES 3 clusters.
- Client-side librados code performance improvements: better throughput on
  flash backends, improved parallelism and scalability on fast machines.
- New administrator commands:
  - 'ceph osd df' (OSD disk utilization)
  - 'ceph pg ls ...' (query Placement Group states, diagnostics)
- Improved health reporting: 'ceph -s' and related commands now properly
  distinguish between 'degraded' and 'misplaced' data.
- Many bug fixes.

For a comprehensive list of changes please refer to the package's change log.


-----------------------------------------
Patch: SUSE-2016-1383
Released: Mon Sep 26 10:18:37 2016
Summary: Recommended update for mutt
Severity: low
References: 961470,968699,983722
Description:

The Mutt mail client was updated to version 1.6.0, which brings many new features,
fixes and enhancements:

- Enable UTF-8 mailbox support for IMAP.
- New expandos %r and %R for comma separated list of To: and Cc: recipients respectively.
- Improved support for internationalized email and SMTPUTF8 (RFCs 653[0-3]).
- Option $use_idn has been renamed to $idn_decode.
- New option $idn_encode controls whether outgoing email address domains will be IDNA
  encoded. If your MTA supports it, unset to use utf-8 email address domains.
- The S/MIME message digest algorithm is now specified using the option
  $smime_sign_digest_alg. Note that $smime_sign_command should be modified
  to include '-md %d'. Please see contrib/smime.rc.
- New option $reflow_space_quotes allows format=flowed email quotes to be displayed
  with spacing between them.
- Multipart draft files are now supported.
- The '-E' command line argument causes mutt to edit draft or include files.
  All changes made in mutt will be saved back out to those files.
- New option $resume_draft_files and $resume_edited_draft_files control how mutt
  processes draft files.
- For classic gpg mode, $pgp_decryption_okay should be set to verify multipart/encrypted
  are actually encrypted. Please see contrib/gpg.rc for the suggested value.
- mailto URL header parameters by default are now restricted to 'body' and 'subject'.
- mailto_allow and unmailto_allow can be used to add or remove allowed mailto header
  parameters.
- The method of setting $hostname has been changed. Instead of scanning /etc/resolv.conf,
  the domain will now be determined using DNS calls.
- Add terminal status-line (TS) support, a.k.a. xterm title. See the following variables:
  $ts_enabled, $ts_icon_format, $ts_status_format.
- Option $ssl_use_sslv3 is now disabled by default.
- New command-line arguments: -H now combines template and command-line address arguments.
- GnuPG signature name is set to signature.asc.
- New color object 'prompt' added.
- Ability to encrypt postponed messages. See $postpone_encrypt and $postpone_encrypt_as.
- History ring now has a scratch buffer.
- mail-key is implemented for GPGME.
- Removed GPG_AGENT_INFO check for GnuPG 2.1 compatibility. Please set pgp_use_gpg_agent
  if using GnuPG 2.1 or later.
- Option $smime_encrypt_with now defaults to aes256.
- GnuPG fingerprints are used internally when possible. '--with-fingerprint' should be
  added to $pgp_list_pubring_command and $pgp_list_secring_command to enable this. Please
  see contrib/gpg.rc. Fingerprints may also be used at the prompts for key selection.
- Option $crypt_opportunistic_encrypt automatically enables/disables encryption based on
  message recipients.
- Attachments for signed, unencrypted emails may be deleted.
- Multiple crypt-hooks may be defined for the same regexp. This means multiple keys may be
  used for a recipient.
- Option $crypt_confirmhook allows the confirmation prompt for crypt-hooks to be disabled.
- Option $ssl_ciphers allows the SSL ciphers to be directly set.
- sime_keys better handles importing certificate chains.
- sime_keys now records certificate purposes (sign/encrypt). Run 'sime_keys refresh' to
  update smime index files.
- Option $maildir_check_cur polls the maildir 'cur' directory for new mail.
- Add support for TLS 1.1/1.2.
- Correctly shorten imaps://imap.example.com/INBOX to INBOX, not to NBOX. (bsc#961470)
- Recommend installation of perl(Expect) as a useful helper script below the samples
  depends on it. (bsc#968699)

A comprehensive list of changes is available at http://www.mutt.org/doc/ChangeLog
 

-----------------------------------------
Patch: SUSE-2016-1388
Released: Mon Sep 26 20:30:52 2016
Summary: Recommended update for flac
Severity: low
References: 998612
Description:

This update fixes a low severity issue that manifests itself only when building
certain packages against flac-devel.


-----------------------------------------
Patch: SUSE-2016-1390
Released: Tue Sep 27 15:11:15 2016
Summary: Security update for flex, at, bogofilter, cyrus-imapd, kdelibs4, libQtWebKit4, libbonobo, mdbtools, netpbm, openslp, sgmltool, virtuoso, libqt5-qtwebkit
Severity: moderate
References: 954210,990856,CVE-2015-8079,CVE-2016-6354
Description:

Various packages included vulnerable parsers generated by 'flex'.

This update provides a fixed 'flex' package and also rebuilds of packages
that might have security issues caused by the auto generated code.

Flex itself was updated to fix a buffer overflow in the generated scanner
(bsc#990856, CVE-2016-6354)

Packages that were rebuilt with the fixed flex:
- at
- bogofilter
- cyrus-imapd
- kdelibs4
- libQtWebKit4
- libbonobo
- mdbtools
- netpbm
- openslp
- sgmltool
- virtuoso

Also libqt5-qtwebkit received an additional security fix:
- CVE-2015-8079: QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode (bsc#954210).


-----------------------------------------
Patch: SUSE-2016-1396
Released: Tue Sep 27 17:02:55 2016
Summary: Recommended update for smt
Severity: moderate
References: 986220,992764,993765
Description:

This update for smt fixes the following issues:

- Make the curl connect timeout configurable (bsc#992764)
- Find migration targets independent of the order of products reported to the API (bsc#986220)

Additionally it provides smt-ha for the Public Cloud Module. (bsc#993765, fate#320820)

smt-ha:

This package extends the basic SMT functionality with registration sharing
capabilities. This allows 2 or more SMT servers running at the same time to
share the registrations they receive. The following smt.conf options are
used.


-----------------------------------------
Patch: SUSE-2016-1406
Released: Thu Sep 29 11:22:48 2016
Summary: Optional update for DirectFB, fltk, libgnomecups, libgsm, mlocate, vlan
Severity: low
References: 1001359
Description:

This update provides rebuilds of a few packages in order to synchronize their binaries on all
architectures of SUSE Linux Enterprise Server 12.

The following packages have been rebuilt: DirectFB, fltk, libgnomecups, libgsm, mlocate, vlan.


-----------------------------------------
Patch: SUSE-2016-1409
Released: Thu Sep 29 13:13:54 2016
Summary: Security update for postgresql94
Severity: important
References: 973660,993453,993454,CVE-2016-5423,CVE-2016-5424
Description:
This update for postgresql94 to version 9.4.9 fixes the several issues.

These security issues were fixed:
- CVE-2016-5423: CASE/WHEN with inlining can cause untrusted pointer dereference (bsc#993454).
- CVE-2016-5424: Fix client programs' handling of special characters in database and role names (bsc#993453).

This non-security issue was fixed:
- bsc#973660: Added 'Requires: timezone' to Service Pack

For additional non-security issues please refer to
- http://www.postgresql.org/docs/9.4/static/release-9-4-9.html
- http://www.postgresql.org/docs/9.4/static/release-9-4-8.html
- http://www.postgresql.org/docs/9.4/static/release-9-4-7.html


-----------------------------------------
Patch: SUSE-2016-1421
Released: Tue Oct  4 09:30:51 2016
Summary: Security update for MozillaFirefox
Severity: important
References: 991344,999701,CVE-2016-5250,CVE-2016-5257,CVE-2016-5261,CVE-2016-5270,CVE-2016-5272,CVE-2016-5274,CVE-2016-5276,CVE-2016-5277,CVE-2016-5278,CVE-2016-5280,CVE-2016-5281,CVE-2016-5284
Description:

MozillaFirefox was updated to version 45.4.0 ESR to fix the following issues:

Security issues fixed: (bsc#999701 MFSA 2016-86):
* CVE-2016-5270: Heap-buffer-overflow in nsCaseTransformTextRunFactory::TransformString
* CVE-2016-5272: Bad cast in nsImageGeometryMixin
* CVE-2016-5276: Heap-use-after-free in mozilla::a11y::DocAccessible::ProcessInvalidationList
* CVE-2016-5274: use-after-free in nsFrameManager::CaptureFrameState
* CVE-2016-5277: Heap-use-after-free in nsRefreshDriver::Tick
* CVE-2016-5278: Heap-buffer-overflow in nsBMPEncoder::AddImageFrame
* CVE-2016-5280: Use-after-free in mozilla::nsTextNodeDirectionalityMap::RemoveElementFromMap
* CVE-2016-5281: use-after-free in DOMSVGLength
* CVE-2016-5284: Add-on update site certificate pin expiration
* CVE-2016-5250: Resource Timing API is storing resources sent by the previous page
* CVE-2016-5261: Integer overflow and memory corruption in WebSocketChannel
* CVE-2016-5257: Memory safety bugs fixed in Firefox 49 and Firefox ESR 45.4

Bug fixed:
- Fix for aarch64 Firefox startup crash (bsc#991344)


-----------------------------------------
Patch: SUSE-2016-1429
Released: Tue Oct  4 17:56:48 2016
Summary: Security update for wireshark
Severity: moderate
References: 983671,991012,991013,991015,991016,991017,991018,991019,991020,CVE-2016-5350,CVE-2016-5351,CVE-2016-5352,CVE-2016-5353,CVE-2016-5354,CVE-2016-5355,CVE-2016-5356,CVE-2016-5357,CVE-2016-5358,CVE-2016-5359,CVE-2016-6504,CVE-2016-6505,CVE-2016-6506,CVE-2016-6507,CVE-2016-6508,CVE-2016-6509,CVE-2016-6510,CVE-2016-6511
Description:

    
wireshark was updated to version 1.12.13 to fix the following issues:

- CVE-2016-6504: wireshark: NDS dissector crash (bnc#991012)
- CVE-2016-6505: wireshark: PacketBB dissector could divide
  by zero (bnc#991013)
- CVE-2016-6506: wireshark: WSP infinite loop (bnc#991015)
- CVE-2016-6507: wireshark: MMSE infinite loop (bnc#991016)
- CVE-2016-6508: wireshark: RLC long loop (bnc#991017)
- CVE-2016-6509: wireshark: LDSS dissector crash (bnc#991018)
- CVE-2016-6510: wireshark: RLC dissector crash (bnc#991019)
- CVE-2016-6511: wireshark: OpenFlow long loop (bnc991020)
      
- CVE-2016-5350: SPOOLS infinite loop (bsc#983671).
- CVE-2016-5351: IEEE 802.11 dissector crash (bsc#983671).
- CVE-2016-5352: IEEE 802.11 dissector crash, different from wpna-sec-2016-30 (bsc#983671).
- CVE-2016-5353: UMTS FP crash (bsc#983671).
- CVE-2016-5354: USB dissector crash (bsc#983671).
- CVE-2016-5355: Toshiba file parser crash (bsc#983671).
- CVE-2016-5356: CoSine file parser crash (bsc#983671).
- CVE-2016-5357: NetScreen file parser crash (bsc#983671).
- CVE-2016-5358: Ethernet dissector crash (bsc#983671).
- CVE-2016-5359: WBXML infinite loop (bsc#983671).

For more details please see:
  https://www.wireshark.org/docs/relnotes/wireshark-1.12.12.html
  https://www.wireshark.org/docs/relnotes/wireshark-1.12.13.html
    


-----------------------------------------
Patch: SUSE-2016-1445
Released: Fri Oct  7 16:12:33 2016
Summary: Recommended update for speech-dispatcher
Severity: low
References: 1001618
Description:

This update for speech-dispatcher provides the following fixes:

- Move logrotate options to local scope to not affect configuration of other
  services. (bsc#1001618) 


-----------------------------------------
Patch: SUSE-2016-1454
Released: Mon Oct 10 16:25:51 2016
Summary: Recommended update for timezone
Severity: low
References: 997830
Description:

This update provides the latest timezone information (2016g) for your system,
including the following changes:

- Turkey will remain on UTC+03 after 2016-10-30. (bsc#997830)
- Antarctica and nautical time zones now use numeric time zone abbreviations instead
  of obsolete alphanumeric ones.
- Renamed Asia/Rangoon to Asia/Yangon.

This release also includes changes affecting past time stamps and documentation.


-----------------------------------------
Patch: SUSE-2016-1458
Released: Tue Oct 11 14:51:21 2016
Summary: Security update for ghostscript-library
Severity: important
References: 1001951,CVE-2013-5653,CVE-2016-7978,CVE-2016-7979
Description:

This update for ghostscript-library fixes the following issues:

- Multiple security vulnerabilities have been discovered where ghostscript's
  '-dsafer' flag did not provide sufficient protection against unintended
  access to the file system. Thus, a machine that would process a specially
  crafted Postscript file would potentially leak sensitive information to an
  attacker. (CVE-2013-5653, bsc#1001951)

- An incorrect reference count was found in .setdevice. This issue lead to a
  use-after-free scenario, which could have been exploited for
  denial-of-service or, possibly, arbitrary code execution attacks.
  (CVE-2016-7978, bsc#1001951)

- Insufficient validation of the type of input in .initialize_dsc_parser used
  to allow remote code execution. (CVE-2016-7979, bsc#1001951)


-----------------------------------------
Patch: SUSE-2016-1460
Released: Tue Oct 11 18:15:03 2016
Summary: Recommended update for ipsec-tools
Severity: low
References: 1002216
Description:

This update for ipsec-tools fixes a segmentation fault when the path of the log
file is passed to racoon(8) as a command line argument.


-----------------------------------------
Patch: SUSE-2016-1461
Released: Wed Oct 12 11:31:33 2016
Summary: Security update for tiff
Severity: moderate
References: 974449,974614,974618,975069,975070,CVE-2016-3622,CVE-2016-3623,CVE-2016-3945,CVE-2016-3990,CVE-2016-3991
Description:
This update for tiff fixes the following security issues:

- CVE-2016-3622: Specially crafted TIFF images could trigger a crash in tiff2rgba (bsc#974449)
- Various out-of-bound write vulnerabilities with unspecified impact (MSVR 35093, MSVR 35094, MSVR 35095, MSVR 35096, MSVR 35097, MSVR 35098)
- CVE-2016-3623: Specially crafted TIFF images could trigger a crash in rgb2ycbcr (bsc#974618)
- CVE-2016-3945: Specially crafted TIFF images could trigger a crash or allow for arbitrary command execution via tiff2rgba (bsc#974614)
- CVE-2016-3990: Specially crafted TIFF images could trigger a crash or allow for arbitrary command execution (bsc#975069)
- CVE-2016-3991: Specially crafted TIFF images could trigger a crash or allow for arbitrary command execution via the tiffcrop tool (bsc#975070)


-----------------------------------------
Patch: SUSE-2016-1464
Released: Wed Oct 12 11:36:01 2016
Summary: Security update for X Window System client libraries
Severity: moderate
References: 1002991,1002995,1002998,1003000,1003002,1003012,1003017,1003023,CVE-2016-5407,CVE-2016-7942,CVE-2016-7944,CVE-2016-7945,CVE-2016-7946,CVE-2016-7947,CVE-2016-7948,CVE-2016-7949,CVE-2016-7950,CVE-2016-7951,CVE-2016-7952,CVE-2016-7953
Description:
This update for the X Window System client libraries fixes a class of privilege escalation issues.

A malicious X Server could send specially crafted data to X clients, which allowed for triggering crashes, or privilege escalation if this relationship was untrusted or crossed user or permission level boundaries.

libX11, libXfixes, libXi, libXrandr, libXrender, libXtst, libXv, libXvMC were fixed, specifically:

libX11:
- CVE-2016-7942: insufficient validation of data from the X server allowed out of boundary memory read (bsc#1002991)

libXfixes:
- CVE-2016-7944: insufficient validation of data from the X server can cause an integer overflow on 32 bit architectures (bsc#1002995)

libXi:
- CVE-2016-7945, CVE-2016-7946: insufficient validation of data from the X server can cause out of boundary memory access or endless loops (Denial of Service) (bsc#1002998)

libXtst:
- CVE-2016-7951, CVE-2016-7952: insufficient validation of data from the X server can cause out of boundary memory access or endless loops (Denial of Service) (bsc#1003012)

libXv:
- CVE-2016-5407: insufficient validation of data from the X server can cause out of boundary memory and memory corruption (bsc#1003017)

libXvMC:
- CVE-2016-7953: insufficient validation of data from the X server can cause a one byte buffer read underrun (bsc#1003023)

libXrender:
- CVE-2016-7949, CVE-2016-7950: insufficient validation of data from the X server can cause out of boundary memory writes (bsc#1003002)

libXrandr:
- CVE-2016-7947, CVE-2016-7948: insufficient validation of data from the X server can cause out of boundary memory writes (bsc#1003000)


-----------------------------------------
Patch: SUSE-2016-1465
Released: Wed Oct 12 12:32:08 2016
Summary: Security update for squidGuard
Severity: moderate
References: 985612,CVE-2015-8936
Description:
squidGuard was updated to fix one security issue.

This security issue was fixed:
- CVE-2015-8936: Reflected cross site scripting vulnerability because of insufficient escaping (bsc#985612).


-----------------------------------------
Patch: SUSE-2016-1488
Released: Fri Oct 14 21:23:27 2016
Summary: Recommended update for smt
Severity: moderate
References: 1004055,970608,987559,992246,996240,996517,996519,998128,999051
Description:

This update for smt fixes the following issues:

- Show correct Repository ID in smt-repos verbose output. (bsc#1004055)
- Translate hardware data from NCC to SCC format. (bsc#998128)
- Adapt EULA Url for products not hosted on SCC. (bsc#970608)
- Fix and check product ids during setup custom repositories. (bsc#996517)
- Fix removing custom repository. (bsc#996517)
- Support adding products to existing custom repository. (bsc#996517, bsc#996519)
- Improve no_proxy handling in SMT. (bsc#996240)
- Log repositories missing for migration. (bsc#999051)
- Renamed remote_ip to client_ip for apache 2.4. (bsc#992246)
- Added missing reference for bsc#987559 to the changelog.

-----------------------------------------
Patch: SUSE-2016-1510
Released: Thu Oct 20 14:04:39 2016
Summary: Recommended update for boost
Severity: low
References: 925309,970706,996917
Description:

This update for boost adapts paths for our GCC versions:

- Boost assumes /usr/include/c++/x.y.z/ existence for GCC 4.x onward while our
  version of GCC only has /usr/include/c++/x.y for 4.x GCC and /usr/include/c++/x/
  for 5.x onward. (bsc#996917)
- Fix regression in asio library. (bsc#925309)
- Add libboost_context to the -devel dependencies when it is built. (bsc#970706)


-----------------------------------------
Patch: SUSE-2016-1557
Released: Wed Oct 26 14:52:30 2016
Summary: Security update for ghostscript
Severity: moderate
References: 1004237,CVE-2016-8602
Description:

This update for ghostscript fixes the following issues:

- CVE-2016-8602: Insufficient parameter check in .sethalftone5 (bsc#1004237).


-----------------------------------------
Patch: SUSE-2016-1558
Released: Wed Oct 26 15:21:45 2016
Summary: Security update for python3
Severity: moderate
References: 951166,983582,984751,985177,985348,989523,991069,CVE-2016-0772,CVE-2016-1000110,CVE-2016-5636,CVE-2016-5699
Description:

This update provides Python 3.4.5, which brings many fixes and enhancements.

The following security issues have been fixed:

- CVE-2016-1000110: CGIHandler could have allowed setting of HTTP_PROXY environment
  variable based on user supplied Proxy request header. (bsc#989523)
- CVE-2016-0772: A vulnerability in smtplib could have allowed a MITM attacker to
  perform a startTLS stripping attack. (bsc#984751)
- CVE-2016-5636: A heap overflow in Python's zipimport module. (bsc#985177)
- CVE-2016-5699: A header injection flaw in urrlib2/urllib/httplib/http.client.
  (bsc#985348)

The update also includes the following non-security fixes:

- Don't force 3rd party C extensions to be built with -Werror=declaration-after-statement.
  (bsc#951166)
- Make urllib proxy var handling behave as usual on POSIX. (bsc#983582)

For a comprehensive list of changes please refer to the upstream change log:
https://docs.python.org/3.4/whatsnew/changelog.html


-----------------------------------------
Patch: SUSE-2016-1565
Released: Thu Oct 27 13:06:35 2016
Summary: Security update for openslp
Severity: moderate
References: 1001600,974655,980722,994989,CVE-2016-4912,CVE-2016-7567
Description:
This update for openslp fixes two security issues and two bugs.

The following vulnerabilities were fixed:
- CVE-2016-4912: A remote attacker could have crashed the server with a large number of packages (bsc#980722)
- CVE-2016-7567: A remote attacker could cause a memory corruption having unspecified impact (bsc#1001600)

The following bugfix changes are included:
- bsc#994989: Removed convenience code as changes bytes in the message buffer breaking the verification code
- bsc#974655: Removed no longer needed slpd init file


-----------------------------------------
Patch: SUSE-2016-1571
Released: Fri Oct 28 14:54:49 2016
Summary: Security update for gd
Severity: important
References: 1001900,1004924,1005274,CVE-2016-6911,CVE-2016-7568,CVE-2016-8670
Description:

This update for gd fixes the following security issues:

- CVE-2016-7568: A specially crafted image file could cause an application crash or potentially execute arbitrary code
                 when the image is converted to webp (bsc#1001900)
- CVE-2016-8670: Stack Buffer Overflow in GD dynamicGetbuf (bsc#1004924)
- CVE-2016-6911: Check for out-of-bound read in dynamicGetbuf() (bsc#1005274)


-----------------------------------------
Patch: SUSE-2016-1572
Released: Fri Oct 28 14:55:42 2016
Summary: Security update for ImageMagick
Severity: moderate
References: 1000394,1000399,1000434,1000436,1000686,1000688,1000689,1000690,1000691,1000692,1000693,1000694,1000695,1000696,1000697,1000698,1000699,1000700,1000701,1000702,1000703,1000704,1000706,1000707,1000708,1000709,1000711,1000712,1000713,1000714,1000715,1001066,1001221,1002206,1002209,1002421,1002422,1003629,1005123,1005125,1005127,1005328,CVE-2014-9907,CVE-2015-8957,CVE-2015-8958,CVE-2015-8959,CVE-2016-6823,CVE-2016-7101,CVE-2016-7513,CVE-2016-7514,CVE-2016-7515,CVE-2016-7516,CVE-2016-7517,CVE-2016-7518,CVE-2016-7519,CVE-2016-7520,CVE-2016-7521,CVE-2016-7522,CVE-2016-7523,CVE-2016-7524,CVE-2016-7525,CVE-2016-7526,CVE-2016-7527,CVE-2016-7528,CVE-2016-7529,CVE-2016-7530,CVE-2016-7531,CVE-2016-7532,CVE-2016-7533,CVE-2016-7534,CVE-2016-7535,CVE-2016-7537,CVE-2016-7538,CVE-2016-7539,CVE-2016-7540,CVE-2016-7799,CVE-2016-7800,CVE-2016-7996,CVE-2016-7997,CVE-2016-8677,CVE-2016-8682,CVE-2016-8683,CVE-2016-8684
Description:

This update for ImageMagick fixes the following issues:
    
These vulnerabilities could be triggered by processing specially crafted image files,
which could lead to a process crash or resource consumtion, or potentially have
unspecified futher impact.

- CVE-2016-8684: Mismatch between real filesize and header values (bsc#1005123)
- CVE-2016-8683: Check that filesize is reasonable compared to the header value (bsc#1005127)
- CVE-2016-8682: Stack-buffer read overflow while reading SCT header (bsc#1005125)
- CVE-2016-8677: Memory allocation failure in AcquireQuantumPixels (bsc#1005328)
- CVE-2016-7996, CVE-2016-7997: WPG Reader Issues (bsc#1003629)
- CVE-2016-7800: 8BIM/8BIMW unsigned underflow leads to heap overflow (bsc#1002422)
- CVE-2016-7799: mogrify global buffer overflow (bsc#1002421)
- CVE-2016-7540: writing to RGF format aborts (bsc#1000394)
- CVE-2016-7539: Potential DOS by not releasing memory (bsc#1000715)
- CVE-2016-7538: SIGABRT for corrupted pdb file (bsc#1000712)
- CVE-2016-7537: Out of bound access for corrupted pdb file (bsc#1000711)
- CVE-2016-7535: Out of bound access for corrupted psd file (bsc#1000709)
- CVE-2016-7534: Out of bound access in generic decoder (bsc#1000708)
- CVE-2016-7533: Wpg file out of bound for corrupted file (bsc#1000707)
- CVE-2016-7532: fix handling of corrupted psd file (bsc#1000706)
- CVE-2016-7531: Pbd file out of bound access (bsc#1000704)
- CVE-2016-7530: Out of bound in quantum handling (bsc#1000703)
- CVE-2016-7529: Out-of-bound in quantum handling (bsc#1000399)
- CVE-2016-7528: Out-of-bound access in xcf file coder (bsc#1000434)
- CVE-2016-7527: Out-of-bound access in wpg file coder: (bsc#1000436)
- CVE-2016-7526: out-of-bounds write in ./MagickCore/pixel-accessor.h (bsc#1000702)
- CVE-2016-7525: Heap buffer overflow in psd file coder (bsc#1000701)
- CVE-2016-7524: AddressSanitizer:heap-buffer-overflow READ of size 1 in meta.c:465 (bsc#1000700)
- CVE-2016-7523: AddressSanitizer:heap-buffer-overflow READ of size 1 meta.c:496 (bsc#1000699)
- CVE-2016-7522: Out of bound access for malformed psd file (bsc#1000698)
- CVE-2016-7521: Heap buffer overflow in psd file handling (bsc#1000697)
- CVE-2016-7520: Heap overflow in hdr file handling (bsc#1000696)
- CVE-2016-7519: Out-of-bounds read in coders/rle.c (bsc#1000695)
- CVE-2016-7518: Out-of-bounds read in coders/sun.c (bsc#1000694)
- CVE-2016-7517: Out-of-bounds read in coders/pict.c (bsc#1000693)
- CVE-2016-7516: Out-of-bounds problem in rle, pict, viff and sun files (bsc#1000692)
- CVE-2016-7515: Rle file handling for corrupted file (bsc#1000689)
- CVE-2016-7514: Out-of-bounds read in coders/psd.c (bsc#1000688)
- CVE-2016-7513: Off-by-one error leading to segfault (bsc#1000686)
- CVE-2016-7101: raphicsMagick: SGI Coder Out-Of-Bounds Read Vulnerability (bsc#1001221)
- CVE-2016-6823: raphicsMagick: BMP Coder Out-Of-Bounds Write Vulnerability (bsc#1001066)
- CVE-2015-8959: dOS due to corrupted DDS files (bsc#1000713)
- CVE-2015-8958: Potential DOS in sun file handling due to malformed files (bsc#1000691)
- CVE-2015-8957: Buffer overflow in sun file handling (bsc#1000690)
- CVE-2014-9907: DOS due to corrupted DDS files (bsc#1000714)
- Buffer overflows in SIXEL, PDB, MAP, and TIFF coders (bsc#1002209)
- Divide by zero in WriteTIFFImage (bsc#1002206)


-----------------------------------------
Patch: SUSE-2016-1617
Released: Tue Nov  8 10:03:25 2016
Summary: Recommended update for libesmtp
Severity: low
References: 1005909
Description:

This update for libesmtp provides the following fixes:

- All TLS clients must support and use the highest TLS version available if
  possible, not only TLS 1.0. (bsc#1005909)


-----------------------------------------
Patch: SUSE-2016-1621
Released: Tue Nov  8 16:20:57 2016
Summary: Recommended update for timezone
Severity: low
References: 1007725,1007726
Description:

This update provides the latest timezone information (2016i) for your system,
including the following changes:

- Pacific/Tongatapu begins DST on 2016-11-06 at 02:00, ending on 2017-01-15 at 03:00.
  (bsc#1007725)
- Northern Cyprus is now +03 year round, causing a split in Cyprus time zones starting
  2016-10-30 at 04:00. This creates a zone Asia/Famagusta. (bsc#1007726)
- Antarctica/Casey switched from +08 to +11 on 2016-10-22.
- Asia/Gaza and Asia/Hebron end DST on 2016-10-29 at 01:00, not 2016-10-21 at 00:00.
- Asia/Colombo now uses numeric time zone abbreviations.

This release also includes changes affecting past time stamps and documentation.


-----------------------------------------
Patch: SUSE-2016-1634
Released: Thu Nov 10 11:26:56 2016
Summary: Recommended update for pciutils
Severity: low
References: 1001888
Description:

This update for pciutils fixes the following issues:

- lspci(8) incorrectly tested bit 4, not bit 0, for 'CRS Software Visibility' in
  the Root Capabilities register, so it showed 'RootCap: CRSVisible-' even for
  devices that do support Software Visibility. This update fixes it to use the
  correct definition for PCI_EXP_RTCAP_CRSVIS. (bsc#1001888)


-----------------------------------------
Patch: SUSE-2016-1639
Released: Thu Nov 10 18:05:34 2016
Summary: Security update for jasper
Severity: moderate
References: 1005084,1005090,1005242,1006591,1006593,1006597,1006598,1006599,1006836,1006839,1007009,392410,941919,942553,961886,963983,968373,CVE-2008-3522,CVE-2014-8158,CVE-2015-5203,CVE-2015-5221,CVE-2016-1577,CVE-2016-1867,CVE-2016-2089,CVE-2016-2116,CVE-2016-8690,CVE-2016-8691,CVE-2016-8692,CVE-2016-8693,CVE-2016-8880,CVE-2016-8881,CVE-2016-8882,CVE-2016-8883,CVE-2016-8884,CVE-2016-8885,CVE-2016-8886,CVE-2016-8887
Description:

This update for jasper to version 1.900.14 fixes several issues.

These security issues were fixed:
- CVE-2016-8887: NULL pointer dereference in jp2_colr_destroy (jp2_cod.c) (bsc#1006836)
- CVE-2016-8886: memory allocation failure in jas_malloc (jas_malloc.c) (bsc#1006599)
- CVE-2016-8884,CVE-2016-8885: two null pointer dereferences in bmp_getdata (incomplete fix for CVE-2016-8690) (bsc#1007009)
- CVE-2016-8883: assert in jpc_dec_tiledecode() (bsc#1006598)
- CVE-2016-8882: segfault / null pointer access in jpc_pi_destroy (bsc#1006597)
- CVE-2016-8881: Heap overflow in jpc_getuint16() (bsc#1006593)
- CVE-2016-8880: Heap overflow in jpc_dec_cp_setfromcox() (bsc#1006591)
- CVE-2016-8693 Double free vulnerability in mem_close (bsc#1005242)
- CVE-2016-8691, CVE-2016-8692: Divide by zero in jpc_dec_process_siz (bsc#1005090)
- CVE-2016-8690: Null pointer dereference in bmp_getdata triggered by crafted BMP image (bsc#1005084)
- CVE-2016-2116: Memory leak in the jas_iccprof_createfrombuf function in JasPer allowed remote attackers to cause a denial of service (memory consumption) via a crafted ICC color profile in a JPEG 2000 image file (bsc#968373) 
- CVE-2016-2089: invalid read in the JasPer's jas_matrix_clip() function (bsc#963983)
- CVE-2016-1867: Out-of-bounds Read in the JasPer's jpc_pi_nextcprl() function (bsc#961886)
- CVE-2015-5221: Use-after-free (and double-free) in Jasper JPEG-200 (bsc#942553).
- CVE-2015-5203: Double free corruption in JasPer JPEG-2000 implementation (bsc#941919)
- CVE-2008-3522: Buffer overflow in the jas_stream_printf function in libjasper/base/jas_stream.c in JasPer might have allowed context-dependent attackers to have an unknown impact via vectors related to the mif_hdr_put function and use of vsprintf (bsc#392410)
- jasper: NULL pointer dereference in jp2_colr_destroy (jp2_cod.c) (incomplete fix for CVE-2016-8887) (bsc#1006839)

For additional change description please have a look at the changelog.


-----------------------------------------
Patch: SUSE-2016-1641
Released: Thu Nov 10 20:02:04 2016
Summary: Recommended update for sg3_utils
Severity: moderate
References: 1006469,958369,979436
Description:

This update for sg3_utils provides the following fixes:

- Adjust 55-scsi-sg3_id.rules to correctly handle VPD page 0x80. This issue could
  prevent some IBM Power systems from booting after installation. (bsc#1006469)
- Fix 55-scsi_sg3_id.rules to skip sg_inq on recent kernels. (bsc#979436)
- In some circumstances, the rescan-scsi-bus.sh script failed to identify new LUNs
  that have been added to the server. (bsc#958369)


-----------------------------------------
Patch: SUSE-2016-1644
Released: Fri Nov 11 16:43:00 2016
Summary: Recommended update for vsftpd
Severity: low
References: 996370
Description:

This update for vsftpd provides the following fixes:

- Fix a bug where files uploaded by an anonymous user could not have its owner
  changed to the desired UID as specified in the daemon's configuration file
  (bsc#996370)


-----------------------------------------
Patch: SUSE-2016-1654
Released: Tue Nov 15 18:12:36 2016
Summary: Recommended update for pcsc-ccid
Severity: moderate
References: 941721
Description:

This update provides pcsc-ccid 1.4.25, which brings several fixes and enhancements:

- Add support for new devices:
  - Access IS NFC Smart Module
  - ACS ACR1251 and ACR1252 Dual Reader
  - ACS ACR3901U ICC Reader
  - AK910 CKey
  - Aktiv Rutoken PINPad 2
  - Aladdin R.D. JaCarta (Flash, LT, U2F)
  - Aladdin R.D. JCR-770 and JC-WebPass
  - Alcor Micro AU9560
  - appidkey GmbH ID100-USB SC Reader
  - appidkey GmbH ID50-USB
  - Athena ASEDrive IIIe Combo Bio PIV
  - Athena ASEDrive IIIe KB Bio PIV
  - BIFIT iToken
  - BLUTRONICS BLUDRIVE II CCID
  - Broadcom Corp 5880
  - CASTLES EZCCID Smart Card Reader
  - Cherry Cherry TC 1100
  - Cherry KC 1000 SC, SC/DI, SC/DI Z, SC Z
  - Cherry Smartcard Keyboard G87-1xx44
  - Cherry Smart Card Reader USB
  - Cherry SmartTerminal XX44
  - Cherry TC 1300
  - Chicony HP USB Smartcard CCID Keyboard JP, KR
  - Chicony USB Smart Card Keyboard
  - Crypto Stick Crypto Stick v1.4
  - DUALi DRAGON NFC READER
  - eID_R6 001 X8
  - Elatec TWN4 SmartCard NFC
  - ESMART Token GOST X2 ET1020-A
  - Feitian 502-CL, bR301, bR301 BLE, bR500, eJAVA Token, iR301, R502
  - Feitian VR504 VHBR Contactless & Contact Card Reader
  - Free Software Initiative of Japan Gnuk Token
  - FT ePass2003Auto
  - FujitsuTechnologySolutions GmbH Keyboard KB100 SCR, KB100 SCR eSIG, KB SCR2
  - Gemalto CR30 reader in serial communication
  - Gemalto CT1100, Ezio Shield Pro SC, K1100, K50
  - Generic MultiCard Device
  - Generic USB Smart Card Reader
  - German Privacy Foundation Crypto Stick v2.0
  - Giesecke & Devrient GmbH StarSign CUT S
  - Hewlett-Packard HP lt4112 Gobi 4G Module
  - Hewlett Packard USB Smartcard CCID Keyboard
  - HID AVIATOR Generic
  - HID Global OMNIKEY Smart Card Reader
  - HID Global veriCLASS Reader
  - HID OMNIKEY 5025-CL
  - Hitachi, Ltd. Hitachi Biometric Reader, Portable Biometric Reader
  - Identiv CLOUD 2980 F Smart Card Reader
  - Identive Identive CLOUD 4000 F DTC
  - Identive SCT3522CC token
  - Identive Technologies Multi-ISO HF Reader - USB
  - Identiv Identiv uTrust 4701 F Dual Interface Reader
  - Identiv @MAXX ID-1 Smart Card Reader
  - Identiv @MAXX Light2 token
  - Identiv SCR3500 A and B Contact Reader
  - Identiv SCR35xx USB Smart Card Reader
  - Identiv uTrust 2900 R and 2910 R Smart Card Reader
  - Identiv uTrust 2910 R Taglio SC Reader
  - Identiv uTrust 3512 SAM slot Token
  - Identiv uTrust 3522 embd SE RFID Token
  - Identiv uTrust 3700 and 3701 F CL Reader
  - IID AT90S064 CCID READER
  - IIT E.Key Almaz-1C
  - INSIDE Secure VaultIC 405, 441 Smart Object
  - IonIDe Smartcard Reader reader
  - KACST HSID Reader, Single and Dual Storage
  - Lenovo Lenovo USB Smartcard Keyboard
  - Liteon HP SC Keyboard - Apollo JP, KR (Liteon)
  - Microchip SEC1110, SEC1210
  - Nitrokey Nitrokey HSM, Pro, Start, Storage
  - NXP Pegoda 2 N
  - OMNIKEY 5421, AG 3121 USB, AG 6121 USB mobile
  - PIVKey T800
  - REINER SCT tanJack Bluetooth
  - Rocketek RT-SCR1
  - SafeNet eToken 5100, 7300
  - Thursby Software Systems, Inc. TSS-PK7, TSS-PK8, TSS-PK1
  - udea MILKO V1.
  - VASCO DIGIPASS 875
  - WatchCNPC USB CCID Key
  - Watchdata USB Key, W5181
  - Yubico Yubikey 4 CCID, OTP+CCID, OTP+U2F+CCID, U2F+CCID
  - Yubico Yubikey NEO OTP+U2F+CCID, U2F+CCID

- Remove suport for:
  - Broadcom Corp 5880 (idProducts: 0x5800, 0x5805)
  - KEBTechnology KONA USB SmartCard
  - VMware Virtual USB CCID
  - Crypto Stick Crypto Stick v1.4
  - Free Software Initiative of Japan Gnuk Token

- Better support for Elatec TWN4 SmartCard NFC
- Better support for SCM SCL011
- Fix crash with GemCore Pos Pro and GemCore Sim Pro.
- Fix SCARD_ATTR_VENDOR_IFD_SERIAL_NO attribute size
- Fix a race condition on card events with multiple readers
- Fix a busy loop consuming 100% of CPU for some composite USB devices
- Log libusb error name instead of decimal value
- Patch for Cherry KC 1000 SC (problem was with a T=1 card and case 2 APDU)
- Fix support of FEATURE_MCT_READER_DIRECT for the Kobil mIDentity visual reader
- Set timeout to 90 sec for PPDU (Pseudo APDU) commands.
- Fix a crash when reader reader initialization failed
- Display a human readable version of the error code returned by libusb
- The O2 Micro Oz776 reader only supports 9600 bps
- Fix a memory leak in an error path
- Fix support of Omnikey CardMan 3121
- Fix support for O2 Micro Oz776. The reader is limited to 9600 bps
- Add support for DRIVER_OPTION_DISABLE_PIN_RETRIES
- Add support of WTX received before SW during Secure Pin Entry Verify.

For a comprehensive list of changes please refer to the package's change log.


-----------------------------------------
Patch: SUSE-2016-1657
Released: Wed Nov 16 16:29:34 2016
Summary: Security update for ghostscript
Severity: moderate
References: 1006592,CVE-2013-5653
Description:

This update for ghostscript fixes the following issues:

- bsc#1006592: Fix a regression introduced in CVE-2013-5653 by which ps files couldn't be
  opened in okular/evince (kde#371887).


-----------------------------------------
Patch: SUSE-2016-1665
Released: Thu Nov 17 12:58:19 2016
Summary: Recommended update for nautilus
Severity: low
References: 979072
Description:

This update for nautilus fixes a race condition at start-up time that could
lead to overlapping desktop icons.


-----------------------------------------
Patch: SUSE-2016-1666
Released: Thu Nov 17 13:01:12 2016
Summary: Recommended update for NetworkManager-gnome, gnome-control-center
Severity: important
References: 1003069,870795
Description:

This update for NetworkManager-gnome and gnome-control-center provides the following
fixes:

- Ensure secrets default to agent-owned and are consequently stored in the encrypted
  keyring. (bsc#1003069)
- Fix created mobile networks not showing in the network list. (bsc#870795)


-----------------------------------------
Patch: SUSE-2016-1667
Released: Thu Nov 17 13:43:10 2016
Summary: Recommended update for python-M2Crypto
Severity: low
References: 1001377
Description:

This update for python-M2Crypto fixes the following issues:

- Do not strip leading zeros from certificate fingerprints. (bsc#1001377)


-----------------------------------------
Patch: SUSE-2016-1668
Released: Thu Nov 17 14:34:38 2016
Summary: Security update for X Window System client libraries
Severity: moderate
References: 1002991,1002995,1002998,1003000,1003002,1003012,1003017,1003023,CVE-2016-5407,CVE-2016-7942,CVE-2016-7944,CVE-2016-7945,CVE-2016-7946,CVE-2016-7947,CVE-2016-7948,CVE-2016-7949,CVE-2016-7950,CVE-2016-7951,CVE-2016-7952,CVE-2016-7953
Description:

This update for the X Window System client libraries fixes a class of privilege escalation issues.

A malicious X Server could send specially crafted data to X clients, which allowed for triggering
crashes, or privilege escalation if this relationship was untrusted or crossed user or permission
level boundaries.

libX11, libXfixes, libXi, libXrandr, libXrender, libXtst, libXv, libXvMC were fixed, specifically:

libX11:
- CVE-2016-7942: insufficient validation of data from the X server allowed out of boundary memory
  read (bsc#1002991)

libXfixes:
- CVE-2016-7944: insufficient validation of data from the X server can cause an integer overflow
  on 32 bit architectures (bsc#1002995)

libXi:
- CVE-2016-7945, CVE-2016-7946: insufficient validation of data from the X server can cause out of
  boundary memory access or endless loops (Denial of Service) (bsc#1002998)

libXtst:
- CVE-2016-7951, CVE-2016-7952: insufficient validation of data from the X server can cause out of
  boundary memory access or endless loops (Denial of Service) (bsc#1003012)

libXv:
- CVE-2016-5407: insufficient validation of data from the X server can cause out of boundary memory
  and memory corruption (bsc#1003017)

libXvMC:
- CVE-2016-7953: insufficient validation of data from the X server can cause a one byte buffer read
  underrun (bsc#1003023)

libXrender:
- CVE-2016-7949, CVE-2016-7950: insufficient validation of data from the X server can cause out of
  boundary memory writes (bsc#1003002)

libXrandr:
- CVE-2016-7947, CVE-2016-7948: insufficient validation of data from the X server can cause out of
  boundary memory writes (bsc#1003000)


-----------------------------------------
Patch: SUSE-2016-1675
Released: Fri Nov 18 12:40:36 2016
Summary: Recommended update for boost
Severity: low
References: 925309,970706,996917
Description:

This update for boost adapts paths for our GCC versions:

- Boost assumes /usr/include/c++/x.y.z/ existence for GCC 4.x onward while our
  version of GCC only has /usr/include/c++/x.y for 4.x GCC and /usr/include/c++/x/
  for 5.x onward. (bsc#996917)
- Fix regression in asio library. (bsc#925309)
- Add libboost_context to the -devel dependencies when it is built. (bsc#970706)


-----------------------------------------
Patch: SUSE-2016-1676
Released: Fri Nov 18 12:42:16 2016
Summary: Security update for python3
Severity: moderate
References: 951166,983582,984751,985177,985348,989523,991069,CVE-2016-0772,CVE-2016-1000110,CVE-2016-5636,CVE-2016-5699
Description:

This update provides Python 3.4.5, which brings many fixes and enhancements.

The following security issues have been fixed:

- CVE-2016-1000110: CGIHandler could have allowed setting of HTTP_PROXY environment
  variable based on user supplied Proxy request header. (bsc#989523)
- CVE-2016-0772: A vulnerability in smtplib could have allowed a MITM attacker to
  perform a startTLS stripping attack. (bsc#984751)
- CVE-2016-5636: A heap overflow in Python's zipimport module. (bsc#985177)
- CVE-2016-5699: A header injection flaw in urrlib2/urllib/httplib/http.client.
  (bsc#985348)

The update also includes the following non-security fixes:

- Don't force 3rd party C extensions to be built with -Werror=declaration-after-statement.
  (bsc#951166)
- Make urllib proxy var handling behave as usual on POSIX. (bsc#983582)

For a comprehensive list of changes please refer to the upstream change log:
https://docs.python.org/3.4/whatsnew/changelog.html


-----------------------------------------
Patch: SUSE-2016-1678
Released: Mon Nov 21 17:08:49 2016
Summary: Recommended update for smt
Severity: moderate
References: 1004055,970608,987559,992246,996240,996517,996519,998128,999051
Description:

This update for smt fixes the following issues:

- Show correct Repository ID in smt-repos verbose output. (bsc#1004055)
- Translate hardware data from NCC to SCC format. (bsc#998128)
- Adapt EULA Url for products not hosted on SCC. (bsc#970608)
- Fix and check product ids during setup custom repositories. (bsc#996517)
- Fix removing custom repository. (bsc#996517)
- Support adding products to existing custom repository. (bsc#996517, bsc#996519)
- Improve no_proxy handling in SMT. (bsc#996240)
- Log repositories missing for migration. (bsc#999051)
- Renamed remote_ip to client_ip for apache 2.4. (bsc#992246)
- Added missing reference for bsc#987559 to the changelog.

-----------------------------------------
Patch: SUSE-2016-1683
Released: Wed Nov 23 10:28:22 2016
Summary: Security update for java-1_8_0-openjdk
Severity: important
References: 1005522,1005523,1005524,1005525,1005526,1005527,1005528,988651,CVE-2016-5542,CVE-2016-5554,CVE-2016-5556,CVE-2016-5568,CVE-2016-5573,CVE-2016-5582,CVE-2016-5597
Description:

OpenJDK Java was updated to jdk8u111 (icedtea 3.2.0) to fix the following issues:

* Security fixes
    + S8146490: Direct indirect CRL checks
    + S8151921: Improved page resolution
    + S8155968: Update command line options
    + S8155973, CVE-2016-5542: Tighten jar checks (bsc#1005522)
    + S8156794: Extend data sharing
    + S8157176: Improved classfile parsing
    + S8157739, CVE-2016-5554: Classloader Consistency Checking
      (bsc#1005523)
    + S8157749: Improve handling of DNS error replies
    + S8157753: Audio replay enhancement
    + S8157759: LCMS Transform Sampling Enhancement
    + S8157764: Better handling of interpolation plugins
    + S8158302: Handle contextual glyph substitutions
    + S8158993, CVE-2016-5568: Service Menu services (bsc#1005525)
    + S8159495: Fix index offsets
    + S8159503: Amend Annotation Actions
    + S8159511: Stack map validation
    + S8159515: Improve indy validation
    + S8159519, CVE-2016-5573: Reformat JDWP messages (bsc#1005526)
    + S8160090: Better signature handling in pack200
    + S8160094: Improve pack200 layout
    + S8160098: Clean up color profiles
    + S8160591, CVE-2016-5582: Improve internal array handling
      (bsc#1005527)
    + S8160838, CVE-2016-5597: Better HTTP service (bsc#1005528)
    + PR3206, RH1367357: lcms2: Out-of-bounds read in
      Type_MLU_Read()
    + CVE-2016-5556 (bsc#1005524)
* New features
    + PR1370: Provide option to build without debugging
    + PR1375: Provide option to strip and link debugging info after
      build
    + PR1537: Handle alternative Kerberos credential cache
      locations
    + PR1978: Allow use of system PCSC
    + PR2445: Support system libsctp
    + PR3182: Support building without pre-compiled headers
    + PR3183: Support Fedora/RHEL system crypto policy
    + PR3221: Use pkgconfig to detect Kerberos CFLAGS and libraries
* Import of OpenJDK 8 u102 build 14
    + S4515292: ReferenceType.isStatic() returns true for arrays
    + S4858370: JDWP: Memory Leak: GlobalRefs never deleted when
      processing invokeMethod command
    + S6976636: JVM/TI test ex03t001 fails assertion
    + S7185591: jcmd-big-script.sh ERROR: could not find app's Java
      pid.
    + S8017462: G1: guarantee fails with
      UseDynamicNumberOfGCThreads
    + S8034168: ThreadMXBean/Locks.java failed, blocked on wrong
      object
    + S8036006: [TESTBUG] sun/tools/native2ascii/NativeErrors.java
      fails: Process exit code was 0, but error was expected.
    + S8041781: Need new regression tests for PBE keys
    + S8041787: Need new regressions tests for buffer handling for
      PBE algorithms
    + S8043836: Need new tests for AES cipher
    + S8044199: Tests for RSA keys and key specifications
    + S8044772: TempDirTest.java still times out with -Xcomp
    + S8046339: sun.rmi.transport.DGCAckHandler leaks memory
    + S8047031: Add SocketPermission tests for legacy socket types
    + S8048052: Permission tests for setFactory
    + S8048138: Tests for JAAS callbacks
    + S8048147: Privilege tests with JAAS Subject.doAs
    + S8048356: SecureRandom default provider tests
    + S8048357: PKCS basic tests
    + S8048360: Test signed jar files
    + S8048362: Tests for doPrivileged with accomplice
    + S8048596: Tests for AEAD ciphers
    + S8048599: Tests for key wrap and unwrap operations
    + S8048603: Additional tests for MAC algorithms
    + S8048604: Tests for strong crypto ciphers
    + S8048607: Test key generation of DES and DESEDE
    + S8048610: Implement regression test for bug fix of 4686632
      in JCE
    + S8048617: Tests for PKCS12 read operations
    + S8048618: Tests for PKCS12 write operations.
    + S8048619: Implement tests for converting PKCS12 keystores
    + S8048624: Tests for SealedObject
    + S8048819: Implement reliability test for DH algorithm
    + S8048820: Implement tests for SecretKeyFactory
    + S8048830: Implement tests for new functionality provided in
      JEP 166
    + S8049237: Need new tests for X509V3 certificates
    + S8049321: Support SHA256WithDSA in JSSE
    + S8049429: Tests for java client server communications with
      various TLS/SSL combinations.
    + S8049432: New tests for TLS property jdk.tls.client.protocols
    + S8049814: Additional SASL client-server tests
    + S8050281: New permission tests for JEP 140
    + S8050370: Need new regressions tests for messageDigest with
      DigestIOStream
    + S8050371: More MessageDigest tests
    + S8050374: More Signature tests
    + S8050427: LoginContext tests to cover JDK-4703361
    + S8050460: JAAS login/logout tests with LoginContext
    + S8050461: Tests for syntax checking of JAAS configuration
      file
    + S8054278: Refactor jps utility tests
    + S8055530: assert(_exits.control()->is_top() ||
      !_gvn.type(ret_phi)->empty()) failed: return value must be
      well defined
    + S8055844: [TESTBUG]
      test/runtime/NMT/VirtualAllocCommitUncommitRecommit.java
      fails on Solaris Sparc due to incorrect page size being used
    + S8059677: Thread.getName() instantiates Strings
    + S8061464: A typo in CipherTestUtils test
    + S8062536: [TESTBUG] Conflicting GC combinations in jdk tests
    + S8065076: java/net/SocketPermission/SocketPermissionTest.java
      fails intermittently
    + S8065078: NetworkInterface.getNetworkInterfaces() triggers
      intermittent test failures
    + S8066871: java.lang.VerifyError: Bad local variable type -
      local final String
    + S8068427: Hashtable deserialization reconstitutes table with
      wrong capacity
    + S8069038: javax/net/ssl/TLS/TLSClientPropertyTest.java needs
      to be updated for JDK-8061210
    + S8069253: javax/net/ssl/TLS/TestJSSE.java failed on Mac
    + S8071125: Improve exception messages in URLPermission
    + S8072081: Supplementary characters are rejected in comments
    + S8072463: Remove requirement that AKID and SKID have to match
      when building certificate chain
    + S8072725: Provide more granular levels for GC verification
    + S8073400: Some Monospaced logical fonts have a different
      width
    + S8073872: Schemagen fails with StackOverflowError if element
      references containing class
    + S8074931: Additional tests for CertPath API
    + S8075286: Additional tests for signature algorithm OIDs and
      transformation string
    + S8076486: [TESTBUG]
      javax/security/auth/Subject/doAs/NestedActions.java fails if
      extra VM options are given
    + S8076545: Text size is twice bigger under Windows L&F on Win
      8.1 with HiDPI display
    + S8076995: gc/ergonomics/TestDynamicNumberOfGCThreads.java
      failed with java.lang.RuntimeException: 'new_active_workers'
      missing from stdout/stderr
    + S8079138: Additional negative tests for XML signature
      processing
    + S8081512: Remove sun.invoke.anon classes, or move / co-locate
      them with tests
    + S8081771: ProcessTool.createJavaProcessBuilder() needs new
      addTestVmAndJavaOptions argument
    + S8129419: heapDumper.cpp: assert(length_in_bytes > 0) failed:
      nothing to copy
    + S8130150: Implement BigInteger.montgomeryMultiply intrinsic
    + S8130242: DataFlavorComparator transitivity exception
    + S8130304: Inference: NodeNotFoundException thrown with deep
      generic method call chain
    + S8130425: libjvm crash due to stack overflow in executables
      with 32k tbss/tdata
    + S8133023: ParallelGCThreads is not calculated correctly
    + S8134111: Unmarshaller unmarshalls XML element which doesn't
      have the expected namespace
    + S8135259: InetAddress.getAllByName only reports 'unknown
      error' instead of actual cause
    + S8136506: Include sun.arch.data.model as a property that can
      be queried by jtreg
    + S8137068: Tests added in JDK-8048604 fail to compile
    + S8139040: Fix initializations before ShouldNotReachHere()
      etc. and enable -Wuninitialized on linux.
    + S8139581: AWT components are not drawn after removal and
      addition to a container
    + S8141243: Unexpected timezone returned after parsing a date
    + S8141420: Compiler runtime entries don't hold Klass* from
      being GCed
    + S8141445: Use of Solaris/SPARC M7 libadimalloc.so can
      generate unknown signal in hs_err file
    + S8141551: C2 can not handle returns with inccompatible
      interface arrays
    + S8143377: Test PKCS8Test.java fails
    + S8143647: Javac compiles method reference that allows results
      in an IllegalAccessError
    + S8144144: ORB destroy() leaks filedescriptors after
      unsuccessful connection
    + S8144593: Suppress not recognized property/feature warning
      messages from SAXParser
    + S8144957: Remove PICL warning message
    + S8145039: JAXB marshaller fails with ClassCastException on
      classes generated by xjc
    + S8145228: Java Access Bridge,
      getAccessibleStatesStringFromContext doesn't wrap the call to
      getAccessibleRole
    + S8145388: URLConnection.guessContentTypeFromStream returns
      image/jpg for some JPEG images
    + S8145974: XMLStreamWriter produces invalid XML for surrogate
      pairs on OutputStreamWriter
    + S8146035: Windows - With LCD antialiasing, some glyphs are
      not rendered correctly
    + S8146192: Add test for JDK-8049321
    + S8146274: Thread spinning on WeakHashMap.getEntry() with
      concurrent use of nashorn
    + S8147468: Allow users to bound the size of buffers cached in
      the per-thread buffer caches
    + S8147645: get_ctrl_no_update() code is wrong
    + S8147807: crash in libkcms.so on linux-sparc
    + S8148379: jdk.nashorn.api.scripting spec. adjustments,
      clarifications
    + S8148627: RestrictTestMaxCachedBufferSize.java to 64-bit
      platforms
    + S8148820: Missing @since Javadoc tag in Logger.log(Level,
      Supplier)
    + S8148926: Call site profiling fails on braces-wrapped
      anonymous function
    + S8149017: Delayed provider selection broken in RSA client key
      exchange
    + S8149029: Secure validation of XML based digital signature
      always enabled when checking wrapping attacks
    + S8149330: Capacity of StringBuilder should not get close to
      Integer.MAX_VALUE unless necessary
    + S8149334: JSON.parse(JSON.stringify([])).push(10) creates an
      array containing two elements
    + S8149368: [hidpi] JLabel font is twice bigger than JTextArea
      font on Windows 7,HiDPI, Windows L&F
    + S8149411: PKCS12KeyStore cannot extract AES Secret Keys
    + S8149417: Use final restricted flag
    + S8149450: LdapCtx.processReturnCode() throwing Null Pointer
      Exception
    + S8149453: [hidpi] JFileChooser does not scale properly on
      Windows with HiDPI display and Windows L&F
    + S8149543: range check CastII nodes should not be split
      through Phi
    + S8149743: JVM crash after debugger hotswap with lambdas
    + S8149744: fix testng.jar delivery in Nashorn build.xml
    + S8149915: enabling validate-annotations feature for xsd
      schema with annotation causes NPE
    + S8150002: Check for the validity of oop before printing it in
      verify_remembered_set
    + S8150470: JCK: api/xsl/conf/copy/copy19 test failure
    + S8150518: G1 GC crashes at
      G1CollectedHeap::do_collection_pause_at_safepoint(double)
    + S8150533: Test
      java/util/logging/LogManagerAppContextDeadlock.java times out
      intermittently.
    + S8150704: XALAN: ERROR: 'No more DTM IDs are available' when
      transforming with lots of temporary result trees
    + S8150780: Repeated offer and remove on ConcurrentLinkedQueue
      lead to an OutOfMemoryError
    + S8151064: com/sun/jdi/RedefineAddPrivateMethod.sh fails
      intermittently
    + S8151197: [TEST_BUG] Need to backport fix for
      test/javax/net/ssl/TLS/TestJSSE.java
    + S8151352: jdk/test/sample fails with 'effective library path
      is outside the test suite'
    + S8151431: DateFormatSymbols triggers this.clone() in the
      constructor
    + S8151535: TESTBUG: java/lang/invoke/AccessControlTest.java
      should be modified to run with JTREG 4.1 b13
    + S8151731: Add new jtreg keywords to jdk 8
    + S8151998: VS2010 ThemeReader.cpp(758) : error C3861: 'round':
      identifier not found
    + S8152927: Incorrect GPL header in StubFactoryDynamicBase.java
      reported
    + S8153252: SA: Hotspot build on Windows fails if make/closed
      folder does not exist
    + S8153531: Improve exception messaging for RSAClientKeyExchange
    + S8153641: assert(thread_state == _thread_in_native) failed:
      Assumed thread_in_native while heap dump
    + S8153673: [BACKOUT] JDWP: Memory Leak: GlobalRefs never
      deleted when processing invokeMethod command
    + S8154304: NullpointerException at
      LdapReferralException.getReferralContext
    + S8154722: Test gc/ergonomics/TestDynamicNumberOfGCThreads.java
      fails
    + S8157078: 8u102 L10n resource file updates
    + S8157838: Personalized Windows Font Size is not taken into
      account in Java8u102
* Import of OpenJDK 8 u111 build 14
    + S6882559: new JEditorPane('text/plain','') fails for null
      context class loader
    + S8049171: Additional tests for jarsigner's warnings
    + S8063086: Math.pow yields different results upon repeated
      calls
    + S8140530: Creating a VolatileImage with size 0,0 results in
      no longer working g2d.drawString
    + S8142926: OutputAnalyzer's shouldXXX() calls return this
    + S8147077: IllegalArgumentException thrown by
      api/java_awt/Component/FlipBufferStrategy/indexTGF_General
    + S8148127: IllegalArgumentException thrown by JCK test
      api/java_awt/Component/FlipBufferStrategy/indexTGF_General
      in opengl pipeline
    + S8150611: Security problem on sun.misc.resources.Messages*
    + S8153399: Constrain AppCDS behavior (back port)
    + S8157653: [Parfait] Uninitialised variable in awt_Font.cpp
    + S8158734: JEditorPane.createEditorKitForContentType throws
      NPE after 6882559
    + S8158994: Service Menu services
    + S8159684: (tz) Support tzdata2016f
    + S8160904: Typo in code from 8079718 fix :
      enableCustomValueHanlde
    + S8160934: isnan() is not available on older MSVC compilers
    + S8161141: correct bugId for JDK-8158994 fix push
    + S8162411: Service Menu services 2
    + S8162419: closed/com/oracle/jfr/runtime/TestVMInfoEvent.sh
      failing after JDK-8155968
    + S8162511: 8u111 L10n resource file updates
    + S8162792: Remove constraint DSA keySize < 1024 from
      jdk.jar.disabledAlgorithms in jdk8
    + S8164452: 8u111 L10n resource file update - msgdrop 20
    + S8165816: jarsigner -verify shows jar unsigned if it was
      signed with a weak algorithm
    + S8166381: Back out changes to the java.security file to not
      disable MD5
* Backports
    + S8078628, PR3208: Zero build fails with pre-compiled headers
      disabled
    + S8141491, PR3159, G592292: Unaligned memory access in Bits.c
    + S8157306, PR3121: Random infrequent null pointer exceptions
      in javac (enabled on AArch64 only)
    + S8162384, PR3122: Performance regression: bimorphic inlining
      may be bypassed by type speculation
* Bug fixes
    + PR3123: Some object files built without -fPIC on x86 only
    + PR3126: pax-mark-vm script calls 'exit -1' which is invalid
      in dash
    + PR3127, G590348: Only apply PaX markings by default on
      running PaX kernels
    + PR3199: Invalid nashorn URL
    + PR3201: Update infinality configure test
    + PR3218: PR3159 leads to build failure on clean tree
* AArch64 port
    + S8131779, PR3220: AARCH64: add Montgomery multiply intrinsic
    + S8167200, PR3220: AArch64: Broken stack pointer adjustment in
      interpreter
    + S8167421, PR3220: AArch64: in one core system, fatal error:
      Illegal threadstate encountered
    + S8167595, PR3220: AArch64: SEGV in stub code
      cipherBlockChaining_decryptAESCrypt
    + S8168888, PR3220: Port 8160591: Improve internal array
      handling to AArch64.
* Shenandoah
    + PR3224: Shenandoah broken when building without pre-compiled
      headers
- Build against system kerberos 
- Build against system pcsc and sctp 
- S8158260, PR2991, RH1341258: PPC64: unaligned Unsafe.getInt can
      lead to the generation of illegal instructions (bsc#988651)

-----------------------------------------
Patch: SUSE-2016-1690
Released: Thu Nov 24 08:36:43 2016
Summary: Security update for tar
Severity: moderate
References: 1007188,913058,CVE-2016-6321
Description:

This update for tar fixes the following issues:

- Fix the POINTYFEATHER vulnerability - GNU tar archiver can be tricked into extracting
  files and directories in the given destination, regardless of the
  path name(s) specified on the command line [bsc#1007188]
  [CVE-2016-6321]
- Fix Amanda integration issue (bsc#913058)



-----------------------------------------
Patch: SUSE-2016-1698
Released: Fri Nov 25 12:32:27 2016
Summary: Security update for libarchive
Severity: moderate
References: 1005070,1005072,1005076,986566,989980,998677,CVE-2015-2304,CVE-2016-5418,CVE-2016-5844,CVE-2016-6250,CVE-2016-8687,CVE-2016-8688,CVE-2016-8689
Description:

This update for libarchive fixes several issues.

These security issues were fixed:

- CVE-2016-8687: Buffer overflow when printing a filename (bsc#1005070).
- CVE-2016-8689: Heap overflow when reading corrupted 7Zip files (bsc#1005072).
- CVE-2016-8688: Use after free because of incorrect calculation in next_line (bsc#1005076).
- CVE-2016-5844: Integer overflow in the ISO parser in libarchive allowed remote attackers to cause a denial of service (application crash) via a crafted ISO file (bsc#986566).
- CVE-2016-6250: Integer overflow in the ISO9660 writer in libarchive allowed remote attackers to cause a denial of service (application crash) or execute arbitrary code via vectors related to verifying filename lengths when writing an ISO9660 archive, which trigger a buffer overflow (bsc#989980).
- CVE-2016-5418: The sandboxing code in libarchive mishandled hardlink archive entries of non-zero data size, which might allowed remote attackers to write to arbitrary files via a crafted archive file (bsc#998677).


-----------------------------------------
Patch: SUSE-2016-1703
Released: Fri Nov 25 15:44:39 2016
Summary: Security update for dovecot22
Severity: low
References: 1003952,984639,CVE-2016-4983
Description:

This update for dovecot22 fixes the following issues:

  - insecure SSL/TLS key and certificate file creation (CVE-2016-4983) (bnc #984639)
  - Fix LDAP based authentication for some setups (boo #1003952)



-----------------------------------------
Patch: SUSE-2016-1721
Released: Tue Nov 29 13:12:31 2016
Summary: Security update for vim
Severity: important
References: 1010685,988903,CVE-2016-1248
Description:

This update for vim fixes the following security issues:

- Fixed CVE-2016-1248 an arbitrary command execution vulnerability
  (bsc#1010685)

This update for vim fixes the following issues:

- Fix build with Python 3.5. (bsc#988903)


-----------------------------------------
Patch: SUSE-2016-1726
Released: Wed Nov 30 10:42:46 2016
Summary: Security update for ImageMagick
Severity: moderate
References: 1001066,1007245,CVE-2016-6823,CVE-2016-8862
Description:

This update for ImageMagick fixes the following issues:

- Memory allocation failure in AcquireMagickMemory (CVE-2016-8862) [bsc#1007245]
- update incomplete patch of CVE-2016-6823 [bsc#1001066]



-----------------------------------------
Patch: SUSE-2016-1727
Released: Wed Nov 30 10:44:13 2016
Summary: Security update for java-1_7_0-openjdk
Severity: moderate
References: 1005522,1005523,1005524,1005525,1005526,1005527,1005528,CVE-2016-5542,CVE-2016-5554,CVE-2016-5556,CVE-2016-5568,CVE-2016-5573,CVE-2016-5582,CVE-2016-5597
Description:

This update for java-1_7_0-openjdk fixes the following issues:

- Update to 2.6.8 - OpenJDK 7u121
  * Security fixes
    + S8151921: Improved page resolution
    + S8155968: Update command line options
    + S8155973, CVE-2016-5542: Tighten jar checks (bsc#1005522)
    + S8157176: Improved classfile parsing
    + S8157739, CVE-2016-5554: Classloader Consistency Checking
      (bsc#1005523)
    + S8157749: Improve handling of DNS error replies
    + S8157753: Audio replay enhancement
    + S8157759: LCMS Transform Sampling Enhancement
    + S8157764: Better handling of interpolation plugins
    + S8158302: Handle contextual glyph substitutions
    + S8158993, CVE-2016-5568: Service Menu services (bsc#1005525)
    + S8159495: Fix index offsets
    + S8159503: Amend Annotation Actions
    + S8159511: Stack map validation
    + S8159515: Improve indy validation
    + S8159519, CVE-2016-5573: Reformat JDWP messages (bsc#1005526)
    + S8160090: Better signature handling in pack200
    + S8160094: Improve pack200 layout
    + S8160098: Clean up color profiles
    + S8160591, CVE-2016-5582: Improve internal array handling
      (bsc#1005527)
    + S8160838, CVE-2016-5597: Better HTTP service (bsc#1005528)
    + PR3207, RH1367357: lcms2: Out-of-bounds read in
      Type_MLU_Read()
    + CVE-2016-5556 (bsc#1005524)
  * Import of OpenJDK 7 u121 build 0
    + S6624200: Regression test fails:
      test/closed/javax/swing/JMenuItem/4654927/bug4654927.java
    + S6882559: new JEditorPane('text/plain','') fails for null
      context class loader
    + S7090158: Networking Libraries don't build with javac -Werror
    + S7125055: ContentHandler.getContent API changed in error
    + S7145960: sun/security/mscapi/ShortRSAKey1024.sh failing on
      windows
    + S7187051: ShortRSAKeynnn.sh tests should do cleanup before
      start test
    + S8000626: Implement dead key detection for KeyEvent on Linux
    + S8003890: corelibs test scripts should pass TESTVMOPTS
    + S8005629: javac warnings compiling
      java.awt.EventDispatchThread and sun.awt.X11.XIconWindow
    + S8010297: Missing isLoggable() checks in logging code
    + S8010782: clean up source files containing carriage return
      characters
    + S8014431: cleanup warnings indicated by the -Wunused-value
      compiler option on linux
    + S8015265: revise the fix for 8007037
    + S8016747: Replace deprecated PlatformLogger isLoggable(int)
      with isLoggable(Level)
    + S8020708: NLS mnemonics missing in SwingSet2/JInternalFrame
      demo
    + S8024756: method grouping tabs are not selectable
    + S8026741: jdk8 l10n resource file translation update 5
    + S8048147: Privilege tests with JAAS Subject.doAs
    + S8048357: PKCS basic tests
    + S8049171: Additional tests for jarsigner's warnings
    + S8059177: jdk8u40 l10n resource file translation update 1
    + S8075584: test for 8067364 depends on hardwired text advance
    + S8076486: [TESTBUG]
      javax/security/auth/Subject/doAs/NestedActions.java fails if
      extra VM options are given
    + S8077953: [TEST_BUG]
      com/sun/management/OperatingSystemMXBean/TestTotalSwap.java
      Compilation failed after JDK-8077387
    + S8080628: No mnemonics on Open and Save buttons in
      JFileChooser
    + S8083601: jdk8u60 l10n resource file translation update 2
    + S8140530: Creating a VolatileImage with size 0,0 results in
      no longer working g2d.drawString
    + S8142926: OutputAnalyzer's shouldXXX() calls return this
    + S8143134: L10n resource file translation update
    + S8147077: IllegalArgumentException thrown by
      api/java_awt/Component/FlipBufferStrategy/indexTGF_General
    + S8148127: IllegalArgumentException thrown by JCK test
      api/java_awt/Component/FlipBufferStrategy/indexTGF_General in
      opengl pipeline
    + S8150611: Security problem on sun.misc.resources.Messages*
    + S8157653: [Parfait] Uninitialised variable in awt_Font.cpp
    + S8158734: JEditorPane.createEditorKitForContentType throws
      NPE after 6882559
    + S8159684: (tz) Support tzdata2016f
    + S8160934: isnan() is not available on older MSVC compilers
    + S8162411: Service Menu services 2
    + S8162419: closed/com/oracle/jfr/runtime/TestVMInfoEvent.sh
      failing after JDK-8155968
    + S8162511: 8u111 L10n resource file updates
    + S8162792: Remove constraint DSA keySize < 1024 from
      jdk.jar.disabledAlgorithms in jdk8
    + S8164452: 8u111 L10n resource file update - msgdrop 20
    + S8165816: jarsigner -verify shows jar unsigned if it was
      signed with a weak algorithm
    + S8166381: Back out changes to the java.security file to not
      disable MD5
  * Backports
    + S6604109, PR3162: 
      javax.print.PrintServiceLookup.lookupPrintServices fails
      SOMETIMES for Cups
    + S6907252, PR3162: ZipFileInputStream Not Thread-Safe
    + S8024046, PR3162: Test sun/security/krb5/runNameEquals.sh
      failed on 7u45 Embedded linux-ppc*
    + S8028479, PR3162: runNameEquals still cannot precisely detect
      if a usable native krb5 is available
    + S8034057, PR3162: Files.getFileStore and Files.isWritable do
      not work with SUBST'ed drives (win)
    + S8038491, PR3162: Improve synchronization in ZipFile.read()
    + S8038502, PR3162: Deflater.needsInput() should use
      synchronization
    + S8059411, PR3162: RowSetWarning does not correctly chain
      warnings
    + S8062198, PR3162: Add RowSetMetaDataImpl Tests and add column
      range validation to isdefinitlyWritable
    + S8066188, PR3162: BaseRowSet returns the wrong default value
      for escape processing
    + S8072466, PR3162: Deadlock when initializing MulticastSocket
      and DatagramSocket
    + S8075118, PR3162: JVM stuck in infinite loop during
      verification
    + S8076579, PR3162: Popping a stack frame after exception
      breakpoint sets last method param to exception
    + S8078495, PR3162: End time checking for native TGT is wrong
    + S8078668, PR3162: jar usage string mentions unsupported
      option '-n'
    + S8080115, PR3162: (fs) Crash in libgio when calling
      Files.probeContentType(path) from parallel threads
    + S8081794, PR3162: ParsePosition getErrorIndex returns 0 for
      TimeZone parsing problem
    + S8129957, PR3162: Deadlock in JNDI LDAP implementation when
      closing the LDAP context
    + S8130136, PR3162: Swing window sometimes fails to repaint
      partially when it becomes exposed
    + S8130274, PR3162: java/nio/file/FileStore/Basic.java fails
      when two successive stores in an iteration are determined to
      be equal
    + S8132551, PR3162: Initialize local variables before returning
      them in p11_convert.c
    + S8133207, PR3162: [TEST_BUG] ParallelProbes.java test fails
      after changes for JDK-8080115
    + S8133666, PR3162: OperatingSystemMXBean reports abnormally
      high machine CPU consumption on Linux
    + S8135002, PR3162: Fix or remove broken links in
      objectMonitor.cpp comments
    + S8137121, PR3162: (fc) Infinite loop FileChannel.truncate
    + S8137230, PR3162: TEST_BUG:
      java/nio/channels/FileChannel/LoopingTruncate.java timed out
    + S8139373, PR3162: [TEST_BUG]
      java/net/MulticastSocket/MultiDead.java failed with timeout
    + S8140249, PR3162: JVM Crashing During startUp If Flight
      Recording is enabled
    + S8141491, PR3160, G592292: Unaligned memory access in Bits.c
    + S8144483, PR3162: One long Safepoint pause directly after
      each GC log rotation
    + S8149611, PR3160, G592292: Add tests for
      Unsafe.copySwapMemory
  * Bug fixes
    + S8078628, PR3151: Zero build fails with pre-compiled headers
      disabled
    + PR3128: pax-mark-vm script calls 'exit -1' which is invalid
      in dash
    + PR3131: PaX marking fails on filesystems which don't support
      extended attributes
    + PR3135: Makefile.am rule
      stamps/add/tzdata-support-debug.stamp has a typo in
      add-tzdata dependency
    + PR3141: Pass $(CC) and $(CXX) to OpenJDK build
    + PR3166: invalid zip timestamp handling leads to error
      building bootstrap-javac
    + PR3202: Update infinality configure test
    + PR3212: Disable ARM32 JIT by default
  * CACAO
    + PR3136: CACAO is broken due to 2 new native methods in
      sun.misc.Unsafe (from S8158260)
* JamVM
    + PR3134: JamVM is broken due to 2 new native methods in
      sun.misc.Unsafe (from S8158260)
* AArch64 port
    + S8167200, PR3204: AArch64: Broken stack pointer adjustment
      in interpreter
    + S8168888: Port 8160591: Improve internal array handling to
      AArch64.
    + PR3211: AArch64 build fails with pre-compiled headers
      disabled
- Changed patch:
  * java-1_7_0-openjdk-gcc6.patch
    + Rediff to changed context

- Disable arm32 JIT, since its build broken
  (http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=2942)



-----------------------------------------
Patch: SUSE-2016-1734
Released: Thu Dec  1 10:34:07 2016
Summary: Recommended update for timezone
Severity: low
References: 1011797
Description:

This update provides the latest timezone information (2016j) for your system,
including the following changes:

- Saratov, Russia switches from +03 to +04 on 2016-12-04 at 02:00. This change
  introduces a new zone Europe/Saratov split from Europe/Volgograd.

This release also includes changes affecting past time stamps. For a comprehensive
list, please refer to the release announcement from ICANN:

http://mm.icann.org/pipermail/tz-announce/2016-November/000044.html


-----------------------------------------
Patch: SUSE-2016-1738
Released: Fri Dec  2 11:22:31 2016
Summary: Recommended update for sensors
Severity: low
References: 1008552,999987
Description:

This update for sensors fixes the sensors-detect script to skip 'random' I/O port
probing on non-x86 systems. Attempting to detect such ports could lead to kernel
faults on ARM64 systems. (bsc#1008552)

Additionally, it fixes CPU detection support on ppc architectures. (bsc#999987)


-----------------------------------------
Patch: SUSE-2016-1743
Released: Fri Dec  2 11:41:25 2016
Summary: Initial release of libmemcached, memcached, php5-memcached
Severity: low
References: 1011626
Description:

This update introduces three new packages to SUSE Linux Enterprise 12.

Memcached, a high-performance, distributed memory object caching system and the
libmemcached library have been added to SUSE Linux Enterprise Server 12 SP1 and
12-SP2.

A PHP5 extension that uses the libmemcached library and provides an API for
communicating with memcached servers has been added to the Web and Scripting
Module 12.


-----------------------------------------
Patch: SUSE-2016-1744
Released: Fri Dec  2 11:42:41 2016
Summary: Security update for pcre
Severity: moderate
References: 906574,924960,933288,933878,936227,942865,957566,957567,957598,957600,960837,971741,972127,CVE-2014-8964,CVE-2015-2325,CVE-2015-2327,CVE-2015-2328,CVE-2015-3210,CVE-2015-3217,CVE-2015-5073,CVE-2015-8380,CVE-2015-8381,CVE-2015-8382,CVE-2015-8383,CVE-2015-8384,CVE-2015-8385,CVE-2015-8386,CVE-2015-8387,CVE-2015-8388,CVE-2015-8389,CVE-2015-8390,CVE-2015-8391,CVE-2015-8392,CVE-2015-8393,CVE-2015-8394,CVE-2015-8395,CVE-2016-1283,CVE-2016-3191
Description:

This update for pcre to version 8.39 (bsc#972127) fixes several issues.

If you use pcre extensively please be aware that this is an update to a new version. Please
make sure that your software works with the updated version.

This version fixes a number of vulnerabilities that affect pcre
and applications using the libary when accepting untrusted input
as regular expressions or as part thereof. Remote attackers could
have caused the application to crash, disclose information or
potentially execute arbitrary code. These security issues were fixed:

- CVE-2014-8964: Heap-based buffer overflow in PCRE allowed remote attackers to cause a denial of service (crash) or have other unspecified impact via a crafted regular expression, related to an assertion that allows zero repeats (bsc#906574).
- CVE-2015-2325: Heap buffer overflow in compile_branch() (bsc#924960).
- CVE-2015-3210: Heap buffer overflow in pcre_compile2() / compile_regex() (bsc#933288)
- CVE-2015-3217: PCRE Library Call Stack Overflow Vulnerability in match() (bsc#933878).
- CVE-2015-5073: Library Heap Overflow Vulnerability in find_fixedlength() (bsc#936227).
- bsc#942865: heap overflow in compile_regex()
- CVE-2015-8380: The pcre_exec function in pcre_exec.c mishandled a // pattern with a \01 string, which allowed remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror (bsc#957566).
- CVE-2015-2327: PCRE mishandled certain patterns with internal recursive back references, which allowed remote attackers to cause a denial of service (segmentation fault) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror (bsc#957567).
- bsc#957598: Various security issues 
- CVE-2015-8381: Heap Overflow in compile_regex() (bsc#957598).
- CVE-2015-8382: Regular Expression Uninitialized Pointer Information Disclosure Vulnerability (ZDI-CAN-2547)(bsc#957598).
- CVE-2015-8383: Buffer overflow caused by repeated conditional group(bsc#957598).
- CVE-2015-8384: Buffer overflow caused by recursive back reference by name within certain group(bsc#957598).
- CVE-2015-8385: Buffer overflow caused by forward reference by name to certain group(bsc#957598).
- CVE-2015-8386: Buffer overflow caused by lookbehind assertion(bsc#957598).
- CVE-2015-8387: Integer overflow in subroutine calls(bsc#957598).
- CVE-2015-8388: Buffer overflow caused by certain patterns with an unmatched closing parenthesis(bsc#957598).
- CVE-2015-8389: Infinite recursion in JIT compiler when processing certain patterns(bsc#957598).
- CVE-2015-8390: Reading from uninitialized memory when processing certain patterns(bsc#957598).
- CVE-2015-8391: Some pathological patterns causes pcre_compile() to run for a very long time(bsc#957598).
- CVE-2015-8392: Buffer overflow caused by certain patterns with duplicated named groups(bsc#957598).
- CVE-2015-8393: Information leak when running pcgrep -q on crafted binary(bsc#957598).
- CVE-2015-8394: Integer overflow caused by missing check for certain conditions(bsc#957598).
- CVE-2015-8395: Buffer overflow caused by certain references(bsc#957598).
- CVE-2015-2328: PCRE mishandled the /((?(R)a|(?1)))+/ pattern and related patterns with certain recursion, which allowed remote attackers to cause a denial of service (segmentation fault) or possibly have unspecified other impact via a crafted regular expression (bsc#957600).
- CVE-2016-1283: The pcre_compile2 function in pcre_compile.c in PCRE mishandled certain patterns with named subgroups, which allowed remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted regular expression (bsc#960837).
- CVE-2016-3191: The compile_branch function in pcre_compile.c in pcre2_compile.c mishandled patterns containing an (*ACCEPT) substring in conjunction with nested parentheses, which allowed remote attackers to execute arbitrary code or cause a denial of service (stack-based buffer overflow) via a crafted regular expression (bsc#971741).

These non-security issues were fixed:
- JIT compiler improvements
- performance improvements
- The Unicode data tables have been updated to Unicode 7.0.0.


-----------------------------------------
Patch: SUSE-2016-1746
Released: Fri Dec  2 13:55:49 2016
Summary: Recommended update for libpciaccess
Severity: low
References: 1006827
Description:

This update for libpciaccess provides the following fixes:

- Ignore 32bit PCI domains. They are now supported by the Linux kernel but not
  by the user land library, and this inconsistency can lead to problems such as
  startx(1) terminating with a segmentation fault. 32-bit PCI domains are not
  needed to start the X server.


-----------------------------------------
Patch: SUSE-2016-1749
Released: Mon Dec  5 09:28:00 2016
Summary: Security update for libX11
Severity: moderate
References: 1002991,CVE-2016-7942
Description:

libX11 was updated to fix a memory leak that was introduced with the
security fix for CVE-2016-7942.


-----------------------------------------
Patch: SUSE-2016-1754
Released: Mon Dec  5 18:03:45 2016
Summary: Security update for MozillaFirefox, mozilla-nss
Severity: important
References: 1009026,1010395,1010401,1010402,1010404,1010410,1010422,1010427,1010517,992549,CVE-2016-5285,CVE-2016-5290,CVE-2016-5291,CVE-2016-5296,CVE-2016-5297,CVE-2016-9064,CVE-2016-9066,CVE-2016-9074
Description:
This update for MozillaFirefox, mozilla-nss fixes security issues and bugs.

The following vulnerabilities were fixed in Firefox ESR 45.5 (bsc#1009026):

- CVE-2016-5297: Incorrect argument length checking in Javascript (bsc#1010401)
- CVE-2016-9066: Integer overflow leading to a buffer overflow in nsScriptLoadHandler (bsc#1010404)
- CVE-2016-5296: Heap-buffer-overflow WRITE in rasterize_edges_1 (bsc#1010395)
- CVE-2016-9064: Addons update must verify IDs match between current and new versions (bsc#1010402)
- CVE-2016-5290: Memory safety bugs fixed in Firefox 50 and Firefox ESR 45.5 (bsc#1010427)
- CVE-2016-5291: Same-origin policy violation using local HTML file and saved shortcut file (bsc#1010410)

The following vulnerabilities were fixed in mozilla-nss 3.21.3:

- CVE-2016-9074: Insufficient timing side-channel resistance in divSpoiler (bsc#1010422)
- CVE-2016-5285: Missing NULL check in PK11_SignWithSymKey / ssl3_ComputeRecordMACConstantTime causes server crash (bsc#1010517)  

The following bugs were fixed:

- Firefox would fail to go into fullscreen mode with some window managers (bsc#992549)

The Mozilla Firefox changelog was amended to document patched dropped in a previous update.


-----------------------------------------
Patch: SUSE-2016-1767
Released: Wed Dec  7 16:43:38 2016
Summary: Security update for libXi
Severity: moderate
References: 1002998,CVE-2016-7945,CVE-2016-7946
Description:

libXi was updated to fix two security issues.

These security issues were fixed:
- CVE-2016-7945: Integer overflows in libXI can cause out of boundary memory access or endless loops (Denial of Service) (bsc#1002998).
- CVE-2016-7946: Insufficient validation of data in libXI can cause out of boundary memory access or endless loops (Denial of Service) (bsc#1002998).
  

-----------------------------------------
Patch: SUSE-2016-1771
Released: Wed Dec  7 17:35:11 2016
Summary: Security update for MozillaFirefox
Severity: important
References: 1012964,CVE-2016-9079
Description:

This update for MozillaFirefox fixes security issues.

The following vulnerabilities were fixed in Firefox ESR 45.5.1 (bbsc#1012964):

- CVE-2016-9079: Use-after-free in SVG Animation could be used for code execution (MFSA 2016-92 bsc#1012964)



-----------------------------------------
Patch: SUSE-2016-1774
Released: Thu Dec  8 11:05:39 2016
Summary: Security update for w3m
Severity: moderate
References: 1011283,1011284,1011285,1011286,1011287,1011288,1011289,1011290,1011291,1011292,1011293,1012021,1012022,1012023,1012024,1012025,1012026,1012027,1012028,1012029,1012030,1012031,1012032,CVE-2016-9434,CVE-2016-9435,CVE-2016-9436,CVE-2016-9437,CVE-2016-9438,CVE-2016-9439,CVE-2016-9440,CVE-2016-9441,CVE-2016-9442,CVE-2016-9443,CVE-2016-9621,CVE-2016-9622,CVE-2016-9623,CVE-2016-9624,CVE-2016-9625,CVE-2016-9626,CVE-2016-9627,CVE-2016-9628,CVE-2016-9629,CVE-2016-9630,CVE-2016-9631,CVE-2016-9632,CVE-2016-9633
Description:

This update for w3m fixes the following issues:

- update to debian git version (bsc#1011293)
  addressed security issues:
         CVE-2016-9622: w3m: null deref (bsc#1012021)
         CVE-2016-9623: w3m: null deref (bsc#1012022)
         CVE-2016-9624: w3m: near-null deref (bsc#1012023)
         CVE-2016-9625: w3m: stack overflow (bsc#1012024)
         CVE-2016-9626: w3m: stack overflow (bsc#1012025)
         CVE-2016-9627: w3m: heap overflow read + deref (bsc#1012026)
         CVE-2016-9628: w3m: null deref (bsc#1012027)
         CVE-2016-9629: w3m: null deref (bsc#1012028)
         CVE-2016-9630: w3m: global-buffer-overflow read (bsc#1012029)
         CVE-2016-9631: w3m: null deref (bsc#1012030)
         CVE-2016-9632: w3m: global-buffer-overflow read (bsc#1012031)
         CVE-2016-9633: w3m: OOM (bsc#1012032)
         CVE-2016-9434: w3m: null deref (bsc#1011283)
         CVE-2016-9435: w3m: use uninit value (bsc#1011284)
         CVE-2016-9436: w3m: use uninit value (bsc#1011285)
         CVE-2016-9437: w3m: write to rodata (bsc#1011286)
         CVE-2016-9438: w3m: null deref (bsc#1011287)
         CVE-2016-9439: w3m: stack overflow (bsc#1011288)
         CVE-2016-9440: w3m: near-null deref (bsc#1011289)
         CVE-2016-9441: w3m: near-null deref (bsc#1011290)
         CVE-2016-9442: w3m: potential heap buffer corruption (bsc#1011291)
         CVE-2016-9443: w3m: null deref (bsc#1011292)


-----------------------------------------
Patch: SUSE-2016-1775
Released: Thu Dec  8 11:06:08 2016
Summary: Security update for gc
Severity: moderate
References: 1011276,CVE-2016-9427
Description:

This update for gc fixes the following issues:

- integer overflow in GC_MALLOC_ATOMIC() (CVE-2016-9427, bsc#1011276)



-----------------------------------------
Patch: SUSE-2016-1804
Released: Tue Dec 13 09:18:32 2016
Summary: Security update for libass
Severity: moderate
References: 1002982,CVE-2016-7969,CVE-2016-7970,CVE-2016-7971,CVE-2016-7972
Description:


This update for libass fixes the following issues:

CVE-2016-7969, CVE-2016-7970, CVE-2016-7971, CVE-2016-7972: Fixed multiple memory allocation issues found by fuzzing (bsc#1002982).
 


-----------------------------------------
Patch: SUSE-2016-1827
Released: Thu Dec 15 12:41:10 2016
Summary: Security update for pcre
Severity: moderate
References: 906574,924960,933288,933878,936227,942865,957566,957567,957598,957600,960837,971741,972127,CVE-2014-8964,CVE-2015-2325,CVE-2015-2327,CVE-2015-2328,CVE-2015-3210,CVE-2015-3217,CVE-2015-5073,CVE-2015-8380,CVE-2015-8381,CVE-2015-8382,CVE-2015-8383,CVE-2015-8384,CVE-2015-8385,CVE-2015-8386,CVE-2015-8387,CVE-2015-8388,CVE-2015-8389,CVE-2015-8390,CVE-2015-8391,CVE-2015-8392,CVE-2015-8393,CVE-2015-8394,CVE-2015-8395,CVE-2016-1283,CVE-2016-3191
Description:

This update for pcre to version 8.39 (bsc#972127) fixes several issues.

If you use pcre extensively please be aware that this is an update to a new version. Please
make sure that your software works with the updated version.

This version fixes a number of vulnerabilities that affect pcre
and applications using the libary when accepting untrusted input
as regular expressions or as part thereof. Remote attackers could
have caused the application to crash, disclose information or
potentially execute arbitrary code. These security issues were fixed:

- CVE-2014-8964: Heap-based buffer overflow in PCRE allowed remote attackers to cause a denial of service (crash) or have other unspecified impact via a crafted regular expression, related to an assertion that allows zero repeats (bsc#906574).
- CVE-2015-2325: Heap buffer overflow in compile_branch() (bsc#924960).
- CVE-2015-3210: Heap buffer overflow in pcre_compile2() / compile_regex() (bsc#933288)
- CVE-2015-3217: PCRE Library Call Stack Overflow Vulnerability in match() (bsc#933878).
- CVE-2015-5073: Library Heap Overflow Vulnerability in find_fixedlength() (bsc#936227).
- bsc#942865: heap overflow in compile_regex()
- CVE-2015-8380: The pcre_exec function in pcre_exec.c mishandled a // pattern with a \01 string, which allowed remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror (bsc#957566).
- CVE-2015-2327: PCRE mishandled certain patterns with internal recursive back references, which allowed remote attackers to cause a denial of service (segmentation fault) or possibly have unspecified other impact via a crafted regular expression, as demonstrated by a JavaScript RegExp object encountered by Konqueror (bsc#957567).
- bsc#957598: Various security issues 
- CVE-2015-8381: Heap Overflow in compile_regex() (bsc#957598).
- CVE-2015-8382: Regular Expression Uninitialized Pointer Information Disclosure Vulnerability (ZDI-CAN-2547)(bsc#957598).
- CVE-2015-8383: Buffer overflow caused by repeated conditional group(bsc#957598).
- CVE-2015-8384: Buffer overflow caused by recursive back reference by name within certain group(bsc#957598).
- CVE-2015-8385: Buffer overflow caused by forward reference by name to certain group(bsc#957598).
- CVE-2015-8386: Buffer overflow caused by lookbehind assertion(bsc#957598).
- CVE-2015-8387: Integer overflow in subroutine calls(bsc#957598).
- CVE-2015-8388: Buffer overflow caused by certain patterns with an unmatched closing parenthesis(bsc#957598).
- CVE-2015-8389: Infinite recursion in JIT compiler when processing certain patterns(bsc#957598).
- CVE-2015-8390: Reading from uninitialized memory when processing certain patterns(bsc#957598).
- CVE-2015-8391: Some pathological patterns causes pcre_compile() to run for a very long time(bsc#957598).
- CVE-2015-8392: Buffer overflow caused by certain patterns with duplicated named groups(bsc#957598).
- CVE-2015-8393: Information leak when running pcgrep -q on crafted binary(bsc#957598).
- CVE-2015-8394: Integer overflow caused by missing check for certain conditions(bsc#957598).
- CVE-2015-8395: Buffer overflow caused by certain references(bsc#957598).
- CVE-2015-2328: PCRE mishandled the /((?(R)a|(?1)))+/ pattern and related patterns with certain recursion, which allowed remote attackers to cause a denial of service (segmentation fault) or possibly have unspecified other impact via a crafted regular expression (bsc#957600).
- CVE-2016-1283: The pcre_compile2 function in pcre_compile.c in PCRE mishandled certain patterns with named subgroups, which allowed remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted regular expression (bsc#960837).
- CVE-2016-3191: The compile_branch function in pcre_compile.c in pcre2_compile.c mishandled patterns containing an (*ACCEPT) substring in conjunction with nested parentheses, which allowed remote attackers to execute arbitrary code or cause a denial of service (stack-based buffer overflow) via a crafted regular expression (bsc#971741).

These non-security issues were fixed:
- JIT compiler improvements
- performance improvements
- The Unicode data tables have been updated to Unicode 7.0.0.


-----------------------------------------
Patch: SUSE-2016-1831
Released: Thu Dec 15 17:47:09 2016
Summary: Recommended update for tar
Severity: important
References: 1012633
Description:

This update for tar fixes a regression caused by the previous security update (bsc#1007188),
which limited append and create operations (bsc#1012633)


-----------------------------------------
Patch: SUSE-2016-1853
Released: Mon Dec 19 17:07:52 2016
Summary: Security update for ntp
Severity: moderate
References: 1009434,1011377,1011390,1011395,1011398,1011404,1011406,1011411,1011417,943216,956365,981252,988028,992038,992606,CVE-2015-5219,CVE-2016-7426,CVE-2016-7427,CVE-2016-7428,CVE-2016-7429,CVE-2016-7431,CVE-2016-7433,CVE-2016-7434,CVE-2016-9310,CVE-2016-9311
Description:

This update for ntp fixes the following issues:

ntp was updated to 4.2.8p9.

Security issues fixed:

- CVE-2016-9311, CVE-2016-9310, bsc#1011377: Mode 6
  unauthenticated trap information disclosure and DDoS vector.
- CVE-2016-7427, bsc#1011390:
  Broadcast Mode Replay Prevention DoS.
- CVE-2016-7428, bsc#1011417:
  Broadcast Mode Poll Interval Enforcement DoS.
- CVE-2016-7431, bsc#1011395:
  Regression: 010-origin: Zero Origin Timestamp Bypass.
- CVE-2016-7434, bsc#1011398:
  Null pointer dereference in _IO_str_init_static_internal().
- CVE-2016-7429, bsc#1011404: Interface selection attack.
- CVE-2016-7426, bsc#1011406:
  Client rate limiting and server responses.
- CVE-2016-7433, bsc#1011411: Reboot sync calculation problem.
- CVE-2015-5219: An endless loop due to incorrect precision to
  double conversion (bsc#943216).

Non-security issues fixed:

- Fix a spurious error message.
- Other bugfixes, see /usr/share/doc/packages/ntp/ChangeLog.
- Fix a regression in 'trap' (bsc#981252).
- Reduce the number of netlink groups to listen on for changes to
  the local network setup (bsc#992606).
- Fix segfault in 'sntp -a' (bsc#1009434).
- Silence an OpenSSL version warning (bsc#992038).
- Make the resolver task change user and group IDs to the same
  values as the main task. (bsc#988028)
- Simplify ntpd's search for its own executable to prevent AppArmor
  warnings (bsc#956365).



-----------------------------------------
Patch: SUSE-2016-1863
Released: Wed Dec 21 10:41:35 2016
Summary: Recommended updated for pth
Severity: low
References: 1013286
Description:

This update adds the 32bit version of libpth20 to SUSE Linux Enterprise 12 SP1 and 12 SP2.


-----------------------------------------
Patch: SUSE-2016-1868
Released: Wed Dec 21 16:24:02 2016
Summary: Security update for gd
Severity: moderate
References: 1015187,CVE-2016-9933
Description:

This update for gd fixes the following issues:

* CVE-2016-9933 possible stackoverflow on malicious truecolor images [bsc#1015187]



-----------------------------------------
Patch: SUSE-2016-1880
Released: Wed Dec 21 22:35:35 2016
Summary: Security update for MozillaFirefox
Severity: important
References: 1015422,CVE-2016-9893,CVE-2016-9895,CVE-2016-9897,CVE-2016-9898,CVE-2016-9899,CVE-2016-9900,CVE-2016-9901,CVE-2016-9902,CVE-2016-9904,CVE-2016-9905
Description:

MozillaFirefox 45 ESR was updated to 45.6 to fix the following issues:

* MFSA 2016-95/CVE-2016-9897: Memory corruption in libGLES
* MFSA 2016-95/CVE-2016-9901: Data from Pocket server improperly sanitized before execution
* MFSA 2016-95/CVE-2016-9898: Use-after-free in Editor while manipulating DOM subtrees
* MFSA 2016-95/CVE-2016-9899: Use-after-free while manipulating DOM events and audio elements
* MFSA 2016-95/CVE-2016-9904: Cross-origin information leak in shared atoms
* MFSA 2016-95/CVE-2016-9905: Crash in EnumerateSubDocuments
* MFSA 2016-95/CVE-2016-9895: CSP bypass using marquee tag
* MFSA 2016-95/CVE-2016-9900: Restricted external resources can be loaded by SVG images through data URLs
* MFSA 2016-95/CVE-2016-9893: Memory safety bugs fixed in Firefox 50.1 and Firefox ESR 45.6
* MFSA 2016-95/CVE-2016-9902: Pocket extension does not validate the origin of events

Please see https://www.mozilla.org/en-US/security/advisories/mfsa2016-95/
for more information.



-----------------------------------------
Patch: SUSE-2016-1898
Released: Thu Dec 22 16:10:28 2016
Summary: Security update for libgme
Severity: important
References: 1015941,CVE-2016-9957,CVE-2016-9958,CVE-2016-9959,CVE-2016-9960,CVE-2016-9961
Description:

This update for libgme fixes the following issues:

- CVE-2016-9957, CVE-2016-9958, CVE-2016-9959, CVE-2016-9960, CVE-2016-9961:
  Various issues were fixed in the handling of SPC music files that could have
  been exploited for gaining privileges of desktop users. [bsc#1015941]


-----------------------------------------
Patch: SUSE-2016-1901
Released: Thu Dec 22 17:33:41 2016
Summary: Optional update for SLE 12 Modules for ARM64
Severity: low
References: 1002576
Description:

This update introduces many packages that were missing in the ARM64 version of
the Web and Scripting, Manager Tools and Public Cloud Modules for SUSE Linux
Enterprise Server 12 SP2.


-----------------------------------------
Patch: SUSE-2016-1905
Released: Fri Dec 23 12:25:44 2016
Summary: Security update for ImageMagick
Severity: important
References: 1009318,1011130,1011136,1013376,1014159,CVE-2014-9848,CVE-2016-8707,CVE-2016-8866,CVE-2016-9556,CVE-2016-9559,CVE-2016-9773
Description:

This update for ImageMagick fixes the following issues:

  * CVE-2016-9556 Possible Heap-overflow found by fuzzing [bsc#1011130]
  * CVE-2016-9559 Possible Null pointer access found by fuzzing [bsc#1011136]
  * CVE-2016-8707 Possible code execution in Tiff conver utility [bsc#1014159]
  * CVE-2016-8866 Memory allocation failure in AcquireMagickMemory could lead to Heap overflow [bsc#1009318]
  * CVE-2016-9559 Possible Null pointer access found by fuzzing [bsc#1011136]



-----------------------------------------
Patch: SUSE-2016-1908
Released: Fri Dec 23 14:45:12 2016
Summary: Recommended update for pciutils
Severity: low
References: 1006827
Description:

This update for pciutils provides the following fixes:

- Enable proper support for 32-bit PCI domain numbers. (bsc#1006827)


-----------------------------------------
Patch: SUSE-2016-1911
Released: Fri Dec 23 18:02:19 2016
Summary: Security update for wget
Severity: moderate
References: 1005091,1012677,995964,CVE-2016-7098
Description:

This update for wget fixes the following issues:

Security issues fixed:
- CVE-2016-7098: Fixed a potential race condition by creating files with .tmp ext
  and making them accessible to the current user only. (bsc#995964)

Non security issues fixed:
- bsc#1005091: Don't call xfree() on string returned by usr_error()  
- bsc#1012677: Add support for enforcing TLSv1.1 and TLSv1.2 (TLS 1.2 support was already present, but it was not enforcable).


-----------------------------------------
Patch: SUSE-2016-1912
Released: Fri Dec 23 18:02:35 2016
Summary: Security update for dnsmasq
Severity: important
References: 983273,CVE-2015-8899
Description:
This update for dnsmasq fixes the following issues:

- CVE-2015-8899: Denial of service between local and remote dns entries (bsc#983273)


-----------------------------------------
Patch: SUSE-2016-1914
Released: Tue Dec 27 11:28:41 2016
Summary: Security update for openjpeg2
Severity: important
References: 1002414,1007739,1007740,1007741,1007742,1007743,1007744,1007747,1014543,1014975,999817,CVE-2016-7445,CVE-2016-8332,CVE-2016-9112,CVE-2016-9113,CVE-2016-9114,CVE-2016-9115,CVE-2016-9116,CVE-2016-9117,CVE-2016-9118,CVE-2016-9572,CVE-2016-9573,CVE-2016-9580,CVE-2016-9581
Description:

This update for openjpeg2 fixes the following issues:

* CVE-2016-9114: NULL Pointer Access in function imagetopnm of convert.c:1943(jp2) could lead to crash [bsc#1007740]
* CVE-2016-9115: Heap Buffer Overflow in function imagetotga of convert.c(jp2) [bsc#1007741]
* CVE-2016-9580, CVE-2016-9581: Possible Heap buffer overflow via integer overflow and infite loop [bsc#1014975]
* CVE-2016-9117: NULL Pointer Access in function imagetopnm of convert.c(jp2):1289 [bsc#1007743]
* CVE-2016-9118: Heap Buffer Overflow in function pnmtoimage of convert.c [bsc#1007744] 
* CVE-2016-9112: FPE(Floating Point Exception) in lib/openjp2/pi.c:523 [bsc#1007747] 
* CVE-2016-9116: NULL Pointer Access in function imagetopnm of convert.c:2226(jp2) [bsc#1007742]
* CVE-2016-9113: NULL point dereference in function imagetobmp of convertbmp.c could lead to crash [bsc#1007739] 
* CVE-2016-9572 CVE-2016-9573: Insuficient check in imagetopnm() could lead to heap buffer overflow [bsc#1014543]
* CVE-2016-8332: Malicious file in OpenJPEG JPEG2000 format  could lead to code execution [bsc#1002414] 
* CVE-2016-7445: Null pointer dereference in convert.c could lead to crash [bsc#999817] 
 


-----------------------------------------
Patch: SUSE-2016-1924
Released: Thu Dec 29 09:42:47 2016
Summary: Security update for libcares2
Severity: low
References: 1007728,CVE-2016-5180
Description:

This update for libcares2 fixes the following issues:

- Add patch to fix single byte out of buffer write
  (CVE-2016-5180, bsc#1007728)



-----------------------------------------
Patch: SUSE-2016-1933
Released: Thu Dec 29 20:42:55 2016
Summary: Security update for gstreamer-plugins-bad
Severity: moderate
References: 1010829,1013659,1013678,1013680,CVE-2016-9445,CVE-2016-9446,CVE-2016-9809,CVE-2016-9812,CVE-2016-9813
Description:

This update for gstreamer-plugins-bad fixes the following security issues,
which would allow attackers able to submit media files for indexing to cause
code execution or crashes:

- Check an integer overflow (CVE-2016-9445) and initialize a buffer
  (CVE-2016-9446) in vmncdec. (bsc#1010829)
- CVE-2016-9809: Ensure codec_data has the right size when reading number of SPS (bsc#1013659).
- CVE-2016-9812: Add more section size checks (bsc#1013678).
- CVE-2016-9813: fix PAT parsing (bsc#1013680).



-----------------------------------------
Patch: SUSE-2016-1937
Released: Thu Dec 29 20:47:49 2016
Summary: Security update for tiff
Severity: moderate
References: 1007280,1010161,1010163,1011103,1011107,914890,974449,974840,984813,984815,987351,CVE-2014-8127,CVE-2016-3622,CVE-2016-3658,CVE-2016-5321,CVE-2016-5323,CVE-2016-5652,CVE-2016-5875,CVE-2016-9273,CVE-2016-9297,CVE-2016-9448,CVE-2016-9453
Description:

The tiff library and tools were updated to version 4.0.7 fixing various bug and security issues.

- CVE-2014-8127: out-of-bounds read with malformed TIFF image in multiple tools [bnc#914890]
- CVE-2016-9297: tif_dirread.c read outside buffer in _TIFFPrintField() [bnc#1010161]
- CVE-2016-3658: Illegal read in TIFFWriteDirectoryTagLongLong8Array function in tiffset / tif_dirwrite.c [bnc#974840]
- CVE-2016-9273: heap overflow [bnc#1010163]
- CVE-2016-3622: divide By Zero in the tiff2rgba tool [bnc#974449]
- CVE-2016-5652: tiff2pdf JPEG Compression Tables Heap Buffer Overflow [bnc#1007280]
- CVE-2016-9453: out-of-bounds Write memcpy and less bound check in tiff2pdf [bnc#1011107]
- CVE-2016-5875: heap-based buffer overflow when using the PixarLog compressionformat [bnc#987351]
- CVE-2016-9448: regression introduced by fixing CVE-2016-9297 [bnc#1011103]
- CVE-2016-5321: out-of-bounds read in tiffcrop /  DumpModeDecode() function [bnc#984813]
- CVE-2016-5323: Divide-by-zero in _TIFFFax3fillruns() function (null ptr dereference?) [bnc#984815]


-----------------------------------------
Patch: SUSE-2016-1939
Released: Fri Dec 30 14:17:19 2016
Summary: Security update for gstreamer-plugins-good
Severity: important
References: 1012102,1012103,1012104,1013653,1013655,1013663,CVE-2016-9634,CVE-2016-9635,CVE-2016-9636,CVE-2016-9807,CVE-2016-9808,CVE-2016-9810
Description:

This update for gstreamer-plugins-good fixes the following security issues:

- CVE-2016-9807: Flic decoder invalid read could lead to crash. (bsc#1013655)
- CVE-2016-9634: Flic out-of-bounds write could lead to code execution. (bsc#1012102)
- CVE-2016-9635: Flic out-of-bounds write could lead to code execution. (bsc#1012103)
- CVE-2016-9635: Flic out-of-bounds write could lead to code execution. (bsc#1012104)
- CVE-2016-9808: A maliciously crafted flic file can still cause invalid memory accesses. (bsc#1013653)
- CVE-2016-9810: A maliciously crafted flic file can still cause invalid memory accesses. (bsc#1013663)


-----------------------------------------
Patch: SUSE-2016-1940
Released: Fri Dec 30 15:39:59 2016
Summary: Recommended update for shibboleth-sp
Severity: low
References: 1014173
Description:

This update adds the memcache-store plugin to shibboleth-sp.


-----------------------------------------
Patch: SUSE-2017-5
Released: Mon Jan  2 16:10:06 2017
Summary: Recommended update for alsa, pulseaudio
Severity: low
References: 1010690
Description:

This update for alsa and pulseaudio provides a new UCM profile for Cherry
Trail audio devices.


-----------------------------------------
Patch: SUSE-2017-15
Released: Thu Jan  5 11:26:43 2017
Summary: Recommended update for irqbalance
Severity: low
References: 998399
Description:

This update for irqbalance increases the maximum number of files that can be
opened simultaneously to 4096.


-----------------------------------------
Patch: SUSE-2017-22
Released: Thu Jan  5 15:52:52 2017
Summary: Recommended update for emacs
Severity: moderate
References: 1013572,1013849,967260
Description:

This update for emacs fixes the following issues:

- Icons toolbar missing with newer versions of GTK. (bsc#1013849)
- Segmentation fault when saving files. (bsc#967260, bsc#1013572)


-----------------------------------------
Patch: SUSE-2017-24
Released: Thu Jan  5 16:40:32 2017
Summary: Recommended update for sblim-sfcb
Severity: moderate
References: 1008130,1015155,923349
Description:

This update for sblim-sfcb fixes the following issues:

- Potential segmentation fault due to un-initialized memory access. (bsc#1015155)
- Add support for text/xml mimetype.
- Do not overwrite configuration file on upgrades.
- Some associatorname CIM operations could hang.
- CMPIRole not passed to provider context.
- Add sslNoSSLv3 and sslNoTLSv1 configuration options. (bsc#923349, bsc#1008130)

Please restart the service after applying the update.


-----------------------------------------
Patch: SUSE-2017-25
Released: Thu Jan  5 17:31:02 2017
Summary: Recommended update for star
Severity: moderate
References: 1014065,935569
Description:

This update for star fixes the following issues:

- Set extended attributes after chown(), as recent Linux kernels reset them with
  a chown() call. (bsc#1014065)
- Flush the verbose file stream before checking for missing links. Prevents mixed
  output when the user redirects star's standard error to standard output and pipe
  it to tee(1). (bsc#935569)


-----------------------------------------
Patch: SUSE-2017-27
Released: Sun Jan  8 13:11:03 2017
Summary: Security update for jasper
Severity: important
References: 1010977,1010979,1011830,1012530,1015993,CVE-2016-8654,CVE-2016-9395,CVE-2016-9398,CVE-2016-9560,CVE-2016-9591
Description:

This update for jasper fixes the following issues:

- CVE-2016-8654: Heap-based buffer overflow in QMFB code in JPC codec. (bsc#1012530)
- CVE-2016-9395: Invalid jasper files could lead to abort of the library caused by attacker provided image. (bsc#1010977)
- CVE-2016-9398: Invalid jasper files could lead to abort of the library caused by attacker provided image. (bsc#1010979)
- CVE-2016-9560: Stack-based buffer overflow in jpc_tsfb_getbands2. (bsc#1011830)
- CVE-2016-9591: Use-after-free on heap in jas_matrix_destroy. (bsc#1015993)


-----------------------------------------
Patch: SUSE-2017-32
Released: Mon Jan  9 11:50:42 2017
Summary: Recommended update for dirmngr
Severity: low
References: 994794
Description:

This update for dirmngr enables support for daemon mode.


-----------------------------------------
Patch: SUSE-2017-37
Released: Mon Jan  9 16:21:52 2017
Summary: Recommended update for smt
Severity: low
References: 1001178,1004714,1004716,1007543,1012116,1013854
Description:

This update for smt fixes the following issues:

- Use CATALOGID for mirroring a specific repository. (bsc#1007543)
- Fix help message when adding a custom repository and check for valid custom repository id. (bsc#1004714)
- Support namespace option for SUSEConnect. (bsc#1012116)
- Add option to deregister a system using SUSEConnect. (bsc#1012116)
- Fix error when calling smt-sibling-sync with --help (bsc#1001178)
- do not remove the .mirror file during repository cleaning with 'smt-mirror --clean' (bsc#1013854)


-----------------------------------------
Patch: SUSE-2017-42
Released: Tue Jan 10 13:52:02 2017
Summary: Recommended update for python-pyldap
Severity: important
References: 1016659
Description:

This update properly declares python-pyldap as a drop-in replacement for
python-ldap (bsc#1016659).


-----------------------------------------
Patch: SUSE-2017-45
Released: Tue Jan 10 17:25:58 2017
Summary: Security update for rrdtool
Severity: low
References: 828003,967671,CVE-2013-2131
Description:

This update for rrdtool provides the following fixes:

- CVE-2013-2131: Enhance imginfo format validation checks to prevent crashes. (bsc#828003)
- Add rrdtool-cached sub-package to SLE 12-SP1. (bsc#967671)


-----------------------------------------
Patch: SUSE-2017-58
Released: Thu Jan 12 12:44:30 2017
Summary: Recommended update for amavisd-new
Severity: low
References: 942254
Description:

This update for amavisd-new provides the following fixes:

- Require perl-Convert-BinHex as otherwise startup fails if the package is missing.
  (bsc#942254)


-----------------------------------------
Patch: SUSE-2017-59
Released: Thu Jan 12 16:04:58 2017
Summary: Recommended update for xdm
Severity: low
References: 1013200
Description:

This update for xdm provides the following fixes:

- Ensure that display managers will be started after systemd's login manager. (bsc#1013200)


-----------------------------------------
Patch: SUSE-2017-65
Released: Fri Jan 13 11:07:33 2017
Summary: Security update for perl-DBD-mysql
Severity: moderate
References: 1002626,1010457,1012546,CVE-2016-1246,CVE-2016-1249,CVE-2016-1251
Description:

This update for perl-DBD-mysql fixes the following issues:

- CVE-2016-1251: A use-after-free when used with mysql_server_prepare=1 (bsc#1012546).
- CVE-2016-1246: Buffer overflow allowed context-dependent attackers to cause a denial of service (crash) via vectors related to an error message (bsc#1002626).
- CVE-2016-1249: Out-of-bounds read when using server-side prepared statement support (bsc#1010457).


-----------------------------------------
Patch: SUSE-2017-69
Released: Fri Jan 13 16:57:59 2017
Summary: Recommended update for gdk-pixbuf
Severity: low
References: 1010497,929462
Description:

This update for gdk-pixbuf provides the following fixes:

- Fix RGBA conversion for big endian X11 environments. (bsc#929462, bsc#1010497)


-----------------------------------------
Patch: SUSE-2017-73
Released: Mon Jan 16 11:57:03 2017
Summary: Recommended update for gnome-shell, gnome-shell-extensions
Severity: moderate
References: 1007468,1008539,993341,999592,999655
Description:

This update for gnome-shell and gnome-shell-extensions fixes the following issues:

- If the 'Activities Overview' is active and 'Applications List' is started, the
  former was not being closed, incorrectly overlaying the latter. (bsc#1008539)
- The SUSE logo was not being displayed in the lock screen. (bsc#1007468)
- A problem when unpacking settings of the SLE Classic theme. (bsc#993341)
- Use DBUS to get the system hostname. (bsc#999592)


-----------------------------------------
Patch: SUSE-2017-91
Released: Tue Jan 17 19:20:26 2017
Summary: Recommended update for gnome-control-center
Severity: low
References: 997832
Description:

This update for gnome-control-center fixes the On/Off switch button in the Mobile
Broadband page of the Network panel.


-----------------------------------------
Patch: SUSE-2017-95
Released: Wed Jan 18 20:54:41 2017
Summary: Recommended update for polkit-gnome
Severity: low
References: 1004637
Description:

This update for polkit-gnome provides the following fixes:

- Do not install polkit-gnome-authentication-agent-1 as an auto-start app. It was
  originally introduced for gnome-fallback but nowadays is no longer used.


-----------------------------------------
Patch: SUSE-2017-99
Released: Thu Jan 19 10:35:21 2017
Summary: Security update for apache2
Severity: moderate
References: 1013648,CVE-2016-8740
Description:

This update for apache2 fixes the following issues:

- CVE-2016-8740 Server memory can be exhausted and service denied when HTTP/2 is used [bsc#1013648]


-----------------------------------------
Patch: SUSE-2017-103
Released: Thu Jan 19 17:26:36 2017
Summary: Security update for gstreamer-plugins-base
Severity: moderate
References: 1013669,CVE-2016-9811
Description:

This update for gstreamer-plugins-base fixes the following issues:

* CVE-2016-9811: Malicious file could could cause an invalid read leading to crash [bsc#1013669]


-----------------------------------------
Patch: SUSE-2017-138
Released: Mon Jan 23 13:26:01 2017
Summary: Security update for openssh
Severity: moderate
References: 1005480,1005893,1006221,1016366,1016368,1016369,1016370,CVE-2016-10009,CVE-2016-10010,CVE-2016-10011,CVE-2016-10012,CVE-2016-8858
Description:

This update for openssh fixes several issues.

These security issues were fixed:

- CVE-2016-8858: The kex_input_kexinit function in kex.c allowed remote attackers to cause a denial of service (memory consumption) by sending many duplicate KEXINIT requests (bsc#1005480).
- CVE-2016-10012: The shared memory manager (associated with pre-authentication compression) did not ensure that a bounds check is enforced by all compilers, which might allowed local users to gain privileges by leveraging access to a sandboxed privilege-separation process, related to the m_zback and m_zlib data structures (bsc#1016370).
- CVE-2016-10009: Untrusted search path vulnerability in ssh-agent.c allowed remote attackers to execute arbitrary local PKCS#11 modules by leveraging control over a forwarded agent-socket (bsc#1016366).
- CVE-2016-10010: When forwarding unix domain sockets with privilege separation disabled, the resulting sockets have be created as 'root' instead of the authenticated user. Forwarding unix domain sockets without privilege separation enabled is now rejected.
- CVE-2016-10011: authfile.c in sshd did not properly consider the effects of realloc on buffer contents, which might allowed local users to obtain sensitive private-key information by leveraging access to a privilege-separated child process (bsc#1016369).

These non-security issues were fixed:

- Adjusted suggested command for removing conflicting server keys from the known_hosts file (bsc#1006221)
- Properly verify CIDR masks in configuration (bsc#1005893)


-----------------------------------------
Patch: SUSE-2017-147
Released: Tue Jan 24 23:01:42 2017
Summary: Recommended update for openssh
Severity: important
References: 1021626
Description:

This update for openssh fixes the following issues:

- A previous update contained a logic flaw that broke OpenSSH's interpretation
  of the 'DenyUser' config option. That regression could have lead to an exact
  inversion of the intended meaning, i.e. OpenSSH could have locked out all users
  except the one that was supposed to be denied access. [bsc#1021626]


-----------------------------------------
Patch: SUSE-2017-150
Released: Wed Jan 25 15:29:40 2017
Summary: Security update for pcsc-lite
Severity: moderate
References: 1017902,CVE-2016-10109
Description:

pcsc-lite was updated to fix one security issue.

This security issue was fixed:

- CVE-2016-10109: This use-after-free and double-free issue allowed local attacker to cause a Denial of Service and possible privilege escalation (bsc#1017902).
  

-----------------------------------------
Patch: SUSE-2017-170
Released: Mon Jan 30 19:13:36 2017
Summary: Initial release of Salt
Severity: low
References: 989693
Description:

This update adds Salt to the Advanced Systems Management 12 Module.

Salt is a distributed remote execution system used to execute commands and
query data. It was developed in order to bring the best solutions found in
the world of remote execution together and make them better, faster and more
malleable. Salt accomplishes this via its ability to handle larger loads of
information, and not just dozens, but hundreds or even thousands of individual
servers, handle them quickly and through a simple and manageable interface.


-----------------------------------------
Patch: SUSE-2017-172
Released: Tue Jan 31 13:04:18 2017
Summary: Security update for policycoreutils
Severity: low
References: 1000998,CVE-2016-7545
Description:

This update for policycoreutils fixes the following issues:

* CVE-2016-7545: nonpriv session can escape to parent [bsc#1000998]


-----------------------------------------
Patch: SUSE-2017-176
Released: Tue Jan 31 17:25:02 2017
Summary: Security update for java-1_8_0-openjdk
Severity: important
References: 1020905,1022053,CVE-2016-2183,CVE-2016-5546,CVE-2016-5547,CVE-2016-5548,CVE-2016-5549,CVE-2016-5552,CVE-2017-3231,CVE-2017-3241,CVE-2017-3252,CVE-2017-3253,CVE-2017-3260,CVE-2017-3261,CVE-2017-3272,CVE-2017-3289
Description:

This update for java-1_8_0-openjdk fixes the following issues:
Oracle Critical Patch Update of January 2017 (bsc#1020905)
Upgrade to version jdk8u121 (icedtea 3.3.0):
 - S8138725: Add options for Javadoc generation
 - S8140353: Improve signature checking
 - S8151934, CVE-2017-3231: Resolve class resolution
 - S8156804, CVE-2017-3241: Better constraint checking
 - S8158406: Limited Parameter Processing
 - S8158997: JNDI Protocols Switch
 - S8159507: RuntimeVisibleAnnotation validation
 - S8161218: Better bytecode loading
 - S8161743, CVE-2017-3252: Provide proper login context
 - S8162577: Standardize logging levels
 - S8162973: Better component components
 - S8164143, CVE-2017-3260: Improve components for menu items
 - S8164147, CVE-2017-3261: Improve streaming socket output
 - S8165071, CVE-2016-2183: Expand TLS support
 - S8165344, CVE-2017-3272: Update concurrency support
 - S8166988, CVE-2017-3253: Improve image processing performance
 - S8167104, CVE-2017-3289: Additional class construction refinements
 - S8167223, CVE-2016-5552: URL handling improvements
 - S8168705, CVE-2016-5547: Better ObjectIdentifier validation
 - S8168714, CVE-2016-5546: Tighten ECDSA validation
 - S8168728, CVE-2016-5548: DSA signing improvements
 - S8168724, CVE-2016-5549: ECDSA signing improvements


-----------------------------------------
Patch: SUSE-2017-185
Released: Thu Feb  2 18:22:37 2017
Summary: Security update for cpio
Severity: moderate
References: 1020108,963448,CVE-2016-2037
Description:

This update for cpio fixes two issues.

This security issue was fixed:

- CVE-2016-2037: The cpio_safer_name_suffix function in util.c in cpio allowed remote attackers to cause a denial of service (out-of-bounds write) via a crafted cpio file (bsc#963448).

This non-security issue was fixed:

- bsc#1020108: Always use 32 bit CRC to prevent checksum errors for files greater than 32MB


-----------------------------------------
Patch: SUSE-2017-192
Released: Fri Feb  3 18:46:05 2017
Summary: Security update for libxml2
Severity: moderate
References: 1005544,1010675,1013930,1014873,1017497,CVE-2016-4658,CVE-2016-9318,CVE-2016-9597
Description:

This update for libxml2 fixes the following issues:

* CVE-2016-4658: use-after-free error could lead to crash [bsc#1005544]
* Fix NULL dereference in xpointer.c when in recovery mode [bsc#1014873]
* CVE-2016-9597: An XML document with many opening tags could have caused a overflow of the stack not detected by the recursion limits, allowing for DoS (bsc#1017497).

For CVE-2016-9318 we decided not to ship a fix since it can break existing setups. Please take appropriate actions if you parse untrusted XML files
and use the new -noxxe flag if possible (bnc#1010675, bnc#1013930).


-----------------------------------------
Patch: SUSE-2017-196
Released: Mon Feb  6 11:53:02 2017
Summary: Security update for guile
Severity: low
References: 1004221,CVE-2016-8605
Description:

This update for guile fixes the following issues:

- CVE-2016-8605: Fixed thread-unsafe umask modification (bsc#1004221).


-----------------------------------------
Patch: SUSE-2017-209
Released: Tue Feb  7 17:00:47 2017
Summary: Recommended update for libseccomp
Severity: low
References: 1019900
Description:

This update provides libseccomp version 2.3.1 which fixes the following issues:

- Fixed a problem with 32-bit x86 socket syscalls on some systems (fate#321647, bsc#1019900)
- Fixed problems with ipc syscalls on 32-bit x86
- Fixed problems with socket and ipc syscalls on s390 and s390x


-----------------------------------------
Patch: SUSE-2017-212
Released: Wed Feb  8 13:07:24 2017
Summary: Security update for expat
Severity: moderate
References: 983215,983216,CVE-2012-6702,CVE-2016-5300
Description:

This update for expat fixes the following security issues:

- CVE-2012-6702: Expat, when used in a parser that has not
  called XML_SetHashSalt or passed it a seed of 0, made it easier for
  context-dependent attackers to defeat cryptographic protection mechanisms
  via vectors involving use of the srand function.  (bsc#983215)
- CVE-2016-5300: The XML parser in Expat did not use sufficient entropy
  for hash initialization, which allowed context-dependent attackers to
  cause a denial of service (CPU consumption) via crafted identifiers in
  an XML document. NOTE: this vulnerability exists because of an incomplete
  fix for CVE-2012-0876.  (bsc#983216)


-----------------------------------------
Patch: SUSE-2017-217
Released: Wed Feb  8 22:51:17 2017
Summary: Security update for MozillaFirefox
Severity: important
References: 1021814,1021817,1021818,1021819,1021820,1021821,1021822,1021823,1021824,1021991,CVE-2017-5373,CVE-2017-5375,CVE-2017-5376,CVE-2017-5378,CVE-2017-5380,CVE-2017-5383,CVE-2017-5386,CVE-2017-5390,CVE-2017-5396
Description:

MozillaFirefox 45 ESR was updated to 45.7 to fix the following issues (bsc#1021991):

* MFSA 2017-02/CVE-2017-5378: Pointer and frame data leakage of Javascript objects (bsc#1021818)
* MFSA 2017-02/CVE-2017-5396: Use-after-free with Media Decoder (bsc#1021821)
* MFSA 2017-02/CVE-2017-5386: WebExtensions can use data: protocol to affect other extensions (bsc#1021823)
* MFSA 2017-02/CVE-2017-5380: Potential use-after-free during DOM manipulations (bsc#1021819)
* MFSA 2017-02/CVE-2017-5390: Insecure communication methods in Developer Tools JSON viewer (bsc#1021820)
* MFSA 2017-02/CVE-2017-5373: Memory safety bugs fixed in Firefox 51 and Firefox ESR 45.7 (bsc#1021824)
* MFSA 2017-02/CVE-2017-5375: Excessive JIT code allocation allows bypass of ASLR and DEP (bsc#1021814)
* MFSA 2017-02/CVE-2017-5376: Use-after-free in XSL (bsc#1021817)
* MFSA 2017-02/CVE-2017-5383: Location bar spoofing with unicode characters (bsc#1021822)

Please see https://www.mozilla.org/en-US/security/advisories/mfsa2017-02/
for more information.


-----------------------------------------
Patch: SUSE-2017-223
Released: Thu Feb  9 16:24:52 2017
Summary: Security update for opus
Severity: important
References: 1020102,CVE-2017-0381
Description:

This update for opus fixes the following issues:

- CVE-2017-0381: Fixed a remote code execution vulnerability in silk/NLSF_stabilize.c when playing certain media files (bsc#1020102)


-----------------------------------------
Patch: SUSE-2017-231
Released: Mon Feb 13 11:40:25 2017
Summary: Security update for tiff
Severity: moderate
References: 1019611,1022103,CVE-2017-5225
Description:

This update for tiff fixes the following issues:

- A crafted TIFF image could cause a crash and potential code execution when
processed by the 'tiffcp' utility (CVE-2017-5225, bsc#1019611).

Also a regression from the version update to 4.0.7 was fixed in
handling TIFFTAG_FAXRECVPARAMS. (bsc#1022103)



-----------------------------------------
Patch: SUSE-2017-240
Released: Wed Feb 15 07:29:29 2017
Summary: Security update for libXpm
Severity: moderate
References: 1021315,CVE-2016-10164
Description:

This update for libXpm fixes the following issues:

- A heap overflow in XPM handling could be used by attackers supplying XPM files to 
  crash or potentially execute code. (bsc#1021315)


-----------------------------------------
Patch: SUSE-2017-241
Released: Wed Feb 15 07:30:57 2017
Summary: Security update for gd
Severity: moderate
References: 1022263,1022264,1022265,1022283,1022284,1022553,CVE-2016-10166,CVE-2016-10167,CVE-2016-10168,CVE-2016-6906,CVE-2016-6912,CVE-2016-9317
Description:

This update for gd fixes the following security issues:

- CVE-2016-6906: An out-of-bounds read in TGA decompression was fixed which could have lead to crashes. (bsc#1022553)
- CVE-2016-6912: Double free vulnerability in the gdImageWebPtr function
  in the GD Graphics Library (aka libgd) allowed remote attackers to have
  unspecified impact via large width and height values. (bsc#1022284)
- CVE-2016-9317: The gdImageCreate function in the GD Graphics Library
  (aka libgd) allowed remote attackers to cause a denial of service
  (system hang) via an oversized image.  (bsc#1022283)
- CVE-2016-10166: A potential unsigned underflow in gd interpolation
  functions could lead to memory corruption in the GD Graphics Library (aka libgd) (bsc#1022263)
- CVE-2016-10167: A denial of service problem in gdImageCreateFromGd2Ctx()
  could lead to libgd running out of memory even on small files. (bsc#1022264)
- CVE-2016-10168: A signed integer overflow in the GD Graphics Library (aka libgd) could lead
  to memory corruption (bsc#1022265)


-----------------------------------------
Patch: SUSE-2017-246
Released: Wed Feb 15 16:29:22 2017
Summary: Security update for ppp
Severity: moderate
References: 927841,CVE-2015-3310
Description:
The ppp package was updated to fix the following security issue:

- CVE-2015-3310: Fixed a buffer overflow in radius plug-in's rc_mksid() (bsc#927841).


-----------------------------------------
Patch: SUSE-2017-255
Released: Fri Feb 17 10:59:20 2017
Summary: Security update for java-1_7_0-openjdk
Severity: important
References: 1020905,CVE-2016-2183,CVE-2016-5546,CVE-2016-5547,CVE-2016-5548,CVE-2016-5549,CVE-2016-5552,CVE-2017-3231,CVE-2017-3241,CVE-2017-3252,CVE-2017-3253,CVE-2017-3259,CVE-2017-3260,CVE-2017-3261,CVE-2017-3272,CVE-2017-3289
Description:

This update for java-1_7_0-openjdk fixes the following issues:

- Oracle Critical Patch Update of January 2017 to OpenJDK 7u131 (bsc#1020905):
  * Security Fixes
    - S8138725: Add options for Javadoc generation
    - S8140353: Improve signature checking
    - S8151934, CVE-2017-3231: Resolve class resolution
    - S8156804, CVE-2017-3241: Better constraint checking
    - S8158406: Limited Parameter Processing
    - S8158997: JNDI Protocols Switch
    - S8159507: RuntimeVisibleAnnotation validation
    - S8161218: Better bytecode loading
    - S8161743, CVE-2017-3252: Provide proper login context
    - S8162577: Standardize logging levels
    - S8162973: Better component components
    - S8164143, CVE-2017-3260: Improve components for menu items
    - S8164147, CVE-2017-3261: Improve streaming socket output
    - S8165071, CVE-2016-2183: Expand TLS support
    - S8165344, CVE-2017-3272: Update concurrency support
    - S8166988, CVE-2017-3253: Improve image processing performance
    - S8167104, CVE-2017-3289: Additional class construction refinements
    - S8167223, CVE-2016-5552: URL handling improvements
    - S8168705, CVE-2016-5547: Better ObjectIdentifier validation
    - S8168714, CVE-2016-5546: Tighten ECDSA validation
    - S8168728, CVE-2016-5548: DSA signing improvments
    - S8168724, CVE-2016-5549: ECDSA signing improvments
    - S6253144: Long narrowing conversion should describe the algorithm used and implied 'risks'
    - S6328537: Improve javadocs for Socket class by adding references to SocketOptions
    - S6978886: javadoc shows stacktrace after print error resulting from disk full
    - S6995421: Eliminate the static dependency to sun.security.ec.ECKeyFactory
    - S6996372: synchronizing handshaking hash
    - S7027045: (doc) java/awt/Window.java has several typos in javadoc
    - S7054969: Null-check-in-finally pattern in java/security documentation
    - S7072353: JNDI libraries do not build with javac -Xlint:all -Werror
    - S7075563: Broken link in 'javax.swing.SwingWorker'
    - S7077672: jdk8_tl nightly fail in step-2 build on 8/10/11
    - S7088502: Security libraries don't build with javac -Werror
    - S7092447: Clarify the default locale used in each locale sensitive operation
    - S7093640: Enable client-side TLS 1.2 by default
    - S7103570: AtomicIntegerFieldUpdater does not work when SecurityManager is installed
    - S7117360: Warnings in java.util.concurrent.atomic package
    - S7117465: Warning cleanup for IMF classes
    - S7187144: JavaDoc for ScriptEngineFactory.getProgram() contains an error
    - S8000418: javadoc should used a standard 'generated by javadoc' string
    - S8000666: javadoc should write directly to Writer instead of composing strings
    - S8000673: remove dead code from HtmlWriter and subtypes
    - S8000970: break out auxiliary classes that will prevent multi-core compilation of the JDK
    - S8001669: javadoc internal DocletAbortException should set cause when appropriate
    - S8008949: javadoc stopped copying doc-files
    - S8011402: Move blacklisting certificate logic from hard code to data
    - S8011547: Update XML Signature implementation to Apache Santuario 1.5.4
    - S8012288: XML DSig API allows wrong tag names and extra elements in SignedInfo
    - S8016217: More javadoc warnings
    - S8017325: Cleanup of the javadoc <code> tag in java.security.cert
    - S8017326: Cleanup of the javadoc <code> tag in java.security.spec
    - S8019772: Fix doclint issues in javax.crypto and javax.security subpackages
    - S8020557: javadoc cleanup in javax.security
    - S8020688: Broken links in documentation at http://docs.oracle.com/javase/6/docs/api/index.
    - S8021108: Clean up doclint warnings and errors in java.text package
    - S8021417: Fix doclint issues in java.util.concurrent
    - S8021833: javadoc cleanup in java.net
    - S8022120: JCK test api/javax_xml/crypto/dsig/TransformService/index_ParamMethods fails
    - S8022175: Fix doclint warnings in javax.print
    - S8022406: Fix doclint issues in java.beans
    - S8022746: List of spelling errors in API doc
    - S8024779: [macosx] SwingNode crashes on exit
    - S8025085: [javadoc] some errors in javax/swing
    - S8025218: [javadoc] some errors in java/awt classes
    - S8025249: [javadoc] fix some javadoc errors in javax/swing/
    - S8025409: Fix javadoc comments errors and warning reported by doclint report
    - S8026021: more fix of javadoc errors and warnings reported by doclint, see the description
    - S8037099: [macosx] Remove all references to GC from native OBJ-C code
    - S8038184: XMLSignature throws StringIndexOutOfBoundsException if ID attribute value is empty String
    - S8038349: Signing XML with DSA throws Exception when key is larger than 1024 bits
    - S8049244: XML Signature performance issue caused by unbuffered signature data
    - S8049432: New tests for TLS property jdk.tls.client.protocols
    - S8050893: (smartcardio) Invert reset argument in tests in sun/security/smartcardio
    - S8059212: Modify regression tests so that they do not just fail if no cardreader found
    - S8068279: (typo in the spec) javax.script.ScriptEngineFactory.getLanguageName
    - S8068491: Update the protocol for references of docs.oracle.com to HTTPS.
    - S8069038: javax/net/ssl/TLS/TLSClientPropertyTest.java needs to be updated for JDK-8061210
    - S8076369: Introduce the jdk.tls.client.protocols system property for JDK 7u
    - S8139565: Restrict certificates with DSA keys less than 1024 bits
    - S8140422: Add mechanism to allow non default root CAs to be not subject to algorithm restrictions
    - S8140587: Atomic*FieldUpdaters should use Class.isInstance instead of direct class check
    - S8143959: Certificates requiring blacklisting
    - S8145984: [macosx] sun.lwawt.macosx.CAccessible leaks
    - S8148516: Improve the default strength of EC in JDK
    - S8149029: Secure validation of XML based digital signature always enabled when checking wrapping attacks
    - S8151893: Add security property to configure XML Signature secure validation mode
    - S8155760: Implement Serialization Filtering
    - S8156802: Better constraint checking
    - S8161228: URL objects with custom protocol handlers have port changed after deserializing
    - S8161571: Verifying ECDSA signatures permits trailing bytes
    - S8163304: jarsigner -verbose -verify should print the algorithms used to sign the jar
    - S8164908: ReflectionFactory support for IIOP and custom serialization
    - S8165230: RMIConnection addNotificationListeners failing with specific inputs
    - S8166393: disabledAlgorithms property should not be strictly parsed
    - S8166591: [macos 10.12] Trackpad scrolling of text on OS X 10.12 Sierra is very fast (Trackpad, Retina only)
    - S8166739: Improve extensibility of ObjectInputFilter information passed to the filter
    - S8166875: (tz) Support tzdata2016g
    - S8166878: Connection reset during TLS handshake
    - S8167356: Follow up fix for jdk8 backport of 8164143. Changes for CMenuComponent.m were missed
    - S8167459: Add debug output for indicating if a chosen ciphersuite was legacy
    - S8167472: Chrome interop regression with JDK-8148516
    - S8167591: Add MD5 to signed JAR restrictions
    - S8168861: AnchorCertificates uses hardcoded password for cacerts keystore
    - S8168993: JDK8u121 L10n resource file update
    - S8169191: (tz) Support tzdata2016i
    - S8169688: Backout (remove) MD5 from jdk.jar.disabledAlgorithms for January CPU
    - S8169911: Enhanced tests for jarsigner -verbose -verify after JDK-8163304
    - S8170131: Certificates not being blocked by jdk.tls.disabledAlgorithms property
    - S8170268: 8u121 L10n resource file update - msgdrop 20
    - S8173622: Backport of 7180907 is incomplete
    - S8173849: Fix use of java.util.Base64 in test cases
    - S8173854: [TEST] Update DHEKeySizing test case following 8076328 & 8081760
    - CVE-2017-3259 Vulnerability allows unauthenticated attacker with network access via multiple protocols to
      compromise Java SE.
  * Backports
    - S7102489, PR3316, RH1390708: RFE: cleanup jlong typedef on __APPLE__and _LLP64 systems.
    - S8000351, PR3316, RH1390708: Tenuring threshold should be unsigned
    - S8153711, PR3315, RH1284948: [REDO] GlobalRefs never deleted when processing invokeMethod command
    - S8170888, PR3316, RH1390708: [linux] support for cgroup memory limits in container (ie Docker) environments
  * Bug fixes
    - PR3318: Replace 'infinality' with 'improved font rendering' (--enable-improved-font-rendering)
    - PR3318: Fix compatibility with vanilla Fontconfig
    - PR3318: Fix glyph y advance
    - PR3318: Always round glyph advance in 26.6 space
    - PR3318: Simplify glyph advance handling
    - PR3324: Fix NSS_LIBDIR substitution in make_generic_profile.sh broken by PR1989
  * AArch64 port
    - S8165673, PR3320: AArch64: Fix JNI floating point argument handling


-----------------------------------------
Patch: SUSE-2017-258
Released: Sat Feb 18 12:01:17 2017
Summary: Recommended update for smt
Severity: moderate
References: 1018797,1021405,969339
Description:

This update for smt fixes the following issues:

- Fix support for creating custom repositories. (bsc#1021405)
- Convert PatchRefs table to UTF8. (bsc#1018797)
- Create /usr/sbin/rcsmt symbolic link for convenience. (bsc#969339)


-----------------------------------------
Patch: SUSE-2017-261
Released: Mon Feb 20 11:00:28 2017
Summary: Recommended update for dirmngr
Severity: low
References: 1019276
Description:

This update for dirmngr fixes the following issues:

- Properly initialize the dirmngr tmpfilesd files right away and not
  just during reboot
- Own the /usr/lib/tmpfiles.d/ folder as it is needed in older systemds
  wrt (bsc#1019276)
- Proprely require logrotate as we need it for the dirmngr configs


-----------------------------------------
Patch: SUSE-2017-273
Released: Tue Feb 21 11:02:24 2017
Summary: Security update for ImageMagick
Severity: moderate
References: 1017308,1017310,1017311,1017312,1017313,1017314,1017318,1017319,1017320,1017321,1017322,1017324,1017325,1017326,1017421,1020433,1020435,1020436,1020439,1020441,1020443,1020446,1020448,CVE-2016-10046,CVE-2016-10048,CVE-2016-10049,CVE-2016-10050,CVE-2016-10051,CVE-2016-10052,CVE-2016-10059,CVE-2016-10060,CVE-2016-10061,CVE-2016-10062,CVE-2016-10063,CVE-2016-10064,CVE-2016-10065,CVE-2016-10068,CVE-2016-10069,CVE-2016-10070,CVE-2016-10071,CVE-2016-10144,CVE-2016-10145,CVE-2016-10146,CVE-2017-5506,CVE-2017-5507,CVE-2017-5508,CVE-2017-5510,CVE-2017-5511
Description:


This update for ImageMagick fixes the following issues:

- CVE-2016-10046: Prevent buffer overflow in draw.c caused by an incorrect length calculation (bsc#1017308)
- CVE-2016-10048: Arbitrary module could have been load because relative path were not escaped (bsc#1017310)
- CVE-2016-10049: Corrupt RLE files could have overflowed a buffer due to a incorrect length calculation (bsc#1017311)
- CVE-2016-10050: Corrupt RLE files could have overflowed a heap buffer due to a missing offset check (bsc#1017312)
- CVE-2016-10051: Fixed use after free when reading PWP files (bsc#1017313)
- CVE-2016-10052: Added bound check to exif parsing of JPEG files (bsc#1017314)
- CVE-2016-10059: Unchecked calculation when reading TIFF files could have lead to a buffer overflow (bsc#1017318)
- CVE-2016-10060: Improved error handling when writing files to not mask errors (bsc#1017319)
- CVE-2016-10061: Improved error handling when writing files to not mask errors (bsc#1017319).
- CVE-2016-10062: Improved error handling when writing files to not mask errors (bsc#1017319).
- CVE-2016-10063: Check validity of extend during TIFF file reading (bsc#1017320)
- CVE-2016-10064: Improved checks for buffer overflow when reading TIFF files (bsc#1017321)
- CVE-2016-10065: Unchecked calculations when reading VIFF files could have lead to out of bound reads (bsc#1017322)
- CVE-2016-10068: Prevent NULL pointer access when using the MSL interpreter (bsc#1017324)
- CVE-2016-10069: Add check for invalid mat file (bsc#1017325).
- CVE-2016-10070: Prevent allocating the wrong amount of memory when reading mat files (bsc#1017326)
- CVE-2016-10071: Prevent allocating the wrong amount of memory when reading mat files (bsc#1017326)
- CVE-2016-10144: Added a check after allocating memory when parsing IPL files (bsc#1020433)
- CVE-2016-10145: Fixed of-by-one in string copy operation when parsing WPG files (bsc#1020435)
- CVE-2016-10146: Captions and labels were handled incorrectly, causing a memory leak that could have lead to DoS (bsc#1020443)
- CVE-2017-5506: Missing offset check leading to a double-free (bsc#1020436)
- CVE-2017-5507: Fixed a memory leak when reading MPC files allowing for DoS (bsc#1020439)
- CVE-2017-5508: Increase the amount of memory allocated for TIFF pixels to prevent a heap buffer-overflow (bsc#1020441)
- CVE-2017-5510: Prevent out-of-bounds write when reading PSD files (bsc#1020446).
- CVE-2017-5511: A missing cast when reading PSD files could have caused memory corruption by a heap overflow (bsc#1020448)

This update removes the fix for CVE-2016-9773. ImageMagick-6 was not affected by CVE-2016-9773 and it caused a regression (at least in GraphicsMagick) (bsc#1017421).


-----------------------------------------
Patch: SUSE-2017-314
Released: Thu Mar  2 16:01:41 2017
Summary: Recommended update for gnome-online-accounts
Severity: low
References: 1016000
Description:

This update provides gnome-online-accounts version 3.20.5 which fixes the following issues:

- New API key for Google (bsc#1016000)
- Updated translations



-----------------------------------------
Patch: SUSE-2017-315
Released: Fri Mar  3 17:24:18 2017
Summary: Recommended update for apache2-mod_python
Severity: low
References: 1021750
Description:

This update for apache2-mod_python provides the following fixes:

- Do not import site.py for the main interpreter and fix Apache startup and reload failure.
  (bsc#1021750)


-----------------------------------------
Patch: SUSE-2017-326
Released: Mon Mar  6 13:07:40 2017
Summary: Security update for libquicktime
Severity: moderate
References: 1022805,CVE-2016-2399
Description:

This update for libquicktime fixes the following issues:

- A crafted MP4 file could have caused libquicktime to crash or lead to
  undefined behaviour (bsc#1022805, CVE-2016-2399)


-----------------------------------------
Patch: SUSE-2017-332
Released: Tue Mar  7 13:04:31 2017
Summary: Recommended update for boost
Severity: low
References: 1017048,1019896
Description:

This update for boost provides the following fixes:

- Enable build of 32bit version of libboost_locale1_54_0. (bsc#1017048)
- Ship ppc64le and s390x versions of libboost_random1_54_0. (bsc#1019896)


-----------------------------------------
Patch: SUSE-2017-354
Released: Thu Mar  9 11:31:22 2017
Summary: Recommended update for timezone
Severity: low
References: 1024676,1024677
Description:

This update provides the latest timezone information (2017a) for your system, including the
following changes:

- Mongolia no longer observes DST. (bsc#1024676)
- Chile's Region of Magallanes moves from -04/-03 to -03 year-round starting 2017-05-13 23:00.
  Split from America/Santiago creating a new zone America/Punta_Arenas.
  Also affects Antarctica/Palmer. (bsc#1024677)
- Fixes to historical time stamps: Spain, Ecuador, Atyrau, Oral.
- Switch to numeric, or commonly used time zone abbreviations.
- zic(8) no longer mishandles some transitions in January 2038.
- date and strftime now cause %z to generate '-0000' instead of '+0000' when the UT offset is
  zero and the time zone abbreviation begins with '-'.


-----------------------------------------
Patch: SUSE-2017-356
Released: Thu Mar  9 12:34:15 2017
Summary: Recommended update for gtk3
Severity: moderate
References: 1021476
Description:

The GTK3 library was updated to version 3.20.10, which brings many stability fixes.


-----------------------------------------
Patch: SUSE-2017-357
Released: Thu Mar  9 15:12:40 2017
Summary: Recommended update for jasper
Severity: low
References: 1028070
Description:

This update for jasper provides the following fixes:

- Add -D_BSD_SOURCE to fix redefinition of system types in jas_config.h, which
  could lead to build failures on ppc64le, s390 and s390x. (bsc#1028070)


-----------------------------------------
Patch: SUSE-2017-365
Released: Fri Mar 10 15:16:59 2017
Summary: Recommended update for sg3_utils
Severity: low
References: 1006175
Description:

This update for sg3_utils fixes the following issue:

- Add udev rules to handle legacy CCISS devices (bsc#1006175)


-----------------------------------------
Patch: SUSE-2017-379
Released: Wed Mar 15 12:45:06 2017
Summary: Recommended update for plymouth
Severity: low
References: 955227
Description:

This update for plymouth fixes the following issues:

- Write all escape sequences to the devices of the system console but do filter it for the boot log file (bsc#955227)
- Avoid allocating/freeing memory for each line of input



-----------------------------------------
Patch: SUSE-2017-387
Released: Thu Mar 16 11:34:27 2017
Summary: Optional update for libepoxy
Severity: low
References: 1029310
Description:

This update provides a rebuild of libepoxy to synchronize SLE and PackageHub release numbers.


-----------------------------------------
Patch: SUSE-2017-388
Released: Thu Mar 16 14:11:43 2017
Summary: Recommended update for NetworkManager-gnome
Severity: low
References: 1003069,1009019
Description:

This update for NetworkManager-gnome fixes the following issues:

- NetworkManager stored passwords prevent wifi functionality (bsc#1003069)
- Add support for plain MSCHAPV2 as inner authentication method when using TTLS as outer
  authentication method (bsc#1009019)



-----------------------------------------
Patch: SUSE-2017-392
Released: Fri Mar 17 08:37:34 2017
Summary: Security update for MozillaFirefox
Severity: important
References: 1028391,CVE-2017-5398,CVE-2017-5400,CVE-2017-5401,CVE-2017-5402,CVE-2017-5404,CVE-2017-5405,CVE-2017-5407,CVE-2017-5408,CVE-2017-5409,CVE-2017-5410
Description:

This update for MozillaFirefox to ESR 45.8 fixes the following issues:

Security issues fixed (bsc#1028391):
- CVE-2017-5402: Use-after-free working with events in FontFace objects
- CVE-2017-5410: Memory corruption during JavaScript garbage collection incremental sweeping
- CVE-2017-5400: asm.js JIT-spray bypass of ASLR and DEP
- CVE-2017-5401: Memory Corruption when handling ErrorResult
- CVE-2017-5407: Pixel and history stealing via floating-point timing side channel with SVG filters
- CVE-2017-5404: Use-after-free working with ranges in selections
- CVE-2017-5405: FTP response codes can cause use of uninitialized values for ports
- CVE-2017-5408: Cross-origin reading of video captions in violation of CORS
- CVE-2017-5409: File deletion via callback parameter in Mozilla Windows Updater and Maintenance Service
- CVE-2017-5398: Memory safety bugs fixed in Firefox 52 and Firefox ESR 45.8


-----------------------------------------
Patch: SUSE-2017-397
Released: Fri Mar 17 08:42:10 2017
Summary: Security update for sane-backends
Severity: moderate
References: 1027197,CVE-2017-6318
Description:

This update for sane-backends fixes the following issues:

- saned could have leaked uninitialized memory back to its requesters for some
  opcodes, allowing for information disclosure of saned memory
  (CVE-2017-6318, bsc#1027197).


-----------------------------------------
Patch: SUSE-2017-403
Released: Fri Mar 17 14:08:10 2017
Summary: Recommended update for mlocate
Severity: low
References: 1019440,902588,941296,994663
Description:

This update for mlocate provides the following fixes:

- Update the umask also in su section where it could be nulled. (bsc#1019440)
- Adjust updatedb.conf to no longer skip indexing of bind mounts. (bsc#994663)
- Exit with error code 1 when updatedb is not executable.
- Add more file systems to exclude in updatedb.conf.
- Specify umask to allow user to redefine the value in login.defs. (bsc#941296)
- Remove references to the 'locate' group that was obsoleted. (bsc#902588)


-----------------------------------------
Patch: SUSE-2017-411
Released: Fri Mar 17 16:44:41 2017
Summary: Recommended update for sblim-sfcb
Severity: moderate
References: 1018324,1023820
Description:

This update for sblim-sfcb provides the following fixes:

- Revert mistaken change that disabled basic authentication on default install. (bsc#1023820)
- Reference correct service name for service restarts on upgrades. (bsc#1018324)


-----------------------------------------
Patch: SUSE-2017-441
Released: Tue Mar 21 12:39:21 2017
Summary: Recommended update for git
Severity: low
References: 1011169,905707,939065,942297,951153,961112,961292,977477
Description:

The Git distributed revision control system was updated to version 2.12.0, which
brings several fixes and enhancements:

- Use of an empty string that is used for 'everything matches' is still warned and Git
  asks users to use a more explicit '.' for that instead. In the future this warning
  will be turned into a hard error.
- The historical argument order 'git merge 'msg' HEAD 'commit'...' has been deprecated
  for quite some time, and will be removed in a future release.
- An ancient script 'git relink' has been removed.
- The character width table has been updated to match Unicode 9.0.
- Commands in the 'git diff' and 'git log' family by default enable rename detection;
  use 'diff.renames' configuration variable to disable this.
- Merging two branches that have no common ancestor with 'git merge' is by default
  forbidden now to prevent creating such an unusual merge by mistake.
- Output formats of 'git log' that indents the commit log message by 4 spaces now
  expands HT in the log message by default. The '--no-expand-tabs' option disables this.
- 'git send-email' now uses a more readable timestamps when formulating a message ID.
- The rsync:// transport has been removed.
- 'git fetch' and friends that make network connections can now be told to only use
  ipv4 (or ipv6).
  * Add support for talking http/https over socks proxy.
- Fix crash of gitk with --all option in non-English locales. (bsc#951153)
- Fix deadlock in signal handler in pager. (bsc#942297)
- Introduce new 'git-worktree' feature. (bsc#977477, fate#322294)
- Introduce SSLCipherList configuration variable to tweak the list of cipher suite
  to be used with libcURL when talking with https:// sites.
- Put git-credential-cache--daemon into git-core, it is needed for git-credential-cache.
  (bsc#939065)
- 'git push' has been taught an '--atomic' option that makes a push that updates more
  than one ref an 'all-or-none' affair.
- Output from 'git log --decorate' now distinguishes between a detached HEAD vs. a HEAD
  that points at a branch.
- A new 'push.followTags' configuration turns the '--follow-tags' option on by default
  for the 'git push' command.
- Allow snapshot generation in Apparmor profile. (bsc#905707)
- Default pager configuration no longer wraps long lines.
- 'git push' now uses 'simple' semantics by default instead of old 'matching', use variable
  'push.default' to revert.
- 'git add -u' and 'git add -A' operate on entire tree, use 'git add -u .' or 'git add -A .'
  for current directory only.
- 'git add 'path'' is the same as 'git add -A 'path'' now, use 'git add --ignore-removal
  'path'' for previous behavior.
- '-q' option of 'git diff-files' has been removed. To ignore deletion, use 'git diff-files
  --diff-filter=d'.
- Default prefix for 'git svn' remote-tracking branches changed from refs/remotes to
  refs/remotes/origin/ unless with '--prefix'.

For a comprehensive list of changes please refer to the package's change log.


-----------------------------------------
Patch: SUSE-2017-445
Released: Tue Mar 21 18:27:18 2017
Summary: Recommended update for man
Severity: low
References: 1025597,786679,986211
Description:

This update for man provides the following fixes:

- Stop using the wrapper that squashed root privileges down to uid man. (bsc#986211, bsc#1025597)
- Add description of MAN_POSIXLY_CORRECT in man.man1. (bsc#786679)


-----------------------------------------
Patch: SUSE-2017-446
Released: Wed Mar 22 13:26:13 2017
Summary: Recommended update for python3
Severity: low
References: 1027282,1029377
Description:

This update provides Python 3.4.6, which brings the following fixes:

- Fix potential crash in PyUnicode_AsDecodedObject() in debug build.
- Fix possible DoS and arbitrary execution in gettext plurals.
- Fix possible use of uninitialized memory in operator.methodcaller.
- Fix possible Py_DECREF on unowned object in _sre.
- Fix possible integer overflow in _csv module.
- Fix selectors incorrectly retaining invalid file descriptors.
- Move _elementtree to python3.rpm to match its pyexpat dependency. (bsc#1029377)

For a comprehensive list of changes, please refer to the upstream Release Notes
available at https://hg.python.org/cpython/raw-file/v3.4.6/Misc/NEWS


-----------------------------------------
Patch: SUSE-2017-448
Released: Wed Mar 22 13:31:03 2017
Summary: Recommended update for python
Severity: moderate
References: 1027282,964182
Description:

This update provides Python 2.7.13, which brings several bug fixes.

- Fix build with NCurses 6.0 and OPAQUE_WINDOW set to 1.
- Update cipher lists for OpenSSL wrapper and support OpenSSL 1.1.0 and newer.
- Incorporate more integer overflow checks from upstream. (bsc#964182)
- Provide python2-* symbols to support new packages built as python2-.

For a comprehensive list of changes, please refer to the upstream Release Notes
available at https://hg.python.org/cpython/raw-file/v2.7.13/Misc/NEWS


-----------------------------------------
Patch: SUSE-2017-450
Released: Wed Mar 22 15:54:10 2017
Summary: Security update for apache2
Severity: moderate
References: 1016712,1016714,1016715,1019380,CVE-2016-0736,CVE-2016-2161,CVE-2016-8743
Description:

This update for apache2 fixes the following security issues:

Security issues fixed:
- CVE-2016-0736: Protect mod_session_crypto data with a MAC to prevent padding oracle attacks (bsc#1016712).
- CVE-2016-2161: Malicious input to mod_auth_digest could have caused the server to crash, resulting in DoS (bsc#1016714).
- CVE-2016-8743: Added new directive 'HttpProtocolOptions Strict' to avoid proxy chain misinterpretation (bsc#1016715).

Bugfixes:
- Add missing copy of hcuri and hcexpr from the worker to the health check worker (bsc#1019380).


-----------------------------------------
Patch: SUSE-2017-451
Released: Wed Mar 22 15:55:40 2017
Summary: Security update for wget
Severity: moderate
References: 1028301,CVE-2017-6508
Description:

This update for wget fixes the following issues:

Security issue fixed:
- CVE-2017-6508: (url_parse): Reject control characters in host part of URL (bsc#1028301).


-----------------------------------------
Patch: SUSE-2017-452
Released: Wed Mar 22 15:57:10 2017
Summary: Security update for virglrenderer
Severity: moderate
References: 1021616,1021627,1024232,1024244,1024992,1024993,1025505,1025507,1026723,1026725,1026922,1027108,1027376,CVE-2016-10163,CVE-2016-10214,CVE-2017-5580,CVE-2017-5937,CVE-2017-5956,CVE-2017-5957,CVE-2017-5993,CVE-2017-5994,CVE-2017-6209,CVE-2017-6210,CVE-2017-6317,CVE-2017-6355,CVE-2017-6386
Description:

This update for virglrenderer fixes the following issues:

Security issues fixed:
- CVE-2017-6386: memory leakage while in vrend_create_vertex_elements_state (bsc#1027376)
- CVE-2017-6355: integer overflow while creating shader object (bsc#1027108)
- CVE-2017-6317: fix memory leak in add shader program (bsc#1026922)
- CVE-2017-6210: null pointer dereference in vrend_decode_reset (bsc#1026725)
- CVE-2017-6209: stack buffer oveflow in parse_identifier (bsc#1026723)
- CVE-2017-5994: out-of-bounds access in vrend_create_vertex_elements_state (bsc#1025507)
- CVE-2017-5993: host memory leakage when initialising blitter context (bsc#1025505)
- CVE-2017-5957: stack overflow in vrend_decode_set_framebuffer_state (bsc#1024993)
- CVE-2017-5956: OOB access while in vrend_draw_vbo (bsc#1024992)
- CVE-2017-5937: null pointer dereference in vrend_clear (bsc#1024232)
- CVE-2017-5580: OOB access while parsing texture instruction (bsc#1021627)
- CVE-2016-10214: host memory leak issue in virgl_resource_attach_backing (bsc#1024244)
- CVE-2016-10163: host memory leakage when creating decode context (bsc#1021616)


-----------------------------------------
Patch: SUSE-2017-457
Released: Fri Mar 24 12:35:18 2017
Summary: Recommended update for timezone
Severity: low
References: 1030417
Description:

This update provides the latest timezone information (2017b) for your system, including following changes:

- Haiti resumed observance of DST in 2017.
- Liberia changed from -004430 to +00 on 1972-01-07, not 1972-05-01.
- Use 'MMT' to abbreviate Liberia's time zone before 1972.


-----------------------------------------
Patch: SUSE-2017-458
Released: Fri Mar 24 13:49:49 2017
Summary: Recommended update for fdupes
Severity: low
References: 1005386
Description:

This update for fdupes provides the following fixes and enhancements:

- Add new options: --nohidden, --permissions, --order, --reverse, --immediate.
- Speed up file comparison.
- Fix bug where fdupes fails to consistently ignore hardlinks, depending on
  file processing order, when F_CONSIDERHARDLINKS flag is not set.
- Using tty for interactive input instead of regular stdin. This is to allow
  feeding filenames via stdin in future versions of fdupes without breaking
  interactive deletion feature.
- Sort the output of fdupes by filename to make it deterministic for parallel
  builds. (bsc#1005386)


-----------------------------------------
Patch: SUSE-2017-478
Released: Wed Mar 29 13:02:30 2017
Summary: Security update for libpng16
Severity: moderate
References: 1017646,CVE-2016-10087
Description:

This update for libpng16 fixes the following issues:

Security issues fixed:
- CVE-2016-10087: NULL pointer dereference in png_set_text_2() (bsc#1017646)


-----------------------------------------
Patch: SUSE-2017-482
Released: Wed Mar 29 15:40:19 2017
Summary: Security update for libpng12
Severity: moderate
References: 1017646,958791,CVE-2015-8540,CVE-2016-10087
Description:

This update for libpng12 fixes the following issues:

Security issues fixed:
- CVE-2015-8540: read underflow in libpng (bsc#958791)
- CVE-2016-10087: NULL pointer dereference in png_set_text_2() (bsc#1017646)


-----------------------------------------
Patch: SUSE-2017-540
Released: Wed Apr  5 12:16:37 2017
Summary: Recommended update for nfs-utils
Severity: moderate
References: 1005609,1019211,945937,990356
Description:

This update for nfs-utils fixes the following issues:

- Make mount.nfs return failure if statd is being slow to start due to DNS issues. (bsc#945937)
- Include various upstream systemd unit file updates to ensure correct starting dependencies
  of nfsd and rpcbind. (bsc#990356)
- Fix typos relating to version setting in nfs-utils_env.sh. (bsc#990356)
- Only require a filesystem to be mounted if it isn't marked 'noauto' in /etc/fstab.
  (bsc#1019211)
- Move rpc.svcgssd and corresponding man page from nfs-client package to nfs-kernel-server.
  For NFSv4.0 this is needed on client as well as the server to support the back-channel.
  (bsc#1005609)


-----------------------------------------
Patch: SUSE-2017-541
Released: Wed Apr  5 12:24:38 2017
Summary: Recommended update for crda, wireless-regdb
Severity: low
References: 1030085
Description:

This update brings the latest version (2017.03.07) of regulatory domain data for
wireless communication devices.


-----------------------------------------
Patch: SUSE-2017-542
Released: Wed Apr  5 14:26:21 2017
Summary: Security update for audiofile
Severity: low
References: 1026978,1026979,1026980,1026981,1026982,1026983,1026984,1026985,1026986,1026987,1026988,949399,CVE-2015-7747,CVE-2017-6827,CVE-2017-6828,CVE-2017-6829,CVE-2017-6830,CVE-2017-6831,CVE-2017-6832,CVE-2017-6833,CVE-2017-6834,CVE-2017-6835,CVE-2017-6836,CVE-2017-6837,CVE-2017-6838,CVE-2017-6839
Description:

This audiofile update fixes the following issue:

Security issues fixed:
- CVE-2015-7747: Fixed buffer overflow issue when changing both number of channels and sample format. (bsc#949399)
- CVE-2017-6827: heap-based buffer overflow in MSADPCM::initializeCoefficients (MSADPCM.cpp) (bsc#1026979)
- CVE-2017-6828: heap-based buffer overflow in readValue (FileHandle.cpp) (bsc#1026980)
- CVE-2017-6829: global buffer overflow in decodeSample (IMA.cpp) (bsc#1026981)
- CVE-2017-6830: heap-based buffer overflow in alaw2linear_buf (G711.cpp) (bsc#1026982)
- CVE-2017-6831: heap-based buffer overflow in IMA::decodeBlockWAVE (IMA.cpp) (bsc#1026983)
- CVE-2017-6832: heap-based buffer overflow in MSADPCM::decodeBlock (MSADPCM.cpp) (bsc#1026984)
- CVE-2017-6833: divide-by-zero in BlockCodec::runPull (BlockCodec.cpp) (bsc#1026985)
- CVE-2017-6834: heap-based buffer overflow in ulaw2linear_buf (G711.cpp) (bsc#1026986)
- CVE-2017-6835: divide-by-zero in BlockCodec::reset1 (BlockCodec.cpp) (bsc#1026988)
- CVE-2017-6836: heap-based buffer overflow in Expand3To4Module::run (SimpleModule.h) (bsc#1026987)
- CVE-2017-6837, CVE-2017-6838, CVE-2017-6839: multiple ubsan crashes (bsc#1026978)


-----------------------------------------
Patch: SUSE-2017-548
Released: Thu Apr  6 11:36:32 2017
Summary: Security update for libpng15
Severity: moderate
References: 1017646,958791,CVE-2015-8540,CVE-2016-10087
Description:

This update for libpng15 fixes the following issues:

Security issues fixed:
- CVE-2015-8540: read underflow in libpng (bsc#958791)
- CVE-2016-10087: NULL pointer dereference in png_set_text_2() (bsc#1017646)


-----------------------------------------
Patch: SUSE-2017-549
Released: Thu Apr  6 11:37:56 2017
Summary: Recommended update for harfbuzz
Severity: low
References: 1030465
Description:

Harfbuzz was updated to version 1.4.5, which brings several fixes and enhancements:

- Fix buffer-overrun in Bengali.
- Route Adlam script to Arabic shaper.
- Implement OpenType Font Variation tables avar/fvar/HVAR/VVAR.
- hb-shape and hb-view now accept --variations.
- Always build and use UCDN for Unicode data by default.
- Add core of support for OpenType 1.8 Font Variations.
- New APIs:
  - hb_font_set_face().
  - hb_font_set_var_coords_normalized().
  - HB_OT_LAYOUT_NO_VARIATIONS_INDEX.
  - hb_ot_layout_table_find_feature_variations().
  - hb_ot_layout_feature_with_variations_get_lookups().
  - hb_shape_plan_create2().
  - hb_shape_plan_create_cached2().
- Deprecate API: hb_graphite2_font_get_gr_font().
- Fix regression in GDEF glyph class processing.
- Add decompositions for Chakma, Limbu, and Balinese in USE shaper.
- Fix vertical glyph origin in hb-ot-font.
- Implement CBDT/CBLC color font glyph extents in hb-ot-font.
- Implement parsing of OpenType MATH table.
- Blacklist bad GDEF of more fonts.


-----------------------------------------
Patch: SUSE-2017-551
Released: Thu Apr  6 14:28:02 2017
Summary: Security update for jasper
Severity: moderate
References: 1015400,1018088,1020353,1021868,1029497,CVE-2016-10251,CVE-2016-9583,CVE-2016-9600,CVE-2017-5498,CVE-2017-6850
Description:

This update for jasper fixes the following issues:

Security issues fixed:
- CVE-2016-9600: Null Pointer Dereference due to missing check for UNKNOWN color space in JP2 encoder (bsc#1018088)
- CVE-2016-10251: Use of uninitialized value in jpc_pi_nextcprl (jpc_t2cod.c) (bsc#1029497)
- CVE-2017-5498: left-shift undefined behaviour (bsc#1020353)
- CVE-2017-6850: NULL pointer dereference in jp2_cdef_destroy (jp2_cod.c) (bsc#1021868)
- CVE-2016-9583: Out of bounds heap read in jpc_pi_nextpcrl() (bsc#1015400)


-----------------------------------------
Patch: SUSE-2017-553
Released: Thu Apr  6 15:07:34 2017
Summary: Recommended update for NetworkManager
Severity: low
References: 1009717,1021665,960153,966232
Description:

This update for NetworkManager provides the following fixes:

- Fix NetworkManager crashes when editing the same Wifi the second time in Gnome's
  Control Center. (bsc#1009717)
- Don't ask for new PSK for locally-generated WLAN_REASON_DISASSOC_DUE_TO_INACTIVITY
  error. (bsc#966232)
- Don't overwrite /etc/resolv.conf. (bsc#960153, bsc#1021665)


-----------------------------------------
Patch: SUSE-2017-554
Released: Fri Apr  7 10:49:49 2017
Summary: Security update for gstreamer-plugins-bad
Severity: low
References: 1024044,1024068,CVE-2017-5843,CVE-2017-5848
Description:

This update for gstreamer-plugins-bad fixes the following issues:

Security issues fixed:
- CVE-2017-5843: set stream tags to NULL after unrefing (bsc#1024044).
- CVE-2017-5848: rewrite PSM parsing to add bounds checking (bsc#1024068).


-----------------------------------------
Patch: SUSE-2017-561
Released: Fri Apr  7 17:25:47 2017
Summary: Security update for gstreamer
Severity: low
References: 1024051,CVE-2017-5838
Description:

This update for gstreamer fixes the following security issues:

- A crafted AVI file could have caused an invalid memory read, possibly
  causing DoS or corruption (bsc#1024051, CVE-2017-5838)


-----------------------------------------
Patch: SUSE-2017-577
Released: Wed Apr 12 14:46:23 2017
Summary: Recommended update for gnome-settings-daemon
Severity: low
References: 1004343,1005495,1009515,979257
Description:

This update for gnome-settings-daemon fixes the following issues:

- Fix 'Shutdown dialog delay 1 to 2 seconds'. (bsc#979257, bgo#774452)
- Fix updates notification not popping up. (bsc#1004343)
- Fix notification after an offline update was done. (bsc#1005495)


-----------------------------------------
Patch: SUSE-2017-580
Released: Wed Apr 12 23:58:47 2017
Summary: Recommended update for cpio
Severity: important
References: 1028410
Description:

This update for cpio fixes the following issues:

- A regression caused cpio to crash for tar and ustar archive types
  [bsc#1028410]


-----------------------------------------
Patch: SUSE-2017-587
Released: Thu Apr 13 11:59:19 2017
Summary: Security update for gstreamer-plugins-good
Severity: low
References: 1024014,1024017,1024030,1024034,1024062,CVE-2016-10198,CVE-2016-10199,CVE-2017-5840,CVE-2017-5841,CVE-2017-5845
Description:

This update for gstreamer-plugins-good fixes the following issues:

- A crafted aac audio file could have caused an invalid read and thus
  corruption or denial of service (bsc#1024014, CVE-2016-10198)
- A crafted mp4 file could have caused an invalid read and thus corruption or
  denial of service (bsc#1024017, CVE-2016-10199)
- A crafted avi file could have caused an invalid read and thus corruption or
  denial of service (bsc#1024034, CVE-2017-5840)
- A crafted AVI file with metadata tag entries (ncdt) could have caused
  invalid read access and thus corruption or denial of service (bsc#1024030,
  CVE-2017-5841)
- A crafted avi file could have caused an invalid read access resulting in
  denial of service (bsc#1024062, CVE-2017-5845)


-----------------------------------------
Patch: SUSE-2017-589
Released: Thu Apr 13 13:12:45 2017
Summary: Recommended update for libtool
Severity: moderate
References: 1010802
Description:

This update for libtool prevents a segmentation fault caused by insufficient error
handling on out-of-memory situations.


-----------------------------------------
Patch: SUSE-2017-605
Released: Tue Apr 18 10:19:09 2017
Summary: Security update for gstreamer-plugins-base
Severity: low
References: 1024041,1024047,1024076,1024079,CVE-2017-5837,CVE-2017-5839,CVE-2017-5842,CVE-2017-5844
Description:

This update for gstreamer-plugins-base fixes the following security issues:

- A crafted AVI file could have caused a floating point exception leading to
  DoS (bsc#1024076, CVE-2017-5837, bsc#1024079, CVE-2017-5844)
- A crafted AVI file could have caused a stack overflow leading to DoS
  (bsc#1024047, CVE-2017-5839)
- A crafted SAMI subtitle file could have caused an invalid memory access
  possibly leading to DoS or corruption (bsc#1024041, CVE-2017-5842)


-----------------------------------------
Patch: SUSE-2017-607
Released: Tue Apr 18 11:20:18 2017
Summary: Security update for libsndfile
Severity: moderate
References: 1033053,1033054,1033914,1033915,CVE-2017-7585,CVE-2017-7586,CVE-2017-7741,CVE-2017-7742
Description:

This update for libsndfile fixes the following security issues:

- CVE-2017-7586: A stack-based buffer overflow via a specially crafted FLAC
  file was fixed (error in the 'header_read()' function) (bsc#1033053)
- CVE-2017-7585,CVE-2017-7741, CVE-2017-7742: Several stack-based buffer overflows via a specially crafted FLAC
  file (error in the 'flac_buffer_copy()' function) were fixed (bsc#1033054,bsc#1033915,bsc#1033914).


-----------------------------------------
Patch: SUSE-2017-610
Released: Tue Apr 18 11:29:22 2017
Summary: Security update for tiff
Severity: important
References: 1031247,1031249,1031250,1031254,1031255,1031262,1031263,CVE-2016-10266,CVE-2016-10267,CVE-2016-10268,CVE-2016-10269,CVE-2016-10270,CVE-2016-10271,CVE-2016-10272
Description:

This update for tiff fixes the following issues:

Security issues fixed:
- CVE-2016-10272: LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based
  buffer overflow) or possibly have unspecified other impact via a crafted TIFF image, related to
  'WRITE of size 2048' and libtiff/tif_next.c:64:9 (bsc#1031247).
- CVE-2016-10271: tools/tiffcrop.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of
  service (heap-based buffer over-read and buffer overflow) or possibly have unspecified other
  impact via a crafted TIFF image, related to 'READ of size 1' and libtiff/tif_fax3.c:413:13
  (bsc#1031249).
- CVE-2016-10270: LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based
  buffer over-read) or possibly have unspecified other impact via a crafted TIFF image, related to
  'READ of size 8' and libtiff/tif_read.c:523:22 (bsc#1031250).
- CVE-2016-10269: LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based
  buffer over-read) or possibly have unspecified other impact via a crafted TIFF image, related to
  'READ of size 512' and libtiff/tif_unix.c:340:2 (bsc#1031254).
- CVE-2016-10268: tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of
  service (integer underflow and heap-based buffer under-read) or possibly have unspecified other
  impact via a crafted TIFF image, related to 'READ of size 78490' and libtiff/tif_unix.c:115:23
  (bsc#1031255).
- CVE-2016-10267: LibTIFF 4.0.7 allows remote attackers to cause a denial of service
  (divide-by-zero error and application crash) via a crafted TIFF image, related to
  libtiff/tif_ojpeg.c:816:8 (bsc#1031262).
- CVE-2016-10266: LibTIFF 4.0.7 allows remote attackers to cause a denial of service
  (divide-by-zero error and application crash) via a crafted TIFF image, related to
  libtiff/tif_read.c:351:22. (bsc#1031263).


-----------------------------------------
Patch: SUSE-2017-611
Released: Tue Apr 18 16:05:49 2017
Summary: Security update for ntp
Severity: moderate
References: 1014172,1030050,CVE-2016-9042,CVE-2017-6451,CVE-2017-6458,CVE-2017-6460,CVE-2017-6462,CVE-2017-6463,CVE-2017-6464
Description:

This ntp update to version 4.2.8p10 fixes serveral issues.

This updated enables leap smearing. See
/usr/share/doc/packages/ntp/README.leapsmear for details.

Security issues fixed (bsc#1030050):

- CVE-2017-6464: Denial of Service via Malformed Config
- CVE-2017-6462: Buffer Overflow in DPTS Clock
- CVE-2017-6463: Authenticated DoS via Malicious Config Option
- CVE-2017-6458: Potential Overflows in ctl_put() functions
- CVE-2017-6451: Improper use of snprintf() in mx4200_send()
- CVE-2017-6460: Buffer Overflow in ntpq when fetching reslist
- CVE-2016-9042: 0rigin (zero origin) DoS.
- ntpq_stripquotes() returns incorrect Value
- ereallocarray()/eallocarray() underused
- Copious amounts of Unused Code
- Off-by-one in Oncore GPS Receiver
- Makefile does not enforce Security Flags

Bugfixes:

- Remove spurious log messages (bsc#1014172).
- clang scan-build findings
- Support for openssl-1.1.0 without compatibility modes
- Bugfix 3072 breaks multicastclient
- forking async worker: interrupted pipe I/O
- (...) time_pps_create: Exec format error
- Incorrect Logic for Peer Event Limiting
- Change the process name of forked DNS worker
- Trap Configuration Fail
- Nothing happens if minsane < maxclock < minclock
- allow -4/-6 on restrict line with mask
- out-of-bound pointers in ctl_putsys and decode_bitflags
- Move ntp-kod to /var/lib/ntp, because /var/db is not a standard directory and causes problems for
  transactional updates.


-----------------------------------------
Patch: SUSE-2017-624
Released: Thu Apr 20 08:35:35 2017
Summary: Security update for ruby2.1
Severity: important
References: 1014863,1018808,887877,909695,926974,936032,959495,986630,CVE-2014-4975,CVE-2015-1855,CVE-2015-3900,CVE-2015-7551,CVE-2016-2339
Description:

This ruby2.1 update to version 2.1.9 fixes the following issues:

Security issues fixed:
- CVE-2016-2339: heap overflow vulnerability in the Fiddle::Function.new'initialize' (bsc#1018808)
- CVE-2015-7551: Unsafe tainted string usage in Fiddle and DL (bsc#959495)
- CVE-2015-3900: hostname validation does not work when fetching gems or making API requests (bsc#936032)
- CVE-2015-1855: Ruby'a OpenSSL extension suffers a vulnerability through overly permissive matching of
  hostnames (bsc#926974)
- CVE-2014-4975: off-by-one stack-based buffer overflow in the encodes() function (bsc#887877)

Bugfixes:
- SUSEconnect doesn't handle domain wildcards in no_proxy environment variable properly (bsc#1014863)
- Segmentation fault after pack & ioctl & unpack (bsc#909695)
- Ruby:HTTP Header injection in 'net/http' (bsc#986630)

ChangeLog:
- http://svn.ruby-lang.org/repos/ruby/tags/v2_1_9/ChangeLog


-----------------------------------------
Patch: SUSE-2017-634
Released: Fri Apr 21 16:05:40 2017
Summary: Security update for minicom
Severity: moderate
References: 1033783,CVE-2017-7467
Description:

This update for minicom fixes the following issue:

This security issue was fixed:

- CVE-2017-7467: Invalid cursor coordinates and scroll regions could lead to code execution (bsc#1033783).


-----------------------------------------
Patch: SUSE-2017-641
Released: Tue Apr 25 08:43:41 2017
Summary: Recommended update for mksh
Severity: moderate
References: 1023419,1029664,1035233
Description:

This update provides mksh R50f, which brings several fixes and enhancements:

- Fix printing of negative integer values with 'print -R'. (bsc#1023419)
- Make unset HISTFILE actually work. (bsc#1029664)
- Do not permit += from environment. (bsc#1029664)
- Handle integer base out of band like ksh93 does.
- Protect standard code (predefined aliases, internal code, aliases and functions in
  dot.mkshrc) from being overridden by aliases and, in some cases, shell functions.
- Implement GNU bash's enable for dot.mkshrc using magic aliases to redirect the
  builtins to external utilities; this differs from GNU bash in that enable takes
  precedence over functions.
- Move unaliasing an identifier when defining a POSIX-style function with the same
  name into lksh, for compatibility.
- Korn shell style functions now have locally scoped shell options.
- Fix read -n-1 to not be identical to read -N-1.
- Several fixes and improvements to lksh(1) and mksh(1) man pages.
- Fix issues with IFS='\' read.
- Fix integer overflows related to file descriptor parsing, reduce memory usage for I/O redirs.
- Fix miscalculating required memory for encoding the double-quoted parts of a here document
  or here string delimiter, leading to a buffer overflow.
- Add options -a argv0 and -c to exec.
- Prevent use-after-free when hitting multiple errors unwinding.
- Fix use of $* and $@ in scalar context: within [[ ... ]] and after case and in here documents.
- Fix set -x in PS4 expansion infinite loop.
- Fix rare infinite loop with invalid UTF-8 in the edit buffer.
- Make the cat(1) builtin also interruptible in the write loop, not just in the read loop.
- We use update-alternatives so there is no need to obsolete ksh.

For a comprehensive list of changes please refer to the package's change log.


-----------------------------------------
Patch: SUSE-2017-643
Released: Tue Apr 25 19:11:45 2017
Summary: Recommended update for ruby2.1
Severity: important
References: 1014863,1035988
Description:

This update for ruby2.1 fixes a regression introduced by a previous update that
was intended to fix insufficient support for domain wildcards in the $no_proxy
environment variable.


-----------------------------------------
Patch: SUSE-2017-644
Released: Wed Apr 26 17:31:22 2017
Summary: Security update for tcpdump, libpcap
Severity: moderate
References: 1020940,1035686,905870,905871,905872,922220,922221,922222,922223,927637,CVE-2014-8767,CVE-2014-8768,CVE-2014-8769,CVE-2015-0261,CVE-2015-2153,CVE-2015-2154,CVE-2015-2155,CVE-2015-3138,CVE-2016-7922,CVE-2016-7923,CVE-2016-7924,CVE-2016-7925,CVE-2016-7926,CVE-2016-7927,CVE-2016-7928,CVE-2016-7929,CVE-2016-7930,CVE-2016-7931,CVE-2016-7932,CVE-2016-7933,CVE-2016-7934,CVE-2016-7935,CVE-2016-7936,CVE-2016-7937,CVE-2016-7938,CVE-2016-7939,CVE-2016-7940,CVE-2016-7973,CVE-2016-7974,CVE-2016-7975,CVE-2016-7983,CVE-2016-7984,CVE-2016-7985,CVE-2016-7986,CVE-2016-7992,CVE-2016-7993,CVE-2016-8574,CVE-2016-8575,CVE-2017-5202,CVE-2017-5203,CVE-2017-5204,CVE-2017-5205,CVE-2017-5341,CVE-2017-5342,CVE-2017-5482,CVE-2017-5483,CVE-2017-5484,CVE-2017-5485,CVE-2017-5486
Description:

This update for tcpdump to version 4.9.0 and libpcap to version 1.8.1 fixes the several issues.

These security issues were fixed in tcpdump:

- CVE-2016-7922: The AH parser in tcpdump had a buffer overflow in print-ah.c:ah_print() (bsc#1020940).
- CVE-2016-7923: The ARP parser in tcpdump had a buffer overflow in print-arp.c:arp_print() (bsc#1020940).
- CVE-2016-7924: The ATM parser in tcpdump had a buffer overflow in print-atm.c:oam_print() (bsc#1020940).
- CVE-2016-7925: The compressed SLIP parser in tcpdump had a buffer overflow in print-sl.c:sl_if_print() (bsc#1020940).
- CVE-2016-7926: The Ethernet parser in tcpdump had a buffer overflow in print-ether.c:ethertype_print() (bsc#1020940).
- CVE-2016-7927: The IEEE 802.11 parser in tcpdump had a buffer overflow in print-802_11.c:ieee802_11_radio_print() (bsc#1020940).
- CVE-2016-7928: The IPComp parser in tcpdump had a buffer overflow in print-ipcomp.c:ipcomp_print() (bsc#1020940).
- CVE-2016-7929: The Juniper PPPoE ATM parser in tcpdump had a buffer overflow in print-juniper.c:juniper_parse_header() (bsc#1020940).
- CVE-2016-7930: The LLC/SNAP parser in tcpdump had a buffer overflow in print-llc.c:llc_print() (bsc#1020940).
- CVE-2016-7931: The MPLS parser in tcpdump had a buffer overflow in print-mpls.c:mpls_print() (bsc#1020940).
- CVE-2016-7932: The PIM parser in tcpdump had a buffer overflow in print-pim.c:pimv2_check_checksum() (bsc#1020940).
- CVE-2016-7933: The PPP parser in tcpdump had a buffer overflow in print-ppp.c:ppp_hdlc_if_print() (bsc#1020940).
- CVE-2016-7934: The RTCP parser in tcpdump had a buffer overflow in print-udp.c:rtcp_print() (bsc#1020940).
- CVE-2016-7935: The RTP parser in tcpdump had a buffer overflow in print-udp.c:rtp_print() (bsc#1020940).
- CVE-2016-7936: The UDP parser in tcpdump had a buffer overflow in print-udp.c:udp_print() (bsc#1020940).
- CVE-2016-7937: The VAT parser in tcpdump had a buffer overflow in print-udp.c:vat_print() (bsc#1020940).
- CVE-2016-7938: The ZeroMQ parser in tcpdump had an integer overflow in print-zeromq.c:zmtp1_print_frame() (bsc#1020940).
- CVE-2016-7939: The GRE parser in tcpdump had a buffer overflow in print-gre.c, multiple functions (bsc#1020940).
- CVE-2016-7940: The STP parser in tcpdump had a buffer overflow in print-stp.c, multiple functions (bsc#1020940).
- CVE-2016-7973: The AppleTalk parser in tcpdump had a buffer overflow in print-atalk.c, multiple functions (bsc#1020940).
- CVE-2016-7974: The IP parser in tcpdump had a buffer overflow in print-ip.c, multiple functions (bsc#1020940).
- CVE-2016-7975: The TCP parser in tcpdump had a buffer overflow in print-tcp.c:tcp_print() (bsc#1020940).
- CVE-2016-7983: The BOOTP parser in tcpdump had a buffer overflow in print-bootp.c:bootp_print() (bsc#1020940).
- CVE-2016-7984: The TFTP parser in tcpdump had a buffer overflow in print-tftp.c:tftp_print() (bsc#1020940).
- CVE-2016-7985: The CALM FAST parser in tcpdump had a buffer overflow in print-calm-fast.c:calm_fast_print() (bsc#1020940).
- CVE-2016-7986: The GeoNetworking parser in tcpdump had a buffer overflow in print-geonet.c, multiple functions (bsc#1020940).
- CVE-2016-7992: The Classical IP over ATM parser in tcpdump had a buffer overflow in print-cip.c:cip_if_print() (bsc#1020940).
- CVE-2016-7993: A bug in util-print.c:relts_print() in tcpdump could cause a buffer overflow in multiple protocol parsers (DNS, DVMRP, HSRP, IGMP, lightweight resolver protocol, PIM) (bsc#1020940).
- CVE-2016-8574: The FRF.15 parser in tcpdump had a buffer overflow in print-fr.c:frf15_print() (bsc#1020940).
- CVE-2016-8575: The Q.933 parser in tcpdump had a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2017-5482 (bsc#1020940).
- CVE-2017-5202: The ISO CLNS parser in tcpdump had a buffer overflow in print-isoclns.c:clnp_print() (bsc#1020940).
- CVE-2017-5203: The BOOTP parser in tcpdump had a buffer overflow in print-bootp.c:bootp_print() (bsc#1020940).
- CVE-2017-5204: The IPv6 parser in tcpdump had a buffer overflow in print-ip6.c:ip6_print() (bsc#1020940).
- CVE-2017-5205: The ISAKMP parser in tcpdump had a buffer overflow in print-isakmp.c:ikev2_e_print() (bsc#1020940).
- CVE-2017-5341: The OTV parser in tcpdump had a buffer overflow in print-otv.c:otv_print() (bsc#1020940).
- CVE-2017-5342: In tcpdump a bug in multiple protocol parsers (Geneve, GRE, NSH, OTV, VXLAN and VXLAN GPE) could cause a buffer overflow in print-ether.c:ether_print() (bsc#1020940).
- CVE-2017-5482: The Q.933 parser in tcpdump had a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2016-8575 (bsc#1020940).
- CVE-2017-5483: The SNMP parser in tcpdump had a buffer overflow in print-snmp.c:asn1_parse() (bsc#1020940).
- CVE-2017-5484: The ATM parser in tcpdump had a buffer overflow in print-atm.c:sig_print() (bsc#1020940).
- CVE-2017-5485: The ISO CLNS parser in tcpdump had a buffer overflow in addrtoname.c:lookup_nsap() (bsc#1020940).
- CVE-2017-5486: The ISO CLNS parser in tcpdump had a buffer overflow in print-isoclns.c:clnp_print() (bsc#1020940).
- CVE-2015-3138: Fixed potential denial of service in print-wb.c (bsc#927637).
- CVE-2015-0261: Integer signedness error in the mobility_opt_print function in the IPv6 mobility printer in tcpdump allowed remote attackers to cause a denial of service (out-of-bounds read and crash) or possibly execute arbitrary code via a negative length value (bsc#922220).
- CVE-2015-2153: The rpki_rtr_pdu_print function in print-rpki-rtr.c in the TCP printer in tcpdump allowed remote attackers to cause a denial of service (out-of-bounds read or write and crash) via a crafted header length in an RPKI-RTR Protocol Data Unit (PDU) (bsc#922221).
- CVE-2015-2154: The osi_print_cksum function in print-isoclns.c in the ethernet printer in tcpdump allowed remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted (1) length, (2) offset, or (3) base pointer checksum value (bsc#922222).
- CVE-2015-2155: The force printer in tcpdump allowed remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors (bsc#922223).
- CVE-2014-8767: Integer underflow in the olsr_print function in tcpdump 3.9.6 when in verbose mode, allowed remote attackers to cause a denial of service (crash) via a crafted length value in an OLSR frame (bsc#905870).
- CVE-2014-8768: Multiple Integer underflows in the geonet_print function in tcpdump when run in verbose mode, allowed remote attackers to cause a denial of service (segmentation fault and crash) via a crafted length value in a Geonet frame (bsc#905871).
- CVE-2014-8769: tcpdump might have allowed remote attackers to obtain sensitive information from memory or cause a denial of service (packet loss or segmentation fault) via a crafted Ad hoc On-Demand Distance Vector (AODV) packet, which triggers an out-of-bounds memory access (bsc#905872).

These non-security issues were fixed in tcpdump:

- PPKI to Router Protocol: Fix Segmentation Faults and other problems
- RPKI to Router Protocol: print strings with fn_printn()
- Added a short option '#', same as long option '--number'
- nflog, mobile, forces, pptp, AODV, AHCP, IPv6, OSPFv4, RPL, DHCPv6 enhancements/fixes
- M3UA decode added.
- Added bittok2str().
- A number of unaligned access faults fixed
- The -A flag does not consider CR to be printable anymore
- fx.lebail took over coverity baby sitting
- Default snapshot size increased to 256K for accomodate USB captures

These non-security issues were fixed in libpcap:

- Provide a -devel-static subpackage that contains the static
  libraries and all the extra dependencies which are not needed
  for dynamic linking.
- Fix handling of packet count in the TPACKET_V3 inner loop
- Filter out duplicate looped back CAN frames.
- Fix the handling of loopback filters for IPv6 packets.
- Add a link-layer header type for RDS (IEC 62106) groups.
- Handle all CAN captures with pcap-linux.c, in cooked mode.
- Removes the need for the 'host-endian' link-layer header type.
- Have separate DLTs for big-endian and host-endian SocketCAN headers.
- Properly check for sock_recv() errors.
- Re-impose some of Winsock's limitations on sock_recv().
- Replace sprintf() with pcap_snprintf().
- Fix signature of pcap_stats_ex_remote().
- Have rpcap_remoteact_getsock() return a SOCKET and supply an 'is active' flag.
- Clean up {DAG, Septel, Myricom SNF}-only builds.
- pcap_create_interface() needs the interface name on Linux.
- Clean up hardware time stamp support: the 'any' device does not support any time stamp types.
- Recognize 802.1ad nested VLAN tag in vlan filter.
- Support for filtering Geneve encapsulated packets.
- Fix handling of zones for BPF on Solaris
- Added bpf_filter1() with extensions
- EBUSY can now be returned by SNFv3 code.
- Don't crash on filters testing a non-existent link-layer type field.
- Fix sending in non-blocking mode on Linux with memory-mapped capture.
- Fix timestamps when reading pcap-ng files on big-endian machines.
- Fixes for byte order issues with NFLOG captures
- Handle using cooked mode for DLT_NETLINK in activate_new().


-----------------------------------------
Patch: SUSE-2017-656
Released: Fri Apr 28 16:12:30 2017
Summary: Recommended update for sqlite3
Severity: low
References: 1019518,1025034
Description:

This update for sqlite3 provides the following fixes:

- Avoid calling sqlite3OsFetch() on a file-handle for which the xFetch method is NULL.
  This prevents a potential segmentation fault. (bsc#1025034)
- Fix defect in the in-memory journal logic that could leave the read cursor for the
  in-memory journal in an inconsistent state and result in a segmentation fault.
  (bsc#1019518)


-----------------------------------------
Patch: SUSE-2017-659
Released: Fri Apr 28 20:54:58 2017
Summary: Security update for ghostscript
Severity: important
References: 1018128,1030263,1032114,1032120,1036453,CVE-2016-10220,CVE-2016-9601,CVE-2017-5951,CVE-2017-7207,CVE-2017-8291
Description:

This update for ghostscript fixes the following security vulnerabilities:

CVE-2017-8291: A remote command execution and a -dSAFER bypass via a crafted .eps document were
exploited in the wild. (bsc#1036453)

CVE-2016-9601: An integer overflow in the bundled jbig2dec library could have been misused to cause
a Denial-of-Service. (bsc#1018128)

CVE-2016-10220: A NULL pointer dereference in the PDF Transparency module allowed remote attackers
to cause a Denial-of-Service. (bsc#1032120)

CVE-2017-5951: A NULL pointer dereference allowed remote attackers to cause a denial of service
via a crafted PostScript document. (bsc#1032114)

CVE-2017-7207: A NULL pointer dereference allowed remote attackers to cause a denial of service
via a crafted PostScript document. (bsc#1030263)


-----------------------------------------
Patch: SUSE-2017-668
Released: Tue May  2 16:45:00 2017
Summary: Security update for graphite2
Severity: important
References: 1035204,CVE-2017-5436
Description:

This update for graphite2 fixes one issue.

This security issues was fixed:

- CVE-2017-5436: An out-of-bounds write triggered with a maliciously crafted Graphite font could lead to a crash or potentially code execution (bsc#1035204).


-----------------------------------------
Patch: SUSE-2017-701
Released: Fri May  5 20:21:01 2017
Summary: Recommended update for smt
Severity: low
References: 1025898
Description:

This update for smt provides the following fixes:

- Share the product data with the sibling server. (bsc#1025898)


-----------------------------------------
Patch: SUSE-2017-708
Released: Mon May  8 13:36:51 2017
Summary: Recommended update for gtk3
Severity: low
References: 1007453
Description:

This update for gtk3 provides the following fixes:

- Add dependency on 'gdk-pixbuf-loader-rsvg', required to load SVG icons included in
  adwaita-icon-theme. (bsc#1007453)


-----------------------------------------
Patch: SUSE-2017-732
Released: Wed May 10 14:03:43 2017
Summary: Recommended update for procps
Severity: low
References: 1030621
Description:

This update for procps fixes the following issues:

- Command w(1) with option -n doesn't work. (bsc#1030621)


-----------------------------------------
Patch: SUSE-2017-735
Released: Wed May 10 15:43:46 2017
Summary: Recommended update for gpg2
Severity: low
References: 1036736,986783
Description:

This update for gpg2 provides the following fixes:

- Do not install CAcert and other root certificates which are not needed with
  Let's Encrypt. (bsc#1036736)
- Initialize the trustdb before import attempt. (bsc#986783)


-----------------------------------------
Patch: SUSE-2017-739
Released: Wed May 10 22:38:47 2017
Summary: Recommended update for openvpn
Severity: low
References: 959511,988522
Description:

This update for openvpn provides the following fixes:

- Perform deferred authentication in the background to not cause processing delays when
  the underlying PAM mechanism (e.g. LDAP) needs longer to respond. (bsc#959511)
- Use FIPS approved cipher in our sample configuration file. (bsc#988522)


-----------------------------------------
Patch: SUSE-2017-745
Released: Thu May 11 15:39:18 2017
Summary: Recommended update for intel-cmt-cat
Severity: low
References: 1035409
Description:

This update for intel-cmt-cat improves the description contained in the package's metadata.


-----------------------------------------
Patch: SUSE-2017-747
Released: Thu May 11 16:23:06 2017
Summary: Security update for dovecot22
Severity: moderate
References: 1032248,854512,932386,CVE-2017-2669
Description:

This update for dovecot22 to version 2.2.29.1 fixes the following issues:

This security issue was fixed:

- CVE-2017-2669: Don't double-expand %variables in keys. If dict was used as the authentication passdb, using specially crafted %variables in the username could be used to cause DoS (bsc#1032248)

Additionally stronger SSL default ciphers are now used.

This non-security issue was fixed:

- Remove all references /etc/ssl/certs/. It should not be used anymore (bsc#932386)

More changes are available in the changelog. Please make sure you read
README.SUSE after installing this update.


-----------------------------------------
Patch: SUSE-2017-748
Released: Thu May 11 16:23:31 2017
Summary: Security update for MozillaFirefox, mozilla-nss, mozilla-nspr, java-1_8_0-openjdk
Severity: important
References: 1015499,1015547,1021636,1026102,1030071,1035082,983639,CVE-2016-1950,CVE-2016-2834,CVE-2016-8635,CVE-2016-9574,CVE-2017-5429,CVE-2017-5432,CVE-2017-5433,CVE-2017-5434,CVE-2017-5435,CVE-2017-5436,CVE-2017-5437,CVE-2017-5438,CVE-2017-5439,CVE-2017-5440,CVE-2017-5441,CVE-2017-5442,CVE-2017-5443,CVE-2017-5444,CVE-2017-5445,CVE-2017-5446,CVE-2017-5447,CVE-2017-5448,CVE-2017-5459,CVE-2017-5460,CVE-2017-5461,CVE-2017-5462,CVE-2017-5464,CVE-2017-5465,CVE-2017-5469
Description:

Mozilla Firefox was updated to the Firefox ESR release 45.9.

Mozilla NSS was updated to support TLS 1.3 (close to release draft) and various new 
ciphers, PRFs, Diffie Hellman key agreement and support for more hashes.

Security issues fixed in Firefox (bsc#1035082)

- MFSA 2017-11/CVE-2017-5469: Potential Buffer overflow in flex-generated code
- MFSA 2017-11/CVE-2017-5429: Memory safety bugs fixed in Firefox 53, Firefox ESR 45.9, and Firefox ESR 52.1
- MFSA 2017-11/CVE-2017-5439: Use-after-free in nsTArray Length() during XSLT processing
- MFSA 2017-11/CVE-2017-5438: Use-after-free in nsAutoPtr during XSLT processing
- MFSA 2017-11/CVE-2017-5437: Vulnerabilities in Libevent library
- MFSA 2017-11/CVE-2017-5436: Out-of-bounds write with malicious font in Graphite 2
- MFSA 2017-11/CVE-2017-5435: Use-after-free during transaction processing in the editor
- MFSA 2017-11/CVE-2017-5434: Use-after-free during focus handling
- MFSA 2017-11/CVE-2017-5433: Use-after-free in SMIL animation functions
- MFSA 2017-11/CVE-2017-5432: Use-after-free in text input selection
- MFSA 2017-11/CVE-2017-5464: Memory corruption with accessibility and DOM manipulation
- MFSA 2017-11/CVE-2017-5465: Out-of-bounds read in ConvolvePixel
- MFSA 2017-11/CVE-2017-5460: Use-after-free in frame selection
- MFSA 2017-11/CVE-2017-5448: Out-of-bounds write in ClearKeyDecryptor
- MFSA 2017-11/CVE-2017-5446: Out-of-bounds read when HTTP/2 DATA frames are sent with incorrect data
- MFSA 2017-11/CVE-2017-5447: Out-of-bounds read during glyph processing
- MFSA 2017-11/CVE-2017-5444: Buffer overflow while parsing application/http-index-format content
- MFSA 2017-11/CVE-2017-5445: Uninitialized values used while parsing application/http-index-format content
- MFSA 2017-11/CVE-2017-5442: Use-after-free during style changes
- MFSA 2017-11/CVE-2017-5443: Out-of-bounds write during BinHex decoding
- MFSA 2017-11/CVE-2017-5440: Use-after-free in txExecutionState destructor during XSLT processing
- MFSA 2017-11/CVE-2017-5441: Use-after-free with selection during scroll events
- MFSA 2017-11/CVE-2017-5459: Buffer overflow in WebGL

Mozilla NSS was updated to 3.29.5, bringing new features and fixing bugs:

- Update to NSS 3.29.5:
  * MFSA 2017-11/CVE-2017-5461: Rare crashes in the base 64 decoder and encoder were fixed.
  * MFSA 2017-11/CVE-2017-5462: A carry over bug in the RNG was fixed.
  * CVE-2016-9574: Remote DoS during session handshake when using SessionTicket extention and ECDHE-ECDSA (bsc#1015499).
  * requires NSPR >= 4.13.1

- Update to NSS 3.29.3

  * enables TLS 1.3 by default

- Fixed a bug in hash computation (and build with
  GCC 7 which complains about shifts of boolean values).
  (bsc#1030071, bmo#1348767)

- Update to NSS 3.28.3

  This is a patch release to fix binary compatibility issues.

- Update to NSS 3.28.1

  This is a patch release to update the list of root CA certificates.

  * The following CA certificates were Removed

    CN = Buypass Class 2 CA 1
    CN = Root CA Generalitat Valenciana
    OU = RSA Security 2048 V3

  * The following CA certificates were Added

    OU = AC RAIZ FNMT-RCM
    CN = Amazon Root CA 1
    CN = Amazon Root CA 2
    CN = Amazon Root CA 3
    CN = Amazon Root CA 4
    CN = LuxTrust Global Root 2
    CN = Symantec Class 1 Public Primary Certification Authority - G4
    CN = Symantec Class 1 Public Primary Certification Authority - G6
    CN = Symantec Class 2 Public Primary Certification Authority - G4
    CN = Symantec Class 2 Public Primary Certification Authority - G6

  * The version number of the updated root CA list has been set to 2.11

- Update to NSS 3.28

  New functionality:

  * NSS includes support for TLS 1.3 draft -18. This includes a number
    of improvements to TLS 1.3:

    - The signed certificate timestamp, used in certificate
      transparency, is supported in TLS 1.3.
    - Key exporters for TLS 1.3 are supported. This includes the early
      key exporter, which can be used if 0-RTT is enabled. Note that
      there is a difference between TLS 1.3 and key exporters in older
      versions of TLS. TLS 1.3 does not distinguish between an empty
      context and no context.
    - The TLS 1.3 (draft) protocol can be enabled, by defining
      NSS_ENABLE_TLS_1_3=1 when building NSS.
    - NSS includes support for the X25519 key exchange algorithm,
      which is supported and enabled by default in all versions of TLS.

  Notable Changes:

  * NSS can no longer be compiled with support for additional elliptic curves.
    This was previously possible by replacing certain NSS source files.
  * NSS will now detect the presence of tokens that support additional
    elliptic curves and enable those curves for use in TLS.
    Note that this detection has a one-off performance cost, which can be
    avoided by using the SSL_NamedGroupConfig function to limit supported
    groups to those that NSS provides.
  * PKCS#11 bypass for TLS is no longer supported and has been removed.
  * Support for 'export' grade SSL/TLS cipher suites has been removed.
  * NSS now uses the signature schemes definition in TLS 1.3.
    This also affects TLS 1.2. NSS will now only generate signatures with the
    combinations of hash and signature scheme that are defined in TLS 1.3,
    even when negotiating TLS 1.2.

    - This means that SHA-256 will only be used with P-256 ECDSA certificates,
      SHA-384 with P-384 certificates, and SHA-512 with P-521 certificates.
      SHA-1 is permitted (in TLS 1.2 only) with any certificate for backward
      compatibility reasons.
    - NSS will now no longer assume that default signature schemes are
      supported by a peer if there was no commonly supported signature scheme.

  * NSS will now check if RSA-PSS signing is supported by the token that holds
    the private key prior to using it for TLS.
  * The certificate validation code contains checks to no longer trust
    certificates that are issued by old WoSign and StartCom CAs after
    October 21, 2016. This is equivalent to the behavior that Mozilla will
    release with Firefox 51.

- Update to NSS 3.27.2
  * Fixed SSL_SetTrustAnchors leaks (bmo#1318561)

  - raised the minimum softokn/freebl version to 3.28 as reported in (boo#1021636)

- Update to NSS 3.26.2

  New Functionality:

  * the selfserv test utility has been enhanced to support ALPN
    (HTTP/1.1) and 0-RTT
  * added support for the System-wide crypto policy available on
    Fedora Linux see http://fedoraproject.org/wiki/Changes/CryptoPolicy
  * introduced build flag NSS_DISABLE_LIBPKIX that allows compilation
    of NSS without the libpkix library

  Notable Changes:

  * The following CA certificate was Added
    CN = ISRG Root X1
  * NPN is disabled and ALPN is enabled by default
  * the NSS test suite now completes with the experimental TLS 1.3
    code enabled
  * several test improvements and additions, including a NIST known answer test

  Changes in 3.26.2
  * MD5 signature algorithms sent by the server in CertificateRequest
    messages are now properly ignored. Previously, with rare server
    configurations, an MD5 signature algorithm might have been selected
    for client authentication and caused the client to abort the
    connection soon after.

- Update to NSS 3.25

  New functionality:

  * Implemented DHE key agreement for TLS 1.3
  * Added support for ChaCha with TLS 1.3
  * Added support for TLS 1.2 ciphersuites that use SHA384 as the PRF
  * In previous versions, when using client authentication with TLS 1.2,
    NSS only supported certificate_verify messages that used the same
    signature hash algorithm as used by the PRF. This limitation has
    been removed.

  Notable changes:

  * An SSL socket can no longer be configured to allow both TLS 1.3 and SSLv3
  * Regression fix: NSS no longer reports a failure if an application
    attempts to disable the SSLv2 protocol.
  * The list of trusted CA certificates has been updated to version 2.8
  * The following CA certificate was Removed
    Sonera Class1 CA
  * The following CA certificates were Added
    Hellenic Academic and Research Institutions RootCA 2015
    Hellenic Academic and Research Institutions ECC RootCA 2015
    Certplus Root CA G1
    Certplus Root CA G2
    OpenTrust Root CA G1
    OpenTrust Root CA G2
    OpenTrust Root CA G3

- Update to NSS 3.24

  New functionality:

  * NSS softoken has been updated with the latest National Institute
    of Standards and Technology (NIST) guidance (as of 2015):
    - Software integrity checks and POST functions are executed on
      shared library load. These checks have been disabled by default,
      as they can cause a performance regression. To enable these
      checks, you must define symbol NSS_FORCE_FIPS when building NSS.
    - Counter mode and Galois/Counter Mode (GCM) have checks to
      prevent counter overflow.
    - Additional CSPs are zeroed in the code.
    - NSS softoken uses new guidance for how many Rabin-Miller tests
      are needed to verify a prime based on prime size.
  * NSS softoken has also been updated to allow NSS to run in FIPS
    Level 1 (no password). This mode is triggered by setting the
    database password to the empty string. In FIPS mode, you may move
    from Level 1 to Level 2 (by setting an appropriate password),
    but not the reverse.
  * A SSL_ConfigServerCert function has been added for configuring
    SSL/TLS server sockets with a certificate and private key. Use
    this new function in place of SSL_ConfigSecureServer,
    SSL_ConfigSecureServerWithCertChain, SSL_SetStapledOCSPResponses,
    and SSL_SetSignedCertTimestamps. SSL_ConfigServerCert automatically
    determines the certificate type from the certificate and private key.
    The caller is no longer required to use SSLKEAType explicitly to
    select a 'slot' into which the certificate is configured (which
    incorrectly identifies a key agreement type rather than a certificate).
    Separate functions for configuring Online Certificate Status Protocol
    (OCSP) responses or Signed Certificate Timestamps are not needed,
    since these can be added to the optional SSLExtraServerCertData struct
    provided to SSL_ConfigServerCert.  Also, partial support for RSA
    Probabilistic Signature Scheme (RSA-PSS) certificates has been added.
    Although these certificates can be configured, they will not be
    used by NSS in this version.
  * Deprecate the member attribute authAlgorithm of type SSLCipherSuiteInfo.
    Instead, applications should use the newly added attribute authType.
  * Add a shared library (libfreeblpriv3) on Linux platforms that
    define FREEBL_LOWHASH.
  * Remove most code related to SSL v2, including the ability to actively
    send a SSLv2-compatible client hello. However, the server-side
    implementation of the SSL/TLS protocol still supports processing
    of received v2-compatible client hello messages.
  * Disable (by default) NSS support in optimized builds for logging SSL/TLS
    key material to a logfile if the SSLKEYLOGFILE environment variable
    is set. To enable the functionality in optimized builds, you must define
    the symbol NSS_ALLOW_SSLKEYLOGFILE when building NSS.
  * Update NSS to protect it against the Cachebleed attack.
  * Disable support for DTLS compression.
  * Improve support for TLS 1.3. This includes support for DTLS 1.3.
    Note that TLS 1.3 support is experimental and not suitable for
    production use.

- Update to NSS 3.23

  New functionality:

  * ChaCha20/Poly1305 cipher and TLS cipher suites now supported
  * Experimental-only support TLS 1.3 1-RTT mode (draft-11).
    This code is not ready for production use.

  Notable changes:

  * The list of TLS extensions sent in the TLS handshake has been
    reordered to increase compatibility of the Extended Master Secret
    with with servers
  * The build time environment variable NSS_ENABLE_ZLIB has been
    renamed to NSS_SSL_ENABLE_ZLIB
  * The build time environment variable NSS_DISABLE_CHACHAPOLY was
    added, which can be used to prevent compilation of the
    ChaCha20/Poly1305 code.
  * The following CA certificates were Removed

    - Staat der Nederlanden Root CA
    - NetLock Minositett Kozjegyzoi (Class QA) Tanusitvanykiado
    - NetLock Kozjegyzoi (Class A) Tanusitvanykiado
    - NetLock Uzleti (Class B) Tanusitvanykiado
    - NetLock Expressz (Class C) Tanusitvanykiado
    - VeriSign Class 1 Public PCA - G2
    - VeriSign Class 3 Public PCA
    - VeriSign Class 3 Public PCA - G2
    - CA Disig

  * The following CA certificates were Added

    + SZAFIR ROOT CA2
    + Certum Trusted Network CA 2

  * The following CA certificate had the Email trust bit turned on

    + Actalis Authentication Root CA

  Security fixes:
  * CVE-2016-2834: Memory safety bugs (boo#983639)
    MFSA-2016-61 bmo#1206283 bmo#1221620 bmo#1241034 bmo#1241037

- Update to NSS 3.22.3
  * Increase compatibility of TLS extended master secret,
    don't send an empty TLS extension last in the handshake
    (bmo#1243641)
  * Fixed a heap-based buffer overflow related to the parsing of
    certain ASN.1 structures. An attacker could create a specially-crafted
    certificate which, when parsed by NSS, would cause a crash or
    execution of arbitrary code with the permissions of the user.
    (CVE-2016-1950, bmo#1245528)

- Update to NSS 3.22.2

  New functionality:

  * RSA-PSS signatures are now supported (bmo#1215295)
  * Pseudorandom functions based on hashes other than SHA-1 are now supported
  * Enforce an External Policy on NSS from a config file (bmo#1009429)

- CVE-2016-8635: Fix for DH small subgroup confinement attack (bsc#1015547)

Mozilla NSPR was updated to version 4.13.1:

  The previously released version 4.13 had changed pipes to be
  nonblocking by default, and as a consequence, PollEvent was
  changed to not block on clear.
  The NSPR development team received reports that these changes
  caused regressions in some applications that use NSPR, and it
  has been decided to revert the changes made in NSPR 4.13.
  NSPR 4.13.1 restores the traditional behavior of pipes and
  PollEvent.

Mozilla NSPR update to version 4.13 had these changes:

- PL_strcmp (and others) were fixed to return consistent results
    when one of the arguments is NULL.
- PollEvent was fixed to not block on clear.
- Pipes are always nonblocking.
- PR_GetNameForIdentity: added thread safety lock and bound checks.
- Removed the PLArena freelist.
- Avoid some integer overflows.
- fixed several comments.

This update also contains java-1_8_0-openjdk that needed to be rebuilt against the new
mozilla-nss version.


-----------------------------------------
Patch: SUSE-2017-785
Released: Tue May 16 11:53:57 2017
Summary: Recommended update for dnsmasq
Severity: low
References: 1035227,972164
Description:

This update provides dnsmasq 2.76, which brings many fixes and enhancements:

- Fix PXE booting for UEFI architectures (fate#322030).
- Prevent a man-in-the-middle attack (bsc#972164, fate#321175).

This update brings a (small) potential incompatibility in the handling of
'basename' in --pxe-service. Please read the CHANGELOG and the documentation
if you are using this option.

For a comprehensive list of changes, please refer to
http://www.thekelleys.org.uk/dnsmasq/CHANGELOG


-----------------------------------------
Patch: SUSE-2017-793
Released: Tue May 16 15:40:43 2017
Summary: Security update for libxslt
Severity: moderate
References: 1005591,1035905,934119,952474,CVE-2015-7995,CVE-2015-9019,CVE-2016-4738,CVE-2017-5029
Description:

 This update for libxslt fixes the following issues:
 

- CVE-2017-5029: The xsltAddTextString function in transform.c lacked a check 
for integer overflow during a size calculation, which allowed a remote attacker 
to perform an out of bounds memory write via a crafted HTML page (bsc#1035905).

- CVE-2016-4738: Fix heap overread in xsltFormatNumberConversion: An empty decimal-separator 
could cause a heap overread. This can be exploited to leak a couple of bytes after 
the buffer that holds the pattern string (bsc#1005591).

- CVE-2015-9019: Properly initialize random generator (bsc#934119).

- CVE-2015-7995: Vulnerability in function xsltStylePreCompute' in preproc.c could cause a 
type confusion leading to DoS. (bsc#952474)

 

-----------------------------------------
Patch: SUSE-2017-794
Released: Tue May 16 15:41:09 2017
Summary: Security update for bash
Severity: moderate
References: 1010845,1035371,CVE-2016-9401
Description:

This update for bash fixes an issue that could lead to syntax errors when parsing
scripts that use expr(1) inside loops.

Additionally, the popd build-in now ensures that the normalized stack offset is
within bounds before trying to free that stack entry. This fixes a segmentation
fault.


-----------------------------------------
Patch: SUSE-2017-796
Released: Tue May 16 15:41:58 2017
Summary: Security update for libtirpc
Severity: important
References: 1037559,CVE-2017-8779
Description:

This update for libtirpc fixes the following issues:

-  CVE-2017-8779: crafted UDP packaged could lead  rpcbind to denial-of-service  (bsc#1037559)




-----------------------------------------
Patch: SUSE-2017-803
Released: Thu May 18 12:24:33 2017
Summary: Security update for rpcbind
Severity: important
References: 1037559,CVE-2017-8779
Description:

This update for rpcbind fixes the following issues:

  - CVE-2017-8779: A crafted UDP package could lead rcpbind to remote denial-of-service (bsc#1037559)



-----------------------------------------
Patch: SUSE-2017-805
Released: Thu May 18 12:24:47 2017
Summary: Security update for kdelibs4
Severity: important
References: 1036244,CVE-2017-8422
Description:

This update for kdelibs4 fixes the following issues:

- CVE-2017-8422: This update fixes problem in the DBUS authentication of the kauth framework
  that could be used to escalate privileges depending on bugs or misimplemented dbus
  services. (boo#1036244)


-----------------------------------------
Patch: SUSE-2017-817
Released: Thu May 18 16:04:32 2017
Summary: Recommended update for lua
Severity: low
References: 1010089
Description:

This update provides Lua 5.2.4, which brings fixes for the following issues:

- Wrong overflow check in table.unpack
- Ephemeron table wrongly collecting strong keys
- Crash in chunks that are too long
- Garbage collector can trigger too many times in recursive loops
- Wrong assert when reporting concatenation errors
- Wrong error message in some short-cut expressions
- luac listings choke on long strings
- Reorder items in private Table struct, restoring ABI compatibility.


-----------------------------------------
Patch: SUSE-2017-830
Released: Fri May 19 09:21:51 2017
Summary: Security update for git
Severity: moderate
References: 1038395,CVE-2017-8386
Description:

This update for git fixes the following issues:

- git 2.12.3:
 * CVE-2017-8386: Fix git-shell not to escape with the starting dash name
   (bsc#1038395)
 * Fix for potential segv introduced in v2.11.0 and later
 * Misc fixes and cleanups.
- git 2.12.2:
  * CLI output fixes
  * 'Dump http' transport fixes
  * various fixes for internal code paths   
  * Trailer 'Cc:' RFC fix
- git 2.12.1:
  * Reduce authentication round-trip over HTTP when the server
    supports just a single authentication method.
  * 'git add -i' patch subcommand fixed to have a path selection
  * various path verification fixes
  * fix 'git log -L...' buffer overrun


-----------------------------------------
Patch: SUSE-2017-834
Released: Mon May 22 10:38:07 2017
Summary: Security update for libsndfile
Severity: moderate
References: 1033054,1033914,1033915,1036943,1036944,1036945,1036946,1038856,CVE-2017-7585,CVE-2017-7741,CVE-2017-7742,CVE-2017-8361,CVE-2017-8362,CVE-2017-8363,CVE-2017-8365
Description:

This update for libsndfile fixes the following issues:

- CVE-2017-8361: Global buffer overflow in flac_buffer_copy. (bsc#1036946)
- CVE-2017-8362: Invalid memory read in flac_buffer_copy. (bsc#1036943)
- CVE-2017-8363: Heap-based buffer overflow in flac_buffer_copy. (bsc#1036945)
- CVE-2017-7585, CVE-2017-7741, CVE-2017-7742: Stack-based buffer overflows via specially
  crafted FLAC files. (bsc#1033054)


-----------------------------------------
Patch: SUSE-2017-838
Released: Mon May 22 19:13:22 2017
Summary: Recommended update for postgresql94
Severity: moderate
References: 1029547
Description:

This update provides PostgreSQL 9.4.11, which brings fixes and enhancements:

- Fix a race condition that could cause indexes built with CREATE INDEX CONCURRENTLY
  to be corrupt.
- Fixes for visibility and write-ahead-log stability.
- Fix WAL-logging of truncated relations.
- Fix pg_upgrade issues on big-endian machines.

For a comprehensive list of bug fixes, please refer to the release notes:

- https://www.postgresql.org/docs/9.4/static/release-9-4-10.html
- https://www.postgresql.org/docs/9.4/static/release-9-4-11.html


-----------------------------------------
Patch: SUSE-2017-839
Released: Mon May 22 19:15:26 2017
Summary: Recommended update for python-dmidecode
Severity: low
References: 1036061
Description:

This update for python-dmidecode provides the following fixes:

- Use correct data type DWORD for extended memory size. (bsc#1036061)


-----------------------------------------
Patch: SUSE-2017-849
Released: Tue May 23 15:38:30 2017
Summary: Security update for libplist
Severity: moderate
References: 1019531,1021610,1023807,1023822,1023848,1029631,1035312,CVE-2017-5209,CVE-2017-5545,CVE-2017-5834,CVE-2017-5835,CVE-2017-5836,CVE-2017-6440,CVE-2017-7982
Description:

This update for libplist fixes the following issues:
 
- CVE-2017-5209: The base64decode function in libplist allowed attackers to obtain sensitive information from process memory or cause a denial of service (buffer over-read) via split encoded Apple Property List data (bsc#1019531).
- CVE-2017-5545: The main function in plistutil.c in libimobiledevice libplist allowed attackers to obtain sensitive information from process memory or cause a denial of service (buffer over-read) via Apple Property List data that is too short. (bsc#1021610).
- CVE-2017-5836: A type inconsistency in bplist.c was fixed. (bsc#1023807)
- CVE-2017-5835: A memory allocation error leading to DoS was fixed. (bsc#1023822)
- CVE-2017-5834: A heap-buffer overflow in parse_dict_node was fixed. (bsc#1023848)
- CVE-2017-6440: Ensure that sanity checks work on 32-bit platforms.  (bsc#1029631)
- CVE-2017-7982: Add some safety checks, backported from upstream (bsc#1035312). 
- CVE-2017-5836: A maliciously crafted file could cause the application to crash. (bsc#1023807).
- CVE-2017-5835: Malicious crafted file could cause libplist to allocate large amounts of memory 
and consume lots of CPU (bsc#1023822) 
- CVE-2017-5834: Maliciou crafted file could cause a heap buffer overflow or segmentation fault (bsc#1023848)

 

-----------------------------------------
Patch: SUSE-2017-856
Released: Wed May 24 12:06:37 2017
Summary: Recommended update for vsftpd
Severity: moderate
References: 1021387,1024961
Description:

This update for vsftpd provides the following fixes:

- Fix interoperability with ftp clients when vsftpd is configured with option
  'use_localtime=YES'. (bsc#1024961)
- Fix several issues related to SSL/TLS support. (bsc#1021387)


-----------------------------------------
Patch: SUSE-2017-861
Released: Wed May 24 15:45:20 2017
Summary: Recommended update for gstreamer-plugins-good
Severity: moderate
References: 1031890
Description:

This update for gstreamer-plugins-good fixes atomic file writes in 'buffer' mode.


-----------------------------------------
Patch: SUSE-2017-862
Released: Wed May 24 15:46:57 2017
Summary: Recommended update for pam_ldap
Severity: low
References: 918534
Description:

This update for pam_ldap provides the following fix:

- Correct default value for 'bind_timeout' in configuration file and manual page (bsc#918534)



-----------------------------------------
Patch: SUSE-2017-864
Released: Wed May 24 16:22:49 2017
Summary: Security update for java-1_7_0-openjdk
Severity: important
References: 1034849,CVE-2017-3289,CVE-2017-3509,CVE-2017-3511,CVE-2017-3512,CVE-2017-3514,CVE-2017-3526,CVE-2017-3533,CVE-2017-3539,CVE-2017-3544
Description:

This update for java-1_7_0-openjdk fixes the following issues:

- Update to 2.6.10 - OpenJDK 7u141 (bsc#1034849)
* Security fixes
    - S8163520, CVE-2017-3509: Reuse cache entries
    - S8163528, CVE-2017-3511: Better library loading
    - S8165626, CVE-2017-3512: Improved window framing
    - S8167110, CVE-2017-3514: Windows peering issue
    - S8169011, CVE-2017-3526: Resizing XML parse trees
    - S8170222, CVE-2017-3533: Better transfers of files
    - S8171121, CVE-2017-3539: Enhancing jar checking
    - S8171533, CVE-2017-3544: Better email transfer
    - S8172299: Improve class processing
  * New features
    - PR3347: jstack.stp should support AArch64
  * Import of OpenJDK 7 u141 build 0
    - S4717864: setFont() does not update Fonts of Menus already on
      screen
    - S6474807: (smartcardio) CardTerminal.connect() throws
      CardException instead of CardNotPresentException
    - S6518907: cleanup IA64 specific code in Hotspot
    - S6869327: Add new C2 flag to keep safepoints in counted loops.
    - S7112912: Message 'Error occurred during initialization of
      VM' on boxes with lots of RAM
    - S7124213: [macosx] pack() does ignore size of a component;
      doesn't on the other platforms
    - S7124219: [macosx] Unable to draw images to fullscreen
    - S7124552: [macosx] NullPointerException in getBufferStrategy()
    - S7148275: [macosx] setIconImages() not working correctly
      (distorted icon when minimized)
    - S7154841: [macosx] Popups appear behind taskbar
    - S7155957:
      closed/java/awt/MenuBar/MenuBarStress1/MenuBarStress1.java
      hangs on win 64 bit with jdk8
    - S7160627: [macosx] TextArea has wrong initial size
    - S7167293: FtpURLConnection connection leak on
      FileNotFoundException
    - S7168851: [macosx] Netbeans crashes in
      CImage.nativeCreateNSImageFromArray
    - S7197203: sun/misc/URLClassPath/ClassnameCharTest.sh failed,
      compile error
    - S8005255: [macosx] Cleanup warnings in sun.lwawt
    - S8006088: Incompatible heap size flags accepted by VM
    - S8007295: Reduce number of warnings in awt classes
    - S8010722: assert: failed: heap size is too big for compressed
      oops
    - S8011059: [macosx] Support automatic @2x images loading on
      Mac OS X
    - S8014058: Regression tests for 8006088
    - S8014489:
      tests/gc/arguments/Test(Serial|CMS|Parallel|G1)HeapSizeFlags
      jtreg tests invoke wrong class
    - S8016302: Change type of the number of GC workers to unsigned
      int (2)
    - S8024662: gc/arguments/TestUseCompressedOopsErgo.java does
      not compile.
    - S8024669: Native OOME when allocating after changes to
      maximum heap supporting Coops sizing on sparcv9
    - S8024926: [macosx] AquaIcon HiDPI support
    - S8025974: l10n for policytool
    - S8027025: [macosx] getLocationOnScreen returns 0 if parent
      invisible
    - S8028212: Custom cursor HiDPI support
    - S8028471: PPC64 (part 215): opto: Extend ImplicitNullCheck
      optimization.
    - S8031573: [macosx] Checkmarks of JCheckBoxMenuItems aren't
      rendered in high resolution on Retina
    - S8033534: [macosx] Get MultiResolution image from native
      system
    - S8033786: White flashing when opening Dialogs and Menus using
      Nimbus with dark background
    - S8035568: [macosx] Cursor management unification
    - S8041734: JFrame in full screen mode leaves empty workspace
      after close
    - S8059803: Update use of GetVersionEx to get correct Windows
      version in hs_err files
    - S8066504: GetVersionEx in
      java.base/windows/native/libjava/java_props_md.c might not
      get correct Windows version 0
    - S8079595: Resizing dialog which is JWindow parent makes JVM
      crash
    - S8080729: [macosx] java 7 and 8 JDialogs on multiscreen jump
      to parent frame on focus
    - S8130769: The new menu can't be shown on the menubar after
      clicking the 'Add' button.
    - S8133357: 8u65 l10n resource file translation update
    - S8146602:
      jdk/test/sun/misc/URLClassPath/ClassnameCharTest.java test
      fails with NullPointerException
    - S8147842: IME Composition Window is displayed at incorrect
      location
    - S8147910: Cache initial active_processor_count
    - S8150490: Update OS detection code to recognize Windows
      Server 2016
    - S8161147: jvm crashes when -XX:+UseCountedLoopSafepoints is
      enabled
    - S8161195: Regression:
      closed/javax/swing/text/FlowView/LayoutTest.java
    - S8161993: G1 crashes if active_processor_count changes during
      startup
    - S8162603: Unrecognized VM option 'UseCountedLoopSafepoints'
    - S8162876: [TEST_BUG]
      sun/net/www/protocol/http/HttpInputStream.java fails
      intermittently
    - S8164533: sun/security/ssl/SSLSocketImpl/CloseSocket.java
      failed with 'Error while cleaning up threads after test'
    - S8167179: Make XSL generated namespace prefixes local to
      transformation process
    - S8169465: Deadlock in com.sun.jndi.ldap.pool.Connections
    - S8169589: [macosx] Activating a JDialog puts to back another
      dialog
    - S8170307: Stack size option -Xss is ignored
    - S8170316: (tz) Support tzdata2016j
    - S8170814: Reuse cache entries (part II)
    - S8171388: Update JNDI Thread contexts
    - S8171949: [macosx] AWT_ZoomFrame Automated tests fail with
      error: The bitwise mask Frame.ICONIFIED is not setwhen the
       frame is in ICONIFIED state
    - S8171952: [macosx]
      AWT_Modality/Automated/ModalExclusion/NoExclusion/ModelessDialog
      test fails as DummyButton on Dialog did not gain focus when
      clicked.
    - S8173931: 8u131 L10n resource file update
    - S8174844: Incorrect GPL header causes RE script to miss swap
      to commercial header for licensee source bundle
    - S8175087: [bsd] Fix build after '8024900: PPC64: Enable new
      build on AIX (jdk part)'
    - S8175163: [bsd] Fix build after '8005629: javac warnings
      compiling java.awt.EventDispatchThread...'
    - S8176044: (tz) Support tzdata2017a
  * Import of OpenJDK 7 u141 build 1
    - S8043723: max_heap_for_compressed_oops() declared with
      size_t, but defined with uintx
  * Import of OpenJDK 7 u141 build 2
    - S8011123: serialVersionUID of
      java.awt.dnd.InvalidDnDOperationException changed in JDK8-b82
  * Backports
    - S6515172, PR3362: Runtime.availableProcessors() ignores Linux
      taskset command
    - S8022284, PR3209: Hide internal data structure in PhaseCFG
    - S8023003, PR3209: Cleanup the public interface to PhaseCFG
    - S8023691, PR3209: Create interface for nodes in class Block
    - S8023988, PR3209: Move local scheduling of nodes to the CFG
      creation and code motion phase (PhaseCFG)
    - S8043780, PR3369: Use open(O_CLOEXEC) instead of
      fcntl(FD_CLOEXEC)
    - S8157306, PR3209: Random infrequent null pointer exceptions
      in javac
    - S8173783, PR3329: IllegalArgumentException:
      jdk.tls.namedGroups
    - S8173941, PR3330: SA does not work if executable is DSO
    - S8174729, PR3361: Race Condition in
      java.lang.reflect.WeakCache
  * Bug fixes
    - PR3349: Architectures unsupported by SystemTap tapsets throw
      a parse error
    - PR3370: Disable ARM32 JIT by default in jdk_generic_profile.sh
    - PR3379: Perl should be mandatory
    - PR3390: javac.in and javah.in should use @PERL@ rather than a
      hardcoded path
  * CACAO
    - PR2732: Raise javadoc memory limits for CACAO again!
  * AArch64 port
    - S8177661, PR3367: Correct ad rule output register types from
      iRegX to iRegXNoSp

- Get ecj.jar path from gcj, use the gcc variant that provides Java
  to build C code to make sure jni.h is available.

    - S8167104, CVE-2017-3289: Additional class construction
    - S6253144: Long narrowing conversion should describe the
    - S6328537: Improve javadocs for Socket class by adding
    - S6978886: javadoc shows stacktrace after print error
    - S6995421: Eliminate the static dependency to
    - S7027045: (doc) java/awt/Window.java has several typos in
    - S7054969: Null-check-in-finally pattern in java/security
    - S7072353: JNDI libraries do not build with javac -Xlint:all
    - S7092447: Clarify the default locale used in each locale
    - S7103570: AtomicIntegerFieldUpdater does not work when
    - S7187144: JavaDoc for ScriptEngineFactory.getProgram()
    - S8000418: javadoc should used a standard 'generated by
    - S8000666: javadoc should write directly to Writer instead of
    - S8000970: break out auxiliary classes that will prevent
    - S8001669: javadoc internal DocletAbortException should set
    - S8011402: Move blacklisting certificate logic from hard code
    - S8011547: Update XML Signature implementation to Apache
    - S8012288: XML DSig API allows wrong tag names and extra
    - S8017325: Cleanup of the javadoc <code> tag in
    - S8017326: Cleanup of the javadoc <code> tag in
    - S8019772: Fix doclint issues in javax.crypto and
    - S8020688: Broken links in documentation at
    - S8021108: Clean up doclint warnings and errors in java.text
    - S8022120: JCK test
      api/javax_xml/crypto/dsig/TransformService/index_ParamMethods
    - S8025409: Fix javadoc comments errors and warning reported by
    - S8026021: more fix of javadoc errors and warnings reported by
    - S8037099: [macosx] Remove all references to GC from native
    - S8038184: XMLSignature throws StringIndexOutOfBoundsException
    - S8038349: Signing XML with DSA throws Exception when key is
    - S8049244: XML Signature performance issue caused by
    - S8050893: (smartcardio) Invert reset argument in tests in
    - S8059212: Modify sun/security/smartcardio manual regression
    - S8068279: (typo in the spec)
    - S8068491: Update the protocol for references of
    - S8069038: javax/net/ssl/TLS/TLSClientPropertyTest.java needs
    - S8076369: Introduce the jdk.tls.client.protocols system
    - S8139565: Restrict certificates with DSA keys less than 1024
    - S8140422: Add mechanism to allow non default root CAs to be
    - S8140587: Atomic*FieldUpdaters should use Class.isInstance
    - S8149029: Secure validation of XML based digital signature
    - S8151893: Add security property to configure XML Signature
    - S8161228: URL objects with custom protocol handlers have port
    - S8163304: jarsigner -verbose -verify should print the
    - S8164908: ReflectionFactory support for IIOP and custom
    - S8165230: RMIConnection addNotificationListeners failing with
    - S8166393: disabledAlgorithms property should not be strictly
    - S8166591: [macos 10.12] Trackpad scrolling of text on OS X
    - S8166739: Improve extensibility of ObjectInputFilter
    - S8167356: Follow up fix for jdk8 backport of 8164143. Changes
    - S8167459: Add debug output for indicating if a chosen
    - S8168861: AnchorCertificates uses hardcoded password for
    - S8169688: Backout (remove) MD5 from
    - S8169911: Enhanced tests for jarsigner -verbose -verify after
    - S8170131: Certificates not being blocked by
    - S8173854: [TEST] Update DHEKeySizing test case following
    - S7102489, PR3316, RH1390708: RFE: cleanup jlong typedef on
    - S8000351, PR3316, RH1390708: Tenuring threshold should be
    - S8153711, PR3315, RH1284948: [REDO] JDWP: Memory Leak:
    - S8170888, PR3316, RH1390708: [linux] Experimental support for
    - PR3318: Replace 'infinality' with 'improved font rendering'
    - PR3324: Fix NSS_LIBDIR substitution in
    - S8165673, PR3320: AArch64: Fix JNI floating point argument
    + S6604109, PR3162:
- Add -fno-delete-null-pointer-checks -fno-lifetime-dse to try to
      directory to be specified
      versions of IcedTea


-----------------------------------------
Patch: SUSE-2017-865
Released: Wed May 24 16:23:20 2017
Summary: Security update for pam
Severity: moderate
References: 1015565,1037824,934920,CVE-2015-3238
Description:

This update for pam fixes the following issues:
 

- CVE-2015-3238: pam_unix in conjunction with SELinux allowed for DoS attacks (bsc#934920).
- log a hint to syslog if /etc/nologin is present, but empty (bsc#1015565).
- If /etc/nologin is present, but empty, log a hint to syslog. (bsc#1015565)
- Added support for libowcrypt.so, if present, to configure support for BLOWFISH (bsc#1037824)

 

-----------------------------------------
Patch: SUSE-2017-866
Released: Wed May 24 16:24:27 2017
Summary: Security update for ghostscript
Severity: important
References: 1018128,1030263,1032114,1032120,1036453,CVE-2016-10220,CVE-2016-9601,CVE-2017-5951,CVE-2017-7207,CVE-2017-8291
Description:

This update for ghostscript fixes the following security vulnerabilities:

- CVE-2017-8291: A remote command execution and a -dSAFER bypass via a crafted .eps document were
  exploited in the wild. (bsc#1036453)
- CVE-2016-9601: An integer overflow in the bundled jbig2dec library could have been misused to cause
  a Denial-of-Service. (bsc#1018128)
- CVE-2016-10220: A NULL pointer dereference in the PDF Transparency module allowed remote attackers
  to cause a Denial-of-Service. (bsc#1032120)
- CVE-2017-5951: A NULL pointer dereference allowed remote attackers to cause a denial of service
  via a crafted PostScript document. (bsc#1032114)
- CVE-2017-7207: A NULL pointer dereference allowed remote attackers to cause a denial of service
  via a crafted PostScript document. (bsc#1030263)

This is a reissue of the previous update to also include SUSE Linux Enterprise 12 GA LTSS packages.



-----------------------------------------
Patch: SUSE-2017-868
Released: Thu May 25 12:40:27 2017
Summary: Security update for squidGuard
Severity: moderate
References: 985612,CVE-2015-8936
Description:
squidGuard was updated to fix one security issue:

- CVE-2015-8936: Reflected cross site scripting vulnerability because of insufficient escaping (bsc#985612).


-----------------------------------------
Patch: SUSE-2017-869
Released: Thu May 25 12:48:03 2017
Summary: Recommended update for os-prober
Severity: low
References: 1008444,997465
Description:

This update for os-prober provides the following fixes:

- Remove the wildcard test for ld.so. It is inaccurate, slow and could hang
  for a long time in some circumstances. (bsc#1008444)
- Parse /etc/os-release for openSUSE Tumbleweed. (bsc#997465)


-----------------------------------------
Patch: SUSE-2017-870
Released: Fri May 26 13:58:57 2017
Summary: Recommended update for sysstat
Severity: low
References: 1031674
Description:

This update for sysstat provides the following fix:

- Properly specify you want to be started by multi-user.target (bsc#1031674)



-----------------------------------------
Patch: SUSE-2017-872
Released: Fri May 26 14:05:10 2017
Summary: Recommended update for ntp
Severity: low
References: 1034892
Description:

This update for ntp provides the following fix:

- Fix systemd migration in %pre (bsc#1034892)


-----------------------------------------
Patch: SUSE-2017-878
Released: Mon May 29 16:31:04 2017
Summary: Recommended update for amavisd-new
Severity: low
References: 1014157,1014205
Description:

This update for amavisd-new provides the following fixes:

- Properly create /etc/sysconfig/amavis at installation time. (bsc#1014205)
- Add 'spamassassin' to requirements list. (bsc#1014157)


-----------------------------------------
Patch: SUSE-2017-879
Released: Tue May 30 13:18:53 2017
Summary: Security update for java-1_8_0-openjdk
Severity: important
References: 1034849,CVE-2017-3509,CVE-2017-3511,CVE-2017-3512,CVE-2017-3514,CVE-2017-3526,CVE-2017-3533,CVE-2017-3539,CVE-2017-3544
Description:

This update for java-1_8_0-openjdk fixes the following issues:

- Upgrade to version jdk8u131 (icedtea 3.4.0) - bsc#1034849
  * Security fixes
    - S8163520, CVE-2017-3509: Reuse cache entries
    - S8163528, CVE-2017-3511: Better library loading
    - S8165626, CVE-2017-3512: Improved window framing
    - S8167110, CVE-2017-3514: Windows peering issue
    - S8168699: Validate special case invocations
    - S8169011, CVE-2017-3526: Resizing XML parse trees
    - S8170222, CVE-2017-3533: Better transfers of files
    - S8171121, CVE-2017-3539: Enhancing jar checking
    - S8171533, CVE-2017-3544: Better email transfer
    - S8172299: Improve class processing
  * New features
    - PR1969: Add AArch32 JIT port
    - PR3297: Allow Shenandoah to be used on AArch64
    - PR3340: jstack.stp should support AArch64
  * Import of OpenJDK 8 u131 build 11
    - S6474807: (smartcardio) CardTerminal.connect() throws
      CardException instead of CardNotPresentException
    - S6515172, PR3346: Runtime.availableProcessors() ignores Linux
      taskset command
    - S7155957:
      closed/java/awt/MenuBar/MenuBarStress1/MenuBarStress1.java
      hangs on win 64 bit with jdk8
    - S7167293: FtpURLConnection connection leak on
      FileNotFoundException
    - S8035568: [macosx] Cursor management unification
    - S8079595: Resizing dialog which is JWindow parent makes JVM
      crash
    - S8130769: The new menu can't be shown on the menubar after
      clicking the 'Add' button.
    - S8146602:
      jdk/test/sun/misc/URLClassPath/ClassnameCharTest.java test
      fails with NullPointerException
    - S8147842: IME Composition Window is displayed at incorrect
      location
    - S8147910, PR3346: Cache initial active_processor_count
    - S8150490: Update OS detection code to recognize Windows
      Server 2016
    - S8160951: [TEST_BUG]
      javax/xml/bind/marshal/8134111/UnmarshalTest.java should be
      added into :needs_jre group
    - S8160958: [TEST_BUG]
      java/net/SetFactoryPermission/SetFactoryPermission.java
      should be added into :needs_compact2 group
    - S8161147: jvm crashes when -XX:+UseCountedLoopSafepoints is
      enabled
    - S8161195: Regression:
      closed/javax/swing/text/FlowView/LayoutTest.java
    - S8161993, PR3346: G1 crashes if active_processor_count
      changes during startup
    - S8162876: [TEST_BUG]
      sun/net/www/protocol/http/HttpInputStream.java fails
      intermittently
    - S8162916: Test sun/security/krb5/auto/UnboundSSL.java fails
    - S8164533: sun/security/ssl/SSLSocketImpl/CloseSocket.java
      failed with 'Error while cleaning up threads after test'
    - S8167179: Make XSL generated namespace prefixes local to
      transformation process
    - S8168774: Polymorhic signature method check crashes javac
    - S8169465: Deadlock in com.sun.jndi.ldap.pool.Connections
    - S8169589: [macosx] Activating a JDialog puts to back another
      dialog
    - S8170307: Stack size option -Xss is ignored
    - S8170316: (tz) Support tzdata2016j
    - S8170814: Reuse cache entries (part II)
    - S8170888, PR3314, RH1284948: [linux] Experimental support for
      cgroup memory limits in container (ie Docker) environments
    - S8171388: Update JNDI Thread contexts
    - S8171949: [macosx] AWT_ZoomFrame Automated tests fail with
      error: The bitwise mask Frame.ICONIFIED is not setwhen the
      frame is in ICONIFIED state
    - S8171952: [macosx]
      AWT_Modality/Automated/ModalExclusion/NoExclusion/ModelessDialog
      test fails as DummyButton on Dialog did not gain focus when
	  clicked.
    - S8173030: Temporary backout fix #8035568 from 8u131-b03
    - S8173031: Temporary backout fix #8171952 from 8u131-b03
    - S8173783, PR3328: IllegalArgumentException:
      jdk.tls.namedGroups
    - S8173931: 8u131 L10n resource file update
    - S8174844: Incorrect GPL header causes RE script to miss swap
      to commercial header for licensee source bundle
    - S8174985: NTLM authentication doesn't work with IIS if NTLM
      cache is disabled
    - S8176044: (tz) Support tzdata2017a
  * Backports
    - S6457406, PR3335: javadoc doesn't handle <a
      href='http://...'> properly in producing index pages
    - S8030245, PR3335: Update langtools to use try-with-resources
      and multi-catch
    - S8030253, PR3335: Update langtools to use strings-in-switch
    - S8030262, PR3335: Update langtools to use foreach loops
    - S8031113, PR3337: TEST_BUG:
      java/nio/channels/AsynchronousChannelGroup/Basic.java fails
      intermittently
    - S8031625, PR3335: javadoc problems referencing inner class
      constructors
    - S8031649, PR3335: Clean up javadoc tests
    - S8031670, PR3335: Remove unneeded -source options in javadoc
      tests
    - S8032066, PR3335: Serialized form has broken links to non
      private inner classes of package private
    - S8034174, PR2290: Remove use of JVM_* functions from java.net
      code
    - S8034182, PR2290: Misc. warnings in java.net code
    - S8035876, PR2290: AIX build issues after '8034174: Remove use
      of JVM_* functions from java.net code'
    - S8038730, PR3335: Clean up the way JavadocTester is invoked,
      and checks for errors.
    - S8040903, PR3335: Clean up use of BUG_ID in javadoc tests
    - S8040904, PR3335: Ensure javadoc tests do not overwrite
      results within tests
    - S8040908, PR3335: javadoc test TestDocEncoding should use
      -notimestamp
    - S8041150, PR3335: Avoid silly use of static methods in
      JavadocTester
    - S8041253, PR3335: Avoid redundant synonyms of NO_TEST
    - S8043780, PR3368: Use open(O_CLOEXEC) instead of
      fcntl(FD_CLOEXEC)
    - S8061305, PR3335: Javadoc crashes when method name ends with
      'Property'
    - S8072452, PR3337: Support DHE sizes up to 8192-bits and DSA
      sizes up to 3072-bits
    - S8075565, PR3337: Define @intermittent jtreg keyword and mark
      intermittently failing jdk tests
    - S8075670, PR3337: Remove intermittent keyword from some tests
    - S8078334, PR3337: Mark regression tests using randomness
    - S8078880, PR3337: Mark a few more intermittently failuring
      security-libs
    - S8133318, PR3337: Exclude intermittent failing PKCS11 tests
      on Solaris SPARC 11.1 and earlier
    - S8144539, PR3337: Update PKCS11 tests to run with security
      manager
    - S8144566, PR3352: Custom HostnameVerifier disables SNI
      extension
    - S8153711, PR3313, RH1284948: [REDO] JDWP: Memory Leak:
      GlobalRefs never deleted when processing invokeMethod command
    - S8155049, PR3352: New tests from 8144566 fail with 'No
      expected Server Name Indication'
    - S8173941, PR3326: SA does not work if executable is DSO
    - S8174164, PR3334, RH1417266: SafePointNode::_replaced_nodes
      breaks with irreducible loops
    - S8174729, PR3336, RH1420518: Race Condition in
      java.lang.reflect.WeakCache
    - S8175097, PR3334, RH1417266: [TESTBUG] 8174164 fix missed the
      test
  * Bug fixes
    - PR3348: Architectures unsupported by SystemTap tapsets throw
      a parse error
    - PR3378: Perl should be mandatory
    - PR3389: javac.in and javah.in should use @PERL@ rather than a
      hardcoded path
  * AArch64 port
    - S8168699, PR3372: Validate special case invocations [AArch64
      support]
    - S8170100, PR3372: AArch64: Crash in C1-compiled code
      accessing References
    - S8172881, PR3372: AArch64: assertion failure: the int
      pressure is incorrect
    - S8173472, PR3372: AArch64: C1 comparisons with null only use
      32-bit instructions
    - S8177661, PR3372: Correct ad rule output register types from
      iRegX to iRegXNoSp
  * AArch32 port
    - PR3380: Zero should not be enabled by default on arm with the
      AArch32 HotSpot build
    - PR3384, S8139303, S8167584: Add support for AArch32
      architecture to configure and jdk makefiles
    - PR3385: aarch32 does not support -Xshare:dump
    - PR3386, S8164652: AArch32 jvm.cfg wrong for C1 build
    - PR3387: Installation fails on arm with AArch32 port as
      INSTALL_ARCH_DIR is arm, not aarch32
    - PR3388: Wrong path for jvm.cfg being used on arm with AArch32
      build
  * Shenandoah
    - Fix Shenandoah argument checking on 32bit builds.
    - Import from Shenandoah tag
      aarch64-shenandoah-jdk8u101-b14-shenandoah-merge-2016-07-25
    - Import from Shenandoah tag
      aarch64-shenandoah-jdk8u121-b14-shenandoah-merge-2017-02-20
    - Import from Shenandoah tag
      aarch64-shenandoah-jdk8u121-b14-shenandoah-merge-2017-03-06
    - Import from Shenandoah tag
      aarch64-shenandoah-jdk8u121-b14-shenandoah-merge-2017-03-09
    - Import from Shenandoah tag
      aarch64-shenandoah-jdk8u121-b14-shenandoah-merge-2017-03-23


-----------------------------------------
Patch: SUSE-2017-883
Released: Tue May 30 13:22:27 2017
Summary: Security update for wireshark
Severity: moderate
References: 1002981,1010735,1010740,1010752,1010754,1010911,1021739,1025913,1026507,1027692,1027998,1033936,1033937,1033938,1033939,1033940,1033941,1033942,1033943,1033944,1033945,990856,998761,998762,998763,998800,998963,998964,CVE-2016-6354,CVE-2016-7175,CVE-2016-7176,CVE-2016-7177,CVE-2016-7178,CVE-2016-7179,CVE-2016-7180,CVE-2016-9373,CVE-2016-9374,CVE-2016-9375,CVE-2016-9376,CVE-2017-5596,CVE-2017-5597,CVE-2017-6014,CVE-2017-7700,CVE-2017-7701,CVE-2017-7702,CVE-2017-7703,CVE-2017-7704,CVE-2017-7705,CVE-2017-7745,CVE-2017-7746,CVE-2017-7747,CVE-2017-7748
Description:

Wireshark was updated to version 2.2.6, which brings several new features, enhancements
and bug fixes.

Thses security issues were fixed:

- CVE-2017-7700: In Wireshark the NetScaler file parser could go into an infinite loop, triggered by a malformed capture file. This was addressed in wiretap/netscaler.c by ensuring a nonzero record size (bsc#1033936)
- CVE-2017-7701: In Wireshark the BGP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-bgp.c by using a different integer data type (bsc#1033937)
- CVE-2017-7702: In Wireshark the WBXML dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wbxml.c by adding length validation (bsc#1033938)
- CVE-2017-7703: In Wireshark the IMAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-imap.c by calculating a line's end correctly (bsc#1033939)
- CVE-2017-7704: In Wireshark the DOF dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dof.c by using a different integer data type and adjusting a return value (bsc#1033940)
- CVE-2017-7705: In Wireshark the RPC over RDMA dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-rpcrdma.c by correctly checking for going beyond the maximum offset (bsc#1033941)
- CVE-2017-7745: In Wireshark the SIGCOMP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-sigcomp.c by correcting a memory-size check (bsc#1033942)
- CVE-2017-7746: In Wireshark the SLSK dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-slsk.c by adding checks for the remaining length (bsc#1033943)
- CVE-2017-7747: In Wireshark the PacketBB dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-packetbb.c by restricting additions to the protocol tree (bsc#1033944)
- CVE-2017-7748: In Wireshark the WSP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-wsp.c by adding a length check (bsc#1033945)
- CVE-2017-6014: In Wireshark a crafted or malformed STANAG 4607 capture file will cause an infinite loop and memory exhaustion. If the packet size field in a packet header is null, the offset to read from will not advance, causing continuous attempts to read the same zero length packet. This will quickly exhaust all system memory (bsc#1025913)
- CVE-2017-5596: In Wireshark the ASTERIX dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-asterix.c by changing a data type to avoid an integer overflow (bsc#1021739)
- CVE-2017-5597: In Wireshark the DHCPv6 dissector could go into a large loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dhcpv6.c by changing a data type to avoid an integer overflow (bsc#1021739)
- CVE-2016-9376: In Wireshark the OpenFlow dissector could crash with memory exhaustion, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-openflow_v5.c by ensuring that certain length values were sufficiently large (bsc#1010735)
- CVE-2016-9375: In Wireshark the DTN dissector could go into an infinite loop, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-dtn.c by checking whether SDNV evaluation was successful (bsc#1010740)
- CVE-2016-9374: In Wireshark the AllJoyn dissector could crash with a buffer over-read, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-alljoyn.c by ensuring that a length variable properly tracked the state of a signature variable (bsc#1010752)
- CVE-2016-9373: In Wireshark the DCERPC dissector could crash with a use-after-free, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-dcerpc-nt.c and epan/dissectors/packet-dcerpc-spoolss.c by using the wmem file scope for private strings (bsc#1010754)
- CVE-2016-7180: epan/dissectors/packet-ipmi-trace.c in the IPMI trace dissector in Wireshark did not properly consider whether a string is constant, which allowed remote attackers to cause a denial of service (use-after-free and application crash) via a crafted packet (bsc#998800)
- CVE-2016-7179: Stack-based buffer overflow in epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark allowed remote attackers to cause a denial of service (application crash) via a crafted packet (bsc#998963)
- CVE-2016-7178: epan/dissectors/packet-umts_fp.c in the UMTS FP dissector in Wireshark did not ensure that memory is allocated for certain data structures, which allowed remote attackers to cause a denial of service (invalid write access and application crash) via a crafted packet (bsc#998964)
- CVE-2016-7177: epan/dissectors/packet-catapult-dct2000.c in the Catapult DCT2000 dissector in Wireshark did not restrict the number of channels, which allowed remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted packet (bsc#998763)
- CVE-2016-7176: epan/dissectors/packet-h225.c in the H.225 dissector in Wireshark called snprintf with one of its input buffers as the output buffer, which allowed remote attackers to cause a denial of service (copy overlap and application crash) via a crafted packet (bsc#998762)
- CVE-2016-7175: epan/dissectors/packet-qnet6.c in the QNX6 QNET dissector in Wireshark mishandled MAC address data, which allowed remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted packet (bsc#998761)
- CVE-2016-6354: Heap-based buffer overflow in the yy_get_next_buffer function in Flex might have allowed context-dependent attackers to cause a denial of service or possibly execute arbitrary code via vectors involving num_to_read (bsc#990856).


-----------------------------------------
Patch: SUSE-2017-887
Released: Tue May 30 16:18:29 2017
Summary: Recommended update for smt
Severity: low
References: 1026417,944291
Description:

This update for smt provides fixes and enhancements:

- Add single product deactivation endpoint.
- Add info about repositories with errors to summary. (bsc#944291)
- Add an option to exclude optional packages (--exclude-optional or -x).
- Allow 12-digit service request numbers. (bsc#1026417)


-----------------------------------------
Patch: SUSE-2017-891
Released: Tue May 30 22:28:21 2017
Summary: Security update for libxml2
Severity: moderate
References: 1039063,1039064,1039066,1039069,1039661,981114,CVE-2016-1839,CVE-2017-9047,CVE-2017-9048,CVE-2017-9049,CVE-2017-9050
Description:

This update for libxml2 fixes the following issues:

- CVE-2017-9047, CVE-2017-9048: The function xmlSnprintfElementContent in valid.c was vulnerable to a stack buffer overflow (bsc#1039063, bsc#1039064)
- CVE-2017-9049: The function xmlDictComputeFastKey in dict.c was vulnerable to a heap-based buffer over-read. (bsc#1039066)
- CVE-2017-9050: The function xmlDictAddString was vulnerable to a heap-based buffer over-read (bsc#1039661)
- CVE-2016-1839: heap-based buffer overflow (xmlDictAddString func) (bnc#1039069)



-----------------------------------------
Patch: SUSE-2017-901
Released: Wed May 31 16:56:41 2017
Summary: Recommended update for python-xattr, python3-xattr
Severity: low
References: 1033325
Description:

This update for python-xattr and python3-xattr provides the following fix:

- Fix file conflict between python3-xattr and python-xattr (bsc#1033325)



-----------------------------------------
Patch: SUSE-2017-906
Released: Thu Jun  1 13:12:54 2017
Summary: Security update for strongswan
Severity: important
References: 1039514,1039515,985012,CVE-2017-9022,CVE-2017-9023
Description:
This update for strongswan fixes the following issues:

- CVE-2017-9022: Insufficient Input Validation in gmp Plugin leads to Denial of service (bsc#1039514)
- CVE-2017-9023: Incorrect x509 ASN.1 parser error handling could lead to Denial of service  (bsc#1039515)
- IKEv1 protocol is vulnerable to DoS amplification attack (bsc#985012)



-----------------------------------------
Patch: SUSE-2017-908
Released: Fri Jun  2 10:45:00 2017
Summary: Recommended update for plymouth
Severity: low
References: 1000597,1031364,1036172
Description:
This update for plymouth provides the following fix:

- Avoid an issue where the initramfs finishes (generating a coldplug event) before udev
  has informed plymouth of the DRM devices. (bsc#1000597, bsc#1036172, bsc#1031364)


-----------------------------------------
Patch: SUSE-2017-910
Released: Fri Jun  2 15:02:55 2017
Summary: Security update for libnettle
Severity: moderate
References: 991464,CVE-2016-6489
Description:
This update for libnettle fixes the following issues:

-  CVE-2016-6489:
  * Reject invalid RSA keys with even modulo.
  * Check for invalid keys, with even p, in dsa_sign().
  * Use function mpz_powm_sec() instead of mpz_powm() (bsc#991464).


-----------------------------------------
Patch: SUSE-2017-912
Released: Fri Jun  2 15:29:35 2017
Summary: Recommended update for dconf
Severity: low
References: 1025721,971074
Description:

This update for dconf provides the following fix:

-  'dconf update' should set permissions to 0644 on restored missing db files (bsc#1025721, bsc#971074)



-----------------------------------------
Patch: SUSE-2017-916
Released: Mon Jun  5 19:31:35 2017
Summary: Recommended update for vte
Severity: low
References: 1021684
Description:

This update for vte fixes the following issues:

- Memory leaks in gnome-terminal-server (bsc#1021684)



-----------------------------------------
Patch: SUSE-2017-917
Released: Tue Jun  6 12:26:00 2017
Summary: Security update for ImageMagick
Severity: moderate
References: 1028075,1033091,1034870,1034872,1034876,1036976,1036977,1036978,1036980,1036981,1036982,1036983,1036984,1036985,1036986,1036987,1036988,1036989,1036990,1036991,1037527,1038000,1040025,1040303,1040304,1040306,1040332,CVE-2017-6502,CVE-2017-7606,CVE-2017-7941,CVE-2017-7942,CVE-2017-7943,CVE-2017-8343,CVE-2017-8344,CVE-2017-8345,CVE-2017-8346,CVE-2017-8347,CVE-2017-8348,CVE-2017-8349,CVE-2017-8350,CVE-2017-8351,CVE-2017-8352,CVE-2017-8353,CVE-2017-8354,CVE-2017-8355,CVE-2017-8356,CVE-2017-8357,CVE-2017-8765,CVE-2017-8830,CVE-2017-9098,CVE-2017-9141,CVE-2017-9142,CVE-2017-9143,CVE-2017-9144
Description:

This update for ImageMagick fixes the following issues:

Security issues fixed:

- CVE-2017-6502: Possible file-descriptor leak in libmagickcore that could be triggered via a
  specially crafted webp file (bsc#1028075).
- CVE-2017-7943: The ReadSVGImage function in svg.c allowed remote attackers to consume an
  amount of available memory via a crafted file (bsc#1034870). Note that this only impacts the
  built-in SVG implementation. As we use the librsgv implementation, we are not affected.
- CVE-2017-7942: The ReadAVSImage function in avs.c allowed remote attackers to consume an
  amount of available memory via a crafted file (bsc#1034872).
- CVE-2017-7941: The ReadSGIImage function in sgi.c allowed remote attackers to consume an
  amount of available memory via a crafted file (bsc#1034876).
- CVE-2017-8351: ImageMagick, GraphicsMagick: denial of service (memory leak) via a crafted
  file (ReadPCDImage func in pcd.c) (bsc#1036986).
- CVE-2017-8352: denial of service (memory leak) via a crafted file (ReadXWDImage func in
  xwd.c) (bsc#1036987)
- CVE-2017-8349: denial of service (memory leak) via a crafted file (ReadSFWImage func in
  sfw.c) (bsc#1036984)
- CVE-2017-8350: denial of service (memory leak) via a crafted file (ReadJNGImage function in
  png.c) (bsc#1036985)
- CVE-2017-8347: denial of service (memory leak) via a crafted file (ReadEXRImage func in
  exr.c) (bsc#1036982)
- CVE-2017-8348: denial of service (memory leak) via a crafted file (ReadMATImage func in
  mat.c) (bsc#1036983)
- CVE-2017-8345: denial of service (memory leak) via a crafted file (ReadMNGImage func in
  png.c) (bsc#1036980)
- CVE-2017-8346: denial of service (memory leak) via a crafted file (ReadDCMImage func in
  dcm.c) (bsc#1036981)
- CVE-2017-8353: denial of service (memory leak) via a crafted file (ReadPICTImage func in
  pict.c) (bsc#1036988)
- CVE-2017-8354: denial of service (memory leak) via a crafted file (ReadBMPImage func in
  bmp.c) (bsc#1036989)
- CVE-2017-8830: denial of service (memory leak) via a crafted file (ReadBMPImage func in
  bmp.c:1379) (bsc#1038000)
- CVE-2017-7606: denial of service (application crash) or possibly have unspecified other
  impact via a crafted image (bsc#1033091)
- CVE-2017-8765: memory leak vulnerability via a crafted ICON file (ReadICONImage in
  coders\icon.c) (bsc#1037527)
- CVE-2017-8356: denial of service (memory leak) via a crafted file (ReadSUNImage function in
  sun.c) (bsc#1036991)
- CVE-2017-8355: denial of service (memory leak) via a crafted file (ReadMTVImage func in
  mtv.c) (bsc#1036990)
- CVE-2017-8344: denial of service (memory leak) via a crafted file (ReadPCXImage func in
  pcx.c) (bsc#1036978)
- CVE-2017-8343: denial of service (memory leak) via a crafted file (ReadAAIImage func in
  aai.c) (bsc#1036977)
- CVE-2017-8357: denial of service (memory leak) via a crafted file (ReadEPTImage func in
  ept.c) (bsc#1036976)
- CVE-2017-9098: uninitialized memory usage in the  ReadRLEImage RLE decoder 
  function coders/rle.c (bsc#1040025)
- CVE-2017-9141: Missing checks in the ReadDDSImage function in
  coders/dds.c could lead to a denial of service (assertion) (bsc#1040303)
- CVE-2017-9142: Missing checks in theReadOneJNGImage function in
  coders/png.c could lead to denial of service (assertion) (bsc#1040304)
- CVE-2017-9143: A possible denial of service attack via crafted .art
  file in ReadARTImage function in coders/art.c (bsc#1040306)
- CVE-2017-9144: A crafted RLE image can trigger a crash in coders/rle.c
  could lead to a denial of service (crash) (bsc#1040332)


-----------------------------------------
Patch: SUSE-2017-918
Released: Tue Jun  6 12:35:44 2017
Summary: Recommended update for libsemanage, selinux-policy
Severity: moderate
References: 1020143,1032445,1035818,1038189
Description:

This update for libsemanage, selinux-policy fixes the following issues:

- Limit to policy version 29 by default.
- Fix policy module build failures and wrong policy path on SLE 12 SP2 (bsc#1038189, bsc#1035818, bsc#1020143, bsc#1032445)


-----------------------------------------
Patch: SUSE-2017-923
Released: Thu Jun  8 11:59:55 2017
Summary: Recommended update for gnome-settings-daemon
Severity: low
References: 1000599
Description:

This update for gnome-settings-daemon provides the following fix:

- Fix some keybindings become unavailable (bsc#1000599)



-----------------------------------------
Patch: SUSE-2017-925
Released: Thu Jun  8 12:58:42 2017
Summary: Recommended update for freetype2
Severity: low
References: 1038506
Description:

This update for freetype2 fixes an issue within handling of very large fonts which
could lead to corrupted characters in the boot splash screen of systems configured
to use the Korean language.


-----------------------------------------
Patch: SUSE-2017-929
Released: Thu Jun  8 14:51:19 2017
Summary: Recommended update for file-roller
Severity: low
References: 1022082
Description:

This update for file-roller provides the following fixes:

- Fix segmentation fault after extracting a file. (bsc#1022082)
- Fix integer overflow when comparing large files/directories.
- Show the 'open destination' dialog only when using --notify.


-----------------------------------------
Patch: SUSE-2017-931
Released: Fri Jun  9 12:04:45 2017
Summary: Recommended update for cups-pk-helper
Severity: low
References: 1033742
Description:

This update for cups-pk-helper adds support for handling printers names containing UTF-8 characters.


-----------------------------------------
Patch: SUSE-2017-932
Released: Fri Jun  9 12:06:09 2017
Summary: Recommended update for gnome-control-center
Severity: low
References: 1037234,890385,993381
Description:

This update for gnome-control-center brings back the 'shutdown' and 'interactive'
power key actions in 'Power' panel.

Additionally, the total disc size of btrfs sub-volumes is now displayed correctly
in the information panel.


-----------------------------------------
Patch: SUSE-2017-933
Released: Fri Jun  9 12:42:59 2017
Summary: Recommended update for gnome-system-monitor, libgtop
Severity: low
References: 1020294
Description:

This update for gnome-system-monitor and libgtop provides the following fixes:

- Add a scrollbar to the resources tab. (bsc#1020294)
- Dynamically allocate memory for buffer when reading /proc/cpuinfo. (bsc#1020294)


-----------------------------------------
Patch: SUSE-2017-934
Released: Fri Jun  9 12:43:25 2017
Summary: Recommended update for nss_ldap
Severity: low
References: 986858
Description:

This update for nss_ldap fixes a buffer management issue between glibc and LDAP.


-----------------------------------------
Patch: SUSE-2017-935
Released: Fri Jun  9 12:43:54 2017
Summary: Recommended update for libqca2
Severity: low
References: 995723
Description:

This update for libqca2 provides the following fix:

- Allow md5 in FIPS mode (bsc#995723)


-----------------------------------------
Patch: SUSE-2017-937
Released: Fri Jun  9 16:55:33 2017
Summary: Recommended update for vncmanager
Severity: low
References: 1037192
Description:

This update for vncmanager provides the following fix:

- Prevent an exception from single client terminating the whole server (bsc#1037192)


-----------------------------------------
Patch: SUSE-2017-939
Released: Mon Jun 12 10:56:22 2017
Summary: Security update for libxml2
Severity: moderate
References: 1039063,1039064,1039066,1039069,1039661,CVE-2017-9047,CVE-2017-9048,CVE-2017-9049,CVE-2017-9050
Description:
This update for libxml2 fixes the following security issues:

* CVE-2017-9050: A heap-based buffer over-read in xmlDictAddString (bsc#1039069, bsc#1039661)
* CVE-2017-9049: A heap-based buffer overflow in xmlDictComputeFastKey (bsc#1039066)
* CVE-2017-9048: A stack overflow vulnerability in xmlSnprintfElementContent (bsc#1039063)
* CVE-2017-9047: A stack overflow vulnerability in xmlSnprintfElementContent (bsc#1039064)


-----------------------------------------
Patch: SUSE-2017-943
Released: Mon Jun 12 16:44:20 2017
Summary: Recommended update for cups
Severity: low
References: 1021133,955432,990045
Description:

This update for cups fixes the following issues:

- Avahi sends an ALL_FOR_NOW event when it finishes sending its cache contents.
  This patch makes cupsEnumDests finish when the signal is received so it doesn't
  block the caller until the timeout finishes. (bsc#955432, fate#322052)
- The scheduler didn't log messages for jobs at LogLevel 'info'. (bsc#1021133, bsc#990045)


-----------------------------------------
Patch: SUSE-2017-957
Released: Wed Jun 14 12:19:21 2017
Summary: Recommended update for upower
Severity: low
References: 985741
Description:

This update for upower provides the following fixes:

- Set the system per default to hibernate, not hybridsleep. If the battery is going
  to be empty soon, there is no reason any longer to attempt to HybridSleep, which
  quite some hardware seems to get wrong. Simply hibernate, get the data on the disk
  and switch off. (bsc#985741)


-----------------------------------------
Patch: SUSE-2017-959
Released: Wed Jun 14 14:38:11 2017
Summary: Recommended update for gcc5
Severity: low
References: 1043580
Description:

This update for gcc5 fixes the version of libffi in its pkg-config configuration file.


-----------------------------------------
Patch: SUSE-2017-961
Released: Wed Jun 14 15:07:14 2017
Summary: Recommended update for colord
Severity: low
References: 1024933
Description:

This update for colord fixes its Apparmor profile (usr.lib.colord) to allow reading
from and writing to /var/lib/colord/.cache.
  

-----------------------------------------
Patch: SUSE-2017-962
Released: Wed Jun 14 16:33:07 2017
Summary: Security update for openldap2
Severity: moderate
References: 1009470,1037396,1041764,972331,CVE-2017-9287
Description:

This update for openldap2 fixes the following issues:

Security issues fixed:

- CVE-2017-9287: A double free vulnerability in the mdb backend during search with page size 0 was fixed (bsc#1041764)

Non security bugs fixed:

- Let OpenLDAP read system-wide certificates by default and don't hide the error if
  the user-specified CA location cannot be read. (bsc#1009470)
- Fix an uninitialised variable that causes startup failure (bsc#1037396)
- Fix an issue with transaction management that can cause server crash (bsc#972331)



-----------------------------------------
Patch: SUSE-2017-964
Released: Thu Jun 15 14:07:32 2017
Summary: Recommended update for dump
Severity: low
References: 1034032
Description:

This update for dump fixes handling of files with leading zeros.


-----------------------------------------
Patch: SUSE-2017-966
Released: Fri Jun 16 08:46:40 2017
Summary: Security update for libmicrohttpd
Severity: moderate
References: 1041216,854443,CVE-2013-7038,CVE-2013-7039
Description:

This update for libmicrohttpd fixes the following issues:

- CVE-2013-7038: The MHD_http_unescape function in libmicrohttpd might
  have allowed remote attackers to obtain sensitive information or cause
  a denial of service (crash) via unspecified vectors that trigger an
  out-of-bounds read. (bsc#854443)
- CVE-2013-7039: Stack-based buffer overflow in the MHD_digest_auth_check
  function in libmicrohttpd, when MHD_OPTION_CONNECTION_MEMORY_LIMIT is
  set to a large value, allowed remote attackers to cause a denial of
  service (crash) or possibly execute arbitrary code via a long URI in an
  authentication header. (bsc#854443)

- Fixed various bugs found during a 2017 audit, which are more hardening
  measures and not security issues. (bsc#1041216)



-----------------------------------------
Patch: SUSE-2017-970
Released: Fri Jun 16 13:36:38 2017
Summary: Recommended update for ibus-pinyin
Severity: low
References: 980890
Description:

This update for ibus-pinyin fixes the following issues:

- Forbidden selected words cleared by ibus-pinyin in Firefox. (bsc#980890)


-----------------------------------------
Patch: SUSE-2017-980
Released: Mon Jun 19 10:38:55 2017
Summary: Security update for netpbm
Severity: moderate
References: 1024287,1024292,1024294,CVE-2017-2581,CVE-2017-2586,CVE-2017-2587
Description:
This update for netpbm fixes the following issues:

Security bugs:
* CVE-2017-2586: A NULL pointer dereference in stringToUint function could lead to a denial of service (abort) problem when processing malformed images. [bsc#1024292]
* CVE-2017-2581: A out-of-bounds write in writeRasterPbm() could be used by attackers to crash the decoder or potentially execute code. [bsc#1024287]
* CVE-2017-2587: A insufficient size check of memory allocation in createCanvas() function could be used for a denial of service attack (memory exhaustion) [bsc#1024294]


-----------------------------------------
Patch: SUSE-2017-985
Released: Mon Jun 19 14:57:41 2017
Summary: Security update for libgcrypt
Severity: moderate
References: 1042326,931932,CVE-2017-9526
Description:
This update for libgcrypt fixes the following issues:

- CVE-2017-9526: Store the session key in secure memory to ensure that constant
  time point operations are used in the MPI library.  (bsc#1042326)

- Don't require secure memory for the fips selftests, this prevents the
  'Oops, secure memory pool already initialized' warning. (bsc#931932)


-----------------------------------------
Patch: SUSE-2017-998
Released: Tue Jun 20 08:39:32 2017
Summary: Security update for openvpn
Severity: important
References: 1038709,1038711,1038713,995374,CVE-2016-6329,CVE-2017-7478,CVE-2017-7479
Description:
This update for openvpn fixes the following issues:

- CVE-2016-6329: Show which ciphers should no longer be used in openvpn --show-ciphers (bsc#995374)
- CVE-2017-7478: openvpn: Authenticated user can DoS server by using a big payload in P_CONTROL (bsc#1038709)
- CVE-2017-7479: openvpn: Denial of Service due to Exhaustion of Packet-ID counter (bsc#1038711)
- Hardening measures found by internal audit (bsc#1038713)




-----------------------------------------
Patch: SUSE-2017-1011
Released: Wed Jun 21 13:51:33 2017
Summary: Security update for openvpn
Severity: important
References: 1044947,CVE-2017-7508,CVE-2017-7520,CVE-2017-7521
Description:
This update for openvpn fixes the following issues:

- Some parts of the certificate-parsing code did not always clear all allocated
  memory. This would have allowed clients to leak a few bytes of memory for
  each connection attempt, thereby facilitating a (quite inefficient) DoS
  attack on the server. [bsc#1044947, CVE-2017-7521]

- The ASN1 parsing code contained a bug that could have resulted in some
  buffers being free()d twice, and this issue could have potentially been
  triggered remotely by a VPN peer. [bsc#1044947, CVE-2017-7521]

- If clients used a HTTP proxy with NTLM authentication, a man-in-the-middle
  attacker between client and proxy could cause the client to crash or disclose
  at most 96 bytes of stack memory. The disclosed stack memory was likely to
  contain the proxy password. If the proxy password had not been reused, this
  was unlikely to compromise the security of the OpenVPN tunnel itself. Clients
  who did not use the --http-proxy option with ntlm2 authentication were not
  affected. [bsc#1044947, CVE-2017-7520]

- It was possible to trigger an assertion by sending a malformed IPv6 packet.
  That issue could have been abused to remotely shutdown an openvpn server or
  client, if IPv6 and --mssfix were enabled and if the IPv6 networks used
  inside the VPN were known. [bsc#1044947, CVE-2017-7508]


-----------------------------------------
Patch: SUSE-2017-1013
Released: Wed Jun 21 14:10:23 2017
Summary: Recommended update for biosdevname
Severity: low
References: 1042187
Description:

This update for biosdevname provides the following fixes:

- Do not rename non-Ethernet network interfaces. (bsc#1042187)


-----------------------------------------
Patch: SUSE-2017-1016
Released: Wed Jun 21 14:33:10 2017
Summary: Recommended update for sblim-sfcb
Severity: low
References: 1041885
Description:

This update for sblim-sfcb provides the following fixes:

- Create clist.pem as a symbolic link to already existing server.pem if it does not exist.
  This is needed for upgrades from SLE 11-SP4 versions that did not use this certificate.
- Re-introduce symbolic link for legacy cmpi-provider-register for upgrades from SLE 11.


-----------------------------------------
Patch: SUSE-2017-1031
Released: Fri Jun 23 15:01:48 2017
Summary: Security update for wireshark
Severity: moderate
References: 1042298,1042299,1042300,1042301,1042302,1042303,1042304,1042305,1042306,1042307,1042308,1042309,CVE-2017-9343,CVE-2017-9344,CVE-2017-9345,CVE-2017-9346,CVE-2017-9347,CVE-2017-9348,CVE-2017-9349,CVE-2017-9350,CVE-2017-9351,CVE-2017-9352,CVE-2017-9353,CVE-2017-9354
Description:
The network debugging tool wireshark was updated to version 2.2.7 to fix the following issues:

- CVE-2017-9352: Bazaar dissector infinite loop (wnpa-sec-2017-22) (bsc#1042304)
- CVE-2017-9348: DOF dissector read overflow (wnpa-sec-2017-23) (bsc#1042303)
- CVE-2017-9351: DHCP dissector read overflow (wnpa-sec-2017-24) (bsc#1042302)
- CVE-2017-9346: SoulSeek dissector infinite loop (wnpa-sec-2017-25) (bsc#1042301)
- CVE-2017-9345: DNS dissector infinite loop (wnpa-sec-2017-26) (bsc#1042300)
- CVE-2017-9349: DICOM dissector infinite loop (wnpa-sec-2017-27) (bsc#1042305)
- CVE-2017-9350: openSAFETY dissector memory exh.. (wnpa-sec-2017-28) (bsc#1042299)
- CVE-2017-9344: BT L2CAP dissector divide by zero (wnpa-sec-2017-29) (bsc#1042298)
- CVE-2017-9343: MSNIP dissector crash (wnpa-sec-2017-30) (bsc#1042309)
- CVE-2017-9347: ROS dissector crash (wnpa-sec-2017-31) (bsc#1042308)
- CVE-2017-9354: RGMP dissector crash (wnpa-sec-2017-32) (bsc#1042307)
- CVE-2017-9353: wireshark: IPv6 dissector crash (wnpa-sec-2017-33) (bsc#1042306)


-----------------------------------------
Patch: SUSE-2017-1034
Released: Mon Jun 26 08:09:55 2017
Summary: Security update for cairo
Severity: moderate
References: 1007255,1036789,CVE-2016-9082,CVE-2017-7475
Description:
This update for cairo fixes the following issues:

- CVE-2017-7475: Fixed a segfault in get_bitmap_surface due to malformed font
  (bsc#1036789).
- CVE-2016-9082: fix a segfault when using >4GB images since int values were used
  for pointer operations (bsc#1007255).



-----------------------------------------
Patch: SUSE-2017-1035
Released: Mon Jun 26 08:11:23 2017
Summary: Security update for MozillaFirefox, MozillaFirefox-branding-SLE
Severity: important
References: 1035082,1043960,CVE-2016-10196,CVE-2017-5429,CVE-2017-5430,CVE-2017-5432,CVE-2017-5433,CVE-2017-5434,CVE-2017-5435,CVE-2017-5436,CVE-2017-5438,CVE-2017-5439,CVE-2017-5440,CVE-2017-5441,CVE-2017-5442,CVE-2017-5443,CVE-2017-5444,CVE-2017-5445,CVE-2017-5446,CVE-2017-5447,CVE-2017-5448,CVE-2017-5449,CVE-2017-5451,CVE-2017-5454,CVE-2017-5455,CVE-2017-5456,CVE-2017-5459,CVE-2017-5460,CVE-2017-5461,CVE-2017-5462,CVE-2017-5464,CVE-2017-5465,CVE-2017-5466,CVE-2017-5467,CVE-2017-5469,CVE-2017-5470,CVE-2017-5472,CVE-2017-7749,CVE-2017-7750,CVE-2017-7751,CVE-2017-7752,CVE-2017-7754,CVE-2017-7755,CVE-2017-7756,CVE-2017-7757,CVE-2017-7758,CVE-2017-7761,CVE-2017-7763,CVE-2017-7764,CVE-2017-7765,CVE-2017-7768,CVE-2017-7778
Description:
The MozillaFirefox was updated to the new ESR 52.2 release, which fixes the following issues (bsc#1043960):

* MFSA 2017-16/CVE-2017-7758
  Out-of-bounds read in Opus encoder
* MFSA 2017-16/CVE-2017-7749
  Use-after-free during docshell reloading
* MFSA 2017-16/CVE-2017-7751
  Use-after-free with content viewer listeners
* MFSA 2017-16/CVE-2017-5472
  Use-after-free using destroyed node when regenerating trees
* MFSA 2017-16/CVE-2017-5470
  Memory safety bugs fixed in Firefox 54 and Firefox ESR 52.2
* MFSA 2017-16/CVE-2017-7752
  Use-after-free with IME input
* MFSA 2017-16/CVE-2017-7750
  Use-after-free with track elements
* MFSA 2017-16/CVE-2017-7768
  32 byte arbitrary file read through Mozilla Maintenance
  Service
* MFSA 2017-16/CVE-2017-7778
  Vulnerabilities in the Graphite 2 library
* MFSA 2017-16/CVE-2017-7754
  Out-of-bounds read in WebGL with ImageInfo object
* MFSA 2017-16/CVE-2017-7755
  Privilege escalation through Firefox Installer with same
  directory DLL files
* MFSA 2017-16/CVE-2017-7756
  Use-after-free and use-after-scope logging XHR header errors
* MFSA 2017-16/CVE-2017-7757
  Use-after-free in IndexedDB
* MFSA 2017-16/CVE-2017-7761
  File deletion and privilege escalation through Mozilla
  Maintenance Service helper.exe application
* MFSA 2017-16/CVE-2017-7763
  Mac fonts render some unicode characters as spaces
* MFSA 2017-16/CVE-2017-7765
  Mark of the Web bypass when saving executable files
* MFSA 2017-16/CVE-2017-7764
  (bmo#1364283, bmo#http://www.unicode.org/reports/tr31/tr31-26
   .html#Aspirational_Use_Scripts)
  Domain spoofing with combination of Canadian Syllabics and
  other unicode blocks

- update to Firefox ESR 52.1 (bsc#1035082)
* MFSA 2017-12/CVE-2016-10196
  Vulnerabilities in Libevent library
* MFSA 2017-12/CVE-2017-5443
  Out-of-bounds write during BinHex decoding
* MFSA 2017-12/CVE-2017-5429
  Memory safety bugs fixed in Firefox 53, Firefox ESR 45.9, and
  Firefox ESR 52.1
* MFSA 2017-12/CVE-2017-5464
  Memory corruption with accessibility and DOM manipulation
* MFSA 2017-12/CVE-2017-5465
  Out-of-bounds read in ConvolvePixel
* MFSA 2017-12/CVE-2017-5466
  Origin confusion when reloading isolated data:text/html URL
* MFSA 2017-12/CVE-2017-5467
  Memory corruption when drawing Skia content
* MFSA 2017-12/CVE-2017-5460
  Use-after-free in frame selection
* MFSA 2017-12/CVE-2017-5461
  Out-of-bounds write in Base64 encoding in NSS
* MFSA 2017-12/CVE-2017-5448
  Out-of-bounds write in ClearKeyDecryptor
* MFSA 2017-12/CVE-2017-5449
  Crash during bidirectional unicode manipulation with
  animation
* MFSA 2017-12/CVE-2017-5446
  Out-of-bounds read when HTTP/2 DATA frames are sent with
  incorrect data
* MFSA 2017-12/CVE-2017-5447
  Out-of-bounds read during glyph processing
* MFSA 2017-12/CVE-2017-5444
  Buffer overflow while parsing application/http-index-format
  content
* MFSA 2017-12/CVE-2017-5445
  Uninitialized values used while parsing application/http-
  index-format content
* MFSA 2017-12/CVE-2017-5442
  Use-after-free during style changes
* MFSA 2017-12/CVE-2017-5469
  Potential Buffer overflow in flex-generated code
* MFSA 2017-12/CVE-2017-5440
  Use-after-free in txExecutionState destructor during XSLT
  processing
* MFSA 2017-12/CVE-2017-5441
  Use-after-free with selection during scroll events
* MFSA 2017-12/CVE-2017-5439
  Use-after-free in nsTArray Length() during XSLT processing
* MFSA 2017-12/CVE-2017-5438
  Use-after-free in nsAutoPtr during XSLT processing
* MFSA 2017-12/CVE-2017-5436
  Out-of-bounds write with malicious font in Graphite 2
* MFSA 2017-12/CVE-2017-5435
  Use-after-free during transaction processing in the editor
* MFSA 2017-12/CVE-2017-5434
  Use-after-free during focus handling
* MFSA 2017-12/CVE-2017-5433
  Use-after-free in SMIL animation functions
* MFSA 2017-12/CVE-2017-5432
  Use-after-free in text input selection
* MFSA 2017-12/CVE-2017-5430
  Memory safety bugs fixed in Firefox 53 and Firefox ESR 52.1
* MFSA 2017-12/CVE-2017-5459
  Buffer overflow in WebGL
* MFSA 2017-12/CVE-2017-5462
  DRBG flaw in NSS
* MFSA 2017-12/CVE-2017-5455
  Sandbox escape through internal feed reader APIs
* MFSA 2017-12/CVE-2017-5454
  Sandbox escape allowing file system read access through file
  picker
* MFSA 2017-12/CVE-2017-5456
  Sandbox escape allowing local file system access
* MFSA 2017-12/CVE-2017-5451
  Addressbar spoofing with onblur event



-----------------------------------------
Patch: SUSE-2017-1036
Released: Mon Jun 26 08:12:24 2017
Summary: Security update for libxml2
Severity: moderate
References: 1024989,1044337,CVE-2017-0663,CVE-2017-5969
Description:
This update for libxml2 fixes the following issues:

Security issues fixed:

* CVE-2017-0663: Fixed a heap buffer overflow in xmlAddID (bsc#1044337)
* CVE-2017-5969: Fixed a NULL pointer deref in xmlDumpElementContent (bsc#1024989)


-----------------------------------------
Patch: SUSE-2017-1040
Released: Mon Jun 26 13:22:26 2017
Summary: Recommended update for libsemanage, policycoreutils
Severity: low
References: 1043237
Description:
This update for libsemanage, policycoreutils fixes the following issue:

- Show version numbers of modules where they are available (bsc#1043237) 


-----------------------------------------
Patch: SUSE-2017-1042
Released: Mon Jun 26 13:23:40 2017
Summary: Optional update for postgresql96
Severity: low
References: 1038474
Description:

This update delivers PostgreSQL 9.6.3 to the SUSE Linux Enterprise 12 codebase.

Major enhancements in PostgreSQL 9.6 include:

- Parallel execution of sequential scans, joins and aggregates
- Avoid scanning pages unnecessarily during vacuum freeze operations
- Synchronous replication now allows multiple standby servers for increased reliability
- Full-text search can now search for phrases (multiple adjacent words)
- postgres_fdw now supports remote joins, sorts, UPDATEs, and DELETEs
- Substantial performance improvements, especially in the area of scalability on multi-CPU-socket
  servers.

Version 9.6 contains a number of changes that may affect compatibility with previous releases.
Please refer to https://www.postgresql.org/docs/9.6/static/release-9-6.html for a comprehensive
list of changes.

The existing client libraries libecpg6 and libpq5 are now taken from the postgresql96 build instead
of the postgresql94 build.


-----------------------------------------
Patch: SUSE-2017-1059
Released: Wed Jun 28 12:10:52 2017
Summary: Recommended update for apache-commons-daemon
Severity: low
References: 716139
Description:

This update for apache-commons-daemon provides the following fix:

- Corrected error creating and using temporary files (bsc#716139)


-----------------------------------------
Patch: SUSE-2017-1062
Released: Wed Jun 28 21:14:17 2017
Summary: Security update for apache2
Severity: moderate
References: 1035829,1041830,1045060,1045062,1045065,CVE-2017-3167,CVE-2017-3169,CVE-2017-7679
Description:

This update for apache2 provides the following fixes:

Security issues fixed:

- CVE-2017-3167: In Apache use of httpd ap_get_basic_auth_pw() outside
  of the authentication phase could lead to authentication requirements
  bypass (bsc#1045065)
- CVE-2017-3169: In mod_ssl may have a dereference NULL pointer issue
  which could lead to denial of service (bsc#1045062)
- CVE-2017-7679: In mod_mime can buffer over-read by 1 byte, potentially
  leading to a crash or information disclosure (bsc#1045060)

Non-Security issues fixed:

- Remove /usr/bin/http2 symlink only during apache2 package uninstall, not upgrade. (bsc#1041830)
- In gensslcert, use hostname when fqdn is too long. (bsc#1035829)



-----------------------------------------
Patch: SUSE-2017-1063
Released: Wed Jun 28 21:15:03 2017
Summary: Security update for vim
Severity: moderate
References: 1018870,1024724,1027053,1027057,CVE-2017-5953,CVE-2017-6349,CVE-2017-6350
Description:

This update for vim fixes the following issues:

Security issues fixed:

- CVE-2017-5953: Fixed a possible overflow with corrupted spell file (bsc#1024724)
- CVE-2017-6350: Fixed a possible overflow when reading a corrupted undo file (bsc#1027053)
- CVE-2017-6349: Fixed a possible overflow when reading a corrupted undo file (bsc#1027057)


Non security issues fixed:

- Speed up YAML syntax highlighting (bsc#1018870)



-----------------------------------------
Patch: SUSE-2017-1064
Released: Wed Jun 28 21:59:19 2017
Summary: Recommended update for dovecot22
Severity: moderate
References: 1044110
Description:

This update provides Dovecot 2.2.30.2, which brings many fixes and enhancements:

- Multiple failed authentications within short time caused crashes.
- Use timing safe comparisons for everything related to passwords.
- Master process now sends SIGQUIT to all running children at shutdown, which instructs
  them to close all the socket listeners immediately. Restarting Dovecot should no longer
  fail due to some processes keeping the listeners open for a long time.
- Add passdb { mechanisms=none } to match separate passdb lookup.
- Add passdb { username_filter } to use passdb only if user matches the filter.
- Add dsync_commit_msgs_interval setting. It attempts to commit the transaction after
  saving this many new messages.
- Support imapc_features=search without ESEARCH extension.
- Add imapc_features=fetch-bodystructure to pass through remote server's FETCH BODY and
  BODYSTRUCTURE.
- Add quota=imapc backend to use GETQUOTA/GETQUOTAROOT on the remote server.
- Add allow_invalid_cert and ssl_ca_file parameters.
- If dovecot.index.cache corruption is detected, reset only the one corrupted mail instead
  of the whole file.
- Add 'firstsaved' field to doveadm mailbox status.
- Add old host's up/down and vhost count as parameters to director_flush_socket.
- More fixes to automatically fix corruption in dovecot.list.index.
- Fix support for dsync_features=empty-header-workaround.
- IMAP NOTIFY wasn't working for non-INBOX if IMAP client hadn't enabled modseq tracking
  via CONDSTORE/QRESYNC.
- Fix fts-lucene it to work again with mbox format.
- Some internal error messages may have contained garbage in v2.2.29.
- Re-encrypt when copying/moving mails and per-mailbox keys are used, otherwise the copied
  mails can't be opened.


-----------------------------------------
Patch: SUSE-2017-1075
Released: Thu Jun 29 18:18:50 2017
Summary: Recommended update for python-PyYAML
Severity: low
References: 1002895
Description:

This update for python-PyYAML fixes the following issues:

- Adding an implicit resolver to a derived loader should not affect the base loader.
- Uniform representation for OrderedDict? across different versions of Python.
- Fixed comparison to None warning.


-----------------------------------------
Patch: SUSE-2017-1082
Released: Fri Jun 30 10:54:06 2017
Summary: Recommended update for dirmngr
Severity: low
References: 1045943
Description:
This update for dirmngr provides the following fix:

- Change logrotate from Requires to Recommends (bsc#1045943)


-----------------------------------------
Patch: SUSE-2017-1083
Released: Fri Jun 30 10:54:41 2017
Summary: Recommended update for OpenIPMI
Severity: low
References: 1046174
Description:
This update for OpenIPMI provides the following fix:

- Fix pthread requirements in OpenIPMIpthread pkg-config settings. (bsc#1046174)


-----------------------------------------
Patch: SUSE-2017-1085
Released: Fri Jun 30 15:35:20 2017
Summary: Security update for unrar
Severity: important
References: 1045315,CVE-2012-6706
Description:
This update for unrar fixes the following issues:

- CVE-2012-6706: decoding malicious RAR files could have lead to memory corruption or code execution. (bsc#1045315).


-----------------------------------------
Patch: SUSE-2017-1086
Released: Fri Jun 30 15:36:17 2017
Summary: Security update for libxml2
Severity: moderate
References: 1044887,1044894,CVE-2017-7375,CVE-2017-7376
Description:
This update for libxml2 fixes the following issues:

Security issues fixed:

* CVE-2017-7376: Increase buffer space for port in HTTP redirect support (bsc#1044887)
* CVE-2017-7375: Prevent unwanted external entity reference [bsc#1044894, ]



-----------------------------------------
Patch: SUSE-2017-1092
Released: Mon Jul  3 14:57:29 2017
Summary: Recommended update for ibus
Severity: low
References: 1036729
Description:
This update for ibus provides the following fix:

- Disable load preload-engines actions which may cause CJK user login failed (bsc#1036729)

-----------------------------------------
Patch: SUSE-2017-1093
Released: Mon Jul  3 15:37:11 2017
Summary: Recommended update for smt
Severity: moderate
References: 1030677,1038363
Description:

This update for smt provides the following fixes:

- Add caching of SCCcredentials on start-up. (bsc#1030677)
- Fix backlog write issue. (bsc#1038363)


-----------------------------------------
Patch: SUSE-2017-1094
Released: Mon Jul  3 16:54:33 2017
Summary: Recommended update for biosdevname
Severity: low
References: 1042185
Description:
This update for biosdevname fixes the following issues:

- Duplicate naming of SRIOV VFs by biosdevname when VPD_DCM Strings are present in VFs (bsc#1042185)


-----------------------------------------
Patch: SUSE-2017-1107
Released: Tue Jul  4 16:41:52 2017
Summary: Security update for libquicktime
Severity: moderate
References: 1044000,1044002,1044006,1044008,1044009,1044077,1044122,CVE-2017-9122,CVE-2017-9123,CVE-2017-9124,CVE-2017-9125,CVE-2017-9126,CVE-2017-9127,CVE-2017-9128
Description:
This update for libquicktime fixes the following issues:

* CVE-2017-9122: A DoS in quicktime_read_moov function in moov.c via acrafted mp4 file was fixed. (bsc#1044077)
* CVE-2017-9123: An invalid memory read in lqt_frame_duration via a crafted mp4 file was fixed. (bsc#1044009)
* CVE-2017-9124: A NULL pointer dereference in quicktime_match_32 via a crafted mp4 file was fixed. (bsc#1044008)
* CVE-2017-9125: A DoS in lqt_frame_duration function in lqt_quicktime.c via crafted mp4 file was fixed. (bsc#1044122)
* CVE-2017-9126: A heap-based buffer overflow in quicktime_read_dref_table via a crafted mp4 file was fixed. (bsc#1044006)
* CVE-2017-9127: A heap-based buffer overflow in quicktime_user_atoms_read_atom via a crafted mp4 file was fixed. (bsc#1044002)
* CVE-2017-9128: A heap-based buffer over-read in quicktime_video_width via a crafted mp4 file was fixed. (bsc#1044000)


-----------------------------------------
Patch: SUSE-2017-1110
Released: Wed Jul  5 21:02:12 2017
Summary: Recommended update for emacs
Severity: low
References: 1032759,1035645,1044093
Description:

This update for emacs provides the following fixes:

- Fix emacs cannot use X fonts (bsc#1044093)
- Allow to scroll even if keyboard is used (bsc#1035645) 
- Use socket activation to get dbus up before starting emacs 
- Fix emacs.sh wrapper script to check modern dbus session (bsc#1032759)


-----------------------------------------
Patch: SUSE-2017-1116
Released: Thu Jul  6 11:37:18 2017
Summary: Security update for libgcrypt
Severity: moderate
References: 1046607,CVE-2017-7526
Description:
This update for libgcrypt fixes the following issues:

- CVE-2017-7526: Hardening against a local side-channel attack in RSA key handling has been added (bsc#1046607)


-----------------------------------------
Patch: SUSE-2017-1117
Released: Thu Jul  6 11:39:09 2017
Summary: Security update for libcares2
Severity: moderate
References: 1044946,CVE-2017-1000381
Description:
This update for libcares2 fixes the following issues:

- CVE-2017-1000381: A NAPTR parser out of bounds access was fixed that could lead to crashes. (bsc#1044946)


-----------------------------------------
Patch: SUSE-2017-1119
Released: Fri Jul  7 11:23:20 2017
Summary: Recommended update for ncurses
Severity: important
References: 1000662,1046853,1046858,CVE-2017-10684,CVE-2017-10685
Description:
This update for ncurses fixes the following issues:

Security issues fixed:
- CVE-2017-10684: Possible RCE via stack-based buffer overflow in the fmt_entry function. (bsc#1046858)
- CVE-2017-10685: Possible RCE with format string vulnerability in the fmt_entry function. (bsc#1046853)

Bugfixes:
- Drop patch ncurses-5.9-environment.dif as YaST2 ncurses GUI does
  not need it anymore and as well as it causes bug bsc#1000662 


-----------------------------------------
Patch: SUSE-2017-1124
Released: Fri Jul  7 19:32:38 2017
Summary: Recommended update for binutils
Severity: moderate
References: 1031508
Description:

This update for binutils fixes an issue that prevented ld(1) from correctly linking
the 32 bit version of libclntshcore.so.12.1 from the Oracle 12 Client.


-----------------------------------------
Patch: SUSE-2017-1134
Released: Tue Jul 11 17:56:26 2017
Summary: Security update for libICE
Severity: moderate
References: 1025068,CVE-2017-2626
Description:
This update for libICE fixes the following issues:

- CVE-2017-2626: Creation of the ICE auth session cookies used insufficient randomness, making these cookies
  predictable. A more random generation method has been implemented. (boo#1025068)



-----------------------------------------
Patch: SUSE-2017-1142
Released: Wed Jul 12 15:48:23 2017
Summary: Recommended update for openssh
Severity: moderate
References: 1016709,1017099,1023275,1024251
Description:

This update for openssh provides the following fixes:

- Enable specific ioctl calls for ICA crypto card on the zSeries platform. Without this patch,
  users using the IBMCA engine are not able to perform ssh login as the filter blocks the
  communication with the crypto card. (bsc#1016709)
- Enable case-insensitive hostname matching. (bsc#1017099)
- Add a new switch for printing diagnostic messages in sftp client's batch mode. (bsc#1023275)
- Better fix for core dumps from auditing code when trying to bind to an unavailable port. (bsc#1024251)
- Remove the limit on the amount of tasks sshd can run.


-----------------------------------------
Patch: SUSE-2017-1153
Released: Fri Jul 14 12:37:10 2017
Summary: Security update for libXdmcp
Severity: moderate
References: 1025046,CVE-2017-2625
Description:
This update for libXdmcp fixes the following issues:

- CVE-2017-2625: The generation of session key in XDM using libXdmcp might have used weak entropy, making
  the session keys predictable (bsc#1025046)



-----------------------------------------
Patch: SUSE-2017-1160
Released: Fri Jul 14 17:20:26 2017
Summary: Recommended update for openldap2
Severity: low
References: 1031702
Description:
This update for openldap2 provides the following fix:
- Fix a regression in handling of non-blocking connection (bsc#1031702)


-----------------------------------------
Patch: SUSE-2017-1164
Released: Mon Jul 17 16:09:35 2017
Summary: Recommended update for gnome-packagekit
Severity: low
References: 1036542,988167
Description:
This update for gnome-packagekit provides the following fixes:

- Fix gpk-update-viewer not responding after installing all available updates (bsc#1036542)
- Fix logout button not working when relogin is needed (bsc#988167)


-----------------------------------------
Patch: SUSE-2017-1165
Released: Tue Jul 18 12:27:07 2017
Summary: Recommended update for usb_modeswitch
Severity: low
References: 1034996,899013,903753
Description:

This update provides usb_modeswitch 2.2.5, which brings several fixes and enhancements:

- Fixed bug in configuration check, possibly leading to segmentation fault
- Fixed Pantech commandline parameter evaluation
- Added driver unbind step via sysfs in wrapper
- Fixed buggy check of USB configuration selection
- Fixed compatibility problem with systemd version 221
- Added catch for libusb init error
- Added catch for USB configuration read error
- Fixed wrapper script where port search for symlinking modem port was broken
- Changed PantechMode parameter to represent different targets
- Added global config option to disable MBIM checking and setting altogether
- Changed systemd template unit parameter to avoid escaping problems
- Update the data package to version 20150627
- Fixed unreliable switching function for Cisco AM10
- Introduction of parameter 'HuaweiNewMode', wrapping the standard bulk message
  for all newer Huawei devices.


-----------------------------------------
Patch: SUSE-2017-1166
Released: Tue Jul 18 12:27:32 2017
Summary: Optional update for libkcapi
Severity: low
References: 1045948
Description:


This update supplies access library and tools for the Kernel Crypto API.

The libkcapi0 library and the libkcapi-tools are used to access
the cryptographic interface of the kernel over the AF_ALG socket interface.
(FATE#323554 bsc#1045948)


-----------------------------------------
Patch: SUSE-2017-1171
Released: Tue Jul 18 13:09:57 2017
Summary: Security update for evince
Severity: important
References: 1046856,CVE-2017-1000083
Description:
This update for evince fixes the following issues:

- CVE-2017-1000083: Remote attackers could have used the comicbook mode of evince to inject shell code. (bsc#1046856, bgo#784630)



-----------------------------------------
Patch: SUSE-2017-1177
Released: Wed Jul 19 23:10:42 2017
Summary: Recommended update for dovecot22
Severity: moderate
References: 1045662
Description:
This update provides Dovecot version 2.2.31, which brings many fixes and enhancements:

- Do not generate dhparams smaller than 2048 in FIPS mode. (bsc#1045662)
- Removed '(Dovecot)' from added Received headers. Some installations want to hide it, and there's
  not really any good reason for anyone to have it.
- Add ssl_alt_cert and ssl_alt_key settings to add support for having both RSA and ECDSA certificates.
- Strip trailing whitespace from headers when matching mails in dsync/imapc and pop3-migration plugin.
- Add acl_globals_only setting to disable looking up per-mailbox dovecot-acl files.
- Parse invalid message addresses better. This mainly affects the generated IMAP ENVELOPE replies.
- Fix potential corruption of dovecot.index.cache that could lead to deleting wrong mail's cache.
- Fix crash in mail-crypt-acl plugin.
- Fix welcome plugin.
- Various fixes to handling mailbox listing. Especially related to handling non-existent autocreated
  or autosubscribed mailboxes and ACLs.
- Global ACL file was parsed as if it was local ACL file.
- Only the first forward_* field was working, and only if the first passdb lookup succeeded.
- Using mail_sort_max_read_count sometimes caused 'Broken sort-* indexes, resetting' errors.
- Using mail_sort_max_read_count may have caused very high CPU usage.
- Message address parsing could have crashed on invalid input.
- imapc_features=fetch-headers wasn't always working correctly and caused the full header to be fetched.
- Various bug fixes related to connection failure handling in imapc.
- Unnecessary FETCH RFC822.SIZE sent to server when expunging mails if quota=imapc.
- Add support for 'ns' parameter to quota=count.
- Fix incremental syncing for mails that don't have Date or Message-ID headers.
- Fix hang when client sends pipelined SEARCH + EXPUNGE/CLOSE/LOGOUT.
- Token validation in oauth2 didn't accept empty server responses.
- Adjusts Pigeonhole to several changes in the Dovecot API, making it depend on Dovecot v2.2.31.
- Fixed bug in handling of implicit keep in some cases. Implicit side-effects, such as assigned
  flags, were not always applied correctly.
- Fixed segmentation fault that could occur when the global script location was left unconfigured.


-----------------------------------------
Patch: SUSE-2017-1191
Released: Thu Jul 20 17:16:11 2017
Summary: Security update for jasper
Severity: moderate
References: 1009994,1010756,1010757,1010766,1010774,1010782,1010968,1010975,1047958,CVE-2016-9262,CVE-2016-9388,CVE-2016-9389,CVE-2016-9390,CVE-2016-9391,CVE-2016-9392,CVE-2016-9393,CVE-2016-9394,CVE-2017-1000050
Description:
This update for jasper fixes the following issues:

Security issues fixed:
- CVE-2016-9262: Multiple integer overflows in the jas_realloc function in base/jas_malloc.c and
  mem_resize function in base/jas_stream.c allow remote attackers to cause a denial of service via
  a crafted image, which triggers use after free vulnerabilities. (bsc#1009994)
- CVE-2016-9388: The ras_getcmap function in ras_dec.c allows remote attackers to cause a denial
  of service (assertion failure) via a crafted image file. (bsc#1010975)
- CVE-2016-9389: The jpc_irct and jpc_iict functions in jpc_mct.c allow remote attackers to cause a
  denial of service (assertion failure). (bsc#1010968)
- CVE-2016-9390: The jas_seq2d_create function in jas_seq.c allows remote attackers to cause a
  denial of service (assertion failure) via a crafted image file. (bsc#1010774)
- CVE-2016-9391: The jpc_bitstream_getbits function in jpc_bs.c allows remote attackers to cause a
  denial of service (assertion failure) via a very large integer. (bsc#1010782)
- CVE-2017-1000050: The jp2_encode function in jp2_enc.c allows remote attackers to cause a denial
  of service. (bsc#1047958)

CVEs already fixed with previous update:
- CVE-2016-9392: The calcstepsizes function in jpc_dec.c allows remote attackers to cause a denial
  of service (assertion failure) via a crafted file. (bsc#1010757)
- CVE-2016-9393: The jpc_pi_nextrpcl function in jpc_t2cod.c allows remote attackers to cause a
  denial of service (assertion failure) via a crafted file. (bsc#1010766)
- CVE-2016-9394: The jas_seq2d_create function in jas_seq.c allows remote attackers to cause a
  denial of service (assertion failure) via a crafted file. (bsc#1010756)


-----------------------------------------
Patch: SUSE-2017-1192
Released: Thu Jul 20 20:07:36 2017
Summary: Recommended update for iptables
Severity: low
References: 1045130
Description:
This update for iptables provides the following fix:

- Fix a locking issue of iptables-batch when other programs modify the iptables rules in parallel (bsc#1045130)


-----------------------------------------
Patch: SUSE-2017-1198
Released: Fri Jul 21 14:04:23 2017
Summary: Recommended update for python-boto, python-simplejson
Severity: low
References: 1002895
Description:

This update provides python-boto 2.42.0 and python-simplejson 3.8.2, which bring
many fixes and enhancements.

python-boto:

- Respect is_secure parameter in generate_url_sigv4
- Update MTurk API
- Update endpoints.json
- Allow s3 bucket lifecycle policies with multiple transitions
- Fixes upload parts for glacier
- Autodetect sigv4 for ap-northeast-2
- Added support for ap-northeast-2
- Remove VeriSign Class 3 CA from trusted certs
- Add note about boto3 on all pages of boto docs
- Fix for listing EMR steps based on cluster_states filter
- Fixed param name in set_contents_from_string docstring
- Spelling and documentation fixes
- Add deprecation notice to emr methods
- Add some GovCloud endpoints.

python-simplejson:

- Fix issue with iterable_as_array and indent option
- New iterable_as_array encoder option to perform lazy serialization of any iterable objects,
  without having to convert to tuple or list
- Do not cache Decimal class in encoder, only reference the decimal module
- No longer trust custom str/repr methods for int, long, float subclasses: these instances are
  now formatted as if they were exact instances of those types
- Fix reference leak when an error occurs during dict encoding
- Fix dump when only sort_keys is set
- Automatically strip any UTF-8 BOM from input to more closely follow the latest specs
- Fix lower bound checking in scan_once / raw_decode API
- Consistently reject int_as_string_bitcount settings that are not positive integers
- Add int_as_string_bitcount encoder option
- Fix potential crash when encoder created with incorrect options
- Documentation updates.


-----------------------------------------
Patch: SUSE-2017-1201
Released: Fri Jul 21 18:34:17 2017
Summary: Recommended update for coolkey
Severity: moderate
References: 1049213,996047
Description:
This update for coolkey provides fixes and enhancements, including:

- PK15 support.
- Fix CAC card support.
- Fix card removal issues.
- Add PKCS11 module to p11-kit-32bit.


-----------------------------------------
Patch: SUSE-2017-1216
Released: Tue Jul 25 13:21:24 2017
Summary: Optional update for libkcapi
Severity: low
References: 1045948
Description:
This update supplies access library and tools for the Kernel Crypto API.

The libkcapi0 library and the libkcapi-tools are used to access the cryptographic
interface of the kernel over the AF_ALG socket interface. (fate#323554, bsc#1045948)


-----------------------------------------
Patch: SUSE-2017-1220
Released: Wed Jul 26 14:16:15 2017
Summary: Security update for apache2
Severity: moderate
References: 1023616,1043055,1048576,CVE-2017-9788
Description:
This update for apache2 fixes the following issues:

Security issue fixed:

- CVE-2017-9788: Uninitialized memory reflection in mod_auth_digest. (bsc#1048576)

Bug fixes:

- Include individual sysconfig.d files instead of the whole sysconfig.d directory.
- Include sysconfig.d/include.conf after httpd.conf is processed. (bsc#1023616, bsc#1043055)


-----------------------------------------
Patch: SUSE-2017-1222
Released: Wed Jul 26 17:15:18 2017
Summary: Recommended update for procps
Severity: low
References: 1034563,1039941
Description:

This update for procps provides the following fixes:

- Make pmap handle LazyFree in /proc/smaps (bsc#1034563)
- Allow reading and writing content lines longer than 1024 characters under /proc/sys (bsc#1039941)
- Avoid printing messages when /proc/sys/net/ipv6/conf/*/stable_secret is not set


-----------------------------------------
Patch: SUSE-2017-1227
Released: Thu Jul 27 19:35:18 2017
Summary: Recommended update for squidGuard
Severity: moderate
References: 1040757,961499
Description:
This update for squidGuard provides the following fixes:

- Adapt squidGuard to work properly with current versions of squid (bsc#1040757)
- Change the default configuration file to only reference existing filter lists (bsc#961499)


-----------------------------------------
Patch: SUSE-2017-1229
Released: Fri Jul 28 10:42:35 2017
Summary: Security update for libquicktime
Severity: moderate
References: 1022805,CVE-2016-2399
Description:
This update for libquicktime fixes the following issues:

Security issue fixed:
- CVE-2016-2399: Adjust patch to prevent endless loop when there are less than 256 bytes to read. (bsc#1022805)



-----------------------------------------
Patch: SUSE-2017-1230
Released: Fri Jul 28 10:43:41 2017
Summary: Security update for libical
Severity: moderate
References: 1015964,1044995,986631,986639,CVE-2016-5824,CVE-2016-5827,CVE-2016-9584
Description:
This update for libical fixes the following issues:

Security issues fixed:
- CVE-2016-5824: libical 1.0 allows remote attackers to cause a denial of service (use-after-free)
  via a crafted ics file. (bsc#986639)
- CVE-2016-5827: The icaltime_from_string function in libical 0.47 and 1.0 allows remote attackers
  to cause a denial of service (out-of-bounds heap read) via a crafted string to the
  icalparser_parse_string function. (bsc#986631)
- CVE-2016-9584: libical allows remote attackers to cause a denial of service (use-after-free) and
  possibly read heap memory via a crafted ics file. (bsc#1015964)

Bug fixes:
- libical crashes while parsing timezones (bsc#1044995)


-----------------------------------------
Patch: SUSE-2017-1237
Released: Fri Jul 28 18:08:02 2017
Summary: Security update for poppler
Severity: moderate
References: 1041783,1042802,1042803,1043088,1045719,1045721,CVE-2017-7511,CVE-2017-7515,CVE-2017-9406,CVE-2017-9408,CVE-2017-9775,CVE-2017-9776
Description:
This update for poppler fixes the following issues:

Security issues fixed:
- CVE-2017-9775: DoS stack buffer overflow in GfxState.cc in pdftocairo via a crafted PDF document (bsc#1045719)
- CVE-2017-9776: DoS integer overflow leading to heap buffer overflow in JBIG2Stream.cc via a crafted PDF document (bsc#1045721)
- CVE-2017-7515: Stack exhaustion due to infinite recursive call in pdfunite (bsc#1043088)
- CVE-2017-7511: Null pointer dereference in pdfunite via crafted documents (bsc#1041783)
- CVE-2017-9406: Memory leak in the gmalloc function in gmem.cc (bsc#1042803)
- CVE-2017-9408: Memory leak in the Object::initArray function (bsc#1042802)



-----------------------------------------
Patch: SUSE-2017-1243
Released: Wed Aug  2 16:00:30 2017
Summary: Recommended update for lsscsi
Severity: low
References: 1008935,1047884
Description:
This update for lsscsi provides the following fixes:

- Fix the detection of the WWN for SCSI disks (bsc#1008935)
- Fix the output of 'lsscsi -t' (bsc#1047884)


-----------------------------------------
Patch: SUSE-2017-1248
Released: Thu Aug  3 10:45:28 2017
Summary: Security update for wireshark
Severity: moderate
References: 1049255,1049621,CVE-2017-11406,CVE-2017-11407,CVE-2017-11408,CVE-2017-11410,CVE-2017-11411
Description:
This wireshark update to version 2.2.8 fixes the following issues:

Security issues fixed:
- CVE-2017-11411: The openSAFETY dissectorcould crash or exhaust system memory because of missing
  length validation. (bsc#1049621)
- CVE-2017-11410: The WBXML dissector could go into an infinite loop. (bsc#1049255)
- CVE-2017-11408: The AMQP dissector could crash. (bsc#1049255)
- CVE-2017-11407: The MQ dissector could crash. (bsc#1049255)
- CVE-2017-11406: The DOCSIS dissector could go into an infinite loop. (bsc#1049255)



-----------------------------------------
Patch: SUSE-2017-1250
Released: Thu Aug  3 13:49:24 2017
Summary: Recommended update for binutils
Severity: moderate
References: 1031508
Description:

This update for binutils fixes an issue that prevented ld(1) from correctly linking
the 32 bit version of libclntshcore.so.12.1 from the Oracle 12 Client.


-----------------------------------------
Patch: SUSE-2017-1279
Released: Mon Aug  7 14:46:40 2017
Summary: Security update for ncurses
Severity: moderate
References: 1046853,1046858,1047964,1047965,1049344,CVE-2017-10684,CVE-2017-10685,CVE-2017-11112,CVE-2017-11113
Description:
This update for ncurses fixes the following issues:

Security issues fixed:
- CVE-2017-11112: Illegal address access in append_acs. (bsc#1047964)
- CVE-2017-11113: Dereferencing NULL pointer in _nc_parse_entry. (bsc#1047965)
- CVE-2017-10684, CVE-2017-10685: Add modified upstream fix from ncurses 6.0 to avoid broken
  termcap format (bsc#1046853, bsc#1046858, bsc#1049344)



-----------------------------------------
Patch: SUSE-2017-1299
Released: Tue Aug  8 12:55:31 2017
Summary: Recommended update for openssh
Severity: moderate
References: 1016709,1017099,1023275,1024251
Description:

This update for openssh provides the following fixes:

- Enable specific ioctl calls for ICA crypto card on the zSeries platform. Without this patch,
  users using the IBMCA engine are not able to perform ssh login as the filter blocks the
  communication with the crypto card. (bsc#1016709)
- Enable case-insensitive hostname matching. (bsc#1017099)
- Add a new switch for printing diagnostic messages in sftp client's batch mode. (bsc#1023275)
- Better fix for core dumps from auditing code when trying to bind to an unavailable port. (bsc#1024251)
- Remove the limit on the amount of tasks sshd can run.


-----------------------------------------
Patch: SUSE-2017-1311
Released: Wed Aug  9 09:46:18 2017
Summary: Security update for tcmu-runner
Severity: important
References: 1049485,1049488,1049489,1049490,1049491
Description:
This update for tcmu-runner fixes the following issues:

-  qcow handler opens up an information leak via the CheckConfig D-Bus method (bsc#1049491) 
-  glfs handler allows local DoS via crafted CheckConfig strings (bsc#1049485) 
-  UnregisterHandler dbus method in tcmu-runner daemon for non-existing handler causes denial of service (bsc#1049488) 
-  UnregisterHandler D-Bus method in tcmu-runner daemon for internal handler causes denial of service (bsc#1049489) 
-  Memory leaks can be triggered in tcmu-runner daemon by calling D-Bus method for (Un)RegisterHandler (bsc#1049490)



-----------------------------------------
Patch: SUSE-2017-1315
Released: Wed Aug  9 16:32:12 2017
Summary: Security update for librsvg
Severity: low
References: 1049607,CVE-2017-11464
Description:
This update librsvg to version 2.40.18 fixes the following issues:

Security issue fixed:
- CVE-2017-11464: A SIGFPE is raised in the function box_blur_line of rsvg-filter.c. (bsc#1049607)



-----------------------------------------
Patch: SUSE-2017-1316
Released: Thu Aug 10 13:54:27 2017
Summary: Recommended update for cyrus-sasl
Severity: moderate
References: 1014471,1026825,1044840,938657
Description:

This update for cyrus-sasl provides the following fixes:

- Fix SASL GSSAPI mechanism acceptor wrongly returns zero maxbufsize
- Fix unknown authentication mechanism: kerberos5 (bsc#1026825)
- Really use SASLAUTHD_PARAMS variable (bsc#938657)
- Make sure /usr/sbin/rcsaslauthd exists   
- Add /usr/sbin/rcsaslauthd symbolic link to /usr/sbin/service (bsc#1014471)
- Silence 'GSSAPI client step 1' debug log message (bsc#1044840)


-----------------------------------------
Patch: SUSE-2017-1318
Released: Thu Aug 10 14:57:41 2017
Summary: Security update for libsoup
Severity: important
References: 1052916,CVE-2017-2885
Description:
This update for libsoup fixes the following issues:

- A bug in the HTTP Chunked Encoding code has been fixed that could have been
  exploited by attackers to cause a stack-based buffer overflow in client or
  server code running libsoup (bsc#1052916, CVE-2017-2885).


-----------------------------------------
Patch: SUSE-2017-1324
Released: Fri Aug 11 16:57:49 2017
Summary: Security update for strongswan
Severity: moderate
References: 1051222,CVE-2017-11185
Description:
This update for strongswan fixes the following issues:


CVE-2017-11185: Specific RSA signatures passed to the gmp plugin for verification can
cause a null-pointer dereference and it may lead to a denial of service (bsc#1051222) 



-----------------------------------------
Patch: SUSE-2017-1325
Released: Fri Aug 11 16:58:36 2017
Summary: Security update for openjpeg2
Severity: important
References: 979907,997857,CVE-2015-8871,CVE-2016-7163
Description:
This update for openjpeg2 fixes the following issues:

- CVE 2016-7163: Integer Overflow could lead to remote code execution (bsc#997857).

- CVE 2015-8871: Use-after-free in opj_j2k_write_mco function could lead to denial of service (bsc#979907).




-----------------------------------------
Patch: SUSE-2017-1326
Released: Fri Aug 11 16:59:04 2017
Summary: Security update for libxml2
Severity: low
References: 1038444,CVE-2017-8872
Description:
This update for libxml2 fixes the following issues:

Security issues fixed:
- CVE-2017-8872: Out-of-bounds read in htmlParseTryOrFinish. (bsc#1038444)


-----------------------------------------
Patch: SUSE-2017-1330
Released: Mon Aug 14 18:41:29 2017
Summary: Recommended update for sed
Severity: low
References: 954661
Description:
This update for sed provides the following fixes:

- Don't terminate with a segmentation fault if close of last file descriptor fails. (bsc#954661)


-----------------------------------------
Patch: SUSE-2017-1333
Released: Tue Aug 15 17:59:30 2017
Summary: Optional update for libverto
Severity: low
References: 1029561
Description:
This update adds the libverto library to OpenStack Cloud Magnum Orchestration channels.


-----------------------------------------
Patch: SUSE-2017-1337
Released: Wed Aug 16 11:32:59 2017
Summary: Security update for java-1_8_0-openjdk
Severity: important
References: 1049302,1049305,1049306,1049307,1049308,1049309,1049310,1049311,1049312,1049313,1049314,1049315,1049316,1049317,1049318,1049319,1049320,1049321,1049322,1049323,1049324,1049325,1049326,1049327,1049328,1049329,1049330,1049331,1049332,CVE-2017-10053,CVE-2017-10067,CVE-2017-10074,CVE-2017-10078,CVE-2017-10081,CVE-2017-10086,CVE-2017-10087,CVE-2017-10089,CVE-2017-10090,CVE-2017-10096,CVE-2017-10101,CVE-2017-10102,CVE-2017-10105,CVE-2017-10107,CVE-2017-10108,CVE-2017-10109,CVE-2017-10110,CVE-2017-10111,CVE-2017-10114,CVE-2017-10115,CVE-2017-10116,CVE-2017-10118,CVE-2017-10125,CVE-2017-10135,CVE-2017-10176,CVE-2017-10193,CVE-2017-10198,CVE-2017-10243
Description:
This java-1_8_0-openjdk update to version jdk8u141 (icedtea 3.5.0) fixes the following issues:

Security issues fixed:
- CVE-2017-10053: Improved image post-processing steps (bsc#1049305)
- CVE-2017-10067: Additional jar validation steps (bsc#1049306)
- CVE-2017-10074: Image conversion improvements (bsc#1049307)
- CVE-2017-10078: Better script accessibility for JavaScript (bsc#1049308)
- CVE-2017-10081: Right parenthesis issue (bsc#1049309)
- CVE-2017-10086: Unspecified vulnerability in subcomponent JavaFX (bsc#1049310)
- CVE-2017-10087: Better Thread Pool execution (bsc#1049311)
- CVE-2017-10089: Service Registration Lifecycle (bsc#1049312)
- CVE-2017-10090: Better handling of channel groups (bsc#1049313)
- CVE-2017-10096: Transform Transformer Exceptions (bsc#1049314)
- CVE-2017-10101: Better reading of text catalogs (bsc#1049315)
- CVE-2017-10102: Improved garbage collection (bsc#1049316)
- CVE-2017-10105: Unspecified vulnerability in subcomponent deployment (bsc#1049317)
- CVE-2017-10107: Less Active Activations (bsc#1049318)
- CVE-2017-10108: Better naming attribution (bsc#1049319)
- CVE-2017-10109: Better sourcing of code (bsc#1049320)
- CVE-2017-10110: Better image fetching (bsc#1049321)
- CVE-2017-10111: Rearrange MethodHandle arrangements (bsc#1049322)
- CVE-2017-10114: Unspecified vulnerability in subcomponent JavaFX (bsc#1049323)
- CVE-2017-10115: Higher quality DSA operations (bsc#1049324)
- CVE-2017-10116: Proper directory lookup processing (bsc#1049325)
- CVE-2017-10118: Higher quality ECDSA operations (bsc#1049326)
- CVE-2017-10125: Unspecified vulnerability in subcomponent deployment (bsc#1049327)
- CVE-2017-10135: Better handling of PKCS8 material (bsc#1049328)
- CVE-2017-10176: Additional elliptic curve support (bsc#1049329)
- CVE-2017-10193: Improve algorithm constraints implementation (bsc#1049330)
- CVE-2017-10198: Clear certificate chain connections (bsc#1049331)
- CVE-2017-10243: Unspecified vulnerability in subcomponent JAX-WS (bsc#1049332)

Bug fixes:
- Check registry registration location
- Improved certificate processing
- JMX diagnostic improvements
- Update to libpng 1.6.28
- Import of OpenJDK 8 u141 build 15 (bsc#1049302)

New features:
- Support using RSAandMGF1 with the SHA hash algorithms in the PKCS11 provider



-----------------------------------------
Patch: SUSE-2017-1342
Released: Thu Aug 17 08:39:29 2017
Summary: Security update for libplist
Severity: moderate
References: 1029638,1029639,1029706,1029707,1029751,CVE-2017-6435,CVE-2017-6436,CVE-2017-6437,CVE-2017-6438,CVE-2017-6439
Description:
This update for libplist fixes the following issues:

Security issues fixed:

- CVE-2017-6439: Heap-based buffer overflow in the parse_string_node function. (bsc#1029638)
- CVE-2017-6438: Heap-based buffer overflow in the parse_unicode_node function. (bsc#1029706)
- CVE-2017-6437: The base64encode function in base64.c allows local users to cause denial of service
  (out-of-bounds read) via a crafted plist file. (bsc#1029707)
- CVE-2017-6436: Integer overflow in parse_string_node. (bsc#1029751)
- CVE-2017-6435: Crafted plist file could lead to Heap-buffer overflow. (bsc#1029639)



-----------------------------------------
Patch: SUSE-2017-1343
Released: Thu Aug 17 08:39:59 2017
Summary: Security update for ImageMagick
Severity: important
References: 1042812,1042826,1043289,1049072,CVE-2017-11403,CVE-2017-9439,CVE-2017-9440,CVE-2017-9501
Description:
This update for ImageMagick fixes the following issues:

Security issues fixed:
- CVE-2017-9439: A memory leak was found in the function ReadPDBImage incoders/pdb.c (bsc#1042826)
- CVE-2017-9440: A memory leak was found in the function ReadPSDChannelin coders/psd.c (bsc#1042812)
- CVE-2017-9501: An assertion failure could cause a denial of service via a crafted file (bsc#1043289)
- CVE-2017-11403: ReadMNGImage function in coders/png.c has an out-of-order CloseBlob call, resulting
  in a use-after-free via acrafted file (bsc#1049072)


-----------------------------------------
Patch: SUSE-2017-1344
Released: Thu Aug 17 12:20:25 2017
Summary: Recommended update for python-simplejson
Severity: low
References: 1002895
Description:
This update provides python-simplejson 3.8.2, which brings many fixes and enhancements:

- Fix issue with iterable_as_array and indent option
- New iterable_as_array encoder option to perform lazy serialization of any iterable objects,
  without having to convert to tuple or list
- Do not cache Decimal class in encoder, only reference the decimal module
- No longer trust custom str/repr methods for int, long, float subclasses: these instances are
  now formatted as if they were exact instances of those types
- Fix reference leak when an error occurs during dict encoding
- Fix dump when only sort_keys is set
- Automatically strip any UTF-8 BOM from input to more closely follow the latest specs
- Fix lower bound checking in scan_once / raw_decode API
- Consistently reject int_as_string_bitcount settings that are not positive integers
- Add int_as_string_bitcount encoder option
- Fix potential crash when encoder created with incorrect options
- Documentation updates.


-----------------------------------------
Patch: SUSE-2017-1345
Released: Thu Aug 17 16:26:58 2017
Summary: Recommended update for smt
Severity: low
References: 1047153,1049788
Description:
This update for smt provides the following fixes:

- When deactivating one single product, make sure the repositories for the other products
  are not removed (bsc#1047153)
- Truncate patch description that exceeds 64kb. (bsc#1049788)
- Improve message output if migration fails.


-----------------------------------------
Patch: SUSE-2017-1347
Released: Fri Aug 18 11:03:57 2017
Summary: Recommended update for procps
Severity: important
References: 1053409
Description:
This update for procps fixes the following issues:

- Fix a regression introduced in a previous update that would result in sysctl
  dying with a SIGSEGV error (bsc#1053409).


-----------------------------------------
Patch: SUSE-2017-1349
Released: Fri Aug 18 12:31:07 2017
Summary: Recommended update for lua51
Severity: low
References: 1051626
Description:
This update for lua51 provides the following fixes:

- Add Lua(API) and Lua(devel) symbols to fix building of lua51-luasocket. (bsc#1051626)


-----------------------------------------
Patch: SUSE-2017-1350
Released: Fri Aug 18 16:20:23 2017
Summary: Security update for gnome-shell
Severity: low
References: 1008539,1034584,1034827,1036494,1047262,CVE-2017-8288
Description:

This update for gnome-shell provides the following fixes:

- Fix not intuitive login screen for root user (bsc#1047262)
- Disable session selection button when it's hidden in user switch dialog (bsc#1034584, bsc#1034827)
- Fix app windows overlay app list in overview screen (bsc#1008539)
- Properly handle failures when loading extensions (bsc#1036494, CVE-2017-8288)


-----------------------------------------
Patch: SUSE-2017-1390
Released: Fri Aug 25 15:14:27 2017
Summary: Security update for libzypp
Severity: important
References: 1009745,1036659,1038984,1043218,1045735,1046417,1047785,1048315,CVE-2017-7435,CVE-2017-7436,CVE-2017-9269
Description:
The Software Update Stack was updated to receive fixes and enhancements.


libzypp:

- CVE-2017-7435, CVE-2017-7436, CVE-2017-9269: Fix GPG check workflows, mainly for unsigned
  repositories and packages. (bsc#1045735, bsc#1038984)
- Fix gpg-pubkey release (creation time) computation. (bsc#1036659)
- Update lsof blacklist. (bsc#1046417)
- Re-probe on refresh if the repository type changes. (bsc#1048315)
- Propagate proper error code to DownloadProgressReport. (bsc#1047785)
- Allow to trigger an appdata refresh unconditionally. (bsc#1009745)
- Support custom repo variables defined in /etc/zypp/vars.d.

yast2-pkg-bindings:

- Do not crash when the repository URL is not defined. (bsc#1043218)


-----------------------------------------
Patch: SUSE-2017-1407
Released: Tue Aug 29 16:48:38 2017
Summary: Security update for quagga
Severity: important
References: 1005258,1021669,1034273,CVE-2016-1245,CVE-2017-5495
Description:
This update provides Quagga 1.1.1, which brings several fixes and enhancements.

Security issues fixed:

- CVE-2017-5495: Telnet 'vty' interface DoS due to unbounded memory allocation. (bsc#1021669)
- CVE-2016-1245: Stack overrun in IPv6 RA receive code. (bsc#1005258)

Bug fixes:

- Do not enable zebra's TCP interface (port 2600) to use default UNIX socket for communication
  between the daemons. (fate#323170)

Between 0.99.22.1 and 1.1.1 the following improvements have been implemented:

- Changed the default of 'link-detect' state, controlling whether zebra will respond to
  link-state events and consider an interface to be down when link is down. To retain the
  current behavior save your config before updating, otherwise remove the 'link-detect'
  flag from your config prior to updating. There is also a new global 'default link-detect
  (on|off)' flag to configure the global default.
- Greatly improved nexthop resolution for recursive routes.
- Event driven nexthop resolution for BGP.
- Route tags support.
- Transport of TE related metrics over OSPF, IS-IS.
- IPv6 Multipath for zebra and BGP.
- Multicast RIB support has been extended. It still is IPv4 only.
- RIP for IPv4 now supports equal-cost multipath (ECMP).
- route-maps have a new action 'set ipv6 next-hop peer-address'.
- route-maps have a new action 'set as-path prepend last-as'.
- 'next-hop-self all' to override nexthop on iBGP route reflector setups.
- New pimd daemon provides IPv4 PIM-SSM multicast routing.
- IPv6 address management has been improved regarding tentative addresses. This is visible in
  that a freshly configured address will not immediately be marked as usable.
- Recursive route support has been overhauled. Scripts parsing 'show ip route' output may need
  adaptation.
- A large amount of changes has been merged for ospf6d. Careful evaluation prior to deployment
  is recommended.
- Multiprotocol peerings over IPv6 now try to find a more appropriate IPv4 nexthop by looking at
  the interface.
- Relaxed bestpath criteria for multipath and improved display of multipath routes in 'show ip bgp'.
  Scripts parsing this output may need to be updated.
- Support for iBGP TTL security.


-----------------------------------------
Patch: SUSE-2017-1419
Released: Wed Aug 30 15:38:22 2017
Summary: Security update for expat
Severity: moderate
References: 1047236,1047240,CVE-2016-9063,CVE-2017-9233
Description:
This update for expat fixes the following issues:

- CVE-2016-9063: Possible integer overflow to fix inside XML_Parse leading to unexpected behaviour (bsc#1047240)
- CVE-2017-9233: External Entity Vulnerability could lead to denial of service (bsc#1047236)




-----------------------------------------
Patch: SUSE-2017-1424
Released: Thu Aug 31 17:46:42 2017
Summary: Recommended update for tcsh
Severity: low
References: 1028864
Description:
This update for tcsh provides the following fix:

- Avoid closing sockets that were not opened by tcsh itself. (bsc#1028864)

-----------------------------------------
Patch: SUSE-2017-1425
Released: Thu Aug 31 17:47:09 2017
Summary: Recommended update for biosdevname
Severity: low
References: 1042185
Description:
This update for biosdevname fixes the following issues:

- Duplicate naming of SRIOV VFs by biosdevname when VPD_DCM Strings are present in VFs (bsc#1042185)


-----------------------------------------
Patch: SUSE-2017-1429
Released: Thu Aug 31 21:42:13 2017
Summary: Security update for git
Severity: important
References: 1052481,CVE-2017-1000117
Description:
This update for git fixes the following issues:

- CVE-2017-1000117: A client side code execution via shell injection when receiving special submodule strings from a malicious server was fixed (bsc#1052481)


-----------------------------------------
Patch: SUSE-2017-1430
Released: Thu Aug 31 21:43:54 2017
Summary: Security update for icu
Severity: moderate
References: 929629,CVE-2014-8146,CVE-2014-8147
Description:
icu was updated to fix two security issues.

These security issues were fixed:
- CVE-2014-8147: The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional
  Algorithm implementation in ICU4C in International Components for Unicode (ICU) used an integer
  data type that is inconsistent with a header file, which allowed remote attackers to cause a
  denial of service (incorrect malloc followed by invalid free) or possibly execute arbitrary code
  via crafted text (bsc#929629).
- CVE-2014-8146: The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional
  Algorithm implementation in ICU4C in International Components for Unicode (ICU) did not properly
  track directionally isolated pieces of text, which allowed remote attackers to cause a denial of
  service (heap-based buffer overflow) or possibly execute arbitrary code via crafted text
  (bsc#929629).
  

-----------------------------------------
Patch: SUSE-2017-1447
Released: Mon Sep  4 15:38:20 2017
Summary: Security update for libzypp, zypper
Severity: important
References: 1008325,1038984,1045735,1047785,1054088,1054671,1055920,CVE-2017-7436
Description:
The Software Update Stack was updated to receive fixes and enhancements.

libzypp:

- Adapt to work with GnuPG 2.1.23. (bsc#1054088)
- Support signing with subkeys. (bsc#1008325)
- Enhance sort order for media.1/products. (bsc#1054671)

zypper:

- Also show a gpg key's subkeys. (bsc#1008325)
- Improve signature check callback messages. (bsc#1045735)
- Add options to tune the GPG check settings. (bsc#1045735)
- Adapt download callback to report and handle unsigned packages. (bsc#1038984, CVE-2017-7436)
- Report missing/optional files as 'not found' rather than 'error'. (bsc#1047785)


-----------------------------------------
Patch: SUSE-2017-1453
Released: Mon Sep  4 21:23:50 2017
Summary: Recommended update for libgcrypt
Severity: moderate
References: 1043333,1046659,1047008
Description:
This update for libgcrypt fixes the following issues:

- libgcrypt stored an open file descriptor to the random device in
  a static variable between invocations.
  gnome-keyring-daemon on initialization reopened descriptors 0-2
  with /dev/null which caused an infinite loop when libgcrypt
  attempted to read from the random device (bsc#1043333)
- Avoid seeding the DRBG during FIPS power-up selftests (bsc#1046659)
  * don't call gcry_drbg_instantiate() in healthcheck sanity test to
    save entropy
  * turn off blinding for RSA decryption in selftests_rsa to avoid
    allocation of a random integer
- fix a bug in gcry_drbg_healthcheck_sanity() which caused skipping
  some of the tests (bsc#1046659)
- dlsym returns PLT address on s390x, dlopen libgcrypt20.so before
  calling dlsym (bsc#1047008)


-----------------------------------------
Patch: SUSE-2017-1461
Released: Tue Sep  5 17:32:10 2017
Summary: Security update for postgresql96
Severity: important
References: 1051684,1051685,1053259,CVE-2017-7546,CVE-2017-7547,CVE-2017-7548
Description:
This update for postgresql96 fixes the following issues:

* CVE-2017-7547: Further restrict visibility of pg_user_mappings.umoptions, to protect passwords stored as user mapping options. (bsc#1051685)
* CVE-2017-7546: Disallow empty passwords in all password-based authentication methods. (bsc#1051684)
* CVE-2017-7548: lo_put() function ignores ACLs. (bsc#1053259)

The changelog for this release is here:
	https://www.postgresql.org/docs/9.6/static/release-9-6-4.html



-----------------------------------------
Patch: SUSE-2017-1468
Released: Wed Sep  6 12:59:09 2017
Summary: Recommended update for atftp, tftp
Severity: low
References: 1049832,921219,940608
Description:
This update for atftp and tftp provides the following fixes:

- Fix a typo in atftpd.init that was preventing atftp to bind to specified addresses.
  (bsc#1049832, bsc#921219)
- Changed the permissions of /srv/tftpboot to be readable by apache. (bsc#940608)


-----------------------------------------
Patch: SUSE-2017-1471
Released: Wed Sep  6 16:19:58 2017
Summary: Security update for gdk-pixbuf
Severity: important
References: 1027024,1027025,1027026,1048289,1048544,1049877,CVE-2017-2862,CVE-2017-2870,CVE-2017-6312,CVE-2017-6313,CVE-2017-6314
Description:
This update for gdk-pixbuf fixes the following issues:

- CVE-2017-2862: JPEG gdk_pixbuf__jpeg_image_load_increment Code Execution Vulnerability (bsc#1048289)
- CVE-2017-2870: tiff_image_parse Code Execution Vulnerability (bsc#1048544)
- CVE-2017-6313: A dangerous integer underflow in io-icns.c (bsc#1027024)
- CVE-2017-6314: Infinite loop in io-tiff.c (bsc#1027025)
- CVE-2017-6312: Out-of-bounds read on io-ico.c (bsc#1027026)


-----------------------------------------
Patch: SUSE-2017-1472
Released: Wed Sep  6 19:48:33 2017
Summary: Recommended update for java-binfmt-misc
Severity: low
References: 1029650,1030903
Description:
This update for java-binfmt-misc provides the following fixes:

- Update the desktop and mime databases when the package is installed, upgraded or
  removed (bsc#1030903)
- Move the binary format wrappers to /usr/lib/binfmt.d (bsc#1029650)


-----------------------------------------
Patch: SUSE-2017-1479
Released: Fri Sep  8 12:32:09 2017
Summary: Security update for evince
Severity: important
References: 1046856,CVE-2017-1000083
Description:
This update for evince fixes the following issue:

- CVE-2017-1000083: Remote attackers could have used the comicbook mode of evince to inject shell code (bsc#1046856).


-----------------------------------------
Patch: SUSE-2017-1487
Released: Mon Sep 11 12:35:07 2017
Summary: Recommended update for unixODBC
Severity: low
References: 1044970
Description:
This update for unixODBC provides the following enhancements:

- Enable compile time option --enable-fastvalidate. This disables some internal validation
  checks performed on connection handles by unixODBC, increasing performance specially when
  many handles are used on multi-threaded systems. (fate#323520, bsc#1044970)


-----------------------------------------
Patch: SUSE-2017-1499
Released: Tue Sep 12 17:33:45 2017
Summary: Security update for cvs
Severity: moderate
References: 1053364,CVE-2017-12836
Description:
This update for cvs fixes the following issues:

  - CVE-2017-12836: A leading dash in the argument of the '-d' option could lead to argument injection (bsc#1053364)

  

-----------------------------------------
Patch: SUSE-2017-1548
Released: Fri Sep 15 18:19:12 2017
Summary: Recommended update for sg3_utils
Severity: moderate
References: 1005063,1009269,1012523,1025176,1050767,1050943
Description:
This update for sg3_utils provides the following fixes:

- Add lunsearch filter to findresized() so that only LUNs specified using --luns are
  rescanned or resized. (bsc#1025176)
- In case the VPD sysfs attributes are missing or cannot be accessed, fallback to use
  sg_inq --page when using multipath devices in AutoYast2 installations. (bsc#1012523)
- Generate /dev/disk/by-path links based on WWPN for Fibre Channel NPIV setups. (bsc#1005063)
- Fix dumping data in hexadecimal format in sg_vpd when using the --hex option. (bsc#1050943)
- Fix ID_SERIAL values for KVM disks by exporting all NAA values and removing some validity
  checking. (bsc#1050767)
- Make sure initrd is rebuilt on sg3_utils updates. (bsc#1009269)


-----------------------------------------
Patch: SUSE-2017-1549
Released: Fri Sep 15 18:26:57 2017
Summary: Recommended update for at
Severity: low
References: 988890
Description:

This update for at fixes the following issues:

- The systemd atd.service will now run After=nss-user-lookup.target not after
  systemd-user-sessions.service
- Make systemd atd.service run After=time-sync.target (bsc#988890)


-----------------------------------------
Patch: SUSE-2017-1564
Released: Tue Sep 19 18:38:16 2017
Summary: Security update for gcc48
Severity: moderate
References: 1011348,1022062,1028744,1039513,1044016,1050947,988274,CVE-2017-11671
Description:
This update for gcc48 fixes the following issues:

Security issues fixed:

- A new option -fstack-clash-protection is now offered, which mitigates the stack clash type of attacks. [bnc#1039513]
  Future maintenance releases of packages will be built with this option.
- CVE-2017-11671: Fixed rdrand/rdseed code generation issue [bsc#1050947]

Bugs fixed:

- Enable LFS support in 32bit libgcov.a.  [bsc#1044016]
- Bump libffi version in libffi.pc to 3.0.11.
- Fix libffi issue for armv7l.  [bsc#988274]
- Properly diagnose missing -fsanitize=address support on ppc64le.  [bnc#1028744]
- Backport patch for PR65612.  [bnc#1022062]
- Fixed DR#1288.  [bnc#1011348]


-----------------------------------------
Patch: SUSE-2017-1565
Released: Wed Sep 20 11:34:01 2017
Summary: Security update for emacs
Severity: important
References: 1058425,CVE-2017-14482
Description:
This update for emacs fixes one issues.

This security issue was fixed:

- CVE-2017-14482: Remote code execution via mails with 'Content-Type: text/enriched' (bsc#1058425)


-----------------------------------------
Patch: SUSE-2017-1570
Released: Thu Sep 21 13:34:49 2017
Summary: Security update for libzip
Severity: moderate
References: 1056996,CVE-2017-14107
Description:
This update for libzip fixes one issues.

This security issue was fixed:

- CVE-2017-14107: The _zip_read_eocd64 function mishandled EOCD records, which
  allowed remote attackers to cause a denial of service (memory allocation
  failure in _zip_cdir_grow in zip_dirent.c) via a crafted ZIP archive (bsc#1056996).


-----------------------------------------
Patch: SUSE-2017-1572
Released: Thu Sep 21 15:32:04 2017
Summary: Security update for apache2
Severity: moderate
References: 1058058,CVE-2017-9798
Description:
This update for apache2 fixes the following security issue:

- CVE-2017-9798: Prevent use-after-free use of memory that allowed for an
  information leak via OPTIONS (bsc#1058058).


-----------------------------------------
Patch: SUSE-2017-1579
Released: Fri Sep 22 09:42:25 2017
Summary: Recommended update for tigervnc, vncmanager
Severity: low
References: 1041847,1053373,1054300
Description:
This update for tigervnc and vncmanager provides the following fixes:

- Fix race problem when detecting listening inetd sockets. (bsc#1054300)
- Fix certificate handling in the Java client. (bsc#1041847)
- Make sure CN in generated certificate doesn't exceed 64 characters. (bsc#1041847)
- Change with-vnc-key.sh to generate TLS certificate using current hostname to keep
  it short. (bsc#1041847)
- Disable MIT-SHM extension when running under user 'vnc'. (bsc#1053373)
- Disable MIT-SHM extension in Xvnc when started by vncmanager. (bsc#1053373)


-----------------------------------------
Patch: SUSE-2017-1581
Released: Fri Sep 22 11:33:08 2017
Summary: Security update for spice
Severity: important
References: 1046779,CVE-2017-7506
Description:
This update for spice fixes the following security issues:

- CVE-2017-7506: Fixed an out-of-bounds memory access when processing specially
  crafted messages from authenticated attacker to the spice server resulting into
  crash and/or server memory leak (bsc#1046779).


-----------------------------------------
Patch: SUSE-2017-1583
Released: Fri Sep 22 13:32:54 2017
Summary: Security update for wireshark
Severity: moderate
References: 1044417,1045341,1056248,1056249,1056251,CVE-2017-13765,CVE-2017-13766,CVE-2017-13767,CVE-2017-9617,CVE-2017-9766
Description:
This update for wireshark to version 2.2.9 fixes several issues.

These security issues were fixed:

- CVE-2017-13767: The MSDP dissector could have gone into an infinite loop.
  This was addressed by adding length validation (bsc#1056248).
- CVE-2017-13766: The Profinet I/O dissector could have crash with an
  out-of-bounds write. This was addressed by adding string validation
  (bsc#1056249).
- CVE-2017-13765: The IrCOMM dissector had a buffer over-read and application
  crash. This was addressed by adding length validation (bsc#1056251).
- CVE-2017-9766: PROFINET IO data with a high recursion depth allowed remote
  attackers to cause a denial of service (stack exhaustion) in the
  dissect_IODWriteReq function (bsc#1045341).
- CVE-2017-9617: Deeply nested DAAP data may have cause stack exhaustion
  (uncontrolled recursion) in the dissect_daap_one_tag function in the DAAP
  dissector (bsc#1044417).


-----------------------------------------
Patch: SUSE-2017-1586
Released: Mon Sep 25 17:16:58 2017
Summary: Recommended update for xinetd
Severity: low
References: 1054532,943484,947475,972691
Description:
This update for xinetd provides the following fixes:

- Specifying multiple log targets in the configuration caused a crash in xinetd, so make
  sure this is not allowed and in case of misconfiguration handle it correctly.
  (bsc#1054532)
- Fix a race condition that was causing xinetd not to be running after receiving a SIGHUP
  and a call to bind() failing with error EADDRINUSE. The fix exposes a sysconfig variable
  named XINETD_BIND_DELAY that can be used to delay calls to bind(). (bsc#972691)
- Fix an error that was causing a failure in xinetd when trying to fallback from IPv6 to
  IPv4. (bsc#947475)
- Update the documentation about the maximum allowed size of server parameters. (bsc#943484)


-----------------------------------------
Patch: SUSE-2017-1588
Released: Mon Sep 25 17:37:57 2017
Summary: Recommended update for vsftpd
Severity: moderate
References: 1042137,1044292,1048427,1052900
Description:
This update for vsftpd provides the following fixes:

- Fix a bug in vsftpd that would cause SSL protocol errors, aborting the connection,
  whenever system errors occurred that were supposed to be non-fatal. (bsc#1044292)
- Fix a seccomp failure that happens in FIPS mode when SSL is enabled. (bsc#1052900)
- Allow the FTP server to append to a file system pipe. (bsc#1048427)
- Create a new configuration option 'address_space_limit', which determines the memory
  limit vsftpd configures for its own process (given in bytes). The previously hard-coded
  limit (100 MB) may not be sufficient for vsftpd servers running with certain PAM modules
  enabled, and in such cases administrators may wish to raise the limit to match their
  system's requirements. (bsc#1042137)


-----------------------------------------
Patch: SUSE-2017-1589
Released: Tue Sep 26 09:58:51 2017
Summary: Security update for tiff
Severity: moderate
References: 1033109,1033111,1033112,1033113,1033118,1033120,1033126,1033127,1033128,1033129,1033131,1038438,1042804,1042805,CVE-2016-10371,CVE-2017-7592,CVE-2017-7593,CVE-2017-7594,CVE-2017-7595,CVE-2017-7596,CVE-2017-7597,CVE-2017-7598,CVE-2017-7599,CVE-2017-7600,CVE-2017-7601,CVE-2017-7602,CVE-2017-9403,CVE-2017-9404
Description:
This update for tiff to version 4.0.8 fixes a several bugs and security issues:

These security issues were fixed:

- CVE-2017-7595: The JPEGSetupEncode function allowed remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted image (bsc#1033127).
- CVE-2016-10371: The TIFFWriteDirectoryTagCheckedRational function allowed remote attackers to cause a denial of service (assertion failure and application exit) via a crafted TIFF file (bsc#1038438).
- CVE-2017-7598: Error in tif_dirread.c allowed remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted image (bsc#1033118).
- CVE-2017-7596: Undefined behavior because of floats outside their expected value range, which allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033126).
- CVE-2017-7597: Undefined behavior because of floats outside their expected value range, which allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033120).
- CVE-2017-7599: Undefined behavior because of shorts outside their expected value range, which allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033113).
- CVE-2017-7600: Undefined behavior because of chars outside their expected value range, which allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033112).
- CVE-2017-7601: Because of a shift exponent too large for 64-bit type long undefined behavior was caused, which allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033111).
- CVE-2017-7602: Prevent signed integer overflow, which allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033109).
- CVE-2017-7592: The putagreytile function had a left-shift undefined behavior issue, which might allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033131).
- CVE-2017-7593: Ensure that tif_rawdata is properly initialized, to prevent remote attackers to obtain sensitive information from process memory via a crafted image (bsc#1033129).
- CVE-2017-7594: The OJPEGReadHeaderInfoSecTablesDcTable function allowed remote attackers to cause a denial of service (memory leak) via a crafted image (bsc#1033128).
- CVE-2017-9403: Prevent memory leak in function TIFFReadDirEntryLong8Array, which allowed attackers to cause a denial of service via a crafted file (bsc#1042805).
- CVE-2017-9404: Fixed memory leak vulnerability in function OJPEGReadHeaderInfoSecTablesQTable, which allowed attackers to cause a denial of service via a crafted file (bsc#1042804).

These various other issues were fixed:

- Fix uint32 overflow in TIFFReadEncodedStrip() that caused an
  integer division by zero. Reported by Agostino Sarubbo.
- fix heap-based buffer overflow on generation of PixarLog / LUV
  compressed files, with ColorMap, TransferFunction attached and
  nasty plays with bitspersample. The fix for LUV has not been
  tested, but suffers from the same kind of issue of PixarLog.
- modify ChopUpSingleUncompressedStrip() to instanciate compute
  ntrips as TIFFhowmany_32(td->td_imagelength, rowsperstrip),
  instead of a logic based on the total size of data. Which is
  faulty is the total size of data is not sufficient to fill the
  whole image, and thus results in reading outside of the
  StripByCounts/StripOffsets arrays when using
  TIFFReadScanline()
- make OJPEGDecode() early exit in case of failure in
  OJPEGPreDecode(). This will avoid a divide by zero, and
  potential other issues.
- fix misleading indentation as warned by GCC.
- revert change done on 2016-01-09 that made Param member of
  TIFFFaxTabEnt structure a uint16 to reduce size of the
  binary. It happens that the Hylafax software uses the tables
  that follow this typedef (TIFFFaxMainTable, TIFFFaxWhiteTable,
  TIFFFaxBlackTable), although they are not in a public libtiff
  header.
- add TIFFReadRGBAStripExt() and TIFFReadRGBATileExt() variants
  of the functions without ext, with an extra argument to control
  the stop_on_error behaviour.
- fix potential memory leaks in error code path of
  TIFFRGBAImageBegin().
- increase libjpeg max memory usable to 10 MB instead of libjpeg
  1MB default. This helps when creating files with 'big' tile,
  without using libjpeg temporary files.
- add _TIFFcalloc()
- return 0 in Encode functions instead of -1 when
  TIFFFlushData1() fails.
- only run JPEGFixupTagsSubsampling() if the YCbCrSubsampling
  tag is not explicitly present. This helps a bit to reduce the
  I/O amount when the tag is present (especially on cloud hosted
  files).
- in LZWPostEncode(), increase, if necessary, the code bit-width
  after flushing the remaining code and before emitting the EOI
  code.
- fix memory leak in error code path of PixarLogSetupDecode().
- fix potential memory leak in
  OJPEGReadHeaderInfoSecTablesQTable,
  OJPEGReadHeaderInfoSecTablesDcTable and
  OJPEGReadHeaderInfoSecTablesAcTable
- avoid crash in Fax3Close() on empty file.
- TIFFFillStrip(): add limitation to the number of bytes read
  in case td_stripbytecount[strip] is bigger than reasonable,
  so as to avoid excessive memory allocation.
- fix memory leak when the underlying codec (ZIP, PixarLog)
  succeeds its setupdecode() method, but PredictorSetup fails.
- TIFFFillStrip() and TIFFFillTile(): avoid excessive memory
  allocation in case of shorten files. Only effective on 64 bit
  builds and non-mapped cases.
- TIFFFillStripPartial() / TIFFSeek(), avoid potential integer
  overflows with read_ahead in CHUNKY_STRIP_READ_SUPPORT mode.
- avoid excessive memory allocation in case of shorten files.
  Only effective on 64 bit builds.
- update tif_rawcc in CHUNKY_STRIP_READ_SUPPORT mode with
  tif_rawdataloaded when calling TIFFStartStrip() or
  TIFFFillStripPartial(). 
- avoid potential int32 overflow in TIFFYCbCrToRGBInit() Fixes
- avoid potential int32 overflows in multiply_ms() and add_ms().
- fix out-of-buffer read in PackBitsDecode() Fixes
- LogL16InitState(): avoid excessive memory allocation when
  RowsPerStrip tag is missing.
- update dec_bitsleft at beginning of LZWDecode(), and update
  tif_rawcc at end of LZWDecode(). This is needed to properly
  work with the latest chnges in tif_read.c in
  CHUNKY_STRIP_READ_SUPPORT mode.
- PixarLogDecode(): resync tif_rawcp with next_in and tif_rawcc
  with avail_in at beginning and end of function, similarly to
  what is done in LZWDecode(). Likely needed so that it works
  properly with latest chnges in tif_read.c in
  CHUNKY_STRIP_READ_SUPPORT mode.
- initYCbCrConversion(): add basic validation of luma and
  refBlackWhite coefficients (just check they are not NaN for
  now), to avoid potential float to int overflows.
- _TIFFVSetField(): fix outside range cast of double to float.
- initYCbCrConversion(): check luma[1] is not zero to avoid division by zero
- _TIFFVSetField(): fix outside range cast of double to float.
- initYCbCrConversion(): check luma[1] is not zero to avoid
  division by zero.
- initYCbCrConversion(): stricter validation for refBlackWhite
  coefficients values.
- avoid uint32 underflow in cpDecodedStrips that can cause
  various issues, such as buffer overflows in the library.
- fix readContigStripsIntoBuffer() in -i (ignore) mode so that
  the output buffer is correctly incremented to avoid write
  outside bounds.
- add 3 extra bytes at end of strip buffer in
  readSeparateStripsIntoBuffer() to avoid read outside of heap
  allocated buffer.
- fix integer division by zero when BitsPerSample is missing.
- fix null pointer dereference in -r mode when the image has no
  StripByteCount tag.
- avoid potential division by zero is BitsPerSamples tag is
  missing.
- when TIFFGetField(, TIFFTAG_NUMBEROFINKS, ) is called, limit
  the return number of inks to SamplesPerPixel, so that code
  that parses ink names doesn't go past the end of the buffer.
- avoid potential division by zero is BitsPerSamples tag is
  missing.
- fix uint32 underflow/overflow that can cause heap-based buffer
  overflow.
- replace assert( (bps % 8) == 0 ) by a non assert check.
- fix 2 heap-based buffer overflows (in PSDataBW and
  PSDataColorContig).
- prevent heap-based buffer overflow in -j mode on a paletted
  image.
- fix wrong usage of memcpy() that can trigger unspecified behaviour.
- avoid potential invalid memory read in t2p_writeproc.
- avoid potential heap-based overflow in t2p_readwrite_pdf_image_tile().
- remove extraneous TIFFClose() in error code path, that caused
  double free.
- error out cleanly in cpContig2SeparateByRow and
  cpSeparate2ContigByRow if BitsPerSample != 8 to avoid heap
  based overflow.
- avoid integer division by zero.
- call TIFFClose() in error code paths.
- emit appropriate message if the input file is empty.
- close TIFF handle in error code path.


-----------------------------------------
Patch: SUSE-2017-1590
Released: Tue Sep 26 12:46:28 2017
Summary: Security update for liblouis
Severity: moderate
References: 1056088,1056090,1056093,1056095,1056097,1056101,1056105,CVE-2017-13738,CVE-2017-13739,CVE-2017-13740,CVE-2017-13741,CVE-2017-13743,CVE-2017-13744
Description:
This update for liblouis fixes several issues.

These security issues were fixed:

- CVE-2017-13738: Prevent illegal address access in the _lou_getALine function that allowed to cause remote DoS (bsc#1056105).
- CVE-2017-13739: Prevent heap-based buffer overflow in the function resolveSubtable() that could have caused DoS or remote code execution (bsc#1056101).
- CVE-2017-13740: Prevent stack-based buffer overflow in the function parseChars() that could have caused DoS or possibly unspecified other impact (bsc#1056097) 
- CVE-2017-13741: Prevent use-after-free in function compileBrailleIndicator() that allowed to cause remote DoS (bsc#1056095).
- CVE_2017-13742: Prevent stack-based buffer overflow in function includeFile that allowed to cause remote DoS (bsc#1056093).
- CVE-2017-13743: Prevent buffer overflow triggered in the function _lou_showString() that allowed to cause remote DoS (bsc#1056090).
- CVE-2017-13744: Prevent illegal address access in the function _lou_getALine() that allowed to cause remote DoS (bsc#1056088).


-----------------------------------------
Patch: SUSE-2017-1602
Released: Thu Sep 28 10:45:47 2017
Summary: Recommended update for gtk3
Severity: low
References: 1022830
Description:

This update for gtk3 provides the following fixes:

- Fix display DPI auto-detection. (bsc#1022830)


-----------------------------------------
Patch: SUSE-2017-1603
Released: Thu Sep 28 11:31:38 2017
Summary: Security update for MozillaFirefox
Severity: important
References: 1052829,CVE-2017-7753,CVE-2017-7779,CVE-2017-7782,CVE-2017-7784,CVE-2017-7785,CVE-2017-7786,CVE-2017-7787,CVE-2017-7791,CVE-2017-7792,CVE-2017-7798,CVE-2017-7800,CVE-2017-7801,CVE-2017-7802,CVE-2017-7803,CVE-2017-7804,CVE-2017-7807
Description:
This update for MozillaFirefox to ESR 52.3 fixes several issues.

These security issues were fixed: 

- CVE-2017-7807 Domain hijacking through AppCache fallback (bsc#1052829)
- CVE-2017-7791 Spoofing following page navigation with data: protocol and modal alerts (bsc#1052829)
- CVE-2017-7792 Buffer overflow viewing certificates with an extremely long OID (bsc#1052829)
- CVE-2017-7782 WindowsDllDetourPatcher allocates memory without DEP protections (bsc#1052829)
- CVE-2017-7787 Same-origin policy bypass with iframes through page reloads (bsc#1052829)
- CVE-2017-7786 Buffer overflow while painting non-displayable SVG (bsc#1052829)
- CVE-2017-7785 Buffer overflow manipulating ARIA attributes in DOM (bsc#1052829)
- CVE-2017-7784 Use-after-free with image observers (bsc#1052829)
- CVE-2017-7753 Out-of-bounds read with cached style data and pseudo-elements (bsc#1052829)
- CVE-2017-7798 XUL injection in the style editor in devtools (bsc#1052829)
- CVE-2017-7804 Memory protection bypass through WindowsDllDetourPatcher (bsc#1052829)
- CVE-2017-7779 Memory safety bugs fixed in Firefox 55 and Firefox ESR 52.3 (bsc#1052829)
- CVE-2017-7800 Use-after-free in WebSockets during disconnection (bsc#1052829)
- CVE-2017-7801 Use-after-free with marquee during window resizing (bsc#1052829)
- CVE-2017-7802 Use-after-free resizing image elements (bsc#1052829)
- CVE-2017-7803 CSP containing 'sandbox' improperly applied (bsc#1052829)


-----------------------------------------
Patch: SUSE-2017-1606
Released: Thu Sep 28 15:52:49 2017
Summary: Recommended update for xinetd
Severity: important
References: 1060432
Description:
This update for xinetd fixes a regression that could cause a crash when an 'IPv6' flag was specified
without a 'bind' option (bsc#1060432)


-----------------------------------------
Patch: SUSE-2017-1612
Released: Fri Sep 29 14:55:20 2017
Summary: Recommended update for tcmu-runner
Severity: low
References: 1052795
Description:
This update for tcmu-runner provides the following fix:

- Fix the path where tcmu-runner searches for plugins so that starting it from systemd
  works as expected. (bsc#1052795)


-----------------------------------------
Patch: SUSE-2017-1615
Released: Mon Oct  2 15:52:59 2017
Summary: Security update for dnsmasq
Severity: important
References: 1060354,1060355,1060360,1060361,1060362,1060364,CVE-2017-14491,CVE-2017-14492,CVE-2017-14493,CVE-2017-14494,CVE-2017-14495,CVE-2017-14496
Description:
This update for dnsmasq fixes the following security issues:

- CVE-2017-14491: 2 byte heap based overflow. [bsc#1060354]
- CVE-2017-14492: heap based overflow. [bsc#1060355]
- CVE-2017-14493: stack based overflow. [bsc#1060360]
- CVE-2017-14494: DHCP - info leak. [bsc#1060361]
- CVE-2017-14495: DNS - OOM DoS. [bsc#1060362]
- CVE-2017-14496: DNS - DoS Integer underflow. [bsc#1060364]


-----------------------------------------
Patch: SUSE-2017-1622
Released: Mon Oct  2 20:06:28 2017
Summary: Recommended update for yast2-xml
Severity: low
References: 1047449
Description:
This update for yast2-xml provides the following fix:

- Omit libxml2 memory cleanup to prevent a crash if rubygem-nokogiri is installed.
  (bsc#1047449)


-----------------------------------------
Patch: SUSE-2017-1636
Released: Thu Oct  5 07:57:56 2017
Summary: Security update for openjpeg2
Severity: moderate
References: 1056421,1056562,1056621,1056622,1057511,CVE-2016-10507,CVE-2017-14039,CVE-2017-14040,CVE-2017-14041,CVE-2017-14164
Description:
This update for openjpeg2 fixes several issues.

These security issues were fixed:

- CVE-2016-10507: Integer overflow vulnerability in the bmp24toimage function
  allowed remote attackers to cause a denial of service (heap-based buffer
  over-read and application crash) via a crafted bmp file (bsc#1056421).
- CVE-2017-14039: A heap-based buffer overflow was discovered in the
  opj_t2_encode_packet function. The vulnerability caused an out-of-bounds write,
  which may have lead to remote denial of service or possibly unspecified other
  impact (bsc#1056622).
- CVE-2017-14164: A size-validation issue was discovered in opj_j2k_write_sot.
  The vulnerability caused an out-of-bounds write, which may have lead to remote
  DoS or possibly remote code execution (bsc#1057511).
- CVE-2017-14040: An invalid write access was discovered in bin/jp2/convert.c,
  triggering a crash in the tgatoimage function. The vulnerability may have lead
  to remote denial of service or possibly unspecified other impact (bsc#1056621).
- CVE-2017-14041: A stack-based buffer overflow was discovered in the
  pgxtoimage function. The vulnerability caused an out-of-bounds write, which may
  have lead to remote denial of service or possibly remote code execution
  (bsc#1056562).


-----------------------------------------
Patch: SUSE-2017-1643
Released: Fri Oct  6 14:35:37 2017
Summary: Recommended update for ceph
Severity: moderate
References: 1042973,1043399,1047020,1047244,1047977,1050063,1053836
Description:
This update for ceph provides the following fixes:

- os/bluestore: Allow multiple DeferredBatches in flight at the same time to fix some OSDs
  getting down when using RDB images in an EC pool. (bsc#1043399)
- osd: Add support for the CMPEXT operation on EC pools. (bsc#1047244)
- mon: Add mgr metadata commands, and overall 'versions' command for all daemon versions.
  (bsc#1050063)
- rgw_file: Fix a segmentation fault when trying to export rgw bucket using nfs-ganesha. (bsc#1047977)
- libradosstriper: Fix a possible format injection problem.
- mon/MDSMonitor: Fix a segmentation fault when multiple MDSs raise the same alert.
- rgw: Fix a potential null pointer dereference in rgw_admin.
- librbd: Fail IO requests when exclusive lock cannot be obtained.
- mgr,mon: Make it possible to enable and disable mgr modules via 'ceph mgr module' commands.
- os/bluestore: Fix a deadlock in deferred_aio.
- systemd: Add explicit Before=ceph.target (bsc#1042973)
- Fix a performance problem by writing only the dup entries that changed. (bsc#1053836)
- With this update, Ceph no longer creates automatically a pool called 'rbd' with id 0. Deployment
  tools must take this into account.


-----------------------------------------
Patch: SUSE-2017-1644
Released: Mon Oct  9 07:52:24 2017
Summary: Security update for krb5
Severity: moderate
References: 1032680,1054028,1056995,903543,CVE-2017-11462
Description:
This update for krb5 fixes several issues.

This security issue was fixed:

- CVE-2017-11462: Prevent automatic security context deletion to prevent
  double-free (bsc#1056995)

These non-security issues were fixed:

- Set 'rdns' and 'dns_canonicalize_hostname' to false in krb5.conf
  in order to improve client security in handling service principle
  names. (bsc#1054028)
- Prevent kadmind.service startup failure caused by absence of
  LDAP service. (bsc#903543)
- Remove main package's dependency on systemd (bsc#1032680)


-----------------------------------------
Patch: SUSE-2017-1662
Released: Tue Oct 10 11:58:50 2017
Summary: Security update for MozillaFirefox, mozilla-nss
Severity: important
References: 1060445,1061005,CVE-2017-7793,CVE-2017-7805,CVE-2017-7810,CVE-2017-7814,CVE-2017-7818,CVE-2017-7819,CVE-2017-7823,CVE-2017-7824,CVE-2017-7825
Description:
This update for MozillaFirefox to ESR 52.4, mozilla-nss fixes the following issues:

This security issue was fixed for mozilla-nss:

- CVE-2017-7805: Prevent use-after-free in TLS 1.2 when generating handshake hashes (bsc#1061005)

These security issues were fixed for Firefox 

- CVE-2017-7825: Fixed some Tibetan and Arabic unicode characters rendering (bsc#1060445).
- CVE-2017-7805: Prevent Use-after-free in TLS 1.2 generating handshake hashes (bsc#1060445).
- CVE-2017-7819: Prevent Use-after-free while resizing images in design mode (bsc#1060445).
- CVE-2017-7818: Prevent Use-after-free during ARIA array manipulation (bsc#1060445).
- CVE-2017-7793: Prevent Use-after-free with Fetch API (bsc#1060445).
- CVE-2017-7824: Prevent Buffer overflow when drawing and validating elements with ANGLE (bsc#1060445).
- CVE-2017-7810: Fixed several memory safety bugs (bsc#1060445).
- CVE-2017-7823: CSP sandbox directive did not create a unique origin (bsc#1060445).
- CVE-2017-7814: Blob and data URLs bypassed phishing and malware protection warnings (bsc#1060445).


-----------------------------------------
Patch: SUSE-2017-1683
Released: Fri Oct 13 10:30:57 2017
Summary: Recommended update for libqt5-qtbase, libqt5-qtwebengine
Severity: low
References: 1027925,1043338,1043375,1061344
Description:

This update for libqt5-qtbase and libqt5-qtwebengine provides the following fixes:

libqt5-qtbase:

- Recommend libqt5-qttranslations in libQt5Core5 so that translations are picked up correctly. (bsc#1027925)

libqt5-qtwebengine:

- Enable the use of proprietary codecs when configuring webengine so it uses the system
  ffmpeg binary thus allowing to reproduce html5 videos. (bsc#1043375)
- Fix a compatibility issue in font rendering when using newer versions of FreeType. (bsc#1061344)


-----------------------------------------
Patch: SUSE-2017-1695
Released: Tue Oct 17 11:06:57 2017
Summary: Recommended update for netcat-openbsd
Severity: low
References: 1061165
Description:
This update for netcat-openbsd provides the following fix:

- Fix a logic error that would prevent netcat from sending out UDP packets. (bsc#1061165)


-----------------------------------------
Patch: SUSE-2017-1696
Released: Tue Oct 17 11:08:04 2017
Summary: Recommended update for pcsc-lite
Severity: low
References: 1056255,782368
Description:
This update for pcsc-lite fixes the following issues:

- Add Requires on libpcsclite1 for main package to make pcsc-lite work correctly.
  (bsc#782368, bsc#1056255)


-----------------------------------------
Patch: SUSE-2017-1704
Released: Tue Oct 17 13:37:48 2017
Summary: Security update for git
Severity: important
References: 1061041,CVE-2017-14867
Description:
This update for git fixes the following issues:

This security issue was fixed:

- CVE-2017-14867: Git used unsafe Perl scripts to support subcommands such as
  cvsserver, which allowed attackers to execute arbitrary OS commands via shell
  metacharacters in a module name (bsc#1061041).


-----------------------------------------
Patch: SUSE-2017-1705
Released: Tue Oct 17 14:16:38 2017
Summary: Security update for wpa_supplicant
Severity: important
References: 1056061,CVE-2017-13078,CVE-2017-13079,CVE-2017-13080,CVE-2017-13081,CVE-2017-13087,CVE-2017-13088
Description:
This update for wpa_supplicant fixes the security issues:

- Several vulnerabilities in standard conforming implementations of the WPA2
  protocol have been discovered and published under the code name KRACK. This
  update remedies those issues in a backwards compatible manner, i.e. the
  updated wpa_supplicant can interface properly with both vulnerable and
  patched implementations of WPA2, but an attacker won't be able to exploit the
  KRACK weaknesses in those connections anymore even if the other party is
  still vulnerable. [bsc#1056061, CVE-2017-13078, CVE-2017-13079,
  CVE-2017-13080, CVE-2017-13081, CVE-2017-13087, CVE-2017-13088]


-----------------------------------------
Patch: SUSE-2017-1762
Released: Tue Oct 24 10:46:16 2017
Summary: Security update for openvpn
Severity: important
References: 1060877,CVE-2017-12166
Description:
This update for openvpn fixes the following issues:

- CVE-2017-12166: Lack of bound check in read_key in old legacy key handling before using values could be used for a remote buffer overflow (bsc#1060877).


-----------------------------------------
Patch: SUSE-2017-1772
Released: Wed Oct 25 14:10:42 2017
Summary: Recommended update for logrotate
Severity: low
References: 1057801
Description:
This update for logrotate provides the following fix:

- Make sure log files continue to rotate properly when a stale status file is found. (bsc#1057801)


-----------------------------------------
Patch: SUSE-2017-1773
Released: Wed Oct 25 20:12:12 2017
Summary: Recommended update for gnome-settings-daemon
Severity: low
References: 1045780,990470
Description:
This update for gnome-settings-daemon provides the following fix:

- Fix two-finger scrolling in the GNOME desktop environment. (bsc#990470)
- Fix a crash when enabling headset output under some specific conditions. (bsc#1045780)


-----------------------------------------
Patch: SUSE-2017-1775
Released: Thu Oct 26 09:10:33 2017
Summary: Optional update for gdb
Severity: moderate
References: 1056437,1062315,1062316,1062318,985550
Description:


The GNU Debugger GDB was updated to the 8.0.1 release, bringing
lots of features and bugfixes.


- Link gdb against a bundled libipt (processor trace
  library) on x86_64 and i686 for improved tracing support
  on Intel CPUs.  [bsc#985550]

- Rebase to 8.0.1 release (fixing PR21886, PR22046)

- Updated libstdc++ pretty printers to gdb-libstdc++-v3-python-7.1.1-20170526.tar.bz2 .

- Add support for zSeries z14 specific features [fate#321514, bsc#1062315, fate#322272, bsc#1062318]

- Disable guile extensions for new distros, the gdb support
  is incompatible with guile 2.2.

- Rebase to gdb 8.0 release: [fate#319573]

  * support for DWARF5 (except its .debug_names)
  * support C++11 rvalue references
  * support PKU register (memory protection keys on future Intel CPUs)
  * python scripting:
    - start, stop and access running btrace
    - rvalue references in gdb.Type
  * record/replay x86_64 rdrand and rdseed
  * removed support for GCJ compiled java programs
  * user commands accept more than 10 arguments
  * 'eval' expands user-defined command arguments
  * new options:
    set/show disassembler-options (on arm, ppc s390)

- Update to gdb 7.12.1

  * negative repeat count for x examines backwards
  * fortran: support structs/arrays with dynamically types fields
  * support MPX bound checking
  * support for the Rust language
  * 'catch syscall' now can catch groups of related syscalls
  * New (sub)commands:
    - skip {-file,-gfile,-function,-rfunction}: generic skip
      mechanism
    - maint {selftest,info line-table}
    - new-ui: create new user interface for GUI clients
  * (fast) tracepoints on s390x and ppc64le added to gdbserver
  * New target Andes NDS32



-----------------------------------------
Patch: SUSE-2017-1776
Released: Thu Oct 26 09:44:44 2017
Summary: Security update for tcpdump
Severity: moderate
References: 1047873,1057247,CVE-2017-11108,CVE-2017-11541,CVE-2017-11542,CVE-2017-11543,CVE-2017-12893,CVE-2017-12894,CVE-2017-12895,CVE-2017-12896,CVE-2017-12897,CVE-2017-12898,CVE-2017-12899,CVE-2017-12900,CVE-2017-12901,CVE-2017-12902,CVE-2017-12985,CVE-2017-12986,CVE-2017-12987,CVE-2017-12988,CVE-2017-12989,CVE-2017-12990,CVE-2017-12991,CVE-2017-12992,CVE-2017-12993,CVE-2017-12994,CVE-2017-12995,CVE-2017-12996,CVE-2017-12997,CVE-2017-12998,CVE-2017-12999,CVE-2017-13000,CVE-2017-13001,CVE-2017-13002,CVE-2017-13003,CVE-2017-13004,CVE-2017-13005,CVE-2017-13006,CVE-2017-13007,CVE-2017-13008,CVE-2017-13009,CVE-2017-13010,CVE-2017-13011,CVE-2017-13012,CVE-2017-13013,CVE-2017-13014,CVE-2017-13015,CVE-2017-13016,CVE-2017-13017,CVE-2017-13018,CVE-2017-13019,CVE-2017-13020,CVE-2017-13021,CVE-2017-13022,CVE-2017-13023,CVE-2017-13024,CVE-2017-13025,CVE-2017-13026,CVE-2017-13027,CVE-2017-13028,CVE-2017-13029,CVE-2017-13030,CVE-2017-13031,CVE-2017-13032,CVE-2017-13033,CVE-2017-13034,CVE-2017-13035,CVE-2017-13036,CVE-2017-13037,CVE-2017-13038,CVE-2017-13039,CVE-2017-13040,CVE-2017-13041,CVE-2017-13042,CVE-2017-13043,CVE-2017-13044,CVE-2017-13045,CVE-2017-13046,CVE-2017-13047,CVE-2017-13048,CVE-2017-13049,CVE-2017-13050,CVE-2017-13051,CVE-2017-13052,CVE-2017-13053,CVE-2017-13054,CVE-2017-13055,CVE-2017-13687,CVE-2017-13688,CVE-2017-13689,CVE-2017-13690,CVE-2017-13725
Description:
This update for tcpdump to version 4.9.2 fixes several issues.

These security issues were fixed:

- CVE-2017-11108: Prevent remote attackers to cause DoS (heap-based buffer over-read and application crash) via crafted packet data. The crash occured in the EXTRACT_16BITS function, called from the stp_print function for the Spanning Tree Protocol (bsc#1047873, bsc#1057247).
- CVE-2017-11543: Prevent buffer overflow in the sliplink_print function in print-sl.c that allowed remote DoS (bsc#1057247).
- CVE-2017-13011: Prevent buffer overflow in bittok2str_internal() that allowed remote DoS (bsc#1057247)
- CVE-2017-12989: Prevent infinite loop in the RESP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12990: Prevent infinite loop in the ISAKMP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12995: Prevent infinite loop in the DNS parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12997: Prevent infinite loop in the LLDP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-11541: Prevent heap-based buffer over-read in the lldp_print function in print-lldp.c, related to util-print.c that allowed remote DoS (bsc#1057247).
- CVE-2017-11542: Prevent heap-based buffer over-read in the pimv1_print function in print-pim.c that allowed remote DoS (bsc#1057247).
- CVE-2017-12893: Prevent buffer over-read in the SMB/CIFS parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12894: Prevent buffer over-read in several protocol parsers that allowed remote DoS (bsc#1057247)
- CVE-2017-12895: Prevent buffer over-read in the ICMP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12896: Prevent buffer over-read in the ISAKMP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12897: Prevent buffer over-read in the ISO CLNS parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12898: Prevent buffer over-read in the NFS parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12899: Prevent buffer over-read in the DECnet parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12900: Prevent buffer over-read in the in several protocol parsers that allowed remote DoS (bsc#1057247)
- CVE-2017-12901: Prevent buffer over-read in the EIGRP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12902: Prevent buffer over-read in the Zephyr parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12985: Prevent buffer over-read in the IPv6 parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12986: Prevent buffer over-read in the IPv6 routing header parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12987: Prevent buffer over-read in the 802.11 parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12988: Prevent buffer over-read in the telnet parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12991: Prevent buffer over-read in the BGP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12992: Prevent buffer over-read in the RIPng parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12993: Prevent buffer over-read in the Juniper protocols parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12994: Prevent buffer over-read in the BGP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12996: Prevent buffer over-read in the PIMv2 parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12998: Prevent buffer over-read in the IS-IS parser that allowed remote DoS (bsc#1057247)
- CVE-2017-12999: Prevent buffer over-read in the IS-IS parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13000: Prevent buffer over-read in the IEEE 802.15.4 parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13001: Prevent buffer over-read in the NFS parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13002: Prevent buffer over-read in the AODV parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13003: Prevent buffer over-read in the LMP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13004: Prevent buffer over-read in the Juniper protocols parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13005: Prevent buffer over-read in the NFS parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13006: Prevent buffer over-read in the L2TP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13007: Prevent buffer over-read in the Apple PKTAP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13008: Prevent buffer over-read in the IEEE 802.11 parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13009: Prevent buffer over-read in the IPv6 mobility parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13010: Prevent buffer over-read in the BEEP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13012: Prevent buffer over-read in the ICMP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13013: Prevent buffer over-read in the ARP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13014: Prevent buffer over-read in the White Board protocol parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13015: Prevent buffer over-read in the EAP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13016: Prevent buffer over-read in the ISO ES-IS parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13017: Prevent buffer over-read in the DHCPv6 parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13018: Prevent buffer over-read in the PGM parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13019: Prevent buffer over-read in the PGM parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13020: Prevent buffer over-read in the VTP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13021: Prevent buffer over-read in the ICMPv6 parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13022: Prevent buffer over-read in the IP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13023: Prevent buffer over-read in the IPv6 mobility parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13024: Prevent buffer over-read in the IPv6 mobility parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13025: Prevent buffer over-read in the IPv6 mobility parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13026: Prevent buffer over-read in the ISO IS-IS parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13027: Prevent buffer over-read in the LLDP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13028: Prevent buffer over-read in the BOOTP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13029: Prevent buffer over-read in the PPP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13030: Prevent buffer over-read in the PIM parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13031: Prevent buffer over-read in the IPv6 fragmentation header parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13032: Prevent buffer over-read in the RADIUS parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13033: Prevent buffer over-read in the VTP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13034: Prevent buffer over-read in the PGM parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13035: Prevent buffer over-read in the ISO IS-IS parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13036: Prevent buffer over-read in the OSPFv3 parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13037: Prevent buffer over-read in the IP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13038: Prevent buffer over-read in the PPP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13039: Prevent buffer over-read in the ISAKMP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13040: Prevent buffer over-read in the MPTCP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13041: Prevent buffer over-read in the ICMPv6 parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13042: Prevent buffer over-read in the HNCP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13043: Prevent buffer over-read in the BGP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13044: Prevent buffer over-read in the HNCP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13045: Prevent buffer over-read in the VQP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13046: Prevent buffer over-read in the BGP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13047: Prevent buffer over-read in the ISO ES-IS parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13048: Prevent buffer over-read in the RSVP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13049: Prevent buffer over-read in the Rx protocol parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13050: Prevent buffer over-read in the RPKI-Router parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13051: Prevent buffer over-read in the RSVP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13052: Prevent buffer over-read in the CFM parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13053: Prevent buffer over-read in the BGP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13054: Prevent buffer over-read in the LLDP parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13055: Prevent buffer over-read in the ISO IS-IS parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13687: Prevent buffer over-read in the Cisco HDLC parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13688: Prevent buffer over-read in the OLSR parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13689: Prevent buffer over-read in the IKEv1 parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13690: Prevent buffer over-read in the IKEv2 parser that allowed remote DoS (bsc#1057247)
- CVE-2017-13725: Prevent buffer over-read in the IPv6 routing header parser that allowed remote DoS (bsc#1057247)
- Prevent segmentation fault in ESP decoder with OpenSSL 1.1 (bsc#1057247)


-----------------------------------------
Patch: SUSE-2017-1780
Released: Thu Oct 26 16:43:56 2017
Summary: Security update for wireshark
Severity: moderate
References: 1062645,CVE-2017-15191,CVE-2017-15192,CVE-2017-15193
Description:
This update for wireshark fixes the following issues:

Wireshark was updated to 2.2.10, fixing security issues and bugs:

* CVE-2017-15191: DMP dissector crash (wnpa-sec-2017-44)
* CVE-2017-15192: BT ATT dissector crash (wnpa-sec-2017-42)
* CVE-2017-15193: MBIM dissector crash (wnpa-sec-2017-43)


-----------------------------------------
Patch: SUSE-2017-1796
Released: Fri Oct 27 21:25:06 2017
Summary: Recommended update for pcre
Severity: moderate
References: 1058722
Description:


This update for pcre fixes the following issues:

- Fixed the pcre stack frame size detection because modern compilers
  break it due to cloning and inlining pcre match() function (bsc#1058722)


-----------------------------------------
Patch: SUSE-2017-1802
Released: Tue Oct 31 12:05:17 2017
Summary: Recommended update for iptables
Severity: low
References: 1045130
Description:
This update for iptables provides the following fix:

- Fix a locking issue of iptables-batch when other programs modify the iptables rules in parallel (bsc#1045130)


-----------------------------------------
Patch: SUSE-2017-1803
Released: Wed Nov  1 19:55:57 2017
Summary: Recommended update for gnome-keyring, libsecret
Severity: low
References: 1043861
Description:
This update for gnome-keyring and libsecret provides the following fix:

- Ensure that generated secret occupies the same number of bytes as prime. Eliminates
  random errors while libsecret tries to communicate with gnome-keyring. (bsc#1043861)


-----------------------------------------
Patch: SUSE-2017-1815
Released: Mon Nov  6 09:39:29 2017
Summary: Security update for webkit2gtk3
Severity: important
References: 1020950,1024749,1045460,1050469,CVE-2016-7586,CVE-2016-7589,CVE-2016-7592,CVE-2016-7599,CVE-2016-7623,CVE-2016-7632,CVE-2016-7635,CVE-2016-7639,CVE-2016-7641,CVE-2016-7645,CVE-2016-7652,CVE-2016-7654,CVE-2016-7656,CVE-2017-2350,CVE-2017-2354,CVE-2017-2355,CVE-2017-2356,CVE-2017-2362,CVE-2017-2363,CVE-2017-2364,CVE-2017-2365,CVE-2017-2366,CVE-2017-2369,CVE-2017-2371,CVE-2017-2373,CVE-2017-2496,CVE-2017-2510,CVE-2017-2538,CVE-2017-2539,CVE-2017-7018,CVE-2017-7030,CVE-2017-7034,CVE-2017-7037,CVE-2017-7039,CVE-2017-7046,CVE-2017-7048,CVE-2017-7055,CVE-2017-7056,CVE-2017-7061,CVE-2017-7064
Description:
This update for webkit2gtk3 to version 2.18.0 fixes the following issues:

These security issues were fixed:

- CVE-2017-7039: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1050469).
- CVE-2017-7018: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1050469).
- CVE-2017-7030: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1050469).
- CVE-2017-7037: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1050469).
- CVE-2017-7034: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1050469).
- CVE-2017-7055: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1050469).
- CVE-2017-7056: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1050469).
- CVE-2017-7064: An issue was fixed that allowed remote attackers to bypass
  intended memory-read restrictions via a crafted app (bsc#1050469).
- CVE-2017-7061: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1050469).
- CVE-2017-7048: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1050469).
- CVE-2017-7046: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and
  application crash) via a crafted web site (bsc#1050469).
- CVE-2017-2538: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1045460)
- CVE-2017-2496: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site.
- CVE-2017-2539: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site.
- CVE-2017-2510: An issue was fixed that allowed remote attackers to conduct
  Universal XSS (UXSS) attacks via a crafted web site that improperly
  interacts with pageshow events.
- CVE-2017-2365: An issue was fixed that allowed remote attackers to bypass the
  Same Origin Policy and obtain sensitive information via a crafted web
  site (bsc#1024749)
- CVE-2017-2366: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and
  application crash) via a crafted web site (bsc#1024749)
- CVE-2017-2373: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and
  application crash) via a crafted web site (bsc#1024749)
- CVE-2017-2363: An issue was fixed that allowed remote attackers to bypass the
  Same Origin Policy and obtain sensitive information via a crafted web
  site (bsc#1024749)
- CVE-2017-2362: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and
  application crash) via a crafted web site (bsc#1024749)
- CVE-2017-2350: An issue was fixed that allowed remote attackers to bypass the
  Same Origin Policy and obtain sensitive information via a crafted web
  site (bsc#1024749)
- CVE-2017-2350: An issue was fixed that allowed remote attackers to bypass the
  Same Origin Policy and obtain sensitive information via a crafted web site
  (bsc#1024749)
- CVE-2017-2354: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and
  application crash) via a crafted web site (bsc#1024749).
- CVE-2017-2355: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (uninitialized memory
  access and application crash) via a crafted web site (bsc#1024749)
- CVE-2017-2356: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and
  application crash) via a crafted web site (bsc#1024749)
- CVE-2017-2371: An issue was fixed that allowed remote attackers to launch
  popups via a crafted web site (bsc#1024749)
- CVE-2017-2364: An issue was fixed that allowed remote attackers to bypass the
  Same Origin Policy and obtain sensitive information via a crafted web
  site (bsc#1024749)
- CVE-2017-2369: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and
  application crash) via a crafted web site (bsc#1024749)
- CVE-2016-7656: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and
  application crash) via a crafted web site (bsc#1020950)
- CVE-2016-7635: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and
  application crash) via a crafted web site (bsc#1020950)
- CVE-2016-7654: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and
  application crash) via a crafted web site (bsc#1020950)
- CVE-2016-7639: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and
  application crash) via a crafted web site (bsc#1020950)
- CVE-2016-7645: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and
  application crash) via a crafted web site (bsc#1020950)
- CVE-2016-7652: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and
  application crash) via a crafted web site (bsc#1020950)
- CVE-2016-7641: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and
  application crash) via a crafted web site (bsc#1020950)
- CVE-2016-7632: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and
  application crash) via a crafted web site (bsc#1020950)
- CVE-2016-7599: An issue was fixed that allowed remote attackers to bypass the
  Same Origin Policy and obtain sensitive information via a crafted web
  site that used HTTP redirects (bsc#1020950)
- CVE-2016-7592: An issue was fixed that allowed remote attackers to obtain
  sensitive information via crafted JavaScript prompts on a web site (bsc#1020950)
- CVE-2016-7589: An issue was fixed that allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and
  application crash) via a crafted web site (bsc#1020950)
- CVE-2016-7623: An issue was fixed that allowed remote attackers to obtain
  sensitive information via a blob URL on a web site (bsc#1020950)
- CVE-2016-7586: An issue was fixed that allowed remote attackers to obtain
  sensitive information via a crafted web site (bsc#1020950)

For other non-security fixes please check the changelog.


-----------------------------------------
Patch: SUSE-2017-1826
Released: Wed Nov  8 08:47:17 2017
Summary: Security update for krb5
Severity: important
References: 1065274,CVE-2017-15088
Description:
This update for krb5 fixes the following issues:

Security issues fixed:

- CVE-2017-15088: A buffer overflow in get_matching_data() was fixed that could under specific circumstances be used to execute code (bsc#1065274)


-----------------------------------------
Patch: SUSE-2017-1828
Released: Wed Nov  8 08:49:08 2017
Summary: Security update for ImageMagick
Severity: moderate
References: 1049379,1050135,1052249,1052253,1052545,1054924,1055219,1055430,1061873,CVE-2016-7530,CVE-2017-11446,CVE-2017-11534,CVE-2017-12428,CVE-2017-12431,CVE-2017-12433,CVE-2017-13133,CVE-2017-13139,CVE-2017-15033
Description:


This update for ImageMagick fixes the following issues:

Security issues fixed:

* CVE-2017-15033: A denial of service attack (memory leak) was fixed in ReadYUVImage in coders/yuv.c [bsc#1061873]
* CVE-2017-11446: An infinite loop in ReadPESImage was fixed. (bsc#1049379)
* CVE-2017-12433: A memory leak in ReadPESImage in coders/pes.c was fixed. (bsc#1052545)
* CVE-2017-12428: A memory leak in ReadWMFImage in coders/wmf.c was fixed. (bsc#1052249)
* CVE-2017-12431: A use-after-free in ReadWMFImage was fixed. (bsc#1052253)
* CVE-2017-11534: A memory leak in the lite_font_map() in coders/wmf.c was fixed. (bsc#1050135)
* CVE-2017-13133: A memory exhaustion in load_level function in coders/xcf.c was fixed. (bsc#1055219)
* CVE-2017-13139: A out-of-bounds read in the ReadOneMNGImage was fixed. (bsc#1055430)

This update also reverts an incorrect fix for CVE-2016-7530 [bsc#1054924].


-----------------------------------------
Patch: SUSE-2017-1847
Released: Fri Nov 10 13:09:43 2017
Summary: Security update for java-1_8_0-openjdk
Severity: important
References: 1032647,1052009,1064069,1064070,1064071,1064072,1064073,1064075,1064077,1064078,1064079,1064080,1064081,1064082,1064083,1064084,1064085,1064086,CVE-2016-10165,CVE-2016-9840,CVE-2016-9841,CVE-2016-9842,CVE-2016-9843,CVE-2017-10274,CVE-2017-10281,CVE-2017-10285,CVE-2017-10295,CVE-2017-10345,CVE-2017-10346,CVE-2017-10347,CVE-2017-10348,CVE-2017-10349,CVE-2017-10350,CVE-2017-10355,CVE-2017-10356,CVE-2017-10357,CVE-2017-10388
Description:
This update for java-1_8_0-openjdk fixes the following issues:

- Update to version jdk8u151 (icedtea 3.6.0)

Security issues fixed:

- CVE-2017-10274: Handle smartcard clean up better (bsc#1064071)
- CVE-2017-10281: Better queuing priorities (bsc#1064072)
- CVE-2017-10285: Unreferenced references (bsc#1064073)
- CVE-2017-10295: Better URL connections (bsc#1064075)
- CVE-2017-10388: Correct Kerberos ticket grants (bsc#1064086)
- CVE-2017-10346: Better invokespecial checks (bsc#1064078)
- CVE-2017-10350: Better Base Exceptions (bsc#1064082)
- CVE-2017-10347: Better timezone processing (bsc#1064079)
- CVE-2017-10349: Better X processing (bsc#1064081)
- CVE-2017-10345: Better keystore handling (bsc#1064077)
- CVE-2017-10348: Better processing of unresolved permissions (bsc#1064080)
- CVE-2017-10357: Process Proxy presentation (bsc#1064085)
- CVE-2017-10355: More stable connection processing (bsc#1064083)
- CVE-2017-10356: Update storage implementations (bsc#1064084)
- CVE-2016-10165: Improve CMS header processing (bsc#1064069)
- CVE-2016-9840, CVE-2016-9841, CVE-2016-9842, CVE-2016-9843: Upgrade compression library (bsc#1064070)

Bug fixes:

- Fix bsc#1032647, bsc#1052009 with btrfs subvolumes and overlayfs


-----------------------------------------
Patch: SUSE-2017-1794
Released: Thu Nov 16 11:17:40 2017
Summary: Security update for wget
Severity: important
References: 1064715,1064716,CVE-2017-13089,CVE-2017-13090
Description:


This update for wget fixes the following security issues:

- CVE-2017-13089,CVE-2017-13090: Missing checks for negative remaining_chunk_size in skip_short_body and fd_read_body could
  cause stack buffer overflows, which could have been exploited by malicious servers. (bsc#1064715,bsc#1064716)


-----------------------------------------
Patch: SUSE-2017-1875
Released: Wed Nov 22 11:37:21 2017
Summary: Recommended update for gnome-desktop
Severity: low
References: 1029083,1056289
Description:
This update for gnome-desktop provides the following fixes:

- Switch new user's default input engine from 'anthy' to 'mozc' with Japanese language
  and ibus input framework. (bsc#1029083, bsc#1056289)


-----------------------------------------
Patch: SUSE-2017-1881
Released: Wed Nov 22 16:29:58 2017
Summary: Security update for file
Severity: moderate
References: 1009966,1063269,910252,910253,913650,913651,917152,996511,CVE-2014-8116,CVE-2014-8117,CVE-2014-9620,CVE-2014-9621,CVE-2014-9653
Description:


The GNU file utility was updated to version 5.22.

Security issues fixed:

- CVE-2014-9621: The ELF parser in file allowed remote attackers to cause a denial of service via a long string. (bsc#913650)
- CVE-2014-9620: The ELF parser in file allowed remote attackers to cause a denial of service via a large number of notes. (bsc#913651)
- CVE-2014-9653: readelf.c in file did not consider that pread calls sometimes read only a subset of the available data, which allows remote attackers to cause a denial of service (uninitialized memory access) or possibly have unspecified other impact via a crafted ELF file. (bsc#917152)
- CVE-2014-8116: The ELF parser (readelf.c) in file allowed remote attackers to cause a denial of service (CPU consumption or crash) via a large number of (1) program or (2) section headers or (3) invalid capabilities. (bsc#910253)
- CVE-2014-8117: softmagic.c in file did not properly limit recursion, which allowed remote attackers to cause a denial of service (CPU consumption or crash) via unspecified vectors. (bsc#910253)

Version update to file version 5.22

* add indirect relative for TIFF/Exif
* restructure elf note printing to avoid repeated messages
* add note limit, suggested by Alexander Cherepanov
* Bail out on partial pread()'s (Alexander Cherepanov)
* Fix incorrect bounds check in file_printable (Alexander Cherepanov)
* PR/405: ignore SIGPIPE from uncompress programs
* change printable -> file_printable and use it in more places for safety
* in ELF, instead of '(uses dynamic libraries)' when PT_INTERP is present print the interpreter name.

Version update to file version 5.21

* there was an incorrect free in magic_load_buffers()
* there was an out of bounds read for some pascal strings
* there was a memory leak in magic lists
* don't interpret strings printed from files using the current
  locale, convert them to ascii format first.
* there was an out of bounds read in elf note reads

Update to file version 5.20

* recognize encrypted CDF documents
* add magic_load_buffers from Brooks Davis
* add thumbs.db support

Additional non-security bug fixes:

* Fixed a memory corruption during rpmbuild (bsc#1063269)
* Backport of a fix for an increased printable string length as found in file 5.30 (bsc#996511)
* file command throws 'Composite Document File V2 Document, corrupt: Can't read SSAT' error against excel 97/2003 file format. (bsc#1009966)



-----------------------------------------
Patch: SUSE-2017-1882
Released: Wed Nov 22 16:58:12 2017
Summary: Recommended update for timezone
Severity: low
References: 1064571
Description:
This update provides the latest timezone information (2017c) for your system, including following changes:

- Northern Cyprus switches from +03 to +02/+03 on 2017-10-29
- Fiji ends DST 2018-01-14, not 2018-01-21
- Namibia switches from +01/+02 to +02 on 2018-04-01
- Sudan switches from +03 to +02 on 2017-11-01
- Tonga likely switches from +13/+14 to +13 on 2017-11-05
- Turks and Caicos switches from -04 to -05/-04 on 2018-11-04
- Corrections to past DST transitions
- Move oversized Canada/East-Saskatchewan to 'backward' file
- zic(8) and the reference runtime now reject multiple leap seconds within 28 days
  of each other, or leap seconds before the Epoch.


-----------------------------------------
Patch: SUSE-2017-1903
Released: Fri Nov 24 16:19:37 2017
Summary: Security update for perl
Severity: moderate
References: 1047178,1057721,1057724,999735,CVE-2017-12837,CVE-2017-12883,CVE-2017-6512
Description:
This update for perl fixes the following issues:

Security issues fixed:
- CVE-2017-12837: Heap-based buffer overflow in the S_regatom function in regcomp.c in Perl 5 before
  5.24.3-RC1 and 5.26.x before 5.26.1-RC1 allows remote attackers to cause a denial of service
  (out-of-bounds write) via a regular expression with a '\N{}' escape and the case-insensitive
  modifier. (bnc#1057724)
- CVE-2017-12883: Buffer overflow in the S_grok_bslash_N function in regcomp.c in Perl 5 before
  5.24.3-RC1 and 5.26.x before 5.26.1-RC1 allows remote attackers to disclose sensitive information
  or cause a denial of service (application crash) via a crafted regular expression with an invalid
  '\N{U+...}' escape. (bnc#1057721)
- CVE-2017-6512: Race condition in the rmtree and remove_tree functions in the File-Path module
  before 2.13 for Perl allows attackers to set the mode on arbitrary files via vectors involving
  directory-permission loosening logic. (bnc#1047178)

Bug fixes:
- backport set_capture_string changes from upstream (bsc#999735)
- reformat baselibs.conf as source validator workaround


-----------------------------------------
Patch: SUSE-2017-1916
Released: Fri Nov 24 20:15:01 2017
Summary: Recommended update for libgcrypt
Severity: important
References: 1043333,1059723
Description:
This update for libgcrypt provides the following fix:

- Fix a regression in a previous update which caused libgcrypt to leak file descriptors
  causing failures when starting rtkit-daemon. (bsc#1059723)


-----------------------------------------
Patch: SUSE-2017-1917
Released: Mon Nov 27 13:32:07 2017
Summary: Optional update for gcc7
Severity: low
References: 1056437,1062591,1062592
Description:

The GNU Compiler GCC 7 is being added to the Toolchain Module by this update.

New features:

- Support for specific IBM Power9 processor instructions.
- Support for specific IBM zSeries z14 processor instructions.
- New packages cross-npvtx-gcc7 and nvptx-tools added to the Toolchain Module for
  specific NVIDIA Card offload support.

The update also supplies gcc7 compatible libstdc++, libgcc_s1 and other gcc derived
libraries for the base products of SUSE Linux Enterprise 12.

Various optimizers have been improved in GCC 7, several of bugs fixed, quite some new
warnings added and the error pin-pointing and fix-suggestions have been greatly improved.

The GNU Compiler page for GCC 7 contains a summary of all the changes that have happened:

	https://gcc.gnu.org/gcc-7/changes.html


-----------------------------------------
Patch: SUSE-2017-1965
Released: Thu Nov 30 12:48:45 2017
Summary: Recommended update for libsolv, libzypp, zypper
Severity: moderate
References: 1047233,1053671,1057188,1057634,1058695,1058783,1059065,1061384,1062561,1064999,661410
Description:
The Software Update Stack was updated to receive fixes and enhancements.

libsolv:

- Many fixes and improvements for cleandeps.
- Always create dup rules for 'distupgrade' jobs.
- Use recommends also for ordering packages.
- Fix splitprovides handling with addalreadyrecommended turned off. (bsc#1059065)
- Expose solver_get_recommendations() in bindings.
- Fix bug in solver_prune_to_highest_prio_per_name resulting in bad output from solver_get_recommendations().
- Support 'without' and 'unless' dependencies.
- Use same heuristic as upstream to determine source RPMs.
- Fix memory leak in bindings.
- Add pool_best_solvables() function.
- Fix 64bit integer parsing from RPM headers.
- Enable bzip2 and xz/lzma compression support.
- Enable complex/rich dependencies on distributions with RPM 4.13+.

libzypp:

- Fix media handling in presence of a repo path prefix. (bsc#1062561)
- Fix RepoProvideFile ignoring a repo path prefix. (bsc#1062561)
- Remove unused legacy notify-message script. (bsc#1058783)
- Support multiple product licenses in repomd. (fate#322276)
- Propagate 'rpm --import' errors. (bsc#1057188)
- Fix typos in zypp.conf.

zypper:

- Locale: Fix possible segmentation fault. (bsc#1064999)
- Add summary hint if product is better updated by a different command. This is mainly
  used by rolling distributions like openSUSE Tumbleweed to remind their users to use
  'zypper dup' to update (not zypper up or patch). (bsc#1061384)
- Unify '(add|modify)(repo|service)' property related arguments.
- Fixed 'add' commands supporting to set only a subset of properties.
- Introduced '-f/-F' as preferred short option for --[no-]refresh in all four commands.
  (bsc#661410, bsc#1053671)
- Fix missing package names in installation report. (bsc#1058695)
- Differ between unsupported and packages with unknown support status. (bsc#1057634)
- Return error code '107' if an RPM's %post configuration script fails, but only
  if ZYPPER_ON_CODE12_RETURN_107=1 is set in the environment. (bsc#1047233)


-----------------------------------------
Patch: SUSE-2017-1968
Released: Thu Nov 30 19:49:33 2017
Summary: Recommended update for coreutils
Severity: low
References: 1026567,1043059,965780
Description:
This update for coreutils provides the following fixes:

- Fix df(1) to no longer interact with excluded file system types, so for example
  specifying -x nfs no longer hangs with problematic nfs mounts. (bsc#1026567)
- Ensure df -l no longer interacts with dummy file system types, so for example no
  longer hangs with problematic NFS mounted via system.automount(5). (bsc#1043059)
- Significantly speed up df(1) for huge mount lists. (bsc#965780)


-----------------------------------------
Patch: SUSE-2017-1969
Released: Thu Nov 30 19:50:53 2017
Summary: Recommended update for libtool
Severity: low
References: 1056381
Description:
This update for libtool provides the following fix:

- Add missing dependencies and provides to baselibs.conf to make sure libltdl libraries
  are properly installed. (bsc#1056381)


-----------------------------------------
Patch: SUSE-2017-1971
Released: Thu Nov 30 22:58:14 2017
Summary: Security update for binutils
Severity: moderate
References: 1003846,1025282,1029907,1029908,1029909,1029995,1030296,1030297,1030298,1030583,1030584,1030585,1030588,1030589,1031590,1031593,1031595,1031638,1031644,1031656,1033122,1037052,1037057,1037061,1037062,1037066,1037070,1037072,1037273,1038874,1038875,1038876,1038877,1038878,1038880,1038881,1044891,1044897,1044901,1044909,1044925,1044927,1046094,1052061,1052496,1052503,1052507,1052509,1052511,1052514,1052518,1053347,1056312,1056437,1057139,1057144,1057149,1058480,1059050,1060599,1060621,1061241,437293,445037,546106,561142,578249,590820,691290,698346,713504,776968,863764,938658,970239,CVE-2014-9939,CVE-2017-12448,CVE-2017-12450,CVE-2017-12452,CVE-2017-12453,CVE-2017-12454,CVE-2017-12456,CVE-2017-12799,CVE-2017-13757,CVE-2017-14128,CVE-2017-14129,CVE-2017-14130,CVE-2017-14333,CVE-2017-14529,CVE-2017-14729,CVE-2017-14745,CVE-2017-14974,CVE-2017-6965,CVE-2017-6966,CVE-2017-6969,CVE-2017-7209,CVE-2017-7210,CVE-2017-7223,CVE-2017-7224,CVE-2017-7225,CVE-2017-7226,CVE-2017-7227,CVE-2017-7299,CVE-2017-7300,CVE-2017-7301,CVE-2017-7302,CVE-2017-7303,CVE-2017-7304,CVE-2017-7614,CVE-2017-8392,CVE-2017-8393,CVE-2017-8394,CVE-2017-8395,CVE-2017-8396,CVE-2017-8397,CVE-2017-8398,CVE-2017-8421,CVE-2017-9038,CVE-2017-9039,CVE-2017-9040,CVE-2017-9041,CVE-2017-9042,CVE-2017-9043,CVE-2017-9044,CVE-2017-9746,CVE-2017-9747,CVE-2017-9748,CVE-2017-9750,CVE-2017-9755,CVE-2017-9756,CVE-2017-9954,CVE-2017-9955
Description:


GNU binutil was updated to the 2.29.1 release, bringing various new features, fixing a lot of bugs and security issues.

Following security issues are being addressed by this release:

  * 18750 bsc#1030296 CVE-2014-9939
  * 20891 bsc#1030585 CVE-2017-7225
  * 20892 bsc#1030588 CVE-2017-7224
  * 20898 bsc#1030589 CVE-2017-7223
  * 20905 bsc#1030584 CVE-2017-7226
  * 20908 bsc#1031644 CVE-2017-7299
  * 20909 bsc#1031656 CVE-2017-7300
  * 20921 bsc#1031595 CVE-2017-7302
  * 20922 bsc#1031593 CVE-2017-7303
  * 20924 bsc#1031638 CVE-2017-7301
  * 20931 bsc#1031590 CVE-2017-7304
  * 21135 bsc#1030298 CVE-2017-7209 
  * 21137 bsc#1029909 CVE-2017-6965
  * 21139 bsc#1029908 CVE-2017-6966
  * 21156 bsc#1029907 CVE-2017-6969
  * 21157 bsc#1030297 CVE-2017-7210
  * 21409 bsc#1037052 CVE-2017-8392
  * 21412 bsc#1037057 CVE-2017-8393
  * 21414 bsc#1037061 CVE-2017-8394
  * 21432 bsc#1037066 CVE-2017-8396
  * 21440 bsc#1037273 CVE-2017-8421
  * 21580 bsc#1044891 CVE-2017-9746
  * 21581 bsc#1044897 CVE-2017-9747
  * 21582 bsc#1044901 CVE-2017-9748
  * 21587 bsc#1044909 CVE-2017-9750
  * 21594 bsc#1044925 CVE-2017-9755
  * 21595 bsc#1044927 CVE-2017-9756
  * 21787 bsc#1052518 CVE-2017-12448
  * 21813 bsc#1052503, CVE-2017-12456, bsc#1052507, CVE-2017-12454, bsc#1052509, CVE-2017-12453, bsc#1052511, CVE-2017-12452, bsc#1052514, CVE-2017-12450, bsc#1052503, CVE-2017-12456, bsc#1052507, CVE-2017-12454, bsc#1052509, CVE-2017-12453, bsc#1052511, CVE-2017-12452, bsc#1052514, CVE-2017-12450
  * 21933 bsc#1053347 CVE-2017-12799
  * 21990 bsc#1058480 CVE-2017-14333
  * 22018 bsc#1056312 CVE-2017-13757
  * 22047 bsc#1057144 CVE-2017-14129
  * 22058 bsc#1057149 CVE-2017-14130
  * 22059 bsc#1057139 CVE-2017-14128
  * 22113 bsc#1059050 CVE-2017-14529
  * 22148 bsc#1060599 CVE-2017-14745
  * 22163 bsc#1061241 CVE-2017-14974
  * 22170 bsc#1060621 CVE-2017-14729

Update to binutils 2.29. [fate#321454, fate#321494, fate#323293]:

  * The MIPS port now supports microMIPS eXtended Physical Addressing (XPA)
    instructions for assembly and disassembly.
  * The MIPS port now supports the microMIPS Release 5 ISA for assembly and
    disassembly.
  * The MIPS port now supports the Imagination interAptiv MR2 processor,
    which implements the MIPS32r3 ISA, the MIPS16e2 ASE as well as a couple
    of implementation-specific regular MIPS and MIPS16e2 ASE instructions.
  * The SPARC port now supports the SPARC M8 processor, which implements the
    Oracle SPARC Architecture 2017.
  * The MIPS port now supports the MIPS16e2 ASE for assembly and disassembly.
  * Add support for ELF SHF_GNU_MBIND and PT_GNU_MBIND_XXX.
  * Add support for the wasm32 ELF conversion of the WebAssembly file format.
  * Add --inlines option to objdump, which extends the --line-numbers option
    so that inlined functions will display their nesting information.
  * Add --merge-notes options to objcopy to reduce the size of notes in
    a binary file by merging and deleting redundant notes.
  * Add support for locating separate debug info files using the build-id
    method, where the separate file has a name based upon the build-id of
    the original file.

- GAS specific:

  * Add support for ELF SHF_GNU_MBIND.
  * Add support for the WebAssembly file format and wasm32 ELF conversion.
  * PowerPC gas now checks that the correct register class is used in
    instructions.  For instance, 'addi %f4,%cr3,%r31' warns three times
    that the registers are invalid.
  * Add support for the Texas Instruments PRU processor.
  * Support for the ARMv8-R architecture and Cortex-R52 processor has been
    added to the ARM port.

- GNU ld specific:

  * Support for -z shstk in the x86 ELF linker to generate
    GNU_PROPERTY_X86_FEATURE_1_SHSTK in ELF GNU program properties.
  * Add support for GNU_PROPERTY_X86_FEATURE_1_SHSTK in ELF GNU program
    properties in the x86 ELF linker.
  * Add support for GNU_PROPERTY_X86_FEATURE_1_IBT in ELF GNU program
    properties in the x86 ELF linker.
  * Support for -z ibtplt in the x86 ELF linker to generate IBT-enabled
    PLT.
  * Support for -z ibt in the x86 ELF linker to generate IBT-enabled
    PLT as well as GNU_PROPERTY_X86_FEATURE_1_IBT in ELF GNU program
    properties.
  * Add support for ELF SHF_GNU_MBIND and PT_GNU_MBIND_XXX.
  * Add support for ELF GNU program properties.
  * Add support for the Texas Instruments PRU processor.
  * When configuring for arc*-*-linux* targets the default linker emulation will
    change if --with-cpu=nps400 is used at configure time.
  * Improve assignment of LMAs to orphan sections in some edge cases where a
    mixture of both AT>LMA_REGION and AT(LMA) are used.
  * Orphan sections placed after an empty section that has an AT(LMA) will now
    take an load memory address starting from LMA.
  * Section groups can now be resolved (the group deleted and the group members
    placed like normal sections) at partial link time either using the new
    linker option --force-group-allocation or by placing FORCE_GROUP_ALLOCATION
    into the linker script.

- Add riscv64 target, tested with gcc7 and downstream newlib 2.4.0
- Prepare riscv32 target (gh#riscv/riscv-newlib#8)
- Make compressed debug section handling explicit, disable for
  old products and enable for gas on all architectures otherwise. [bsc#1029995]
- Remove empty rpath component removal optimization from to workaround
  CMake rpath handling.  [bsc#1025282]


  Minor security bugs fixed:
  PR 21147, PR 21148, PR 21149, PR 21150, PR 21151, PR 21155, PR 21158, PR 21159

- Update to binutils 2.28.

  * Add support for locating separate debug info files using the build-id
    method, where the separate file has a name based upon the build-id of
    the original file.
  * This version of binutils fixes a problem with PowerPC VLE 16A and 16D
    relocations which were functionally swapped, for example,
    R_PPC_VLE_HA16A performed like R_PPC_VLE_HA16D while R_PPC_VLE_HA16D
    performed like R_PPC_VLE_HA16A.  This could have been fixed by
    renumbering relocations, which would keep object files created by an
    older version of gas compatible with a newer ld.  However, that would
    require an ABI update, affecting other assemblers and linkers that
    create and process the relocations correctly.  It is recommended that
    all VLE object files be recompiled, but ld can modify the relocations
    if --vle-reloc-fixup is passed to ld.  If the new ld command line
    option is not used, ld will ld warn on finding relocations inconsistent
    with the instructions being relocated.
  * The nm program has a new command line option (--with-version-strings)
    which will display a symbol's version information, if any, after the
    symbol's name.
  * The ARC port of objdump now accepts a -M option to specify the extra
    instruction class(es) that should be disassembled.
  * The --remove-section option for objcopy and strip now accepts section
    patterns starting with an exclamation point to indicate a non-matching
    section.  A non-matching section is removed from the set of sections
    matched by an earlier --remove-section pattern.
  * The --only-section option for objcopy now accepts section patterns
    starting with an exclamation point to indicate a non-matching section.
    A non-matching section is removed from the set of sections matched by
    an earlier --only-section pattern.
  * New --remove-relocations=SECTIONPATTERN option for objcopy and strip.
    This option can be used to remove sections containing relocations.
    The SECTIONPATTERN is the section to which the relocations apply, not
    the relocation section itself.

- GAS specific:

  * Add support for the RISC-V architecture.
  * Add support for the ARM Cortex-M23 and Cortex-M33 processors.

- GNU ld specific:

  * The EXCLUDE_FILE linker script construct can now be applied outside of the
    section list in order for the exclusions to apply over all input sections
    in the list.
  * Add support for the RISC-V architecture.
  * The command line option --no-eh-frame-hdr can now be used in ELF based
    linkers to disable the automatic generation of .eh_frame_hdr sections.
  * Add --in-implib=<infile> to the ARM linker to enable specifying a set of
    Secure Gateway veneers that must exist in the output import library
    specified by --out-implib=<outfile> and the address they must have.
    As such, --in-implib is only supported in combination with --cmse-implib.
  * Extended the --out-implib=<file> option, previously restricted to x86 PE
    targets, to any ELF based target.  This allows the generation of an import
    library for an ELF executable, which can then be used by another application
    to link against the executable.

- GOLD specific:

  * Add -z bndplt option (x86-64 only) to support Intel MPX.
  * Add --orphan-handling option.
  * Add --stub-group-multi option (PowerPC only).
  * Add --target1-rel, --target1-abs, --target2 options (Arm only).
  * Add -z stack-size option.
  * Add --be8 option (Arm only).
  * Add HIDDEN support in linker scripts.
  * Add SORT_BY_INIT_PRIORITY support in linker scripts.

- Other fixes:

  * Fix section alignment on .gnu_debuglink. [bso#21193]
  * Add s390x to gold_archs.
  * Fix alignment frags for aarch64 (bsc#1003846)
  * Call ldconfig for libbfd
  * Fix an assembler problem with clang on ARM.
  * Restore monotonically increasing section offsets.


- Update to binutils 2.27.

  * Add a configure option, --enable-64-bit-archive, to force use of a
    64-bit format when creating an archive symbol index.
  * Add --elf-stt-common= option to objcopy for ELF targets to control
    whether to convert common symbols to the STT_COMMON type.

- GAS specific:

  * Default to --enable-compressed-debug-sections=gas for Linux/x86 targets.
  * Add --no-pad-sections to stop the assembler from padding the end of output
    sections up to their alignment boundary.
  * Support for the ARMv8-M architecture has been added to the ARM port.
    Support for the ARMv8-M Security and DSP Extensions has also been added
    to the ARM port.
  * ARC backend accepts .extInstruction, .extCondCode, .extAuxRegister, and
    .extCoreRegister pseudo-ops that allow an user to define custom
    instructions, conditional codes, auxiliary and core registers.
  * Add a configure option --enable-elf-stt-common to decide whether ELF
    assembler should generate common symbols with the STT_COMMON type by
    default.  Default to no.
  * New command line option --elf-stt-common= for ELF targets to control
    whether to generate common symbols with the STT_COMMON type.
  * Add ability to set section flags and types via numeric values for ELF
    based targets.
  * Add a configure option --enable-x86-relax-relocations to decide whether
    x86 assembler should generate relax relocations by default.  Default to
    yes, except for x86 Solaris targets older than Solaris 12.
  * New command line option -mrelax-relocations= for x86 target to control
    whether to generate relax relocations.
  * New command line option -mfence-as-lock-add=yes for x86 target to encode
    lfence, mfence and sfence as 'lock addl $0x0, (%[re]sp)'.
  * Add assembly-time relaxation option for ARC cpus.
  * Add --with-cpu=TYPE configure option for ARC gas.  This allows the default
    cpu type to be adjusted at configure time.

- GOLD specific:

  * Add a configure option --enable-relro to decide whether -z relro should
    be enabled by default.  Default to yes.
  * Add support for s390, MIPS, AArch64, and TILE-Gx architectures.
  * Add support for STT_GNU_IFUNC symbols.
  * Add support for incremental linking (--incremental).

- GNU ld specific:

  * Add a configure option --enable-relro to decide whether -z relro should
    be enabled in ELF linker by default.  Default to yes for all Linux
    targets except FRV, HPPA, IA64 and MIPS.
  * Support for -z noreloc-overflow in the x86-64 ELF linker to disable
    relocation overflow check.
  * Add -z common/-z nocommon options for ELF targets to control whether to
    convert common symbols to the STT_COMMON type during a relocatable link.
  * Support for -z nodynamic-undefined-weak in the x86 ELF linker, which
    avoids dynamic relocations against undefined weak symbols in executable.
  * The NOCROSSREFSTO command was added to the linker script language.
  * Add --no-apply-dynamic-relocs to the AArch64 linker to do not apply
    link-time values for dynamic relocations.



-----------------------------------------
Patch: SUSE-2017-1974
Released: Fri Dec  1 11:30:25 2017
Summary: Recommended update for zip
Severity: low
References: 1068346
Description:

This update for zip provides the following fix:

- Fix memory leaks when appending files (bsc#1068346)


-----------------------------------------
Patch: SUSE-2017-1998
Released: Tue Dec  5 17:36:24 2017
Summary: Security update for MozillaFirefox
Severity: important
References: 1068101,CVE-2017-7826,CVE-2017-7828,CVE-2017-7830
Description:
This update for MozillaFirefox ESR 52.5 fixes the following issues:

Security issues fixed:
- CVE-2017-7826: Memory safety bugs fixed (bsc#1068101).
- CVE-2017-7828: Use-after-free of PressShell while restyling layout (bsc#1068101).
- CVE-2017-7830: Cross-origin URL information leak through Resource Timing API (bsc#1068101).

Mozilla Foundation Security Advisory (MFSA 2017-25):
- https://www.mozilla.org/en-US/security/advisories/mfsa2017-25/


-----------------------------------------
Patch: SUSE-2017-2000
Released: Tue Dec  5 17:38:55 2017
Summary: Security update for libXcursor
Severity: moderate
References: 1065386,CVE-2017-16612
Description:
This update for libXcursor fixes the following issues:

Security issue fixed:

- CVE-2017-16612: Fix integeroverflow while parsing images and a signedness issue while parsing comments (bsc#1065386).


-----------------------------------------
Patch: SUSE-2017-2001
Released: Tue Dec  5 17:39:24 2017
Summary: Security update for shibboleth-sp
Severity: important
References: 1068689,CVE-2017-16852
Description:
This update for shibboleth-sp fixes the following issues:

Security issue fixed:

- CVE-2017-16852: Fix critical security checks in the Dynamic MetadataProvider plugin in Shibboleth Service (bsc#1068689).


-----------------------------------------
Patch: SUSE-2017-2009
Released: Thu Dec  7 13:21:49 2017
Summary: Security update for openssh
Severity: moderate
References: 1006166,1048367,1065000,1068310,1069509,CVE-2008-1483,CVE-2017-15906
Description:
This update for openssh fixes the following issues:

Security issue fixed:

- CVE-2017-15906: Stricter checking of operations in read-only mode in sftp server (bsc#1065000).

Bug fixes:

- FIPS: Startup selfchecks (bsc#1068310).
- FIPS: Silent complaints about unsupported key exchange methods (bsc#1006166).
- Refine handling of sockets for X11 forwarding to remove reintroduced CVE-2008-1483 (bsc#1069509).
- Test configuration before running daemon to prevent looping resulting in service shutdown (bsc#1048367)


-----------------------------------------
Patch: SUSE-2017-2011
Released: Thu Dec  7 15:28:08 2017
Summary: Security update for opensaml
Severity: important
References: 1068685,CVE-2017-16853
Description:
This update for opensaml fixes the following issues:

Security issue fixed:

- CVE-2017-16853: Fix the DynamicMetadataProvider class to properly configure itself with the MetadataFilter plugins, to avoid possible MITM attacks (bsc#1068685).


-----------------------------------------
Patch: SUSE-2017-2021
Released: Fri Dec  8 10:11:04 2017
Summary: Recommended update for file
Severity: moderate
References: 1070878,1070958
Description:
This update for file fixes detection of JPEG files.

-----------------------------------------
Patch: SUSE-2017-2039
Released: Wed Dec 13 17:10:24 2017
Summary: Security update for libapr-util1
Severity: moderate
References: 1064990,CVE-2017-12618
Description:
This update for libapr-util1 fixes the following issues:

Security issue fixed:

- CVE-2017-12618: DoS via crafted SDBM database files in apr_sdbm*() functions (bsc#1064990)


-----------------------------------------
Patch: SUSE-2017-2042
Released: Wed Dec 13 20:09:44 2017
Summary: Recommended update for libXext
Severity: low
References: 1067406
Description:
This update for libXext provides the following fix:

- Remove warning messages about missing Xge extension when translating events in a mixed
  Xlib/xcb scenario, causing the ~/.xsession-errors file to be massively filled. (bsc#1067406)


-----------------------------------------
Patch: SUSE-2017-2044
Released: Thu Dec 14 09:54:35 2017
Summary: Recommended update for psmisc
Severity: low
References: 908068
Description:
This update for psmisc provides the following fixes:

- Use mountinfo to distinguish different mounts with same device number as it happens with NFS shares. (bsc#908068)
- Smaller cleanup as support of chroot environments and older systems.
- Add support for name_to_handle_at() system call to get the real mount ID for each file.
- Run even on older kernels missing mnt_id tag in fdinfo.


-----------------------------------------
Patch: SUSE-2017-2088
Released: Fri Dec 15 14:10:31 2017
Summary: Recommended update for hwinfo
Severity: low
References: 1041090,1047218,1051076,1062562
Description:

This update for hwinfo fixes the following issues:

- Support SMBIOS 3.0 spec (bsc#1062562)
- Ensure /var/lib/hardware/udi exists and with 755 permissions
- Sort input files (bsc#1041090)
- Allow to override current time (bsc#1047218)
- Really set default timeout to 20s for Video BIOS emulation calls


-----------------------------------------
Patch: SUSE-2017-2095
Released: Fri Dec 15 21:04:51 2017
Summary: Recommended update for cifs-utils
Severity: low
References: 1025471
Description:

This update for cifs-utils fixes the following issues:

- Document SMB3+ and new seal option (fate#322075)
- Get rid of init script on everything based off SLE12+ (bsc#1025471)
- Use https urls


-----------------------------------------
Patch: SUSE-2017-2123
Released: Wed Dec 20 12:24:02 2017
Summary: Security update for ImageMagick
Severity: important
References: 1048457,1049796,1050083,1050116,1050139,1050632,1051441,1051847,1052450,1052553,1052689,1052744,1052758,1052764,1054757,1055214,1056432,1057157,1057719,1057729,1057730,1058485,1058637,1059666,1059778,1060176,1060577,1061254,1062750,1066003,1067181,1067184,1067409,CVE-2017-11188,CVE-2017-11478,CVE-2017-11523,CVE-2017-11527,CVE-2017-11535,CVE-2017-11640,CVE-2017-11752,CVE-2017-12140,CVE-2017-12435,CVE-2017-12587,CVE-2017-12644,CVE-2017-12662,CVE-2017-12669,CVE-2017-12983,CVE-2017-13134,CVE-2017-13769,CVE-2017-14138,CVE-2017-14172,CVE-2017-14173,CVE-2017-14175,CVE-2017-14341,CVE-2017-14342,CVE-2017-14531,CVE-2017-14607,CVE-2017-14682,CVE-2017-14733,CVE-2017-14989,CVE-2017-15217,CVE-2017-15930,CVE-2017-16545,CVE-2017-16546,CVE-2017-16669
Description:
This update for ImageMagick fixes the following issues:

  * CVE-2017-14989: use-after-free in RenderFreetype in MagickCore/annotate.c could lead to denial of service [bsc#1061254]
  * CVE-2017-14682: GetNextToken in MagickCore/token.c heap buffer overflow could lead to denial of service [bsc#1060176]
  * Memory leak in WriteINLINEImage in coders/inline.c could lead to denial of service [bsc#1052744]
  * CVE-2017-14607: out of bounds read flaw related to ReadTIFFImagehas  could possibly disclose potentially sensitive memory [bsc#1059778]
  * CVE-2017-11640: NULL pointer deref in WritePTIFImage() in coders/tiff.c [bsc#1050632]
  * CVE-2017-14342: a memory exhaustion vulnerability in ReadWPGImage in coders/wpg.c could lead to denial of service [bsc#1058485]
  * CVE-2017-14341: Infinite loop in the ReadWPGImage function [bsc#1058637]
  * CVE-2017-16546: problem in the function ReadWPGImage in coders/wpg.c could lead to denial of service [bsc#1067181]
  * CVE-2017-16545: The ReadWPGImage function in coders/wpg.c in  validation problems could lead to denial of service [bsc#1067184]
  * CVE-2017-16669: problem in coders/wpg.c could allow remote attackers to cause a denial of service via crafted file [bsc#1067409]
  * CVE-2017-14175: Lack of End of File check could lead to denial of service [bsc#1057719]
  * CVE-2017-14138: memory leak vulnerability in ReadWEBPImage in coders/webp.c could lead to denial of service [bsc#1057157]
  * CVE-2017-13769: denial of service issue in function WriteTHUMBNAILImage in coders/thumbnail.c [bsc#1056432]
  * CVE-2017-13134: a heap-based buffer over-read was found in thefunction SFWScan in coders/sfw.c, which allows attackers to cause adenial of service via a crafted file. [bsc#1055214]
  * CVE-2017-15217: memory leak in ReadSGIImage in coders/sgi.c [bsc#1062750]
  * CVE-2017-11478: ReadOneDJVUImage in coders/djvu.c in ImageMagick allows remote attackers to cause a DoS [bsc#1049796]
  * CVE-2017-15930: Null Pointer dereference  while transfering JPEG scanlines could lead to denial of service [bsc#1066003]
  * CVE-2017-12983: Heap-based buffer overflow in the ReadSFWImage function in coders/sfw.c inImageMagick 7.0.6-8 allows remote attackers to cause a denial of service [bsc#1054757]
  * CVE-2017-14531: memory exhaustion issue in ReadSUNImage incoders/sun.c. [bsc#1059666]
  * CVE-2017-12435: Memory exhaustion in ReadSUNImage in coders/sun.c, which allows attackers to cause denial of service [bsc#1052553]
  * CVE-2017-12587: User controlable large loop in the ReadPWPImage in coders\pwp.c could lead to denial of service [bsc#1052450]
  * CVE-2017-11523: ReadTXTImage in coders/txt.c allows remote attackers to cause a denial of service [bsc#1050083]
  * CVE-2017-14173: unction ReadTXTImage is vulnerable to a integer overflow that could lead to denial of service [bsc#1057729]
  * CVE-2017-11188: ImageMagick: The ReadDPXImage function in codersdpx.c in ImageMagick 7.0.6-0 has a largeloop vulnerability that can cause CPU exhaustion via a crafted DPX file, relatedto lack of an EOF check. [bnc#1048457]
  * CVE-2017-11527: ImageMagick: ReadDPXImage in coders/dpx.c allows remote attackers to cause DoS [bnc#1050116] 
  * CVE-2017-11535: GraphicsMagick, ImageMagick: Heap-based buffer over-read in WritePSImage() in coders/ps.c [bnc#1050139]
  * CVE-2017-11752: ImageMagick: ReadMAGICKImage in coders/magick.c allows to cause DoS  [bnc#1051441] 
  * CVE-2017-12140: ImageMagick: ReadDCMImage in codersdcm.c has a ninteger signedness error leading to excessive memory consumption [bnc#1051847] 
  * CVE-2017-12669: ImageMagick: Memory leak in WriteCALSImage in coders/cals.c [bnc#1052689]
  * CVE-2017-12662: GraphicsMagick, ImageMagick: Memory leak in WritePDFImage in coders/pdf.c [bnc#1052758]
  * CVE-2017-12644: ImageMagick: Memory leak in ReadDCMImage in codersdcm.c [bnc#1052764]
  * CVE-2017-14172: ImageMagick: Lack of end of file check in ReadPSImage() could lead to a denial of service [bnc#1057730]
  * CVE-2017-14733: GraphicsMagick: Heap overflow on ReadRLEImage in coders/rle.c could lead to denial of service [bnc#1060577]



-----------------------------------------
Patch: SUSE-2017-2127
Released: Thu Dec 21 08:30:46 2017
Summary: Security update for postgresql96
Severity: moderate
References: 1067841,1067844,CVE-2017-15098,CVE-2017-15099
Description:
This update for postgresql96 fixes the following issues:

Security issues fixed:

- CVE-2017-15098: Fix crash due to rowtype mismatch in json{b}_populate_recordset() (bsc#1067844).
- CVE-2017-15099: Ensure that INSERT ... ON CONFLICT DO UPDATE checks table permissions and RLS policies in all cases (bsc#1067841).

Bug fixes:

- Update to version 9.6.6:
  * https://www.postgresql.org/docs/9.6/static/release-9-6-6.html
  * https://www.postgresql.org/docs/9.6/static/release-9-6-5.html


-----------------------------------------
Patch: SUSE-2017-2145
Released: Fri Dec 22 16:38:01 2017
Summary: Recommended update for tk and tcl
Severity: low
References: 903017
Description:

This update of tk and tcl to version 8.6.7 brings many improvements and fixes including,
but not limited to, the following highlights:

- Fix a bug in Itcl that was causing the floor tool to print lots of errors and abort.
  (bsc#903017)
- Fix a crash in asynchronous connection to hosts when no address is given.
- Fix possible crashes when closing multithreaded applications.
- Fix a memory leak in [history] destruction.
- Fix a crash in Tcl_ListObjReplace().
- Invalidate VFS mounts on sytem encoding change.
- Repair drifts in timer clock when calling Tcl_GetTime from tcl-clock module.
- Fix a crash when requesting too much character data in binary scan.
- Fix a memory leak when calling geturl from the http package.
- Fix an integer overflow in [lsort] on very long lists.
- Fix a memory leak when calling TclJoinPath.
- Fix a memory leak due to a reference cycle in foreach loops.
- Fix a crash caused by an optimization in the compilation of [string replace].
- Fix a memory corruption in assembler exceptions.
- Fix a crash due to [vwait] trace undo fail.
- Fix a crash when invoking [glob -path a].
- Fix a crash in [dict update] after using lassign in an item.
- Fix a crash in [chan configure -dictionary].
- Make it possible to specify different values for the -accept option when running multiple
  asynchronous http: requests without incurring in race conditions.
- Fix a crash when calling the [expr] command while the application is being traced.
- Avoid leaking memory in Tcl_ZlibInflate when running into error conditions.
- Fix some writes beyond buffer bounds.
- Fix a memory leak in array when unsetting keys from a proc.
- Fix a lock in forking a process under heavy multithreading.
- Fix a crash caused by an allocation overflow when parsing a very large expression.
- Many fixes and improvements to regexp engine from Postgres.
- Fix a segmentation fault due to an integer overflow in TranslateInputEOL().
- Fix multiple crashes in OO teardown.
- Stop crashes when extension var resolvers misbehave.
- Fix using [read] to read past the EOF so that it works on serial devices.
- Fix a regression causing a crash in [oo::class destroy].
- Fix a segmentation fault in mangled bytecode.
- Fix a hang in some [read]s of limited size in UTF-8 channels.
- Fix a segmentation fault in [array set] of traced array.

The following fixes might show some potential incompatibilities with existing software:
- Allow an empty command to be the target of an alias.
- Reconcile libtommath updates, purging some unused files.
- Handle invalid UTF-8 characters correctly in Tcl_UtfToUniChar() to prevent the injection
  of unexpected characters.
- Update Unicode data to 10.0
- Fix some problems in the compilation of [lreplace].
- Fix using parameters with spaces in error messages.
- Make it possible to use [namespace upvar] when the target variable is also a variable of
  the class.
- Change the default transfer encoding to gzip in the http package to be more compatible.
- Limit $... and bareword parsing to ASCII characters only.


-----------------------------------------
Patch: SUSE-2017-2146
Released: Fri Dec 22 18:46:27 2017
Summary: Security update for evince
Severity: important
References: 1046856,CVE-2017-1000083
Description:
This update for evince fixes the following issues:

Security issue fixed:

- CVE-2017-1000083: Remove support for tar and tar-like commands in comics backend (bsc#1046856).


-----------------------------------------
Patch: SUSE-2017-2153
Released: Wed Dec 27 10:55:51 2017
Summary: Security update for wireshark
Severity: moderate
References: 1070727,CVE-2017-17083,CVE-2017-17084,CVE-2017-17085
Description:
This update for wireshark fixes the following issues:
 
 - CVE-2017-17083: NetBIOS dissector could crash. This was addressed in 
   epan/dissectors/packet-netbios.c by ensuring that write operations are bounded by the beginning of a buffer. (bsc#1070727)
 - CVE-2017-17084: IWARP_MPA dissector could crash. This was addressed in epan/dissectors/packet-iwarp-mpa.c by 
   validating a ULPDU length. (bsc#1070727)
 - CVE-2017-17085: the CIP Safety dissector could crash. This was addressed in epan/dissectors/packet-cipsafety.c 
   by validating the packet length. (bsc#1070727)

 

-----------------------------------------
Patch: SUSE-2017-2155
Released: Wed Dec 27 16:50:14 2017
Summary: Security update for gdk-pixbuf
Severity: low
References: 1053417
Description:

This update for gdk-pixbuf provides the following fixes:

- Add overflow checks when creating pixbuf structures in general
- Fix arithmetic overflow in the BMP loader (bsc#1053417) 
- Adds support for BMPv3 with bitmasks (bsc#1053417) 


-----------------------------------------
Patch: SUSE-2018-4
Released: Tue Jan  2 15:58:20 2018
Summary: Recommended update for libzypp, zypper
Severity: moderate
References: 1057640,1067605,1068708,1071466,969569
Description:
The Software Update Stack was updated to receive fixes and enhancements.

libzypp:

- Don't store duplicated locks. (bsc#969569)
- Fix default for solver.allowNameChange. (bsc#1071466)
- Don't filter procs with a different mnt namespace. (bsc#1068708)
- Support repo variables in an URIs host:port component. (bsc#1057640, bsc#1067605)

zypper:

- Update manpage regarding custom repository variable fixes. (bsc#1057640, bsc#1067605)


-----------------------------------------
Patch: SUSE-2018-6
Released: Wed Jan  3 17:37:14 2018
Summary: Security update for java-1_7_0-openjdk
Severity: important
References: 1049305,1049306,1049307,1049309,1049310,1049311,1049312,1049313,1049314,1049315,1049316,1049317,1049318,1049319,1049320,1049321,1049322,1049323,1049324,1049325,1049326,1049327,1049328,1049329,1049330,1049331,1049332,1052318,1064071,1064072,1064073,1064075,1064077,1064078,1064079,1064080,1064081,1064082,1064083,1064084,1064085,1064086,CVE-2016-10165,CVE-2016-9840,CVE-2016-9841,CVE-2016-9842,CVE-2016-9843,CVE-2017-10053,CVE-2017-10067,CVE-2017-10074,CVE-2017-10081,CVE-2017-10086,CVE-2017-10087,CVE-2017-10089,CVE-2017-10090,CVE-2017-10096,CVE-2017-10101,CVE-2017-10102,CVE-2017-10105,CVE-2017-10107,CVE-2017-10108,CVE-2017-10109,CVE-2017-10110,CVE-2017-10111,CVE-2017-10114,CVE-2017-10115,CVE-2017-10116,CVE-2017-10118,CVE-2017-10125,CVE-2017-10135,CVE-2017-10176,CVE-2017-10193,CVE-2017-10198,CVE-2017-10243,CVE-2017-10274,CVE-2017-10281,CVE-2017-10285,CVE-2017-10295,CVE-2017-10345,CVE-2017-10346,CVE-2017-10347,CVE-2017-10348,CVE-2017-10349,CVE-2017-10350,CVE-2017-10355,CVE-2017-10356,CVE-2017-10357,CVE-2017-10388
Description:
This update for java-1_7_0-openjdk fixes the following issues:

Security issues fixed:

- CVE-2017-10356: Fix issue inside subcomponent Security (bsc#1064084).
- CVE-2017-10274: Fix issue inside subcomponent Smart Card IO (bsc#1064071).
- CVE-2017-10281: Fix issue inside subcomponent Serialization (bsc#1064072).
- CVE-2017-10285: Fix issue inside subcomponent RMI (bsc#1064073).
- CVE-2017-10295: Fix issue inside subcomponent Networking (bsc#1064075).
- CVE-2017-10388: Fix issue inside subcomponent Libraries (bsc#1064086).
- CVE-2017-10346: Fix issue inside subcomponent Hotspot (bsc#1064078).
- CVE-2017-10350: Fix issue inside subcomponent JAX-WS (bsc#1064082).
- CVE-2017-10347: Fix issue inside subcomponent Serialization (bsc#1064079).
- CVE-2017-10349: Fix issue inside subcomponent JAXP (bsc#1064081).
- CVE-2017-10345: Fix issue inside subcomponent Serialization (bsc#1064077).
- CVE-2017-10348: Fix issue inside subcomponent Libraries (bsc#1064080).
- CVE-2017-10357: Fix issue inside subcomponent Serialization (bsc#1064085).
- CVE-2017-10355: Fix issue inside subcomponent Networking (bsc#1064083).
- CVE-2017-10102: Fix incorrect handling of references in DGC (bsc#1049316).
- CVE-2017-10053: Fix reading of unprocessed image data in JPEGImageReader (bsc#1049305).
- CVE-2017-10067: Fix JAR verifier incorrect handling of missing digest (bsc#1049306).
- CVE-2017-10081: Fix incorrect bracket processing in function signature handling (bsc#1049309).
- CVE-2017-10087: Fix insufficient access control checks in ThreadPoolExecutor (bsc#1049311).
- CVE-2017-10089: Fix insufficient access control checks in ServiceRegistry (bsc#1049312).
- CVE-2017-10090: Fix insufficient access control checks in AsynchronousChannelGroupImpl (bsc#1049313).
- CVE-2017-10096: Fix insufficient access control checks in XML transformations (bsc#1049314).
- CVE-2017-10101: Fix unrestricted access to com.sun.org.apache.xml.internal.resolver (bsc#1049315).
- CVE-2017-10107: Fix insufficient access control checks in ActivationID (bsc#1049318).
- CVE-2017-10074: Fix integer overflows in range check loop predicates (bsc#1049307).
- CVE-2017-10110: Fix insufficient access control checks in ImageWatched (bsc#1049321).
- CVE-2017-10108: Fix unbounded memory allocation in BasicAttribute deserialization (bsc#1049319).
- CVE-2017-10109: Fix unbounded memory allocation in CodeSource deserialization (bsc#1049320).
- CVE-2017-10115: Fix unspecified vulnerability in subcomponent JCE (bsc#1049324).
- CVE-2017-10118: Fix ECDSA implementation timing attack (bsc#1049326).
- CVE-2017-10116: Fix LDAPCertStore following referrals to non-LDAP URL (bsc#1049325).
- CVE-2017-10135: Fix PKCS#8 implementation timing attack (bsc#1049328).
- CVE-2017-10176: Fix incorrect handling of certain EC points (bsc#1049329).
- CVE-2017-10074: Fix integer overflows in range check loop predicates (bsc#1049307).
- CVE-2017-10074: Fix integer overflows in range check loop predicates (bsc#1049307).
- CVE-2017-10111: Fix checks in LambdaFormEditor (bsc#1049322).
- CVE-2017-10243: Fix unspecified vulnerability in subcomponent JAX-WS (bsc#1049332).
- CVE-2017-10125: Fix unspecified vulnerability in subcomponent deployment (bsc#1049327).
- CVE-2017-10114: Fix unspecified vulnerability in subcomponent JavaFX (bsc#1049323).
- CVE-2017-10105: Fix unspecified vulnerability in subcomponent deployment (bsc#1049317).
- CVE-2017-10086: Fix unspecified in subcomponent JavaFX (bsc#1049310).
- CVE-2017-10198: Fix incorrect enforcement of certificate path restrictions (bsc#1049331).
- CVE-2017-10193: Fix incorrect key size constraint check (bsc#1049330).

Bug fixes:

- Drop Exec Shield workaround to fix crashes on recent kernels, where Exec Shield is gone (bsc#1052318).


-----------------------------------------
Patch: SUSE-2018-14
Released: Thu Jan  4 09:58:45 2018
Summary: Security update for ImageMagick
Severity: important
References: 1052460,1055053,1055063,1056550,1057723,1058422,1063049,1063050,CVE-2017-12563,CVE-2017-12691,CVE-2017-13061,CVE-2017-13062,CVE-2017-14042,CVE-2017-14174,CVE-2017-14343,CVE-2017-15277,CVE-2017-15281
Description:
This update for ImageMagick fixes the following issues:

- security update (xcf.c):
  * CVE-2017-14343: Memory leak vulnerability in ReadXCFImage could lead to denial of service via a crafted file.
    CVE-2017-12691: The ReadOneLayer function in coders/xcf.c allows remote attackers to cause a denial of service 
    (memory consumption) via a crafted file.
    [bsc#1058422]

- security update (pnm.c):
  * CVE-2017-14042: A memory allocation failure was discovered in the ReadPNMImage function in coders/pnm.c and 
    could lead to remote denial of service [bsc#1056550]

- security update (psd.c):
  * CVE-2017-15281: ReadPSDImage allows remote attackers to cause a denial of service (application crash) or 
    possibly have unspecified other impact via a crafted file [bsc#1063049]
  * CVE-2017-13061: A length-validation vulnerability was found in the function ReadPSDLayersInternal in coders/psd.c, 
    which allows attackers to cause a denial of service (ReadPSDImage memory exhaustion) via a crafted file. [bsc#1055063]
  * CVE-2017-12563: A Memory exhaustion vulnerability was found in the function ReadPSDImage in coders/psd.c, 
    which allows attackers to cause a denial of service. [bsc#1052460]
  * CVE-2017-14174: Due to a lack of an EOF check (End of File) in ReadPSDLayersInternal could cause huge CPU consumption, 
    when a crafted PSD file, which claims a large 'length' field in the header but does not contain sufficient backing data, 
    is provided, the loop over \'length\' would consume huge CPU resources, since there is no EOF check inside the loop.[bsc#1057723]

- security update (meta.c):
  * CVE-2017-13062: Amemory leak vulnerability was found in the function formatIPTC in coders/meta.c, 
    which allows attackers to cause a denial of service (WriteMETAImage memory consumption) via a crafted file [bsc#1055053]

- security update (gif.c):
  * CVE-2017-15277: ReadGIFImage in coders/gif.c leaves the palette uninitialized when processing a GIF file that has neither 
    a global nor local palette. If the affected product is used as a library loaded into a process that operates on interesting 
    data, this data sometimes can be leaked via the uninitialized palette.[bsc#1063050]


-----------------------------------------
Patch: SUSE-2018-15
Released: Thu Jan  4 11:47:08 2018
Summary: Security update for libvorbis
Severity: moderate
References: 1059809,1059811,CVE-2017-14632,CVE-2017-14633
Description:
This update for libvorbis fixes the following issues:

- CVE-2017-14633: out-of-bounds array read vulnerability exists in
  function mapping0_forward() could lead to remote denial of service (bsc#1059811)
- CVE-2017-14632: Remote Code Execution upon freeing uninitialized
  memory in function vorbis_analysis_headerout(bsc#1059809)


-----------------------------------------
Patch: SUSE-2018-17
Released: Thu Jan  4 11:49:33 2018
Summary: Recommended update for gcc48
Severity: moderate
References: 1059075
Description:


This update for gcc48 fixes the following issues with an earlier security fix:

- Add support for zero-sized VLAs and allocas with -fstack-clash-protection.  (bnc#1059075)



-----------------------------------------
Patch: SUSE-2018-41
Released: Tue Jan  9 16:34:37 2018
Summary: Security update for ImageMagick
Severity: moderate
References: 1042948,1049373,1051412,1052252,1052771,1058082,1072902,1074122,1074425,1074610,CVE-2017-1000445,CVE-2017-1000476,CVE-2017-11449,CVE-2017-11751,CVE-2017-12430,CVE-2017-12642,CVE-2017-14249,CVE-2017-17680,CVE-2017-17882,CVE-2017-9409
Description:
This update for ImageMagick fixes several issues.

These security issues were fixed:

- CVE-2017-1000476: A CPU exhaustion vulnerability was found in the function
  ReadDDSInfo in coders/dds.c, which allowed attackers to cause a denial of
  service (bsc#1074610).
- CVE-2017-9409: The ReadMPCImage function in mpc.c allowed attackers to cause
  a denial of service (memory leak) via a crafted file (bsc#1042948).
- CVE-2017-1000445: A NULL pointer dereference in the MagickCore component
  might have lead to denial of service (bsc#1074425).
- CVE-2017-17680: Prevent a memory leak in the function ReadXPMImage in
  coders/xpm.c, which allowed attackers to cause a denial of service via a
  crafted XPM image file (a different vulnerability than CVE-2017-17882)
  (bsc#1072902).
- CVE-2017-17882: Prevent a memory leak in the function ReadXPMImage in
  coders/xpm.c, which allowed attackers to cause a denial of service via a
  crafted XPM image file (a different vulnerability than CVE-2017-17680)
  (bsc#1074122).
- CVE-2017-11449: coders/mpc did not enable seekable streams and thus could not
  validate blob sizes, which allowed remote attackers to cause a denial of
  service (application crash) or possibly have unspecified other impact via an
  image received from stdin (bsc#1049373).
- CVE-2017-12430: A memory exhaustion in the function ReadMPCImage in
  coders/mpc.c allowed attackers to cause DoS (bsc#1052252).
- CVE-2017-12642: Prevent a memory leak vulnerability in ReadMPCImage in
  coders\mpc.c via crafted file allowing for DoS (bsc#1052771).
- CVE-2017-14249: A mishandled EOF check in ReadMPCImage in coders/mpc.c that
  lead to a division by zero in GetPixelCacheTileSize in MagickCore/cache.c
  allowed remote attackers to cause a denial of service via a crafted file
  (bsc#1058082).
- Prevent memory leak via crafted file in pwp.c allowing for DoS (bsc#1051412)


-----------------------------------------
Patch: SUSE-2018-59
Released: Fri Jan 12 11:18:44 2018
Summary: Security update for tiff
Severity: important
References: 1017690,1069213,960341,969783,983436,CVE-2014-8128,CVE-2015-7554,CVE-2016-10095,CVE-2016-5318,CVE-2017-16232
Description:
This update for tiff to version 4.0.9 fixes the following issues:

Security issues fixed:

- CVE-2014-8128: Fix out-of-bounds read with malformed TIFF image in multiple tools (bsc#969783).
- CVE-2015-7554: Fix invalid write in tiffsplit / _TIFFVGetField (bsc#960341).
- CVE-2016-10095: Fix stack-based buffer overflow in _TIFFVGetField (tif_dir.c) (bsc#1017690).
- CVE-2016-5318: Fix stackoverflow in thumbnail (bsc#983436).
- CVE-2017-16232: Fix memory-based DoS in tiff2bw (bsc#1069213).


-----------------------------------------
Patch: SUSE-2018-66
Released: Fri Jan 12 16:20:16 2018
Summary: Recommended update for at-spi2-core
Severity: low
References: 1073027
Description:
This update for at-spi2-core provides the following fix:

- Fix a possible buffer overflow on reading dbus address in at-spi-bus-launcher. (bsc#1073027)


-----------------------------------------
Patch: SUSE-2018-68
Released: Mon Jan 15 11:30:39 2018
Summary: Security update for openslp
Severity: moderate
References: 1001600,974655,980722,994989,CVE-2016-4912,CVE-2016-7567
Description:
This update for openslp fixes two security issues and two bugs.

The following vulnerabilities were fixed:

- CVE-2016-4912: A remote attacker could have crashed the server with a large
  number of packages (bsc#980722)
- CVE-2016-7567: A remote attacker could cause a memory corruption having
  unspecified impact (bsc#1001600)

The following bugfix changes are included:

- bsc#994989: Removed convenience code as changes bytes in the message buffer
  breaking the verification code
- bsc#974655: Removed no longer needed slpd init file


-----------------------------------------
Patch: SUSE-2018-72
Released: Mon Jan 15 13:36:30 2018
Summary: Recommended update for OpenIPMI
Severity: moderate
References: 1060118
Description:
This update for OpenIPMI provides the following fix:

- Fix a crash at startup by making sure gui_winsys.py is properly installed. (bsc#1060118)


-----------------------------------------
Patch: SUSE-2018-86
Released: Wed Jan 17 09:38:17 2018
Summary: Security update for ncurses
Severity: moderate
References: 1056127,1056128,1056129,1056131,1056132,1056136,CVE-2017-13728,CVE-2017-13729,CVE-2017-13730,CVE-2017-13731,CVE-2017-13732,CVE-2017-13733
Description:
This update for ncurses fixes the following issues:

Security issues fixed:

- CVE-2017-13728: Fix infinite loop in the next_char function in comp_scan.c (bsc#1056136).
- CVE-2017-13730: Fix illegal address access in the function _nc_read_entry_source() (bsc#1056131).
- CVE-2017-13733: Fix illegal address access in the fmt_entry function (bsc#1056127).
- CVE-2017-13729: Fix illegal address access in the _nc_save_str (bsc#1056132).
- CVE-2017-13732: Fix illegal address access in the function dump_uses() (bsc#1056128).
- CVE-2017-13731: Fix illegal address access in the function postprocess_termcap() (bsc#1056129).


-----------------------------------------
Patch: SUSE-2018-89
Released: Wed Jan 17 14:42:04 2018
Summary: Security update for perl-XML-LibXML
Severity: moderate
References: 1046848,CVE-2017-10672
Description:
This update for perl-XML-LibXML fixes the following issues:

Security issue fixed:

- CVE-2017-10672: Fix use-after-free that allows remote attackers to execute arbitrary code by controlling the arguments to a replaceChild call (bsc#1046848).


-----------------------------------------
Patch: SUSE-2018-97
Released: Thu Jan 18 11:38:19 2018
Summary: Security update for ImageMagick
Severity: moderate
References: 1047044,1047898,1050120,1050606,1051446,1052468,1052550,1052710,1052720,1052731,1052732,1055065,1055323,1055434,1055855,1058640,1059751,1074123,1074969,1074973,1074975,CVE-2017-10800,CVE-2017-11141,CVE-2017-11529,CVE-2017-11644,CVE-2017-11724,CVE-2017-12434,CVE-2017-12564,CVE-2017-12667,CVE-2017-12670,CVE-2017-12672,CVE-2017-12675,CVE-2017-13060,CVE-2017-13146,CVE-2017-13648,CVE-2017-13658,CVE-2017-14326,CVE-2017-14533,CVE-2017-17881,CVE-2017-18022,CVE-2018-5246,CVE-2018-5247
Description:
This update for ImageMagick fixes several issues.

These security issues were fixed:

- CVE-2018-5246: Fixed memory leak vulnerability in ReadPATTERNImage in
  coders/pattern.c (bsc#1074973)
- CVE-2017-18022: Fixed memory leak vulnerability in MontageImageCommand in
  MagickWand/montage.c (bsc#1074975)
- CVE-2018-5247: Fixed memory leak vulnerability in ReadRLAImage in
  coders/rla.c (bsc#1074969)
- CVE-2017-12672: Fixed a memory leak vulnerability in the function
  ReadMATImage in coders/mat.c, which allowed attackers to cause a denial
  of service (bsc#1052720)
- CVE-2017-13060: Fixed a memory leak vulnerability in the function
  ReadMATImage in coders/mat.c, which allowed attackers to cause a denial
  of service via a crafted file (bsc#1055065)
- CVE-2017-11724: Fixed a memory leak vulnerability in the function
  ReadMATImage in coders/mat.c involving the quantum_info and clone_info
  data structures (bsc#1051446)
- CVE-2017-12670: Added validation in coders/mat.c to prevent an assertion
  failure in the function DestroyImage in MagickCore/image.c, which
  allowed attackers to cause a denial of service (bsc#1052731)
- CVE-2017-12667: Fixed a memory leak vulnerability in the function
  ReadMATImage in coders/mat.c (bsc#1052732)
- CVE-2017-13146: Fixed a memory leak vulnerability in the function
  ReadMATImage in coders/mat.c (bsc#1055323)
- CVE-2017-10800: Processing MATLAB images in coders/mat.c could have lead to a
  denial of service (OOM) in ReadMATImage() if the size specified for a
  MAT Object was larger than the actual amount of data (bsc#1047044)
- CVE-2017-13648: Fixed a memory leak vulnerability in the function
  ReadMATImage in coders/mat.c (bsc#1055434)
- CVE-2017-11141: Fixed a memory leak vulnerability in the function
  ReadMATImage in coders\mat.c that could have caused memory exhaustion
  via a crafted MAT file, related to incorrect ordering of a
  SetImageExtent call (bsc#1047898)
- CVE-2017-11529: The ReadMATImage function in coders/mat.c allowed remote
  attackers to cause a denial of service (memory leak) via a crafted file
  (bsc#1050120)
- CVE-2017-12564: Fixed a memory leak vulnerability in the function
  ReadMATImage in coders/mat.c, which allowed attackers to cause a denial
  of service (bsc#1052468)
- CVE-2017-12434: Added a missing NULL check in the function ReadMATImage in
  coders/mat.c, which allowed attackers to cause a denial of service
  (assertion failure) in DestroyImageInfo in image.c (bsc#1052550)
- CVE-2017-12675: Added a missing check for multidimensional data coders/mat.c,
  that could have lead to a memory leak in the function ReadImage in
  MagickCore/constitute.c, which allowed attackers to cause a denial of
  service (bsc#1052710)
- CVE-2017-14326: Fixed a memory leak vulnerability in the function
  ReadMATImage in coders/mat.c, which allowed attackers to cause a denial
  of service via a crafted file (bsc#1058640)
- CVE-2017-11644: Processesing a crafted file in convert could have lead to a
  memory leak in the ReadMATImage() function in coders/mat.c
  (bsc#1050606)
- CVE-2017-13658: Added a missing NULL check in the ReadMATImage function in
  coders/mat.c, which could have lead to a denial of service (assertion
  failure and application exit) in the DestroyImageInfo function in
  MagickCore/image.c (bsc#1055855)
- CVE-2017-14533: Fixed a memory leak vulnerability in the function
  ReadMATImage in coders/mat.c (bsc#1059751)
- CVE-2017-17881: Fixed a memory leak vulnerability in the function
  ReadMATImage in coders/mat.c, which allowed attackers to cause a denial of
  service via a crafted MAT image file (bsc#1074123)



-----------------------------------------
Patch: SUSE-2018-100
Released: Thu Jan 18 14:40:35 2018
Summary: Security update for gd
Severity: moderate
References: 1056993,CVE-2017-6362
Description:
This update for gd fixes one issues.

This security issue was fixed:

- CVE-2017-6362: Prevent double-free in gdImagePngPtr() that potentially allowed for DoS or remote code execution (bsc#1056993).


-----------------------------------------
Patch: SUSE-2018-107
Released: Fri Jan 19 13:37:54 2018
Summary: Security update for xmltooling
Severity: important
References: 1075975,CVE-2018-0486
Description:
This update for xmltooling fixes the following issues:

- CVE-2018-0486: Fixed a security bug when xmltooling mishandles digital
  signatures of user attribute data, which allows remote attackers to obtain
  sensitive information or conduct impersonation attacks via a crafted DTD
  (bsc#1075975)


-----------------------------------------
Patch: SUSE-2018-108
Released: Fri Jan 19 16:02:13 2018
Summary: Recommended update for gcc48
Severity: moderate
References: 1074621
Description:

  
This update for gcc48 fixes the following issues:

Added support for generation of retpolines on x86_64. [bnc#1074621]

This support is used for building the Linux Kernel with retpoline support
to mitigate the Spectre Variant 2 attack.

New compiler options have been added to specify specific code generation:

* -mindirect-branch=keep
* -mindirect-branch=thunk
* -mindirect-branch=thunk-extern
* -mindirect-branch=thunk-inline
* -mindirect-branch-register
* -mfunction-return=keep
* -mfunction-return=thunk
* -mfunction-return=thunk-extern
* -mfunction-return=thunk-inline



-----------------------------------------
Patch: SUSE-2018-109
Released: Fri Jan 19 16:49:39 2018
Summary: Recommended update for libvirt-cim
Severity: low
References: 1002028,1076418
Description:
This update for libvirt-cim provides the following fixes:

- Fix a number of memory leaks detected while running xml_parse_test under valgrind.
- Fix some asprintf related memory leaks. (bsc#1002028)
- Don't unregister providers on upgrade. (bsc#1076418)


-----------------------------------------
Patch: SUSE-2018-118
Released: Mon Jan 22 13:37:47 2018
Summary: Security update for procmail
Severity: moderate
References: 1068648,CVE-2017-16844
Description:
This update for procmail fixes the following issues:

- CVE-2017-16844: Heap-based buffer overflow in loadbuf function could lead to remote denial of service (bsc#1068648)
  


-----------------------------------------
Patch: SUSE-2018-127
Released: Tue Jan 23 13:37:09 2018
Summary: Security update for libvpx
Severity: moderate
References: 1075992,CVE-2017-13194
Description:
This update for libvpx fixes one issues.

This security issue was fixed: 

- CVE-2017-13194: Fixed incorrect memory allocation related to odd frame width (bsc#1075992).


-----------------------------------------
Patch: SUSE-2018-131
Released: Tue Jan 23 16:38:27 2018
Summary: Recommended update for apache2-mod_nss
Severity: low
References: 863035,993642,996282,998176,998180,998183
Description:

This update for apache2-mod_nss provides the following fixes:

- bump up minimal NSS version to 3.25, because 3.24 breaks mod_nss because of SSLv2 changes (bsc#993642)
- rebuild against the recently updated NSS (3.29) adds support for SHA384 TLS ciphers (bsc#863035)
- remove deprecated NSSSessionCacheTimeout option from mod_nss.conf.in (bsc#998176)
- change ownership of the gencert generated NSS database so apache can read it (bsc#998180)
- use correct configuration path in mod_nss.conf.in (bsc#996282)
- remove %post migration code from the old alias directory
- generate dummy certificates if there aren't any in mod_nss.d (bsc#998183)


-----------------------------------------
Patch: SUSE-2018-134
Released: Wed Jan 24 12:01:17 2018
Summary: Security update for wireshark
Severity: moderate
References: 1074171,1075737,1075738,1075739,1075748,CVE-2017-17935,CVE-2018-5334,CVE-2018-5335,CVE-2018-5336
Description:
This update for wireshark to version 2.2.12 fixes the following issues:

- CVE-2018-5334: IxVeriWave file could crash (bsc#1075737)
- CVE-2018-5335: WCP dissector could crash (bsc#1075738)
- CVE-2018-5336: Multiple dissector crashes (bsc#1075739)
- CVE-2017-17935: Incorrect handling of '\n' in file_read_line function could
  have lead to denial of service (bsc#1074171)

This release no longer enables the Linux kernel BPF JIT compiler via the
net.core.bpf_jit_enable sysctl, as this would make systems more vulnerable
to Spectre variant 1 CVE-2017-5753 - (bsc#1075748)

Further bug fixes and updated protocol support as listed in:
https://www.wireshark.org/docs/relnotes/wireshark-2.2.12.html


-----------------------------------------
Patch: SUSE-2018-136
Released: Wed Jan 24 12:14:31 2018
Summary: Security update for libexif
Severity: moderate
References: 1055857,1059893,CVE-2016-6328,CVE-2017-7544
Description:
This update for libexif fixes several issues.

These security issues were fixed:

- CVE-2016-6328: Fixed integer overflow in parsing MNOTE entry data of the input
  file (bsc#1055857)
- CVE-2017-7544: Fixed out-of-bounds heap read vulnerability in
  exif_data_save_data_entry function in libexif/exif-data.c caused by improper
  length computation of the allocated data of an ExifMnote entry which can cause
  denial-of-service or possibly information disclosure (bsc#1059893)


-----------------------------------------
Patch: SUSE-2018-143
Released: Wed Jan 24 17:37:04 2018
Summary: Security update for libevent
Severity: moderate
References: 1022917,1022918,1022919,CVE-2016-10195,CVE-2016-10196,CVE-2016-10197
Description:
This update for libevent fixes the following security issues:

- CVE-2016-10195: DNS remote stack overread vulnerability (bsc#1022917) 
- CVE-2016-10196: stack/buffer overflow in evutil_parse_sockaddr_port() (bsc#1022918) 
- CVE-2016-10197: out-of-bounds read in search_make_new() (bsc#1022919) 


-----------------------------------------
Patch: SUSE-2018-146
Released: Thu Jan 25 11:44:23 2018
Summary: Recommended update for openldap2
Severity: moderate
References: 1064397,1065083
Description:
This update for openldap2 provides the following fixes:

- Fix a leak of sockets in case of unsuccessful connection attempts. (bsc#1065083)
- Fix a crash that would happen under heavy load when using back-relay. (bsc#1064397)


-----------------------------------------
Patch: SUSE-2018-150
Released: Thu Jan 25 17:37:36 2018
Summary: Security update for webkit2gtk3
Severity: important
References: 1020950,1024749,1050469,1066892,1069925,1073654,1075419,CVE-2016-4692,CVE-2016-4743,CVE-2016-7586,CVE-2016-7587,CVE-2016-7589,CVE-2016-7592,CVE-2016-7598,CVE-2016-7599,CVE-2016-7610,CVE-2016-7623,CVE-2016-7632,CVE-2016-7635,CVE-2016-7639,CVE-2016-7641,CVE-2016-7645,CVE-2016-7652,CVE-2016-7654,CVE-2016-7656,CVE-2017-13788,CVE-2017-13798,CVE-2017-13803,CVE-2017-13856,CVE-2017-13866,CVE-2017-13870,CVE-2017-2350,CVE-2017-2354,CVE-2017-2355,CVE-2017-2356,CVE-2017-2362,CVE-2017-2363,CVE-2017-2364,CVE-2017-2365,CVE-2017-2366,CVE-2017-2369,CVE-2017-2371,CVE-2017-2373,CVE-2017-2496,CVE-2017-2510,CVE-2017-2539,CVE-2017-5715,CVE-2017-5753,CVE-2017-5754,CVE-2017-7006,CVE-2017-7011,CVE-2017-7012,CVE-2017-7018,CVE-2017-7019,CVE-2017-7020,CVE-2017-7030,CVE-2017-7034,CVE-2017-7037,CVE-2017-7038,CVE-2017-7039,CVE-2017-7040,CVE-2017-7041,CVE-2017-7042,CVE-2017-7043,CVE-2017-7046,CVE-2017-7048,CVE-2017-7049,CVE-2017-7052,CVE-2017-7055,CVE-2017-7056,CVE-2017-7059,CVE-2017-7061,CVE-2017-7064,CVE-2017-7081,CVE-2017-7087,CVE-2017-7089,CVE-2017-7090,CVE-2017-7091,CVE-2017-7092,CVE-2017-7093,CVE-2017-7094,CVE-2017-7095,CVE-2017-7096,CVE-2017-7098,CVE-2017-7099,CVE-2017-7100,CVE-2017-7102,CVE-2017-7104,CVE-2017-7107,CVE-2017-7109,CVE-2017-7111,CVE-2017-7117,CVE-2017-7120,CVE-2017-7142,CVE-2017-7156,CVE-2017-7157
Description:


This update for webkit2gtk3 fixes the following issues:

Update to version 2.18.5:

  + Disable SharedArrayBuffers from Web API.
  + Reduce the precision of 'high' resolution time to 1ms.
  + bsc#1075419 - Security fixes: includes improvements to mitigate
    the effects of Spectre and Meltdown (CVE-2017-5753 and CVE-2017-5715).

Update to version 2.18.4:

  + Make WebDriver implementation more spec compliant.
  + Fix a bug when trying to remove cookies before a web process is
    spawned.
  + WebKitWebDriver process no longer links to
    libjavascriptcoregtk.
  + Fix several memory leaks in GStreamer media backend.
  + bsc#1073654 - Security fixes: CVE-2017-13866, CVE-2017-13870,
    CVE-2017-7156, CVE-2017-13856.

Update to version 2.18.3:

  + Improve calculation of font metrics to prevent scrollbars from
    being shown unnecessarily in some cases.
  + Fix handling of null capabilities in WebDriver implementation.
  + Security fixes: CVE-2017-13798, CVE-2017-13788, CVE-2017-13803.

Update to version 2.18.2:

  + Fix rendering of arabic text.
  + Fix a crash in the web process when decoding GIF images.
  + Fix rendering of wind in Windy.com.
  + Fix several crashes and rendering issues.

Update to version 2.18.1:

  + Improve performance of GIF animations.
  + Fix garbled display in GMail.
  + Fix rendering of several material design icons when using the
    web font.
  + Fix flickering when resizing the window in Wayland.
  + Prevent default kerberos authentication credentials from being
    used in ephemeral sessions.
  + Fix a crash when webkit_web_resource_get_data() is cancelled.
  + Correctly handle touchmove and touchend events in
    WebKitWebView.
  + Fix the build with enchant 2.1.1.
  + Fix the build in HPPA and Alpha.
  + Fix several crashes and rendering issues.
  + Security fixes: CVE-2017-7081, CVE-2017-7087, CVE-2017-7089,
    CVE-2017-7090, CVE-2017-7091, CVE-2017-7092, CVE-2017-7093,
    CVE-2017-7094, CVE-2017-7095, CVE-2017-7096, CVE-2017-7098,
    CVE-2017-7099, CVE-2017-7100, CVE-2017-7102, CVE-2017-7104,
    CVE-2017-7107, CVE-2017-7109, CVE-2017-7111, CVE-2017-7117,
    CVE-2017-7120, CVE-2017-7142.

- Enable gold linker on s390/s390x on SLE15/Tumbleweed.


-----------------------------------------
Patch: SUSE-2018-151
Released: Fri Jan 26 08:44:28 2018
Summary: Security update for transfig
Severity: moderate
References: 1069257,CVE-2017-16899
Description:
This update for transfig fixes the following issues:

Security issue fixed:

- CVE-2017-16899: Fix array index error in the fig2dev program (bsc#1069257).


-----------------------------------------
Patch: SUSE-2018-178
Released: Mon Jan 29 09:55:25 2018
Summary: Security update for gd
Severity: moderate
References: 1076391,CVE-2018-5711
Description:
This update for gd fixes one issues.

This security issue was fixed:

- CVE-2018-5711: Prevent integer signedness error that could have lead to an
  infinite loop via a crafted GIF file allowing for DoS (bsc#1076391)


-----------------------------------------
Patch: SUSE-2018-179
Released: Mon Jan 29 11:41:10 2018
Summary: Recommended update for apache2
Severity: moderate
References: 1042037,1045160,1048575,1057406,CVE-2017-7659,CVE-2017-9789
Description:
This update for apache2 fixes several issues.

These security issues were fixed:

- CVE-2017-9789: When under stress (closing many connections) the HTTP/2
  handling code would sometimes access memory after it has been freed, resulting
  in potentially erratic behaviour (bsc#1048575).
- CVE-2017-7659: A maliciously constructed HTTP/2 request could cause mod_http2
  to dereference a NULL pointer and crash the server process (bsc#1045160).

These non-security issues were fixed:

- Use the full path to a2enmod and a2dismod in the apache-22-24-upgrade script (bsc#1042037)
- Fall back to 'localhost' as hostname in gensslcert (bsc#1057406)


-----------------------------------------
Patch: SUSE-2018-184
Released: Mon Jan 29 16:05:12 2018
Summary: Recommended update for mozilla-nss
Severity: moderate
References: 1043853,1049673,1055271,1074009
Description:
This update for mozilla-nss provides the following fixes:

- Change DRBG to use the getrandom() kernel interface instead of /dev/urandom (bsc#1043853).
- Add patches for strengthening and FIPS compliance (bsc#1055271, bsc#1049673):
  * Use getrandom() instead of /dev/random and /dev/urandom where available.
  * Remove continuous DRBG test. This is no longer required for FIPS compliance.
  * Add DSA known answer POST.
  * Add ECDSA known answer POST.
  * Use FIPS compliant hash length in pairwise consistency check.
  * Make RSA key generation parameters more strict in order to meet FIPS criteria.
  * Add DH and ECDH known answer POSTs.
  * Add KDF135 CAVS test.
  * Add keywrapping CAVS test.
  * Add KAS FFC CAVS test.
  * Add KAS ECC CAVS test.
  * Restrict number of bytes generated per GCM IV for FIPS compliance.
  * Add helpers required by new CAVS tests.
  * Add fixes to make DSA CAVS tests pass.
  * Add fixes to make RSA CAVS tests pass.
  * Add constructor POSTs.
  * Disable weak ciphers in FIPS mode.
  * Prevent wraparounds in CTR mode.
  * Clear various sensitive parameters from memory when no longer in use.
  * Allow TLS 1.0 PRF to work in FIPS mode, even though it relies on MD5, which is
    otherwise banned.
  * Use strong random pool (/dev/random or getrandom() with GRND_RANDOM instead of their
    more dilute counterparts) in FIPS mode.
- We allow AESNI by default now. This can be disabled at runtime by defining NSS_DISABLE_HW_AES
  in the environment.
- Export NSS_FORCE_FIPS=1 for build, since this is needed now to prevent NSS from passing
  -DNSS_NO_INIT_SUPPORT, which disables on-load FIPS POSTs.


-----------------------------------------
Patch: SUSE-2018-208
Released: Tue Jan 30 10:30:05 2018
Summary: Recommended update for smt
Severity: low
References: 1058992,1059943,1067577
Description:
This update for smt provides the following fixes:

- Fix authentication handler for Apache 2.4. (bsc#1067577)
- Specify TLSv1 explicitly for older versions of wget to prevent 'Download failed.
  Abort.' problems while trying to register a system. (bsc#1059943)
- Use the repository CATALOGID instead of the auto-incremental ID in smt-staging.
  (bsc#1058992)
- Prepare SMT for SLE15 support.


-----------------------------------------
Patch: SUSE-2018-209
Released: Tue Jan 30 10:53:43 2018
Summary: Security update for ncurses
Severity: moderate
References: 1056126,1056127,1056128,1056129,1056131,1056132,1056136,CVE-2017-13728,CVE-2017-13729,CVE-2017-13730,CVE-2017-13731,CVE-2017-13732,CVE-2017-13733,CVE-2017-13734
Description:
This update for ncurses fixes several issues.

These security issues were fixed:

- CVE-2017-13734: Prevent illegal address access in the _nc_safe_strcat
  function in strings.c that might have lead to a remote denial of service attack
  (bsc#1056126).
- CVE-2017-13733: Prevent illegal address access in the fmt_entry function in
  progs/dump_entry.c that might have lead to a remote denial of service attack
  (bsc#1056127).
- CVE-2017-13732: Prevent illegal address access in the function dump_uses() in
  progs/dump_entry.c that might have lead to a remote denial of service attack
  (bsc#1056128).
- CVE-2017-13731: Prevent illegal address access in the function
  postprocess_termcap() in parse_entry.c that might have lead to a remote denial
  of service attack (bsc#1056129).
- CVE-2017-13730: Prevent illegal address access in the function
  _nc_read_entry_source() in progs/tic.c that might have lead to a remote denial
  of service attack (bsc#1056131).
- CVE-2017-13729: Prevent illegal address access in the _nc_save_str function
  in alloc_entry.c that might have lead to a remote denial of service attack
  (bsc#1056132).
- CVE-2017-13728: Prevent infinite loop in the next_char function in
  comp_scan.c that might have lead to a remote denial of service attack
  (bsc#1056136).


-----------------------------------------
Patch: SUSE-2018-214
Released: Tue Jan 30 14:37:42 2018
Summary: Security update for libtasn1
Severity: moderate
References: 1076832,CVE-2018-6003
Description:
This update for libtasn1 fixes one issue.

This security issue was fixed:

- CVE-2018-6003: Prevent a stack exhaustion in  _asn1_decode_simple_ber
  (lib/decoding.c) when decoding BER encoded structure allowed for DoS
  (bsc#1076832).


-----------------------------------------
Patch: SUSE-2018-222
Released: Tue Jan 30 16:45:38 2018
Summary: Recommended update for dmraid
Severity: low
References: 1060551
Description:
This update for dmraid provides the following fixes:

- Remove partitions with O_RDONLY: it's not necessary to use O_RDWR to use BLKPG_DEL_PARTITION.
  It's actually harmful, because closing the device will cause an IN_CLOSE_WRITE inotify event,
  which will trigger a BLKRRPART from systemd, which will reinstate all partitions just deleted.
  (bsc#1060551)


-----------------------------------------
Patch: SUSE-2018-230
Released: Thu Feb  1 09:32:01 2018
Summary: Security update for libXfont
Severity: moderate
References: 1049692,1050459,1054285,CVE-2017-13720,CVE-2017-13722
Description:
This update for libXfont fixes several issues.

These security issues were fixed:

- CVE-2017-13720: Improper check for end of string in PatterMatch caused invalid reads (bsc#1054285)
- CVE-2017-13722: Malformed PCF file could have caused DoS or leak information (bsc#1049692)
- Prevent the X server from accessing arbitrary files as root. It is not possible to leak information, but special files can be touched allowing for causing side effects (bsc#1050459)


-----------------------------------------
Patch: SUSE-2018-231
Released: Thu Feb  1 09:56:35 2018
Summary: Recommended update for systemd-rpm-macros
Severity: low
References: 1071543,1073715
Description:
This update for systemd-rpm-macros provides the following fixes:

- Make sure to apply presets if packages start shipping units during upgrades.
  (bsc#1071543, bsc#1073715)
- Remove a useless test in %service_add_pre(). The test was placed where the condition
  '[ '$FIRST_ARG' -gt 1 ]' was always true.


-----------------------------------------
Patch: SUSE-2018-233
Released: Thu Feb  1 09:58:15 2018
Summary: Recommended update for gnome-packagekit
Severity: low
References: 1036542,988167
Description:
This update for gnome-packagekit provides the following fixes:

- Fix gpk-update-viewer not responding after installing all available updates (bsc#1036542)
- Fix logout button not working when relogin is needed (bsc#988167)


-----------------------------------------
Patch: SUSE-2018-234
Released: Thu Feb  1 10:39:27 2018
Summary: Security update for ecryptfs-utils
Severity: moderate
References: 989121,989122,CVE-2015-8946,CVE-2016-6224
Description:
This update for ecryptfs-utils fixes the following issues:

- CVE-2015-8946: ecryptfs-setup-swap improperly configures encrypted swap when using GPT partitioning (bsc#989121)
- CVE-2016-6224: ecryptfs-setup-swap improperly configures encrypted swap when using GPT partitioning on a NVMe or MMC drive (bsc#989122)


-----------------------------------------
Patch: SUSE-2018-236
Released: Thu Feb  1 12:38:32 2018
Summary: Security update for libXdmcp
Severity: moderate
References: 1025046,CVE-2017-2625
Description:
This update for libXdmcp fixes the following issues:

- CVE-2017-2625: The generation of session key in XDM using libXdmcp might have used weak entropy, making
  the session keys predictable (bsc#1025046)



-----------------------------------------
Patch: SUSE-2018-237
Released: Thu Feb  1 12:38:57 2018
Summary: Security update for libICE
Severity: moderate
References: 1025068,CVE-2017-2626
Description:
This update for libICE fixes the following issues:

- CVE-2017-2626: Creation of the ICE auth session cookies used insufficient randomness, making these cookies
  predictable. A more random generation method has been implemented. (boo#1025068)



-----------------------------------------
Patch: SUSE-2018-238
Released: Thu Feb  1 16:35:51 2018
Summary: Security update for jasper
Severity: moderate
References: 1009994,1010756,1010757,1010766,1010774,1010782,1010968,1010975,1047958,CVE-2016-9262,CVE-2016-9388,CVE-2016-9389,CVE-2016-9390,CVE-2016-9391,CVE-2016-9392,CVE-2016-9393,CVE-2016-9394,CVE-2017-1000050
Description:
This update for jasper fixes the following issues:

Security issues fixed:
- CVE-2016-9262: Multiple integer overflows in the jas_realloc function in base/jas_malloc.c and
  mem_resize function in base/jas_stream.c allow remote attackers to cause a denial of service via
  a crafted image, which triggers use after free vulnerabilities. (bsc#1009994)
- CVE-2016-9388: The ras_getcmap function in ras_dec.c allows remote attackers to cause a denial
  of service (assertion failure) via a crafted image file. (bsc#1010975)
- CVE-2016-9389: The jpc_irct and jpc_iict functions in jpc_mct.c allow remote attackers to cause a
  denial of service (assertion failure). (bsc#1010968)
- CVE-2016-9390: The jas_seq2d_create function in jas_seq.c allows remote attackers to cause a
  denial of service (assertion failure) via a crafted image file. (bsc#1010774)
- CVE-2016-9391: The jpc_bitstream_getbits function in jpc_bs.c allows remote attackers to cause a
  denial of service (assertion failure) via a very large integer. (bsc#1010782)
- CVE-2017-1000050: The jp2_encode function in jp2_enc.c allows remote attackers to cause a denial
  of service. (bsc#1047958)

CVEs already fixed with previous update:
- CVE-2016-9392: The calcstepsizes function in jpc_dec.c allows remote attackers to cause a denial
  of service (assertion failure) via a crafted file. (bsc#1010757)
- CVE-2016-9393: The jpc_pi_nextrpcl function in jpc_t2cod.c allows remote attackers to cause a
  denial of service (assertion failure) via a crafted file. (bsc#1010766)
- CVE-2016-9394: The jas_seq2d_create function in jas_seq.c allows remote attackers to cause a
  denial of service (assertion failure) via a crafted file. (bsc#1010756)


-----------------------------------------
Patch: SUSE-2018-243
Released: Fri Feb  2 09:13:13 2018
Summary: Recommended update for mozilla-nss
Severity: important
References: 1078190,1078333
Description:
This update for mozilla-nss fixes the following issue:

- This update remedies a regression caused by a previous update of mozilla-nss
  that affected users of FIPS mode. [bsc#1078333, bsc#1078190]


-----------------------------------------
Patch: SUSE-2018-244
Released: Fri Feb  2 10:40:37 2018
Summary: Security update for ImageMagick
Severity: moderate
References: 1043353,1043354,1047908,1050037,1050072,1050098,1050100,1050635,1051442,1052470,1052708,1052717,1052721,1052768,1052777,1052781,1054600,1055068,1055374,1055455,1055456,1057000,1060162,1062752,1072362,1072901,1074120,1074125,1074185,1074309,1075939,1076021,1076051,CVE-2017-10995,CVE-2017-11505,CVE-2017-11525,CVE-2017-11526,CVE-2017-11539,CVE-2017-11639,CVE-2017-11750,CVE-2017-12565,CVE-2017-12640,CVE-2017-12641,CVE-2017-12643,CVE-2017-12671,CVE-2017-12673,CVE-2017-12676,CVE-2017-12935,CVE-2017-13059,CVE-2017-13141,CVE-2017-13142,CVE-2017-13147,CVE-2017-14103,CVE-2017-14649,CVE-2017-15218,CVE-2017-17504,CVE-2017-17681,CVE-2017-17879,CVE-2017-17884,CVE-2017-17914,CVE-2017-18008,CVE-2017-18027,CVE-2017-18029,CVE-2017-9261,CVE-2017-9262,CVE-2018-5246,CVE-2018-5685
Description:
This update for ImageMagick fixes several issues.

These security issues were fixed:

- CVE-2017-18027: Prevent memory leak vulnerability in the function
  ReadMATImage which allowed remote attackers to cause a denial of service via a
  crafted file (bsc#1076051)
- CVE-2017-18029: Prevent memory leak in the function ReadMATImage which
  allowed remote attackers to cause a denial of service via a crafted file
  (bsc#1076021)
- CVE-2017-17681: Prevent infinite loop in the function ReadPSDChannelZip in
  coders/psd.c, which allowed attackers to cause a denial of service (CPU
  exhaustion) via a crafted psd image file (bsc#1072901).
- CVE-2017-18008: Prevent memory Leak in ReadPWPImage which allowed attackers
  to cause a denial of service via a PWP file (bsc#1074309).
- CVE-2018-5685: Prevent infinite loop and application hang in the ReadBMPImage
  function. Remote attackers could leverage this vulnerability to cause a denial
  of service via an image file with a crafted bit-field mask value (bsc#1075939)
- CVE-2017-11639: Prevent heap-based buffer over-read in the WriteCIPImage()
  function, related to the GetPixelLuma function in MagickCore/pixel-accessor.h
  (bsc#1050635)
- CVE-2017-11525: Prevent memory consumption in the ReadCINImage function that
  allowed remote attackers to cause a denial of service (bsc#1050098)
- CVE-2017-9262: The ReadJNGImage function in coders/png.c allowed attackers to
  cause a denial of service (memory leak) via a crafted file (bsc#1043353).
- CVE-2017-9261: The ReadMNGImage function in coders/png.c allowed attackers to
  cause a denial of service (memory leak) via a crafted file (bsc#1043354).
- CVE-2017-10995: The mng_get_long function in coders/png.c allowed remote
  attackers to cause a denial of service (heap-based buffer over-read and
  application crash) via a crafted MNG image (bsc#1047908).
- CVE-2017-11539: Prevent memory leak in the ReadOnePNGImage() function in
  coders/png.c (bsc#1050037).
- CVE-2017-11505: The ReadOneJNGImage function in coders/png.c allowed remote
  attackers to cause a denial of service (large loop and CPU consumption) via a
  crafted file (bsc#1050072).
- CVE-2017-11526: The ReadOneMNGImage function in coders/png.c allowed remote
  attackers to cause a denial of service (large loop and CPU consumption) via a
  crafted file (bsc#1050100).
- CVE-2017-11750: The ReadOneJNGImage function in coders/png.c allowed remote
  attackers to cause a denial of service (NULL pointer dereference) via a crafted
  file (bsc#1051442).
- CVE-2017-12565: Prevent memory leak in the function ReadOneJNGImage in
  coders/png.c, which allowed attackers to cause a denial of service
  (bsc#1052470).
- CVE-2017-12676: Prevent memory leak in the function ReadOneJNGImage in
  coders/png.c, which allowed attackers to cause a denial of service
  (bsc#1052708).
- CVE-2017-12673: Prevent memory leak in the function ReadOneMNGImage in
  coders/png.c, which allowed attackers to cause a denial of service
  (bsc#1052717).
- CVE-2017-12671: Added NULL assignment in coders/png.c to prevent an invalid
  free in the function RelinquishMagickMemory in MagickCore/memory.c, which
  allowed attackers to cause a denial of service (bsc#1052721).
- CVE-2017-12643: Prevent a memory exhaustion vulnerability in ReadOneJNGImage
  in coders\png.c (bsc#1052768).
- CVE-2017-12641: Prevent a memory leak vulnerability in ReadOneJNGImage in
  coders\png.c (bsc#1052777).
- CVE-2017-12640: Prevent an out-of-bounds read vulnerability in
  ReadOneMNGImage in coders/png.c (bsc#1052781).
- CVE-2017-12935: The ReadMNGImage function in coders/png.c mishandled large
  MNG images, leading to an invalid memory read in the SetImageColorCallBack
  function in magick/image.c (bsc#1054600).
- CVE-2017-13059: Prevent memory leak in the function WriteOneJNGImage in
  coders/png.c, which allowed attackers to cause a denial of service
  (WriteJNGImage memory consumption) via a crafted file (bsc#1055068).
- CVE-2017-13147: Prevent allocation failure in the function ReadMNGImage in
  coders/png.c when a small MNG file has a MEND chunk with a large length value
  (bsc#1055374).
- CVE-2017-13142: Added additional checks for short files to prevent a crafted
  PNG file from triggering a crash (bsc#1055455).
- CVE-2017-13141: Prevent memory leak in ReadOnePNGImage in coders/png.c
  (bsc#1055456).
- CVE-2017-14103: The ReadJNGImage and ReadOneJNGImage functions in
  coders/png.c did not properly manage image pointers after certain error
  conditions, which allowed remote attackers to conduct use-after-free attacks
  via a crafted file, related to a ReadMNGImage out-of-order CloseBlob call
  (bsc#1057000).
- CVE-2017-14649: ReadOneJNGImage in coders/png.c did not properly validate JNG
  data, leading to a denial of service (assertion failure in
  magick/pixel_cache.c, and application crash) (bsc#1060162).
- CVE-2017-15218: Prevent memory leak in ReadOneJNGImage in coders/png.c
  (bsc#1062752).
- CVE-2017-17504: Prevent heap-based buffer over-read via a crafted file in
  Magick_png_read_raw_profile, related to ReadOneMNGImage (bsc#1072362).
- CVE-2017-17884: Prevent memory leak in the function WriteOnePNGImage in
  coders/png.c, which allowed attackers to cause a denial of service via a
  crafted PNG image file (bsc#1074120).
- CVE-2017-17879: Prevent heap-based buffer over-read in ReadOneMNGImage in
  coders/png.c, related to length calculation and caused by an off-by-one error
  (bsc#1074125).
- CVE-2017-17914: Prevent crafted files to cause a large loop in
  ReadOneMNGImage (bsc#1074185).


-----------------------------------------
Patch: SUSE-2018-247
Released: Fri Feb  2 12:33:37 2018
Summary: Security update for libsndfile
Severity: moderate
References: 1043978,1059911,1059912,1059913,1069874,CVE-2017-14245,CVE-2017-14246,CVE-2017-14634,CVE-2017-16942,CVE-2017-6892
Description:
This update for libsndfile fixes the following issues:

- CVE-2017-16942: Divide-by-zero in the function wav_w64_read_fmt_chunk(), which may lead to Denial of service (bsc#1069874). 
- CVE-2017-6892:  Fixed an out-of-bounds read memory access in the aiff_read_chanmap() (bsc#1043978).
- CVE-2017-14634: In libsndfile 1.0.28, a divide-by-zero error exists in the function double64_init() in double64.c, which may lead to DoS when playing a crafted audio file. (bsc#1059911)
- CVE-2017-14245: An out of bounds read in the function d2alaw_array() in alaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of 
                  the NAN and INFINITY floating-point values. (bsc#1059912)
- CVE-2017-14246: An out of bounds read in the function d2ulaw_array() in ulaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of 
                  the NAN and INFINITY floating-point values.(bsc#1059913)


-----------------------------------------
Patch: SUSE-2018-249
Released: Fri Feb  2 17:32:31 2018
Summary: Recommended update for ibus
Severity: low
References: 1036729
Description:
This update for ibus provides the following fix:

- Disable load preload-engines actions which may cause CJK user login failed (bsc#1036729)

-----------------------------------------
Patch: SUSE-2018-250
Released: Fri Feb  2 17:33:48 2018
Summary: Recommended update for timezone, timezone-java
Severity: low
References: 1073275
Description:
This update provides the latest timezone information (2018c) for your system, including following changes:

- Sao Tome and Principe switched from +00 to +01 on 2018-01-01.
- Southern Brazil's DST will now start on November's first Sunday. (bsc#1073275)
- New zic option -t to specify the time zone file if TZ is unset.


-----------------------------------------
Patch: SUSE-2018-257
Released: Mon Feb  5 10:43:58 2018
Summary: Recommended update for LibreOffice
Severity: low
References: 1070588,1072061
Description:
LibreOffice was updated to version 5.4.4.2, bringing new features and enhancements:
General:
- Fix providing libgpg-error0 when bundling. (bsc#1072061)

Writer:

- AutoText import from .dotx and .dotm files
- RTF filter now supports all types of custom document properties
- New 'Edit Section' UNO command which works if cursor is in a section, has been created and added in context menu
- New 'Footnotes and Endnotes' UNO command which works if cursor is in a footnote or endnote, has been created and added in context menu
- Huge improvement in the export of bullets and numbering via copy and paste commit
- New formatting toolbar focused on the use of styles is accessible through View -> Toolbars -> Formatting (Styles)
- Custom Watermark inserting in Format -> Watermarks
- Styles submenu was added to Context Menu, which includes basic character styles
- AutoCorrect options for markup strikeout and italic are added
- Rename Moderate business letter templates to Modern business letter.

Calc:

- Calculate with Precision as shown option now works also with fraction format, several subformats, engineering notation, thousands divisors
- CSV export settings are now remembered
- Priority of conditional formatting rules can be changed with new up/down buttons
- New cell comment commands added
- While building formulas, when selecting a cell or range on another sheet with the pointer, absolute sheet references are now created instead of relative
- Support negative year date (BCE) in cell input and date display
- A new Cell Protection toggle command was added to Edit -> Cell Protection to change the protection status of the cell
- Cell styles now accessible in their own dedicated Styles menu in Format -> Styles
- Standard and Percent buttons of number format became toggle
- New function ROUNDSIG to round a value at a number of significant digits
- The semantics of the COUNTIF, SUMIF and AVERAGEIF Criteria argument has been changed

Impress and Draw:

- Enable fractional angle
- Save previous parameters
- Ctrl+M shortcut assigned to inserting a new slide in Impress.

For a comprehensive list of changes please refer to the upstream release notes:
https://wiki.documentfoundation.org/ReleaseNotes/5.4


-----------------------------------------
Patch: SUSE-2018-259
Released: Mon Feb  5 16:09:09 2018
Summary: Recommended update for accountsservice
Severity: low
References: 1063794
Description:
This update for accountsservice provides the following fix:

- Drop operator, nobody4 and noaccess accounts from the blacklist so that they can be used
  and displayed in gdm. (bsc#1063794)


-----------------------------------------
Patch: SUSE-2018-260
Released: Tue Feb  6 11:23:08 2018
Summary: Recommended update for libsrtp
Severity: moderate
References: 1078546
Description:

This update supplies the libsrtp-devel package to the Software Development Kit,
which was incorrectly removed in Service Pack 2.
  

-----------------------------------------
Patch: SUSE-2018-261
Released: Tue Feb  6 11:24:15 2018
Summary: Security update for libjpeg-turbo
Severity: moderate
References: 1062937,CVE-2017-15232
Description:
This update for libjpeg-turbo fixes the following issues:

Feature update:

- Update from version 1.3.1 to version 1.5.2 (fate#324061).
  
Security issue fixed:

- CVE-2017-15232: Fix NULL pointer dereference in jdpostct.c and jquant1.c (bsc#1062937).


-----------------------------------------
Patch: SUSE-2018-262
Released: Tue Feb  6 11:24:58 2018
Summary: security update for spice-vdagent
Severity: moderate
References: 1012215,1070724,CVE-2017-15108
Description:
This update for spice-vdagent provides the following fixes:

This security issue was fixed:

- CVE-2017-15108: Properly escape save directory that is passed to the shell to
  prevent local attacker with access to the session the agent runs from injecting
  arbitrary commands to be executed (bsc#1070724).

This non-security issue was fixed:

- Implement endian swapping, required for big-endian guests to connect to the spice client
  successfully. (bsc#1012215)
  

-----------------------------------------
Patch: SUSE-2018-263
Released: Tue Feb  6 11:47:09 2018
Summary: Security update for MozillaFirefox
Severity: important
References: 1077291,CVE-2018-5089,CVE-2018-5091,CVE-2018-5095,CVE-2018-5096,CVE-2018-5097,CVE-2018-5098,CVE-2018-5099,CVE-2018-5102,CVE-2018-5103,CVE-2018-5104,CVE-2018-5117
Description:
This update for MozillaFirefox to version 52.6 several issues.

These security issues were fixed:

- CVE-2018-5091: Use-after-free with DTMF timers (bsc#1077291).
- CVE-2018-5095: Integer overflow in Skia library during edge builder allocation (bsc#1077291).
- CVE-2018-5096: Use-after-free while editing form elements (bsc#1077291).
- CVE-2018-5097: Use-after-free when source document is manipulated during XSLT (bsc#1077291).
- CVE-2018-5098: Use-after-free while manipulating form input elements (bsc#1077291).
- CVE-2018-5099: Use-after-free with widget listener (bsc#1077291).
- CVE-2018-5104: Use-after-free during font face manipulation (bsc#1077291).
- CVE-2018-5089: Fixed several memory safety bugs (bsc#1077291).
- CVE-2018-5117: URL spoofing with right-to-left text aligned left-to-right (bsc#1077291).
- CVE-2018-5102: Use-after-free in HTML media elements (bsc#1077291).
- CVE-2018-5103: Use-after-free during mouse event handling (bsc#1077291).


-----------------------------------------
Patch: SUSE-2018-276
Released: Thu Feb  8 17:47:43 2018
Summary: Security update for libxml2
Severity: moderate
References: 1077993,1078806,1078813,CVE-2016-5131,CVE-2017-15412,CVE-2017-5130
Description:
This update for libxml2 fixes one issue.

This security issue was fixed:

- CVE-2017-15412: Prevent use after free when calling XPath extension functions
  that allowed remote attackers to cause DoS or potentially RCE (bsc#1077993)
- CVE-2016-5131: Use-after-free vulnerability in libxml2 allowed
  remote attackers to cause a denial of service or possibly have
  unspecified other impact via vectors related to the XPointer range-to
  function. (bsc#1078813)
- CVE-2017-5130: Fixed a potential remote buffer overflow in function
  xmlMemoryStrdup() (bsc#1078806)

  

-----------------------------------------
Patch: SUSE-2018-277
Released: Fri Feb  9 11:30:15 2018
Summary: Security update for ghostscript
Severity: moderate
References: 1032138,1032230,1040643,1050879,1050887,1050888,1050889,1050891,1051184,CVE-2016-10219,CVE-2016-10317,CVE-2017-11714,CVE-2017-9216,CVE-2017-9612,CVE-2017-9726,CVE-2017-9727,CVE-2017-9739,CVE-2017-9835
Description:
This update for ghostscript fixes several issues.



These security issues were fixed: 

- CVE-2017-9835: The gs_alloc_ref_array function allowed remote attackers to
  cause a denial of service (heap-based buffer overflow and application crash) or
  possibly have unspecified other impact via a crafted PostScript document
  (bsc#1050879).
- CVE-2017-9216: Prevent NULL pointer dereference in the jbig2_huffman_get
  function in jbig2_huffman.c which allowed for DoS (bsc#1040643).
- CVE-2016-10317: The fill_threshhold_buffer function in base/gxht_thresh.c
  allowed remote attackers to cause a denial of service (heap-based buffer
  overflow and application crash) or possibly have unspecified other impact via a
  crafted PostScript document (bsc#1032230).
- CVE-2017-9612: The Ins_IP function in base/ttinterp.c allowed remote
  attackers to cause a denial of service (use-after-free and application crash)
  or possibly have unspecified other impact via a crafted document (bsc#1050891).
- CVE-2017-9726: The Ins_MDRP function in base/ttinterp.c allowed remote
  attackers to cause a denial of service (heap-based buffer over-read and
  application crash) or possibly have unspecified other impact via a crafted
  document (bsc#1050889).
- CVE-2017-9727: The gx_ttfReader__Read function in base/gxttfb.c allowed
  remote attackers to cause a denial of service (heap-based buffer over-read and
  application crash) or possibly have unspecified other impact via a crafted
  document (bsc#1050888).
- CVE-2017-9739: The Ins_JMPR function in base/ttinterp.c allowed remote
  attackers to cause a denial of service (heap-based buffer over-read and
  application crash) or possibly have unspecified other impact via a crafted
  document (bsc#1050887).
- CVE-2017-11714: psi/ztoken.c mishandled references to the scanner state
  structure, which allowed remote attackers to cause a denial of service
  (application crash) or possibly have unspecified other impact via a crafted
  PostScript document, related to an out-of-bounds read in the
  igc_reloc_struct_ptr function in psi/igc.c (bsc#1051184).
- CVE-2016-10219: The intersect function in base/gxfill.c allowed remote
  attackers to cause a denial of service (divide-by-zero error and application
  crash) via a crafted file (bsc#1032138).


-----------------------------------------
Patch: SUSE-2018-286
Released: Fri Feb  9 16:48:50 2018
Summary: Security update for freetype2
Severity: important
References: 1028103,1035807,1036457,1079600,CVE-2016-10244,CVE-2017-7864,CVE-2017-8105,CVE-2017-8287
Description:

  
This update for freetype2 fixes the following security issues:

- CVE-2016-10244: Make sure that the parse_charstrings function in
  type1/t1load.c does ensure that a font contains a glyph name to prevent a DoS
  through a heap-based buffer over-read or possibly have unspecified other
  impact via a crafted file (bsc#1028103)
- CVE-2017-8105: Fix an out-of-bounds write caused by a heap-based
  buffer overflow related to the t1_decoder_parse_charstrings function in
  psaux/t1decode.ca (bsc#1035807)
- CVE-2017-8287: an out-of-bounds write caused by a heap-based buffer
  overflow related to the t1_builder_close_contour function in psaux/psobjs.c
  (bsc#1036457)
- Fix several integer overflow issues in truetype/ttinterp.c (bsc#1079600)


-----------------------------------------
Patch: SUSE-2018-288
Released: Mon Feb 12 08:46:09 2018
Summary: Security update for ipsec-tools
Severity: moderate
References: 1047443,CVE-2016-10396
Description:
This update for ipsec-tools fixes one issue.

This security issue was fixed:

- CVE-2016-10396: The racoon daemon contained a remotely exploitable
  computational-complexity attack when parsing and storing ISAKMP fragments that
  allowed a remote attacker to exhaust computational resources on the remote
  endpoint by repeatedly sending ISAKMP fragment packets in a particular order
  (bsc#1047443).


-----------------------------------------
Patch: SUSE-2018-291
Released: Mon Feb 12 11:50:39 2018
Summary: Recommended update for bash
Severity: low
References: 1057452,1076909
Description:
This update for bash provides the following fix:

- Allow process group assignment on all kernel versions to fix the usage of debug traps.
  (bsc#1057452)
- Fix a crash when filesystem is full. (bsc#1076909)
- Enable multi-byte characters by default.


-----------------------------------------
Patch: SUSE-2018-316
Released: Fri Feb 16 02:05:19 2018
Summary: Security update for quagga
Severity: important
References: 1065641,1079798,1079799,1079800,1079801,CVE-2017-16227,CVE-2018-5378,CVE-2018-5379,CVE-2018-5380,CVE-2018-5381
Description:
This update for quagga fixes the security following issues:

- The Quagga BGP daemon contained a bug in the AS_PATH size calculation that
  could have been exploited to facilitate a remote denial-of-service attack via
  specially crafted BGP UPDATE messages. [CVE-2017-16227, bsc#1065641]

- The Quagga BGP daemon did not check whether data sent to peers via NOTIFY had
  an invalid attribute length. It was possible to exploit this issue and cause
  the bgpd process to leak sensitive information over the network to a
  configured peer. [CVE-2018-5378, bsc#1079798]

- The Quagga BGP daemon used to double-free memory when processing certain
  forms of UPDATE messages. This issue could be exploited by sending an
  optional/transitive UPDATE attribute that all conforming eBGP speakers should
  pass along. Consequently, a single UPDATE message could have affected many
  bgpd processes across a wide area of a network. Through this vulnerability,
  attackers could potentially have taken over control of affected bgpd
  processes remotely. [CVE-2018-5379, bsc#1079799]

- It was possible to overrun internal BGP code-to-string conversion tables in
  the Quagga BGP daemon. Configured peers could have exploited this issue and
  cause bgpd to emit debug and warning messages into the logs that would
  contained arbitrary bytes. [CVE-2018-5380, bsc#1079800]

- The Quagga BGP daemon could have entered an infinite loop if sent an invalid
  OPEN message by a configured peer. If this issue was exploited, then bgpd
  would cease to respond to any other events. BGP sessions would have been
  dropped and not be reestablished. The CLI interface would have been
  unresponsive. The bgpd daemon would have stayed in this state until
  restarted. [CVE-2018-5381, bsc#1079801]


-----------------------------------------
Patch: SUSE-2018-319
Released: Fri Feb 16 13:45:42 2018
Summary: Security update for p7zip
Severity: important
References: 1077724,1077725,1077978,984650,CVE-2016-1372,CVE-2017-17969,CVE-2018-5996
Description:

  
This update for p7zip fixes the following issues:

Security issues fixed:

- CVE-2016-1372: Fixed multiple vulnerabilities when processing crafted 7z files (bsc#984650)
- CVE-2017-17969: Fixed a heap-based buffer overflow in a shrink decoder (bsc#1077725)
- CVE-2018-5996: Fixed memory corruption in RAR decompression. The complete RAR decoder was removed as it also has license issues (bsc#1077724 bsc#1077978)



-----------------------------------------
Patch: SUSE-2018-321
Released: Fri Feb 16 15:58:42 2018
Summary: Security update for dovecot22
Severity: moderate
References: 1075608,CVE-2017-15132
Description:
This update for dovecot22 fixes one issue.

This security issue was fixed:

- CVE-2017-15132: An abort of SASL authentication resulted in a memory leak in
  dovecot's auth client used by login processes. The leak has impact in high
  performance configuration where same login processes are reused and can cause
  the process to crash due to memory exhaustion (bsc#1075608).


-----------------------------------------
Patch: SUSE-2018-332
Released: Wed Feb 21 07:02:42 2018
Summary: Security update for postgresql96
Severity: moderate
References: 1077983,CVE-2018-1053
Description:

  
This update for postgresql96 to version 9.6.7 fixes the following issues:

- CVE-2018-1053: Ensure that all temporary files made by pg_upgrade are non-world-readable. (bsc#1077983)

A full changelog is available here:

	https://www.postgresql.org/docs/9.6/static/release-9-6-7.html



-----------------------------------------
Patch: SUSE-2018-336
Released: Wed Feb 21 14:26:52 2018
Summary: Security update for libdb-4_8
Severity: moderate
References: 1043886
Description:
This update for libdb-4_8 fixes the following issues:

- A DB_CONFIG file in the current working directory allowed local
  users to obtain sensitive information via a symlink attack
  involving a setgid or setuid application using libdb-4_8. (bsc#1043886)


-----------------------------------------
Patch: SUSE-2018-351
Released: Fri Feb 23 18:37:13 2018
Summary: Security update for dhcp
Severity: moderate
References: 1023415,1059061,1073935,1076119,987170,CVE-2017-3144
Description:
 This update for dhcp fixes several issues.

This security issue was fixed:

- CVE-2017-3144: OMAPI code didn't free socket descriptors when empty message
  is received allowing DoS (bsc#1076119).

These non-security issues were fixed:

- Optimized if and when DNS client context and ports are initted (bsc#1073935)
- Relax permission of dhclient-script for libguestfs (bsc#987170)
- Modify dhclient-script to handle static route updates (bsc#1023415).
- Use only the 12 least significant bits of an inbound packet's TCI value as the VLAN ID
  to fix some packages being wrongly discarded by the Linux packet filter. (bsc#1059061)


-----------------------------------------
Patch: SUSE-2018-356
Released: Mon Feb 26 17:58:02 2018
Summary: Recommended update for arpwatch
Severity: low
References: 1077754
Description:

This update for arpwatch provides the following fix:

- Remove executable bit from service file (bsc#1077754)


-----------------------------------------
Patch: SUSE-2018-375
Released: Wed Feb 28 16:33:37 2018
Summary: Recommended update for net-tools
Severity: low
References: 1009905,1063910
Description:

This update for net-tools provides the following fix:

- netstat: fix handling of large socket numbers (bsc#1063910)


-----------------------------------------
Patch: SUSE-2018-391
Released: Thu Mar  1 17:29:25 2018
Summary: Security update for ImageMagick
Severity: moderate
References: 1042824,1042911,1048110,1048272,1049374,1049375,1050048,1050119,1050122,1050126,1050132,1050617,1052207,1052248,1052251,1052254,1052472,1052688,1052711,1052747,1052750,1052754,1052761,1055069,1055229,1056768,1057163,1058009,1072898,1074119,1074170,1075821,1076182,1078433,CVE-2017-11166,CVE-2017-11170,CVE-2017-11448,CVE-2017-11450,CVE-2017-11528,CVE-2017-11530,CVE-2017-11531,CVE-2017-11533,CVE-2017-11537,CVE-2017-11638,CVE-2017-11642,CVE-2017-12418,CVE-2017-12427,CVE-2017-12429,CVE-2017-12432,CVE-2017-12566,CVE-2017-12654,CVE-2017-12663,CVE-2017-12664,CVE-2017-12665,CVE-2017-12668,CVE-2017-12674,CVE-2017-13058,CVE-2017-13131,CVE-2017-14060,CVE-2017-14139,CVE-2017-14224,CVE-2017-17682,CVE-2017-17885,CVE-2017-17934,CVE-2017-18028,CVE-2017-9405,CVE-2017-9407,CVE-2018-5357,CVE-2018-6405
Description:
This update for ImageMagick fixes the following issues:

- CVE-2017-9405: A memory leak in the ReadICONImage function was fixed that could lead to DoS via memory exhaustion (bsc#1042911)
- CVE-2017-9407: In ImageMagick, the ReadPALMImage function in palm.c allowed attackers to cause a denial of service (memory leak) via a crafted file.  (bsc#1042824)
- CVE-2017-11166: In ReadXWDImage in coders\xwd.c a memoryleak could have caused memory exhaustion via a crafted length (bsc#1048110)
- CVE-2017-11170: ReadTGAImage in coders\tga.c allowed for memory exhaustion via invalid colors data in the header of a TGA or VST file (bsc#1048272)
- CVE-2017-11448: The ReadJPEGImage function in coders/jpeg.c in ImageMagick allowed remote attackers to obtain sensitive information from uninitialized memory locations via a crafted file.  (bsc#1049375)
- CVE-2017-11450: A remote denial of service in coders/jpeg.c was fixed (bsc#1049374)
- CVE-2017-11528: ReadDIBImage in coders/dib.c allows remote attackers to cause DoS via memory exhaustion (bsc#1050119)
- CVE-2017-11530: ReadEPTImage in coders/ept.c allows remote attackers to cause DoS via memory exhaustion (bsc#1050122)
- CVE-2017-11531: When ImageMagick processed a crafted file in convert, it could lead to a Memory Leak in the WriteHISTOGRAMImage() function in coders/histogram.c.  (bsc#1050126)
- CVE-2017-11533: A information leak by 1 byte due to heap-based buffer over-read in the WriteUILImage() in coders/uil.c was fixed (bsc#1050132)
- CVE-2017-11537: When ImageMagick processed a crafted file in convert, it can lead to a Floating Point Exception (FPE) in the WritePALMImage() function in coders/palm.c, related to an incorrect bits-per-pixel calculation.  (bsc#1050048)
- CVE-2017-11638, CVE-2017-11642: A NULL pointer dereference in theWriteMAPImage() in coders/map.c was fixed which could lead to a crash (bsc#1050617)
- CVE-2017-12418: ImageMagick had memory leaks in the parse8BIMW and format8BIM functions in coders/meta.c, related to the WriteImage function in MagickCore/constitute.c.  (bsc#1052207)
- CVE-2017-12427: ProcessMSLScript coders/msl.c allowed remote attackers to cause a DoS (bsc#1052248)
- CVE-2017-12429: A memory exhaustion flaw in ReadMIFFImage in coders/miff.c was fixed, which allowed attackers to cause DoS (bsc#1052251)
- CVE-2017-12432: In ImageMagick, a memory exhaustion vulnerability was found in the function ReadPCXImage in coders/pcx.c, which allowed attackers to cause a denial of service.  (bsc#1052254)
- CVE-2017-12566: A memory leak in ReadMVGImage in coders/mvg.c, could have allowed attackers to cause DoS (bsc#1052472)
- CVE-2017-12654: The ReadPICTImage function in coders/pict.c in ImageMagick allowed attackers to cause a denial of service (memory leak) via a crafted file.  (bsc#1052761)
- CVE-2017-12663: A memory leak in WriteMAPImage in coders/map.c was fixed that could lead to a DoS via memory exhaustion (bsc#1052754)
- CVE-2017-12664: ImageMagick had a memory leak vulnerability in WritePALMImage in coders/palm.c.  (bsc#1052750)
- CVE-2017-12665: ImageMagick had a memory leak vulnerability in WritePICTImage in coders/pict.c.  (bsc#1052747)
- CVE-2017-12668: ImageMagick had a memory leak vulnerability in WritePCXImage in coders/pcx.c. (bsc#1052688)
- CVE-2017-12674: A CPU exhaustion in ReadPDBImage in coders/pdb.c was fixed, which allowed attackers to cause DoS (bsc#1052711)
- CVE-2017-13058: In ImageMagick, a memory leak vulnerability was found in the function WritePCXImage in coders/pcx.c, which allowed attackers to cause a denial of service via a crafted file.  (bsc#1055069)
- CVE-2017-13131: A memory leak vulnerability was found in thefunction ReadMIFFImage in coders/miff.c, which allowed attackers tocause a denial of service (memory consumption in NewL (bsc#1055229)
- CVE-2017-14060: A NULL Pointer Dereference issue in the ReadCUTImage function in coders/cut.c was fixed that could have caused a Denial of Service (bsc#1056768)
- CVE-2017-14139: A memory leak vulnerability in WriteMSLImage in coders/msl.c was fixed. (bsc#1057163)
- CVE-2017-14224: A heap-based buffer overflow in WritePCXImage in coders/pcx.c  could lead to  denial of service or code execution. (bsc#1058009)
- CVE-2017-17682: A large loop vulnerability was fixed in ExtractPostscript in coders/wpg.c, which allowed attackers to cause a denial of service (CPU exhaustion) (bsc#1072898)
- CVE-2017-17885: In ImageMagick, a memory leak vulnerability was found in the function ReadPICTImage in coders/pict.c, which allowed attackers to cause a denial of service via a crafted PICT image file. (bsc#1074119)
- CVE-2017-17934: A memory leak in the function MSLPopImage and ProcessMSLScript could have lead to a denial of service (bsc#1074170)
- CVE-2017-18028: A memory exhaustion in the function ReadTIFFImage in coders/tiff.c was fixed. (bsc#1076182)
- CVE-2018-5357: ImageMagick had memory leaks in the ReadDCMImage function in coders/dcm.c.  (bsc#1075821)
- CVE-2018-6405: In the ReadDCMImage function in coders/dcm.c in ImageMagick, each redmap, greenmap, and bluemap variable can be overwritten by a new pointer. The previous pointer is lost, which leads to a memory leak. This allowed remote attackers to cause a denial of service. (bsc#1078433)




-----------------------------------------
Patch: SUSE-2018-398
Released: Fri Mar  2 10:18:59 2018
Summary: Security update for openexr
Severity: moderate
References: 1040107,1040114,1052522,CVE-2017-12596,CVE-2017-9110,CVE-2017-9114
Description:
This update for openexr fixes the following issues:

* CVE-2017-9110: In OpenEXR, an invalid read of size 2 in the hufDecode function in ImfHuf.cpp could cause the application to crash. (bsc#1040107)
* CVE-2017-9114: In OpenEXR, an invalid read of size 1 in the refill function in ImfFastHuf.cpp could cause the application to crash.  (bsc#1040114)
* CVE-2017-12596: In OpenEXR, a crafted image causes a heap-based buffer over-read in the hufDecode function in IlmImf/ImfHuf.cpp during exrmaketiled execution; it could have resulted in denial of service or possibly unspecified other impact.  (bsc#1052522)


-----------------------------------------
Patch: SUSE-2018-410
Released: Mon Mar  5 10:42:31 2018
Summary: Security update for cups
Severity: important
References: 1081557,CVE-2017-18190
Description:
This update for cups fixes the following issues:

- CVE-2017-18190: Removed localhost.localdomain from list
  of trustworthy hosts in scheduler/client.c to avoid arbitrary IPP
  command execution in conjunction with DNS rebinding.
  (bsc#1081557)


-----------------------------------------
Patch: SUSE-2018-414
Released: Mon Mar  5 17:46:09 2018
Summary: Security update for wavpack
Severity: moderate
References: 1021483,CVE-2016-10169,CVE-2016-10170,CVE-2016-10171,CVE-2016-10172
Description:
This update for wavpack fixes the following issues:

- CVE-2016-10169 CVE-2016-10170 CVE-2016-10171 CVE-2016-10172: Make sure upper and lower boundaries make sense, to avoid out of bounds memory reads that could lead to crashes or disclosing memory. (bsc#1021483)


-----------------------------------------
Patch: SUSE-2018-416
Released: Mon Mar  5 20:10:33 2018
Summary: Recommended update for icewm
Severity: low
References: 1026134
Description:

This update for icewm provides the following fixes:

- Use 'mutt' as the mail client linked in the system tray icon. Previously it
  attempted to run 'alpine', which is not available on SUSE Linux Enterprise.
  (bsc#1026134)


-----------------------------------------
Patch: SUSE-2018-448
Released: Mon Mar 12 13:16:51 2018
Summary: Security update for java-1_7_0-openjdk
Severity: important
References: 1076366,CVE-2018-2579,CVE-2018-2588,CVE-2018-2599,CVE-2018-2602,CVE-2018-2603,CVE-2018-2618,CVE-2018-2629,CVE-2018-2633,CVE-2018-2634,CVE-2018-2637,CVE-2018-2641,CVE-2018-2663,CVE-2018-2677,CVE-2018-2678
Description:
This update for java-1_7_0-openjdk fixes the following issues:

Security issues fixed in OpenJDK 7u171 (January 2018 CPU)(bsc#1076366):

- CVE-2018-2579: Improve key keying case
- CVE-2018-2588: Improve LDAP logins
- CVE-2018-2599: Improve reliability of DNS lookups
- CVE-2018-2602: Improve usage messages
- CVE-2018-2603: Improve PKCS usage
- CVE-2018-2618: Stricter key generation
- CVE-2018-2629: Improve GSS handling
- CVE-2018-2633: Improve LDAP lookup robustness
- CVE-2018-2634: Improve property negotiations
- CVE-2018-2637: Improve JMX supportive features
- CVE-2018-2641: Improve GTK initialization
- CVE-2018-2663: More refactoring for deserialization cases
- CVE-2018-2677: More refactoring for client deserialization cases
- CVE-2018-2678: More refactoring for naming


-----------------------------------------
Patch: SUSE-2018-449
Released: Mon Mar 12 13:17:59 2018
Summary: Security update for java-1_8_0-openjdk
Severity: important
References: 1076366,CVE-2018-2579,CVE-2018-2582,CVE-2018-2588,CVE-2018-2599,CVE-2018-2602,CVE-2018-2603,CVE-2018-2618,CVE-2018-2629,CVE-2018-2633,CVE-2018-2634,CVE-2018-2637,CVE-2018-2641,CVE-2018-2663,CVE-2018-2677,CVE-2018-2678
Description:
This update for java-1_8_0-openjdk fixes the following issues:

Security issues fix in jdk8u161 (icedtea 3.7.0)(bsc#1076366):

- CVE-2018-2579: Improve key keying case
- CVE-2018-2582: Better interface invocations
- CVE-2018-2588: Improve LDAP logins
- CVE-2018-2599: Improve reliability of DNS lookups
- CVE-2018-2602: Improve usage messages
- CVE-2018-2603: Improve PKCS usage
- CVE-2018-2618: Stricter key generation
- CVE-2018-2629: Improve GSS handling
- CVE-2018-2633: Improve LDAP lookup robustness
- CVE-2018-2634: Improve property negotiations
- CVE-2018-2637: Improve JMX supportive features
- CVE-2018-2641: Improve GTK initialization
- CVE-2018-2663: More refactoring for deserialization cases
- CVE-2018-2677: More refactoring for client deserialization cases
- CVE-2018-2678: More refactoring for naming deserialization cases


-----------------------------------------
Patch: SUSE-2018-459
Released: Wed Mar 14 17:02:51 2018
Summary: Security update for libcdio
Severity: moderate
References: 1082877,CVE-2017-18201
Description:
This update for libcdio fixes the following issues:

- CVE-2017-18201: Fixed a double free vulnerability (bsc#1082877).


-----------------------------------------
Patch: SUSE-2018-462
Released: Thu Mar 15 07:37:30 2018
Summary: Recommended update for crda,wireless-regdb
Severity: low
References: 1074838,1081116
Description:

This update brings the latest version (2017.12.23) of regulatory domain data for
wireless communication devices. (bsc#1074838)

This update also ships crda and wireless-regdb in the SUSE Linux Enterprise Server
base products for the aarch64 and x86_64 architectures to enhance WiFi support
for the Raspberry Pi 3. (bsc#1081116 fate#324763)


-----------------------------------------
Patch: SUSE-2018-466
Released: Thu Mar 15 07:39:53 2018
Summary: Recommended update for squidGuard
Severity: moderate
References: 1081012
Description:
This update for squidGuard provides the following fixes:

- Enable LDAP support. (bsc#1081012)
- Declare functions to use use correct pointer sizes on 64-bit architectures to fix LDAP
  support.


-----------------------------------------
Patch: SUSE-2018-472
Released: Thu Mar 15 10:47:40 2018
Summary: Recommended update for libsolv, libzypp, zypper
Severity: low
References: 1074687,1075449,1076415,1079334,953130
Description:
This update for libsolv, libzypp and zypper provides the following fixes:

libsolv:
- Fix a bug that could make fileconflict detection very slow in some cases. (bnc#953130)
- Add new configuration options: ENABLE_RPMDB_LIBRPM and ENABLE_RPMPKG_LIBRPM.
- Add a new function to change the whatprovides data: pool_set_whatprovides.
- Significant improvements in the selection code.

libzypp:
- Make sure deleted keys are also removed from rpmdb. (bsc#1075449)
- plugin: Don't reject header values containing ':'. (bsc#1074687)
- RpmDb::checkPackage: Fix parsing localized rpm output. (bsc#1076415)

zypper:
- Do not recommend cron as it is not a direct dependency of zypper. (bsc#1079334)


-----------------------------------------
Patch: SUSE-2018-488
Released: Fri Mar 16 16:31:06 2018
Summary: Security update for xmltooling
Severity: moderate
References: 1083247,CVE-2018-0486,CVE-2018-0489
Description:
This update for xmltooling fixes the following issues:

- CVE-2018-0489: Fixed a security bug when xmltooling mishandled digital
  signatures of user data, which allows remote attackers to obtain
  sensitive information or conduct impersonation attacks via crafted
  XML data. NOTE: this issue exists because of an incomplete fix for
  CVE-2018-0486. (bsc#1083247)


-----------------------------------------
Patch: SUSE-2018-510
Released: Wed Mar 21 10:28:30 2018
Summary: Security update for postgresql96
Severity: moderate
References: 1081925,CVE-2018-1058
Description:
This update for postgresql96 fixes the following issues:

Security issues fixed:

- CVE-2018-1058: Fixed uncontrolled search path element in pg_dump and other client applications (bsc#1081925).


Bug fixes:

- See release notes for details:
  * https://www.postgresql.org/docs/9.6/static/release-9-6-8.html


-----------------------------------------
Patch: SUSE-2018-517
Released: Thu Mar 22 07:17:01 2018
Summary: Recommended update for openssh
Severity: moderate
References: 1048367,1048982,1051559,1061061
Description:
This update for openssh provides the following fixes:

- Enable systemd integration to work around various race conditions on reporting failures
  of the service. (bsc#1048367 bsc#1061061)
- Re-add tcpwrappers support (forward ported) that had been removed with the upgrade to
  6.6p1. Please note that tcpwrappers support will not be available in subsequent major
  releases of SUSE Linux Enterprise. (bsc#1048982)
- Fix for socket forwarding when logging in as root on server-side (bsc#1051559)



-----------------------------------------
Patch: SUSE-2018-531
Released: Fri Mar 23 09:24:33 2018
Summary: Security update for libvorbis
Severity: moderate
References: 1085687,CVE-2018-5146
Description:
This update for libvorbis fixes the following issues:

- CVE-2018-5146: Fixed out of bounds memory write while processing Vorbis audio data (bsc#1085687).


-----------------------------------------
Patch: SUSE-2018-542
Released: Mon Mar 26 10:38:34 2018
Summary: Security update for dhcp
Severity: moderate
References: 1083302,1083303,CVE-2018-5732,CVE-2018-5733
Description:
This update for dhcp fixes the following issues:

Security issues fixed:

- CVE-2018-5733: reference count overflow in dhcpd (bsc#1083303).
- CVE-2018-5732: buffer overflow in dhclient (bsc#1083302).


-----------------------------------------
Patch: SUSE-2018-546
Released: Mon Mar 26 11:48:37 2018
Summary: Security update for wireshark
Severity: moderate
References: 1077080,1082692,CVE-2017-17997,CVE-2018-7320,CVE-2018-7321,CVE-2018-7322,CVE-2018-7323,CVE-2018-7324,CVE-2018-7325,CVE-2018-7326,CVE-2018-7327,CVE-2018-7328,CVE-2018-7329,CVE-2018-7330,CVE-2018-7331,CVE-2018-7332,CVE-2018-7333,CVE-2018-7334,CVE-2018-7335,CVE-2018-7336,CVE-2018-7337,CVE-2018-7417,CVE-2018-7418,CVE-2018-7419,CVE-2018-7420,CVE-2018-7421
Description:
This update for wireshark fixes the following issues:

Security issue fixed (bsc#1082692):

- CVE-2018-7335: The IEEE 802.11 dissector could crash (wnpa-sec-2018-05)
- CVE-2018-7321: thrift long dissector loop (dissect_thrift_map)
- CVE-2018-7322: DICOM: inifinite loop (dissect_dcm_tag)
- CVE-2018-7323: WCCP: very long loop (dissect_wccp2_alternate_mask_value_set_element)
- CVE-2018-7324: SCCP: infinite loop (dissect_sccp_optional_parameters)
- CVE-2018-7325: RPKI-Router Protocol: infinite loop (dissect_rpkirtr_pdu)
- CVE-2018-7326: LLTD: infinite loop (dissect_lltd_tlv)
- CVE-2018-7327: openflow_v6: infinite loop (dissect_openflow_bundle_control_v6)
- CVE-2018-7328: USB-DARWIN: long loop (dissect_darwin_usb_iso_transfer)
- CVE-2018-7329: S7COMM: infinite loop (s7comm_decode_ud_cpu_alarm_main)
- CVE-2018-7330: thread_meshcop: infinite loop (get_chancount)
- CVE-2018-7331: GTP: infinite loop (dissect_gprscdr_GGSNPDPRecord, dissect_ber_set)
- CVE-2018-7332: RELOAD: infinite loop (dissect_statans)
- CVE-2018-7333: RPCoRDMA: infinite loop in get_write_list_chunk_count
- CVE-2018-7421: Multiple dissectors could go into large infinite loops (wnpa-sec-2018-06)
- CVE-2018-7334: The UMTS MAC dissector could crash (wnpa-sec-2018-07)
- CVE-2018-7337: The DOCSIS dissector could crash (wnpa-sec-2018-08)
- CVE-2018-7336: The FCP dissector could crash (wnpa-sec-2018-09)
- CVE-2018-7320: The SIGCOMP dissector could crash (wnpa-sec-2018-10)
- CVE-2018-7420: The pcapng file parser could crash (wnpa-sec-2018-11)
- CVE-2018-7417: The IPMI dissector could crash (wnpa-sec-2018-12)
- CVE-2018-7418: The SIGCOMP dissector could crash (wnpa-sec-2018-13)
- CVE-2018-7419: The NBAP disssector could crash (wnpa-sec-2018-14)
- CVE-2017-17997: Misuse of NULL pointer in MRDISC dissector (bsc#1077080).


-----------------------------------------
Patch: SUSE-2018-552
Released: Tue Mar 27 00:36:56 2018
Summary: Security update for librelp
Severity: important
References: 1086730,CVE-2018-1000140
Description:
This update for librelp fixes the following issues:
  CVE-2018-1000140 (bsc#1086730):
  librelp contained a stack-based buffer overflow in the checking of x509 certificates.
  A remote attacker with an access to the rsyslog logging facility could have exploited
  it by sending a specially crafted x509 certificate.


-----------------------------------------
Patch: SUSE-2018-554
Released: Tue Mar 27 16:28:02 2018
Summary: Security update for LibVNCServer
Severity: important
References: 1017711,1017712,1081493,CVE-2016-9941,CVE-2016-9942,CVE-2018-7225
Description:

LibVNCServer was updated to fix two security issues.

These security issues were fixed:

- CVE-2018-7225: Missing input sanitization inside rfbserver.c rfbProcessClientNormalMessage() (bsc#1081493).
- CVE-2016-9942: Heap-based buffer overflow in ultra.c allowed remote servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted FramebufferUpdate message with the Ultra type tile, such that the LZO payload decompressed length exceeds what is specified by the tile dimensions (bsc#1017712).
- CVE-2016-9941: Heap-based buffer overflow in rfbproto.c allowed remote servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted FramebufferUpdate message containing a subrectangle outside of the client drawing area (bsc#1017711).
  

-----------------------------------------
Patch: SUSE-2018-562
Released: Thu Mar 29 08:31:32 2018
Summary: Security update for memcached
Severity: important
References: 1056865,CVE-2017-9951
Description:
This update for memcached fixes the following issues:

- CVE-2017-9951: Fixed heap-based buffer over-read in try_read_command function which allowed remote attackers to cause a denial of service attack (bsc#1056865).


-----------------------------------------
Patch: SUSE-2018-567
Released: Thu Mar 29 14:02:08 2018
Summary: Security update for krb5
Severity: moderate
References: 1057662,1081725,1083926,1083927,CVE-2018-5729,CVE-2018-5730
Description:
This update for krb5 provides the following fixes:

Security issues fixed:

- CVE-2018-5730: DN container check bypass by supplying special crafted data (bsc#1083927).
- CVE-2018-5729: Null pointer dereference in kadmind or DN container check bypass by supplying special crafted data (bsc#1083926).

Non-security issues fixed:

- Make it possible for legacy applications (e.g. SAP Netweaver) to remain compatible with
  newer Kerberos. System administrators who are experiencing this kind of compatibility
  issues may set the environment variable GSSAPI_ASSUME_MECH_MATCH to a non-empty value,
  and make sure the environment variable is visible and effective to the application
  startup script. (bsc#1057662)
- Fix a GSS failure in legacy applications by not indicating deprecated GSS mechanisms in
  gss_indicate_mech() list. (bsc#1081725)


-----------------------------------------
Patch: SUSE-2018-569
Released: Thu Mar 29 15:27:43 2018
Summary: Security update for MozillaFirefox
Severity: moderate
References: 1085130,1085671,1087059,CVE-2018-5125,CVE-2018-5127,CVE-2018-5129,CVE-2018-5130,CVE-2018-5131,CVE-2018-5144,CVE-2018-5145,CVE-2018-5146,CVE-2018-5147,CVE-2018-5148
Description:
This update for MozillaFirefox fixes the following issues:

Security issues fixed in Firefox ESR 52.7.3 (bsc#1085130):

- CVE-2018-5125: Memory safety bugs fixed in Firefox 59 and Firefox ESR 52.7
- CVE-2018-5127: Buffer overflow manipulating SVG animatedPathSegList
- CVE-2018-5129: Out-of-bounds write with malformed IPC messages
- CVE-2018-5130: Mismatched RTP payload type can trigger memory corruption
- CVE-2018-5131: Fetch API improperly returns cached copies of no-store/no-cache resources
- CVE-2018-5144: Integer overflow during Unicode conversion
- CVE-2018-5145: Memory safety bugs fixed in Firefox ESR 52.7
- CVE-2018-5146: Out of bounds memory write in libvorbis (bsc#1085671)
- CVE-2018-5147: Out of bounds memory write in libtremor (bsc#1085671)
- CVE-2018-5148: Use-after-free in compositor (MFSA 2018-10) (bsc#1087059)



-----------------------------------------
Patch: SUSE-2018-572
Released: Tue Apr  3 11:13:09 2018
Summary: Security update for ImageMagick
Severity: moderate
References: 1043290,1050087,1056434,1058630,1059735,1060382,1066168,1066170,1082283,1082291,1082348,1082362,1082792,1082837,1083628,1083634,1086011,CVE-2017-11524,CVE-2017-12692,CVE-2017-12693,CVE-2017-13768,CVE-2017-14314,CVE-2017-14505,CVE-2017-14739,CVE-2017-15016,CVE-2017-15017,CVE-2017-16352,CVE-2017-16353,CVE-2017-18209,CVE-2017-18211,CVE-2017-9500,CVE-2018-7443,CVE-2018-7470,CVE-2018-8804
Description:
This update for ImageMagick fixes several issues.

These security issues were fixed:

- CVE-2018-8804: The WriteEPTImage function allowed remote attackers to cause a
  denial of service (double free and application crash) or possibly have
  unspecified other impact via a crafted file (bsc#1086011).
- CVE-2017-11524: The WriteBlob function allowed remote attackers to cause a
  denial of service (assertion failure and application exit) via a crafted file
  (bsc#1050087).
- CVE-2017-18209: Prevent NULL pointer dereference in the
  GetOpenCLCachedFilesDirectory function caused by a memory allocation result
  that was not checked, related to GetOpenCLCacheDirectory (bsc#1083628).
- CVE-2017-18211: Prevent NULL pointer dereference in the function
  saveBinaryCLProgram caused by a program-lookup result not being checked,
  related to CacheOpenCLKernel (bsc#1083634).
- CVE-2017-9500: Prevent assertion failure in the function
  ResetImageProfileIterator, which allowed attackers to cause a denial of service
  via a crafted file (bsc#1043290).
- CVE-2017-14739: The AcquireResampleFilterThreadSet function mishandled failed
  memory allocation, which allowed remote attackers to cause a denial of service
  (NULL Pointer Dereference in DistortImage in MagickCore/distort.c, and
  application crash) via unspecified vectors (bsc#1060382).
- CVE-2017-16353: Prevent memory information disclosure in the DescribeImage
  function caused by a heap-based buffer over-read. The portion of the code
  containing the vulnerability is responsible for printing the IPTC Profile
  information contained in the image. This vulnerability can be triggered with a
  specially crafted MIFF file. There is an out-of-bounds buffer dereference
  because certain increments were never checked (bsc#1066170).
- CVE-2017-16352: Prevent a heap-based buffer overflow in the 'Display visual
  image directory' feature of the DescribeImage() function. One possible way to
  trigger the vulnerability is to run the identify command on a specially crafted
  MIFF format file with the verbose flag (bsc#1066168).
- CVE-2017-14314: Prevent off-by-one error in the DrawImage function that
  allowed remote attackers to cause a denial of service (DrawDashPolygon
  heap-based buffer over-read and application crash) via a crafted file
  (bsc#1058630).
- CVE-2017-13768: Prevent NULL pointer dereference in the IdentifyImage
  function that allowed an attacker to perform denial of service by sending a
  crafted image file (bsc#1056434).
- CVE-2017-14505: Fixed handling of NULL arrays, which allowed attackers to
  perform Denial of Service (NULL pointer dereference and application crash in
  AcquireQuantumMemory within MagickCore/memory.c) by providing a crafted Image
  File as input (bsc#1059735).
- CVE-2018-7470: The IsWEBPImageLossless function allowed attackers to cause a
  denial of service (segmentation violation) via a crafted file (bsc#1082837).
- CVE-2018-7443: The ReadTIFFImage function did not properly validate the
  amount of image data in a file, which allowed remote attackers to cause a
  denial of service (memory allocation failure in the AcquireMagickMemory
  function in MagickCore/memory.c) (bsc#1082792).
- CVE-2017-15016: Prevent NULL pointer dereference vulnerability in
  ReadEnhMetaFile allowing for denial of service (bsc#1082291).
- CVE-2017-15017: Prevent NULL pointer dereference vulnerability in
  ReadOneMNGImage allowing for denial of service (bsc#1082283).
- CVE-2017-12692: The ReadVIFFImage function allowed remote attackers to cause
  a denial of service (memory consumption) via a crafted VIFF file (bsc#1082362).
- CVE-2017-12693: The ReadBMPImage function allowed remote attackers to cause a
  denial of service (memory consumption) via a crafted BMP file (bsc#1082348).
  

-----------------------------------------
Patch: SUSE-2018-573
Released: Tue Apr  3 11:59:01 2018
Summary: Security update for graphite2
Severity: moderate
References: 1084850,CVE-2018-7999
Description:
This update for graphite2 fixes the following issues:

- CVE-2018-7999: Fixed a NULL pointer dereference vulnerability in Segment.cpp that may cause a denial of serivce (bsc#1084850).


-----------------------------------------
Patch: SUSE-2018-586
Released: Wed Apr  4 11:51:00 2018
Summary: Recommended update for aaa_base
Severity: low
References: 1025743,1036895,1038549,1049577,1052182,1079674
Description:
This update for aaa_base provides the following fixes:

- Support changing PS1 even for mksh and user root. (bsc#1036895)
- Unset unused variables on profile files. (bsc#1049577)
- Unset id in csh.cshrc instead of profile.csh. (bsc#1049577)
- Allow that personal ~/.bashrc is read again. (bsc#1052182)
- Avoid that IFS becomes global in _ls ksh shell function. (bsc#1079674, bsc#1025743)
- Replace 'cat > file' by 'mv -f ... file' in pre/post to fix issues with clients
  having these files mmapped. (bsc#1038549)


-----------------------------------------
Patch: SUSE-2018-592
Released: Thu Apr  5 17:22:14 2018
Summary: Security update for spice-gtk
Severity: moderate
References: 1085415,CVE-2017-12194
Description:
This update for spice-gtk fixes the following issues:

- CVE-2017-12194: A flaw was found in the way spice-client processed certain messages sent from the server. An attacker, having control of malicious spice-server, could use this flaw to crash the client or execute arbitrary code with permissions of the user running the client. spice-gtk versions through 0.34 are believed to be vulnerable. (bsc#1085415)



-----------------------------------------
Patch: SUSE-2018-594
Released: Thu Apr  5 17:22:37 2018
Summary: Security update for libidn
Severity: moderate
References: 1056450,CVE-2017-14062
Description:
This update for libidn fixes one issues.

This security issue was fixed:

- CVE-2017-14062: Prevent integer overflow in the decode_digit function that
  allowed remote attackers to cause a denial of service or possibly have
  unspecified other impact (bsc#1056450).


-----------------------------------------
Patch: SUSE-2018-617
Released: Wed Apr 11 07:14:54 2018
Summary: Recommended update for pesign
Severity: moderate
References: 1088820
Description:

  
This update for pesign fixes the following issues:

- Enable and ship it on the Arm Arch64. (bsc#1088820)


-----------------------------------------
Patch: SUSE-2018-622
Released: Wed Apr 11 18:01:06 2018
Summary: Security update for policycoreutils
Severity: moderate
References: 1083624,CVE-2018-1063
Description:
This update for policycoreutils fixes the following issues:

- CVE-2018-1063: Fixed problem to prevent chcon from following symlinks in /tmp, /var/tmp, /var/run and /var/lib/debug (bsc#1083624).


-----------------------------------------
Patch: SUSE-2018-627
Released: Thu Apr 12 09:47:51 2018
Summary: Recommended update for tftp
Severity: low
References: 1064297,1075543
Description:
This update for tftp provides the following fixes:

- Allow tftpd to be configured by sysconfig file. (bsc#1075543)
- Fix starting tftpd via tftp.service file. (bsc#1064297)


-----------------------------------------
Patch: SUSE-2018-632
Released: Thu Apr 12 18:02:21 2018
Summary: Security update for python3
Severity: moderate
References: 1083507,CVE-2017-18207
Description:
This update for python3 fixes the following issues:

Security issue fixed:

- CVE-2017-18207: Fixed possible denial of service vulnerability by adding a check to Lib/wave.py that verifies that at least one channel is provided (bsc#1083507).

Bug fixes:

- Require python-Sphinx-latex for building on Leap 42.3 or newer.


-----------------------------------------
Patch: SUSE-2018-638
Released: Mon Apr 16 08:18:14 2018
Summary: Security update for evince
Severity: moderate
References: 1070046,CVE-2017-1000159
Description:
This update for evince fixes the following issues:

- CVE-2017-1000159: Command injection in evince via filename when printing to PDF could lead to command execution (bsc#1070046)


-----------------------------------------
Patch: SUSE-2018-647
Released: Mon Apr 16 17:31:37 2018
Summary: Security update for memcached
Severity: moderate
References: 1077718,1083903,CVE-2018-1000115
Description:
This update for memcached fixes the following issues:

- CVE-2018-1000115: Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability 
in the UDP support of the memcached server could result in denial of service via network flood 
(traffic amplification of 1:50,000 has been reported by reliable sources). (bsc#1083903)

- Home directory shouldn't be world readable bsc#1077718


-----------------------------------------
Patch: SUSE-2018-648
Released: Mon Apr 16 17:31:50 2018
Summary: Security update for ntp
Severity: moderate
References: 1077445,1082063,1082210,1083417,1083420,1083422,1083424,1083426,CVE-2016-1549,CVE-2018-7170,CVE-2018-7182,CVE-2018-7183,CVE-2018-7184,CVE-2018-7185
Description:
This update for ntp fixes the following issues:

- Update to 4.2.8p11 (bsc#1082210):
  * CVE-2016-1549: Sybil vulnerability: ephemeral association
    attack. While fixed in ntp-4.2.8p7, there are significant
    additional protections for this issue in 4.2.8p11.
  * CVE-2018-7182: ctl_getitem(): buffer read overrun
    leads to undefined behavior and information leak. (bsc#1083426)
  * CVE-2018-7170: Multiple authenticated ephemeral
    associations. (bsc#1083424)
  * CVE-2018-7184: Interleaved symmetric mode cannot
    recover from bad state. (bsc#1083422)
  * CVE-2018-7185: Unauthenticated packet can reset
    authenticated interleaved association. (bsc#1083420)
  * CVE-2018-7183: ntpq:decodearr() can write beyond its
    buffer limit.(bsc#1083417)
- Don't use libevent's cached time stamps in sntp. (bsc#1077445)



-----------------------------------------
Patch: SUSE-2018-651
Released: Mon Apr 16 19:25:08 2018
Summary: Initial release of python3-cssselect, -lxml, -pycparser, -simplejson and -pycurl
Severity: low
References: 1073879
Description:
This update provides the following new Python 3 modules for the SUSE Linux Enterprise Server:

- python3-cssselect
- python3-lxml
- python3-pycparser
- python3-pycurl
- python3-simplejson

-----------------------------------------
Patch: SUSE-2018-656
Released: Wed Apr 18 12:08:13 2018
Summary: Recommended update for timezone, timezone-java
Severity: low
References: 1086729
Description:
This update provides the latest timezone information (2018d) for your system, including following changes:

- In 2018, Palestine starts DST on March 24, not March 31.
- Casey Station in Antarctica changed from +11 to +08 on
  2018-03-11 at 04:00 (bsc#1086729).
- corrections for historical transitions.


-----------------------------------------
Patch: SUSE-2018-658
Released: Thu Apr 19 08:34:00 2018
Summary: Security update for wireshark
Severity: moderate
References: 1088200,CVE-2018-9256,CVE-2018-9259,CVE-2018-9260,CVE-2018-9261,CVE-2018-9262,CVE-2018-9263,CVE-2018-9264,CVE-2018-9265,CVE-2018-9266,CVE-2018-9267,CVE-2018-9268,CVE-2018-9269,CVE-2018-9270,CVE-2018-9271,CVE-2018-9272,CVE-2018-9273,CVE-2018-9274
Description:
This update for wireshark fixes the following issues:

- Update to wireshark 2.2.14, fix such issues:
  * bsc#1088200 VUL-0: wireshark: multiple vulnerabilities
    fixed in 2.2.14, 2.4.6
  * CVE-2018-9256: LWAPP dissector crash
  * CVE-2018-9260: IEEE 802.15.4 dissector crash
  * CVE-2018-9261: NBAP dissector crash
  * CVE-2018-9262: VLAN dissector crash
  * CVE-2018-9263: Kerberos dissector crash
  * CVE-2018-9264: ADB dissector crash
  * CVE-2018-9265: tn3270 dissector has a memory leak
  * CVE-2018-9266: ISUP dissector memory leak
  * CVE-2018-9267: LAPD dissector memory leak
  * CVE-2018-9268: SMB2 dissector memory leak
  * CVE-2018-9269: GIOP dissector memory leak
  * CVE-2018-9270: OIDS dissector memory leak
  * CVE-2018-9271: multipart dissector memory leak
  * CVE-2018-9272: h223 dissector memory leak
  * CVE-2018-9273: pcp dissector memory leak
  * CVE-2018-9274: failure message memory leak
  * CVE-2018-9259: MP4 dissector crash


-----------------------------------------
Patch: SUSE-2018-719
Released: Mon Apr 23 17:48:20 2018
Summary: Security update for PackageKit
Severity: important
References: 1086936,CVE-2018-1106
Description:

    
- CVE-2018-1106: Drop the polkit rule which could allow users in wheel group to install 
                 packages without root password (bsc#1086936).
  

-----------------------------------------
Patch: SUSE-2018-728
Released: Tue Apr 24 13:14:33 2018
Summary: Security update for rzsz
Severity: moderate
References: 1076576,1086416,1090051,CVE-2018-10195
Description:
This update for rzsz fixes the following issues:

- Update to 0.12.21~rc to fix bsc#1086416 and bsc#1090051 

- CVE-2018-10195: segmentation fault in zsdata function could lead to denial of service (bsc#1090051)

 

-----------------------------------------
Patch: SUSE-2018-730
Released: Wed Apr 25 14:14:41 2018
Summary: Security update for perl
Severity: moderate
References: 1082216,1082233,1082234,CVE-2018-6797,CVE-2018-6798,CVE-2018-6913
Description:
This update for perl fixes the following issues:

Security issues fixed:

- CVE-2018-6913: Fixed space calculation issues in pp_pack.c (bsc#1082216).
- CVE-2018-6798: Fixed heap buffer overflow in regexec.c (bsc#1082233).
- CVE-2018-6797: Fixed sharp-s regexp overflow (bsc#1082234).


-----------------------------------------
Patch: SUSE-2018-733
Released: Wed Apr 25 14:15:35 2018
Summary: Security update for zsh
Severity: important
References: 1082885,1082975,1082977,1082991,1082998,1083002,1083250,1084656,1087026,896914,CVE-2014-10070,CVE-2014-10071,CVE-2014-10072,CVE-2016-10714,CVE-2017-18205,CVE-2017-18206,CVE-2018-1071,CVE-2018-1083,CVE-2018-7549
Description:
This update for zsh fixes the following issues:

  - CVE-2014-10070: environment variable injection could lead to local privilege escalation (bnc#1082885)

  - CVE-2014-10071: buffer overflow in exec.c could lead to denial of service. (bnc#1082977)

  - CVE-2014-10072: buffer overflow In utils.c when scanning 
very long directory paths for symbolic links. (bnc#1082975)

  - CVE-2016-10714: In zsh before 5.3, an off-by-one error resulted in 
undersized buffers that were intended to support PATH_MAX characters. (bnc#1083250)

  - CVE-2017-18205: In builtin.c when sh compatibility mode is used, a NULL pointer dereference 
could lead to denial of service (bnc#1082998)

  - CVE-2018-1071: exec.c:hashcmd() function vulnerability could lead to denial of service. (bnc#1084656)
 
  - CVE-2018-1083: Autocomplete vulnerability could lead to privilege escalation. (bnc#1087026)

  - CVE-2018-7549: In params.c in zsh through 5.4.2, there is a crash during a copy of an empty hash table, 
as demonstrated by typeset -p. (bnc#1082991)
  
  - CVE-2017-18206: buffer overrun in xsymlinks could lead to denial of service (bnc#1083002)
    
  - Autocomplete and REPORTTIME broken (bsc#896914)



-----------------------------------------
Patch: SUSE-2018-735
Released: Wed Apr 25 14:16:37 2018
Summary: Recommended update for LibreOffice
Severity: low
References: 1042829,1077375,1080249,1083213,1083993,1088662,1089124,CVE-2017-9432,CVE-2017-9433,CVE-2018-1055,CVE-2018-6871
Description:

LibreOffice was updated to version 6.0.3.

Following new features were added:

- The Notebookbar, although still an experimental feature, has been
  enriched with two new variants: Grouped Bar Full for Writer, Calc and
  Impress, and Tabbed Compact for Writer. The Special Characters dialog
  has been reworked, with the addition of lists for Recent and Favorite
  characters, along with a Search field. The Customize dialog has also
  been redesigned, and is now more modern and intuitive.
- In Writer, a Form menu has been added, making it easier to access one
  of the most powerful – and often unknown – LibreOffice features: the
  ability to design forms, and create standards-compliant PDF forms. The
  Find toolbar has been enhanced with a drop-down list of search types, to
  speed up navigation. A new default table style has been added, together
  with a new collection of table styles to reflect evolving visual trends.
- The Mail Merge function has been improved, and it is now possible to
  use either a Writer document or an XLSX file as data source.
- In Calc, ODF 1.2-compliant functions SEARCHB, FINDB and REPLACEB have
  been added, to improve support for the ISO standard format. Also, a
  cell range selection or a selected group of shapes (images) can be now
  exported in PNG or JPG format.
- In Impress, the default slide size has been switched to 16:9, to support
  the most recent form factors of screens and projectors. As a consequence,
  10 new Impress templates have been added, and a couple of old templates
  have been updated.

Changes in components:

- The old WikiHelp has been replaced by the new Help Online system, with
  attractive web pages that can also be displayed on mobile devices. In
  general, LibreOffice Help has been updated both in terms of contents and
  code, with other improvements due all along the life of the LibreOffice
  6 family.
- User dictionaries now allow automatic affixation or compounding. This
  is a general spell checking improvement in LibreOffice which can speed
  up work for Writer users. Instead of manually handling several forms of a
  new word in a language with rich morphology or compounding, the Hunspell
  spell checker can automatically recognize a new word with affixes or
  compounds, based on a “Grammar By” model.

Security features and changes:

- OpenPGP keys can be used to sign ODF documents on all desktop operating
  systems, with experimental support for OpenPGP-based encryption. To enable
  this feature, users will have to install the specific GPG software for
  their operating systems.

- Document classification has also been improved, and allows multiple
  policies (which are now exported to OOXML files). In Writer, marking
  and signing are now supported at paragraph level.

Interoperability changes:

- OOXML interoperability has been improved in several areas: import of
  SmartArt and import/export of ActiveX controls, support of embedded text
  documents and spreadsheets, export of embedded videos to PPTX, export
  of cross-references to DOCX, export of MailMerge fields to DOCX, and
  improvements to the PPTX filter to prevent the creation of broken files.
- New filters for exporting Writer documents to ePub and importing
  QuarkXPress files have also been added, together with an improved filter
  for importing EMF+ (Enhanced Metafile Format Plus) files as used by
  Microsoft Office documents. Some improvements have also been added
  to the ODF export filter, making it easier for other ODF readers to
  display visuals.

The full blog entry for the 6.0 release can be found here:

	https://blog.documentfoundation.org/blog/2018/01/31/libreoffice-6/

The full release notes can be found here:

	https://wiki.documentfoundation.org/ReleaseNotes/6.0

The libraries that LibreOffice depends on also have been udpated to their current versions.
  

-----------------------------------------
Patch: SUSE-2018-736
Released: Wed Apr 25 14:23:49 2018
Summary: Recommended update for libsolv, libzypp
Severity: moderate
References: 1075978,1077635,1079991,1082318,1086602
Description:
This update for libsolv, libzypp provides the following fixes:

Changes in libsolv:
- Make sure the product file comes from /etc/products.d for the fallback product search.
  (bsc#1086602)
- Also make use of suggests for ordering packages. (bsc#1077635)
- Fix bad assignment in solution refinement that led to a memory leak. (bsc#1075978)
- Use license tag instead of doc in the spec file. (bsc#1082318)

Changes in libzypp:
- Make sure the product file comes from /etc/products.d for the fallback product search.
  (bsc#1086602)
- Fix a memory leak in Digest.cc. (bsc#1075978)
- Add /var/lib/gdm to CheckAccessDeleted blacklist to prevent showing superfluous `zypper ps -s`
  messages. (bsc#1079991)


-----------------------------------------
Patch: SUSE-2018-749
Released: Thu Apr 26 19:23:14 2018
Summary: Recommended update for nfs-utils
Severity: low
References: 1017909,1040968,1053691
Description:

This update for nfs-utils provides the following fixes:

- Fix nfs-client's service dependency so that when YaST restarts 'nfs' the action
  is propagated to 'nfs-client' as well. (bsc#1053691)
- Allow umount to work when NFS server is down. (bsc#1040968)
- Fix exit code of nfsstat(8). (bsc#1017909)


-----------------------------------------
Patch: SUSE-2018-753
Released: Mon Apr 30 10:04:42 2018
Summary: Recommended update for apache2-mod_security2
Severity: low
References: 1089692
Description:
This update solves the 'ModSecurity: Loaded PCRE do not match with compiled!' warning for
apache2-mod_security2. (bsc#1089692)

-----------------------------------------
Patch: SUSE-2018-769
Released: Tue May  1 20:38:36 2018
Summary: Recommended update for gcc48
Severity: moderate
References: 1082130,1083945,1087932
Description:

This update for the system compiler gcc48 fixes the following issues:

- Support for generating IBM Z series Spectre Variant 2 fix method 'expolines' was added (bsc#1083945)
- A miscompilation of SPECcpu2017 526.blender was fixed. (bsc#1082130)
- ARM Arch64 Cortex-A53 errata 843419 and 835769 were enabled by default, which could have lead
  to crashes of built binaries. (bsc#1087932)

  

-----------------------------------------
Patch: SUSE-2018-773
Released: Wed May  2 10:29:38 2018
Summary: Security update for dovecot22
Severity: moderate
References: 1082826,CVE-2017-14461
Description:
This update for dovecot22 fixes the following issues:

- CVE-2017-14461: dovecot22: rfc822_parse_domain (bsc#1082826)
  Information Leak Vulnerability  



-----------------------------------------
Patch: SUSE-2018-777
Released: Wed May  2 17:46:46 2018
Summary: Security update for patch
Severity: important
References: 1080918,1080951,1088420,CVE-2016-10713,CVE-2018-1000156,CVE-2018-6951
Description:
This update for patch fixes the following issues:

Security issues fixed:

- CVE-2018-1000156: Malicious patch files cause ed to execute arbitrary commands (bsc#1088420).
- CVE-2018-6951: Fixed NULL pointer dereference in the intuit_diff_type function in pch.c (bsc#1080918).
- CVE-2016-10713: Fixed out-of-bounds access within pch_write_line() in pch.c (bsc#1080918).



-----------------------------------------
Patch: SUSE-2018-779
Released: Wed May  2 22:16:26 2018
Summary: Recommended update for rpm
Severity: low
References: 1003714,1027925,1069934
Description:

This update for rpm provides the following fixes:

- Fix find-lang.sh to handle special case of .qm file paths correctly. (bsc#1027925)
- Add %sle_version macro to suse_macros. (bsc#1003714)
- Added a %rpm_vercmp macro which accepts two versions as parameters and returns -1, 0, 1
  if the first version is less than, equal or greater than the second version respectively.
- Added a %pkg_version macro that accepts a package or capability name as argument and
  returns the version number of the installed package. If no package provides the argument,
  it returns the string '~~~'.
- Added a %pkg_vcmp macro that accepts 3 parameters. The first parameter is a package name
  or provided capability name, the second argument is an operator ( < <= = >= > != )
  and the third parameter is a version string to be compared to the installed version of
  the first argument.
- Added a %pkg_version_cmp macro which accepts a package or capability name as first argument
  and a version number as second argument and returns -1, 0, 1 or '~~~'. The number values
  have the same meaning as in %rpm_vercmp and the '~~~' string is returned if the package
  or capability can't be found. (bsc#1069934)


-----------------------------------------
Patch: SUSE-2018-797
Released: Mon May  7 07:07:38 2018
Summary: Recommended update for gcc7
Severity: important
References: 1061667,1068967,1074621,1083290,1083946,1084812,1087550,1087930
Description:

  
This update for gcc7 to 7.3 release fixes the following issues:

- Update to GCC 7.3 release and further updated to gcc-7-branch head (r258812).
- The Spectre v2 mitigation patch for s390x is now included. [bsc#1083946]
- Adds backport of x86 retpoline support via -mindirect-branch=, -mfunction-return= and friends. [bsc#1074621]
- Update includes a fix for chromium build failure.  [bsc#1083290]
- Various AArch64 compile fixes are included:

  * Picks fix to no longer enable -mpc-relative-literal-loads by default
    with --enable-fix-cortex-a53-843419.
  * Enable --enable-fix-cortex-a53-843419 for aarch64.  [bsc#1084812] [bsc#1087930]
  * Enable --enable-fix-cortex-a53-835769 for aarch64.
  * Contains fix for PR82445 which is about a RPI1 bootloader miscompile. [bsc#1061667]
  * Fixed bogus stack probe instruction on ARM. [bsc#1068967]

- Revert the ios_base::failure ABI back to compatible behavior with the default ABI.  [bsc#1087550]

- Fix nvptx offload target compiler install so GCC can pick up
  required files.  Split out the newlib part into cross-nvptx-newlib7-devel
  and avoid conflicts with GCC 8 variant via Provides/Conflicts
  of cross-nvptx-newlib-devel.



-----------------------------------------
Patch: SUSE-2018-803
Released: Mon May  7 14:56:28 2018
Summary: Security update for apache2
Severity: moderate
References: 1086774,1086775,1086813,1086814,1086817,1086820,CVE-2017-15710,CVE-2017-15715,CVE-2018-1283,CVE-2018-1301,CVE-2018-1302,CVE-2018-1303,CVE-2018-1312
Description:
This update for apache2 fixes the following issues:

  * CVE-2018-1283:  when mod_session is configured to forward its session data to CGI applications 
                    (SessionEnv on, not the default), a remote user may influence their content by 
                    using a \'Session\' header leading to unexpected behavior [bsc#1086814].

  * CVE-2018-1301: due to an out of bound access after a size limit being reached by reading the HTTP header, 
                   a specially crafted request could lead to remote denial of service. [bsc#1086817]
  
  * CVE-2018-1303: a specially crafted HTTP request header could lead to crash due to an out of bound read 
                   while preparing data to be cached in shared memory.[bsc#1086813]
  
  * CVE-2017-15715: a regular expression could match '$' to a newline character in a malicious filename, 
                    rather than matching only the end of the filename. leading to corruption of uploaded files.[bsc#1086774]
  
  * CVE-2018-1312: when generating an HTTP Digest authentication challenge, the nonce sent to prevent 
                   reply attacks was not correctly generated using a pseudo-random seed. 
                   In a cluster of servers using a common Digest authentication configuration, 
                   HTTP requests could be replayed across servers by an attacker without detection. [bsc#1086775]
  
  * CVE-2017-15710: mod_authnz_ldap, if configured with AuthLDAPCharsetConfig, 
                    uses the Accept-Language header value to lookup the right charset encoding when verifying the 
                    user's credentials. If the header value is not present in the charset conversion table, 
                    a fallback mechanism is used to truncate it to a two characters value to allow a quick retry 
                    (for example, 'en-US' is truncated to 'en'). 
                    A header value of less than two characters forces an out of bound write of one NUL byte to a 
                   memory location that is not part of the string. In the worst case, quite unlikely, the process 
                   would crash which could be used as a Denial of Service attack. In the more likely case, this memory 
                   is already reserved for future use and the issue has no effect at all. [bsc#1086820]
  
  * CVE-2018-1302: when an HTTP/2 stream was destroyed after being handled, it 
                   could have written a NULL pointer potentially to an already freed memory. 
                   The memory pools maintained by the server make this vulnerability hard to trigger in usual configurations, 
                   the reporter and the team could not reproduce it outside debug builds, so it is classified as low risk. 
                   [bsc#1086820]


-----------------------------------------
Patch: SUSE-2018-810
Released: Tue May  8 17:20:51 2018
Summary: Initial release of python3-PyYAML
Severity: low
References: 1073879
Description:
This update provides the following new Python 3 module:

- python3-PyYAML

-----------------------------------------
Patch: SUSE-2018-818
Released: Wed May  9 13:30:12 2018
Summary: Security update for ImageMagick
Severity: moderate
References: 1047356,1058635,1074117,1086773,1086782,1087027,1087033,1087037,1087039,1087825,1089781,CVE-2017-1000476,CVE-2017-10928,CVE-2017-11450,CVE-2017-14325,CVE-2017-17887,CVE-2017-18250,CVE-2017-18251,CVE-2017-18252,CVE-2017-18254,CVE-2018-10177,CVE-2018-8960,CVE-2018-9018,CVE-2018-9135
Description:
This update for ImageMagick fixes the following issues:

- CVE-2017-14325: In ImageMagick, a memory leak vulnerability was found in
  the function PersistPixelCache in magick/cache.c, which allowed attackers
  to cause a denial of service (memory consumption in ReadMPCImage in
  coders/mpc.c) via a crafted file.  [bsc#1058635]
- CVE-2017-17887: In ImageMagick, a memory leak vulnerability was found
  in the function GetImagePixelCache in magick/cache.c, which allowed
  attackers to cause a denial of service via a crafted MNG image file that
  is processed by ReadOneMNGImage.  [bsc#1074117]
- CVE-2017-18250: A NULL pointer dereference vulnerability was found in the function 
  LogOpenCLBuildFailure in MagickCore/opencl.c, which could lead to a denial of service 
  via a crafted file. [bsc#1087039]
- CVE-2017-18251: A memory leak vulnerability was found in the function ReadPCDImage in coders/pcd.c, 
  which could lead to a denial of service via a crafted file. [bsc#1087037]
- CVE-2017-18252: The MogrifyImageList function in MagickWand/mogrify.c could allow 
  attackers to cause a denial of service via a crafted file. [bsc#1087033]
- CVE-2017-18254: A memory leak vulnerability was found in the function WriteGIFImage in coders/gif.c, 
  which could lead to  denial of service via a crafted file. [bsc#1087027]
- CVE-2018-8960: The ReadTIFFImage function in coders/tiff.c in
  ImageMagick did not properly restrict memory allocation, leading to a
  heap-based buffer over-read.  [bsc#1086782]
- CVE-2018-9018: divide-by-zero in the ReadMNGImage function of coders/png.c. 
  Attackers could leverage this vulnerability to cause a crash and denial of service 
  via a crafted mng file. [bsc#1086773]
- CVE-2018-9135: heap-based buffer over-read in IsWEBPImageLossless in coders/webp.c 
  could lead to denial of service. [bsc#1087825]
- CVE-2018-10177: In ImageMagick, there was an infinite loop in the
  ReadOneMNGImage function of the coders/png.c file. Remote attackers
  could leverage this vulnerability to cause a denial of service via a
  crafted mng file.  [bsc#1089781]
- CVE-2017-10928: a heap-based buffer over-read in the GetNextToken function in token.c 
  could allow attackers to obtain sensitive information from process memory or possibly have 
  unspecified other impact via a crafted SVG document that is mishandled in the 
  GetUserSpaceCoordinateValue function in coders/svg.c. [bsc#1047356]



-----------------------------------------
Patch: SUSE-2018-822
Released: Wed May  9 14:01:33 2018
Summary: Security update for tiff
Severity: moderate
References: 1046077,1074318,1081690,CVE-2017-17973,CVE-2017-9935,CVE-2018-5784
Description:
This update for tiff fixes the following issues:

- CVE-2017-9935: There was a heap-based buffer overflow in the t2p_write_pdf function in tools/tiff2pdf.c. This heap overflow could lead to different damages. For example, a crafted TIFF document can lead to an out-of-bounds read in TIFFCleanup, an invalid free in TIFFClose or t2p_free, memory corruption in t2p_readwrite_pdf_image, or a double free in t2p_free. Given these possibilities, it probably could cause arbitrary code execution (bsc#1046077)
- CVE-2017-17973: There is a heap-based use-after-free in the t2p_writeproc function in tiff2pdf.c. (bsc#1074318)
- CVE-2018-5784: There is an uncontrolled resource consumption in the TIFFSetDirectory function of tif_dir.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted tif file. This occurs because the declared number of directory entries is not validated against the actual number of directory entries (bsc#1081690)



-----------------------------------------
Patch: SUSE-2018-829
Released: Wed May  9 18:03:58 2018
Summary: Recommended update for traceroute
Severity: moderate
References: 1085791
Description:
This update for traceroute fixes the following issues:

- Fix segmentation fault when using --mtu option (bsc#1085791)

-----------------------------------------
Patch: SUSE-2018-835
Released: Wed May  9 19:58:59 2018
Summary: Security update for libapr1
Severity: moderate
References: 1064982,CVE-2017-12613
Description:

  This update fixes the following issues:
  
  -  CVE-2017-12613: DoS or information disclosure in pr_exp_time*() or apr_os_exp_time*() functions (bsc#1064982).
  

-----------------------------------------
Patch: SUSE-2018-836
Released: Wed May  9 19:59:30 2018
Summary: Security update for cairo
Severity: moderate
References: 1049092,CVE-2017-9814
Description:
This update for cairo fixes the following issues:

  - CVE-2017-9814: out-of-bounds read in cairo-truetype-subset.c could lead to denial of service (bsc#1049092).


-----------------------------------------
Patch: SUSE-2018-837
Released: Thu May 10 00:39:47 2018
Summary: Recommended update for mc
Severity: moderate
References: 1086525,1087708
Description:
This update for mc fixes the following issues:

- Fix a heap buffer underflow (bsc#1086525)
- Fix a bug where xls2csv was not called correctly (bsc#1087708)


-----------------------------------------
Patch: SUSE-2018-906
Released: Mon May 14 15:18:26 2018
Summary: Recommended update for binutils
Severity: moderate
References: 1075418
Description:
This update for binutils fixes the following issues:

- Fix pacemaker libqb problem with section start/stop symbols. (bsc#1075418)


-----------------------------------------
Patch: SUSE-2018-910
Released: Tue May 15 12:21:24 2018
Summary: Recommended update for timezone, timezone-java
Severity: low
References: 1073299
Description:
This update provides the latest timezone information (2018e) for your system, including following changes:

- North Korea switches back from +0830 to +09 on 2018-05-05.
- Ireland's standard time is in the summer, with negative DST
  offset to standard time used in Winter (bsc#1073299)


-----------------------------------------
Patch: SUSE-2018-912
Released: Tue May 15 15:04:32 2018
Summary: Security update for librsvg
Severity: moderate
References: 1083232,CVE-2018-1000041
Description:
This update for librsvg fixes the following issues:

- CVE-2018-1000041: Input validation issue could lead to credentials leak. (bsc#1083232)

Update to version 2.40.20:

  + Except for emergencies, this will be the LAST RELEASE of the
    librsvg-2.40.x series.  We are moving to 2.41, which is vastly
    improved over the 2.40 series.  The API/ABI there remain unchaged,
    so we strongly encourage you to upgrade your sources and binaries to
    librsvg-2.41.x.
  + bgo#761175 - Allow masks and clips to reuse a node being drawn.
  + Don't access the file system when deciding whether to load a remote
    file with a UNC path for a paint server (i.e. don't try to load it at all).
  + Vistual Studio: fixed and integrated introspection builds, so
    introspection data is built directly from the Visual Studio project
    (Chun-wei Fan).
  + Visual Studio: We now use HIGHENTROPYVA linker option on x64 builds,
    to enhance the security of built binaries (Chun-wei Fan).
  + Fix generation of Vala bindings when compiling in read-only source
    directories (Emmanuele Bassi).

Update to version 2.40.19:

  + bgo#621088: Using text objects as clipping paths is now supported.
  + bgo#587721: Fix rendering of text elements with transformations (Massimo).
  + bgo#777833 - Fix memory leaks when an RsvgHandle is disposed before
    being closed (Philip Withnall).
  + bgo#782098 - Don't pass deprecated options to gtk-doc (Ting-Wei Lan).
  + bgo#786372 - Fix the default for the 'type' attribute of the <style> element.
  + bgo#785276 - Don't crash on single-byte files.
  + bgo#634514: Don't render unknown elements and their sub-elements.
  + bgo#777155 - Ignore patterns that have close-to-zero dimensions.
  + bgo#634324 - Fix Gaussian blurs with negative scaling.
  + Fix the <switch> element; it wasn't working at all.
  + Fix loading when rsvg_handle_write() is called one byte at a time.
  + bgo#787895 - Fix incorrect usage of libxml2.  Thanks to Nick Wellnhofer
    for advice on this.
  + Backported the test suite machinery from the master branch (Chun-wei Fan,
    Federico Mena).
  + We now require Pango 1.38.0 or later (released in 2015).
  + We now require libxml2 2.9.0 or later (released in 2012).


-----------------------------------------
Patch: SUSE-2018-921
Released: Tue May 15 16:33:18 2018
Summary: Initial release of python3-cffi, -cryptography and -pyOpenSSL
Severity: low
References: 1073879
Description:
This update provides the following new Python 3 module for the SUSE Linux Enterprise Server:

- python3-cffi
- python3-cryptography
- python3-pyOpenSSL

-----------------------------------------
Patch: SUSE-2018-934
Released: Wed May 16 21:36:22 2018
Summary: Security update for libvorbis
Severity: moderate
References: 1059812,1091072,CVE-2017-14160,CVE-2018-10393
Description:
This update for libvorbis fixes the following issues:

Security issues fixed:

- CVE-2018-10393: Fixed stack-based buffer over-read in bark_noise_hybridm (bsc#1091072).
- CVE-2017-14160: Fixed out-of-bounds access inside bark_noise_hybridmp function (bsc#1059812).



-----------------------------------------
Patch: SUSE-2018-941
Released: Fri May 18 08:03:35 2018
Summary: Security update for ghostscript
Severity: moderate
References: 1090099,CVE-2018-10194
Description:
This update for ghostscript fixes the following issues:

- CVE-2018-10194: A stack-based buffer overflow was fixed in gdevpdts.c (bsc#1090099)


-----------------------------------------
Patch: SUSE-2018-943
Released: Fri May 18 08:04:25 2018
Summary: Security update for MozillaFirefox
Severity: important
References: 1092548,CVE-2018-5150,CVE-2018-5154,CVE-2018-5155,CVE-2018-5157,CVE-2018-5158,CVE-2018-5159,CVE-2018-5168,CVE-2018-5174,CVE-2018-5178,CVE-2018-5183
Description:
This update for MozillaFirefox to the ESR 52.8 release fixes the following issues:

Mozil to Firefox ESR 52.8 (bsc#1092548)

Security issues fixed:

- MFSA 2018-12/CVE-2018-5159: Integer overflow and out-of-bounds write in Skia
- MFSA 2018-12/CVE-2018-5158: Malicious PDF can inject JavaScript into PDF Viewer
- MFSA 2018-12/CVE-2018-5168: Lightweight themes can be installed without user interaction
- MFSA 2018-12/CVE-2018-5150: Memory safety bugs fixed in Firefox 60 and Firefox ESR 52.8
- MFSA 2018-12/CVE-2018-5155: Use-after-free with SVG animations and text paths
- MFSA 2018-12/CVE-2018-5183: Backport critical security fixes in Skia
- MFSA 2018-12/CVE-2018-5157: Same-origin bypass of PDF Viewer to view protected PDF files
- MFSA 2018-12/CVE-2018-5154: Use-after-free with SVG animations and clip paths
- MFSA 2018-12/CVE-2018-5178: Buffer overflow during UTF-8 to Unicode string conversion through legacy extension


-----------------------------------------
Patch: SUSE-2018-947
Released: Tue May 22 09:49:29 2018
Summary: Security update for openjpeg2
Severity: moderate
References: 1066713,1072124,1072125,CVE-2015-1239,CVE-2017-17479,CVE-2017-17480
Description:
This update for openjpeg2 fixes the following security issues:

- CVE-2015-1239: A double free vulnerability in the j2k_read_ppm_v3 function allowed remote attackers to cause a denial of service (crash) (bsc#1066713)
- CVE-2017-17479: A stack-based buffer overflow in the pgxtoimage function in jpwl/convert.c could crash the converter. (bsc#1072125)
- CVE-2017-17480: A stack-based buffer overflow in the pgxtovolume function in jp3d/convert.c could crash the converter. (bsc#1072124)


-----------------------------------------
Patch: SUSE-2018-957
Released: Tue May 22 15:14:05 2018
Summary: Security update for wget
Severity: moderate
References: 1092061,CVE-2018-0494
Description:
This update for wget fixes the following issues:

- CVE-2018-0494: Fixed a cookie injection vulnerability by checking for
  and joining continuation lines. (bsc#1092061)



-----------------------------------------
Patch: SUSE-2018-964
Released: Tue May 22 18:31:29 2018
Summary: Security update for python
Severity: moderate
References: 1068664,1079300,CVE-2017-1000158,CVE-2018-1000030
Description:
This update for python fixes the following issues:

Security issues fixed:

- CVE-2017-1000158: Fixed integer overflows in PyString_DecodeEscape that could have resulted in
  heap-based buffer overflow attacks and possible arbitrary code execution (bsc#1068664).
- CVE-2018-1000030: Fixed crash inside the Python interpreter when multiple threads used the same
  I/O stream concurrently (bsc#1079300).


-----------------------------------------
Patch: SUSE-2018-970
Released: Wed May 23 16:44:49 2018
Summary: Recommended update for hwinfo
Severity: important
References: 1072450,1078511
Description:
This update for hwinfo provides the following fixes:

- Detect usb controller in ARM platform devices. (bsc#1072450)
- Add more sanity checking on scsi serial id. (bsc#1078511)
- Make CDBISDN_DATE ignore timezone.


-----------------------------------------
Patch: SUSE-2018-971
Released: Wed May 23 16:45:19 2018
Summary: Recommended update for aaa_base
Severity: important
References: 1088524
Description:
This update for aaa_base fixes a regression which was introduced within the latest maintenance update
  cycle, where customized profiles were not sourced properly. (bsc#1088524)

-----------------------------------------
Patch: SUSE-2018-977
Released: Wed May 23 17:14:16 2018
Summary: Security update for bash
Severity: moderate
References: 1000396,1001299,1086247,CVE-2016-0634,CVE-2016-7543
Description:
This update for bash fixes the following issues:

Security issues fixed:

- CVE-2016-7543: A code execution possibility via SHELLOPTS+PS4 variable was fixed (bsc#1001299)
- CVE-2016-0634: Arbitrary code execution via malicious hostname was fixed (bsc#1000396)

Non-security issues fixed:

- Fix repeating self-calling of traps due the combination of a non-interactive shell, a trap handler for SIGINT, an
  external process in the trap handler, and a SIGINT within the trap after the external process runs. (bsc#1086247)


-----------------------------------------
Patch: SUSE-2018-979
Released: Wed May 23 19:52:26 2018
Summary: Security update for icu
Severity: moderate
References: 1034674,1034678,1067203,1072193,1077999,1087932,929629,990636,CVE-2014-8146,CVE-2014-8147,CVE-2016-6293,CVE-2017-14952,CVE-2017-15422,CVE-2017-17484,CVE-2017-7867,CVE-2017-7868
Description:
icu was updated to fix two security issues.

These security issues were fixed:
- CVE-2014-8147: The resolveImplicitLevels function in common/ubidi.c
  in the Unicode Bidirectional Algorithm implementation in ICU4C in
  International Components for Unicode (ICU) used an integer data type
  that is inconsistent with a header file, which allowed remote attackers
  to cause a denial of service (incorrect malloc followed by invalid free)
  or possibly execute arbitrary code via crafted text (bsc#929629).
- CVE-2014-8146: The resolveImplicitLevels function in common/ubidi.c
  in the Unicode Bidirectional Algorithm implementation in ICU4C in
  International Components for Unicode (ICU) did not properly track
  directionally isolated pieces of text, which allowed remote attackers
  to cause a denial of service (heap-based buffer overflow) or possibly
  execute arbitrary code via crafted text (bsc#929629).
- CVE-2016-6293: The uloc_acceptLanguageFromHTTP function in
  common/uloc.cpp in International Components for Unicode (ICU) for C/C++
  did not ensure that there is a '\0' character at the end of a certain
  temporary array, which allowed remote attackers to cause a denial of
  service (out-of-bounds read) or possibly have unspecified other impact
  via a call with a long httpAcceptLanguage argument (bsc#990636).
- CVE-2017-7868: International Components for Unicode (ICU) for C/C++
  2017-02-13 has an out-of-bounds write caused by a heap-based buffer
  overflow related to the utf8TextAccess function in common/utext.cpp and
  the utext_moveIndex32* function (bsc#1034674)
- CVE-2017-7867: International Components for Unicode (ICU) for C/C++
  2017-02-13 has an out-of-bounds write caused by a heap-based buffer
  overflow related to the utf8TextAccess function in common/utext.cpp and
  the utext_setNativeIndex* function (bsc#1034678)
- CVE-2017-14952: Double free in i18n/zonemeta.cpp in International
  Components for Unicode (ICU) for C/C++ allowed remote attackers to
  execute arbitrary code via a crafted string, aka a 'redundant UVector
  entry clean up function call' issue (bnc#1067203)
- CVE-2017-17484: The ucnv_UTF8FromUTF8 function in ucnv_u8.cpp
  in International Components for Unicode (ICU) for C/C++ mishandled
  ucnv_convertEx calls for UTF-8 to UTF-8 conversion, which allowed remote
  attackers to cause a denial of service (stack-based buffer overflow
  and application crash) or possibly have unspecified other impact via a
  crafted string, as demonstrated by ZNC  (bnc#1072193)
- CVE-2017-15422: An integer overflow in icu during persian calendar
  date processing could lead to incorrect years shown (bnc#1077999)



-----------------------------------------
Patch: SUSE-2018-982
Released: Fri May 25 15:05:15 2018
Summary: Security update for jasper
Severity: low
References: 1087020,CVE-2018-9055
Description:
This update for jasper fixes the following issues:

   - CVE-2018-9055: denial of service via
      a reachable assertion in the function jpc_firstone in
      libjasper/jpc/jpc_math.c could lead to denial of service. (bsc#1087020)


-----------------------------------------
Patch: SUSE-2018-984
Released: Mon May 28 07:13:52 2018
Summary: Security update for libmodplug
Severity: moderate
References: 1022032,CVE-2013-4233,CVE-2013-4234
Description:
This update for libmodplug fixes the following issues:

- Update to version 0.8.9.0+git20170610.f6dd59a bsc#1022032:
  * PSM: add missing line to commit
  * ABC: prevent possible increment of p past end
  * ABC: ensure read pointer is valid before incrementing
  * ABC: terminate early when things don't work in substitute
  * OKT: add one more bound check
  * FAR: out by one on check
  * ABC: 10 digit ints require null termination
  * PSM: make sure reads occur of only valid ins
  * ABC: cleanup tracks correctly.
  * WAV: check that there is space for both headers
  * OKT: ensure file size is enough to contain data
  * ABC: initialize earlier
  * ABC: ensure array access is bounded correctly.
  * ABC: clean up loop exiting code
  * ABC: avoid possibility of incrementing *p
  * ABC: abort early if macro would be blank
  * ABC: Use blankline more often
  * ABC: Ensure for loop does not increment past end of loop
  * Initialize nPatterns to 0 earlier
  * Check memory position isn't over the memory length
  * ABC: transpose only needs to look at notes (<26)

- Update to version 0.8.9.0+git20171024.e9fc46e:
  * Spelling fixes
  * Bump version number to 0.8.9.0
  * MMCMP: Check that end pointer is within the file size
  * WAV: ensure integer doesn't overflow
  * XM: additional mempos check
  * sndmix: Don't process row if its empty.
  * snd_fx: dont include patterns of zero size in length calc
  * MT2,AMF: prevent OOB reads

- Add patch for broken pc file where quite some upstream refer to
  modplug directly without specifying the subdir it is in.

- Update to version 0.8.8.5
  * Some security issues: CVE-2013-4233, CVE-2013-4234, as well as
    many fixes suggested by static analyzers: clang build-scan, and coverity.
- Stop using dos2unix
- Run through spec-cleaner
- Use full URL in Source tag


-----------------------------------------
Patch: SUSE-2018-991
Released: Mon May 28 13:48:46 2018
Summary: Security update for perl-DBD-mysql
Severity: moderate
References: 1047059,1047095,CVE-2017-10788,CVE-2017-10789
Description:
This update for perl-DBD-mysql fixes the following issues:

- CVE-2017-10789: The DBD::mysql module when with mysql_ssl=1 setting enabled, means that SSL is optional (even though this setting's documentation has a \'your communication with the server will be encrypted\' statement), which could lead man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack, a related issue to CVE-2015-3152. (bsc#1047059)
- CVE-2017-10788: The DBD::mysql module through 4.043 for Perl allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact by triggering (1) certain error responses from a MySQL server or (2) a loss of a network connection to a MySQL server. The use-after-free defect was introduced by relying on incorrect Oracle mysql_stmt_close documentation and code examples. (bsc#1047095)



-----------------------------------------
Patch: SUSE-2018-1004
Released: Wed May 30 02:30:19 2018
Summary: Recommended update for sysstat
Severity: low
References: 1059694,1082880
Description:
This update for sysstat provides the following fix:

- Fixed a bug that gives values of ifutil larger than 100% for NIC's 
  with speeds >= 10 Gbit/s. (bsc#1059694)
- Read uptime from /proc/uptime instead of from /proc/stat. (bsc#1082880)


-----------------------------------------
Patch: SUSE-2018-1028
Released: Tue Jun  5 13:20:44 2018
Summary: Recommended update for pam
Severity: low
References: 1089884
Description:
This update for pam fixes the following issues:

- Fix order of accessed configuration files in man page. (bsc#1089884)


-----------------------------------------
Patch: SUSE-2018-1076
Released: Tue Jun  5 20:36:35 2018
Summary: Recommended update for smt
Severity: important
References: 1072921,1074608,1087241,1088828,1090144,1094865
Description:
This update for smt fixes the following issues:

- Add support for SLES15 offline migrations. (bsc#1087241, bsc#1090144, bsc#1094865)
- Fix product.license download. (bsc#1088828)
- Automatically enable recommended modules when enabling base SLE 15 products.
- Add smt-data-export script for migrating to RMT.
- More verbose incomplete registration logging. (bsc#1072921, bsc#1074608)


-----------------------------------------
Patch: SUSE-2018-1080
Released: Thu Jun  7 11:43:02 2018
Summary: Security update for git
Severity: important
References: 1095218,1095219,CVE-2018-11233,CVE-2018-11235
Description:
This update for git fixes several issues.

These security issues were fixed:

- CVE-2018-11233: Path sanity-checks on NTFS allowed attackers to read arbitrary memory (bsc#1095218)
- CVE-2018-11235: Arbitrary code execution when recursively cloning a malicious repository (bsc#1095219)


-----------------------------------------
Patch: SUSE-2018-1081
Released: Thu Jun  7 11:43:48 2018
Summary: Security update for libvorbis
Severity: moderate
References: 1091070,CVE-2018-10392
Description:
This update for libvorbis fixes the following issues:
  
The following security issue was fixed:
  
- Fixed the validation of channels in mapping0_forward(), which previously
  allowed remote attackers to cause a denial of service via specially crafted
  files (CVE-2018-10392, bsc#1091070)


-----------------------------------------
Patch: SUSE-2018-1082
Released: Thu Jun  7 12:58:56 2018
Summary: Recommended update for rpm
Severity: moderate
References: 1073879,1080078,964063
Description:
This update for rpm fixes the following issues:

- Backport support for no_recompute_build_ids macro. (bsc#964063)
- Fix code execution when evaluating common python-related macros. (bsc#1080078)

Additionally, this update adds python3-rpm to the SUSE Linux Enterprise Server.


-----------------------------------------
Patch: SUSE-2018-980
Released: Thu Jun  7 15:10:48 2018
Summary: Security update for ceph
Severity: important
References: 1051598,1054061,1056125,1056967,1059458,1060904,1061461,1063014,1066182,1066502,1067088,1067119,1067705,1070357,1071386,1074301,1079076,1080788,1081379,1081600,1086340,1087269,1087493,CVE-2017-16818,CVE-2018-7262
Description:
This update for ceph fixes the following issues:

Security issues fixed:

- CVE-2018-7262: rgw: malformed http headers can crash rgw (bsc#1081379).
- CVE-2017-16818: User reachable asserts allow for DoS (bsc#1063014).

Bug fixes:

- bsc#1061461: OSDs keep generating coredumps after adding new OSD node to cluster.
- bsc#1079076: RGW openssl fixes.
- bsc#1067088: Upgrade to SES5 restarted all nodes, majority of OSDs aborts during start.
- bsc#1056125: Some OSDs are down when doing performance testing on rbd image in EC Pool.
- bsc#1087269: allow_ec_overwrites option not in command options list.
- bsc#1051598: Fix mountpoint check for systemctl enable --runtime.
- bsc#1070357: Zabbix mgr module doesn't recover from HEALTH_ERR.
- bsc#1066502: After upgrading a single OSD from SES 4 to SES 5 the OSDs do not rejoin the cluster.
- bsc#1067119: Crushtool decompile creates wrong device entries (device 20 device20) for not existing / deleted OSDs.
- bsc#1060904: Loglevel misleading during keystone authentication.
- bsc#1056967: Monitors goes down after pool creation on cluster with 120 OSDs.
- bsc#1067705: Issues with RGW Multi-Site Federation between SES5 and RH Ceph Storage 2.
- bsc#1059458: Stopping / restarting rados gateway as part of deepsea stage.4 executions causes core-dump of radosgw.
- bsc#1087493: Commvault cannot reconnect to storage after restarting haproxy.
- bsc#1066182: Container synchronization between two Ceph clusters failed.
- bsc#1081600: Crash in civetweb/RGW.
- bsc#1054061: NFS-GANESHA service failing while trying to list mountpoint on client.
- bsc#1074301: OSDs keep aborting: SnapMapper failed asserts.
- bsc#1086340: XFS metadata corruption on rbd-nbd mapped image with journaling feature enabled.
- bsc#1080788: fsid mismatch when creating additional OSDs.
- bsc#1071386: Metadata spill onto block.slow.


-----------------------------------------
Patch: SUSE-2018-1116
Released: Mon Jun 11 14:20:47 2018
Summary: Recommended update for smartmontools
Severity: moderate
References: 1038271,1047198,1080611,900099,983938
Description:
This update for smartmontools fixes the following issues:

smartmontools was updated to 6.6 version (FATE#321901, bsc#1080611, FATE#322874)

Changes:

- smartctl:

    * -i' and '--identify': ATA ACS-4 and SATA 3.3 enhancements.
    * Control ATA write cache through SCT Feature Control
    with '-s wcache-sct,ata|on|off[,p]' and '-g wcache-sct'.
    * Print ATA Pending Defects log with '-l defects'.
    * '-s wcreorder,on|off': New persistent flag ',p'.
    * '-s standby': Prevent temporary drive spinup.
    * '-n POWERMODE': New parameter to set exit status.
    * '-g security': ATA Security Level check fixed.
    * '-l scttemp*': Print minimum supported ERC Time Limit.
    * '-q noserial': Now also suppresses 'SAS address' output.
    * '-i': Print IEEE EUI-64 of NVMe namespace.
    * '-c': Print NVMe 1.3 feature flags.
    * '-A': Print NVMe 1.3 thermal temperature transition
    statistic.
    * '-g/s dsn': Get/set ATA DSN.

  - smartd

    * Uses also device identify information to detect for duplicate
    devices.
    * '-e dsn' directive: Set ATA DSN.
    * Improved SCSI/SAS temperature logging.
    * Silence emails and log messages on open errors of
    '-d removable' devices.
    * Exit on device open error unless '-q never' or '-d removable'
    is specified (regression).

  - update-smart-drivedb: Now authenticates downloaded file with GnuPG.
  - update-smart-drivedb: New options '--trunk', '--no-verify' and
    '--export-key'.
  - Device type '-d intelliprop,N' for IntelliProp controllers.
  - SCSI: Default timeout increased to 1 minute.
  - configure: New options '--with-gnupg', '--with-scriptpath' and
    '--with-update-smart-drivedb=X.Y'
  - configure: Checks for C++11 support option and requires
    '--with[out]-cxx11-option' if option unknown or no C++11 support.
  - HDD, SSD and USB additions to drive database.
  - New smartmontools-* mailing list addresses.
  - Man page formatting reworked.
  - Linux:

    * Uses SG_IO V4 API if supported.
    * Devices behind hpsa driver are no longer detected as regular
      SCSI devices.

  - Darwin: Initial NVMe support based on undocumented API.
  - FreeBSD:

    * Fix panic on INVARIANTS enabled kernel.
    * Improve ATA SMART STATUS check for legacy controllers.
    * Compile fix for FreeBSD-11 and newer.

  - NetBSD:

    * NVMe support.
    * Full 28-bit ATA support.
    * Compile fix.
    * Use a raw disk device file.

  - OpenBSD: Compile fix.
  - OS/2: Support for the OS2AHCI driver, updating source code,
    adding autoscan support, adding self-test support.
  - Windows fixes:

    * Support for Windows 10 NVMe driver (stornvme.sys).
    * Fix CSMI access for IRST driver 15.2.
    * smartd: Ability to run PowerShell scripts with '-M exec'.
    * smartd: New PowerShell script to send smartd warning emails
      without external tools.
    * package now provides PDF man pages.

- SCSI temperature error fixes (bsc#1047198)

- Drop systemd dependency on syslog.target (bsc#983938).
  https://lists.opensuse.org/opensuse-packaging/2013-05/msg00102.html

Updated to 6.5 version:

  * Experimental support for NVMe devices on FreeBSD, Linux and Windows.
  * smartctl '-i', '-c', '-H' and '-l error': NVMe support.
  * smartctl '-l nvmelog': New option for NVMe.
  * smartd.conf '-H', '-l error' and '-W': NVMe support.
  * Optional NVMe device scanning support on Linux and Windows.
  * configure option '--with-nvme-devicescan' to include NVMe in
  * default device scanning result.
  * Device scanning now allows to specify multiple '-d TYPE' options.
  * ATA: Added new POWER MODE values introduced in ATA ACS-2.
  * ATA: SCT commands are no longer issued if ATA Security is locked.
  * SCSI: LB provisioning improvements.
  * SCSI: Fixed GLTSD bit set/cleared info messages.
  * SCSI: Solid State media log page is no longer checked for tapes.
  * SCSI: Improved handling when no tape cartridge in drive.
  * SCSI: Workaround for buggy Seagate firmware.
  * SAT: Improved heuristics to detect bogus sense data from SAT layer.
  * smartd: Fixed crash on missing argument to '-s' directive.
    update-smart-drivedb: Now uses HTTPS for download by default.
  * update-smart-drivedb: New options to select URL and download tool.
  * update-smart-drivedb: New download tool 'svn'.
  * configure option '--without-update-smart-drivedb' to disable
    update-smart-drivedb script.
  * configure options '--disable-drivedb', '--enable-savestates',
    '--enable-attributelog' and '--with-docdir' are no longer supported.
  * autoconf < 2.60 and automake < 1.10 are no longer supported.
  * Drive database file now also includes the DEFAULT setting
    for each attribute.
  * HDD, SSD and USB additions to drive database.
  * Darwin: New support files for package installer.
  * New makefile target 'install-darwin' builds DMG image.
  * Solaris: Auto detection of SATA devices behind SAT layer.
  * Solaris SPARC: Legacy ATA support disabled by default.
    New configure option '--with-solaris-sparc-ata' enables it.
    File os_solaris_ata.s is no longer included in source tarball.
  * Windows: Auto detection of USB devices specified by drive letter.
  * Windows: Device scanning does no longer ignore unknown USB devices.
  * Windows: Prevent drive spin up by '-n standby' check.
  * Windows: New application manifests indicating Win 10 support.
  * Windows smartd: '-m [sys]msgbox' is no longer supported.
  * Windows installer: Defaults to 64-bit version on 64-bit Windows.
  * Various code changes suggested by Clang Static Analyser and Cppcheck.

- enable '--with-nvme-devicescan' option
- use --with-savestates, --with-attributelog, --docdir instead of old options

Updated to version 6.0.4:

  * Device type '  *d usbprolific' for Prolific PL2571/277x USB bridges.
  * SAT: Support for ATA registers returned in fixed format sense data.
  * smartctl '  *i' and '  *  *identify': ATA ACS  *4 and SATA 3.2 enhancements.
  * smartctl '  *l xerror': Support for logs with more than 255 pages.
  * smartctl '  *l devstat': Prints ACS  *3 DSN flags.
  * smartctl '  *l devstat': Read via SMART command if GP log is not
    available.
  * smartctl '  *l scttempsts': Prints SCT SMART STATUS (ACS  *4) and
    vendor specific SCT bytes.
  * configure option '  *  *with  *systemdenvfile=auto' as new default.
  * configure options '  *  *disable  *drivedb', '  *  *enable  *savestates'
    and '  *  *enable  *attributelog' are deprecated.
  * Corresponding '  *  *with  **' options are enhanced accordingly.
  * Configure option '  *  *with  *docdir' is deprecated.
  * autoconf < 2.60 and automake < 1.10 are deprecated.
    (all of the above still work but a warning is printed if used)
  * HDD, SSD and USB additions to drive database.
  * Linux: AACRAID fixes, SMART STATUS should work now.
  * Linux: '/dev/megaraid_sas_ioctl_node' fd leak fix.
  * Darwin: '  *S' command implemented, '  *l devstat' should work now.
  * Cygwin: Compile fix.
  * Windows: Device type '  *d aacraid' for AACRAID controllers.
  * Windows: SAT autodetection based on IOCTL_STORAGE_QUERY_PROPERTY.
  * Windows installer: Fix possible loss of user PATH environment variable.
- Cleanup and remove conditional macros; the package doesn't build
  for SLE anyway

- Run Self Tests:

  * Short Self Test every night
  * Extended Self Test every month
  * Discussion:
    http://lists.opensuse.org/opensuse-factory/2015-03/msg00040.html

- Package empty /etc/smartd_warning.d for warning plugins.

- Re-add /usr/sbin/rcsmards symlink (bsc#900099).
- Fix service restart in smartmontools.generate_smartd_opts.in
  (bsc#900099).

Updated to version 6.3:

  - smartctl: Fixed bogus error messages from '-g/-s wcreorder'.
  - smartctl prints ATA form factor.
  - SCSI: Improved support of modern disks (SAS SSDs).
  - SCSI: Fixed sense data noise from old disks.
  - update-smart-drivedb man page.
  - configure option '--with-smartdscriptdir'.
  - configure option '--with-smartdplugindir'.
  - configure option '--with-systemdenvfile'.
  - configure option '--with-working-snprintf'.
  - Removed build time stamps to support reproducible builds.
  - Compile fixes for C++11.
  - HDD, SSD and USB additions to drive database.
  - Linux: Support for controllers behind AACRAID driver.
  - Linux: Fixed DEVICESCAN max path count.
  - FreeBSD: Fixed possible crash caused by wrong SCSI error handling.
  - FreeBSD: Compile fix for kFreeBSD.
  - Windows: Reworked CSMI port scanning.
  - QNX: Compile fix.

- Make possible to disable broken SAT support by -d scsi+cciss,N
  (bsc#1038271 https://www.smartmontools.org/ticket/871).
- Build with large file support in 32 bit systems. 


-----------------------------------------
Patch: SUSE-2018-1125
Released: Tue Jun 12 15:45:24 2018
Summary: Security update for poppler
Severity: moderate
References: 1045939,1059066,1059101,1059155,1060220,1061092,1061263,1061264,1061265,1064593,1074453,CVE-2017-1000456,CVE-2017-14517,CVE-2017-14518,CVE-2017-14520,CVE-2017-14617,CVE-2017-14928,CVE-2017-14975,CVE-2017-14976,CVE-2017-14977,CVE-2017-15565,CVE-2017-9865
Description:
This update for poppler fixes the following issues:

These security issues were fixed:

- CVE-2017-14517: Prevent NULL Pointer dereference in the XRef::parseEntry()
  function via a crafted PDF document (bsc#1059066).
- CVE-2017-9865: Fixed a stack-based buffer overflow vulnerability
  in GfxState.cc that would have allowed attackers to facilitate
  a denial-of-service attack via specially crafted PDF
  documents. (bsc#1045939)
- CVE-2017-14518: Remedy a floating point exception in
  isImageInterpolationRequired() that could have been exploited using a
  specially crafted PDF document. (bsc#1059101)
- CVE-2017-14520: Remedy a floating point exception in
  Splash::scaleImageYuXd() that could have been exploited using a specially
  crafted PDF document. (bsc#1059155)
- CVE-2017-14617: Fixed a floating point exception in Stream.cc,
  which may lead to a potential attack when handling malicious PDF
  files. (bsc#1060220)
- CVE-2017-14928: Fixed a NULL Pointer dereference in
  AnnotRichMedia::Configuration::Configuration() in Annot.cc, which may
  lead to a potential attack when handling malicious PDF
  files. (bsc#1061092)
- CVE-2017-14975: Fixed a NULL pointer dereference vulnerability,
  that existed because a data structure in FoFiType1C.cc was not
  initialized, which allowed an attacker to launch a denial of service
  attack. (bsc#1061263)
- CVE-2017-14976: Fixed a heap-based buffer over-read vulnerability in
  FoFiType1C.cc that occurred when an out-of-bounds font dictionary index
  was encountered, which allowed an attacker to launch a denial of service
  attack. (bsc#1061264)
- CVE-2017-14977: Fixed a NULL pointer dereference vulnerability in the
  FoFiTrueType::getCFFBlock() function in FoFiTrueType.cc that occurred
  due to lack of validation of a table pointer, which allows an attacker
  to launch a denial of service attack. (bsc#1061265)
- CVE-2017-15565: Prevent NULL Pointer dereference in the
  GfxImageColorMap::getGrayLine() function via a crafted PDF document
  (bsc#1064593).
- CVE-2017-1000456: Validate boundaries in TextPool::addWord to prevent
  overflows in subsequent calculations (bsc#1074453).


-----------------------------------------
Patch: SUSE-2018-1134
Released: Thu Jun 14 10:42:09 2018
Summary: Security update for java-1_8_0-openjdk
Severity: important
References: 1087066,1090023,1090024,1090025,1090026,1090027,1090028,1090029,1090030,1090032,1090033,CVE-2018-2790,CVE-2018-2794,CVE-2018-2795,CVE-2018-2796,CVE-2018-2797,CVE-2018-2798,CVE-2018-2799,CVE-2018-2800,CVE-2018-2814,CVE-2018-2815
Description:
This update for java-1_8_0-openjdk to version 8u171 fixes the following issues:

These security issues were fixed:

- S8180881: Better packaging of deserialization
- S8182362: Update CipherOutputStream Usage
- S8183032: Upgrade to LittleCMS 2.9
- S8189123: More consistent classloading
- S8189969, CVE-2018-2790, bsc#1090023: Manifest better manifest entries
- S8189977, CVE-2018-2795, bsc#1090025: Improve permission portability
- S8189981, CVE-2018-2796, bsc#1090026: Improve queuing portability
- S8189985, CVE-2018-2797, bsc#1090027: Improve tabular data portability
- S8189989, CVE-2018-2798, bsc#1090028: Improve container portability
- S8189993, CVE-2018-2799, bsc#1090029: Improve document portability
- S8189997, CVE-2018-2794, bsc#1090024: Enhance keystore mechanisms
- S8190478: Improved interface method selection
- S8190877: Better handling of abstract classes
- S8191696: Better mouse positioning
- S8192025, CVE-2018-2814, bsc#1090032: Less referential references
- S8192030: Better MTSchema support
- S8192757, CVE-2018-2815, bsc#1090033: Improve stub classes implementation
- S8193409: Improve AES supporting classes
- S8193414: Improvements in MethodType lookups
- S8193833, CVE-2018-2800, bsc#1090030: Better RMI connection support

For other changes please consult the changelog.


-----------------------------------------
Patch: SUSE-2018-1135
Released: Thu Jun 14 12:14:50 2018
Summary: Security update for java-1_7_0-openjdk
Severity: important
References: 1090023,1090024,1090025,1090026,1090027,1090028,1090029,1090030,1090032,1090033,CVE-2018-2790,CVE-2018-2794,CVE-2018-2795,CVE-2018-2796,CVE-2018-2797,CVE-2018-2798,CVE-2018-2799,CVE-2018-2800,CVE-2018-2814,CVE-2018-2815
Description:
This update for java-1_7_0-openjdk to version 7u181 fixes the following issues:

+ S8162488: JDK should be updated to use LittleCMS 2.8
+ S8180881: Better packaging of deserialization
+ S8182362: Update CipherOutputStream Usage
+ S8183032: Upgrade to LittleCMS 2.9
+ S8189123: More consistent classloading
+ S8190478: Improved interface method selection
+ S8190877: Better handling of abstract classes
+ S8191696: Better mouse positioning
+ S8192030: Better MTSchema support
+ S8193409: Improve AES supporting classes
+ S8193414: Improvements in MethodType lookups
+ S8189969, CVE-2018-2790, bsc#1090023: Manifest better manifest entries
+ S8189977, CVE-2018-2795, bsc#1090025: Improve permission portability
+ S8189981, CVE-2018-2796, bsc#1090026: Improve queuing portability
+ S8189985, CVE-2018-2797, bsc#1090027: Improve tabular data portability
+ S8189989, CVE-2018-2798, bsc#1090028: Improve container portability
+ S8189993, CVE-2018-2799, bsc#1090029: Improve document portability
+ S8189997, CVE-2018-2794, bsc#1090024: Enhance keystore mechanisms
+ S8192025, CVE-2018-2814, bsc#1090032: Less referential references
+ S8192757, CVE-2018-2815, bsc#1090033: Improve stub classes implementation
+ S8193833, CVE-2018-2800, bsc#1090030: Better RMI connection support

For additional changes please consult the changelog.


-----------------------------------------
Patch: SUSE-2018-1138
Released: Thu Jun 14 16:42:33 2018
Summary: Security update for postgresql96
Severity: moderate
References: 1091610,CVE-2018-1115
Description:

  
PostgreSQL was updated to 9.6.9 fixing bugs and security issues:

Release notes:

- https://www.postgresql.org/about/news/1851/
- https://www.postgresql.org/docs/current/static/release-9-6-9.html

  A dump/restore is not required for those running 9.6.X.
  However, if you use the adminpack extension, you should update
  it as per the first changelog entry below.
  Also, if the function marking mistakes mentioned in the second
  and third changelog entries below affect you, you will want to
  take steps to correct your database catalogs.

Security issue fixed:

- CVE-2018-1115: Remove public execute privilege
  from contrib/adminpack's pg_logfile_rotate() function
  pg_logfile_rotate() is a deprecated wrapper for the core
  function pg_rotate_logfile(). When that function was changed
  to rely on SQL privileges for access control rather than a
  hard-coded superuser check, pg_logfile_rotate() should have
  been updated as well, but the need for this was missed. Hence,
  if adminpack is installed, any user could request a logfile
  rotation, creating a minor security issue.
  After installing this update, administrators should update
  adminpack by performing ALTER EXTENSION adminpack UPDATE in
  each database in which adminpack is installed. (bsc#1091610)



-----------------------------------------
Patch: SUSE-2018-1141
Released: Fri Jun 15 13:41:08 2018
Summary: Security update for gpg2
Severity: important
References: 1096745,CVE-2018-12020
Description:
This update for gpg2 fixes the following security issue:

- CVE-2018-12020: GnuPG mishandled the original filename during decryption and
  verification actions, which allowed remote attackers to spoof the output that
  GnuPG sends on file descriptor 2 to other programs that use the '--status-fd 2'
  option (bsc#1096745)


-----------------------------------------
Patch: SUSE-2018-1144
Released: Fri Jun 15 19:19:29 2018
Summary: Recommended update for logrotate
Severity: moderate
References: 1093617
Description:
This update for logrotate provides the following fix:

- Ensure the HOME environment variable is set to /root when logrotate is started via
  systemd. This allows mariadb to rotate its logs when the database has a root password
  defined. (bsc#1093617)


-----------------------------------------
Patch: SUSE-2018-1152
Released: Mon Jun 18 22:03:48 2018
Summary: Recommended update for libburnia
Severity: low
References: 1084997
Description:
This update for libburnia fixes the following issues:

- Install and uninstall info pages correctly to fix upgrading to SLE15. (bsc#1084997)


-----------------------------------------
Patch: SUSE-2018-1153
Released: Mon Jun 18 22:04:14 2018
Summary: Recommended update for reiserfs
Severity: low
References: 1094401
Description:
This update for reiserfs provides the following fix:

- Move libreiserfscore.so.0 into the libreiserfscore0 package. (bsc#1094401)


-----------------------------------------
Patch: SUSE-2018-1156
Released: Tue Jun 19 15:10:45 2018
Summary: Recommended update for openslp
Severity: moderate
References: 1076035,1080964
Description:
This update for openslp provides the following fixes:

- Fix slpd using the peer address as local address for TCP connections. (bsc#1076035)
- Use TCP connections for unicast requests. (bsc#1080964)


-----------------------------------------
Patch: SUSE-2018-1188
Released: Wed Jun 20 15:46:10 2018
Summary: Security update for ntp
Severity: moderate
References: 1077445,1082063,1082210,1083417,1083420,1083422,1083424,1083426,CVE-2016-1549,CVE-2018-7170,CVE-2018-7182,CVE-2018-7183,CVE-2018-7184,CVE-2018-7185
Description:
This update for ntp fixes the following issues:

- Update to 4.2.8p11 (bsc#1082210):
  * CVE-2016-1549: Sybil vulnerability: ephemeral association
    attack. While fixed in ntp-4.2.8p7, there are significant
    additional protections for this issue in 4.2.8p11.
  * CVE-2018-7182: ctl_getitem(): buffer read overrun
    leads to undefined behavior and information leak. (bsc#1083426)
  * CVE-2018-7170: Multiple authenticated ephemeral
    associations. (bsc#1083424)
  * CVE-2018-7184: Interleaved symmetric mode cannot
    recover from bad state. (bsc#1083422)
  * CVE-2018-7185: Unauthenticated packet can reset
    authenticated interleaved association. (bsc#1083420)
  * CVE-2018-7183: ntpq:decodearr() can write beyond its
    buffer limit.(bsc#1083417)
- Don't use libevent's cached time stamps in sntp. (bsc#1077445)

This update is a reissue of the previous update with LTSS channels included.


-----------------------------------------
Patch: SUSE-2018-1193
Released: Wed Jun 20 18:48:16 2018
Summary: Recommended update for openslp
Severity: moderate
References: 1076035,1080964
Description:
This update for openslp provides the following fixes:

- Fix slpd using the peer address as local address for TCP connections. (bsc#1076035)
- Use TCP connections for unicast requests. (bsc#1080964)


-----------------------------------------
Patch: SUSE-2018-1194
Released: Thu Jun 21 10:40:57 2018
Summary: Security update for bluez
Severity: moderate
References: 1013721,1013877,1026652,1057342,CVE-2016-7837,CVE-2016-9800,CVE-2016-9804,CVE-2017-1000250
Description:
This update for bluez fixes the following issues:

Security issues fixed:

- CVE-2016-9800: Fix hcidump memory leak in pin_code_reply_dump() (bsc#1013721).
- CVE-2016-9804: Fix hcidump buffer overflow in commands_dump() (bsc#1013877).
- CVE-2016-7837: Fix possible buffer overflow, make sure we don't write past the end of the array (bsc#1026652).
- CVE-2017-1000250: Fix information disclosure vulnerability in service_search_attr_req (bsc#1057342).


-----------------------------------------
Patch: SUSE-2018-1205
Released: Fri Jun 22 12:42:33 2018
Summary: Security update for MozillaFirefox
Severity: important
References: 1096449,CVE-2018-6126
Description:
This update for MozillaFirefox fixes the following security issue:

- CVE-2018-6126: Prevent heap buffer overflow in rasterizing paths in SVG with Skia (bsc#1096449).


-----------------------------------------
Patch: SUSE-2018-1225
Released: Tue Jun 26 21:24:52 2018
Summary: Recommended update for ibus
Severity: low
References: 1076854
Description:
This update for ibus provides the following fix:

- Do not set LC_CTYPE so that the system locale can be changed by just modifying LANG. (bsc#1076854)


-----------------------------------------
Patch: SUSE-2018-1233
Released: Wed Jun 27 12:45:13 2018
Summary: Security update for tiff
Severity: moderate
References: 1007276,1074317,1082332,1082825,1086408,1092949,974621,CVE-2016-3632,CVE-2016-8331,CVE-2017-11613,CVE-2017-13726,CVE-2017-18013,CVE-2018-10963,CVE-2018-7456,CVE-2018-8905
Description:
This update for tiff fixes the following issues:

These security issues were fixed:

- CVE-2017-18013: There was a Null-Pointer Dereference in the tif_print.c TIFFPrintDirectory function, as demonstrated by a tiffinfo crash.  (bsc#1074317)
- CVE-2018-10963: The TIFFWriteDirectorySec() function in tif_dirwrite.c allowed remote attackers to cause a denial of service (assertion failure and application crash) via a crafted file, a different vulnerability than CVE-2017-13726.  (bsc#1092949)
- CVE-2018-7456: Prevent a NULL Pointer dereference in the function TIFFPrintDirectory when using the tiffinfo tool to print crafted TIFF information, a different vulnerability than CVE-2017-18013 (bsc#1082825)
- CVE-2017-11613: Prevent denial of service in the TIFFOpen function. During the TIFFOpen process, td_imagelength is not checked. The value of td_imagelength can be directly controlled by an input file. In the ChopUpSingleUncompressedStrip function, the _TIFFCheckMalloc function is called based on td_imagelength. If the value of td_imagelength is set close to the amount of system memory, it will hang the system or trigger the OOM killer (bsc#1082332)
- CVE-2018-8905: Prevent heap-based buffer overflow in the function LZWDecodeCompat via a crafted TIFF file (bsc#1086408)
- CVE-2016-8331: Prevent remote code execution because of incorrect handling of TIFF images. A crafted TIFF document could have lead to a type confusion vulnerability resulting in remote code execution. This vulnerability could have been be triggered via a TIFF file delivered to the application using LibTIFF's tag extension functionality (bsc#1007276)
- CVE-2016-3632: The _TIFFVGetField function allowed remote attackers to cause a denial of service (out-of-bounds write) or execute arbitrary code via a crafted TIFF image (bsc#974621)


-----------------------------------------
Patch: SUSE-2018-1240
Released: Wed Jun 27 22:20:12 2018
Summary: Security update for unixODBC
Severity: moderate
References: 1044970,1082060,1082290,1082484,CVE-2018-7409,CVE-2018-7485
Description:


This update for unixODBC to version 2.3.6 fixes the following issues:

- CVE-2018-7409: Buffer overflow in unicode_to_ansi_copy() was fixed in 2.3.5 (bsc#1082290)
- CVE-2018-7485: Swapped arguments in SQLWriteFileDSN() in odbcinst/SQLWriteFileDSN.c (bsc#1082484)

Other fixes:

- Enabled --enable-fastvalidate option in configure (bsc#1044970)


-----------------------------------------
Patch: SUSE-2018-1242
Released: Thu Jun 28 13:44:16 2018
Summary: Security update for procps
Severity: moderate
References: 1092100,CVE-2018-1122,CVE-2018-1123,CVE-2018-1124,CVE-2018-1125,CVE-2018-1126
Description:
This update for procps fixes the following security issues:

- CVE-2018-1122: Prevent local privilege escalation in top. If a user ran top
  with HOME unset in an attacker-controlled directory, the attacker could have
  achieved privilege escalation by exploiting one of several vulnerabilities in
  the config_file() function (bsc#1092100).
- CVE-2018-1123: Prevent denial of service in ps via mmap buffer overflow.
  Inbuilt protection in ps maped a guard page at the end of the overflowed
  buffer, ensuring that the impact of this flaw is limited to a crash (temporary
  denial of service) (bsc#1092100).
- CVE-2018-1124: Prevent multiple integer overflows leading to a heap
  corruption in file2strvec function. This allowed a privilege escalation for a
  local attacker who can create entries in procfs by starting processes, which
  could result in crashes or arbitrary code execution in proc utilities run by
  other users (bsc#1092100).
- CVE-2018-1125: Prevent stack buffer overflow in pgrep. This vulnerability was
  mitigated by FORTIFY limiting the impact to a crash (bsc#1092100).
- CVE-2018-1126: Ensure correct integer size in proc/alloc.* to prevent
  truncation/integer overflow issues (bsc#1092100).


-----------------------------------------
Patch: SUSE-2018-1249
Released: Fri Jun 29 15:48:36 2018
Summary: Security update for ImageMagick
Severity: moderate
References: 1047356,1056277,1087820,1094204,1094237,1095730,1095812,1095813,CVE-2017-10928,CVE-2017-13758,CVE-2017-18271,CVE-2018-10804,CVE-2018-10805,CVE-2018-11251,CVE-2018-11655,CVE-2018-9133
Description:
This update for ImageMagick fixes the following issues:

These security issues were fixed:

- CVE-2017-13758: Prevent heap-based buffer overflow in the TracePoint()
  function (bsc#1056277).
- CVE-2017-10928: Prevent heap-based buffer over-read in the GetNextToken
  function that allowed remote attackers to obtain sensitive information from
  process memory or possibly have unspecified other impact via a crafted SVG
  document (bsc#1047356).
- CVE-2018-9133: Long compute times in the tiff decoder have been fixed (bsc#1087820).
- CVE-2018-11251: Heap-based buffer over-read in ReadSUNImage in coders/sun.c, which allows attackers to cause denial of service (bsc#1094237).
- CVE-2017-18271: Infinite loop in the function ReadMIFFImage in coders/miff.c, which allows attackers to cause a denial of service (bsc#1094204).
- CVE-2018-11655: Memory leak in the GetImagePixelCache in MagickCore/cache.c was fixed (bsc#1095730)
- CVE-2018-10804: Memory leak in WriteTIFFImage in coders/tiff.c was fixed (bsc#1095813)
- CVE-2018-10805: Fixed memory leaks in bgr.c, rgb.c, cmyk.c, gray.c, ycbcr.c (bsc#1095812)


-----------------------------------------
Patch: SUSE-2018-1260
Released: Tue Jul  3 10:54:20 2018
Summary: Recommended update for sysstat
Severity: moderate
References: 1089883
Description:
This update for sysstat provides the following fix:

- Apply backported upstream patches to fix bogus CPU measurements. (bsc#1089883)


-----------------------------------------
Patch: SUSE-2018-1288
Released: Fri Jul  6 14:30:51 2018
Summary: Security update for libqt4
Severity: moderate
References: 1039291,1042657,956357,964458,982826,CVE-2016-10040
Description:

This update for libqt4 fixes the following issues:

LibQt4 was updated to 4.8.7 (bsc#1039291, CVE-2016-10040):

See
	http://download.qt.io/official_releases/qt/4.8/4.8.7/changes-4.8.7
for more details.

Also libQtWebkit4 was updated to 2.3.4 to match libqt4.

Also following bugs were fixed:

- Enable libqt4-devel-32bit (bsc#982826)
- Fixed bolder font in Qt4 apps (boo#956357)



-----------------------------------------
Patch: SUSE-2018-1290
Released: Sat Jul  7 00:29:17 2018
Summary: Recommended update for sysstat
Severity: important
References: 1089883
Description:

This update for sysstat reverts the fixes from the previous updates since they may cause
some output to be invalid or corrupt. (bsc#1089883)


-----------------------------------------
Patch: SUSE-2018-1297
Released: Tue Jul 10 13:49:52 2018
Summary: Recommended update for libqca2
Severity: low
References: 1100729
Description:

This update provides a rebuild of libqca2 against the current libqt4, unbreaking
builds against libqca2. (bsc#1100729)
  

-----------------------------------------
Patch: SUSE-2018-1304
Released: Wed Jul 11 16:10:23 2018
Summary: Recommended update for gdm
Severity: moderate
References: 1086600
Description:
This update for gdm fixes the following issues:

- Limit potentially expensive name lookups to avoid lengthy timeouts. (bsc#1086600)


-----------------------------------------
Patch: SUSE-2018-1320
Released: Thu Jul 12 14:02:44 2018
Summary: Recommended update for geoclue2
Severity: moderate
References: 1051612
Description:
This update for geoclue2 provides the following fix:

- Backport some upstream fixes to improve network availability detection in order to get
  automatic timezone switch to work properly. (bsc#1051612)


-----------------------------------------
Patch: SUSE-2018-1322
Released: Fri Jul 13 09:26:04 2018
Summary: Security update for gdk-pixbuf
Severity: moderate
References: 1074462,CVE-2017-1000422
Description:
This update for gdk-pixbuf fixes the following security issue:

- CVE-2017-1000422: Prevent several integer overflow in the gif_get_lzw
  function resulting in memory corruption and potential code execution
  (bsc#1074462).


-----------------------------------------
Patch: SUSE-2018-1328
Released: Tue Jul 17 08:07:57 2018
Summary: Security update for perl
Severity: important
References: 1068565,1082216,1082233,1082234,1096718,CVE-2018-12015,CVE-2018-6797,CVE-2018-6798,CVE-2018-6913
Description:
This update for perl fixes the following issues:

These security issue were fixed: 

- CVE-2018-6913: Fixed space calculation issues in pp_pack.c (bsc#1082216).
- CVE-2018-6798: Fixed heap buffer overflow in regexec.c (bsc#1082233).
- CVE-2018-6797: Fixed sharp-s regexp overflow (bsc#1082234).
- CVE-2018-12015: The Archive::Tar module allowed remote attackers to bypass a
  directory-traversal protection mechanism and overwrite arbitrary files
  (bsc#1096718)

This non-security issue was fixed: 

- fix debugger crash in tab completion with Term::ReadLine::Gnu [bsc#1068565]



-----------------------------------------
Patch: SUSE-2018-1352
Released: Thu Jul 19 09:47:01 2018
Summary: Security update for openssh
Severity: moderate
References: 1076957,CVE-2016-10708
Description:
This update for openssh fixes the following issues:

Security issue fixed:

- CVE-2016-10708: Prevent DoS due to crashes caused by out-of-sequence NEWKEYS message (bsc#1076957).


-----------------------------------------
Patch: SUSE-2018-1369
Released: Fri Jul 20 14:57:12 2018
Summary: Recommended update for biosdevname
Severity: moderate
References: 1093625
Description:
This update for biosdevname provides the following fix:

- Prevent an infinite recursion in dmidecode.c::smbios_setslot by
  checking that subordinate bus has a number greater than the
  current bus. (bsc#1093625)


-----------------------------------------
Patch: SUSE-2018-1375
Released: Mon Jul 23 10:51:02 2018
Summary: Security update for rsyslog
Severity: moderate
References: 935393,CVE-2015-3243
Description:
This update for rsyslog fixes the following issues:

The following security vulnerability was addressed:

CVE-2015-3243: Make sure that log files are not created world-readable (bsc#935393)


-----------------------------------------
Patch: SUSE-2018-1376
Released: Mon Jul 23 10:54:47 2018
Summary: Security update for python
Severity: moderate
References: 1083507,CVE-2017-18207
Description:
This update for python fixes the following issues:

The following security vulnerabilities were addressed:

- Add a check to Lib/wave.py that verifies that at least one channel is
  provided. Prior to this, attackers could cause a denial of service via a
  crafted wav format audio file. [bsc#1083507, CVE-2017-18207]


-----------------------------------------
Patch: SUSE-2018-1387
Released: Wed Jul 25 11:00:45 2018
Summary: Security update for nautilus
Severity: low
References: 1060031,CVE-2017-14604
Description:
This update for nautilus fixes the following issues:

Security issue fixed:

- CVE-2017-14604: Add a metadata::trusted metadata to the file once the user
  acknowledges the file as trusted, and also remove the 'trusted' content in the
  desktop file (bsc#1060031).


-----------------------------------------
Patch: SUSE-2018-1405
Released: Thu Jul 26 16:44:00 2018
Summary: Security update for libsndfile
Severity: moderate
References: 1071767,1071777,1100167,CVE-2017-17456,CVE-2017-17457,CVE-2018-13139
Description:
This update for libsndfile fixes the following issues:

Security issues fixed:

- CVE-2018-13139: Fix a stack-based buffer overflow in psf_memset in common.c that allows remote attackers to cause a denial of service (bsc#1100167).
- CVE-2017-17456: Prevent segmentation fault in the function d2alaw_array() that may have lead to a remote DoS (bsc#1071777)
- CVE-2017-17457: Prevent segmentation fault in the function d2ulaw_array() that may have lead to a remote DoS, a different vulnerability than CVE-2017-14246 (bsc#1071767)


-----------------------------------------
Patch: SUSE-2018-1413
Released: Fri Jul 27 12:41:13 2018
Summary: Security update for libgcrypt
Severity: moderate
References: 1064455,1090766,1097410,CVE-2018-0495
Description:
This update for libgcrypt fixes the following issues:

The following security vulnerability was addressed:

- CVE-2018-0495: Mitigate a novel side-channel attack by enabling blinding for
  ECDSA signatures (bsc#1097410).

The following other issues were fixed:

- Extended the fipsdrv dsa-sign and dsa-verify commands with the
  --algo parameter for the FIPS testing of DSA SigVer and SigGen (bsc#1064455).
- Ensure libgcrypt20-hmac and libgcrypt20 are installed in the correct order. (bsc#1090766)


-----------------------------------------
Patch: SUSE-2018-1415
Released: Fri Jul 27 12:45:43 2018
Summary: Security update for mutt
Severity: important
References: 1061343,1094717,1101428,1101566,1101567,1101568,1101569,1101570,1101571,1101573,1101576,1101577,1101578,1101581,1101582,1101583,1101588,1101589,980830,982129,986534,CVE-2014-9116,CVE-2018-14349,CVE-2018-14350,CVE-2018-14351,CVE-2018-14352,CVE-2018-14353,CVE-2018-14354,CVE-2018-14355,CVE-2018-14356,CVE-2018-14357,CVE-2018-14358,CVE-2018-14359,CVE-2018-14360,CVE-2018-14361,CVE-2018-14362,CVE-2018-14363
Description:
This update for mutt fixes the following issues:

Security issues fixed:

- bsc#1101428: Mutt 1.10.1 security release update.
- CVE-2018-14351: Fix imap/command.c that mishandles long IMAP status mailbox literal count size (bsc#1101583).
- CVE-2018-14353: Fix imap_quote_string in imap/util.c that has an integer underflow (bsc#1101581).
- CVE-2018-14362: Fix pop.c that does not forbid characters that may have unsafe interaction with message-cache pathnames (bsc#1101567).
- CVE-2018-14354: Fix arbitrary command execution from remote IMAP servers via backquote characters (bsc#1101578).
- CVE-2018-14352: Fix imap_quote_string in imap/util.c that does not leave room for quote characters (bsc#1101582).
- CVE-2018-14356: Fix pop.c that mishandles a zero-length UID (bsc#1101576).
- CVE-2018-14355: Fix imap/util.c that mishandles '..' directory traversal in a mailbox name (bsc#1101577).
- CVE-2018-14349: Fix imap/command.c that mishandles a NO response without a message (bsc#1101589).
- CVE-2018-14350: Fix imap/message.c that has a stack-based buffer overflow for a FETCH response with along INTERNALDATE field (bsc#1101588).
- CVE-2018-14363: Fix newsrc.c that does not properlyrestrict '/' characters that may have unsafe interaction with cache pathnames (bsc#1101566).
- CVE-2018-14359: Fix buffer overflow via base64 data (bsc#1101570).
- CVE-2018-14358: Fix imap/message.c that has a stack-based buffer overflow for a FETCH response with along RFC822.SIZE field (bsc#1101571).
- CVE-2018-14360: Fix nntp_add_group in newsrc.c that has a stack-based buffer overflow because of incorrect sscanf usage (bsc#1101569).
- CVE-2018-14357: Fix that remote IMAP servers are allowed to execute arbitrary commands via backquote characters (bsc#1101573).
- CVE-2018-14361: Fix that nntp.c proceeds even if memory allocation fails for messages data (bsc#1101568).

Bug fixes:

- mutt reports as neomutt and incorrect version (bsc#1094717)
- No sidebar available in mutt 1.6.1 from Tumbleweed snapshot 20160517 (bsc#980830)
- mutt-1.6.1 unusable when built with --enable-sidebar (bsc#982129)
- (neo)mutt displaying times in Zulu time (bsc#1061343)
- mutt unconditionally segfaults when displaying a message (bsc#986534)


-----------------------------------------
Patch: SUSE-2018-1450
Released: Mon Jul 30 10:10:45 2018
Summary: Recommended update for pam
Severity: low
References: 1096282
Description:
This update for pam provides the following fix:

- Added  /etc/security/limits.d to the pam package. (bsc#1096282)


-----------------------------------------
Patch: SUSE-2018-1452
Released: Mon Jul 30 18:10:29 2018
Summary: Security update for gdk-pixbuf
Severity: moderate
References: 1053417,CVE-2015-4491
Description:
This update for gdk-pixbuf fixes the following issues:

Security issue fixed:

- CVE-2015-4491: Fix integer multiplication overflow that allows for DoS or potentially RCE (bsc#1053417).


-----------------------------------------
Patch: SUSE-2018-1466
Released: Wed Aug  1 13:42:25 2018
Summary: Recommended update for polkit-gnome
Severity: low
References: 1004637,1023797
Description:
This update for polkit-gnome provides the following fixes:

- Enable the authentication agent only in desktop environments that don't have their own
  agents. (bsc#1004637, bsc#1023797)
  

-----------------------------------------
Patch: SUSE-2018-1467
Released: Wed Aug  1 13:48:22 2018
Summary: Recommended update for lapack
Severity: low
References: 1087426
Description:
This update for lapack fixes the following issues:

- Build tmglib and fold its contents into existing liblapack libraries to fix some
  undefined references. (bsc#1087426)


-----------------------------------------
Patch: SUSE-2018-1468
Released: Wed Aug  1 13:56:48 2018
Summary: Security update for polkit
Severity: moderate
References: 1099031,CVE-2018-1116
Description:
This update for polkit fixes the following issues:

Security issue fixed:

- CVE-2018-1116: Fix uid comparison lacking in polkit_backend_interactive_authority_check_authorization (bsc#1099031).


-----------------------------------------
Patch: SUSE-2018-1471
Released: Wed Aug  1 14:02:11 2018
Summary: Security update for cups
Severity: moderate
References: 1050082,1061066,1087018,1096405,1096406,1096407,1096408,CVE-2017-18248,CVE-2018-4180,CVE-2018-4181,CVE-2018-4182,CVE-2018-4183
Description:
This update for cups fixes the following issues:

The following security vulnerabilities were fixed:

- CVE-2017-18248: Handle invalid characters properly in printing jobs. This fixes a problem that
  was causing the DBUS library to abort the calling process. (bsc#1061066 bsc#1087018)
- Fixed a local privilege escalation to root and sandbox bypasses in the
  scheduler
- CVE-2018-4180: Fixed a local privilege escalation to root in dnssd backend
  (bsc#1096405)
- CVE-2018-4181: Limited local file reads as root via cupsd.conf include
  directive (bsc#1096406)
- CVE-2018-4182: Fixed a sandbox bypass due to insecure error handling
  (bsc#1096407)
- CVE-2018-4183: Fixed a sandbox bypass due to profile misconfiguration
  (bsc#1096408)

The following other issue was fixed:

- Fixed authorization check for clients (like samba) connected through the
  local socket when Kerberos authentication is enabled (bsc#1050082)


-----------------------------------------
Patch: SUSE-2018-1474
Released: Thu Aug  2 14:19:16 2018
Summary: Security update for libtirpc
Severity: important
References: 1072183,968175
Description:
This update for libtirpc fixes the following issues:

Security issue fixed:

- bsc#968175: Fix remote crash of RPC services.

Bug fixes:

- bsc#1072183: Send RPC getport call as specified via parameter.


-----------------------------------------
Patch: SUSE-2018-1487
Released: Fri Aug  3 16:44:37 2018
Summary: Recommended update for vsftpd
Severity: moderate
References: 1010177,1075060,1093179,975538
Description:
This update for vsftpd fixes the following issues:

- No longer start/stop parameterized systemd units, which led to a confusing 'failed to
  try-restart' error. (bsc#1093179, bsc#1010177)
- Disable the default setting for rsa_cert_file. The upstream configuration initializes
  that value to '/usr/share/ssl/certs/vsftpd.pem' and vsftpd won't start up if that file
  does not exist (or if it does not contain a RSA certificate). Therefore, users who copy
  a DSA certificate to that location or properly configure a DSA certificate via
  dsa_cert_file without explicitly disabling the RSA certificate won't be able to start
  vsftpd. (bsc#975538)
- Mention the new 'address_space_limit' option in the installed vsftpd.conf manpage. (bsc#1075060)


-----------------------------------------
Patch: SUSE-2018-1494
Released: Fri Aug  3 19:46:02 2018
Summary: Security update for ceph
Severity: important
References: 1092874,1094932,1096748,1099162,CVE-2018-10861,CVE-2018-1128,CVE-2018-1129
Description:
This update for ceph fixes the following issues:

- Update to version 12.2.7-420-gc0ef85b854:
    * https://ceph.com/releases/12-2-7-luminous-released/
    * luminous: osd: eternal stuck PG in 'unfound_recovery' (bsc#1094932)
    * bluestore: db.slow used when db is not full (bsc#1092874)

    * CVE-2018-10861: Ensure that ceph-mon does perform authorization on all OSD pool ops (bsc#1099162).
    * CVE-2018-1129: cephx signature check bypass (bsc#1096748).
    * CVE-2018-1128: cephx protocol was vulnerable to replay attack (bsc#1096748).

  

-----------------------------------------
Patch: SUSE-2018-1497
Released: Mon Aug  6 09:57:21 2018
Summary: Security update for libsoup
Severity: moderate
References: 1052916,1086036,1100097,CVE-2017-2885,CVE-2018-12910
Description:
This update for libsoup fixes the following issues:

Security issue fixed:

- CVE-2018-12910: Fix crash when handling empty hostnames (bsc#1100097).
- CVE-2017-2885: Fix chunk decoding buffer overrun that could be exploited against either clients or servers (bsc#1052916).

Bug fixes:

- bsc#1086036: translation-update-upstream commented out for Leap


-----------------------------------------
Patch: SUSE-2018-1515
Released: Tue Aug  7 20:19:04 2018
Summary: Introduce packages added to SLES 12 SP3 after release
Severity: low
References: 1102861
Description:
This update adds packages to the SUSE Linux Enterprise Server 12 SP3 for Teradata
which were added after the released of SLES 12 SP3.
  

-----------------------------------------
Patch: SUSE-2018-1549
Released: Mon Aug 13 13:41:22 2018
Summary: Recommended update for sg3_utils
Severity: low
References: 1065448,1070431,1077787,1092640
Description:
This update for sg3_utils provides the following fix:

- Decode standard INQUIRY for CD-ROMs correctly. (bsc#1065448, bsc#1070431)
- Fix page decoding. (bsc#1077787)
- Remove initrd rebuild macros for libsgutils2 subpackage. (bsc#1092640)
- Use %post -p for ldconfig. (bsc#1092640)


-----------------------------------------
Patch: SUSE-2018-1560
Released: Tue Aug 14 14:44:13 2018
Summary: Security update for MozillaFirefox
Severity: important
References: 1098998,CVE-2018-12359,CVE-2018-12360,CVE-2018-12362,CVE-2018-12363,CVE-2018-12364,CVE-2018-12365,CVE-2018-12366,CVE-2018-12368,CVE-2018-5156,CVE-2018-5188
Description:
This update for MozillaFirefox to version ESR 52.9 fixes the following issues:

- CVE-2018-5188: Various memory safety bugs (bsc#1098998)
- CVE-2018-12368: No warning when opening executable SettingContent-ms files
- CVE-2018-12366: Invalid data handling during QCMS transformations
- CVE-2018-12365: Compromised IPC child process can list local filenames
- CVE-2018-12364: CSRF attacks through 307 redirects and NPAPI plugins
- CVE-2018-12363: Use-after-free when appending DOM nodes
- CVE-2018-12362: Integer overflow in SSSE3 scaler
- CVE-2018-12360: Use-after-free when using focus()
- CVE-2018-5156: Media recorder segmentation fault when track type is changed during capture
- CVE-2018-12359: Buffer overflow using computed size of canvas element


-----------------------------------------
Patch: SUSE-2018-1562
Released: Tue Aug 14 15:20:11 2018
Summary: Recommended update for icewm
Severity: moderate
References: 1096917
Description:
This update for icewm fixes the following issues:

- Use .desktop file from upstream instead of sle distribution to keep in line
  with SLE 15, resolving the upgrade issue from sle12 to sle15. (bsc#1096917)


-----------------------------------------
Patch: SUSE-2018-1575
Released: Wed Aug 15 14:47:30 2018
Summary: Security update for apache2
Severity: moderate
References: 1101689,CVE-2018-1333
Description:
This update for apache2 fixes the following issues:

The following security vulnerability were fixed:

- CVE-2018-1333: Fixed a worker exhaustion that could have lead to a denial
  of service via specially crafted HTTP/2 requests (bsc#1101689).


-----------------------------------------
Patch: SUSE-2018-1607
Released: Thu Aug 16 14:04:08 2018
Summary: Security update for libqt4
Severity: moderate
References: 1039291,1042657,956357,964458,982826,CVE-2016-10040
Description:

This update for libqt4 fixes the following issues:

LibQt4 was updated to 4.8.7 (bsc#1039291, CVE-2016-10040):

See
	http://download.qt.io/official_releases/qt/4.8/4.8.7/changes-4.8.7
for more details.

Also libQtWebkit4 was updated to 2.3.4 to match libqt4.

Also following bugs were fixed:

- Enable libqt4-devel-32bit (bsc#982826)
- Fixed bolder font in Qt4 apps (boo#956357)



-----------------------------------------
Patch: SUSE-2018-1609
Released: Thu Aug 16 14:04:20 2018
Summary: Security update for cups
Severity: moderate
References: 1050082,1061066,1087018,1096405,1096406,1096407,1096408,CVE-2017-18248,CVE-2018-4180,CVE-2018-4181,CVE-2018-4182,CVE-2018-4183
Description:
This update for cups fixes the following issues:

The following security vulnerabilities were fixed:

- CVE-2017-18248: Handle invalid characters properly in printing jobs. This fixes a problem that
  was causing the DBUS library to abort the calling process. (bsc#1061066 bsc#1087018)
- Fixed a local privilege escalation to root and sandbox bypasses in the
  scheduler
- CVE-2018-4180: Fixed a local privilege escalation to root in dnssd backend
  (bsc#1096405)
- CVE-2018-4181: Limited local file reads as root via cupsd.conf include
  directive (bsc#1096406)
- CVE-2018-4182: Fixed a sandbox bypass due to insecure error handling
  (bsc#1096407)
- CVE-2018-4183: Fixed a sandbox bypass due to profile misconfiguration
  (bsc#1096408)

The following other issue was fixed:

- Fixed authorization check for clients (like samba) connected through the
  local socket when Kerberos authentication is enabled (bsc#1050082)


-----------------------------------------
Patch: SUSE-2018-1610
Released: Thu Aug 16 14:04:25 2018
Summary: Security update for libgcrypt
Severity: moderate
References: 1064455,1090766,1097410,CVE-2018-0495
Description:
This update for libgcrypt fixes the following issues:

The following security vulnerability was addressed:

- CVE-2018-0495: Mitigate a novel side-channel attack by enabling blinding for
  ECDSA signatures (bsc#1097410).

The following other issues were fixed:

- Extended the fipsdrv dsa-sign and dsa-verify commands with the
  --algo parameter for the FIPS testing of DSA SigVer and SigGen (bsc#1064455).
- Ensure libgcrypt20-hmac and libgcrypt20 are installed in the correct order. (bsc#1090766)


-----------------------------------------
Patch: SUSE-2018-1611
Released: Thu Aug 16 14:04:30 2018
Summary: Security update for nautilus
Severity: low
References: 1060031,CVE-2017-14604
Description:
This update for nautilus fixes the following issues:

Security issue fixed:

- CVE-2017-14604: Add a metadata::trusted metadata to the file once the user
  acknowledges the file as trusted, and also remove the 'trusted' content in the
  desktop file (bsc#1060031).


-----------------------------------------
Patch: SUSE-2018-1612
Released: Thu Aug 16 14:04:38 2018
Summary: Security update for python
Severity: moderate
References: 1083507,CVE-2017-18207
Description:
This update for python fixes the following issues:

The following security vulnerabilities were addressed:

- Add a check to Lib/wave.py that verifies that at least one channel is
  provided. Prior to this, attackers could cause a denial of service via a
  crafted wav format audio file. [bsc#1083507, CVE-2017-18207]


-----------------------------------------
Patch: SUSE-2018-1613
Released: Thu Aug 16 14:04:43 2018
Summary: Security update for libsndfile
Severity: moderate
References: 1071767,1071777,1100167,CVE-2017-17456,CVE-2017-17457,CVE-2018-13139
Description:
This update for libsndfile fixes the following issues:

Security issues fixed:

- CVE-2018-13139: Fix a stack-based buffer overflow in psf_memset in common.c that allows remote attackers to cause a denial of service (bsc#1100167).
- CVE-2017-17456: Prevent segmentation fault in the function d2alaw_array() that may have lead to a remote DoS (bsc#1071777)
- CVE-2017-17457: Prevent segmentation fault in the function d2ulaw_array() that may have lead to a remote DoS, a different vulnerability than CVE-2017-14246 (bsc#1071767)


-----------------------------------------
Patch: SUSE-2018-1619
Released: Thu Aug 16 14:49:40 2018
Summary: Security update for openssh
Severity: moderate
References: 1076957,CVE-2016-10708
Description:
This update for openssh fixes the following issues:

Security issue fixed:

- CVE-2016-10708: Prevent DoS due to crashes caused by out-of-sequence NEWKEYS message (bsc#1076957).


-----------------------------------------
Patch: SUSE-2018-1621
Released: Thu Aug 16 14:49:51 2018
Summary: Security update for polkit
Severity: moderate
References: 1099031,CVE-2018-1116
Description:
This update for polkit fixes the following issues:

Security issue fixed:

- CVE-2018-1116: Fix uid comparison lacking in polkit_backend_interactive_authority_check_authorization (bsc#1099031).


-----------------------------------------
Patch: SUSE-2018-1622
Released: Thu Aug 16 14:49:55 2018
Summary: Security update for libtirpc
Severity: important
References: 1072183,968175
Description:
This update for libtirpc fixes the following issues:

Security issue fixed:

- bsc#968175: Fix remote crash of RPC services.

Bug fixes:

- bsc#1072183: Send RPC getport call as specified via parameter.


-----------------------------------------
Patch: SUSE-2018-1623
Released: Thu Aug 16 14:50:00 2018
Summary: Security update for mutt
Severity: important
References: 1061343,1094717,1101428,1101566,1101567,1101568,1101569,1101570,1101571,1101573,1101576,1101577,1101578,1101581,1101582,1101583,1101588,1101589,980830,982129,986534,CVE-2014-9116,CVE-2018-14349,CVE-2018-14350,CVE-2018-14351,CVE-2018-14352,CVE-2018-14353,CVE-2018-14354,CVE-2018-14355,CVE-2018-14356,CVE-2018-14357,CVE-2018-14358,CVE-2018-14359,CVE-2018-14360,CVE-2018-14361,CVE-2018-14362,CVE-2018-14363
Description:
This update for mutt fixes the following issues:

Security issues fixed:

- bsc#1101428: Mutt 1.10.1 security release update.
- CVE-2018-14351: Fix imap/command.c that mishandles long IMAP status mailbox literal count size (bsc#1101583).
- CVE-2018-14353: Fix imap_quote_string in imap/util.c that has an integer underflow (bsc#1101581).
- CVE-2018-14362: Fix pop.c that does not forbid characters that may have unsafe interaction with message-cache pathnames (bsc#1101567).
- CVE-2018-14354: Fix arbitrary command execution from remote IMAP servers via backquote characters (bsc#1101578).
- CVE-2018-14352: Fix imap_quote_string in imap/util.c that does not leave room for quote characters (bsc#1101582).
- CVE-2018-14356: Fix pop.c that mishandles a zero-length UID (bsc#1101576).
- CVE-2018-14355: Fix imap/util.c that mishandles '..' directory traversal in a mailbox name (bsc#1101577).
- CVE-2018-14349: Fix imap/command.c that mishandles a NO response without a message (bsc#1101589).
- CVE-2018-14350: Fix imap/message.c that has a stack-based buffer overflow for a FETCH response with along INTERNALDATE field (bsc#1101588).
- CVE-2018-14363: Fix newsrc.c that does not properlyrestrict '/' characters that may have unsafe interaction with cache pathnames (bsc#1101566).
- CVE-2018-14359: Fix buffer overflow via base64 data (bsc#1101570).
- CVE-2018-14358: Fix imap/message.c that has a stack-based buffer overflow for a FETCH response with along RFC822.SIZE field (bsc#1101571).
- CVE-2018-14360: Fix nntp_add_group in newsrc.c that has a stack-based buffer overflow because of incorrect sscanf usage (bsc#1101569).
- CVE-2018-14357: Fix that remote IMAP servers are allowed to execute arbitrary commands via backquote characters (bsc#1101573).
- CVE-2018-14361: Fix that nntp.c proceeds even if memory allocation fails for messages data (bsc#1101568).

Bug fixes:

- mutt reports as neomutt and incorrect version (bsc#1094717)
- No sidebar available in mutt 1.6.1 from Tumbleweed snapshot 20160517 (bsc#980830)
- mutt-1.6.1 unusable when built with --enable-sidebar (bsc#982129)
- (neo)mutt displaying times in Zulu time (bsc#1061343)
- mutt unconditionally segfaults when displaying a message (bsc#986534)


-----------------------------------------
Patch: SUSE-2018-1625
Released: Thu Aug 16 15:02:12 2018
Summary: Recommended update for lapack
Severity: low
References: 1087426
Description:
This update for lapack fixes the following issues:

- Build tmglib and fold its contents into existing liblapack libraries to fix some
  undefined references. (bsc#1087426)


-----------------------------------------
Patch: SUSE-2018-1626
Released: Thu Aug 16 15:02:54 2018
Summary: Recommended update for polkit-gnome
Severity: low
References: 1004637,1023797
Description:
This update for polkit-gnome provides the following fixes:

- Enable the authentication agent only in desktop environments that don't have their own
  agents. (bsc#1004637, bsc#1023797)
  

-----------------------------------------
Patch: SUSE-2018-1627
Released: Thu Aug 16 15:03:09 2018
Summary: Recommended update for usb_modeswitch
Severity: low
References: 1034996,899013,903753
Description:

This update provides usb_modeswitch 2.2.5, which brings several fixes and enhancements:

- Fixed bug in configuration check, possibly leading to segmentation fault
- Fixed Pantech commandline parameter evaluation
- Added driver unbind step via sysfs in wrapper
- Fixed buggy check of USB configuration selection
- Fixed compatibility problem with systemd version 221
- Added catch for libusb init error
- Added catch for USB configuration read error
- Fixed wrapper script where port search for symlinking modem port was broken
- Changed PantechMode parameter to represent different targets
- Added global config option to disable MBIM checking and setting altogether
- Changed systemd template unit parameter to avoid escaping problems
- Update the data package to version 20150627
- Fixed unreliable switching function for Cisco AM10
- Introduction of parameter 'HuaweiNewMode', wrapping the standard bulk message
  for all newer Huawei devices.


-----------------------------------------
Patch: SUSE-2018-1634
Released: Thu Aug 16 15:29:14 2018
Summary: Recommended update for vsftpd
Severity: moderate
References: 1010177,1075060,1093179,975538
Description:
This update for vsftpd fixes the following issues:

- No longer start/stop parameterized systemd units, which led to a confusing 'failed to
  try-restart' error. (bsc#1093179, bsc#1010177)
- Disable the default setting for rsa_cert_file. The upstream configuration initializes
  that value to '/usr/share/ssl/certs/vsftpd.pem' and vsftpd won't start up if that file
  does not exist (or if it does not contain a RSA certificate). Therefore, users who copy
  a DSA certificate to that location or properly configure a DSA certificate via
  dsa_cert_file without explicitly disabling the RSA certificate won't be able to start
  vsftpd. (bsc#975538)
- Mention the new 'address_space_limit' option in the installed vsftpd.conf manpage. (bsc#1075060)


-----------------------------------------
Patch: SUSE-2018-1635
Released: Thu Aug 16 15:29:25 2018
Summary: Recommended update for biosdevname
Severity: moderate
References: 1093625
Description:
This update for biosdevname provides the following fix:

- Prevent an infinite recursion in dmidecode.c::smbios_setslot by
  checking that subordinate bus has a number greater than the
  current bus. (bsc#1093625)


-----------------------------------------
Patch: SUSE-2018-1636
Released: Thu Aug 16 15:30:11 2018
Summary: Recommended update for pam
Severity: low
References: 1096282
Description:
This update for pam provides the following fix:

- Added  /etc/security/limits.d to the pam package. (bsc#1096282)


-----------------------------------------
Patch: SUSE-2018-1638
Released: Thu Aug 16 16:45:33 2018
Summary: Recommended update for openwsman
Severity: moderate
References: 1078623,1078626,1092201,1092206,1098930
Description:
This update for openwsman fixes the following issues:

- Backport setting ssl_cipher_list (bsc#1092201, bsc#1078623, bsc#1078626)
- Handle duplicate .conf values correctly. (bsc#1098930)
- Disable directory listing. (bsc#1092206)
- Enable perfect forward secrecy with NID_X9_62_prime256v1


-----------------------------------------
Patch: SUSE-2018-1658
Released: Fri Aug 17 10:41:34 2018
Summary: Security update for libcares2
Severity: moderate
References: 1044946,CVE-2017-1000381
Description:
This update for libcares2 fixes the following issues:

- CVE-2017-1000381: A NAPTR parser out of bounds access was fixed that could lead to crashes. (bsc#1044946)


-----------------------------------------
Patch: SUSE-2018-1659
Released: Fri Aug 17 10:41:38 2018
Summary: Security update for gdk-pixbuf
Severity: moderate
References: 1053417,CVE-2015-4491
Description:
This update for gdk-pixbuf fixes the following issues:

Security issue fixed:

- CVE-2015-4491: Fix integer multiplication overflow that allows for DoS or potentially RCE (bsc#1053417).


-----------------------------------------
Patch: SUSE-2018-1688
Released: Mon Aug 20 09:02:23 2018
Summary: Recommended update for openslp
Severity: moderate
References: 1076035,1080964
Description:
This update for openslp provides the following fixes:

- Fix slpd using the peer address as local address for TCP connections. (bsc#1076035)
- Use TCP connections for unicast requests. (bsc#1080964)


-----------------------------------------
Patch: SUSE-2018-1689
Released: Mon Aug 20 09:02:24 2018
Summary: Recommended update for pam
Severity: low
References: 1096282
Description:
This update for pam provides the following fix:

- Added  /etc/security/limits.d to the pam package. (bsc#1096282)


-----------------------------------------
Patch: SUSE-2018-1690
Released: Mon Aug 20 09:02:27 2018
Summary: Recommended update for reiserfs
Severity: low
References: 1094401
Description:
This update for reiserfs provides the following fix:

- Move libreiserfscore.so.0 into the libreiserfscore0 package. (bsc#1094401)


-----------------------------------------
Patch: SUSE-2018-1691
Released: Mon Aug 20 09:04:17 2018
Summary: Recommended update for sg3_utils
Severity: low
References: 1065448,1070431,1077787,1092640
Description:
This update for sg3_utils provides the following fix:

- Decode standard INQUIRY for CD-ROMs correctly. (bsc#1065448, bsc#1070431)
- Fix page decoding. (bsc#1077787)
- Remove initrd rebuild macros for libsgutils2 subpackage. (bsc#1092640)
- Use %post -p for ldconfig. (bsc#1092640)


-----------------------------------------
Patch: SUSE-2018-1692
Released: Mon Aug 20 09:05:10 2018
Summary: Recommended update for biosdevname
Severity: moderate
References: 1093625
Description:
This update for biosdevname provides the following fix:

- Prevent an infinite recursion in dmidecode.c::smbios_setslot by
  checking that subordinate bus has a number greater than the
  current bus. (bsc#1093625)


-----------------------------------------
Patch: SUSE-2018-1695
Released: Mon Aug 20 09:19:20 2018
Summary: Security update for perl
Severity: important
References: 1068565,1082216,1082233,1082234,1096718,CVE-2018-12015,CVE-2018-6797,CVE-2018-6798,CVE-2018-6913
Description:
This update for perl fixes the following issues:

These security issue were fixed: 

- CVE-2018-6913: Fixed space calculation issues in pp_pack.c (bsc#1082216).
- CVE-2018-6798: Fixed heap buffer overflow in regexec.c (bsc#1082233).
- CVE-2018-6797: Fixed sharp-s regexp overflow (bsc#1082234).
- CVE-2018-12015: The Archive::Tar module allowed remote attackers to bypass a
  directory-traversal protection mechanism and overwrite arbitrary files
  (bsc#1096718)

This non-security issue was fixed: 

- fix debugger crash in tab completion with Term::ReadLine::Gnu [bsc#1068565]



-----------------------------------------
Patch: SUSE-2018-1753
Released: Fri Aug 24 14:24:17 2018
Summary: Security update for python
Severity: moderate
References: 1083507,CVE-2017-18207
Description:
This update for python fixes the following issues:

The following security vulnerabilities were addressed:

- Add a check to Lib/wave.py that verifies that at least one channel is
  provided. Prior to this, attackers could cause a denial of service via a
  crafted wav format audio file. [bsc#1083507, CVE-2017-18207]


-----------------------------------------
Patch: SUSE-2018-1765
Released: Mon Aug 27 11:17:10 2018
Summary: Security update for gdm
Severity: moderate
References: 1103737,CVE-2018-14424
Description:
This update for gdm fixes the following security issue:

- CVE-2018-14424: The daemon in GDM did not properly unexport display objects
  from its D-Bus interface when they are destroyed, which allowed a local
  attacker to trigger a use-after-free via a specially crafted sequence of D-Bus
  method calls, resulting in a denial of service or potential code execution
  (bsc#1103737).


-----------------------------------------
Patch: SUSE-2018-1766
Released: Mon Aug 27 11:17:25 2018
Summary: Security update for openssh
Severity: moderate
References: 1076957,CVE-2016-10708
Description:
This update for openssh fixes the following issues:

Security issue fixed:

- CVE-2016-10708: Prevent DoS due to crashes caused by out-of-sequence NEWKEYS message (bsc#1076957).


-----------------------------------------
Patch: SUSE-2018-1824
Released: Mon Sep  3 16:01:38 2018
Summary: Security update for spice-gtk
Severity: important
References: 1101295,1104448,CVE-2018-10873,CVE-2018-10893
Description:
This update for spice-gtk fixes the following issues:

Security issues fixed:

- CVE-2018-10873: Fix potential heap corruption when demarshalling (bsc#1104448)
- CVE-2018-10893: Avoid buffer overflow on image lz checks (bsc#1101295)



-----------------------------------------
Patch: SUSE-2018-1825
Released: Mon Sep  3 16:01:57 2018
Summary: Security update for spice
Severity: important
References: 1101295,1104448,CVE-2018-10873,CVE-2018-10893
Description:
This update for spice fixes the following issues:

Security issues fixed:

- CVE-2018-10873: Fix potential heap corruption when demarshalling (bsc#1104448)
- CVE-2018-10893: Avoid buffer overflow on image lz checks (bsc#1101295)
  

-----------------------------------------
Patch: SUSE-2018-1830
Released: Tue Sep  4 14:40:33 2018
Summary: Recommended update for vhostmd
Severity: moderate
References: 1090769,1098804
Description:
This update for vhostmd provides the following fixes:

- Reconnect to libvirtd in case of a SIGPIPE is raised (bsc#1098804)
- vhostmd.service: Fix a typo and move the Documentation from the [Service] to the [Unit]
  section. (bsc#1090769)


-----------------------------------------
Patch: SUSE-2018-1844
Released: Thu Sep  6 07:43:34 2018
Summary: Security update for dovecot22
Severity: important
References: 1082828,CVE-2017-15130
Description:
This update for dovecot22 fixes the following issues:

Security issue fixed:

- CVE-2017-15130: Fixed a potential denial of service via TLS SNI config
  lookups, which would slow the process down and could have led to exhaustive
  memory allocation and/or process restarts (bsc#1082828)


-----------------------------------------
Patch: SUSE-2018-1886
Released: Wed Sep 12 11:53:32 2018
Summary: Security update for python3
Severity: moderate
References: 1086001,1088004,1088009,1107030,CVE-2018-1060,CVE-2018-1061
Description:
This update for python3 provides the following fixes:

These security issues were fixed:

- CVE-2018-1061: Prevent catastrophic backtracking in the difflib.IS_LINE_JUNK
  method. An attacker could have used this flaw to cause denial of service
  (bsc#1088004).
- CVE-2018-1060: Prevent catastrophic backtracking in pop3lib's apop() method.
  An attacker could have used this flaw to cause denial of service (bsc#1088009).

These non-security issues were fixed:

- Sort files and directories when creating tarfile archives so that they are created in a
  more predictable way. (bsc#1086001)
- Add -fwrapv to OPTS (bsc#1107030)


-----------------------------------------
Patch: SUSE-2018-1899
Released: Thu Sep 13 17:24:03 2018
Summary: Recommended update for gnome-shell, gnome-shell-extensions
Severity: moderate
References: 1017412,1046570,1102648
Description:
This update for gnome-shell and gnome-shell-extensions provides the following fix:

- Fix pixbuf refcount memory leaks on async operations. (bsc#1017412)
- Fix a problem that was making only half of the panel visible in some cases. (bsc#1046570)
- Hide authentication dialogs while screen is locked (bsc#1102648)


-----------------------------------------
Patch: SUSE-2018-1927
Released: Wed Sep 19 21:33:08 2018
Summary: Recommended update for python-M2Crypto
Severity: moderate
References: 1072973
Description:
This update for python-M2Crypto provides version 0.29.0 and brings many fixes and improvements.

For a detailed description, please refer to the changelog.

-----------------------------------------
Patch: SUSE-2018-1942
Released: Fri Sep 21 07:51:02 2018
Summary: Security update for openslp
Severity: important
References: 1090638,CVE-2017-17833
Description:
This update for openslp fixes the following issues:

- CVE-2017-17833: Prevent heap-related memory corruption issue which may have
  manifested itself as a denial-of-service or a remote code-execution
  vulnerability (bsc#1090638)
- Prevent out of bounds reads in message parsing


-----------------------------------------
Patch: SUSE-2018-1943
Released: Fri Sep 21 07:51:42 2018
Summary: Security update for ImageMagick
Severity: moderate
References: 1102003,1102004,1102005,1102007,1105592,1106855,1106858,CVE-2018-14434,CVE-2018-14435,CVE-2018-14436,CVE-2018-14437,CVE-2018-16323,CVE-2018-16329
Description:
This update for ImageMagick fixes the following issues:

The following security vulnerabilities were fixed:

- CVE-2018-16329: Prevent NULL pointer dereference in the GetMagickProperty
  function leading to DoS (bsc#1106858)
- CVE-2018-16323: ReadXBMImage left data uninitialized when processing an XBM
  file that has a negative pixel value. If the affected code was used as a
  library loaded into a process that includes sensitive information, that
  information sometimes can be leaked via the image data (bsc#1106855)
- CVE-2018-14434: Fixed a memory leak for a colormap in WriteMPCImage 
  (bsc#1102003)
- CVE-2018-14435: Fixed a memory leak in DecodeImage in coders/pcd.c
  (bsc#1102007)
- CVE-2018-14436: Fixed a memory leak in ReadMIFFImage in coders/miff.c
  (bsc#1102005)
- CVE-2018-14437: Fixed a memory leak in parse8BIM in coders/meta.c
  (bsc#1102004)
- Disable PS, PS2, PS3, XPS and PDF coders in default policy.xml (bsc#1105592)


-----------------------------------------
Patch: SUSE-2018-1944
Released: Fri Sep 21 07:52:05 2018
Summary: Security update for liblouis
Severity: moderate
References: 1095189,1095825,1095826,1095827,1095945,1097103,CVE-2018-11440,CVE-2018-11577,CVE-2018-11683,CVE-2018-11684,CVE-2018-11685,CVE-2018-12085
Description:
This update for liblouis, python-louis, python3-louis fixes the
following issues:

Security issues fixed:

- CVE-2018-11440: Fixed a stack-based buffer overflow in the function
  parseChars() in compileTranslationTable.c (bsc#1095189)
- CVE-2018-11577: Fixed a segmentation fault in lou_logPrint in logging.c
  (bsc#1095945)
- CVE-2018-11683: Fixed a stack-based buffer overflow in the function
  parseChars() in compileTranslationTable.c (different vulnerability than
  CVE-2018-11440) (bsc#1095827)
- CVE-2018-11684: Fixed stack-based buffer overflow in the function
  includeFile() in compileTranslationTable.c (bsc#1095826)
- CVE-2018-11685: Fixed a stack-based buffer overflow in the function
  compileHyphenation() in compileTranslationTable.c (bsc#1095825)
- CVE-2018-12085: Fixed a stack-based buffer overflow in the function
  parseChars() in compileTranslationTable.c (different vulnerability than
  CVE-2018-11440) (bsc#1097103)


-----------------------------------------
Patch: SUSE-2018-1947
Released: Fri Sep 21 11:29:55 2018
Summary: Recommended update for lsof
Severity: moderate
References: 1036304,1099847
Description:
This update for lsof provides the following fix:

- Enhance -K option with the form '-K i' to direct lsof to ignore tasks. (bsc#1036304)
- Add 'Provides: backported-option-Ki' to indicate that '-K i' option is supported so
  libzypp can safely use it. (bsc#1099847)


-----------------------------------------
Patch: SUSE-2018-1969
Released: Mon Sep 24 08:06:42 2018
Summary: Security update for libzypp, zypper
Severity: important
References: 1036304,1045735,1049825,1070851,1076192,1088705,1091624,1092413,1096803,1099847,1100028,1101349,1102429,CVE-2017-9269,CVE-2018-7685
Description:
This update for libzypp, zypper fixes the following issues:

Update libzypp to version 16.17.20:

Security issues fixed:

- PackageProvider: Validate deta rpms before caching (bsc#1091624,
  bsc#1088705, CVE-2018-7685)
- PackageProvider: Validate downloaded rpm package signatures before
  caching (bsc#1091624, bsc#1088705, CVE-2018-7685)

Other bugs fixed:

- lsof: use '-K i' if lsof supports it (bsc#1099847, bsc#1036304)
- Handle http error 502 Bad Gateway in curl backend (bsc#1070851)
- RepoManager: Explicitly request repo2solv to generate application
  pseudo packages.
- libzypp-devel should not require cmake (bsc#1101349)
- HardLocksFile: Prevent against empty commit without Target having
  been been loaded (bsc#1096803)
- Avoid zombie tar processes (bsc#1076192)

Update to zypper to version 1.13.45:

Security issues fixed:

- Improve signature check callback messages (bsc#1045735, CVE-2017-9269)
- add/modify repo: Add options to tune the GPG check settings
  (bsc#1045735, CVE-2017-9269)

Other bugs fixed:

- XML <install-summary> attribute `packages-to-change` added (bsc#1102429)
- man: Strengthen that `--config FILE' affects zypper.conf,
  not zypp.conf (bsc#1100028)
- Prevent nested calls to exit() if aborted by a signal (bsc#1092413)
- ansi.h: Prevent ESC sequence strings from going out of scope (bsc#1092413)
- Fix: zypper bash completion expands non-existing options (bsc#1049825)
- Improve signature check callback messages (bsc#1045735)
- add/modify repo: Add options to tune the GPG check settings (bsc#1045735)


-----------------------------------------
Patch: SUSE-2018-1970
Released: Mon Sep 24 08:07:42 2018
Summary: Security update for apache2
Severity: moderate
References: 1016715,1104826,CVE-2016-4975,CVE-2016-8743
Description:
This update for apache2 fixes the following issues:

Security issues fixed:

- CVE-2016-8743: Fixed liberal whitespace interpretation accepted from requests
  and sent in response lines and headers. Accepting these different behaviors
  represented a security concern when httpd participates in any chain of
  proxies or interacts with back-end application servers, either through
  mod_proxy or using conventional CGI mechanisms, and may result in request
  smuggling, response splitting and cache pollution. (bsc#1016715)
- CVE-2016-4975: Fixed possible CRLF injection allowing HTTP response splitting
  attacks for sites which use mod_userdir. This issue was mitigated by changes
  which prohibit CR or LF injection into the 'Location' or other outbound
  header key or value. (bsc#1104826)
  

-----------------------------------------
Patch: SUSE-2018-1985
Released: Mon Sep 24 11:56:08 2018
Summary: Recommended update for openldap2
Severity: moderate
References: 1089640
Description:
This update for openldap2 provides the following fix:

- Fix slapd segfaults in mdb_env_reader_dest. (bsc#1089640)


-----------------------------------------
Patch: SUSE-2018-1986
Released: Mon Sep 24 12:52:43 2018
Summary: Security update for libXcursor
Severity: moderate
References: 1103511,CVE-2015-9262
Description:
This update for libXcursor fixes the following security issue:

- CVE-2015-9262: _XcursorThemeInherits allowed remote attackers to cause denial
  of service or potentially code execution via a one-byte heap overflow
  (bsc#1103511).


-----------------------------------------
Patch: SUSE-2018-1989
Released: Mon Sep 24 12:54:37 2018
Summary: Security update for tiff
Severity: moderate
References: 1074186,1092480,983440,CVE-2016-5319,CVE-2017-17942,CVE-2018-10779
Description:
This update for tiff fixes the following issues:

Security issues fixed:

- CVE-2018-10779: Fixed a heap-based buffer overflow in TIFFWriteScanline()
  in tif_write.c (bsc#1092480)
- CVE-2017-17942: Fixed a heap-based buffer overflow in the function
  PackBitsEncode in tif_packbits.c. (bsc#1074186)
- CVE-2016-5319: Fixed a beap-based buffer overflow in bmp2tiff (bsc#983440)


-----------------------------------------
Patch: SUSE-2018-1990
Released: Mon Sep 24 12:54:57 2018
Summary: Security update for gnutls
Severity: moderate
References: 1047002,1105437,1105459,1105460,CVE-2017-10790,CVE-2018-10844,CVE-2018-10845,CVE-2018-10846
Description:
This update for gnutls fixes the following issues:

Security issues fixed:

- Improved mitigations against Lucky 13 class of attacks
  - 'Just in Time' PRIME + PROBE cache-based side channel attack can lead to plaintext recovery (CVE-2018-10846, bsc#1105460)
  - HMAC-SHA-384 vulnerable to Lucky thirteen attack due to use of wrong constant (CVE-2018-10845, bsc#1105459)
  - HMAC-SHA-256 vulnerable to Lucky thirteen attack due to not enough dummy function calls (CVE-2018-10844, bsc#1105437)
- The _asn1_check_identifier function in Libtasn1 caused a NULL pointer dereference and crash (CVE-2017-10790, bsc#1047002)


-----------------------------------------
Patch: SUSE-2018-1991
Released: Mon Sep 24 12:55:19 2018
Summary: Security update for gd
Severity: moderate
References: 1105434,CVE-2018-1000222
Description:
This update for gd fixes the following issues:

Security issue fixed:

- CVE-2018-1000222: Fixed a double free vulnerability in gdImageBmpPtr() that
  could result in remote code execution. This could have been exploited via a
  specially crafted JPEG image files. (bsc#1105434)


-----------------------------------------
Patch: SUSE-2018-2038
Released: Wed Sep 26 12:27:58 2018
Summary: Recommended update for gcc48
Severity: moderate
References: 1093797
Description:
This update for gcc48 fixes the following issues:

- Fixed a reload bug on aarch64 causing a kernel miscompile.  [bsc#1093797]



-----------------------------------------
Patch: SUSE-2018-2051
Released: Thu Sep 27 12:02:34 2018
Summary: Security update for wireshark
Severity: moderate
References: 1094301,1101776,1101777,1101786,1101788,1101791,1101794,1101800,1101802,1101804,1101810,1106514,CVE-2018-11354,CVE-2018-11355,CVE-2018-11356,CVE-2018-11357,CVE-2018-11358,CVE-2018-11359,CVE-2018-11360,CVE-2018-11361,CVE-2018-11362,CVE-2018-14339,CVE-2018-14340,CVE-2018-14341,CVE-2018-14342,CVE-2018-14343,CVE-2018-14344,CVE-2018-14367,CVE-2018-14368,CVE-2018-14369,CVE-2018-14370,CVE-2018-16056,CVE-2018-16057,CVE-2018-16058
Description:
This update for wireshark to version 2.4.9 fixes the following issues:

Wireshark was updated to 2.4.9 (bsc#1094301, bsc#1106514).

Security issues fixed:

- CVE-2018-16058: Bluetooth AVDTP dissector crash (wnpa-sec-2018-44)
- CVE-2018-16056: Bluetooth Attribute Protocol dissector crash (wnpa-sec-2018-45)
- CVE-2018-16057: Radiotap dissector crash (wnpa-sec-2018-46)
- CVE-2018-11355: Fix RTCP dissector crash (bsc#1094301).
- CVE-2018-14370: IEEE 802.11 dissector crash (wnpa-sec-2018-43, bsc#1101802)
- CVE-2018-14368: Bazaar dissector infinite loop (wnpa-sec-2018-40, bsc#1101794)
- CVE-2018-11362: Fix LDSS dissector crash (bsc#1094301).
- CVE-2018-11361: Fix IEEE 802.11 dissector crash (bsc#1094301).
- CVE-2018-11360: Fix GSM A DTAP dissector crash (bsc#1094301).
- CVE-2018-14342: BGP dissector large loop (wnpa-sec-2018-34, bsc#1101777)
- CVE-2018-14343: ASN.1 BER dissector crash (wnpa-sec-2018-37, bsc#1101786)
- CVE-2018-14340: Multiple dissectors could crash (wnpa-sec-2018-36, bsc#1101804)
- CVE-2018-14341: DICOM dissector crash (wnpa-sec-2018-39, bsc#1101776)
- CVE-2018-11358: Fix Q.931 dissector crash (bsc#1094301).
- CVE-2018-14344: ISMP dissector crash (wnpa-sec-2018-35, bsc#1101788)
- CVE-2018-11359: Fix multiple dissectors crashs (bsc#1094301).
- CVE-2018-11356: Fix DNS dissector crash (bsc#1094301).
- CVE-2018-14339: MMSE dissector infinite loop (wnpa-sec-2018-38, bsc#1101810)
- CVE-2018-11357: Fix multiple dissectors that could consume excessive memory (bsc#1094301).
- CVE-2018-14367: CoAP dissector crash (wnpa-sec-2018-42, bsc#1101791)
- CVE-2018-11354: Fix IEEE 1905.1a dissector crash (bsc#1094301).
- CVE-2018-14369: HTTP2 dissector crash (wnpa-sec-2018-41, bsc#1101800)

Further bug fixes and updated protocol support as listed in:
  https://www.wireshark.org/docs/relnotes/wireshark-2.4.9.html


-----------------------------------------
Patch: SUSE-2018-2056
Released: Thu Sep 27 14:46:57 2018
Summary: Security update for smt, yast2-smt
Severity: important
References: 1006984,1006989,1037811,1097560,1097824,1103809,1103810,1104076,977043,CVE-2018-12470,CVE-2018-12471,CVE-2018-12472
Description:
This update for yast2-smt to 3.0.14 and smt to 3.0.37 fixes the following issues:

These security issues were fixed in SMT:

- CVE-2018-12471: Xml External Entity processing in the RegistrationSharing
  modules allowed to read arbitrary file read (bsc#1103809).
- CVE-2018-12470: SQL injection in RegistrationSharing module allows remote
  attackers to run arbitrary SQL statements (bsc#1103810).
- CVE-2018-12472: Authentication bypass in sibling check facilitated further
  attacks on SMT (bsc#1104076).

SUSE would like to thank Jake Miller for reporting these issues to us.

These non-security issues were fixed in SMT:

- Fix cron jobs randomization (bsc#1097560)
- Fix duplicate migration paths (bsc#1097824)

This non-security issue was fixed in yast2-smt:

- Remove cron job rescheduling (bsc#1097560)
- Added missing translation marks (bsc#1037811)
- Explicitly mention 'Organization Credentials' (fate#321759)
- Rearrange the SMT set-up dialog (bsc#977043)
- Make the Filter button default (bsc#1006984)
- Prevent exiting the repo selection dialog via hitting Enter in
  the repository filter (bsc#1006984)
- report when error occurs during repo mirroring (bsc#1006989)
- Use TextEntry-based filter for repos (fate#319777)


-----------------------------------------
Patch: SUSE-2018-2115
Released: Tue Oct  2 13:38:33 2018
Summary: Recommended update for ceph
Severity: moderate
References: 1100101,1104331,1105251,1107857
Description:
This update for ceph fixes the following issues:

- Syntax errors in the man page for 'ceph-bluestore-tool' (bsc#1100101)
- Configuring PCF is failing when configuring with AWS signature 4 (bsc#1105251)
- ceph-osd segfaults in safe_timer thread (bsc#1107857)
- luminous: mgr/MgrClient: Protect daemon_health_metrics (bsc#1104331)


-----------------------------------------
Patch: SUSE-2018-2117
Released: Tue Oct  2 16:30:51 2018
Summary: Security update for unzip
Severity: moderate
References: 1013992,1013993,1080074,910683,914442,950110,950111,CVE-2014-9636,CVE-2014-9913,CVE-2015-7696,CVE-2015-7697,CVE-2016-9844,CVE-2018-1000035
Description:
This update for unzip fixes the following security issues:

- CVE-2014-9913: Specially crafted zip files could trigger invalid memory
  writes possibly resulting in DoS or corruption (bsc#1013993)
- CVE-2015-7696: Specially crafted zip files with password protection could
  trigger a crash and lead to denial of service (bsc#950110)
- CVE-2015-7697: Specially crafted zip files could trigger an endless loop and
  lead to denial of service (bsc#950111)
- CVE-2016-9844: Specially crafted zip files could trigger invalid memory
  writes possibly resulting in DoS or corruption (bsc#1013992)
- CVE-2018-1000035: Prevent heap-based buffer overflow in the processing of
  password-protected archives that allowed an attacker to perform a denial of
  service or to possibly achieve code execution (bsc#1080074).
- CVE-2014-9636: Prevent denial of service (out-of-bounds read or write and
  crash) via an extra field with an uncompressed size smaller than the compressed
  field size in a zip archive that advertises STORED method compression
  (bsc#914442).

This non-security issue was fixed:

+- Allow processing of Windows zip64 archives (Windows archivers set
  total_disks field to 0 but per standard, valid values are 1 and higher)
  (bnc#910683)


-----------------------------------------
Patch: SUSE-2018-2121
Released: Tue Oct  2 16:50:36 2018
Summary: Security update for ghostscript
Severity: important
References: 1106171,1106172,1106173,1106195,1107410,1107411,1107412,1107413,1107420,1107421,1107422,1107423,1107426,1107581,1108027,1109105,CVE-2018-15908,CVE-2018-15909,CVE-2018-15910,CVE-2018-15911,CVE-2018-16509,CVE-2018-16510,CVE-2018-16511,CVE-2018-16513,CVE-2018-16539,CVE-2018-16540,CVE-2018-16541,CVE-2018-16542,CVE-2018-16543,CVE-2018-16585,CVE-2018-16802,CVE-2018-17183
Description:
This update for ghostscript to version 9.25 fixes the following issues:

These security issues were fixed:

- CVE-2018-17183: Remote attackers were be able to supply crafted PostScript to
  potentially overwrite or replace error handlers to inject code (bsc#1109105)
- CVE-2018-15909: Prevent type confusion using the .shfill operator that could
  have been used by attackers able to supply crafted PostScript files to crash
  the interpreter or potentially execute code (bsc#1106172).
- CVE-2018-15908: Prevent attackers that are able to supply malicious
  PostScript files to bypass .tempfile restrictions and write files
  (bsc#1106171).
- CVE-2018-15910: Prevent a type confusion in the LockDistillerParams parameter
  that could have been used to crash the interpreter or execute code
  (bsc#1106173).
- CVE-2018-15911: Prevent use uninitialized memory access in the aesdecode
  operator that could have been used to crash the interpreter or potentially
  execute code (bsc#1106195).
- CVE-2018-16513: Prevent a type confusion in the setcolor function that could
  have been used to crash the interpreter or possibly have unspecified other
  impact (bsc#1107412).
- CVE-2018-16509: Incorrect 'restoration of privilege' checking during handling
  of /invalidaccess exceptions could be have been used by attackers able to
  supply crafted PostScript to execute code using the 'pipe' instruction
  (bsc#1107410).
- CVE-2018-16510: Incorrect exec stack handling in the 'CS' and 'SC' PDF
  primitives could have been used by remote attackers able to supply crafted PDFs
  to crash the interpreter or possibly have unspecified other impact
  (bsc#1107411).
- CVE-2018-16542: Prevent attackers able to supply crafted PostScript files
  from using insufficient interpreter stack-size checking during error handling
  to crash the interpreter (bsc#1107413).
- CVE-2018-16541: Prevent attackers able to supply crafted PostScript files
  from using incorrect free logic in pagedevice replacement to crash the
  interpreter (bsc#1107421).
- CVE-2018-16540: Prevent use-after-free in copydevice handling that could have
  been used to crash the interpreter or possibly have unspecified other impact
  (bsc#1107420).
- CVE-2018-16539: Prevent attackers able to supply crafted PostScript files
  from using incorrect access checking in temp file handling to disclose contents
  of files on the system otherwise not readable (bsc#1107422).
- CVE-2018-16543: gssetresolution and gsgetresolution allowed attackers to have
  an unspecified impact (bsc#1107423).
- CVE-2018-16511: A type confusion in 'ztype' could have been used by remote
  attackers able to supply crafted PostScript to crash the interpreter or
  possibly have unspecified other impact (bsc#1107426).
- CVE-2018-16585: The .setdistillerkeys PostScript command was accepted even
  though it is not intended for use during document processing (e.g., after the
  startup phase). This lead to memory corruption, allowing remote attackers able
  to supply crafted PostScript to crash the interpreter or possibly have
  unspecified other impact (bsc#1107581).
- CVE-2018-16802: Incorrect 'restoration of privilege' checking when running
  out of stack during exception handling could have been used by attackers able
  to supply crafted PostScript to execute code using the 'pipe' instruction. This
  is due to an incomplete fix for CVE-2018-16509 (bsc#1108027).

These non-security issues were fixed:

* Fixes problems with argument handling, some unintended results of the
  security fixes to the SAFER file access restrictions (specifically accessing
  ICC profile files).
* Avoid that ps2epsi fails with 'Error: /undefined in --setpagedevice--'

For additional changes please check http://www.ghostscript.com/doc/9.25/News.htm
and the changes file of the package.
  

-----------------------------------------
Patch: SUSE-2018-2122
Released: Tue Oct  2 17:50:57 2018
Summary: Security update for mgetty
Severity: important
References: 1108752,1108756,1108757,1108761,1108762,CVE-2018-16741,CVE-2018-16742,CVE-2018-16743,CVE-2018-16744,CVE-2018-16745
Description:
This update for mgetty fixes the following security issues:

- CVE-2018-16741: The function do_activate() did not properly sanitize shell
  metacharacters to prevent command injection (bsc#1108752)
- CVE-2018-16745: The mail_to parameter was not sanitized, leading to a buffer
  overflow if long untrusted input reached it (bsc#1108756)
- CVE-2018-16744: The mail_to parameter was not sanitized, leading to command
  injection if untrusted input reached reach it (bsc#1108757)
- CVE-2018-16742: Prevent stack-based buffer overflow that could have been
  triggered via a command-line parameter (bsc#1108762)
- CVE-2018-16743: The command-line parameter username wsa passed unsanitized to
  strcpy(), which could have caused a stack-based buffer overflow (bsc#1108761)


-----------------------------------------
Patch: SUSE-2018-2126
Released: Tue Oct  2 21:15:06 2018
Summary: Recommended update for icewm
Severity: moderate
References: 1096917
Description:
This update for icewm fixes the following issues:

- Revert a previously applied fix to fix starting of polkit-gnome-authentication-agent-1
  in icewm. It is really not necessary in SLE-12. (bsc#1096917)


-----------------------------------------
Patch: SUSE-2018-2132
Released: Thu Oct  4 06:47:56 2018
Summary: Security update for openslp
Severity: important
References: 1090638,CVE-2017-17833
Description:
This update for openslp fixes the following issues:

- CVE-2017-17833: Prevent heap-related memory corruption issue which may have
  manifested itself as a denial-of-service or a remote code-execution
  vulnerability (bsc#1090638)
- Prevent out of bounds reads in message parsing


-----------------------------------------
Patch: SUSE-2018-2154
Released: Fri Oct  5 14:18:49 2018
Summary: Recommended update for libqt5-qtbase
Severity: low
References: 1057971,1108889
Description:
This update for libqt5-qtbase provides the following fixes:

- Fix crash with XLIB_SKIP_ARGB_VISUALS set (bsc#1057971)
- Avoid using the hardcoded resolution that libinput is giving as a real pixel delta
- Add patch to fix fails to load pixmap cursors on XRendur less system. (bsc#1108889)
- Add patch to fix crash with XLIB_SKIP_ARGB_VISUALS set. (bsc#1057971, kde#384540)
- Add patch to avoid using the hardcoded resolution that libinput is giving 
  as a real pixel delta (QTBUG-59261).


-----------------------------------------
Patch: SUSE-2018-2162
Released: Fri Oct  5 14:46:53 2018
Summary: Recommended update for krb5
Severity: moderate
References: 1088921
Description:
This update for krb5 provides the following fix:

- Resolve krb5 GSS credentials immediately if the application requests the lifetime.
  (bsc#1088921)


-----------------------------------------
Patch: SUSE-2018-2164
Released: Fri Oct  5 15:22:20 2018
Summary: Security update for texlive
Severity: important
References: 1109673,CVE-2018-17407
Description:
This update for texlive fixes the following issue:

- CVE-2018-17407: Prevent buffer overflow when handling of Type 1 fonts allowed
  arbitrary code execution when a malicious font was loaded by one of the
  vulnerable tools: pdflatex, pdftex, dvips, or luatex (bsc#1109673)


-----------------------------------------
Patch: SUSE-2018-2168
Released: Mon Oct  8 07:42:43 2018
Summary: Security update for java-1_8_0-openjdk
Severity: important
References: 1101644,1101645,1101651,1101656,1106812,CVE-2018-2938,CVE-2018-2940,CVE-2018-2952,CVE-2018-2973,CVE-2018-3639
Description:
This update for java-1_8_0-openjdk to the jdk8u181 (icedtea 3.9.0) release fixes the following issues:

These security issues were fixed:

- CVE-2018-2938: Difficult to exploit vulnerability allowed unauthenticated
  attacker with network access via multiple protocols to compromise Java SE.
  Successful attacks of this vulnerability can result in takeover of Java SE
  (bsc#1101644).
- CVE-2018-2940: Vulnerability in subcomponent: Libraries. Easily exploitable
  vulnerability allowed unauthenticated attacker with network access via multiple
  protocols to compromise Java SE, Java SE Embedded. Successful attacks require
  human interaction from a person other than the attacker. Successful attacks of
  this vulnerability can result in unauthorized read access to a subset of Java
  SE, Java SE Embedded accessible data (bsc#1101645)
- CVE-2018-2952: Vulnerability in subcomponent: Concurrency. Difficult to
  exploit vulnerability allowed unauthenticated attacker with network access via
  multiple protocols to compromise Java SE, Java SE Embedded, JRockit. Successful
  attacks of this vulnerability can result in unauthorized ability to cause a
  partial denial of service (partial DOS) of Java SE, Java SE Embedded, JRockit
  (bsc#1101651)
- CVE-2018-2973: Vulnerability in subcomponent: JSSE. Difficult to exploit
  vulnerability allowed unauthenticated attacker with network access via SSL/TLS
  to compromise Java SE, Java SE Embedded. Successful attacks of this
  vulnerability can result in unauthorized creation, deletion or modification
  access to critical data or all Java SE, Java SE Embedded accessible data
  (bsc#1101656)

These non-security issues were fixed:

- Improve desktop file usage
- Better Internet address support
- speculative traps break when classes are redefined
- sun/security/pkcs11/ec/ReadCertificates.java fails intermittently
- Clean up code that saves the previous versions of redefined classes
- Prevent SIGSEGV in ReceiverTypeData::clean_weak_klass_links
- RedefineClasses() tests fail assert(((Metadata*)obj)->is_valid()) failed: obj is valid
- NMT is not enabled if NMT option is specified after class path specifiers
- EndEntityChecker should not process custom extensions after PKIX validation
- SupportedDSAParamGen.java failed with timeout
- Montgomery multiply intrinsic should use correct name
- When determining the ciphersuite lists, there is no debug output for disabled suites.
- sun/security/mscapi/SignedObjectChain.java fails on Windows
- On Windows Swing changes keyboard layout on a window activation
- IfNode::range_check_trap_proj() should handler dying subgraph with single if proj
- Even better Internet address support
- Newlines in JAXB string values of SOAP-requests are escaped to '&#xa;'
- TestFlushableGZIPOutputStream failing with IndexOutOfBoundsException
- Unable to use JDWP API in JDK 8 to debug JDK 9 VM
- Hotspot crash on Cassandra 3.11.1 startup with libnuma 2.0.3
- Performance drop with Java JDK 1.8.0_162-b32
- Upgrade time-zone data to tzdata2018d
- Fix potential crash in BufImg_SetupICM
- JDK 8u181 l10n resource file update
- Remove debug print statements from RMI fix
- (tz) Upgrade time-zone data to tzdata2018e
- ObjectInputStream filterCheck method throws NullPointerException
- adjust reflective access checks


-----------------------------------------
Patch: SUSE-2018-2169
Released: Mon Oct  8 07:43:42 2018
Summary: Security update for qpdf
Severity: moderate
References: 1040311,1040312,1040313,1050577,1050578,1050579,1050581,1055960,CVE-2017-11624,CVE-2017-11625,CVE-2017-11626,CVE-2017-11627,CVE-2017-12595,CVE-2017-9208,CVE-2017-9209,CVE-2017-9210
Description:

  
This update for qpdf fixes the following issues:

qpdf was updated to 7.1.1.

Security issues fixed:

- CVE-2017-11627: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050577).
- CVE-2017-11625: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050579).
- CVE-2017-11626: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050578).
- CVE-2017-11624: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050581).
- CVE-2017-12595: Stack overflow when processing deeply nested arrays and dictionaries (bsc#1055960).
- CVE-2017-9209: Remote attackers can cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document (bsc#1040312).
- CVE-2017-9210: Remote attackers can cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document (bsc#1040313).
- CVE-2017-9208: Remote attackers can cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document (bsc#1040311).

  * Check release notes for detailed bug fixes.
  * http://qpdf.sourceforge.net/files/qpdf-manual.html#ref.release-notes



-----------------------------------------
Patch: SUSE-2018-2172
Released: Mon Oct  8 10:31:41 2018
Summary: Security update for soundtouch
Severity: moderate
References: 1103676,CVE-2018-1000223
Description:
This update for soundtouch fixes the following security issue:

- CVE-2018-1000223: Prevent buffer overflow in WavInFile::readHeaderBlock()
  that could have resulted in arbitrary code execution when opening maliocius
  file in soundstretch utility (bsc#1103676)


-----------------------------------------
Patch: SUSE-2018-2176
Released: Mon Oct  8 17:35:12 2018
Summary: Security update for postgresql10
Severity: moderate
References: 1108308
Description:

This update for brings postgresql10 version 10.5 to SUSE Linux Enterprise 12 SP3. (FATE#325659 bnc#1108308)

This release marks the change of the versioning scheme for PostgreSQL
to a 'x.y' format. This means the next minor releases of PostgreSQL
will be 10.1, 10.2, ... and the next major release will be 11.

* Logical Replication

Logical replication extends the current replication features of
PostgreSQL with the ability to send modifications on a per-database
and per-table level to different PostgreSQL databases. Users can now
fine-tune the data replicated to various database clusters and will
have the ability to perform zero-downtime upgrades to future major
PostgreSQL versions.

* Declarative Table Partitioning

Table partitioning has existed for years in PostgreSQL but required a
user to maintain a nontrivial set of rules and triggers for the
partitioning to work. PostgreSQL 10 introduces a table partitioning
syntax that lets users easily create and maintain range and list
partitioned tables.

* Improved Query Parallelism

PostgreSQL 10 provides better support for parallelized queries by
allowing more parts of the query execution process to be
parallelized. Improvements include additional types of data scans that
are parallelized as well as optimizations when the data is recombined,
such as pre-sorting. These enhancements allow results to be returned
more quickly.

* Quorum Commit for Synchronous Replication

PostgreSQL 10 introduces quorum commit for synchronous replication,
which allows for flexibility in how a primary database receives
acknowledgement that changes were successfully written to remote
replicas.



-----------------------------------------
Patch: SUSE-2018-2178
Released: Tue Oct  9 09:00:27 2018
Summary: Recommended update for at
Severity: low
References: 879402
Description:
This update for at fixes the following issues:

- introduced -o <timeformat> switch for atq (bsc#879402)


-----------------------------------------
Patch: SUSE-2018-2181
Released: Tue Oct  9 11:08:20 2018
Summary: Security update for libxml2
Severity: moderate
References: 1088279,1088601,1102046,1105166,CVE-2017-18258,CVE-2018-14404,CVE-2018-14567,CVE-2018-9251
Description:
This update for libxml2 fixes the following security issues:

- CVE-2018-9251: The xz_decomp function allowed remote attackers to cause a
  denial of service (infinite loop) via a crafted XML file that triggers
  LZMA_MEMLIMIT_ERROR, as demonstrated by xmllint (bsc#1088279).
- CVE-2018-14567: Prevent denial of service (infinite loop) via a crafted XML
  file that triggers LZMA_MEMLIMIT_ERROR, as demonstrated by xmllint
  (bsc#1105166).
- CVE-2018-14404: Prevent NULL pointer dereference in the xmlXPathCompOpEval()
  function when parsing an invalid XPath expression in the XPATH_OP_AND or
  XPATH_OP_OR case leading to a denial of service attack (bsc#1102046).
- CVE-2017-18258: The xz_head function allowed remote attackers to cause a
  denial of service (memory consumption) via a crafted LZMA file, because the
  decoder functionality did not restrict memory usage to what is required for a
  legitimate file (bsc#1088601).


-----------------------------------------
Patch: SUSE-2018-2195
Released: Wed Oct 10 17:43:48 2018
Summary: Security update for ImageMagick
Severity: moderate
References: 1050129,1105592,1106989,1107604,1107609,1107612,1107616,1107619,1108282,1108283,CVE-2017-11532,CVE-2018-16413,CVE-2018-16640,CVE-2018-16642,CVE-2018-16643,CVE-2018-16644,CVE-2018-16645,CVE-2018-16749,CVE-2018-16750
Description:
This update for ImageMagick fixes the following security issues:

- CVE-2017-11532: Prevent a memory leak vulnerability in the WriteMPCImage()
  function in coders/mpc.c via a crafted file allowing for DoS (bsc#1050129)
- CVE-2018-16750: Prevent memory leak in the formatIPTCfromBuffer function
  (bsc#1108283)
- CVE-2018-16749: Added missing NULL check in ReadOneJNGImage that allowed an
  attacker to cause a denial of service (WriteBlob assertion failure and
  application exit) via a crafted file (bsc#1108282)
- CVE-2018-16642: The function InsertRow allowed remote attackers to cause a
  denial of service via a crafted image file due to an out-of-bounds write
  (bsc#1107616)
- CVE-2018-16640: Prevent memory leak in the function ReadOneJNGImage
  (bsc#1107619)
- CVE-2018-16643: The functions ReadDCMImage, ReadPWPImage, ReadCALSImage, and
  ReadPICTImage did check the return value of the fputc function, which allowed
  remote attackers to cause a denial of service via a crafted image file
  (bsc#1107612)
- CVE-2018-16644: Added missing check for length in the functions ReadDCMImage
  and ReadPICTImage, which allowed remote attackers to cause a denial of service
  via a crafted image (bsc#1107609)
- CVE-2018-16645: Prevent excessive memory allocation issue in the functions
  ReadBMPImage and ReadDIBImage, which allowed remote attackers to cause a denial
  of service via a crafted image file (bsc#1107604)
- CVE-2018-16413: Prevent heap-based buffer over-read in the PushShortPixel
  function leading to DoS (bsc#1106989)

This update also relaxes the restrictions of use of Postscript like formats to
'write' only. (bsc#1105592)


-----------------------------------------
Patch: SUSE-2018-2196
Released: Thu Oct 11 07:45:16 2018
Summary: Optional update for gcc8
Severity: low
References: 1084812,1084842,1087550,1094222,1102564
Description:

The GNU Compiler GCC 8 is being added to the Toolchain Module by this
update.

The update also supplies gcc8 compatible libstdc++, libgcc_s1 and other
gcc derived libraries for the base products of SUSE Linux Enterprise 12.

Various optimizers have been improved in GCC 8, several of bugs fixed,
quite some new warnings added and the error pin-pointing and
fix-suggestions have been greatly improved.

The GNU Compiler page for GCC 8 contains a summary of all the changes that
have happened:

        https://gcc.gnu.org/gcc-8/changes.html

Also changes needed or common pitfalls when porting software are described on:

        https://gcc.gnu.org/gcc-8/porting_to.html




-----------------------------------------
Patch: SUSE-2018-2202
Released: Thu Oct 11 20:46:27 2018
Summary: Security update for libX11 and libxcb
Severity: moderate
References: 1094327,1102062,1102068,1102073,CVE-2018-14598,CVE-2018-14599,CVE-2018-14600
Description:
This update for libX11 and libxcb fixes the following issue:

libX11:

These security issues were fixed:

- CVE-2018-14599: The function XListExtensions was vulnerable to an off-by-one
  error caused by malicious server responses, leading to DoS or possibly
  unspecified other impact (bsc#1102062).
- CVE-2018-14600: The function XListExtensions interpreted a variable as signed
  instead of unsigned, resulting in an out-of-bounds write (of up to 128 bytes),
  leading to DoS or remote code execution (bsc#1102068).
- CVE-2018-14598: A malicious server could have sent a reply in which the first
  string overflows, causing a variable to be set to NULL that will be freed later
  on, leading to DoS (segmentation fault) (bsc#1102073).

This non-security issue was fixed:

- Make use of the new 64-bit sequence number API in XCB 1.11.1 to avoid the 32-bit
  sequence number wrap in libX11 (bsc#1094327).

libxcb:

- Expose 64-bit sequence number from XCB API so that Xlib and others can use it even
  on 32-bit environment. (bsc#1094327)


-----------------------------------------
Patch: SUSE-2018-2216
Released: Fri Oct 12 15:06:30 2018
Summary: Recommended update for libwacom
Severity: low
References: 1043185
Description:
This update for libwacom provides the following fixes:

- Add support for Wacom Intuos 2 series tablets so that they are recognized in
  gnome-control-center (bsc#1043185)


-----------------------------------------
Patch: SUSE-2018-2217
Released: Fri Oct 12 15:07:24 2018
Summary: Recommended update for bash
Severity: moderate
References: 1094121,1107430
Description:
This update for bash provides the following fixes:

- Fix an inconsistent behaviour regarding expansion of here strings. (bsc#1094121)
- Fix mis-matching of null string with '*' pattern. (bsc#1107430)
- Fix a crash when the lastpipe option is enabled.
- Fix a typo that was preventing the `compat42' shopt option from working as intended.
- Help the shell to process any pending traps at redirection.
- Fix a crashe due to incorrect conversion from an indexed to associative array.
- Avoid the expansion of escape sequences in HOSTNAME in prompt.
- Avoid `xtrace' attack over $PS4.


-----------------------------------------
Patch: SUSE-2018-2248
Released: Tue Oct 16 14:25:25 2018
Summary: Recommended update for rsyslog
Severity: moderate
References: 1084682,901418
Description:
This update for rsyslog provides the following fixes:

- Fix path to extra apparmor profiles. (bsc#901418)
- omfile: Assure proper logfile flush when using a configuration template that configures
  messages to be written to multiple files, otherwise only the last file would be flushed.
  (bsc#1084682)


-----------------------------------------
Patch: SUSE-2018-2287
Released: Wed Oct 17 07:06:26 2018
Summary: Security update for ImageMagick
Severity: moderate
References: 1098545,1098546,1110746,1110747,1111069,1111072,CVE-2017-13058,CVE-2018-12599,CVE-2018-12600,CVE-2018-17965,CVE-2018-17966,CVE-2018-18016,CVE-2018-18024
Description:
This update for ImageMagick fixes the following issues:

Security issues fixed:

- CVE-2018-18024: Fixed an infinite loop in the ReadBMPImage function of
  the coders/bmp.c file. Remote attackers could leverage this vulnerability
  to cause a denial of service via a crafted bmp file. (bsc#1111069)
- CVE-2018-18016: Fixed a memory leak in WritePCXImage (bsc#1111072).
- CVE-2018-17965: Fixed a memory leak in WriteSGIImage (bsc#1110747).
- CVE-2018-17966: Fixed a memory leak in WritePDBImage (bsc#1110746).
- CVE-2018-12600: ReadDIBImage and WriteDIBImage allowed attackers to
  cause an out of bounds write via a crafted file. (bsc#1098545)
- CVE-2018-12599: ReadBMPImage and WriteBMPImage allowed attackers to
  cause an out of bounds write via a crafted file. (bsc#1098546)


-----------------------------------------
Patch: SUSE-2018-2296
Released: Wed Oct 17 14:49:12 2018
Summary: Recommended update for hwinfo
Severity: moderate
References: 1072450,1105003
Description:
This update for hwinfo provides the following fixes:

- Try a more aggressive approach to catch all usb platform controllers. (bsc#1072450)
- Detect ARM HISILICON SAS controller. (bsc#1072450)
- Check for vmware only when running in a vm. (bsc#1105003)
- Add support for RISC-V.


-----------------------------------------
Patch: SUSE-2018-2297
Released: Wed Oct 17 16:56:44 2018
Summary: Security update for binutils
Severity: moderate
References: 1029907,1029908,1029909,1030296,1030297,1030298,1030584,1030585,1030588,1030589,1031590,1031593,1031595,1031638,1031644,1031656,1037052,1037057,1037061,1037066,1037273,1044891,1044897,1044901,1044909,1044925,1044927,1065643,1065689,1065693,1068640,1068643,1068887,1068888,1068950,1069176,1069202,1074741,1077745,1079103,1079741,1080556,1081527,1083528,1083532,1085784,1086608,1086784,1086786,1086788,1090997,1091015,1091365,1091368,CVE-2014-9939,CVE-2017-15938,CVE-2017-15939,CVE-2017-15996,CVE-2017-16826,CVE-2017-16827,CVE-2017-16828,CVE-2017-16829,CVE-2017-16830,CVE-2017-16831,CVE-2017-16832,CVE-2017-6965,CVE-2017-6966,CVE-2017-6969,CVE-2017-7209,CVE-2017-7210,CVE-2017-7223,CVE-2017-7224,CVE-2017-7225,CVE-2017-7226,CVE-2017-7299,CVE-2017-7300,CVE-2017-7301,CVE-2017-7302,CVE-2017-7303,CVE-2017-7304,CVE-2017-8392,CVE-2017-8393,CVE-2017-8394,CVE-2017-8396,CVE-2017-8421,CVE-2017-9746,CVE-2017-9747,CVE-2017-9748,CVE-2017-9750,CVE-2017-9755,CVE-2017-9756,CVE-2018-10372,CVE-2018-10373,CVE-2018-10534,CVE-2018-10535,CVE-2018-6323,CVE-2018-6543,CVE-2018-6759,CVE-2018-6872,CVE-2018-7208,CVE-2018-7568,CVE-2018-7569,CVE-2018-7570,CVE-2018-7642,CVE-2018-7643,CVE-2018-8945
Description:
This update for binutils to 2.31 fixes the following issues:

These security issues were fixed:

- CVE-2017-15996: readelf allowed remote attackers to cause a denial of service
  (excessive memory allocation) or possibly have unspecified other impact via a
  crafted ELF file that triggered a buffer overflow on fuzzed archive header
  (bsc#1065643).
- CVE-2017-15939: Binary File Descriptor (BFD) library (aka libbfd) mishandled
  NULL files in a .debug_line file table, which allowed remote attackers to cause
  a denial of service (NULL pointer dereference and application crash) via a
  crafted ELF file, related to concat_filename (bsc#1065689).
- CVE-2017-15938: the Binary File Descriptor (BFD) library (aka libbfd)
  miscalculated DW_FORM_ref_addr die refs in the case of a relocatable object
  file, which allowed remote attackers to cause a denial of service
  (find_abstract_instance_name invalid memory read, segmentation fault, and
  application crash) (bsc#1065693).
- CVE-2017-16826: The coff_slurp_line_table function the Binary File Descriptor
  (BFD) library (aka libbfd) allowed remote attackers to cause a denial of
  service (invalid memory access and application crash) or possibly have
  unspecified other impact via a crafted PE file (bsc#1068640).
- CVE-2017-16832: The pe_bfd_read_buildid function in the Binary File
  Descriptor (BFD) library (aka libbfd) did not validate size and offset values
  in the data dictionary, which allowed remote attackers to cause a denial of
  service (segmentation violation and application crash) or possibly have
  unspecified other impact via a crafted PE file (bsc#1068643).
- CVE-2017-16831: Binary File Descriptor (BFD) library (aka libbfd) did not
  validate the symbol count, which allowed remote attackers to cause a denial of
  service (integer overflow and application crash, or excessive memory
  allocation) or possibly have unspecified other impact via a crafted PE file
  (bsc#1068887).
- CVE-2017-16830: The print_gnu_property_note function did not have
  integer-overflow protection on 32-bit platforms, which allowed remote attackers
  to cause a denial of service (segmentation violation and application crash) or
  possibly have unspecified other impact via a crafted ELF file (bsc#1068888).
- CVE-2017-16829: The _bfd_elf_parse_gnu_properties function in the Binary File
  Descriptor (BFD) library (aka libbfd) did not prevent negative pointers, which
  allowed remote attackers to cause a denial of service (out-of-bounds read and
  application crash) or possibly have unspecified other impact via a crafted ELF
  file (bsc#1068950).
- CVE-2017-16828: The display_debug_frames function allowed remote attackers to
  cause a denial of service (integer overflow and heap-based buffer over-read,
  and application crash) or possibly have unspecified other impact via a crafted
  ELF file (bsc#1069176).
- CVE-2017-16827: The aout_get_external_symbols function in the Binary File
  Descriptor (BFD) library (aka libbfd) allowed remote attackers to cause a
  denial of service (slurp_symtab invalid free and application crash) or possibly
  have unspecified other impact via a crafted ELF file (bsc#1069202).
- CVE-2018-6323: The elf_object_p function in the Binary File Descriptor (BFD)
  library (aka libbfd) had an unsigned integer overflow because bfd_size_type
  multiplication is not used. A crafted ELF file allowed remote attackers to
  cause a denial of service (application crash) or possibly have unspecified
  other impact (bsc#1077745).
- CVE-2018-6543: Prevent integer overflow in the function
  load_specific_debug_section() which resulted in `malloc()` with 0 size. A
  crafted ELF file allowed remote attackers to cause a denial of service
  (application crash) or possibly have unspecified other impact (bsc#1079103).
- CVE-2018-6759: The bfd_get_debug_link_info_1 function in the Binary File
  Descriptor (BFD) library (aka libbfd) had an unchecked strnlen operation.
  Remote attackers could have leveraged this vulnerability to cause a denial of
  service (segmentation fault) via a crafted ELF file (bsc#1079741).
- CVE-2018-6872: The elf_parse_notes function in the Binary File Descriptor
  (BFD) library (aka libbfd) allowed remote attackers to cause a denial of
  service (out-of-bounds read and segmentation violation) via a note with a large
  alignment (bsc#1080556).
- CVE-2018-7208: In the coff_pointerize_aux function in the Binary File
  Descriptor (BFD) library (aka libbfd) an index was not validated, which allowed
  remote attackers to cause a denial of service (segmentation fault) or possibly
  have unspecified other impact via a crafted file, as demonstrated by objcopy of
  a COFF object (bsc#1081527).
- CVE-2018-7570: The assign_file_positions_for_non_load_sections function in
  the Binary File Descriptor (BFD) library (aka libbfd) allowed remote attackers
  to cause a denial of service (NULL pointer dereference and application crash)
  via an ELF file with a RELRO segment that lacks a matching LOAD segment, as
  demonstrated by objcopy (bsc#1083528).
- CVE-2018-7569: The Binary File Descriptor (BFD) library (aka libbfd) allowed
  remote attackers to cause a denial of service (integer underflow or overflow,
  and application crash) via an ELF file with a corrupt DWARF FORM block, as
  demonstrated by nm (bsc#1083532).
- CVE-2018-8945: The bfd_section_from_shdr function in the Binary File
  Descriptor (BFD) library (aka libbfd) allowed remote attackers to cause a
  denial of service (segmentation fault) via a large attribute section
  (bsc#1086608).
- CVE-2018-7643: The display_debug_ranges function allowed remote attackers to
  cause a denial of service (integer overflow and application crash) or possibly
  have unspecified other impact via a crafted ELF file, as demonstrated by
  objdump (bsc#1086784).
- CVE-2018-7642: The swap_std_reloc_in function in the Binary File Descriptor
  (BFD) library (aka libbfd) allowed remote attackers to cause a denial of
  service (aout_32_swap_std_reloc_out NULL pointer dereference and application
  crash) via a crafted ELF file, as demonstrated by objcopy (bsc#1086786).
- CVE-2018-7568: The parse_die function in the Binary File Descriptor (BFD)
  library (aka libbfd) allowed remote attackers to cause a denial of service
  (integer overflow and application crash) via an ELF file with corrupt dwarf1
  debug information, as demonstrated by nm (bsc#1086788).
- CVE-2018-10373: concat_filename in the Binary File Descriptor (BFD) library
  (aka libbfd) allowed remote attackers to cause a denial of service (NULL
  pointer dereference and application crash) via a crafted binary file, as
  demonstrated by nm-new (bsc#1090997).
- CVE-2018-10372: process_cu_tu_index allowed remote attackers to cause a
  denial of service (heap-based buffer over-read and application crash) via a
  crafted binary file, as demonstrated by readelf (bsc#1091015).
- CVE-2018-10535: The ignore_section_sym function in the Binary File Descriptor
  (BFD) library (aka libbfd) did not validate the output_section pointer in the
  case of a symtab entry with a 'SECTION' type that has a '0' value, which
  allowed remote attackers to cause a denial of service (NULL pointer dereference
  and application crash) via a crafted file, as demonstrated by objcopy
  (bsc#1091365).
- CVE-2018-10534: The _bfd_XX_bfd_copy_private_bfd_data_common function in the
  Binary File Descriptor (BFD) library (aka libbfd) processesed a negative Data
  Directory size with an unbounded loop that increased the value of
  (external_IMAGE_DEBUG_DIRECTORY) *edd so that the address exceeded its own
  memory region, resulting in an out-of-bounds memory write, as demonstrated by
  objcopy copying private info with _bfd_pex64_bfd_copy_private_bfd_data_common
  in pex64igen.c (bsc#1091368).

These non-security issues were fixed:

- The AArch64 port now supports showing disassembly notes which are emitted
  when inconsistencies are found with the instruction that may result in the
  instruction being invalid. These can be turned on with the option -M notes
  to objdump.
- The AArch64 port now emits warnings when a combination of an instruction and
  a named register could be invalid.
- Added O modifier to ar to display member offsets inside an archive
- The ADR and ADRL pseudo-instructions supported by the ARM assembler
  now only set the bottom bit of the address of thumb function symbols
  if the -mthumb-interwork command line option is active.
- Add --generate-missing-build-notes=[yes|no] option to create (or not) GNU
  Build Attribute notes if none are present in the input sources.  Add a
  --enable-generate-build-notes=[yes|no] configure time option to set the
  default behaviour.  Set the default if the configure option is not used
  to 'no'.
- Remove -mold-gcc command-line option for x86 targets.
- Add -O[2|s] command-line options to x86 assembler to enable alternate
  shorter instruction encoding.
- Add support for .nops directive.  It is currently supported only for
  x86 targets.
- Speed up direct linking with DLLs for Cygwin and Mingw targets.
- Add a configure option --enable-separate-code to decide whether
  -z separate-code should be enabled in ELF linker by default.  Default
  to yes for Linux/x86 targets. Note that -z separate-code can increase
  disk and memory size.
- RISC-V: Fix symbol address problem with versioned symbols 
- Restore riscv64-elf cross prefix via symlinks
- RISC-V: Don't enable relaxation in relocatable link
- Prevent linking faiures on i386 with assertion (bsc#1085784)
- Fix symbol size bug when relaxation deletes bytes
- Add --debug-dump=links option to readelf and --dwarf=links option to objdump
  which displays the contents of any .gnu_debuglink or .gnu_debugaltlink
  sections.
  Add a --debug-dump=follow-links option to readelf and a --dwarf=follow-links
  option to objdump which causes indirect links into separate debug info files
  to be followed when dumping other DWARF sections.
- Add support for loaction views in DWARF debug line information.
- Add -z separate-code to generate separate code PT_LOAD segment.
- Add '-z undefs' command line option as the inverse of the '-z defs' option.
- Add -z globalaudit command line option to force audit libraries to be run
  for every dynamic object loaded by an executable - provided that the loader
  supports this functionality.
- Tighten linker script grammar around file name specifiers to prevent the use
  of SORT_BY_ALIGNMENT and SORT_BY_INIT_PRIORITY on filenames.  These would
  previously be accepted but had no effect.
- The EXCLUDE_FILE directive can now be placed within any SORT_* directive
  within input section lists.
- Fix linker relaxation with --wrap
- Add arm-none-eabi symlinks (bsc#1074741)

Former updates of binutils also fixed the following security issues, for which
there was not CVE assigned at the time the update was released or no mapping
between code change and CVE existed:

- CVE-2014-9939: Prevent stack buffer overflow when printing bad bytes in Intel
  Hex objects (bsc#1030296).
- CVE-2017-7225: The find_nearest_line function in addr2line did not handle the
  case where the main file name and the directory name are both empty, triggering
  a NULL pointer dereference and an invalid write, and leading to a program crash
  (bsc#1030585).
- CVE-2017-7224: The find_nearest_line function in objdump was vulnerable to an
  invalid write (of size 1) while disassembling a corrupt binary that contains an
  empty function name, leading to a program crash (bsc#1030588).
- CVE-2017-7223: GNU assembler in was vulnerable to a global buffer overflow
  (of size 1) while attempting to unget an EOF character from the input stream,
  potentially leading to a program crash (bsc#1030589).
- CVE-2017-7226: The pe_ILF_object_p function in the Binary File Descriptor
  (BFD) library (aka libbfd) was vulnerable to a heap-based buffer over-read of
  size 4049 because it used the strlen function instead of strnlen, leading to
  program crashes in several utilities such as addr2line, size, and strings. It
  could lead to information disclosure as well (bsc#1030584).
- CVE-2017-7299: The Binary File Descriptor (BFD) library (aka libbfd) had an
  invalid read (of size 8) because the code to emit relocs (bfd_elf_final_link
  function in bfd/elflink.c) did not check the format of the input file trying to
  read the ELF reloc section header. The vulnerability leads to a GNU linker (ld)
  program crash (bsc#1031644).
- CVE-2017-7300: The Binary File Descriptor (BFD) library (aka libbfd) had an
  aout_link_add_symbols function in bfd/aoutx.h that is vulnerable to a
  heap-based buffer over-read (off-by-one) because of an incomplete check for
  invalid string offsets while loading symbols, leading to a GNU linker (ld)
  program crash (bsc#1031656).
- CVE-2017-7302: The Binary File Descriptor (BFD) library (aka libbfd) had a
  swap_std_reloc_out function in bfd/aoutx.h that is vulnerable to an invalid
  read (of size 4) because of missing checks for relocs that could not be
  recognised. This vulnerability caused Binutils utilities like strip to crash
  (bsc#1031595).
- CVE-2017-7303: The Binary File Descriptor (BFD) library (aka libbfd) was
  vulnerable to an invalid read (of size 4) because of missing a check (in the
  find_link function) for null headers attempting to match them. This
  vulnerability caused Binutils utilities like strip to crash (bsc#1031593).
- CVE-2017-7301: The Binary File Descriptor (BFD) library (aka libbfd) had an
  aout_link_add_symbols function in bfd/aoutx.h that has an off-by-one
  vulnerability because it did not carefully check the string offset. The
  vulnerability could lead to a GNU linker (ld) program crash (bsc#1031638).
- CVE-2017-7304: The Binary File Descriptor (BFD) library (aka libbfd) was
  vulnerable to an invalid read (of size 8) because of missing a check (in the
  copy_special_section_fields function) for an invalid sh_link field attempting
  to follow it. This vulnerability caused Binutils utilities like strip to crash
  (bsc#1031590).
- CVE-2017-8392: The Binary File Descriptor (BFD) library (aka libbfd) was
  vulnerable to an invalid read of size 8 because of missing a check to determine
  whether symbols are NULL in the _bfd_dwarf2_find_nearest_line function. This
  vulnerability caused programs that conduct an analysis of binary programs using
  the libbfd library, such as objdump, to crash (bsc#1037052).
- CVE-2017-8393: The Binary File Descriptor (BFD) library (aka libbfd) was
  vulnerable to a global buffer over-read error because of an assumption made by
  code that runs for objcopy and strip, that SHT_REL/SHR_RELA sections are always
  named starting with a .rel/.rela prefix. This vulnerability caused programs
  that conduct an analysis of binary programs using the libbfd library, such as
  objcopy and strip, to crash (bsc#1037057).
- CVE-2017-8394: The Binary File Descriptor (BFD) library (aka libbfd) was
  vulnerable to an invalid read of size 4 due to NULL pointer dereferencing of
  _bfd_elf_large_com_section. This vulnerability caused programs that conduct an
  analysis of binary programs using the libbfd library, such as objcopy, to crash
  (bsc#1037061).
- CVE-2017-8396: The Binary File Descriptor (BFD) library (aka libbfd) was
  vulnerable to an invalid read of size 1 because the existing reloc offset range
  tests didn't catch small negative offsets less than the size of the reloc
  field. This vulnerability caused programs that conduct an analysis of binary
  programs using the libbfd library, such as objdump, to crash (bsc#1037066).
- CVE-2017-8421: The function coff_set_alignment_hook in Binary File Descriptor
  (BFD) library (aka libbfd) had a memory leak vulnerability which can cause
  memory exhaustion in objdump via a crafted PE file (bsc#1037273).
- CVE-2017-9746: The disassemble_bytes function in objdump.c allowed remote
  attackers to cause a denial of service (buffer overflow and application crash)
  or possibly have unspecified other impact via a crafted binary file, as
  demonstrated by mishandling of rae insns printing for this file during 'objdump
  -D' execution (bsc#1044891).
- CVE-2017-9747: The ieee_archive_p function in the Binary File Descriptor
  (BFD) library (aka libbfd) might have allowed remote attackers to cause a
  denial of service (buffer overflow and application crash) or possibly have
  unspecified other impact via a crafted binary file, as demonstrated by
  mishandling of this file during 'objdump -D' execution (bsc#1044897).
- CVE-2017-9748: The ieee_object_p function in the Binary File Descriptor (BFD)
  library (aka libbfd) might have allowed remote attackers to cause a denial of
  service (buffer overflow and application crash) or possibly have unspecified
  other impact via a crafted binary file, as demonstrated by mishandling of this
  file during 'objdump -D' execution (bsc#1044901).
- CVE-2017-9750: opcodes/rx-decode.opc lacked bounds checks for certain scale
  arrays, which allowed remote attackers to cause a denial of service (buffer
  overflow and application crash) or possibly have unspecified other impact via a
  crafted binary file, as demonstrated by mishandling of this file during
  'objdump -D' execution (bsc#1044909).
- CVE-2017-9755: Not considering the the number of registers for bnd mode
  allowed remote attackers to cause a denial of service (buffer overflow and
  application crash) or possibly have unspecified other impact via a crafted
  binary file, as demonstrated by mishandling of this file during 'objdump -D'
  execution (bsc#1044925).
- CVE-2017-9756: The aarch64_ext_ldst_reglist function allowed remote attackers
  to cause a denial of service (buffer overflow and application crash) or
  possibly have unspecified other impact via a crafted binary file, as
  demonstrated by mishandling of this file during 'objdump -D' execution
  (bsc#1044927).
- CVE-2017-7209: The dump_section_as_bytes function in readelf accessed a NULL
  pointer while reading section contents in a corrupt binary, leading to a
  program crash (bsc#1030298).
- CVE-2017-6965: readelf wrote to illegal addresses while processing corrupt
  input files containing symbol-difference relocations, leading to a heap-based
  buffer overflow (bsc#1029909).
- CVE-2017-6966: readelf had a use-after-free (specifically read-after-free)
  error while processing multiple, relocated sections in an MSP430 binary. This
  is caused by mishandling of an invalid symbol index, and mishandling of state
  across invocations (bsc#1029908).
- CVE-2017-6969: readelf was vulnerable to a heap-based buffer over-read while
  processing corrupt RL78 binaries. The vulnerability can trigger program
  crashes. It may lead to an information leak as well (bsc#1029907).
- CVE-2017-7210: objdump was vulnerable to multiple heap-based buffer
  over-reads (of size 1 and size 8) while handling corrupt STABS enum type
  strings in a crafted object file, leading to program crash (bsc#1030297).
  

-----------------------------------------
Patch: SUSE-2018-2299
Released: Thu Oct 18 11:58:01 2018
Summary: Security update for fuse
Severity: moderate
References: 1101797,CVE-2018-10906
Description:
This update for fuse fixes the following security issue:

- CVE-2018-10906: fusermount was vulnerable to a restriction bypass when
  SELinux is active. This allowed non-root users to mount a FUSE file system with
  the 'allow_other' mount option regardless of whether 'user_allow_other' is set
  in the fuse configuration. An attacker may use this flaw to mount a FUSE file
  system, accessible by other users, and trick them into accessing files on that
  file system, possibly causing Denial of Service or other unspecified effects
  (bsc#1101797)


-----------------------------------------
Patch: SUSE-2018-2306
Released: Thu Oct 18 14:42:25 2018
Summary: Recommended update for libguestfs
Severity: moderate
References: 1098615
Description:
This update for libguestfs fixes the following issues:

- Bugfix: libguestfs utilities are not working on s390x (bsc#1098615)


-----------------------------------------
Patch: SUSE-2018-2341
Released: Sat Oct 20 09:50:41 2018
Summary: Recommended update for pciutils
Severity: moderate
References: 1098094,1098228
Description:
This update for pciutils provides the following fixes:

- Fix the displaying of the gen4 speed for GEN 4 cards like Mellanox CX5. (bsc#1098094)
- Add support for commonly used vendor specific VPD keywords described in 'Table 160.
  LoPAPR VPD Fields' of the Linux on Power Architecture Platform Reference (LoPAPR).
  (bsc#1098228)


-----------------------------------------
Patch: SUSE-2018-2366
Released: Mon Oct 22 13:59:21 2018
Summary: Recommended update for sblim-sfcb
Severity: low
References: 1072448
Description:
This update for sblim-sfcb provides the following fixes:

- Generate correct aliases when service is enabled. (bsc#1072448)
- Re-generate systemd service aliases for already enabled service if wrong aliases are
  present.


-----------------------------------------
Patch: SUSE-2018-2367
Released: Mon Oct 22 13:59:50 2018
Summary: Recommended update for stunnel
Severity: low
References: 990797
Description:
This update for stunnel provides the following fix:

- Delay stunnel start after network-online.target to make it work after booting. (bsc#990797)


-----------------------------------------
Patch: SUSE-2018-2373
Released: Mon Oct 22 14:43:47 2018
Summary: Security update for rpm
Severity: moderate
References: 1077692,943457,CVE-2017-7500,CVE-2017-7501
Description:
This update for rpm fixes the following issues:

These security issues were fixed:

- CVE-2017-7500: rpm did not properly handle RPM installations when a
  destination path was a symbolic link to a directory, possibly changing
  ownership and permissions of an arbitrary directory, and RPM files being placed
  in an arbitrary destination (bsc#943457).
- CVE-2017-7501: rpm used temporary files with predictable names when
  installing an RPM. An attacker with ability to write in a directory where files
  will be installed could create symbolic links to an arbitrary location and
  modify content, and possibly permissions to arbitrary files, which could be
  used for denial of service or possibly privilege escalation (bsc#943457)

This non-security issue was fixed:

- Use ksym-provides tool [bsc#1077692]


-----------------------------------------
Patch: SUSE-2018-2375
Released: Mon Oct 22 15:30:22 2018
Summary: Security update for tiff
Severity: moderate
References: 1106853,1108627,1108637,1110358,CVE-2017-11613,CVE-2017-9935,CVE-2018-16335,CVE-2018-17100,CVE-2018-17101,CVE-2018-17795
Description:
This update for tiff fixes the following issues:

- CVE-2018-17100: There is a int32 overflow in multiply_ms in tools/ppm2tiff.c, which can cause a denial of service (crash) or possibly have unspecified other impact via a crafted image file. (bsc#1108637)
- CVE-2018-17101: There are two out-of-bounds writes in cpTags in tools/tiff2bw.c and tools/pal2rgb.c, which can cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image file. (bsc#1108627)
- CVE-2018-17795: The function t2p_write_pdf in tiff2pdf.c allowed remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file, a similar issue to CVE-2017-9935. (bsc#1110358)
- CVE-2018-16335: newoffsets handling in ChopUpSingleUncompressedStrip in tif_dirread.c allowed remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file, as demonstrated by tiff2pdf. This is a different vulnerability than CVE-2018-15209. (bsc#1106853)


-----------------------------------------
Patch: SUSE-2018-2378
Released: Tue Oct 23 09:34:41 2018
Summary: Security update for pam_pkcs11
Severity: moderate
References: 1049219,1105012
Description:
This update for pam_pkcs11 provides the following fixes:

Security issues fixed (bsc#1105012):

- Fixed a logic bug in pampkcs11.c, leading to an authentication replay vulnerability
- Fixed a stack-based buffer overflow in opensshmapper.c
- Make sure memory is properly cleaned before invoking free()

Other changes:

- Add a systemd service file. (bsc#1049219)


-----------------------------------------
Patch: SUSE-2018-2404
Released: Tue Oct 23 16:44:03 2018
Summary: Security update for ntp
Severity: moderate
References: 1083424,1098531,1111853,CVE-2018-12327,CVE-2018-7170
Description:

  
NTP was updated to 4.2.8p12 (bsc#1111853):

- CVE-2018-12327: Fixed stack buffer overflow in the openhost() command-line call of NTPQ/NTPDC. (bsc#1098531)
- CVE-2018-7170: Add further tweaks to improve the fix for the ephemeral association time spoofing additional protection (bsc#1083424)

Please also see https://www.nwtime.org/network-time-foundation-publishes-ntp-4-2-8p12/ for more information.



-----------------------------------------
Patch: SUSE-2018-2408
Released: Tue Oct 23 17:26:24 2018
Summary: Recommended update for lftp
Severity: moderate
References: 1079168
Description:
This update for lftp provides the following fix:

- Fix a bug that caused lftp to break the TLS protocol and lose the connection when trying
  to upload a file with length of 0 bytes. (bsc#1079168)


-----------------------------------------
Patch: SUSE-2018-2423
Released: Wed Oct 24 10:31:10 2018
Summary: Recommended update for libXaw
Severity: moderate
References: 1098411
Description:
This update for libXaw provides the following fix:

- Fix a crash when the required font is not installed. (bsc#1098411)


-----------------------------------------
Patch: SUSE-2018-2426
Released: Wed Oct 24 11:05:32 2018
Summary: Recommended update for NetworkManager
Severity: low
References: 1103477,960153
Description:
This update for NetworkManager provides the following fixes:

- Change NetworkManager so that after spawning netconfig it lets it exit by itself instead
  of killing it after 2000ms. This prevents NetworkManager from rewriting /etc/resolv.conf.
  (bsc#960153)
- Make sure addresses with valid leases are used even if the server is not online.
  (bsc#1103477)


-----------------------------------------
Patch: SUSE-2018-2432
Released: Wed Oct 24 13:31:26 2018
Summary: Security update for webkit2gtk3
Severity: moderate
References: 1075775,1077535,1079512,1088182,1088932,1092278,1092279,1092280,1095611,1096060,1096061,1097693,1101999,1102530,1104169,CVE-2017-13884,CVE-2017-13885,CVE-2017-7153,CVE-2017-7160,CVE-2017-7161,CVE-2017-7165,CVE-2018-11646,CVE-2018-11712,CVE-2018-11713,CVE-2018-12911,CVE-2018-4088,CVE-2018-4096,CVE-2018-4101,CVE-2018-4113,CVE-2018-4114,CVE-2018-4117,CVE-2018-4118,CVE-2018-4119,CVE-2018-4120,CVE-2018-4121,CVE-2018-4122,CVE-2018-4125,CVE-2018-4127,CVE-2018-4128,CVE-2018-4129,CVE-2018-4133,CVE-2018-4146,CVE-2018-4161,CVE-2018-4162,CVE-2018-4163,CVE-2018-4165,CVE-2018-4190,CVE-2018-4199,CVE-2018-4200,CVE-2018-4204,CVE-2018-4218,CVE-2018-4222,CVE-2018-4232,CVE-2018-4233,CVE-2018-4246
Description:
This update for webkit2gtk3 to version 2.20.3 fixes the issues:

The following security vulnerabilities were addressed:

- CVE-2018-12911: Fixed an off-by-one error in xdg_mime_get_simple_globs
  (boo#1101999)
- CVE-2017-13884: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1075775).
- CVE-2017-13885: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1075775).
- CVE-2017-7153: An unspecified issue allowed remote attackers to spoof
  user-interface information (about whether the entire content is derived from a
  valid TLS session) via a crafted web site that sends a 401 Unauthorized
  redirect (bsc#1077535).
- CVE-2017-7160: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1075775).
- CVE-2017-7161: An unspecified issue allowed remote attackers to execute
  arbitrary code via special characters that trigger command injection
  (bsc#1075775, bsc#1077535).
- CVE-2017-7165: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1075775).
- CVE-2018-4088: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1075775).
- CVE-2018-4096: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1075775).
- CVE-2018-4200: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site that triggers a
  WebCore::jsElementScrollHeightGetter use-after-free (bsc#1092280).
- CVE-2018-4204: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1092279).
- CVE-2018-4101: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1088182).
- CVE-2018-4113: An issue in the JavaScriptCore function in the 'WebKit'
  component allowed attackers to trigger an assertion failure by leveraging
  improper array indexing (bsc#1088182)
- CVE-2018-4114: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1088182) 
- CVE-2018-4117: An unspecified issue allowed remote attackers to bypass the
  Same Origin Policy and obtain sensitive information via a crafted web site
  (bsc#1088182, bsc#1102530).
- CVE-2018-4118: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1088182) 
- CVE-2018-4119: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1088182) 
- CVE-2018-4120: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1088182).
- CVE-2018-4121: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1092278).
- CVE-2018-4122: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1088182).
- CVE-2018-4125: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1088182).
- CVE-2018-4127: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1088182).
- CVE-2018-4128: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1088182).
- CVE-2018-4129: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1088182).
- CVE-2018-4146: An unspecified issue allowed attackers to cause a denial of
  service (memory corruption) via a crafted web site (bsc#1088182).
- CVE-2018-4161: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1088182).
- CVE-2018-4162: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1088182).
- CVE-2018-4163: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1088182).
- CVE-2018-4165: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1088182).
- CVE-2018-4190: An unspecified issue allowed remote attackers to obtain
  sensitive credential information that is transmitted during a CSS mask-image
  fetch (bsc#1097693)
- CVE-2018-4199: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (buffer overflow and application
  crash) via a crafted web site (bsc#1097693)
- CVE-2018-4218: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site that triggers an @generatorState use-after-free
  (bsc#1097693)
- CVE-2018-4222: An unspecified issue allowed remote attackers to execute
  arbitrary code via a crafted web site that leverages a getWasmBufferFromValue
  out-of-bounds read during WebAssembly compilation (bsc#1097693) 
- CVE-2018-4232: An unspecified issue allowed remote attackers to overwrite
  cookies via a crafted web site (bsc#1097693) 
- CVE-2018-4233: An unspecified issue allowed remote attackers to execute
  arbitrary code or cause a denial of service (memory corruption and application
  crash) via a crafted web site (bsc#1097693) 
- CVE-2018-4246: An unspecified issue allowed remote attackers to execute
  arbitrary code via a crafted web site that leverages type confusion
  (bsc#1104169) 
- CVE-2018-11646: webkitFaviconDatabaseSetIconForPageURL and
  webkitFaviconDatabaseSetIconURLForPageURL mishandled an unset pageURL, leading
  to an application crash (bsc#1095611)
- CVE-2018-4133: A Safari cross-site scripting (XSS) vulnerability allowed
  remote attackers to inject arbitrary web script or HTML via a crafted URL
  (bsc#1088182).
- CVE-2018-11713: The libsoup network backend of WebKit unexpectedly failed to
  use system proxy settings for WebSocket connections. As a result, users could
  be deanonymized by crafted web sites via a WebSocket connection (bsc#1096060).
- CVE-2018-11712: The libsoup network backend of WebKit failed to perform TLS
  certificate verification for WebSocket connections (bsc#1096061).


This update for webkit2gtk3 fixes the following issues:

- Fixed a crash when atk_object_ref_state_set is called on an AtkObject that's
  being destroyed (bsc#1088932).
- Fixed crash when using Wayland with QXL/virtio (bsc#1079512)
- Disable Gigacage if mmap fails to allocate in Linux.
- Add user agent quirk for paypal website.
- Properly detect compiler flags, needed libs, and fallbacks for
  usage of 64-bit atomic operations.
- Fix a network process crash when trying to get cookies of
  about:blank page.
- Fix UI process crash when closing the window under Wayland.
- Fix several crashes and rendering issues.
- Do TLS error checking on GTlsConnection::accept-certificate to
  finish the load earlier in case of errors.
- Properly close the connection to the nested wayland compositor
  in the Web Process.
- Avoid painting backing stores for zero-opacity layers.
- Fix downloads started by context menu failing in some websites
  due to missing user agent HTTP header.
- Fix video unpause when GStreamerGL is disabled.
- Fix several GObject introspection annotations.
- Update user agent quiks to fix Outlook.com and Chase.com.
- Fix several crashes and rendering issues.
- Improve error message when Gigacage cannot allocate virtual memory.
- Add missing WebKitWebProcessEnumTypes.h to webkit-web-extension.h.
- Improve web process memory monitor thresholds.
- Fix a web process crash when the web view is created and destroyed quickly.
- Fix a network process crash when load is cancelled while searching for
  stored HTTP auth credentials.
- Fix the build when ENABLE_VIDEO, ENABLE_WEB_AUDIO and
  ENABLE_XSLT are disabled.
- New API to retrieve and delete cookies with WebKitCookieManager.
- New web process API to detect when form is submitted via JavaScript.
- Several improvements and fixes in the touch/gestures support.
- Support for the “system” CSS font family.
- Complex text rendering improvements and fixes.
- More complete and spec compliant WebDriver implementation.
- Ensure DNS prefetching cannot be re-enabled if disabled by settings.
- Fix seek sometimes not working.
- Fix rendering of emojis that were using the wrong scale factor
  in some cases.
- Fix rendering of combining enclosed keycap.
- Fix rendering scale of some layers in HiDPI.
- Fix a crash in Wayland when closing the web view.
- Fix crashes upower crashes when running inside a chroot or on
  systems with broken dbus/upower.
- Fix memory leaks in GStreamer media backend when using
  GStreamer 1.14.
- Fix several crashes and rendering issues.
- Add ENABLE_ADDRESS_SANITIZER to make it easier to build with
  asan support.
- Fix a crash a under Wayland when using mesa software
  rasterization.
- Make fullscreen video work again.
- Fix handling of missing GStreamer elements.
- Fix rendering when webm video is played twice.
- Fix kinetic scrolling sometimes jumping around.
- Fix build with ICU configured without collation support.
- WebSockets use system proxy settings now (requires libsoup 2.61.90).
- Show the context menu on long-press gesture.
- Add support for Shift + mouse scroll to scroll horizontally.
- Fix zoom gesture to actually zoom instead of changing the page
  scale.
- Implement support for Graphics ARIA roles.
- Make sleep inhibitors work under Flatpak.
- Add get element CSS value command to WebDriver.
- Fix a crash aftter a swipe gesture.
- Fix several crashes and rendering issues.
- Fix crashes due to duplicated symbols in libjavascriptcoregtk
  and libwebkit2gtk.
- Fix parsing of timeout values in WebDriver.
- Implement get timeouts command in WebDriver.
- Fix deadlock in GStreamer video sink during shutdown when
  accelerated compositing is disabled.
- Fix several crashes and rendering issues.
- Add web process API to detect when form is submitted via
  JavaScript.
- Add new API to replace
  webkit_form_submission_request_get_text_fields() that is now
  deprecated.
- Add WebKitWebView::web-process-terminated signal and deprecate
  web-process-crashed.
- Fix rendering issues when editing text areas.
- Use FastMalloc based GstAllocator for GStreamer.
- Fix web process crash at startup in bmalloc.
- Fix several memory leaks in GStreamer media backend.
- WebKitWebDriver process no longer links to
  libjavascriptcoregtk.
- Fix several crashes and rendering issues.
- Add new API to add, retrieve and delete cookies via
  WebKitCookieManager.
- Add functions to WebSettings to convert font sizes between
  points and pixels.
- Ensure cookie operations take effect when they happen before a
  web process has been spawned.
- Automatically adjust font size when GtkSettings:gtk-xft-dpi
  changes.
- Add initial resource load statistics support.
- Add API to expose availability of certain editing commands in
  WebKitEditorState.
- Add API to query whether a WebKitNavigationAction is a redirect
  or not.
- Improve complex text rendering.
- Add support for the 'system' CSS font family.
- Disable USE_GSTREAMER_GL


-----------------------------------------
Patch: SUSE-2018-2434
Released: Wed Oct 24 14:25:54 2018
Summary: Security update for exempi
Severity: moderate
References: 1085295,1085297,1085583,1085584,1085585,1085589,CVE-2017-18233,CVE-2017-18234,CVE-2017-18236,CVE-2017-18238,CVE-2018-7728,CVE-2018-7730
Description:
This update for exempi fixes the following security issues:

- CVE-2017-18233: Prevent integer overflow in the Chunk class that allowed
  remote attackers to cause a denial of service (infinite loop) via crafted XMP
  data in a .avi file (bsc#1085584).
- CVE-2017-18238: The TradQT_Manager::ParseCachedBoxes function allowed remote
  attackers to cause a denial of service (infinite loop) via crafted XMP data in
  a .qt file (bsc#1085583).
- CVE-2018-7728: Fixed heap-based buffer overflow, which allowed denial of
  service via crafted TIFF image (bsc#1085297).
- CVE-2018-7730: Fixed heap-based buffer overflow in
  XMPFiles/source/FormatSupport/PSIR_FileWriter.cpp (bsc#1085295).
- CVE-2017-18236: The ASF_Support::ReadHeaderObject function allowed remote
  attackers to cause a denial of service (infinite loop) via a crafted .asf file
  (bsc#1085589).
- CVE-2017-18234: Prevent use-after-free that allowed remote attackers to cause
  a denial of service or possibly have unspecified other impact via a .pdf file
  containing JPEG data (bsc#1085585).


-----------------------------------------
Patch: SUSE-2018-2461
Released: Thu Oct 25 14:35:20 2018
Summary: Security update for net-snmp
Severity: important
References: 1027353,1081164,1102775,1111122,CVE-2018-18065
Description:
This update for net-snmp fixes the following issues:

Security issues fixed:

- CVE-2018-18065: _set_key in agent/helpers/table_container.c had a NULL Pointer Exception bug that can be used by an authenticated attacker to remotely cause the instance to crash via a crafted UDP packet, resulting in Denial of Service. (bsc#1111122)

Non-security issues fixed:

- swintst_rpm: Protect against unspecified Group name (bsc#1102775)
- Add tsm and tlstm MIBs and the USM security module. (bsc#1081164)
- Fix agentx freezing on timeout (bsc#1027353)


-----------------------------------------
Patch: SUSE-2018-2473
Released: Thu Oct 25 16:55:27 2018
Summary: Recommended update for tar
Severity: low
References: 1071340
Description:
This update for tar provides the following fix:

- Revert an upstream commit meant for optimizing sparse files as it causes a regression on
  offline files. (bsc#1071340)


-----------------------------------------
Patch: SUSE-2018-2475
Released: Thu Oct 25 16:56:24 2018
Summary: Recommended update for libzypp
Severity: moderate
References: 1099982,1109877,408814,556664,939392
Description:
This update for libzypp fixes the following issues:

- Add filesize check for downloads with known size (bsc#408814)
- Fix conversion of string and glob to regex when compiling queries
  (bsc#1099982, bsc#939392, bsc#556664)
- Fix blocking wait for finished child process (bsc#1109877)


-----------------------------------------
Patch: SUSE-2018-2476
Released: Thu Oct 25 16:57:26 2018
Summary: Recommended update for fping
Severity: important
References: 988195
Description:
This update for fping provides the following fix:

-  Fix a problem that was causing fping to flood /tmp after a network stop. (bsc#988195)


-----------------------------------------
Patch: SUSE-2018-2480
Released: Thu Oct 25 17:11:01 2018
Summary: Security update for ImageMagick
Severity: moderate
References: 1107609,1112399,CVE-2017-14997,CVE-2018-16644
Description:
This update for ImageMagick fixes the following issues:

- CVE-2017-14997: GraphicsMagick allowed remote attackers to cause a denial of service (excessive memory allocation) because of an integer underflow in ReadPICTImage in coders/pict.c.  [bsc#1112399]
- CVE-2018-16644: An regression in the security fix for the pict coder was fixed (bsc#1107609)



-----------------------------------------
Patch: SUSE-2018-2481
Released: Thu Oct 25 20:08:31 2018
Summary: Security update for smt
Severity: moderate
References: 1104076,1111056,CVE-2018-12472
Description:


SMT was updated to version 3.0.38.

Following security issue was fixed:

- CVE-2018-12472: Harden hostname check during sibling check by forcing double
  reverse lookup (bsc#1104076)

Following non security issues were fixed:

- Add migration path check when registration sharing is enabled
- Fix sibling sync errors (bsc#1111056):
  - Synchronize all registered products
  - Handle duplicate registrations when syncing
  - Force resync to the sibling instance in `upgrade` and
    `synchronize` API calls


-----------------------------------------
Patch: SUSE-2018-2488
Released: Fri Oct 26 12:39:59 2018
Summary: Recommended update for cpio
Severity: low
References: 1076810,889138
Description:
This update for cpio provides the following fix:

- Remove an obsolete patch that was causing cpio not to preserve folder permissions.
  (bsc#1076810, bsc#889138)


-----------------------------------------
Patch: SUSE-2018-2510
Released: Mon Oct 29 08:06:59 2018
Summary: Recommended update for plymouth
Severity: low
References: 1043834,1083695,804607,894051
Description:
This update for plymouth fixes the following issues:

- Fix an infinite loop by skipping new line characters on multiline text. (bsc#1083695)
- Ship license file with package. (bsc#1043834)
- Drop a previous fix for window size and use of the smallest screen size deliberately.
  (bsc#804607, bsc#894051)


-----------------------------------------
Patch: SUSE-2018-2512
Released: Mon Oct 29 10:58:57 2018
Summary: Security update for lcms2
Severity: moderate
References: 1021364,1026649,1026650,1108813,CVE-2016-10165,CVE-2018-16435
Description:
This update for lcms2 fixes the following security issues:

- CVE-2016-10165: The Type_MLU_Read function allowed remote attackers to obtain
  sensitive information or cause a denial of service via an image with a crafted
  ICC profile, which triggered an out-of-bounds heap read (bsc#1021364).
- CVE-2018-16435: A integer overflow was fixed in the AllocateDataSet
  function in cmscgats.c, that could lead to a heap-based buffer overflow
  in the SetData function via a crafted file in the second argument to
  cmsIT8LoadFromFile. (bsc#1108813)
- Ensure that LUT stages match channel count (bsc#1026649).
- sanitize input and output channels on MPE profiles (bsc#1026650).


-----------------------------------------
Patch: SUSE-2018-2516
Released: Mon Oct 29 16:14:48 2018
Summary: Recommended update for console-setup, kbd
Severity: moderate
References: 1010880,1027379,1056449,1062303,1069468,1085432,360993,675317,825385,830805,958562,963942,984958
Description:
This update for kbd and console-setup provides the following fixes:

Changes in console-setup:

- Add console-setup to SLE 12 to make it possible for kbd to provide converted X keymaps.
  (fate#325454, fate#318426)
- Make the package build reproducible. (bsc#1062303)
- Removed unneeded requires to kbd in order to resolve build cycle between kbd and
  console-setup. (bsc#963942)

Changes in kbd:
- Update to version 2.0.4, including the following fixes (FATE#325454):
    * Disable characters greater than or equal to =U+F000 as they do not work properly.
      (bsc#1085432)
    * Move initial NumLock handling from systemd back to kbd:
      * Add kbdsettings service. (bsc#1010880)
      * Exclude numlockbios support for non x86 platforms
    * Drop references to KEYTABLE and COMPOSETABLE. (bsc#1010880)
    * Drop from some fill-up templates and a couple of sysconfig variables not read by
      systemd anymore. (fate#319454)
    * Replace references to /var/adm/fillup-templates with new %_fillupdir macro. (bsc#1069468)
    * Add vlock.pamd PAM file. (bsc#1056449)
    * Enable vlock (bsc#1056449).
    * Revert dropping of kdb-legacy requirement as there are still packages and installation
      flows that needs this to be present. (bsc#1027379)
    * Fix data/keymaps/i386/querty/br-abnt2.map. (bsc#984958)
    * Fix missing dependency on coreutils for initrd macros. (bsc#958562)
    * Call missing initrd macro at postun. (bsc#958562)
    * Add the genmap4systemd.sh tool to generate entries for systemd's kbd-model-map table
      from xkeyboard-config converted keymaps. (fate#318426)
    * genmap4systemd.sh: Use 'abnt2' model for 'br' layouts, 'jp106' model for 'jp' layouts
      and 'microsoftpro' for anything else (instead of 'pc105' previously used). (fate#318426)
    * Include xkb layouts from xkeyboard-config converted to console
      keymaps. (fate#318426)
    * euro.map, euro1.map and euro2.map now produce correct unicode character for Euro sign.
      (bsc#360993)
    * Drop doshell reference from openvt.1 man page. (bsc#675317)
    * Drop the --userwait option as it is not used. (bsc#830805)
    * Fix a typo in the mac-querty-layout.inc. (bsc#825385)


-----------------------------------------
Patch: SUSE-2018-2520
Released: Mon Oct 29 17:28:57 2018
Summary: Security update for python, python-base
Severity: moderate
References: 1086001,1088004,1088009,1109663,CVE-2018-1000802,CVE-2018-1060,CVE-2018-1061
Description:
This update for python, python-base fixes the following issues:

Security issues fixed:

- CVE-2018-1000802: Prevent command injection in shutil module (make_archive
  function) via passage of unfiltered user input (bsc#1109663).
- CVE-2018-1061: Fixed DoS via regular expression backtracking in
  difflib.IS_LINE_JUNK method in difflib (bsc#1088004).
- CVE-2018-1060: Fixed DoS via regular expression catastrophic backtracking in
  apop() method in pop3lib (bsc#1088009).

Bug fixes:

- bsc#1086001: python tarfile uses random order.


-----------------------------------------
Patch: SUSE-2018-2525
Released: Tue Oct 30 09:22:45 2018
Summary: Recommended update for bash
Severity: important
References: 1113117
Description:
This update for bash fixes the following issues:

  Recently released update introduced a change of behavior which
  resulted in broken customers scripts. (bsc#1113117)


-----------------------------------------
Patch: SUSE-2018-2533
Released: Tue Oct 30 16:14:24 2018
Summary: Recommended update for cronie
Severity: moderate
References: 1017160,1077979
Description:
This update for cronie provides the following fixes:

- Prefer flock locking instead of fcntl locking that has different semantics. It caused a
  bug where it was possible to run more than one cron process as the locking was not
  successful. (bsc#1017160)
- Check the existence of the user at the time the job is run and do not ignore jobs for
  users that were not existing at database reload. This prevents cron from ignoring jobs
  in user crontab for users that changed group meanwhile. (bsc#1077979)


-----------------------------------------
Patch: SUSE-2018-2541
Released: Tue Oct 30 17:20:58 2018
Summary: Security update for apache2
Severity: important
References: 1109961,CVE-2018-11763
Description:
This update for apache2 fixes the following issues:

Security issues fixed:

- CVE-2018-11763: In Apache HTTP Server by sending continuous, large SETTINGS frames a client can occupy a connection, server thread and CPU time without any connection timeout coming to effect. This affects only HTTP/2 connections. (bsc#1109961)



-----------------------------------------
Patch: SUSE-2018-2542
Released: Wed Oct 31 10:45:41 2018
Summary: Security update for audiofile
Severity: moderate
References: 1111586,CVE-2018-17095
Description:
This update for audiofile fixes the following issues:

- CVE-2018-17095: A heap-based buffer overflow in Expand3To4Module::run could occurred when running sfconvert leading to crashes or code execution when handling untrusted soundfiles (bsc#1111586).


-----------------------------------------
Patch: SUSE-2018-2548
Released: Wed Oct 31 15:02:34 2018
Summary: Security update for wireshark
Severity: important
References: 1111647,CVE-2018-12086,CVE-2018-18227
Description:
This update for wireshark fixes the following issues:

Wireshark was updated to 2.4.10 (bsc#1111647).

Following security issues were fixed:

- CVE-2018-18227: MS-WSP dissector crash (wnpa-sec-2018-47)
- CVE-2018-12086: OpcUA dissector crash (wnpa-sec-2018-50)

Further bug fixes and updated protocol support that were done are listed in:

  https://www.wireshark.org/docs/relnotes/wireshark-2.4.10.html


-----------------------------------------
Patch: SUSE-2018-2549
Released: Wed Oct 31 15:03:45 2018
Summary: Security update for MozillaFirefox, MozillaFirefox-branding-SLE, llvm4, mozilla-nspr, mozilla-nss, apache2-mod_nss
Severity: important
References: 1012260,1021577,1026191,1041469,1041894,1049703,1061204,1064786,1065464,1066489,1073210,1078436,1091551,1092697,1094767,1096515,1107343,1108771,1108986,1109363,1109465,1110506,1110507,703591,839074,857131,893359,CVE-2017-16541,CVE-2018-12376,CVE-2018-12377,CVE-2018-12378,CVE-2018-12379,CVE-2018-12381,CVE-2018-12383,CVE-2018-12385,CVE-2018-12386,CVE-2018-12387
Description:
This update for MozillaFirefox to ESR 60.2.2 fixes several issues.

These general changes are part of the version 60 release.

- New browser engine with speed improvements
- Redesigned graphical user interface elements
- Unified address and search bar for new installations
- New tab page listing top visited, recently visited and recommended pages
- Support for configuration policies in enterprise deployments via JSON files
- Support for Web Authentication, allowing the use of USB tokens for
  authentication to web sites

The following changes affect compatibility:
    
- Now exclusively supports extensions built using the WebExtension API.
- Unsupported legacy extensions will no longer work in Firefox 60 ESR
- TLS certificates issued by Symantec before June 1st, 2016 are no longer trusted 
  The 'security.pki.distrust_ca_policy' preference can be set to 0 to reinstate
  trust in those certificates

The following issues affect performance:

- new format for storing private keys, certificates and certificate trust
  If the user home or data directory is on a network file system, it is
  recommended that users set the following environment variable to avoid
  slowdowns: NSS_SDB_USE_CACHE=yes
  This setting is not recommended for local, fast file systems. 

These security issues were fixed:

- CVE-2018-12381: Dragging and dropping Outlook email message results in page navigation (bsc#1107343).
- CVE-2017-16541: Proxy bypass using automount and autofs (bsc#1107343).
- CVE-2018-12376: Various memory safety bugs (bsc#1107343).
- CVE-2018-12377: Use-after-free in refresh driver timers (bsc#1107343).
- CVE-2018-12378: Use-after-free in IndexedDB (bsc#1107343).
- CVE-2018-12379: Out-of-bounds write with malicious MAR file (bsc#1107343).
- CVE-2018-12386: Type confusion in JavaScript allowed remote code execution (bsc#1110506)
- CVE-2018-12387: Array.prototype.push stack pointer vulnerability may enable exploits in the sandboxed content process (bsc#1110507)
- CVE-2018-12385: Crash in TransportSecurityInfo due to cached data  (bsc#1109363)
- CVE-2018-12383: Setting a master password did not delete unencrypted previously stored passwords  (bsc#1107343)

This update for mozilla-nspr to version 4.19 fixes the follwing issues

- Added TCP Fast Open functionality
- A socket without PR_NSPR_IO_LAYER will no longer trigger
  an assertion when polling

This update for mozilla-nss to version 3.36.4 fixes the follwing issues

- Connecting to a server that was recently upgraded to TLS 1.3
  would result in a SSL_RX_MALFORMED_SERVER_HELLO error.
- Fix a rare bug with PKCS#12 files.
- Replaces existing vectorized ChaCha20 code with verified
  HACL* implementation.
- TLS 1.3 support has been updated to draft -23.
- Added formally verified implementations of non-vectorized Chacha20
  and non-vectorized Poly1305 64-bit.
- The following CA certificates were Removed:
  OU = Security Communication EV RootCA1
  CN = CA Disig Root R1
  CN = DST ACES CA X6
  Certum CA, O=Unizeto Sp. z o.o.
  StartCom Certification Authority
  StartCom Certification Authority G2
  TÜBİTAK UEKAE Kök Sertifika Hizmet Sağlayıcısı - Sürüm 3
  ACEDICOM Root
  Certinomis - Autorité Racine
  TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı
  PSCProcert
  CA 沃通根证书, O=WoSign CA Limited
  Certification Authority of WoSign
  Certification Authority of WoSign G2
  CA WoSign ECC Root
  Subject CN = VeriSign Class 3 Secure Server CA - G2
  O = Japanese Government, OU = ApplicationCA
  CN = WellsSecure Public Root Certificate Authority
  CN = TÜRKTRUST Elektronik Sertifika Hizmet Sağlayıcısı H6
  CN = Microsec e-Szigno Root
* The following CA certificates were Removed:
  AddTrust Public CA Root
  AddTrust Qualified CA Root
  China Internet Network Information Center EV Certificates Root
  CNNIC ROOT
  ComSign Secured CA
  GeoTrust Global CA 2
  Secure Certificate Services
  Swisscom Root CA 1
  Swisscom Root EV CA 2
  Trusted Certificate Services
  UTN-USERFirst-Hardware
  UTN-USERFirst-Object
* The following CA certificates were Added
  CN = D-TRUST Root CA 3 2013
  CN = TUBITAK Kamu SM SSL Kok Sertifikasi - Surum 1
  GDCA TrustAUTH R5 ROOT
  SSL.com Root Certification Authority RSA
  SSL.com Root Certification Authority ECC
  SSL.com EV Root Certification Authority RSA R2
  SSL.com EV Root Certification Authority ECC
  TrustCor RootCert CA-1
  TrustCor RootCert CA-2
  TrustCor ECA-1
* The Websites (TLS/SSL) trust bit was turned off for the following
  CA certificates:
  CN = Chambers of Commerce Root
  CN = Global Chambersign Root
* TLS servers are able to handle a ClientHello statelessly, if the
  client supports TLS 1.3.  If the server sends a HelloRetryRequest,
  it is possible to discard the server socket, and make a new socket
  to handle any subsequent ClientHello. This better enables stateless
  server operation. (This feature is added in support of QUIC, but it
  also has utility for DTLS 1.3 servers.)

Due to the update of mozilla-nss apache2-mod_nss needs to be updated to 
change to the SQLite certificate database, which is now the default (bsc#1108771)
  

-----------------------------------------
Patch: SUSE-2018-2557
Released: Fri Nov  2 12:49:40 2018
Summary: Recommended update for spice
Severity: moderate
References: 1109044
Description:
This update for spice fixes performance issues for Windows KVM guests. (bsc#1109044)

-----------------------------------------
Patch: SUSE-2018-2564
Released: Fri Nov  2 17:10:12 2018
Summary: Security update for soundtouch
Severity: moderate
References: 1108630,1108631,1108632,CVE-2018-17096,CVE-2018-17097,CVE-2018-17098
Description:
This update for soundtouch fixes the following issues:

- CVE-2018-17098: The WavFileBase class allowed remote attackers to cause a denial of service (heap corruption from size inconsistency) or possibly have unspecified other impact, as demonstrated by SoundStretch. (bsc#1108632)
- CVE-2018-17097: The WavFileBase class allowed remote attackers to cause a denial of service (double free) or possibly have unspecified other impact, as demonstrated by SoundStretch. (double free) (bsc#1108631)
- CVE-2018-17096: The BPMDetect class allowed remote attackers to cause a denial of service (assertion failure and application exit), as demonstrated by SoundStretch. (bsc#1108630)


-----------------------------------------
Patch: SUSE-2018-2567
Released: Fri Nov  2 18:59:06 2018
Summary: Recommended update for apparmor
Severity: moderate
References: 1047937,1057150,1057900,1099452,906858
Description:

This update for apparmor provides the following fixes:

- Add profile for usr.bin.lessopen.sh (bsc#906858)
- Fix dovecot apparmor profile (bsc#1057150)
- Fix creating profile rules from scanned logs when the chown operation is used (bsc#1047937)
- Fix the traceroute profile to allow ipv6 usage (bsc#1057900)
- Fix duplicate entry of capability when performing aa-logprof (bsc#1099452)



-----------------------------------------
Patch: SUSE-2018-2572
Released: Mon Nov  5 11:07:54 2018
Summary: Recommended update for gnome-online-accounts
Severity: moderate
References: 1069269
Description:
This update of gnome-online-accounts to version 3.20.8 provides the
following fixes:

- Fix some errors when creating facebook accounts by making it work with Graph API 2.3
  and newer. (bsc#1069269)
- Don't leak the name_owner and result in dbus_proxy_reload_properties_sync
- Fix a memory leak in goa-daemon.
- Fix a broken error handling in on_got_identity_for_sign_out.
- Don't leak the invocation when handling ExchangeSecretKeys and SignOut.


-----------------------------------------
Patch: SUSE-2018-2582
Released: Mon Nov  5 17:58:21 2018
Summary: Security update for opensc
Severity: moderate
References: 1104812,1106998,1106999,1107033,1107034,1107037,1107038,1107039,1107097,1107107,1108318,CVE-2018-16391,CVE-2018-16392,CVE-2018-16393,CVE-2018-16418,CVE-2018-16419,CVE-2018-16420,CVE-2018-16422,CVE-2018-16423,CVE-2018-16426,CVE-2018-16427
Description:
This update for opensc fixes the following issues:

- CVE-2018-16391: Fixed a denial of service when handling responses from a Muscle Card (bsc#1106998)
- CVE-2018-16392: Fixed a denial of service when handling responses from a TCOS Card (bsc#1106999)
- CVE-2018-16393: Fixed buffer overflows when handling responses from Gemsafe V1 Smartcards (bsc#1108318)
- CVE-2018-16418: Fixed buffer overflow when handling string concatenation in util_acl_to_str (bsc#1107039)
- CVE-2018-16419: Fixed several buffer overflows when handling responses from a Cryptoflex card (bsc#1107107)
- CVE-2018-16420: Fixed buffer overflows when handling responses from an ePass 2003 Card (bsc#1107097)
- CVE-2018-16422: Fixed single byte buffer overflow when handling responses from an esteid Card (bsc#1107038)
- CVE-2018-16423: Fixed double free when handling responses from a smartcard (bsc#1107037)
- CVE-2018-16426: Fixed endless recursion when handling responses from an IAS-ECC card (bsc#1107034)
- CVE-2018-16427: Fixed out of bounds reads when handling responses in OpenSC (bsc#1107033)



-----------------------------------------
Patch: SUSE-2018-2584
Released: Mon Nov  5 18:01:23 2018
Summary: Recommended update for gdb
Severity: moderate
References: 1102564
Description:
This update for gdb fixes the following issues:

GDB was updated to the 8.2 release:

- 'symbol-file' and 'add-symbol-file' accept -o to add relative
    offset to all sections
- pager accepts 'c' response to disable it for rest of command
- accept _Alignof and alignof in C resp. C++ expressions
- new target riscv*-*-elf
- python API extensions: gdb.Type.align, gdb.execute deals
  with multi-line gdb commands, gdb.convenience_variable and
  gdb.set_convenience_variable to access convenience variables,
- aarch64: properly support hardware watchpoints on unaligned
  addresses (needs kernel >= 4.10)
- Support access to new POWER8 registers [fate#325178, fate#326120]
- Support ipv6 for gdbserver connections.
- Update to intel processor trace library 2.0 (from 1.6.1).

Changes in the 8.1 release:

- ptype/o prints offsets and sizes of members (like pahole)
- tab-completion improved: quoting function names is not generally
  necessary anymore, completion offers for breakpoint don't include
  data symbol
- enable/disable breakpoints now accept ranges: 'disable 1.3-5'
- new commands:

  - set/show cwd: working directory of debuggee
  - set/show compile-gcc: program to use for 'compile' command
  - starti: start program and stop at first instruction
  - TUI single-key commands: 'i' for stepi and 'o' for nexti

- --readnever option disables any reading of debug info (for dumping)
- s390: guarded storage register access for z14
- gcore option -a dumps all memory mapping
- C++ breakpoints: 'b foo' will now set a breakpoint on all functions
  and methods named 'foo' no matter the scope.  Use -qualified if you
  don't want that
- python scripting: new events gdb.new_inferior, gdb.inferior_deleted
  and gdb.new_thread; new command rbreak (breakpoint accepting regexps)
- gdbserver can be passed environment parameters to remote debuggee


-----------------------------------------
Patch: SUSE-2018-2585
Released: Mon Nov  5 18:01:51 2018
Summary: Recommended update for nautilus
Severity: moderate
References: 1103523,1107854
Description:
This update for nautilus fixes the following issues:

- Mark the desktop files from /etc/skel/ by default trusted (bsc#1103523 bsc#1107854).


-----------------------------------------
Patch: SUSE-2018-2586
Released: Tue Nov  6 07:35:53 2018
Summary: Recommended update for gvfs
Severity: low
References: 1069030
Description:
This update for gvfs provides the following fix:

- Up until very recently, the Android MTP driver did not do bounds checking on reads
  past EOF, leading to undefined behavior, which includes hanging the transfer on some
  devices. This behavior is prevented by enforcing POSIX semantics and truncating reads
  past EOF. (bsc#1069030).


-----------------------------------------
Patch: SUSE-2018-2593
Released: Wed Nov  7 11:04:00 2018
Summary: Recommended update for rpm
Severity: moderate
References: 1095148,1113100
Description:
This update for rpm fixes the following issues:

- Fix superfluous TOC. dependency on PowerPC64 (bsc#1113100)
- Update to current find-provides.ksyms and find-requires.ksyms
  scripts (bsc#1095148)

-----------------------------------------
Patch: SUSE-2018-2594
Released: Wed Nov  7 11:13:54 2018
Summary: Security update for libarchive
Severity: moderate
References: 1032089,1037008,1037009,1057514,1059100,1059134,1059139,CVE-2016-10209,CVE-2016-10349,CVE-2016-10350,CVE-2017-14166,CVE-2017-14501,CVE-2017-14502,CVE-2017-14503
Description:
This update for libarchive fixes the following issues:

- CVE-2016-10209: The archive_wstring_append_from_mbs function in archive_string.c allowed remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted archive file. (bsc#1032089)
- CVE-2016-10349: The archive_le32dec function in archive_endian.h allowed remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. (bsc#1037008)
- CVE-2016-10350: The archive_read_format_cab_read_header function in archive_read_support_format_cab.c allowed remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. (bsc#1037009)
- CVE-2017-14166: libarchive allowed remote attackers to cause a denial of service (xml_data heap-based buffer over-read and application crash) via a crafted xar archive, related to the mishandling of empty strings in the atol8 function in archive_read_support_format_xar.c. (bsc#1057514)
- CVE-2017-14501: An out-of-bounds read flaw existed in parse_file_info in archive_read_support_format_iso9660.c when extracting a specially crafted iso9660 iso file, related to archive_read_format_iso9660_read_header. (bsc#1059139)
- CVE-2017-14502: read_header in archive_read_support_format_rar.c suffered from an off-by-one error for UTF-16 names in RAR archives, leading to an out-of-bounds read in archive_read_format_rar_read_header. (bsc#1059134)
- CVE-2017-14503: libarchive suffered from an out-of-bounds read within lha_read_data_none() in archive_read_support_format_lha.c when extracting a specially crafted lha archive, related to lha_crc16. (bsc#1059100)



-----------------------------------------
Patch: SUSE-2018-2603
Released: Wed Nov  7 14:08:34 2018
Summary: Recommended update for gtk3
Severity: moderate
References: 1057471,1062879
Description:
This update for gtk3 provides the following fix:

- Present FUSE reachable network shares in gtkplacesview (bsc#1062879)
- Make the primary button clicking behave as consistent again (bsc#1057471)

-----------------------------------------
Patch: SUSE-2018-2615
Released: Thu Nov  8 17:01:34 2018
Summary: Recommended update for rpcbind
Severity: moderate
References: 969953
Description:
This update for rpcbind fixes the following issues:

- Fix stack buffer overflow in tools. (bsc#969953)


-----------------------------------------
Patch: SUSE-2018-2627
Released: Mon Nov 12 09:54:15 2018
Summary: Recommended update for xfsdump
Severity: moderate
References: 1035430
Description:
This update for xfsdump fixes the following issues:

- Fix segfault in xfsrestore on sparsefiles. (bsc#1035430)


-----------------------------------------
Patch: SUSE-2018-2637
Released: Mon Nov 12 20:38:05 2018
Summary: Recommended update for timezone, timezone-java
Severity: moderate
References: 1104700,1113554
Description:
This update provides the latest time zone definitions (2018g), including the following changes:

- Morocco switched from +00/+01 to permanent +01 effective 2018-10-28 (bsc#1113554)
- Volgograd moves from +03 to +04 on 2018-10-28.
- Fiji ends DST 2019-01-13, not 2019-01-20.
- Most of Chile changes DST dates, effective 2019-04-06 (bsc#1104700)
- Corrections to past timestamps of DST transitions
- Use 'PST' and 'PDT' for Philippine time
- minor code changes to zic handling of the TZif format
- documentation updates



-----------------------------------------
Patch: SUSE-2018-2639
Released: Mon Nov 12 20:39:01 2018
Summary: Recommended update for sysstat
Severity: moderate
References: 1089883
Description:
This update for sysstat fixes the following issues:

sysstat was updated to 12.0.2, bringing lots of new features and bugfixes. (fate#326576, bsc#1089883)

Sysstat was updated to 12.0.2, bringing new features and bugfixes (fate#326576, bsc#1089883)

- It contains lots of improvements in SVG output.
- New metric additions for hugepages.
- Several new options
- New database format

Please look at http://sebastien.godard.pagesperso-orange.fr/ for a more detailed history of changes.



-----------------------------------------
Patch: SUSE-2018-2640
Released: Mon Nov 12 20:39:16 2018
Summary: Recommended update for nfsidmap
Severity: moderate
References: 1098217
Description:
This update for nfsidmap fixes the following issues:

- Improve support for SAMBA with Active Directory. (bsc#1098217)


-----------------------------------------
Patch: SUSE-2018-2642
Released: Mon Nov 12 20:39:45 2018
Summary: Recommended update for gtk2
Severity: low
References: 1039465
Description:
This update for gtk2 provides the following fix:

- Prevent an infinite loop when a window is destroyed while traversed. (bsc#1039465)


-----------------------------------------
Patch: SUSE-2018-2648
Released: Tue Nov 13 08:38:13 2018
Summary: Security update for MozillaFirefox
Severity: important
References: 1112852,CVE-2018-12389,CVE-2018-12390,CVE-2018-12392,CVE-2018-12393,CVE-2018-12395,CVE-2018-12396,CVE-2018-12397
Description:
This update for MozillaFirefox fixes the following issues:

Security issues fixed:

- Update to Mozilla Firefox 60.3.0esr: MFSA 2018-27 (bsc#1112852)
- CVE-2018-12392: Crash with nested event loops.
- CVE-2018-12393: Integer overflow during Unicode conversion while loading JavaScript.
- CVE-2018-12395: WebExtension bypass of domain restrictions through header rewriting.
- CVE-2018-12396: WebExtension content scripts can execute in disallowed contexts.
- CVE-2018-12397: WebExtension local file access vulnerability.
- CVE-2018-12389: Memory safety bugs fixed in Firefox ESR 60.3.
- CVE-2018-12390: Memory safety bugs fixed in Firefox 63 and Firefox ESR 60.3.


-----------------------------------------
Patch: SUSE-2018-2652
Released: Tue Nov 13 19:02:44 2018
Summary: Recommended update for llvm
Severity: low
References: 1073210
Description:
This update for llvm provides the following fix:

- Place gold plugin to the right directory to make sure Link Time Optimization works
  correctly. It must be in /usr/lib/bfd-plugins on all architectures. (bsc#1073210)


-----------------------------------------
Patch: SUSE-2018-2654
Released: Tue Nov 13 19:03:13 2018
Summary: Recommended update for ipmitool
Severity: low
References: 1089782
Description:
This update for ipmitool fixes the following issues:

- Most ipmitool features do not need net-snmp. Lower package dependency from
  'Requires' to 'Recommends'. (fate#322044)
- Fix a memory leak in lanplus. (bsc#1089782)


-----------------------------------------
Patch: SUSE-2018-2662
Released: Thu Nov 15 13:45:31 2018
Summary: Security update for postgresql10
Severity: moderate
References: 1114837,CVE-2018-16850
Description:
This update for postgresql10 fixes the following issues:

Security issue fixed:

- CVE-2018-16850: Fixed improper quoting of transition table names when pg_dump emits CREATE TRIGGER could have caused privilege escalation (bsc#1114837).

Non-security issues fixed:

- Update to release 10.6:
  * https://www.postgresql.org/docs/current/static/release-10-6.html


-----------------------------------------
Patch: SUSE-2018-2705
Released: Mon Nov 19 13:07:18 2018
Summary: Recommended update for bcache-tools
Severity: low
References: 1074184
Description:
This update for bcache-tools provides the following fix:

- bcache-register: Use the absolute path to modprobe. (bsc#1074184)


-----------------------------------------
Patch: SUSE-2018-2734
Released: Thu Nov 22 13:27:05 2018
Summary: Recommended update for udisks2
Severity: moderate
References: 1091274
Description:
This update for udisks2 provides the following fix:

- Fix a watcher error for non-redundant raid devices. (bsc#1091274)


-----------------------------------------
Patch: SUSE-2018-2738
Released: Thu Nov 22 13:27:54 2018
Summary: Recommended update for smartmontools
Severity: moderate
References: 1073918
Description:
This update for smartmontools provides the following fix:

- Fix SUSE default of S.M.A.R.T. checks to make sure nightly short tests are really
  enabled. (bsc#1073918)


-----------------------------------------
Patch: SUSE-2018-2766
Released: Fri Nov 23 17:07:27 2018
Summary: Security update for rpm
Severity: important
References: 943457,CVE-2017-7500,CVE-2017-7501
Description:
This update for rpm fixes the following issues:

These security issues were fixed:

- CVE-2017-7500: rpm did not properly handle RPM installations when a
  destination path was a symbolic link to a directory, possibly changing
  ownership and permissions of an arbitrary directory, and RPM files being placed
  in an arbitrary destination (bsc#943457).
- CVE-2017-7501: rpm used temporary files with predictable names when
  installing an RPM. An attacker with ability to write in a directory where files
  will be installed could create symbolic links to an arbitrary location and
  modify content, and possibly permissions to arbitrary files, which could be
  used for denial of service or possibly privilege escalation (bsc#943457)

This is a reissue of the above security fixes for SUSE Linux Enterprise 12 GA, SP1 and SP2 LTSS,
they have already been released for SUSE Linux Enterprise Server 12 SP3.



-----------------------------------------
Patch: SUSE-2018-1697
Released: Fri Nov 23 17:08:32 2018
Summary: Security update for libgcrypt
Severity: moderate
References: 1064455,1090766,1097410,CVE-2018-0495
Description:
This update for libgcrypt fixes the following issues:

The following security vulnerability was addressed:

- CVE-2018-0495: Mitigate a novel side-channel attack by enabling blinding for
  ECDSA signatures (bsc#1097410).

The following other issues were fixed:

- Extended the fipsdrv dsa-sign and dsa-verify commands with the
  --algo parameter for the FIPS testing of DSA SigVer and SigGen (bsc#1064455).
- Ensure libgcrypt20-hmac and libgcrypt20 are installed in the correct order. (bsc#1090766)


-----------------------------------------
Patch: SUSE-2018-2772
Released: Fri Nov 23 17:09:32 2018
Summary: Security update for exiv2
Severity: moderate
References: 1050257,1051188,1060995,1060996,1061000,1072928,1092952,1093095,1095070,CVE-2017-11591,CVE-2017-11683,CVE-2017-14859,CVE-2017-14862,CVE-2017-14864,CVE-2017-17669,CVE-2018-10958,CVE-2018-10998,CVE-2018-11531
Description:
This update for exiv2 fixes the following issues:

- CVE-2017-11591: A floating point exception in the Exiv2::ValueType function could lead to a remote denial of service attack via crafted input. (bsc#1050257)
- CVE-2017-14864: An invalid memory address dereference was discovered in Exiv2::getULong in types.cpp. The vulnerability caused a segmentation fault and application crash, which lead to denial of service. (bsc#1060995)
- CVE-2017-14862: An invalid memory address dereference was discovered in Exiv2::DataValue::read in value.cpp. The vulnerability caused a segmentation fault and application crash, which lead to denial of service. (bsc#1060996)
- CVE-2017-14859: An invalid memory address dereference was discovered in Exiv2::StringValueBase::read in value.cpp. The vulnerability caused a segmentation fault and application crash, which lead to denial of service. (bsc#1061000)
- CVE-2017-11683: There is a reachable assertion in the Internal::TiffReader::visitDirectory function in tiffvisitor.cpp that could lead to a remote denial of service attack via crafted input. (bsc#1051188)
- CVE-2017-17669: There is a heap-based buffer over-read in the Exiv2::Internal::PngChunk::keyTXTChunk function of pngchunk_int.cpp. A crafted PNG file would lead to a remote denial of service attack. (bsc#1072928)
- CVE-2018-10958: In types.cpp a large size value might have lead to a SIGABRT during an attempt at memory allocation for an Exiv2::Internal::PngChunk::zlibUncompress call. (bsc#1092952)
- CVE-2018-10998: readMetadata in jp2image.cpp allowed remote attackers to cause a denial of service (SIGABRT) by triggering an incorrect Safe::add call. (bsc#1093095)
- CVE-2018-11531: Exiv2 had a heap-based buffer overflow in getData in preview.cpp. (bsc#1095070)



-----------------------------------------
Patch: SUSE-2018-1696
Released: Mon Nov 26 17:46:39 2018
Summary: Security update for procps
Severity: moderate
References: 1092100,CVE-2018-1122,CVE-2018-1123,CVE-2018-1124,CVE-2018-1125,CVE-2018-1126
Description:
This update for procps fixes the following security issues:

- CVE-2018-1122: Prevent local privilege escalation in top. If a user ran top
  with HOME unset in an attacker-controlled directory, the attacker could have
  achieved privilege escalation by exploiting one of several vulnerabilities in
  the config_file() function (bsc#1092100).
- CVE-2018-1123: Prevent denial of service in ps via mmap buffer overflow.
  Inbuilt protection in ps maped a guard page at the end of the overflowed
  buffer, ensuring that the impact of this flaw is limited to a crash (temporary
  denial of service) (bsc#1092100).
- CVE-2018-1124: Prevent multiple integer overflows leading to a heap
  corruption in file2strvec function. This allowed a privilege escalation for a
  local attacker who can create entries in procfs by starting processes, which
  could result in crashes or arbitrary code execution in proc utilities run by
  other users (bsc#1092100).
- CVE-2018-1125: Prevent stack buffer overflow in pgrep. This vulnerability was
  mitigated by FORTIFY limiting the impact to a crash (bsc#1092100).
- CVE-2018-1126: Ensure correct integer size in proc/alloc.* to prevent
  truncation/integer overflow issues (bsc#1092100).


-----------------------------------------
Patch: SUSE-2018-2782
Released: Mon Nov 26 17:46:59 2018
Summary: Security update for tiff
Severity: moderate
References: 1099257,1113094,1113672,CVE-2018-12900,CVE-2018-18557,CVE-2018-18661
Description:
This update for tiff fixes the following issues:

Security issues fixed:

- CVE-2018-12900: Fixed heap-based buffer overflow in the cpSeparateBufToContigBuf (bsc#1099257).                                                                                             
- CVE-2018-18661: Fixed NULL pointer dereference in the function LZWDecode in the file tif_lzw.c (bsc#1113672).                                                                               
- CVE-2018-18557: Fixed JBIG decode can lead to out-of-bounds write (bsc#1113094).

Non-security issues fixed:

- asan_build: build ASAN included
- debug_build: build more suitable for debugging


-----------------------------------------
Patch: SUSE-2018-2783
Released: Mon Nov 26 17:47:36 2018
Summary: Security update for openssh
Severity: moderate
References: 1091396,1105010,964336,CVE-2018-15473
Description:
This update for openssh fixes the following issues:

Following security issues have been fixed:

- CVE-2018-15473: OpenSSH was prone to a user existance oracle vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, related to auth2-gss.c, auth2-hostbased.c, and auth2-pubkey.c. (bsc#1105010)

The following non-security issues were fixed:

- Stop leaking File descriptors (bsc#964336)
- sftp-client.c returns wrong error code upon failure [bsc#1091396]



-----------------------------------------
Patch: SUSE-2018-2807
Released: Thu Nov 29 00:22:42 2018
Summary: Recommended update for x3270
Severity: moderate
References: 1104013
Description:
This update for x3270 fixes the following issues:

- Fix SIGILL with screen_changed variable (bsc#1104013)


-----------------------------------------
Patch: SUSE-2018-2811
Released: Thu Nov 29 11:24:19 2018
Summary: Recommended update for aaa_base
Severity: moderate
References: 1040613,1095969,1102310
Description:
This update for aaa_base provides the following fixes:

- Get mixed use case of service wrapper script straight. (bsc#1040613)
- Fix an error at login if java system directory is empty. (bsc#1102310)
- Add a test for xdgdir/applications before adding data directory (bsc#1095969)


-----------------------------------------
Patch: SUSE-2018-2812
Released: Thu Nov 29 12:38:48 2018
Summary: Security update for openssl-1_1
Severity: moderate
References: 1112209,1113651,1113652,CVE-2018-0734,CVE-2018-0735
Description:
This update for openssl-1_1 fixes the following issues:

Security issues fixed:

- CVE-2018-0734: Fixed timing vulnerability in DSA signature generation (bsc#1113652).
- CVE-2018-0735: Fixed timing vulnerability in ECDSA signature generation (bsc#1113651).

Non-security issues fixed:

- Fixed infinite loop in DSA generation with incorrect parameters (bsc#1112209).


-----------------------------------------
Patch: SUSE-2018-2824
Released: Mon Dec  3 15:34:09 2018
Summary: Security update for ncurses
Severity: important
References: 1115929,CVE-2018-19211
Description:
This update for ncurses fixes the following issue:

Security issue fixed:

- CVE-2018-19211: Fixed denial of service issue that was triggered by a NULL pointer dereference at function _nc_parse_entry (bsc#1115929).


-----------------------------------------
Patch: SUSE-2018-2836
Released: Wed Dec  5 09:29:31 2018
Summary: Recommended update for apparmor
Severity: moderate
References: 1111965,1113125
Description:
This update for apparmor fixes the following issues:

- Systemd aware apparmor.spec, remove old insserv from spec file (bsc#1113125)
- Fix warnings produced because of use of uninitialized variables (bsc#1111965)


-----------------------------------------
Patch: SUSE-2018-2839
Released: Wed Dec  5 09:32:05 2018
Summary: Recommended update for pcsc-lite
Severity: low
References: 974632
Description:
This update for pcsc-lite provides the following fix:

- Remove the initscript installation and rely on the already distributed systemd service.
  (bsc#974632)


-----------------------------------------
Patch: SUSE-2018-2843
Released: Wed Dec  5 10:01:28 2018
Summary: Recommended update for libqca2
Severity: moderate
References: 1108634
Description:
This update for libqca2 provides the following fix:

- Fix a segfault when creating DSA keys. (bsc#1108634)


-----------------------------------------
Patch: SUSE-2018-2846
Released: Wed Dec  5 12:50:41 2018
Summary: Security update for openssl-1_0_0
Severity: moderate
References: 1100078,1112209,1113534,1113652,1113742,CVE-2018-0734,CVE-2018-5407
Description:
This update for openssl-1_0_0 fixes the following issues:


Security issues fixed:

- CVE-2018-0734: Fixed timing vulnerability in DSA signature generation (bsc#1113652).
- CVE-2018-5407: Fixed elliptic curve scalar multiplication timing attack defenses (bsc#1113534).
- Add missing timing side channel patch for DSA signature generation (bsc#1113742).

Non-security issues fixed:

- Fixed infinite loop in DSA generation with incorrect parameters (bsc#1112209).
- Set TLS version to 0 in msg_callback for record messages to avoid confusing applications (bsc#1100078).


-----------------------------------------
Patch: SUSE-2018-2868
Released: Fri Dec  7 13:10:56 2018
Summary: Security update for ImageMagick
Severity: moderate
References: 1057246,1113064,1117463,CVE-2018-18544
Description:
This update for ImageMagick fixes the following issues:

Security issues fixed:

- CVE-2018-18544: Fixed memory leak in the function WriteMSLImage (bsc#1113064).


Non-security issues fixed:

- Improve import documentation (bsc#1057246).
- Allow override system security policy (bsc#1117463).
- asan_build: build ASAN included
- debug_build: build more suitable for debugging


-----------------------------------------
Patch: SUSE-2018-2885
Released: Mon Dec 10 14:06:27 2018
Summary: Security update for python-cryptography, python-pyOpenSSL
Severity: important
References: 1021578,1111634,1111635,CVE-2018-1000807,CVE-2018-1000808
Description:

This update for python-cryptography, python-pyOpenSSL fixes the following issues:

Security issues fixed:

- CVE-2018-1000808: A memory leak due to missing reference checking in PKCS#12 store handling was fixed (bsc#1111634)
- CVE-2018-1000807: A use-after-free in X509 object handling was fixed (bsc#1111635)

- avoid bad interaction with python-cryptography package. (bsc#1021578)

  

-----------------------------------------
Patch: SUSE-2018-2901
Released: Tue Dec 11 21:46:34 2018
Summary: Recommended update for icewm
Severity: moderate
References: 1105301
Description:
This update for icewm fixes the following issues:

- Adds a recommended package to ensure 'Lock Workstation' works (bsc#1105301)


-----------------------------------------
Patch: SUSE-2018-2906
Released: Tue Dec 11 21:48:05 2018
Summary: Recommended update for blog
Severity: moderate
References: 1071568
Description:
This update for blog fixes the following issues:

- Hardening of the console list generation (bsc#1071568)
- Changed description of blog-plymouth in same manner as used by the release notes


-----------------------------------------
Patch: SUSE-2018-2916
Released: Wed Dec 12 16:03:41 2018
Summary: Security update for ghostscript
Severity: important
References: 1109105,1111479,1111480,1112229,1117022,1117274,1117313,1117327,1117331,CVE-2018-17183,CVE-2018-17961,CVE-2018-18073,CVE-2018-18284,CVE-2018-19409,CVE-2018-19475,CVE-2018-19476,CVE-2018-19477
Description:
This update for ghostscript to version 9.26 fixes the following issues:

Security issues fixed:

- CVE-2018-19475: Fixed bypass of an intended access restriction in psi/zdevice2.c (bsc#1117327)
- CVE-2018-19476: Fixed bypass of an intended access restriction in psi/zicc.c (bsc#1117313)
- CVE-2018-19477: Fixed bypass of an intended access restriction in psi/zfjbig2.c (bsc#1117274)
- CVE-2018-19409: Check if another device is used correctly in LockSafetyParams (bsc#1117022)
- CVE-2018-18284: Fixed potential sandbox escape through 1Policy operator (bsc#1112229)
- CVE-2018-18073: Fixed leaks through operator in saved execution stacks (bsc#1111480)
- CVE-2018-17961: Fixed a -dSAFER sandbox escape by bypassing executeonly (bsc#1111479)
- CVE-2018-17183: Fixed a potential code injection by specially crafted PostScript files (bsc#1109105)

Version update to 9.26 (bsc#1117331):

- Security issues have been the primary focus
- Minor bug fixes and improvements
- For release summary see: http://www.ghostscript.com/doc/9.26/News.htm


-----------------------------------------
Patch: SUSE-2018-2917
Released: Wed Dec 12 16:05:34 2018
Summary: Security update for cups
Severity: important
References: 1115750,CVE-2018-4700
Description:
This update for cups fixes the following issues:

Security issue fixed:

- CVE-2018-4700: Fixed extremely predictable cookie generation that is effectively breaking the CSRF protection of the CUPS web interface (bsc#1115750).


-----------------------------------------
Patch: SUSE-2018-2918
Released: Wed Dec 12 17:32:07 2018
Summary: Security update for git
Severity: important
References: 1110949,CVE-2018-17456
Description:
This update for git fixes the following issue:

- CVE-2018-17456: Git allowed remote code execution during processing of a recursive 'git clone' of a superproject if a .gitmodules file has a URL field beginning with a '-' character. (boo#1110949).


-----------------------------------------
Patch: SUSE-2018-2946
Released: Mon Dec 17 08:50:42 2018
Summary: Security update for tcpdump
Severity: moderate
References: 1117267,CVE-2018-19519
Description:
This update for tcpdump fixes the following issues:

Security issues fixed:

- CVE-2018-19519: Fixed a stack-based buffer over-read in the print_prefix function (bsc#1117267)


-----------------------------------------
Patch: SUSE-2018-2947
Released: Mon Dec 17 08:51:28 2018
Summary: Security update for openldap2
Severity: moderate
References: 1073313,CVE-2017-17740
Description:
This update for openldap2 fixes the following issues:

Security issue fixed:

- CVE-2017-17740: When both the nops module and the memberof overlay
  are enabled, attempts to free a buffer that was allocated on the stack,
  which allows remote attackers to cause a denial of service (slapd crash)
  via a member MODDN operation.  (bsc#1073313)


-----------------------------------------
Patch: SUSE-2018-2973
Released: Tue Dec 18 07:30:43 2018
Summary: Recommended update for libepubgen, libetonyek, liblangtag, libmwaw, libnumbertext, libreoffice, libstaroffice, libwps, myspell-dictionaries, xmlsec1
Severity: moderate
References: 1050305,1094779,1096360,1104876
Description:

This update for LibreOffice, libepubgen, libetonyek, liblangtag, libmwaw, libnumbertext, libstaroffice, libwps, myspell-dictionaries, xmlsec1 fixes the following issues:

LibreOffice was updated to 6.1.3.2 (fate#326624) and contains new features and lots of bugfixes:

The full changelog can be found on:

        https://wiki.documentfoundation.org/ReleaseNotes/6.1

Add more translations:

  * Belarusian
  * Bodo
  * Dogri
  * Frisian
  * Gaelic
  * Paraguayan_Guaran
  * Upper_Sorbian
  * Konkani
  * Kashmiri
  * Luxembourgish
  * Monglolian
  * Manipuri
  * Burnese
  * Occitan
  * Kinyarwanda
  * Santali
  * Sanskrit
  * Sindhi
  * Sidamo
  * Tatar
  * Uzbek
  * Upper Sorbian
  * Venetian
  * Amharic
  * Asturian
  * Tibetian
  * Bosnian
  * English GB
  * English ZA
  * Indonesian
  * Icelandic
  * Georgian
  * Khmer
  * Lao
  * Macedonian
  * Nepali
  * Oromo
  * Albanian
  * Tajik
  * Uyghur
  * Vietnamese
  * Kurdish

- Try to build all languages see bsc#1096360
- Make sure to install the KDE5/Qt5 UI/filepicker
- Try to implement safeguarding to avoid bsc#1050305
- Disable base-drivers-mysql as it needs mysqlcppcon that is only
  for mysql and not mariadb, causes issues bsc#1094779
  * Users can still connect using jdbc/odbc
- Fix java detection on machines with too many cpus

libepubgen was updated to 0.1.1:

- Avoid <div> inside <p> or <span>.
- Avoid writin vertical-align attribute without a value.
- Fix generation of invalid XHTML when there is a link starting at the beginning of a footnote.
- Handle relative width for images.
- Fixed layout: write chapter names to improve navigation.
- Support writing mode.
- Start a new HTML file at every page span in addition to the splits induced by the chosen split method. This is to ensure that specified writing mode works correctly, as it is HTML <body> attribute.



libetonyek was updated to 0.1.8:

- More support for keynote content
- Add support for Keynote 1 documents.
- Add support for Numbers 3 documents.
- Fix several issues found by oss-fuzz.
- Fix build with glm 0.9.9.
- Other fixes and improvements.

liblangtag was updated to 0.6.2:

- use standard function
- fix leak in test

libmwaw was updated to 0.3.14:

- Support MS Multiplan 1.1 files

libnumbertext was update to 1.0.5:

- Various fixes in numerical calculations and issues reported on libreoffice tracker

libstaroffice was updated to 0.0.6:

- retrieve some StarMath's formula,
- retrieve some charts as graphic,
- retrieve some fields in sda/sdc/sdp text-boxes,
- .sdw: retrieve more attachments.

libwps was updated to 0.4.9:

- QuattroPro: add parser to .wb3 files
- Multiplan: add parser to DOS v1-v3 files
- charts: try to retrieve charts in .wk*, .wq* files
- QuattroPro: add parser to .wb[12] files

myspell-dictionaries was updated to 20181025:

- Turkish dictionary added
- Updated French dictionary

xmlsec1 was updated to 1.2.26:

- Added xmlsec-mscng module based on Microsoft Cryptography API: Next Generation
- Added support for GOST 2012 and fixed CryptoPro CSP provider for GOST R 34.10-2001 in xmlsec-mscrypto

  

-----------------------------------------
Patch: SUSE-2018-2977
Released: Tue Dec 18 15:43:30 2018
Summary: Security update for libqt5-qtbase
Severity: moderate
References: 1118595,1118596,CVE-2018-15518,CVE-2018-19873
Description:
This update for libqt5-qtbase fixes the following issues:

Security issues fixed:

- CVE-2018-15518: Fixed double free in QXmlStreamReader (bsc#1118595)
- CVE-2018-19873: Fixed Denial of Service on malformed BMP file in QBmpHandler (bsc#1118596)


-----------------------------------------
Patch: SUSE-2018-2980
Released: Wed Dec 19 09:53:07 2018
Summary: Recommended update for rrdtool
Severity: low
References: 1080251
Description:
This update for rrdtool provides the following fix:

- Fix an infinite loop and crashing with pango. (bsc#1080251)


-----------------------------------------
Patch: SUSE-2018-2987
Released: Wed Dec 19 13:53:59 2018
Summary: Security update for bluez
Severity: moderate
References: 1013721,1013732,CVE-2016-9800,CVE-2016-9801
Description:
This update for bluez fixes the following issues:

Security issues fixed:

- CVE-2016-9800: Fixed a buffer overflow in the pin_code_reply_dump function (bsc#1013721)
- CVE-2016-9801: Fixed a buffer overflow in the set_ext_ctrl function (bsc#1013732)


-----------------------------------------
Patch: SUSE-2018-2991
Released: Wed Dec 19 14:17:13 2018
Summary: Security update for tiff
Severity: moderate
References: 1017693,1054594,1115717,990460,CVE-2016-10092,CVE-2016-10093,CVE-2016-10094,CVE-2016-6223,CVE-2017-12944,CVE-2018-19210
Description:
This update for tiff fixes the following issues:

Security issues fixed:                                   
    
- CVE-2018-19210: Fixed NULL pointer dereference in the TIFFWriteDirectorySec function (bsc#1115717).
- CVE-2017-12944: Fixed denial of service issue in the TIFFReadDirEntryArray function (bsc#1054594).
- CVE-2016-10094: Fixed heap-based buffer overflow in the _tiffWriteProc function (bsc#1017693).
- CVE-2016-10093: Fixed heap-based buffer overflow in the _TIFFmemcpy function (bsc#1017693).
- CVE-2016-10092: Fixed heap-based buffer overflow in the TIFFReverseBits function (bsc#1017693).
- CVE-2016-6223: Fixed out-of-bounds read on memory-mapped files in TIFFReadRawStrip1() and TIFFReadRawTile1() (bsc#990460).


-----------------------------------------
Patch: SUSE-2018-3002
Released: Wed Dec 19 21:50:43 2018
Summary: Recommended update for psmisc
Severity: moderate
References: 1098697,1112780
Description:
This update for psmisc provides the following fix:

- Make the fuser option -m <block_device> work even with mountinfo. (bsc#1098697)
- Support also btrFS entries in mountinfo, that is use stat to determine the device of the
  mounted subvolume. (bsc#1098697, bsc#1112780)
- Respect that the seventh field(s) before the single hyphen of mountinfo are optional
  fields.


-----------------------------------------
Patch: SUSE-2018-3003
Released: Wed Dec 19 21:51:17 2018
Summary: Recommended update for gnome-settings-daemon
Severity: low
References: 1029083,1056289,1063826,1067288,1077412,1086496,990470
Description:

This update for gnome-settings-daemon provides the following fixes:

- Fix update notification not showing when patches have conflicts. (bsc#1063826)
- Switch new user's default input engine from 'anthy' to 'mozc' in gnome-desktop with
  Japanese language and ibus input framework. (bsc#1056289, bsc#1067288, bsc#1029083)
- Make it possible to wake up the screen using a touch screen input. (bsc#1086496)
- Fix two finger scroll gesture support. (bsc#1077412, bsc#990470)


-----------------------------------------
Patch: SUSE-2018-3022
Released: Thu Dec 20 22:06:35 2018
Summary: Security update for mariadb
Severity: important
References: 1013882,1101676,1101677,1101678,1103342,1112368,1112397,1112417,1112421,1112432,1116686,1118754,CVE-2016-9843,CVE-2018-3058,CVE-2018-3063,CVE-2018-3064,CVE-2018-3066,CVE-2018-3143,CVE-2018-3156,CVE-2018-3174,CVE-2018-3251,CVE-2018-3282
Description:
This update for mariadb fixes the following issues:

Update to MariaDB 10.0.37 GA (bsc#1116686).

Security issues fixed:

- CVE-2018-3282: Server Storage Engines unspecified vulnerability (CPU Oct 2018) (bsc#1112432)
- CVE-2018-3251: InnoDB unspecified vulnerability (CPU Oct 2018) (bsc#1112397)
- CVE-2018-3174: Client programs unspecified vulnerability (CPU Oct 2018) (bsc#1112368)
- CVE-2018-3156: InnoDB unspecified vulnerability (CPU Oct 2018) (bsc#1112417)
- CVE-2018-3143: InnoDB unspecified vulnerability (CPU Oct 2018) (bsc#1112421)
- CVE-2018-3066: Unspecified vulnerability in the MySQL Server component of Oracle MySQL (subcomponent Server Options). (bsc#1101678)
- CVE-2018-3064: InnoDB unspecified vulnerability (CPU Jul 2018) (bsc#1103342)
- CVE-2018-3063: Unspecified vulnerability in the MySQL Server component of Oracle MySQL (subcomponent Server Security Privileges). (bsc#1101677)
- CVE-2018-3058: Unspecified vulnerability in the MySQL Server component of Oracle MySQL (subcomponent MyISAM). (bsc#1101676)
- CVE-2016-9843: Big-endian out-of-bounds pointer (bsc#1013882)

Non-security changes:

- Remove PerconaFT from the package as it has AGPL licence (bsc#1118754)
- do not just remove tokudb plugin but don't build it at all (missing jemalloc dependency)

Release notes and changelog:

- https://kb.askmonty.org/en/mariadb-10037-release-notes
- https://kb.askmonty.org/en/mariadb-10037-changelog
- https://kb.askmonty.org/en/mariadb-10036-release-notes
- https://kb.askmonty.org/en/mariadb-10036-changelog


-----------------------------------------
Patch: SUSE-2018-3029
Released: Fri Dec 21 17:34:05 2018
Summary: Recommended update for libgcrypt
Severity: moderate
References: 1117355
Description:
This update for libgcrypt provides the following fix:

- Fail selftests when checksum file is missing in FIPS mode only. (bsc#1117355)


-----------------------------------------
Patch: SUSE-2018-3035
Released: Fri Dec 21 17:35:52 2018
Summary: Recommended update for lvm2
Severity: moderate
References: 1110872,1114113
Description:
This update for lvm2 provides the following fixes:

- Take back resource agents for clvmd and cmirror. (bsc#1110872)
- Prevent writing beyond metadata area. (bsc#1114113)


-----------------------------------------
Patch: SUSE-2018-3038
Released: Fri Dec 21 17:36:35 2018
Summary: Recommended update for lio-utils
Severity: moderate
References: 1099520,1108982
Description:
This update for lio-utils provides the following fixes:

- Ensure deprecated target.service conflicts with targetcli.service, so that
  they are not executed at the same time. (bsc#1099520)
- Ensure that the generated script lio_setup.sh ends with success by properly returning
  its exit status. (bsc#1108982)


-----------------------------------------
Patch: SUSE-2018-3045
Released: Fri Dec 21 18:49:12 2018
Summary: Security update for MozillaFirefox, mozilla-nspr and mozilla-nss
Severity: important
References: 1097410,1106873,1119069,1119105,CVE-2018-0495,CVE-2018-12384,CVE-2018-12404,CVE-2018-12405,CVE-2018-17466,CVE-2018-18492,CVE-2018-18493,CVE-2018-18494,CVE-2018-18498
Description:
This update for MozillaFirefox, mozilla-nss and mozilla-nspr fixes the following issues:

Issues fixed in MozillaFirefox:

- Update to Firefox ESR 60.4 (bsc#1119105)
- CVE-2018-17466: Fixed a buffer overflow and out-of-bounds read in ANGLE library with TextureStorage11
- CVE-2018-18492: Fixed a use-after-free with select element
- CVE-2018-18493: Fixed a buffer overflow in accelerated 2D canvas with Skia
- CVE-2018-18494: Fixed a Same-origin policy violation using location attribute and performance.getEntries
  to steal cross-origin URLs
- CVE-2018-18498: Fixed a integer overflow when calculating buffer sizes for images
- CVE-2018-12405: Fixed a few memory safety bugs

Issues fixed in mozilla-nss:

- Update to NSS 3.40.1 (bsc#1119105)
- CVE-2018-12404: Fixed a cache side-channel variant of the Bleichenbacher attack (bsc#1119069)
- CVE-2018-12384: Fixed an issue in the SSL handshake. NSS responded to an
  SSLv2-compatible ClientHello with a ServerHello that had an all-zero random. (bsc#1106873)
- CVE-2018-0495: Fixed a memory-cache side-channel attack with ECDSA signatures (bsc#1097410)
- Fixed a decryption failure during FFDHE key exchange
- Various security fixes in the ASN.1 code

Issues fixed in mozilla-nspr:

- Update mozilla-nspr to 4.20 (bsc#1119105)


-----------------------------------------
Patch: SUSE-2018-3054
Released: Fri Dec 28 17:45:34 2018
Summary: Recommended update for hwinfo
Severity: moderate
References: 1018271,1084700,1107196
Description:
This update for hwinfo provides the following fixes:

- Add script tp update PCI and USB IDs. (fate#326431)
- Adjust hwinfo know about RISC-V.
- Update git2log script.
- Fix curl commands.
- Fix ID of S-Par storage controller. (bsc#1107196)
- Add network interfaces found on mdio bus. (bsc#1018271)
- The location of the S-Par drivers virtual buses has changed.
  (bsc#1107196)
- Ensure udev device links are unique. (bsc#1084700)
  

-----------------------------------------
Patch: SUSE-2018-3062
Released: Fri Dec 28 18:38:22 2018
Summary: Security update for mailman
Severity: important
References: 1077358,1099510,1101288,925502,995352,CVE-2015-2775,CVE-2016-6893,CVE-2018-0618,CVE-2018-13796,CVE-2018-5950
Description:
This update for mailman fixes the following security vulnerabilities:

- Fixed a XSS vulnerability and information leak in user options CGI, which
  could be used to execute arbitrary scripts in the user's browser via
  specially encoded URLs (bsc#1077358 CVE-2018-5950)
- Fixed a directory traversal vulnerability in MTA transports when using the
  recommended Mailman Transport for Exim (bsc#925502 CVE-2015-2775)
- Fixed a XSS vulnerability, which allowed malicious listowners to inject
  scripts into the listinfo pages (bsc#1099510 CVE-2018-0618)
- Fixed arbitrary text injection vulnerability in several mailman CGIs
  (CVE-2018-13796 bsc#1101288)
- Fixed a CSRF vulnerability on the user options page (CVE-2016-6893 bsc#995352)


-----------------------------------------
Patch: SUSE-2018-3067
Released: Fri Dec 28 18:40:05 2018
Summary: Security update for wireshark
Severity: moderate
References: 1117740,CVE-2018-19622,CVE-2018-19623,CVE-2018-19624,CVE-2018-19625,CVE-2018-19626,CVE-2018-19627
Description:
This update for wireshark fixes the following issues:

Update to Wireshark 2.4.11 (bsc#1117740).

Security issues fixed:

- CVE-2018-19625: The Wireshark dissection engine could crash (wnpa-sec-2018-51)
- CVE-2018-19626: The DCOM dissector could crash (wnpa-sec-2018-52)
- CVE-2018-19623: The LBMPDM dissector could crash (wnpa-sec-2018-53) 
- CVE-2018-19622: The MMSE dissector could go into an infinite loop (wnpa-sec-2018-54)
- CVE-2018-19627: The IxVeriWave file parser could crash (wnpa-sec-2018-55) 
- CVE-2018-19624: The PVFS dissector could crash (wnpa-sec-2018-56)

Further bug fixes and updated protocol support as listed in:

- https://www.wireshark.org/docs/relnotes/wireshark-2.4.11.html


-----------------------------------------
Patch: SUSE-2019-11
Released: Wed Jan  2 20:27:04 2019
Summary: Recommended update for OpenIPMI
Severity: moderate
References: 1060799
Description:
This update for OpenIPMI provides the following fix:

- On aarch64 hardware, the IPMI hardware was detected but an incorrect driver was loaded
  ('ipmi_si.ko' rather than the correct 'ipmi_ssif.ko'). The fix adds a new entry to
  /etc/sysconfig/ipmi which defines the name of the driver to load. A utility
  (/usr/lib/openipmi-helper) then uses this name to load the correct driveri. (bsc#1060799)


-----------------------------------------
Patch: SUSE-2019-19
Released: Fri Jan  4 12:37:51 2019
Summary: Security update for polkit
Severity: moderate
References: 1118277,CVE-2018-19788
Description:
This update for polkit fixes the following issues:

Security issue fixed:

- CVE-2018-19788: Fixed handling of UIDs over MAX_UINT (bsc#1118277)


-----------------------------------------
Patch: SUSE-2019-21
Released: Mon Jan  7 10:07:02 2019
Summary: Recommended update for gcc7
Severity: moderate
References: 1099119,1099192
Description:


gcc7 was updated to the GCC 7.4 release.

Other bugfixes:

- Fix AVR configuration to not use __cxa_atexit or libstdc++ headers.
  Point to /usr/avr/sys-root/include as system header include directory.
- Includes fix for build with ISL 0.20.
- Pulls fix for libcpp lexing bug on ppc64le manifesting during build with gcc8.  [bsc#1099119]
- Pulls fix for forcing compile-time tuning even when building with -march=z13 on s390x.  [bsc#1099192]
- Fixes support for 32bit ASAN with glibc 2.27+


-----------------------------------------
Patch: SUSE-2019-31
Released: Tue Jan  8 13:03:02 2019
Summary: Recommended update for librdkafka
Severity: moderate
References: 1119963
Description:

  
This update ships librdkafka 0.11.6 to SUSE Linux Enterprise Server 12 SP3 and SP4.

librdkafka is a C library implementation of the Apache Kafka protocol,
containing both Producer and Consumer support.



-----------------------------------------
Patch: SUSE-2019-35
Released: Tue Jan  8 13:04:25 2019
Summary: Recommended update for gdb
Severity: moderate
References: 1109013
Description:
This update for gdb provides the following fix:

- Fix a crash when reading core. (bsc#1109013)


-----------------------------------------
Patch: SUSE-2019-42
Released: Tue Jan  8 13:06:45 2019
Summary: Recommended update for gnome-control-center
Severity: moderate
References: 1078968
Description:
This update for gnome-control-center provides the following fix:

- user-accounts: Remove implicit language setting when a new user navigates to the user
  panel for the first time. (bsc#1078968)


-----------------------------------------
Patch: SUSE-2019-43
Released: Tue Jan  8 13:07:17 2019
Summary: Recommended update for acl
Severity: low
References: 953659
Description:
This update for acl fixes the following issues:

- quote: Escape literal backslashes (bsc#953659).


-----------------------------------------
Patch: SUSE-2019-49
Released: Wed Jan  9 17:25:50 2019
Summary: Security update for java-1_7_0-openjdk
Severity: important
References: 1101644,1101645,1101651,1101656,1112142,1112143,1112144,1112146,1112147,1112152,1112153,CVE-2018-13785,CVE-2018-16435,CVE-2018-2938,CVE-2018-2940,CVE-2018-2952,CVE-2018-2973,CVE-2018-3136,CVE-2018-3139,CVE-2018-3149,CVE-2018-3169,CVE-2018-3180,CVE-2018-3214,CVE-2018-3639
Description:
This update for java-1_7_0-openjdk to version 7u201 fixes the following issues:

Security issues fixed:

- CVE-2018-3136: Manifest better support (bsc#1112142)
- CVE-2018-3139: Better HTTP Redirection (bsc#1112143)
- CVE-2018-3149: Enhance JNDI lookups (bsc#1112144)
- CVE-2018-3169: Improve field accesses (bsc#1112146)
- CVE-2018-3180: Improve TLS connections stability (bsc#1112147)
- CVE-2018-3214: Better RIFF reading support (bsc#1112152)
- CVE-2018-13785: Upgrade JDK 8u to libpng 1.6.35 (bsc#1112153)
- CVE-2018-16435: heap-based buffer overflow in SetData function in cmsIT8LoadFromFile
- CVE-2018-2938: Support Derby connections (bsc#1101644)
- CVE-2018-2940: Better stack walking (bsc#1101645)
- CVE-2018-2952: Exception to Pattern Syntax (bsc#1101651)
- CVE-2018-2973: Improve LDAP support (bsc#1101656)
- CVE-2018-3639 cpu speculative store bypass mitigation


-----------------------------------------
Patch: SUSE-2019-57
Released: Thu Jan 10 16:02:42 2019
Summary: Security update for java-1_8_0-openjdk
Severity: important
References: 1112142,1112143,1112144,1112146,1112147,1112148,1112152,1112153,CVE-2018-13785,CVE-2018-16435,CVE-2018-3136,CVE-2018-3139,CVE-2018-3149,CVE-2018-3169,CVE-2018-3180,CVE-2018-3183,CVE-2018-3214
Description:
This update for java-1_8_0-openjdk to version 8u191 fixes the following issues:

Security issues fixed:

- CVE-2018-3136: Manifest better support (bsc#1112142)
- CVE-2018-3139: Better HTTP Redirection (bsc#1112143)
- CVE-2018-3149: Enhance JNDI lookups (bsc#1112144)
- CVE-2018-3169: Improve field accesses (bsc#1112146)
- CVE-2018-3180: Improve TLS connections stability (bsc#1112147)
- CVE-2018-3214: Better RIFF reading support (bsc#1112152)
- CVE-2018-13785: Upgrade JDK 8u to libpng 1.6.35 (bsc#1112153)
- CVE-2018-3183: Improve script engine support (bsc#1112148)
- CVE-2018-16435: heap-based buffer overflow in SetData function in cmsIT8LoadFromFile


-----------------------------------------
Patch: SUSE-2019-59
Released: Thu Jan 10 16:04:46 2019
Summary: Security update for webkit2gtk3
Severity: important
References: 1110279,1116998,CVE-2018-4191,CVE-2018-4197,CVE-2018-4207,CVE-2018-4208,CVE-2018-4209,CVE-2018-4210,CVE-2018-4212,CVE-2018-4213,CVE-2018-4261,CVE-2018-4262,CVE-2018-4263,CVE-2018-4264,CVE-2018-4265,CVE-2018-4266,CVE-2018-4267,CVE-2018-4270,CVE-2018-4272,CVE-2018-4273,CVE-2018-4278,CVE-2018-4284,CVE-2018-4299,CVE-2018-4306,CVE-2018-4309,CVE-2018-4312,CVE-2018-4314,CVE-2018-4315,CVE-2018-4316,CVE-2018-4317,CVE-2018-4318,CVE-2018-4319,CVE-2018-4323,CVE-2018-4328,CVE-2018-4345,CVE-2018-4358,CVE-2018-4359,CVE-2018-4361,CVE-2018-4372,CVE-2018-4373,CVE-2018-4375,CVE-2018-4376,CVE-2018-4378,CVE-2018-4382,CVE-2018-4386,CVE-2018-4392,CVE-2018-4416
Description:
This update for webkit2gtk3 to version 2.22.4 fixes the following issues:

Security issues fixed:

  CVE-2018-4191, CVE-2018-4197, CVE-2018-4299, CVE-2018-4306, CVE-2018-4309, CVE-2018-4392,
  CVE-2018-4312, CVE-2018-4314, CVE-2018-4315, CVE-2018-4316, CVE-2018-4317, CVE-2018-4318,
  CVE-2018-4319, CVE-2018-4323, CVE-2018-4328, CVE-2018-4358, CVE-2018-4359, CVE-2018-4361,
  CVE-2018-4345, CVE-2018-4372, CVE-2018-4373, CVE-2018-4375, CVE-2018-4376, CVE-2018-4416,
  CVE-2018-4378, CVE-2018-4382, CVE-2018-4386 (bsc#1110279, bsc#1116998). 
  

-----------------------------------------
Patch: SUSE-2019-60
Released: Thu Jan 10 16:06:23 2019
Summary: Security update for LibVNCServer
Severity: important
References: 1120114,1120115,1120116,1120117,1120118,1120119,1120120,1120121,1120122,CVE-2018-15126,CVE-2018-15127,CVE-2018-20019,CVE-2018-20020,CVE-2018-20021,CVE-2018-20022,CVE-2018-20023,CVE-2018-20024,CVE-2018-6307
Description:
This update for LibVNCServer fixes the following issues:

Security issues fixed:

- CVE-2018-15126: Fixed use-after-free in file transfer extension (bsc#1120114)
- CVE-2018-6307: Fixed use-after-free in file transfer extension server code (bsc#1120115)
- CVE-2018-20020: Fixed heap out-of-bound write inside structure in VNC client code (bsc#1120116)
- CVE-2018-15127: Fixed heap out-of-bounds write in rfbserver.c (bsc#1120117)
- CVE-2018-20019: Fixed multiple heap out-of-bound writes in VNC client code (bsc#1120118)
- CVE-2018-20023: Fixed information disclosure through improper initialization in VNC Repeater client code (bsc#1120119)
- CVE-2018-20022: Fixed information disclosure through improper initialization in VNC client code (bsc#1120120)
- CVE-2018-20024: Fixed NULL pointer dereference in VNC client code (bsc#1120121)
- CVE-2018-20021: Fixed infinite loop in VNC client code (bsc#1120122)


-----------------------------------------
Patch: SUSE-2019-68
Released: Thu Jan 10 20:32:47 2019
Summary: Recommended update for mutter
Severity: moderate
References: 1017412,1024748,1045440,1052058,1093541
Description:

This update for mutter provides the following fix:

- Memory leak in gnome-shell (bsc#1093541)
- Drop stray assert to avoid crash when static workspace number is decreased. (bsc#1045440)
- Add RGB16_565 format to support 16-bit color depth sessions. (fate#323412, bsc#1024748)
- Fix memory leak in meta_prop_get_values(). (bsc#1017412)
- Implement _NET_RESTACK_WINDOW and respect the sibling field of XConfigureRequestEvent.
  This way X11 window stack operations work as expected. (bsc#1052058)


-----------------------------------------
Patch: SUSE-2019-69
Released: Thu Jan 10 20:33:38 2019
Summary: Recommended update for ceph
Severity: moderate
References: 1109009,1110415,1110416,1110419,1112872,1114414,1116205
Description:

This update for ceph fixes the following issues:

* rgw: resharding produces invalid values of bucket stats (bsc#1110419)
* rgw: Fix log level of gc_iterate_entries (bsc#1114414)      
* rgw: dynamic reshard fixe (bsc#1109009)
* bsc#1110415, bsc#1110416
  # rgw: es module: set compression type correctly
  # rgw: ES sync: be more restrictive on object system attrs
  # rgw: ES sync: wrap all the decode bls in try block 
  # rgw: librgw: initialize curl and http client for multisite 
* bsc#1116205, bsc#1112872
  # rgw: allow init complete to proceed in case of erroneus zone deletes 
  # rgw: period update: check for dangling master zone references
  # tests: tests for master zone deletion
  # tests: rgw: test_multi: python 2-3 compatibility


-----------------------------------------
Patch: SUSE-2019-72
Released: Thu Jan 10 20:34:44 2019
Summary: Recommended update for apache2
Severity: moderate
References: 1108989
Description:
This update for apache2 provides the following fix:

- Fix full scoreboard error. (bsc#1108989)


-----------------------------------------
Patch: SUSE-2019-96
Released: Tue Jan 15 16:14:55 2019
Summary: Security update for soundtouch
Severity: moderate
References: 1108631,1108632,CVE-2018-17097,CVE-2018-17098
Description:
This update for soundtouch fixes the following issues:

Security issues fixed:

- CVE-2018-17098: Fixed a heap corruption from size inconsistency, which
  allowed remote attackers to cause a denial of service or possibly have
  other unspecified impact (bsc#1108632)
- CVE-2018-17097: Fixed a double free, which allowed remote attackers to cause
  a denial of service or possibly have other unspecified impact  (bsc#1108631)


-----------------------------------------
Patch: SUSE-2019-100
Released: Tue Jan 15 18:02:18 2019
Summary: Recommended update for grub2
Severity: moderate
References: 1111955
Description:
This update for grub2 provides the following fix:

- ieee1275: Fix double free in CAS reboot. (bsc#1111955)


-----------------------------------------
Patch: SUSE-2019-101
Released: Tue Jan 15 18:02:39 2019
Summary: Recommended update for timezone
Severity: moderate
References: 1120402
Description:
This update for timezone fixes the following issues:

- Update 2018i:
  São Tomé and Príncipe switches from +01 to +00 on 2019-01-01. (bsc#1120402)
- Update 2018h:
  Qyzylorda, Kazakhstan moved from +06 to +05 on 2018-12-21
  New zone Asia/Qostanay because Qostanay, Kazakhstan didn't move
  Metlakatla, Alaska observes PST this winter only
  Guess Morocco will continue to adjust clocks around Ramadan
  Add predictions for Iran from 2038 through 2090  


-----------------------------------------
Patch: SUSE-2019-105
Released: Tue Jan 15 18:03:27 2019
Summary: Recommended update for chrony
Severity: moderate
References: 1117147
Description:
This update for chrony fixes the following issues:

- Generate chronyd sysconfig file. (bsc#1117147)


-----------------------------------------
Patch: SUSE-2019-107
Released: Wed Jan 16 11:56:21 2019
Summary: Recommended update for mozilla-nss
Severity: moderate
References: 1090767,1121045,1121207
Description:
This update for mozilla-nss fixes the following issues:

- The hmac packages used for FIPS certification inadvertently removed in last update: re-added.  (bsc#1121207)
- Added 'Suggest:' for libfreebl3 and libsoftokn3 respective -hmac packages to avoid dependency issues during updates (bsc#1090767, bsc#1121045)


-----------------------------------------
Patch: SUSE-2019-111
Released: Thu Jan 17 14:18:31 2019
Summary: Security update for krb5
Severity: important
References: 1120489,CVE-2018-20217
Description:
This update for krb5 fixes the following issues:

Security issue fixed:

- CVE-2018-20217: Fixed an assertion issue with older encryption types (bsc#1120489)


-----------------------------------------
Patch: SUSE-2019-119
Released: Fri Jan 18 11:53:17 2019
Summary: Security update for mariadb
Severity: important
References: 1013882,1111858,1111859,1112368,1112377,1112384,1112386,1112391,1112397,1112404,1112415,1112417,1112421,1112432,1116686,1118754,1120041,CVE-2016-9843,CVE-2018-3143,CVE-2018-3156,CVE-2018-3162,CVE-2018-3173,CVE-2018-3174,CVE-2018-3185,CVE-2018-3200,CVE-2018-3251,CVE-2018-3277,CVE-2018-3282,CVE-2018-3284
Description:
This update for mariadb to version 10.2.19 fixes the following issues: (bsc#1116686)

Security issues fixed:

- CVE-2016-9843: Big-endian out-of-bounds pointer (bsc#1013882)
- CVE-2018-3282, CVE-2018-3174, CVE-2018-3143, CVE-2018-3156, 
  CVE-2018-3251, CVE-2018-3185, CVE-2018-3277, CVE-2018-3162, 
  CVE-2018-3173, CVE-2018-3200, CVE-2018-3284:
            Fixed multiple denial of service vulnerabilities 
  (bsc#1112432, bsc#1112368, bsc#1112421, bsc#1112417, 
   bsc#1112397, bsc#1112391, bsc#1112415, bsc#1112386,
   bsc#1112404, bsc#1112377, bsc#1112384)

Non-security issues fixed:

- Fixed database corruption after renaming a prefix-indexed column (bsc#1120041)
- Remove PerconaFT from the package as it has a AGPL license (bsc#1118754)
- Enable testing for client plugins (bsc#1111859)
- Improve test coverage by keeping debug_key_management.so (bsc#1111858)
  

-----------------------------------------
Patch: SUSE-2019-128
Released: Fri Jan 18 14:21:27 2019
Summary: Security update for PackageKit
Severity: moderate
References: 1038425
Description:
This update for PackageKit fixes the following issues:

- Fixed displaying the license agreement pop up window during package update (bsc#1038425).


-----------------------------------------
Patch: SUSE-2019-132
Released: Mon Jan 21 09:34:57 2019
Summary: Security update for openssh
Severity: important
References: 1121571,1121816,1121818,1121821,CVE-2018-20685,CVE-2019-6109,CVE-2019-6110,CVE-2019-6111
Description:
This update for openssh fixes the following issues:

Security issue fixed:

- CVE-2018-20685: Fixed an issue where scp client allows remote SSH servers to bypass intended access restrictions (bsc#1121571)
- CVE-2019-6109: Fixed an issue where the scp client would allow malicious remote SSH servers to manipulate terminal output via the object name, e.g. by inserting ANSI escape sequences (bsc#1121816)
- CVE-2019-6110: Fixed an issue where the scp client would allow malicious remote SSH servers to manipulate stderr output, e.g. by inserting ANSI escape sequences (bsc#1121818)
- CVE-2019-6111: Fixed an issue where the scp client would allow malicious remote SSH servers to execute directory traversal attacks and overwrite files (bsc#1121821)


-----------------------------------------
Patch: SUSE-2019-138
Released: Mon Jan 21 15:53:26 2019
Summary: Security update for wireshark
Severity: moderate
References: 1121232,1121233,1121234,1121235,CVE-2019-5717,CVE-2019-5718,CVE-2019-5719,CVE-2019-5721
Description:
This update for wireshark to version 2.4.12 fixes the following issues:

Security issues fixed:

- CVE-2019-5717: Fixed a denial of service in the P_MUL dissector (bsc#1121232)
- CVE-2019-5718: Fixed a denial of service in the RTSE dissector and other dissectors (bsc#1121233)
- CVE-2019-5719: Fixed a denial of service in the ISAKMP dissector (bsc#1121234)
- CVE-2019-5721: Fixed a denial of service in the ISAKMP dissector (bsc#1121235)


-----------------------------------------
Patch: SUSE-2019-143
Released: Tue Jan 22 14:21:55 2019
Summary: Recommended update for ncurses
Severity: important
References: 1121450
Description:

This update for ncurses fixes the following issues:

- ncurses applications freezing (bsc#1121450)


-----------------------------------------
Patch: SUSE-2019-144
Released: Wed Jan 23 15:54:13 2019
Summary: Security update for ghostscript
Severity: important
References: 1122319,CVE-2019-6116
Description:
This update for ghostscript to version 9.26a fixes the following issues:

Security issue fixed:

- CVE-2019-6116: subroutines within pseudo-operators must themselves be pseudo-operators (bsc#1122319)


-----------------------------------------
Patch: SUSE-2019-146
Released: Wed Jan 23 15:59:13 2019
Summary: Security update for webkit2gtk3
Severity: important
References: 1119553,1119554,1119555,1119556,1119557,1119558,CVE-2018-4437,CVE-2018-4438,CVE-2018-4441,CVE-2018-4442,CVE-2018-4443,CVE-2018-4464
Description:
This update for webkit2gtk3 to version 2.22.5 fixes the following issues:

Security issues fixed:

- CVE-2018-4438: Fixed a logic issue which lead to memory corruption (bsc#1119554)
- CVE-2018-4437, CVE-2018-4441, CVE-2018-4442, CVE-2018-4443, CVE-2018-4464: 
  Fixed multiple memory corruption issues with improved memory handling 
  (bsc#1119553, bsc#1119555, bsc#1119556, bsc#1119557, bsc#1119558)


-----------------------------------------
Patch: SUSE-2019-159
Released: Thu Jan 24 13:54:09 2019
Summary: Recommended update for hwinfo
Severity: moderate
References: 1117982
Description:
This update for hwinfo provides the following fix:

- Adjust system type detection. (bsc#1117982)


-----------------------------------------
Patch: SUSE-2019-161
Released: Thu Jan 24 13:55:12 2019
Summary: Recommended update for ibus, gnome-shell, gjs
Severity: moderate
References: 1093541
Description:
This update for ibus, gnome-shell and gjs provides the following fix:

- Fix some problems that were causing memory leaks in gnome-shell. (bsc#1093541)


-----------------------------------------
Patch: SUSE-2019-164
Released: Thu Jan 24 13:56:45 2019
Summary: Recommended update for tpm-tools
Severity: low
References: 1114793
Description:
This update for tpm-tools provides the following fix:

- Fix undefined and binary data being output in the tpm_version command.
  (bsc#1114793)


-----------------------------------------
Patch: SUSE-2019-179
Released: Fri Jan 25 17:58:07 2019
Summary: Security update for avahi
Severity: moderate
References: 1120281,CVE-2018-1000845
Description:
This update for avahi fixes the following issues:

Security issue fixed:

- CVE-2018-1000845: Fixed DNS amplification and reflection to spoofed addresses (DOS) (bsc#1120281)


-----------------------------------------
Patch: SUSE-2019-182
Released: Mon Jan 28 14:12:40 2019
Summary: Recommended update for kmod
Severity: moderate
References: 1118629
Description:
This update for kmod fixes the following issues:

- Fixes module dependency file corruption on parallel invocation (bsc#1118629).
- Allows 'modprobe -c' to print the status of 'allow_unsupported_modules' option.

-----------------------------------------
Patch: SUSE-2019-183
Released: Mon Jan 28 14:13:05 2019
Summary: Recommended update for wodim
Severity: moderate
References: 1100466
Description:
This update for wodim fixes the following issues:

- Fixing a crash when option '-T' is used in conjunction with files larger than 4GB. (bsc#1100466)


-----------------------------------------
Patch: SUSE-2019-190
Released: Mon Jan 28 14:15:36 2019
Summary: Recommended update for smt
Severity: moderate
References: 1117190
Description:
This update for smt provides the following fix:

- Truncate patch summary to 512 characters. (bsc#1117190)


-----------------------------------------
Patch: SUSE-2019-209
Released: Thu Jan 31 09:41:23 2019
Summary: Security update for rsyslog
Severity: important
References: 1123164,CVE-2018-16881
Description:
This update for rsyslog fixes the following issues:

Security issue fixed:

- CVE-2018-16881: Fixed a denial of service when both the imtcp module and Octet-Counted TCP Framing is enabled (bsc#1123164).


-----------------------------------------
Patch: SUSE-2019-212
Released: Thu Jan 31 13:05:47 2019
Summary: Recommended update for openssh
Severity: important
References: 1123028
Description:
This update for openssh fixes the following issues:

- A previously applied security patch unintendedly changed the behavior of
  OpenSSH's 'scp' utility such that server-side brace expansion would no longer
  be supported. Attempts to copy a set files from a remote machine to the local
  one by running 'scp 'remote:{file-a,file-b}' /tmp' would fail. This change in
  behavior broke Corosync and, potentially, many user scripts that relied on
  brace expansion. [bsc#1123028]


-----------------------------------------
Patch: SUSE-2019-241
Released: Tue Feb  5 13:57:23 2019
Summary: Security update for spice
Severity: important
References: 1122706,CVE-2019-3813
Description:
This update for spice fixes the following issues:

Security issue fixed:

- CVE-2019-3813: Fixed a out-of-bounds read in the memslot_get_virt function that could lead to denial-of-service or code-execution (bsc#1122706).


-----------------------------------------
Patch: SUSE-2019-243
Released: Tue Feb  5 15:40:13 2019
Summary: Security update for python3
Severity: important
References: 1120644,1122191,CVE-2018-20406,CVE-2019-5010
Description:
This update for python3 fixes the following issues:

Security issue fixed:

- CVE-2019-5010: Fixed a denial-of-service vulnerability in the X509 certificate parser (bsc#1122191)
- CVE-2018-20406: Fixed a integer overflow via a large LONG_BINPUT (bsc#1120644)


-----------------------------------------
Patch: SUSE-2019-254
Released: Wed Feb  6 11:23:55 2019
Summary: Recommended update for grub2
Severity: moderate
References: 1114754
Description:
This update for grub2 fixes the following issues:

- Fixed possible install media boot issues on certain hardware 
  by changing default tsc calibration method to pmtimer on EFI. (bsc#1114754)


-----------------------------------------
Patch: SUSE-2019-261
Released: Wed Feb  6 11:26:21 2019
Summary: Recommended update for pam-config
Severity: moderate
References: 1114835
Description:
This update for pam-config fixes the following issues:

- Adds support for more pam_cracklib options. (bsc#1114835)


-----------------------------------------
Patch: SUSE-2019-284
Released: Thu Feb  7 13:23:54 2019
Summary: Security update for libunwind
Severity: moderate
References: 1122012,936786,976955,CVE-2015-3239
Description:
This update for libunwind fixes the following issues:

Security issues fixed:

- CVE-2015-3239: Fixed a off-by-one in the dwarf_to_unw_regnum function (bsc#936786)

Non-security issues fixed:

- Fixed a dependency issue with libzmq5 (bsc#1122012)
- Fixed build on armv7 (bsc#976955)


-----------------------------------------
Patch: SUSE-2019-313
Released: Sat Feb  9 09:38:40 2019
Summary: Security update for LibVNCServer
Severity: critical
References: 1123823,1123828,1123832,CVE-2018-20748,CVE-2018-20749,CVE-2018-20750
Description:
This update for LibVNCServer fixes the following issues:
	  
Security issues fixed:

- CVE-2018-20749: Fixed a heap out of bounds write vulnerability in rfbserver.c (bsc#1123828)
- CVE-2018-20750: Fixed a heap out of bounds write vulnerability in rfbserver.c (bsc#1123832)
- CVE-2018-20748: Fixed multiple heap out-of-bound writes in VNC client code (bsc#1123823)  


-----------------------------------------
Patch: SUSE-2019-336
Released: Tue Feb 12 14:16:02 2019
Summary: Security update for MozillaFirefox
Severity: important
References: 1120374,1122983,CVE-2018-18500,CVE-2018-18501,CVE-2018-18505
Description:
This update for MozillaFirefox fixes the following issues:

Security issues fixed:

CVE-2018-18500: Fixed a use-after-free parsing HTML5 stream (boo#1122983).
CVE-2018-18501: Fixed multiple memory safety bugs (boo#1122983).
CVE-2018-18505: Fixed a privilege escalation through IPC channel messages (boo#1122983).


-----------------------------------------
Patch: SUSE-2019-365
Released: Wed Feb 13 14:00:18 2019
Summary: Recommended update for ipmctl
Severity: moderate
References: 1091108,1111020,1116404
Description:
This update for ipmctl fixes the following issues:

ipmctl was updated to v01.00.00.3394+.  [FATE#326756, FATE#326917, FATE#326918] [bsc#1116404, bsc#1091108]

This update brings changes necessary for current NVDIMM hardware.



-----------------------------------------
Patch: SUSE-2019-372
Released: Wed Feb 13 14:02:35 2019
Summary: Recommended update for xrdb
Severity: moderate
References: 1120004
Description:
This update for xrdb fixes the following issues:

- Now no warnings will be shown when parsing valid comments. (bsc#1120004)


-----------------------------------------
Patch: SUSE-2019-375
Released: Wed Feb 13 14:03:33 2019
Summary: Recommended update for boost
Severity: moderate
References: 1089363
Description:
This update for boost fixes the following issues:
    
- Fixes build issues caused by the Boost.Context library. (bnc#1089363)


-----------------------------------------
Patch: SUSE-2019-388
Released: Thu Feb 14 13:26:34 2019
Summary: Recommended update for additional Python updates
Severity: moderate
References: 1054413
Description:

This update brings new versions for several python modules, needed for
updates for other parts of the python stack, to enable the Python Azure SDK.

It also enables and ship various modules as Python3 modules.

- python-adal: was updated to 0.5.0 and python 3 enabled.
- python-chardet: was updated to 3.0.4 and python 3 enabled.
- python-linecache2: new version 1.0.0 as a dependency of unittest2.
- python-msrestazure: was updated to 0.4.11 and python 3 enabled.
- python-msrest: was updated to 0.4.11 and python 3 enabled.
- python-oauthlib: was python 3 enabled.
- python-PyJWT: was python 3 enabled.
- python-pytest-runner: was updated to 4.2 and python 3 enabled.
- python-requests-oauthlib: was python 3 enabled.
- python-traceback2: was updated to 1.1.0 and python 3 enabled.
- python-unittest2: was updated to 1.1.10 and python 3 enabled.

  

-----------------------------------------
Patch: SUSE-2019-389
Released: Thu Feb 14 14:30:38 2019
Summary: Recommended update for fio
Severity: low
References: 1117653,1120052
Description:

This update ships 'fio' for testing I/O performance. (FATE#326814)
  

-----------------------------------------
Patch: SUSE-2019-419
Released: Mon Feb 18 09:56:13 2019
Summary: Security update for python-numpy
Severity: important
References: 1122208,CVE-2019-6446
Description:
This update for python-numpy fixes the following issue:

Security issue fixed:

- CVE-2019-6446: Set allow_pickle to false by default to restrict loading untrusted content (bsc#1122208).
  With this update we decrease the possibility of allowing remote attackers to execute arbitrary code by
  misusing numpy.load(). A warning during runtime will show-up when the allow_pickle is not explicitly set.  

NOTE: By applying this update the behavior of python-numpy changes, which might break your application.
In order to get the old behaviour back, you have to explicitly set `allow_pickle` to True. Be aware
that this should only be done for trusted input, as loading untrusted input might lead to arbitrary code
execution.


-----------------------------------------
Patch: SUSE-2019-434
Released: Tue Feb 19 12:19:02 2019
Summary: Recommended update for libsemanage
Severity: moderate
References: 1115500
Description:
This update for libsemanage provides the following fix:

- Prevent an error message when reading module version if the directory does not exist.
  (bsc#1115500)


-----------------------------------------
Patch: SUSE-2019-440
Released: Tue Feb 19 18:52:51 2019
Summary: Recommended update for dmidecode
Severity: moderate
References: 1120149
Description:
This update for dmidecode fixes the following issues:

- Extensions to Memory Device (Type 17) (FATE#326831 bsc#1120149)
- Add 'Logical non-volatile device' to the memory device types (FATE#326831 bsc#1120149)


-----------------------------------------
Patch: SUSE-2019-450
Released: Wed Feb 20 16:42:38 2019
Summary: Security update for procps
Severity: important
References: 1092100,1121753,CVE-2018-1122,CVE-2018-1123,CVE-2018-1124,CVE-2018-1125,CVE-2018-1126
Description:

  
This update for procps fixes the following security issues:

- CVE-2018-1122: Prevent local privilege escalation in top. If a user ran top
  with HOME unset in an attacker-controlled directory, the attacker could have
  achieved privilege escalation by exploiting one of several vulnerabilities in
  the config_file() function (bsc#1092100).
- CVE-2018-1123: Prevent denial of service in ps via mmap buffer overflow.
  Inbuilt protection in ps maped a guard page at the end of the overflowed
  buffer, ensuring that the impact of this flaw is limited to a crash (temporary
  denial of service) (bsc#1092100).
- CVE-2018-1124: Prevent multiple integer overflows leading to a heap
  corruption in file2strvec function. This allowed a privilege escalation for a
  local attacker who can create entries in procfs by starting processes, which
  could result in crashes or arbitrary code execution in proc utilities run by
  other users (bsc#1092100).
- CVE-2018-1125: Prevent stack buffer overflow in pgrep. This vulnerability was
  mitigated by FORTIFY limiting the impact to a crash (bsc#1092100).
- CVE-2018-1126: Ensure correct integer size in proc/alloc.* to prevent
  truncation/integer overflow issues (bsc#1092100).

(These issues were previously released for SUSE Linux Enterprise 12 SP3 and SP4.)

Also the following non-security issue was fixed:

- Fix CPU summary showing old data. (bsc#1121753)


-----------------------------------------
Patch: SUSE-2019-462
Released: Fri Feb 22 09:43:35 2019
Summary: Recommended update for open-iscsi
Severity: moderate
References: 1102589,1107753,1116712,1122938
Description:
This update for open-iscsi fixes the following issues:

- iscsiuio: No longer flush tx queue on each uio interrupt. This makes ping to such NICs
  work better. (bsc#1102589)
- Do not allow multiple sessions just because they were started in parallel. (bsc#1107753)
- qedi: Use uio BD index instead on buffer index. (bsc#1116712)
- qedi: Set buf_size in case of ICMP and ARP packet. (bsc#1116712)
- Fix output for iscsiadm node/iface print level P1. (bsc#1122938)


-----------------------------------------
Patch: SUSE-2019-482
Released: Mon Feb 25 11:57:46 2019
Summary: Security update for python
Severity: important
References: 1073748,1109847,1122191,CVE-2018-14647,CVE-2019-5010
Description:
This update for python fixes the following issues:

Security issues fixed:

- CVE-2019-5010: Fixed a denial-of-service vulnerability in the X509 certificate parser (bsc#1122191).
- CVE-2018-14647: Fixed a denial-of-service vulnerability in Expat (bsc#1109847).

Non-security issue fixed:

- Fixed a bug where PyWeakReference struct was not initialized correctly leading to a crash (bsc#1073748).


-----------------------------------------
Patch: SUSE-2019-498
Released: Tue Feb 26 16:44:20 2019
Summary: Security update for apache2
Severity: moderate
References: 1121086,1122838,1122839,CVE-2018-17189,CVE-2018-17199
Description:
This update for apache2 fixes the following issues:

Security issues fixed:

- CVE-2018-17189: Fixed a denial of service in mod_http2, via slow and unneeded request bodies (bsc#1122838)
- CVE-2018-17199: Fixed that mod_session_cookie did not respect expiry time (bsc#1122839)

Non-security issue fixed:

- sysconfig.d is not created anymore if it already exists (bsc#1121086)


-----------------------------------------
Patch: SUSE-2019-499
Released: Tue Feb 26 16:45:12 2019
Summary: Security update for ceph
Severity: important
References: 1111177,1113246,1114710,1121567,CVE-2018-14662,CVE-2018-16846,CVE-2018-16889
Description:
This update for ceph fixes the following issues:

Security issues fixed:

- CVE-2018-14662: mon: limit caps allowed to access the config store (bsc#1111177)
- CVE-2018-16846: rgw: enforce bounds on max-keys/max-uploads/max-parts (bsc#1114710)
- CVE-2018-16889: rgw: sanitize customer encryption keys from log output in v4 auth (bsc#1121567)

Non-security issue fixed:

- os/bluestore: avoid frequent allocator dump on bluefs rebalance failure (bsc#1113246)


-----------------------------------------
Patch: SUSE-2019-511
Released: Thu Feb 28 13:34:04 2019
Summary: Security update for webkit2gtk3
Severity: important
References: 1124937,CVE-2019-6212,CVE-2019-6215,CVE-2019-6216,CVE-2019-6217,CVE-2019-6226,CVE-2019-6227,CVE-2019-6229,CVE-2019-6233,CVE-2019-6234
Description:
This update for webkit2gtk3 to version 2.22.6 fixes the following issues:

Security issues fixed:

- CVE-2019-6212: Fixed multiple memory corruption vulnerabilities which could allow arbitrary code execution during the processing
  of special crafted web-content.
- CVE-2019-6215: Fixed a type confusion vulnerability which could allow arbitrary code execution during the processing
  of special crafted web-content.
- CVE-2019-6216: Fixed multiple memory corruption vulnerabilities which could allow arbitrary code execution during the processing
  of special crafted web-content. 
- CVE-2019-6217: Fixed multiple memory corruption vulnerabilities which could allow arbitrary code execution during the processing
  of special crafted web-content. 
- CVE-2019-6226: Fixed multiple memory corruption vulnerabilities which could allow arbitrary code execution during the processing
  of special crafted web-content.  
- CVE-2019-6227: Fixed a memory corruption vulnerability which could allow arbitrary code execution during the processing
  of special crafted web-content.
- CVE-2019-6229: Fixed a logic issue by improving validation which could allow arbitrary code execution during the processing
  of special crafted web-content.
- CVE-2019-6233: Fixed a memory corruption vulnerability which could allow arbitrary code execution during the processing
  of special crafted web-content.
- CVE-2019-6234: Fixed a memory corruption vulnerability which could allow arbitrary code execution during the processing
  of special crafted web-content.

Other issues addressed:   
- Update to version 2.22.6 (bsc#1124937).
- Kinetic scrolling slow down smoothly when reaching the ends of pages, instead of abruptly, to better match the GTK+ behaviour.
- Fixed Web inspector magnifier under Wayland.
- Fixed garbled rendering of some websites (e.g. YouTube) while scrolling under X11.
- Fixed several crashes, race conditions, and rendering issues.



-----------------------------------------
Patch: SUSE-2019-512
Released: Thu Feb 28 13:35:21 2019
Summary: Security update for openssl-1_1
Severity: moderate
References: 1117951
Description:
This update for openssl-1_1 fixes the following issues:

- The 9 Lives of Bleichenbacher's CAT: Cache ATtacks on TLS Implementations (bsc#1117951)


-----------------------------------------
Patch: SUSE-2019-514
Released: Thu Feb 28 15:39:05 2019
Summary: Recommended update for apparmor
Severity: moderate
References: 1112300
Description:
This update for apparmor fixes the following issues:

- Fix erroneously generated audit records: include status* files in dnsmasq. (bsc#1112300)


-----------------------------------------
Patch: SUSE-2019-517
Released: Thu Feb 28 15:39:57 2019
Summary: Recommended update for libapr-util1
Severity: moderate
References: 1125331
Description:
This update for libapr-util1 fixes the following issues:

- build against the threadsafe libldap_r instead of libldap to avoid potential crashes (bsc#1125331)


-----------------------------------------
Patch: SUSE-2019-521
Released: Thu Feb 28 15:53:21 2019
Summary: Recommended update for smt
Severity: moderate
References: 1123974
Description:
This update for smt fixes the following issues:

SMT was updated to 3.0.40:

- Fix registration sharing to make SMT to RMT sharing possible (bsc#1123974)


-----------------------------------------
Patch: SUSE-2019-543
Released: Tue Mar  5 14:36:23 2019
Summary: Recommended update for NetworkManager
Severity: low
References: 1019813
Description:
This update for NetworkManager fixes the following issues:

- Drop previous patch that has side effects when geoclue is not installed. (bsc#1019813)


-----------------------------------------
Patch: SUSE-2019-556
Released: Wed Mar  6 10:56:53 2019
Summary: Security update for sssd
Severity: moderate
References: 1004220,1087320,1098377,1120852,1121759,CVE-2018-10852,CVE-2019-3811
Description:
This update for sssd fixes the following issues:

Security vulnerabilities addressed:

- Fix fallback_homedir returning '/' for empty home directories
  (CVE-2019-3811) (bsc#1121759)
- Create sockets with right permissions (bsc#1098377, CVE-2018-10852)

Other bug fixes and changes:

- Install logrotate configuration (bsc#1004220)
- Strip whitespaces in netgroup triples (bsc#1087320)
- Align systemd service file with upstream
  * Run interactive and change service type to notify (bsc#1120852)
  * Replace deprecated '-f' and use '--logger'


-----------------------------------------
Patch: SUSE-2019-558
Released: Wed Mar  6 14:06:36 2019
Summary: Recommended update for cups
Severity: moderate
References: 1118118
Description:
This update for cups fixes the following issues:

- Fixed a cups crash when using utf8 filenames (bsc#1118118)


-----------------------------------------
Patch: SUSE-2019-561
Released: Wed Mar  6 14:12:42 2019
Summary: Recommended update for libtirpc
Severity: moderate
References: 1120689
Description:
This update for libtirpc fixes the following issues:

- Adds a new option to enforce connection via protocol version 2 first (bsc#1120689)


-----------------------------------------
Patch: SUSE-2019-563
Released: Wed Mar  6 17:20:15 2019
Summary: Security update for audit
Severity: moderate
References: 1042781,1085003,1125535,941922,CVE-2015-5186
Description:

This update for audit fixes the following issues:

Audit on SUSE Linux Enterprise 12 SP4 was updated to 2.8.1 to bring
new features and bugfixes.  (bsc#1125535 FATE#326346)

* Many features were added to auparse_normalize
* cli option added to auditd and audispd for setting config dir
* In auditd, restore the umask after creating a log file
* Option added to auditd for skipping email verification

The full changelog can be found here: http://people.redhat.com/sgrubb/audit/ChangeLog


- Change openldap dependency to client only (bsc#1085003)

Minor security issue fixed:

- CVE-2015-5186: Audit: log terminal emulator escape sequences handling (bsc#941922)



-----------------------------------------
Patch: SUSE-2019-572
Released: Fri Mar  8 09:24:21 2019
Summary: Security update for openssl-1_0_0
Severity: moderate
References: 1117951,1127080,CVE-2019-1559
Description:
This update for openssl-1_0_0 fixes the following issues:

Security issues fixed: 

- The 9 Lives of Bleichenbacher's CAT: Cache Attacks on TLS Implementations (bsc#1117951)
- CVE-2019-1559: Fixed OpenSSL 0-byte Record Padding Oracle which under certain circumstances
  a TLS server can be forced to respond differently to a client and lead to the decryption of the data (bsc#1127080).


-----------------------------------------
Patch: SUSE-2019-606
Released: Wed Mar 13 12:41:29 2019
Summary: Recommended update for arpwatch
Severity: moderate
References: 1119851
Description:
This update for arpwatch provides the following fix:

- Prevent a memory leak in gethname. (bsc#1119851)


-----------------------------------------
Patch: SUSE-2019-609
Released: Wed Mar 13 18:48:06 2019
Summary: Security update for mariadb
Severity: moderate
References: 1112767,1122198,1122475,1127027,CVE-2019-2510,CVE-2019-2537
Description:
This update for mariadb to version 10.2.22 fixes the following issues:

Security issues fixed (bsc#1122198):

- CVE-2019-2510: Fixed a vulnerability which can lead to MySQL compromise and lead to Denial of Service.
- CVE-2019-2537: Fixed a vulnerability which can lead to MySQL compromise and lead to Denial of Service.

Other issues fixed:

- Fixed an issue where mysl_install_db fails due to incorrect basedir (bsc#1127027).
- Fixed an issue where the lograte was not working (bsc#1112767).
- Backport Information Schema CHECK_CONSTRAINTS Table.
- Maximum value of table_definition_cache is now 2097152.
- InnoDB ALTER TABLE fixes.
- Galera crash recovery fixes.
- Encryption fixes.
- Remove xtrabackup dependency  as MariaDB ships a build in mariabackup so xtrabackup is not needed (bsc#1122475).

The complete changelog can be found at:  https://mariadb.com/kb/en/library/mariadb-10222-changelog/


-----------------------------------------
Patch: SUSE-2019-620
Released: Mon Mar 18 09:13:45 2019
Summary: Recommended update for tigervnc
Severity: moderate
References: 1125290
Description:
This update for tigervnc fixes the following issues:

- Adds new support for two xorg server version: 1.18 and 1.19 (bsc#1125290)

-----------------------------------------
Patch: SUSE-2019-642
Released: Tue Mar 19 14:28:04 2019
Summary: Security update for lftp
Severity: moderate
References: 1103367,1120946,CVE-2018-10916
Description:
This update for lftp fixes the following issues:

Security issue fixed: 

- CVE-2018-10916: Fixed an improper file name sanitization which could lead to loss of integrity of 
  the local system (bsc#1103367).
  
Other issue addressed:

- The SSH login handling code detects password prompts more reliably (bsc#1120946).


-----------------------------------------
Patch: SUSE-2019-655
Released: Wed Mar 20 10:30:49 2019
Summary: Security update for libssh2_org
Severity: moderate
References: 1091236,1128471,1128472,1128474,1128476,1128480,1128481,1128490,1128492,1128493,CVE-2019-3855,CVE-2019-3856,CVE-2019-3857,CVE-2019-3858,CVE-2019-3859,CVE-2019-3860,CVE-2019-3861,CVE-2019-3862,CVE-2019-3863
Description:
This update for libssh2_org fixes the following issues:

Security issues fixed: 	  

- CVE-2019-3861: Fixed Out-of-bounds reads with specially crafted SSH packets (bsc#1128490).
- CVE-2019-3862: Fixed Out-of-bounds memory comparison with specially crafted message channel request packet (bsc#1128492).
- CVE-2019-3860: Fixed Out-of-bounds reads with specially crafted SFTP packets (bsc#1128481).
- CVE-2019-3863: Fixed an Integer overflow in user authenticate keyboard interactive which could allow out-of-bounds writes 
  with specially crafted keyboard responses (bsc#1128493).
- CVE-2019-3856: Fixed a potential Integer overflow in keyboard interactive handling which could allow out-of-bounds write 
  with specially crafted payload (bsc#1128472).
- CVE-2019-3859: Fixed Out-of-bounds reads with specially crafted payloads due to unchecked use of _libssh2_packet_require 
  and _libssh2_packet_requirev (bsc#1128480).
- CVE-2019-3855: Fixed a potential Integer overflow in transport read which could allow out-of-bounds write with specially 
  crafted payload (bsc#1128471).
- CVE-2019-3858: Fixed a potential zero-byte allocation which could lead to an out-of-bounds read with a specially crafted 
  SFTP packet (bsc#1128476).
- CVE-2019-3857: Fixed a potential Integer overflow which could lead to zero-byte allocation and out-of-bounds with specially 
  crafted message channel request SSH packet (bsc#1128474).

Other issue addressed: 

- Libbssh2 will stop using keys unsupported types in the known_hosts file (bsc#1091236).
 

-----------------------------------------
Patch: SUSE-2019-656
Released: Wed Mar 20 11:19:55 2019
Summary: Security update for openwsman
Severity: important
References: 1122623,CVE-2019-3816,CVE-2019-3833
Description:
This update for openwsman fixes the following issues:

Security issues fixed:

- CVE-2019-3816: Fixed a vulnerability in openwsmand deamon which could lead to arbitary file disclosure (bsc#1122623).
- CVE-2019-3833: Fixed a vulnerability in process_connection() which could allow an attacker to trigger an infinite
  loop which leads to Denial of Service (bsc#1122623).


-----------------------------------------
Patch: SUSE-2019-661
Released: Wed Mar 20 14:41:04 2019
Summary: Recommended update for LibVNCServer
Severity: moderate
References: 1123805
Description:

This update for LibVNCServer fixes the following issue:

- remmina cannot connect to VNC server (bsc#1123805)


-----------------------------------------
Patch: SUSE-2019-662
Released: Wed Mar 20 14:53:15 2019
Summary: Recommended update for lvm2
Severity: moderate
References: 1123327,1123803
Description:

This update for lvm2 fixes the following issues:

- StartLimitInterval in wrong section (bsc#1123327, bsc#1123803)


-----------------------------------------
Patch: SUSE-2019-667
Released: Wed Mar 20 14:57:07 2019
Summary: Recommended update for open-vm-tools
Severity: moderate
References: 1115118,1121964,1122435,1124397
Description:
This update fixes the following issues:

- Link VGAuthService to libxmlsec1 rather than libxml-security-c in SLE
products where available. (bsc#1122435)
- Improve handling of certain quiesced snapshot failures. (bsc#1124397)
- Update vmtoolsd.service to support cloud-init customization by default
by adding 'DefaultDependencies=no' and 'Before=cloud-init-local.service'
to the [Unit] section of vmtoolsd.service. (bsc#1121964)
- Bugfix: open-vm-tools has logged warnings, when taking a snapshot of a Linux guest on a
  vSphere host.
- Bugfix: open-vm-tools service crashed on Linux systems which are not running on a VMware
  platform. 
  

-----------------------------------------
Patch: SUSE-2019-681
Released: Thu Mar 21 15:43:45 2019
Summary: Recommended update for xf86-video-dummy
Severity: low
References: 1117991
Description:

This update provides the xf86-video-dummy driver, which was not previously shipped. (FATE#327549)
  

-----------------------------------------
Patch: SUSE-2019-688
Released: Thu Mar 21 18:40:23 2019
Summary: Security update for wireshark
Severity: moderate
References: 1127367,1127369,1127370,CVE-2019-9208,CVE-2019-9209,CVE-2019-9214
Description:
This update for wireshark to version 2.4.13 fixes the following issues:

Security issues fixed:

- CVE-2019-9214: Avoided a dereference of a null coversation which could make RPCAP 
  dissector crash (bsc#1127367).
- CVE-2019-9209: Fixed a buffer overflow in time values which could make ASN.1 BER 
  and related dissectors crash (bsc#1127369).
- CVE-2019-9208: Fixed a null pointer dereference which could make TCAP dissector 
  crash (bsc#1127370).

Release notes: https://www.wireshark.org/docs/relnotes/wireshark-2.4.13.html


-----------------------------------------
Patch: SUSE-2019-691
Released: Thu Mar 21 19:48:54 2019
Summary: Recommended update for lio-utils
Severity: moderate
References: 1123423
Description:
This update for lio-utils fixes the following issues:

- Remove systemd conflicts restriction from here, moving it
  instead to targetcli-fb, so that this package can run
  with targetcli (i.e. the old version of targetcli). (bsc#1123423)

- Updated License in SPEC file to Apache-2.0, to match
  our COPYING file contents/license type.


-----------------------------------------
Patch: SUSE-2019-719
Released: Fri Mar 22 16:52:44 2019
Summary: Security update for ghostscript
Severity: important
References: 1129186,CVE-2019-3838
Description:
This update for ghostscript fixes the following issue:
	  
Security issue fixed:

- CVE-2019-3838: Fixed a vulnerability which made forceput operator in DefineResource to be still accessible
  which could allow access to file system outside of the constraints of -dSAFER (bsc#1129186).


-----------------------------------------
Patch: SUSE-2019-730
Released: Mon Mar 25 14:08:13 2019
Summary: Recommended update for bind
Severity: moderate
References: 1094236
Description:
This update for bind fixes the following issues:

- Fixes an issue where dynamic DNS updates with GSS-TSIG against Microsoft or Samba DNS
  servers are not working (bsc#1094236)


-----------------------------------------
Patch: SUSE-2019-747
Released: Tue Mar 26 14:35:16 2019
Summary: Security update for gd
Severity: moderate
References: 1123361,1123522,CVE-2019-6977,CVE-2019-6978
Description:
This update for gd fixes the following issues:

Security issues fixed:

- CVE-2019-6977: Fixed a heap-based buffer overflow the GD Graphics Library used in the imagecolormatch function (bsc#1123361).
- CVE-2019-6978: Fixed a double free in the gdImage*Ptr() functions (bsc#1123522).


-----------------------------------------
Patch: SUSE-2019-750
Released: Tue Mar 26 15:33:05 2019
Summary: Recommended update for ceph
Severity: moderate
References: 1112833,1126423,SCRD-8258
Description:
This update for ceph fixes the following issues:

Updated to version 12.2.11-566-g896835fd74:

* see https://ceph.com/releases/v12-2-11-luminous-released/ for the full release notes
* crushtool: add --reclassify operation to convert legacy crush maps to use device classes (bsc#1112833) 
* ceph-volume-client: allow setting mode of CephFS volumes (jsc#SCRD-8258)

Additional fixes:

* rgw_file: only first subuser can be exported to nfs (bsc#1126423)


-----------------------------------------
Patch: SUSE-2019-776
Released: Wed Mar 27 11:39:14 2019
Summary: Security update for w3m
Severity: moderate
References: 1077559,1077568,1077572,CVE-2018-6196,CVE-2018-6197,CVE-2018-6198
Description:
This update for w3m fixes several issues.

These security issues were fixed:

- CVE-2018-6196: Prevent infinite recursion in HTMLlineproc0 caused by the feed_table_block_tag function which did not prevent a negative indent value (bsc#1077559)
- CVE-2018-6197: Prevent NULL pointer dereference in formUpdateBuffer (bsc#1077568)
- CVE-2018-6198: w3m did not properly handle temporary files when the ~/.w3m directory is unwritable, which allowed a local attacker to craft a symlink attack to overwrite arbitrary files (bsc#1077572)


-----------------------------------------
Patch: SUSE-2019-787
Released: Thu Mar 28 11:22:52 2019
Summary: Security update for openssl-1_1
Severity: moderate
References: 1128189,CVE-2019-1543
Description:
This update for openssl-1_1 (OpenSSL Security Advisory [6 March 2019]) fixes the following issues:
	 
Security issue fixed: 	  

- CVE-2019-1543: Fixed an implementation error in ChaCha20-Poly1305 where it was allowed
  to set IV with more than 12 bytes (bsc#1128189). 


-----------------------------------------
Patch: SUSE-2019-789
Released: Thu Mar 28 11:56:29 2019
Summary: Security update for ntp
Severity: moderate
References: 1125401,1128525,CVE-2019-8936
Description:
This update for ntp fixes the following issues:

Security issue fixed: 	  

- CVE-2019-8936: Fixed a null pointer exception which could allow an authenticated attcker to cause 
  segmentation fault to ntpd (bsc#1128525).

Other isses addressed:

- Fixed an issue which caused openSSL mismatch (bsc#1125401)
- Fixed several bugs in the BANCOMM reclock driver.
- Fixed ntp_loopfilter.c snprintf compilation warnings.
- Fixed spurious initgroups() error message.
- Fixed STA_NANO struct timex units.
- Fixed GPS week rollover in libparse.
- Fixed incorrect poll interval in packet.
- Added a missing check for ENABLE_CMAC.


-----------------------------------------
Patch: SUSE-2019-794
Released: Thu Mar 28 12:09:29 2019
Summary: Recommended update for krb5
Severity: moderate
References: 1087481
Description:
This update for krb5 fixes the following issues:

- Add support for the GSS_KRB5_CRED_NO_CI_FLAGS_X cred option to
  suppress sending the confidentiality and integrity flags in GSS
  initiator tokens unless they are requested by the caller. These
  flags control the negotiated SASL security layer for the Microsoft
  GSS-SPNEGO SASL mechanism. (bsc#1087481).


-----------------------------------------
Patch: SUSE-2019-797
Released: Thu Mar 28 14:50:18 2019
Summary: Recommended update for apache2
Severity: moderate
References: 1125965
Description:

This update for apache2 fixes the following issues:

- mod_httpd2 HTTP/2 stream 1 was not closed cleanly: PROTOCOL_ERROR (bsc#1125965)


-----------------------------------------
Patch: SUSE-2019-799
Released: Fri Mar 29 07:06:57 2019
Summary: Recommended update for timezone
Severity: moderate
References: 1130557
Description:
This update for timezone fixes the following issues:

timezone was update to 2019a (bsc#1130557):

* Palestine 'springs forward' on 2019-03-30 instead of 2019-03-23
* Metlakatla 'fell back' to rejoin Alaska Time on 2019-01-20 at 02:00
* Israel observed DST in 1980 (08-02/09-13) and 1984 (05-05/08-25)
* zic now has an -r option to limit the time range of output data


-----------------------------------------
Patch: SUSE-2019-800
Released: Fri Mar 29 07:08:00 2019
Summary: Recommended update for libtirpc
Severity: moderate
References: 1126096
Description:
This update for libtirpc fixes the following issues:

- Fixed yp_bind_client_create_v3: RPC: Unknown host error (bsc#1126096).



-----------------------------------------
Patch: SUSE-2019-823
Released: Fri Mar 29 20:13:46 2019
Summary: Optional update for php72
Severity: moderate
References: 1126314,1129032,CVE-2018-20783,CVE-2019-9020,CVE-2019-9021,CVE-2019-9022,CVE-2019-9023,CVE-2019-9024,CVE-2019-9641
Description:

This update provides PHP 7.2 and subpackages to the SUSE Linux Enterprise 12 Web and Scripting Module.

It is a replacement of the php7 packages, the packages do not co-exist.

The mcrypt extensions was removed in PHP 7.2.
  

-----------------------------------------
Patch: SUSE-2019-838
Released: Tue Apr  2 09:52:06 2019
Summary: Security update for bash
Severity: important
References: 1130324,CVE-2019-9924
Description:
This update for bash fixes the following issues:
	  
Security issue fixed: 

- CVE-2019-9924: Fixed a vulnerability in which shell did not prevent user BASH_CMDS 
  allowing the user to execute any command with the permissions of the shell (bsc#1130324).


-----------------------------------------
Patch: SUSE-2019-839
Released: Tue Apr  2 13:13:21 2019
Summary: Security update for file
Severity: moderate
References: 1096974,1096984,1126117,1126118,1126119,CVE-2018-10360,CVE-2019-8905,CVE-2019-8906,CVE-2019-8907
Description:
This update for file fixes the following issues:

The following security vulnerabilities were addressed:

- Fixed an out-of-bounds read in the function do_core_note in readelf.c, which
  allowed remote attackers to cause a denial of service (application crash) via
  a crafted ELF file (bsc#1096974 CVE-2018-10360).
- CVE-2019-8905: Fixed a stack-based buffer over-read in do_core_note in readelf.c
  (bsc#1126118)
- CVE-2019-8906: Fixed an out-of-bounds read in do_core_note in readelf. c
  (bsc#1126119)
- CVE-2019-8907: Fixed a stack corruption in do_core_note in readelf.c
  (bsc#1126117)


-----------------------------------------
Patch: SUSE-2019-847
Released: Tue Apr  2 15:49:33 2019
Summary: Recommended update for guile
Severity: moderate
References: 1110085
Description:
This update for guile fixes the following issues:

- Fix use of the 'ja_JP.sjis' locale. (bsc#1110085)


-----------------------------------------
Patch: SUSE-2019-852
Released: Wed Apr  3 11:04:40 2019
Summary: Security update for MozillaFirefox
Severity: important
References: 1125330,1127987,1129821,1130262,CVE-2018-18335,CVE-2018-18356,CVE-2018-18506,CVE-2019-5785,CVE-2019-9788,CVE-2019-9790,CVE-2019-9791,CVE-2019-9792,CVE-2019-9793,CVE-2019-9794,CVE-2019-9795,CVE-2019-9796,CVE-2019-9801,CVE-2019-9810,CVE-2019-9813
Description:
This update for MozillaFirefox fixes the following issues:

Security issuess addressed:	  

- update to Firefox ESR 60.6.1 (bsc#1130262):

- CVE-2019-9813: Fixed Ionmonkey type confusion with __proto__ mutations
- CVE-2019-9810: Fixed IonMonkey MArraySlice incorrect alias information

- Update to Firefox ESR 60.6 (bsc#1129821):

- CVE-2018-18506: Fixed an issue with Proxy Auto-Configuration file 
- CVE-2019-9801: Fixed an issue which could allow Windows programs to be exposed to web content
- CVE-2019-9788: Fixed multiple memory safety bugs
- CVE-2019-9790: Fixed a Use-after-free vulnerability when removing in-use DOM elements
- CVE-2019-9791: Fixed an incorrect Type inference for constructors entered through on-stack replacement 
  with IonMonkey
- CVE-2019-9792: Fixed an issue where IonMonkey leaks JS_OPTIMIZED_OUT magic value to script
- CVE-2019-9793: Fixed multiple improper bounds checks when Spectre mitigations are disabled
- CVE-2019-9794: Fixed an issue where command line arguments not discarded during execution
- CVE-2019-9795: Fixed a Type-confusion vulnerability in IonMonkey JIT compiler
- CVE-2019-9796: Fixed a Use-after-free vulnerability in SMIL animation controller


- Update to Firefox ESR 60.5.1 (bsc#1125330):

- CVE-2018-18356: Fixed a use-after-free vulnerability in the Skia library which can occur when
    creating a path, leading to a potentially exploitable crash.
- CVE-2019-5785: Fixed an integer overflow vulnerability in the Skia library which can occur
  after specific transform operations, leading to a potentially exploitable crash.
- CVE-2018-18335: Fixed a buffer overflow vulnerability in the Skia library which can occur with
  Canvas 2D acceleration on macOS. This issue was addressed by disabling Canvas 2D acceleration 
  in Firefox ESR.  Note: this does not affect other versions and platforms where Canvas 2D
  acceleration is already disabled by default.

Other issue addressed: 

- Fixed an issue with MozillaFirefox-translations-common which was causing error on update (bsc#1127987).

Release notes: https://www.mozilla.org/en-US/security/advisories/mfsa2019-12/
Release notes: https://www.mozilla.org/en-US/security/advisories/mfsa2019-08/
Release notes: https://www.mozilla.org/en-US/security/advisories/mfsa2019-05/	  


-----------------------------------------
Patch: SUSE-2019-860
Released: Wed Apr  3 15:51:17 2019
Summary: Recommended update for smt
Severity: moderate
References: 1126290
Description:
This update for smt fixes the following issues:

- Add CURLOPT_LOW_SPEED_LIMIT to prevent downloads from getting stuck (bsc#1126290)


-----------------------------------------
Patch: SUSE-2019-864
Released: Thu Apr  4 08:06:07 2019
Summary: Recommended update for cmake
Severity: moderate
References: 1129024
Description:
This update for cmake fixes the following issues:

- Add support for %cmake_build macro for compat with newer systems
  (bsc#1129024)
- Allow definition of builddir and builder to be overridable
- Revert removal of CMAKE_INSTALL_LIBDIR declaration from the
- Resolve the error when cmake_minimum_required() is not set
      Makefile: Fix compilation after parent commit was backported
       descriptions and summaries. See the
   * CMP0022: Fix version documented to support
   * Add a %make_jobs macro with verbose argument
- Add ppc64le to FindJNI
- updated cmake.macros to include installation path for cmake modules

-----------------------------------------
Patch: SUSE-2019-867
Released: Thu Apr  4 11:25:25 2019
Summary: Recommended update for grub2
Severity: moderate
References: 1113702,1122569
Description:
This update for grub2 fixes the following issues:

- Fixed a regression of crashing lvm on multipath SAN (bsc#1113702)
- Add exception handling to FCP lun enumeration (bsc#1113702)
- Fix LOADER_TYPE parsing in grub2-once (bsc#1122569)


-----------------------------------------
Patch: SUSE-2019-878
Released: Thu Apr  4 16:59:25 2019
Summary: Security update for apache2
Severity: important
References: 1131233,1131237,1131239,1131241,1131245,CVE-2019-0196,CVE-2019-0197,CVE-2019-0211,CVE-2019-0217,CVE-2019-0220
Description:
This update for apache2 fixes the following issues:

* CVE-2019-0220: The Apache HTTP server did not use a consistent strategy for
  URL normalization throughout all of its components. In particular,
  consecutive slashes were not always collapsed. Attackers could potentially
  abuse these inconsistencies to by-pass access control mechanisms and thus
  gain unauthorized access to protected parts of the service. [bsc#1131241]

* CVE-2019-0217: A race condition in Apache's 'mod_auth_digest' when running in
  a threaded server could have allowed users with valid credentials to
  authenticate using another username, bypassing configured access control
  restrictions. [bsc#1131239]

* CVE-2019-0211: A flaw in the Apache HTTP Server allowed less-privileged child
  processes or threads to execute arbitrary code with the privileges of the
  parent process. Attackers with control over CGI scripts or extension modules
  run by the server could have abused this issue to potentially gain super user
  privileges. [bsc#1131233]

* CVE-2019-0197: When HTTP/2 support was enabled in the Apache server for a
  'http' host or H2Upgrade was enabled for h2 on a 'https' host, an Upgrade
  request from http/1.1 to http/2 that was not the first request on a
  connection could lead to a misconfiguration and crash. This issue could have
  been abused to mount a denial-of-service attack. Servers that never enabled
  the h2 protocol or that only enabled it for https: and did not configure the
  'H2Upgrade on' are unaffected. [bsc#1131245]

* CVE-2019-0196: Through specially crafted network input the Apache's http/2
  request handler could be lead to access previously freed memory while
  determining the method of a request. This resulted in the request being
  misclassified and thus being processed incorrectly. [bsc#1131237]



-----------------------------------------
Patch: SUSE-2019-893
Released: Fri Apr  5 16:28:16 2019
Summary: Recommended update for python-keyring, python-SecretStorage
Severity: low
References: 1125941
Description:

This update ships the missing python keyring and SecretStorage modules for SUSE Linux Enterprise 12 SP1 and SP2 LTSS.
  

-----------------------------------------
Patch: SUSE-2019-899
Released: Mon Apr  8 11:09:45 2019
Summary: Security update for SDL
Severity: moderate
References: 1124799,1124800,1124802,1124803,1124805,1124806,1124824,1124825,1124826,1124827,1125099,CVE-2019-7572,CVE-2019-7573,CVE-2019-7574,CVE-2019-7575,CVE-2019-7576,CVE-2019-7577,CVE-2019-7578,CVE-2019-7635,CVE-2019-7636,CVE-2019-7637,CVE-2019-7638
Description:
This update for SDL fixes the following issues:
	  
Security issues fixed:	  

- CVE-2019-7572: Fixed a buffer over-read in IMA_ADPCM_nibble in audio/SDL_wave.c.(bsc#1124806).
- CVE-2019-7578: Fixed a heap-based buffer over-read in InitIMA_ADPCM in audio/SDL_wave.c (bsc#1125099).
- CVE-2019-7576: Fixed heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (bsc#1124799).
- CVE-2019-7573: Fixed a heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (bsc#1124805).
- CVE-2019-7635: Fixed a heap-based buffer over-read in Blit1to4 in video/SDL_blit_1.c. (bsc#1124827).
- CVE-2019-7636: Fixed a heap-based buffer over-read in SDL_GetRGB in video/SDL_pixels.c (bsc#1124826).
- CVE-2019-7638: Fixed a heap-based buffer over-read in Map1toN in video/SDL_pixels.c (bsc#1124824).
- CVE-2019-7574: Fixed a heap-based buffer over-read in IMA_ADPCM_decode in audio/SDL_wave.c (bsc#1124803).
- CVE-2019-7575: Fixed a heap-based buffer overflow in MS_ADPCM_decode in audio/SDL_wave.c (bsc#1124802).
- CVE-2019-7637: Fixed a heap-based buffer overflow in SDL_FillRect function in SDL_surface.c (bsc#1124825).
- CVE-2019-7577: Fixed a buffer over read in SDL_LoadWAV_RW in audio/SDL_wave.c (bsc#1124800). 


-----------------------------------------
Patch: SUSE-2019-900
Released: Mon Apr  8 11:11:31 2019
Summary: Security update for dovecot22
Severity: important
References: 1111789,1123022,1130116,CVE-2019-3814,CVE-2019-7524
Description:
This update for dovecot22 fixes the following issues:

Security issues fixed: 

- CVE-2019-7524: Fixed an improper file handling which could result in stack overflow allowing 
  local root escalation (bsc#1130116).
- CVE-2019-3814: Fixed a vulnerability related to SSL client certificate authentication (bsc#1123022).

Other issue fixed: 
- Fixed handling of command continuation(bsc#1111789)


-----------------------------------------
Patch: SUSE-2019-902
Released: Mon Apr  8 15:01:39 2019
Summary: Recommended update for speech-dispatcher
Severity: moderate
References: 1129586
Description:
This update for speech-dispatcher fixes the following issues:

- set includedir to fix the entries in the pkg-config file
  (bsc#1129586) 


-----------------------------------------
Patch: SUSE-2019-910
Released: Tue Apr  9 08:06:27 2019
Summary: Recommended update for python
Severity: low
References: 1129287
Description:

This update ships missing python-devel packages for the LTSS product lines.
  

-----------------------------------------
Patch: SUSE-2019-913
Released: Tue Apr  9 11:19:07 2019
Summary: Security update for sqlite3
Severity: moderate
References: 1119687,1131576,CVE-2018-20346,CVE-2018-20506
Description:
This update for sqlite3 fixes the following issues:

Security issues fixed: 

- CVE-2018-20346: Fixed a remote code execution vulnerability in FTS3 (Magellan) (bsc#1119687).
- CVE-2018-20506: Fixed an integer overflow when FTS3 extension is enabled (bsc#1131576).    


-----------------------------------------
Patch: SUSE-2019-922
Released: Wed Apr 10 13:43:55 2019
Summary: Recommended update for tracker
Severity: low
References: 1017652,1038829
Description:
This update for tracker provides the following fixes:

- Fix coredumps on some miners by whitelisting calls to dup2 and dup3 (bsc#1017652)

- Refine BIND variable mapping (bsc#1038829).



-----------------------------------------
Patch: SUSE-2019-928
Released: Wed Apr 10 16:34:59 2019
Summary: Security update for xmltooling
Severity: moderate
References: 1129537,CVE-2019-9628
Description:
This update for xmltooling fixes the following issue:

Security issue fixed: 	  

- CVE-2019-9628: Fixed an improper handling of exception in XMLTooling library which could result in
denial of service against the application using XMLTooling (bsc#1129537).


-----------------------------------------
Patch: SUSE-2019-930
Released: Thu Apr 11 10:32:45 2019
Summary: Recommended update for chrony
Severity: moderate
References: 1063704,1129914
Description:
This update for chrony fixes the following issues:

- Fix ordering and dependencies of chronyd.service, so that it is
  started after name resolution is up (bsc#1129914).
- Comment out the (server) pool statement in chrony.conf on SUSE Linux Enterprise (bsc#1063704).


-----------------------------------------
Patch: SUSE-2019-932
Released: Thu Apr 11 15:07:20 2019
Summary: Recommended update for sssd
Severity: moderate
References: 1080156
Description:
This update for sssd fixes the following issues:

- Rotate child debug file descriptors on SIGHUP (bsc#1080156)


-----------------------------------------
Patch: SUSE-2019-933
Released: Thu Apr 11 15:09:34 2019
Summary: Recommended update of pcsc-tools and perl-pcsc
Severity: moderate
References: 1130113
Description:

This update provides the pcsc-tools and perl-pcsc packages. (FATE#323838, bsc#1130113)

These tools are used to access various cryptographic chipcards.
  

-----------------------------------------
Patch: SUSE-2019-939
Released: Fri Apr 12 09:42:50 2019
Summary: Recommended update for vncmanager-controller
Severity: low
References: 1102080
Description:
This update for vncmanager-controller fixes the following issues:

- Makes the vncmanager-controller extension load on newer gnome shell versions. (bsc#1102080)


-----------------------------------------
Patch: SUSE-2019-956
Released: Tue Apr 16 13:07:38 2019
Summary: Security update for wget
Severity: important
References: 1131493,CVE-2019-5953
Description:
This update for wget fixes the following issues:

Security issue fixed:

- CVE-2019-5953: Fixed a buffer overflow vulnerability which might cause code execution (bsc#1131493).


-----------------------------------------
Patch: SUSE-2019-961
Released: Tue Apr 16 17:12:57 2019
Summary: Security update for python3
Severity: important
References: 1129346,CVE-2019-9636
Description:
This update for python3 fixes the following issues:

Security issue fixed:

- CVE-2019-9636: Fixed an information disclosure because of incorrect handling of Unicode encoding during NFKC normalization (bsc#1129346).


-----------------------------------------
Patch: SUSE-2019-963
Released: Wed Apr 17 08:47:26 2019
Summary: Recommended update for mariadb-connector-c
Severity: moderate
References: 1116686
Description:
This update for mariadb-connector-c to version fixes the following issues:

- New upstream version 3.0.7 (bsc#1116686)
- CONC-370: Fixed memory leak in configuration file parsing.
- CONC-371: Incorrect fractional part conversion when converting datetime string to MYSQL_TIME
- CONC-283: Fixed pkg-config configuration
- CONC-364: Not all sockets created in pvio_socket_connect function are closed
- Multiple fixes in named pipe implementation
- CONC-349: Added new parameter STMT_ATTR_STATE to retrieve statement status via api function mysql_stmt_attr_get


-----------------------------------------
Patch: SUSE-2019-964
Released: Wed Apr 17 10:52:21 2019
Summary: Recommended update for ipset
Severity: moderate
References: 1064865
Description:
This update for ipset fixes the following issues:

- Retry printing when sprintf fails. Instead of returning the length of the string
  which would have been printed, sprintf sometimes simply returns an error code.
  Handle the case and flush the printing buffer and retry. (bsc#1064865)


-----------------------------------------
Patch: SUSE-2019-979
Released: Thu Apr 18 08:23:19 2019
Summary: Recommended update for sg3_utils
Severity: moderate
References: 1069384
Description:
This update for sg3_utils fixes the following issues:

- rescan-scsi-bus.sh: use LUN wildcard in idlist (bsc#1069384)


-----------------------------------------
Patch: SUSE-2019-1004
Released: Wed Apr 24 10:32:01 2019
Summary: Recommended update for postfix
Severity: moderate
References: 1016491,1045264,1055995,1059512,1078843,1082514,1086465,1087471,1095073,1120757,771811
Description:

This update for postfix provides the following fixes:

- Fix breaking of existing postfix configurations because daemon_directory was not adapted
  to the new value. (bsc#1059512)
- Use different directories for daemon_directory and shlib_directory. (bsc#1059512)
- Fix a log message 'warning: group or other writable' on each symlink in config.
  (bsc#1016491)
- Fix set-permissions error 'chown: cannot access ... No such file or directory'.
  (bsc#1055995)
- Fix postfix map regeneration. (bsc#771811, bsc#1045264)
- Avoid installing shared libraries twice.
- Require system group mail. (bsc#1078843)
- Use mail group name instead of GID.
- In case POSTFIX_MYHOSTNAME is empty, use the output of hostname -f to set myhostname. (bsc#1082514)
- Option parent_domain_matches_subdomains is no longer ignored (bsc#1086465)
- Fixes a bug where wrong set file permissions on the spool directory can cause a system hang. (bsc#1120757)


-----------------------------------------
Patch: SUSE-2019-1020
Released: Wed Apr 24 13:41:13 2019
Summary: Recommended update for tigervnc
Severity: important
References: 1025759,1131372,1131600
Description:
This update for tigervnc fixes the following issues:

- Fix inetd mode with X server 1.19 which prevented vnc server from working
  (bnc#1025759, bsc#1131372, bsc#1131600)

  

-----------------------------------------
Patch: SUSE-2019-1021
Released: Wed Apr 24 13:46:42 2019
Summary: Recommended update for open-vm-tools
Severity: moderate
References: 1122435,1126102,1130898
Description:
This update for open-vm-tools fixes the following issues:

open-vm-tools was updated to 10.3.10 (build 12406962) (bsc#1130898):

- In certain cases, quiesced snapshots on Linux guests did not
  include backup manifests.

- Link VGAuthService to libxmlsec1 rather than libxml-security-c.


-----------------------------------------
Patch: SUSE-2019-1029
Released: Thu Apr 25 08:33:02 2019
Summary: Recommended update for gnome-control-center
Severity: moderate
References: 1040054
Description:
This update for gnome-control-center fixes the following issues:

- The 'Apply' button is now disabled until a change has been made (bsc#1040054)


-----------------------------------------
Patch: SUSE-2019-1030
Released: Thu Apr 25 09:49:43 2019
Summary: Security update for webkit2gtk3
Severity: moderate
References: 1126768,CVE-2019-8375
Description:
This update for webkit2gtk3 fixes the following issues:

Security issue fixed: 

- CVE-2019-8375: Fixed an issue in UIProcess subsystem which could allow the script dialog
  size to exceed the web view size leading to Buffer Overflow or other unspecified impact (bsc#1126768).	  


-----------------------------------------
Patch: SUSE-2019-1033
Released: Thu Apr 25 12:47:02 2019
Summary: Security update for ImageMagick
Severity: moderate
References: 1106989,1106996,1107609,1120381,1122033,1124365,1124366,1124368,1128649,1130330,1131317,1132053,1132054,1132060,CVE-2018-16412,CVE-2018-16413,CVE-2018-16644,CVE-2018-20467,CVE-2019-10650,CVE-2019-11007,CVE-2019-11008,CVE-2019-11009,CVE-2019-7175,CVE-2019-7395,CVE-2019-7397,CVE-2019-7398,CVE-2019-9956
Description:
This update for ImageMagick fixes the following issues:

Security issues fixed:

- CVE-2019-9956: Fixed a stack-based buffer overflow in PopHexPixel() (bsc#1130330).
- CVE-2019-10650: Fixed a heap-based buffer over-read in WriteTIFFImage() (bsc#1131317).
- CVE-2019-7175: Fixed multiple memory leaks in DecodeImage function (bsc#1128649).
- CVE-2018-20467: Fixed infinite loop in coders/bmp.c (bsc#1120381).
- CVE-2019-7398: Fixed a memory leak in the function WriteDIBImage (bsc#1124365).
- CVE-2019-7397: Fixed a memory leak in the function WritePDFImage (bsc#1124366).
- CVE-2019-7395: Fixed a memory leak in the function WritePSDChannel (bsc#1124368).
- CVE-2018-16413: Fixed a heap-based buffer over-read in PushShortPixel() (bsc#1106989).
- CVE-2018-16412: Fixed a heap-based buffer over-read in ParseImageResourceBlocks() (bsc#1106996).
- CVE-2018-16644: Fixed a regression in dcm coder (bsc#1107609).
- CVE-2019-11007: Fixed a heap-based buffer overflow in ReadMNGImage() (bsc#1132060).
- CVE-2019-11008: Fixed a heap-based buffer overflow in WriteXWDImage() (bsc#1132054).
- CVE-2019-11009: Fixed a heap-based buffer over-read in ReadXWDImage() (bsc#1132053).

- Added extra -config- packages with Postscript/EPS/PDF readers still enabled.

  Removing the PS decoders is used to harden ImageMagick against security issues within
  ghostscript. Enabling them might impact security. (bsc#1122033)

  These are two packages that can be selected:

  - ImageMagick-config-6-SUSE: This has the PS decoders disabled.
  - ImageMagick-config-6-upstream: This has the PS decoders enabled.

  Depending on your local needs install either one of them. The default is the -SUSE configuration.



-----------------------------------------
Patch: SUSE-2019-1038
Released: Thu Apr 25 14:55:57 2019
Summary: Security update for wireshark
Severity: moderate
References: 1131945,CVE-2019-10894,CVE-2019-10895,CVE-2019-10896,CVE-2019-10899,CVE-2019-10901,CVE-2019-10903
Description:
This update for wireshark to version 2.4.14 fixes the following issues:

Security issues fixed:

- CVE-2019-10895: NetScaler file parser crash.
- CVE-2019-10899: SRVLOC dissector crash.
- CVE-2019-10894: GSS-API dissector crash.
- CVE-2019-10896: DOF dissector crash.
- CVE-2019-10901: LDSS dissector crash.
- CVE-2019-10903: DCERPC SPOOLSS dissector crash.

Non-security issue fixed:

- Update to version 2.4.14 (bsc#1131945).


-----------------------------------------
Patch: SUSE-2019-1060
Released: Sat Apr 27 09:45:38 2019
Summary: Security update for libssh2_org
Severity: important
References: 1130103,1133528,CVE-2019-3859
Description:
This update for libssh2_org fixes the following issues:

 - Incorrect upstream fix for CVE-2019-3859 broke public key authentication [bsc#1133528, bsc#1130103]



-----------------------------------------
Patch: SUSE-2019-1088
Released: Mon Apr 29 13:29:42 2019
Summary: Security update for wpa_supplicant
Severity: moderate
References: 1104205,1109209,CVE-2018-14526
Description:
This update for wpa_supplicant fixes the following issues:

This security issue was fixed:

- CVE-2018-14526: Under certain conditions, the integrity of EAPOL-Key messages
  was not checked, leading to a decryption oracle. An attacker within range of
  the Access Point and client could have abused the vulnerability to recover
  sensitive information (bsc#1104205).

This non-security issue was fixed:

- Enabled PWD as EAP method. This allows for password-based authentication,
  which is easier to setup than most of the other methods, and is used by the
  Eduroam network (bsc#1109209).


-----------------------------------------
Patch: SUSE-2019-1091
Released: Mon Apr 29 14:33:46 2019
Summary: Security update for atftp
Severity: important
References: 1133114,1133145,CVE-2019-11365,CVE-2019-11366
Description:
This update for atftp fixes the following issues:

Security issues fixed:

- CVE-2019-11366: Fixed a denial of service caused by a NULL pointer dereference because thread_list_mutex was not locked (bsc#1133145).
- CVE-2019-11365: Fixed a buffer overflow which could lead to remote code execution caused by an insecure use of strncpy() (bsc#1133114).


-----------------------------------------
Patch: SUSE-2019-1098
Released: Mon Apr 29 18:04:13 2019
Summary: Recommended update for ipmctl
Severity: moderate
References: 1123735,1128830
Description:
This update for ipmctl fixes the following issues:

Update to version v01.00.00.3440:

- Support more than 16 sockets.  [FATE#327556, FATE#327573, bsc#1123735]
- Fix flashing FW of DCPMM modules.  [bsc#1128830]
  

-----------------------------------------
Patch: SUSE-2019-1102
Released: Tue Apr 30 12:07:42 2019
Summary: Security update for glibc
Severity: moderate
References: 1100396,1110661,1122729,1127223,1127308,1128574,1131994,CVE-2009-5155,CVE-2016-10739,CVE-2019-9169
Description:
This update for glibc fixes the following issues:

Security issues fixed:

- CVE-2019-9169: regex: fix read overrun (bsc#1127308, BZ #24114)
- CVE-2016-10739: Fully parse IPv4 address strings (bsc#1122729, BZ #20018)
- CVE-2009-5155: ERE '0|()0|\1|0' causes regexec undefined behavior (bsc#1127223, BZ #18986)

Non-security issues fixed:

- Enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (bsc#1131994, fate#322271)
- Add more checks for valid ld.so.cache file (bsc#1110661, BZ #18093)
- Added cfi information for start routines in order to stop unwinding (bsc#1128574)
- ja_JP locale: Add entry for the new Japanese era (bsc#1100396, fate#325570, BZ #22964)


-----------------------------------------
Patch: SUSE-2019-1104
Released: Tue Apr 30 12:09:07 2019
Summary: Recommended update for gcc48
Severity: moderate
References: 1131264,SLE-6738
Description:
This update for gcc48 fixes the following issues:

- Disable switch jump tables when retpolines are enabled to increase performance of code using retpolines (bsc#1131264, jsc#SLE-6738)



-----------------------------------------
Patch: SUSE-2019-1111
Released: Tue Apr 30 12:59:27 2019
Summary: Security update for libjpeg-turbo
Severity: moderate
References: 1096209,1098155,1128712,CVE-2018-1152,CVE-2018-11813,CVE-2018-14498
Description:
This update for libjpeg-turbo fixes the following issues:

The following security vulnerabilities were addressed:

- CVE-2018-14498: Fixed a heap-based buffer over read in get_8bit_row function
  which could allow to an attacker to cause denial of service (bsc#1128712).
- CVE-2018-11813: Fixed the end-of-file mishandling in read_pixel in rdtarga.c,
  which allowed remote attackers to cause a denial-of-service via crafted JPG
  files due to a large loop (bsc#1096209)
- CVE-2018-1152: Fixed a denial of service in start_input_bmp() rdbmp.c caused
  by a divide by zero when processing a crafted BMP image (bsc#1098155)


-----------------------------------------
Patch: SUSE-2019-1112
Released: Tue Apr 30 13:18:17 2019
Summary: Recommended update for cmake
Severity: moderate
References: 1087497
Description:
This update for cmake fixes the following issues:

- Fix skipped tests being treated as failed (bsc#1087497)


-----------------------------------------
Patch: SUSE-2019-1115
Released: Tue Apr 30 14:11:09 2019
Summary: Recommended update for open-iscsi
Severity: moderate
References: 1128972
Description:
This update for open-iscsi fixes the following issues:

  - Fix a regression in behavior of iscsiadm caused by the switch to
    libopeniscsiusr (bsc#1128972)



-----------------------------------------
Patch: SUSE-2019-1131
Released: Thu May  2 15:39:59 2019
Summary: Recommended update for libidn
Severity: moderate
References: 1092034
Description:
This update for libidn fixes the following issues:

- Obsoletes now the libidn 32bit package (bsc#1092034)


-----------------------------------------
Patch: SUSE-2019-1132
Released: Thu May  2 15:40:56 2019
Summary: Recommended update for ceph
Severity: important
References: 1129973
Description:
This update for ceph fixes the following issues:

- Fixes an issue where files get corrupted when using self defined 256bit AES keys (bsc#1129973)


-----------------------------------------
Patch: SUSE-2019-1138
Released: Fri May  3 11:34:12 2019
Summary: Recommended update for python-kiwi
Severity: low
References: 1131153
Description:

This update for python-kiwi fixes the following issues:

- Various dracut plugins were shipped additionaly. (bsc#1131153)
  

-----------------------------------------
Patch: SUSE-2019-1140
Released: Fri May  3 13:00:50 2019
Summary: Recommended update for mailman
Severity: moderate
References: 1120345
Description:
This update for mailman fixes the following issues:

- Correct syntax of the Apache configuration file (bsc#1120345)


-----------------------------------------
Patch: SUSE-2019-1141
Released: Fri May  3 13:41:22 2019
Summary: Security update for openssl-1_1
Severity: moderate
References: 1133925,SLE-6430
Description:
This update for openssl-1_1 to version 1.1.1b fixes the following issues:

- Changed the info callback signals for the start and end of a post-handshake
  message exchange in TLSv1.3.
- Fixed a bug in DTLS over SCTP. This breaks interoperability with older versions
  of OpenSSL like OpenSSL 1.1.0 and OpenSSL 1.0.2.
- Fixed the handling of strerror_r with glibc.


-----------------------------------------
Patch: SUSE-2019-1155
Released: Mon May  6 13:44:11 2019
Summary: Security update for webkit2gtk3
Severity: important
References: 1132256,CVE-2019-11070,CVE-2019-6201,CVE-2019-6251,CVE-2019-7285,CVE-2019-7292,CVE-2019-8503,CVE-2019-8506,CVE-2019-8515,CVE-2019-8524,CVE-2019-8535,CVE-2019-8536,CVE-2019-8544,CVE-2019-8551,CVE-2019-8558,CVE-2019-8559,CVE-2019-8563
Description:
This update for webkit2gtk3 to version 2.24.1 fixes the following issues:

Security issues fixed:

- CVE-2019-6201, CVE-2019-6251, CVE-2019-7285, CVE-2019-7292, CVE-2019-8503, CVE-2019-8506,
  CVE-2019-8515, CVE-2019-8524, CVE-2019-8535, CVE-2019-8536, CVE-2019-8544, CVE-2019-8551,
  CVE-2019-8558, CVE-2019-8559, CVE-2019-8563, CVE-2019-11070 (bsc#1132256).


-----------------------------------------
Patch: SUSE-2019-1158
Released: Mon May  6 13:47:06 2019
Summary: Recommended update for procinfo
Severity: moderate
References: 1131008,900125
Description:
This update for procinfo fixes the following issues:

- Fix a segfault during 'procinfo -a' by increasing the number of
  available devices. (bsc#900125, bsc#1131008)


-----------------------------------------
Patch: SUSE-2019-1178
Released: Tue May  7 16:30:57 2019
Summary: Recommended update for MozillaFirefox
Severity: important
References: 1134126
Description:
This update for MozillaFirefox fixes the following issues:

- An internal certificate in Firefox expired recently and that certificate was
  used to ensure the validity of installed extensions modules. This update
  includes a new, valid copy of that certificate so that users can continue to
  use and install their preferred extensions. (bsc#1134126)


-----------------------------------------
Patch: SUSE-2019-1192
Released: Wed May  8 13:09:30 2019
Summary: Recommended update for mgetty
Severity: moderate
References: 1129954,968571
Description:
This update for mgetty fixes the following issues:

- Use correct permissions for unit files (bsc#1129954, bsc#968571).


-----------------------------------------
Patch: SUSE-2019-1208
Released: Fri May 10 14:03:54 2019
Summary: Security update for sqlite3
Severity: moderate
References: 1085790,1132045,CVE-2017-10989,CVE-2018-8740
Description:
This update for sqlite3 fixes the following issues:

Security issue fixed:

- CVE-2018-8740: Fixed a NULL pointer dereference related to corrupted databases schemas (bsc#1085790).
- CVE-2017-10989: Fixed a heap-based buffer over-read in getNodeSize() (bsc#1132045).


-----------------------------------------
Patch: SUSE-2019-1219
Released: Mon May 13 13:26:51 2019
Summary: Security update for java-1_8_0-openjdk
Severity: important
References: 1122293,1122299,1132728,1132729,1132732,1133135,CVE-2018-11212,CVE-2018-3639,CVE-2019-2422,CVE-2019-2426,CVE-2019-2602,CVE-2019-2684,CVE-2019-2698
Description:
This update for java-1_8_0-openjdk to version 8u212 fixes the following issues:

Security issues fixed:

- CVE-2019-2602: Better String parsing (bsc#1132728).
- CVE-2019-2684: More dynamic RMI interactions (bsc#1132732).
- CVE-2019-2698: Fuzzing TrueType fonts - setCurrGlyphID() (bsc#1132729).
- CVE-2019-2422: Better FileChannel (bsc#1122293).
- CVE-2018-11212: Improve JPEG (bsc#1122299).

Non-Security issue fixed:

- Disable LTO (bsc#1133135).
- Added Japanese new era name.


-----------------------------------------
Patch: SUSE-2019-1230
Released: Tue May 14 12:36:39 2019
Summary: Recommended update for postfix
Severity: moderate
References: 1104543
Description:
This update for postfix fixes the following issues:

- config.postfix didn't start tlsmgr in master.cf
  when using POSTFIX_SMTP_TLS_CLIENT='must' (bsc#1104543)


-----------------------------------------
Patch: SUSE-2019-1232
Released: Tue May 14 17:07:56 2019
Summary: Security update for libxslt
Severity: moderate
References: 1132160,CVE-2019-11068
Description:
This update for libxslt fixes the following issues:

- CVE-2019-11068: Fixed a protection mechanism bypass where callers of 
  xsltCheckRead() and xsltCheckWrite() would permit access upon receiving an
  error (bsc#1132160).


-----------------------------------------
Patch: SUSE-2019-1259
Released: Wed May 15 14:06:20 2019
Summary: Recommended update for sysvinit
Severity: moderate
References: 1131982
Description:
This update for sysvinit fixes the following issues:

- Handle various optional fields of /proc/<pid>/mountinfo on the entry/ies before the hyphen
  (bsc#1131982)


-----------------------------------------
Patch: SUSE-2019-1278
Released: Fri May 17 10:41:55 2019
Summary: Recommended update for logrotate
Severity: moderate
References: 1131477
Description:
This update for logrotate fixes the following issue:

- Trigger the rotation of weekly events more predictably [bsc#1131477]
  Introduce an optional argument for the 'weekly' directive to trigger
  the rotation on a selected day of the week.



-----------------------------------------
Patch: SUSE-2019-1280
Released: Fri May 17 13:13:11 2019
Summary: Recommended update for MozillaFirefox
Severity: moderate
References: 1134126
Description:
This update for MozillaFirefox fixes the following issues:

Mozilla Firefox was updated to 60.6.3 (bmo#1549249):

* Further improvements to re-enable web extensions which had been
  disabled for users with a master password set.


-----------------------------------------
Patch: SUSE-2019-1286
Released: Fri May 17 15:34:02 2019
Summary: Security update for nmap
Severity: moderate
References: 1104139,CVE-2018-15173
Description:
This update for nmap fixes the following issues:

Security issue fixed:

- CVE-2018-15173: Fixed a remote denial of service attack via a crafted TCP-based service (bsc#1104139).


-----------------------------------------
Patch: SUSE-2019-1315
Released: Wed May 22 15:06:10 2019
Summary: Recommended update for nut
Severity: moderate
References: 1063897,1069988,1070373,801542,907387,963505
Description:
This update for nut fixes the following issues:


- Update to version 2.7.4 (fate#325455)
  The full changelog can be found in /usr/share/doc/packages/nut

  * Adds support for OpenSSL 1.1.0 library, allow TLSv1 and higher (not just TLSv1) and
    report TLS version used in debug mode level 3 and higher (bsc#1069988)
  * Does no longer conflict with apcupsd (bsc#1070373).
  * Removed smartups references
  * Dropped dependency to aspell (fate#323578)
  * It will no longer suppress errors from useradd
  * Added support for new devices (see changelog in /usr/share/doc/packages/nut)
  * New snmp-ups improvements
  * Eaton: improvements and fixes of 3ph SNMP, ePDU (G2 and G3) and XML/PDC.
  * Further fixes and improvements of bcmxcp_usb, dummy-ups, libnutclient, nutdrv_atcl_usb,
    nutdrv_qx, nut-ipmipsu, solis, tripplitesu, usbhid-ups.
  * Improved SSL support through Mozilla NSS, Augeas support.
  * Fixed UPower device matching in recent kernels.
  * Does no longer install init and systemd files at once

  Please find the changes of 2.7.2 and 2.7.3 in the changelog file.

- Fixes an issue where the nut-driver service file had a wrong reference to the executable
  file of upsdrvctl (bsc#907387)


-----------------------------------------
Patch: SUSE-2019-1319
Released: Thu May 23 12:45:33 2019
Summary: Recommended update for rsyslog
Severity: low
References: 1126233
Description:
This update for rsyslog fixes the following issues:

- Set default permission for all log files (bsc#1126233)


-----------------------------------------
Patch: SUSE-2019-1326
Released: Thu May 23 15:18:32 2019
Summary: Security update for sysstat
Severity: low
References: 1117001,1117260,CVE-2018-19416,CVE-2018-19517
Description:
This update for sysstat fixes the following issues:

Security issues fixed:

- CVE-2018-19416: Fixed out-of-bounds read during a memmove call inside the remap_struct function (bsc#1117001).
- CVE-2018-19517: Fixed out-of-bounds read during a memset call inside the remap_struct function (bsc#1117260).


-----------------------------------------
Patch: SUSE-2019-1339
Released: Fri May 24 12:56:49 2019
Summary: Security update for bluez
Severity: moderate
References: 1013708,1013712,1013893,1015171,1015173,CVE-2016-9797,CVE-2016-9798,CVE-2016-9802,CVE-2016-9917,CVE-2016-9918
Description:
This update for bluez fixes the following issues:

Security vulnerability addressed:

- CVE-2016-9797: Fixed a buffer over-read in l2cap_dump() (bsc#1013708).
- CVE-2016-9798: Fixed a use-after-free in conf_opt() (bsc#1013712).
- CVE-2016-9917: Fixed a heap-based buffer overflow in read_n() (bsc#1015171).
- CVE-2016-9802: Fixed a buffer over-read in l2cap_packet() (bsc#1013893).
- CVE-2016-9918: Fixed an out-of-bounds stack read in packet_hexdump(),
  which could be triggered by processing a corrupted dump file and will result
  in a crash of the hcidump tool (bsc#1015173)


-----------------------------------------
Patch: SUSE-2019-1354
Released: Fri May 24 19:04:57 2019
Summary: Security update for screen
Severity: moderate
References: 1130831,944458,CVE-2015-6806
Description:
This update for screen fixes the following issues:

Security issue fixed:

- CVE-2015-6806: Fixed a stack overflow due to deep recursion (bsc#944458).

Non-security issue fixed:

- Fixed segmentation faults related to altscreen and resizing screen (bsc#1130831).


-----------------------------------------
Patch: SUSE-2019-1379
Released: Wed May 29 15:07:04 2019
Summary: Security update for libtasn1
Severity: moderate
References: 1040621,1105435,CVE-2017-6891,CVE-2018-1000654
Description:
This update for libtasn1 fixes the following issues:

Security issues fixed:

- CVE-2018-1000654: Fixed a denial of service in the asn1 parser (bsc#1105435).
- CVE-2017-6891: Fixed a stack overflow in asn1_find_node() (bsc#1040621).


-----------------------------------------
Patch: SUSE-2019-1388
Released: Fri May 31 10:11:42 2019
Summary: Security update for MozillaFirefox
Severity: important
References: 1135824,CVE-2019-11691,CVE-2019-11692,CVE-2019-11693,CVE-2019-11694,CVE-2019-11698,CVE-2019-7317,CVE-2019-9800,CVE-2019-9815,CVE-2019-9816,CVE-2019-9817,CVE-2019-9818,CVE-2019-9819,CVE-2019-9820
Description:
This update for MozillaFirefox fixes the following issues:

Security issues fixed:

- CVE-2019-11691: Use-after-free in XMLHttpRequest
- CVE-2019-11692: Use-after-free removing listeners in the event listener manager
- CVE-2019-11693: Buffer overflow in WebGL bufferdata on Linux
- CVE-2019-11694: Uninitialized memory memory leakage in Windows sandbox
- CVE-2019-11698: Theft of user history data through drag and drop of hyperlinks to and from bookmarks
- CVE-2019-7317: Use-after-free in png_image_free of libpng library
- CVE-2019-9800: Memory safety bugs fixed in Firefox 67 and Firefox ESR 60.7
- CVE-2019-9815: Disable hyperthreading on content JavaScript threads on macOS
- CVE-2019-9816: Type confusion with object groups and UnboxedObjects
- CVE-2019-9817: Stealing of cross-domain images using canvas
- CVE-2019-9818: Use-after-free in crash generation server
- CVE-2019-9819: Compartment mismatch with fetch API
- CVE-2019-9820: Use-after-free of ChromeEventHandler by DocShell

Non-security issues fixed:

- Font and date adjustments to accommodate the new Reiwa era in Japan
- Update to Firefox ESR 60.7 (bsc#1135824)


-----------------------------------------
Patch: SUSE-2019-1390
Released: Fri May 31 10:13:10 2019
Summary: Security update for gnome-shell
Severity: moderate
References: 1124493,CVE-2019-3820,SLE-6660
Description:
This update for gnome-shell fixes the following issues:

Security issue fixed:

- CVE-2019-3820: Fixed a partial lock screen bypass (bsc#1124493).

Fixed bugs:

- Remove sessionList of endSessionDialog for security reasons (jsc#SLE-6660).


-----------------------------------------
Patch: SUSE-2019-1392
Released: Fri May 31 10:14:48 2019
Summary: Security update for java-1_7_0-openjdk
Severity: moderate
References: 1122293,1122299,1132728,1132729,1132732,1134297,CVE-2018-11212,CVE-2019-2422,CVE-2019-2426,CVE-2019-2602,CVE-2019-2684,CVE-2019-2698
Description:
This update for java-1_7_0-openjdk fixes the following issues:

Update to 2.6.18 - OpenJDK 7u221 (April 2019 CPU)

Security issues fixed:

- CVE-2019-2602: Fixed flaw inside BigDecimal implementation (Component: Libraries) (bsc#1132728).
- CVE-2019-2684: Fixed flaw inside the RMI registry implementation (bsc#1132732).
- CVE-2019-2698: Fixed out of bounds access flaw in the 2D component (bsc#1132729).
- CVE-2019-2422: Fixed memory disclosure in FileChannelImpl (bsc#1122293).
- CVE-2018-11212: Fixed a Divide By Zero in alloc_sarray function in jmemmgr.c (bsc#1122299).
- CVE-2019-2426: Improve web server connections (bsc#1134297).

Bug fixes:

- Please check the package Changelog for detailed information.


-----------------------------------------
Patch: SUSE-2019-1397
Released: Fri May 31 12:53:55 2019
Summary: Recommended update for libev
Severity: low
References: 1131940
Description:

This update for libev fixes the following issue:

- ship libev-devel in the SDK. (bsc#1131940 fate#325720)
  

-----------------------------------------
Patch: SUSE-2019-1400
Released: Fri May 31 16:52:39 2019
Summary: Security update for apache2-mod_jk
Severity: important
References: 1114612,CVE-2018-11759
Description:
This update for apache2-mod_jk fixes the following issue:

Security issue fixed:

- CVE-2018-11759: Fixed connector path traversal due to mishandled HTTP requests in httpd (bsc#1114612).


-----------------------------------------
Patch: SUSE-2019-1431
Released: Wed Jun  5 16:50:13 2019
Summary: Recommended update for xz
Severity: moderate
References: 1135709
Description:
This update for xz does only update the license:

- Add SUSE-Public-Domain license as some parts of xz utils (liblzma,
  xz, xzdec, lzmadec, documentation, translated messages, tests,
  debug, extra directory) are in public domain license (bsc#1135709)


-----------------------------------------
Patch: SUSE-2019-1439
Released: Thu Jun  6 17:50:33 2019
Summary: Security update for python
Severity: important
References: 1129346,1130847,CVE-2019-9636,CVE-2019-9948
Description:
This update for python fixes the following issues:

Security issues fixed:

- CVE-2019-9948: Fixed a 'file:' blacklist bypass in URIs by using the 'local-file:' scheme instead (bsc#1130847).
- CVE-2019-9636: Fixed an information disclosure because of incorrect handling of Unicode encoding during NFKC normalization (bsc#1129346).


-----------------------------------------
Patch: SUSE-2019-1456
Released: Tue Jun 11 10:08:27 2019
Summary: Security update for vim
Severity: important
References: 1137443,CVE-2019-12735
Description:
This update for vim fixes the following issue:

Security issue fixed: 

- CVE-2019-12735: Fixed a potential arbitrary code execution vulnerability in getchar.c (bsc#1137443).


-----------------------------------------
Patch: SUSE-2019-1468
Released: Wed Jun 12 10:01:33 2019
Summary: Security update for libcroco
Severity: moderate
References: 1034481,1034482,1043898,1043899,CVE-2017-7960,CVE-2017-7961,CVE-2017-8834,CVE-2017-8871
Description:
This update for libcroco fixes the following issues:

Security issues fixed:

- CVE-2017-7960: Fixed heap overflow (input: check end of input before reading a byte) (bsc#1034481).                                                                    
- CVE-2017-7961: Fixed undefined behavior (tknzr: support only max long rgb values) (bsc#1034482).                                                                       
- CVE-2017-8834: Fixed denial of service (memory allocation error) via a crafted CSS file (bsc#1043898).
- CVE-2017-8871: Fixed denial of service (infinite loop and CPU consumption) via a crafted CSS file (bsc#1043899).


-----------------------------------------
Patch: SUSE-2019-1473
Released: Wed Jun 12 14:46:02 2019
Summary: Recommended update for libteam
Severity: moderate
References: 1115225
Description:
This update for libteam fixes the following issues:

- teamd: do correct l3/l4 tx hashing with vlans(bsc#1115225)
- Do not set Collecting & Distributing & Synchronization bit in LACPDUs
  for the ports associated with standby agg.
- LACP: INFO_STATE_AGGREGATION not set on first port when subsequent ports join team


-----------------------------------------
Patch: SUSE-2019-1475
Released: Wed Jun 12 14:46:33 2019
Summary: Recommended update for permissions
Severity: moderate
References: 1110797
Description:
This update for permissions fixes the following issues:

- Updated permissons for amanda (bsc#1110797)


-----------------------------------------
Patch: SUSE-2019-1480
Released: Wed Jun 12 16:53:11 2019
Summary: Security update for sssd
Severity: moderate
References: 1124194,1132657,1132879,1135247,CVE-2018-16838
Description:
This update for sssd fixes the following issues:

Security issue fixed:

- CVE-2018-16838: Fixed an authentication bypass related to the Group Policy Objects implementation (bsc#1124194)

Non-security issues fixed:

- Missing GPOs directory could have led to login problems (bsc#1132879)
- Fix a crash by adding a netgroup counter to struct nss_enum_index (bsc#1132657)
- Allow defaults sudoRole without sudoUser attribute (bsc#1135247)


-----------------------------------------
Patch: SUSE-2019-1481
Released: Thu Jun 13 07:46:01 2019
Summary: Recommended update for sg3_utils
Severity: moderate
References: 1005063,1119296,1133418,954600
Description:
This update for sg3_utils provides the following fixes:
- Fix regression for page 0xa. (bsc#1119296)
- Add pre/post scripts for lunmask.service. (bsc#954600)
- Will now generate by-path links for fibrechannel. (bsc#1005063)
- Fixes a syntax error for rule 59-fc-wwpn-id.rules. (bsc#1133418)
  

-----------------------------------------
Patch: SUSE-2019-1485
Released: Thu Jun 13 07:47:17 2019
Summary: Recommended update for mutter
Severity: moderate
References: 1133445
Description:
This update for mutter provides the following fixes:

- Fix issue that causes unresponsive GUI after long running session. (bsc#1133445)



-----------------------------------------
Patch: SUSE-2019-1493
Released: Thu Jun 13 16:40:31 2019
Summary: Recommended update for binutils
Severity: moderate
References: 1137271,SLE-6206
Description:
This update for binutils fixes the following issues:

- Add support for new IBM zSeries z13 instructions. (fate#327074, jsc#SLE-6206,
  bsc#1137271)


-----------------------------------------
Patch: SUSE-2019-1497
Released: Fri Jun 14 11:09:54 2019
Summary: Recommended update for sblim-gather
Severity: moderate
References: 1027980,1028716,1085275
Description:

This update for sblim-gather provides the following fixes:

- Use correctly the return value of calloc for arrays. (bsc#1028716)
- Use full path when querying s390 ECKD devices. (bsc#1028716)
- Make sure that /run/gather subdirectory is registered with tmpfile.d and created after
  every reboot. (bsc#1027980)
- Replace the init.d service file with a systemd service file. (bsc#1085275)


-----------------------------------------
Patch: SUSE-2019-1505
Released: Fri Jun 14 11:14:54 2019
Summary: Recommended update for open-vm-tools
Severity: moderate
References: 1122435,1133623
Description:
This update for open-vm-tools fixes the following issues:

- Update vmtoolsd.service tools to run after the network service is
  ready. (bsc#1133623)
- Link VGAuthService to libxmlsec1 rather than libxml-security-c in
  SLES 12 SP3. (bsc#1122435)


-----------------------------------------
Patch: SUSE-2019-1511
Released: Fri Jun 14 16:19:32 2019
Summary: Security update for postgresql10
Severity: moderate
References: 1134689,CVE-2019-10130
Description:
This update for postgresql10 fixes the following issues:

Security issue fixed:

- CVE-2019-10130: Prevent row-level security policies from being bypassed via selectivity estimators (bsc#1134689).

Bug fixes:

- For a complete list of fixes check the release notes.
  * https://www.postgresql.org/docs/10/release-10-8.html
  * https://www.postgresql.org/docs/10/release-10-7.html


-----------------------------------------
Patch: SUSE-2019-1516
Released: Mon Jun 17 11:04:15 2019
Summary: Recommended update for e2fsprogs
Severity: moderate
References: 1128383
Description:
This update for e2fsprogs fixes the following issues:

- e2fsck: Check and fix tails of all bitmap blocks. (bsc#1128383)


-----------------------------------------
Patch: SUSE-2019-1524
Released: Mon Jun 17 17:30:16 2019
Summary: Security update for openssh
Severity: moderate
References: 1065237,1090671,1119183,1121816,1121821,1131709,CVE-2019-6109,CVE-2019-6111
Description:
This update for openssh fixes the following issues:

Security vulnerabilities addressed:

- CVE-2019-6109: Fixed an character encoding issue in the progress display of
  the scp client that could be used to manipulate client output, allowing
  for spoofing during file transfers (bsc#1121816).
- CVE-2019-6111: Properly validate object names received by the scp client to
  prevent arbitrary file overwrites when interacting with a malicious SSH server
  (bsc#1121821).

Other issues fixed: 

- Fixed two race conditions in sshd relating to SIGHUP (bsc#1119183).
- Returned proper reason for port forwarding failures (bsc#1090671).
- Fixed a double free() in the KDF CAVS testing tool (bsc#1065237).


-----------------------------------------
Patch: SUSE-2019-1557
Released: Wed Jun 19 08:53:55 2019
Summary: Recommended update for gnome-nettool
Severity: moderate
References: 1130398
Description:
This update for gnome-nettool fixes the following issues:

- Adds support for GigE (bsc#1130398)

-----------------------------------------
Patch: SUSE-2019-1559
Released: Wed Jun 19 08:56:58 2019
Summary: Recommended update for gnome-control-center
Severity: moderate
References: 1040055
Description:
This update for gnome-control-center fixes the following issues:

- Fixes an issue in the GUI where a text overlapped with a form field (bsc#1040055)
- Fixed an issue with the panel search
- Fixed some keyboard navigation issues
- Fixes a possible crash on startup
- Network: Fix some SSID escaping issues
- Power: Fix hiding wi-fi, mobile broadband toggles.
- Power: Fix wifi device state when opening power panel.
- Privacy: React to changes in permissions store.
- User accounts: Fix missing records in the history dialog.

-----------------------------------------
Patch: SUSE-2019-1568
Released: Wed Jun 19 15:37:01 2019
Summary: Recommended update for smt
Severity: important
References: 1129844
Description:
This update for smt fixes the following issue:

- smt-sync fails with Data too long for column 'PRODUCT_CLASS' (bsc#1129844)


-----------------------------------------
Patch: SUSE-2019-1572
Released: Wed Jun 19 22:17:56 2019
Summary: Recommended update for rpcbind
Severity: moderate
References: 1134659
Description:
This update for rpcbind fixes the following issues:

- change rpcbind locking path from /var/run/rpcbind.lock to 
  /run/rpcbind.lock (bsc#1134659)
- change the order of socket/service in the %postun scriptlet to
  avoid an error from rpcbind.socket when rpcbind is running 
  during package update


-----------------------------------------
Patch: SUSE-2019-1573
Released: Wed Jun 19 22:18:31 2019
Summary: Recommended update for vhostmd
Severity: low
References: 1129772
Description:


vhostmd was updated to vhostmd 1.1 fixing multiple issues (bsc#1129772):

- Merge libserialclient with libmetrics
- Add virtio as transport mechanism
- Update to work with modern Xen
- Add SIGPIPE handler and reconnect
- Add systemd service file
- Modernize build files
- Misc bug fixes and improvements

  

-----------------------------------------
Patch: SUSE-2019-1589
Released: Thu Jun 20 19:49:46 2019
Summary: Recommended update for permissions
Severity: moderate
References: 1128598
Description:
This update for permissions fixes the following issues:

- Added whitelisting for /usr/lib/singularity/bin/starter-suid in the new singularity 3.1 version. (bsc#1128598)



-----------------------------------------
Patch: SUSE-2019-1600
Released: Fri Jun 21 10:19:59 2019
Summary: Security update for gstreamer-plugins-base
Severity: important
References: 1133375,CVE-2019-9928
Description:
This update for gstreamer-plugins-base fixes the following issue:
Security issue fixed:

- CVE-2019-9928: Fixed a heap-based overflow in the rtsp connection parser (bsc#1133375).


-----------------------------------------
Patch: SUSE-2019-1601
Released: Fri Jun 21 10:21:39 2019
Summary: Security update for sqlite3
Severity: important
References: 1136976,CVE-2019-8457
Description:
This update for sqlite3 fixes the following issues:

Security issue fixed:	  

- CVE-2019-8457: Fixed a Heap out-of-bound read in rtreenode() when handling invalid rtree tables (bsc#1136976).


-----------------------------------------
Patch: SUSE-2019-1610
Released: Fri Jun 21 10:27:59 2019
Summary: Security update for wireshark
Severity: moderate
References: 1136021
Description:
This update for wireshark to version 2.4.15 fixes the following issues:

Security issue fixed:

- Fixed a denial of service in the dissection engine (bsc#1136021). 


-----------------------------------------
Patch: SUSE-2019-1619
Released: Fri Jun 21 11:06:12 2019
Summary: Recommended update for nautilus
Severity: low
References: 1089892,SLE-6657
Description:
This update for nautilus provides the following fix:

- Show a notification when disks can be safely removed after unmounting. (bsc#1089892, jsc#SLE-6657)


-----------------------------------------
Patch: SUSE-2019-1625
Released: Fri Jun 21 11:13:55 2019
Summary: Recommended update for MozillaFirefox
Severity: moderate
References: 1137792,1138614,CVE-2019-11707
Description:
This update for MozillaFirefox to version 60.7.1 fixes the following issues:

Security issue fixed:    

- CVE-2019-11707: Fixed a type confusion vulnerability in Arrary.pop (bsc#1138614)    

Other issue addressed: 

- Fixed broken language plugins (bsc#1137792)


-----------------------------------------
Patch: SUSE-2019-1630
Released: Fri Jun 21 11:17:09 2019
Summary: Recommended update for rsyslog
Severity: moderate
References: 1133847
Description:
This update for rsyslog fixes the following issues:

- Fixes an issue where the 'readTimeout' option couldn't be used while using
  imfile with polling mode(bsc#1133847)


-----------------------------------------
Patch: SUSE-2019-1645
Released: Fri Jun 21 16:10:39 2019
Summary: Security update for netpbm
Severity: moderate
References: 1024288,1024291,1086777,1136936,CVE-2017-2579,CVE-2017-2580,CVE-2018-8975
Description:
This update for netpbm fixes the following issues:

Security issues fixed:

- CVE-2018-8975: The pm_mallocarray2 function allowed remote attackers to cause
  a denial of service (heap-based buffer over-read) via a crafted image file (bsc#1086777).
- CVE-2017-2579: Fixed out-of-bounds read in expandCodeOntoStack() (bsc#1024288).
- CVE-2017-2580: Fixed out-of-bounds write of heap data in addPixelToRaster() function (bsc#1024291).

- create netpbm-vulnerable subpackage and move pstopnm there (bsc#1136936)



-----------------------------------------
Patch: SUSE-2019-1684
Released: Sat Jun 22 17:34:38 2019
Summary: Security update for MozillaFirefox
Severity: important
References: 1138872,CVE-2019-11708
Description:
This update for MozillaFirefox fixes the following issues:

- Mozilla Firefox Firefox 60.7.2
  MFSA 2019-19 (bsc#1138872)

- CVE-2019-11708: Fix sandbox escape using Prompt:Open.
  * Insufficient vetting of parameters passed with the Prompt:Open IPC
    message between child and parent processes could result in the non-sandboxed
    parent process opening web content chosen by a compromised child process.
    When combined with additional vulnerabilities this could result in executing
    arbitrary code on the user's computer.



-----------------------------------------
Patch: SUSE-2019-1701
Released: Tue Jun 25 13:19:52 2019
Summary: Recommended update for perl-Tk
Severity: moderate
References: 1134134
Description:
This update for perl-Tk fixes the following issues:

- Tk::Photo importer fails on some XPM files. (bsc#1134134)


-----------------------------------------
Patch: SUSE-2019-1712
Released: Tue Jun 25 17:35:20 2019
Summary: Security update for ImageMagick
Severity: moderate
References: 1133204,1133205,1133498,1133501,1134075,1135232,1135236,1136183,1136732,1138425,1138464,CVE-2017-12805,CVE-2017-12806,CVE-2019-10131,CVE-2019-11470,CVE-2019-11472,CVE-2019-11505,CVE-2019-11506,CVE-2019-11597,CVE-2019-11598
Description:
This update for ImageMagick fixes the following issues:

Security issues fixed:

- CVE-2019-11597: Fixed a heap-based buffer over-read in the WriteTIFFImage() (bsc#1138464).
- Fixed a file content disclosure via SVG and WMF decoding (bsc#1138425).- CVE-2019-11472: Fixed a denial of service in ReadXWDImage() (bsc#1133204).
- CVE-2019-11470: Fixed a denial of service in ReadCINImage() (bsc#1133205).
- CVE-2019-11506: Fixed a heap-based buffer overflow in the WriteMATLABImage() (bsc#1133498).
- CVE-2019-11505: Fixed a heap-based buffer overflow in the WritePDBImage() (bsc#1133501).
- CVE-2019-10131: Fixed a off-by-one read in formatIPTCfromBuffer function in coders/meta.c (bsc#1134075).
- CVE-2017-12806: Fixed a denial of service through memory exhaustion in format8BIM() (bsc#1135232).
- CVE-2017-12805: Fixed a denial of service through memory exhaustion in ReadTIFFImage() (bsc#1135236).
- CVE-2019-11598: Fixed a heap-based buffer over-read in WritePNMImage() (bsc#1136732)
    
We also now disable PCL in the -SUSE configuration, as it also uses ghostscript for decoding (bsc#1136183)


-----------------------------------------
Patch: SUSE-2019-1715
Released: Thu Jun 27 10:21:31 2019
Summary: Recommended update for cloud-init, dhcp
Severity: moderate
References: 1087331,1095627,1097388,1099340,1101894,1111427,1114160,1116767,1119397,1121878,1123694,1125950,1125992,1126101,1132692
Description:
This update for cloud-init, dhcp provides the following fixes:

Changes to cloud-init:

- When the user configures a new rules file for network devices, the rules may not apply
  immediately, so trigger udevadm. (bsc#1125950)
- Fix the order of calls when writing routes so that the SUSE implementation of route
  config file writing has precedence over the default implementation. (bsc#1125992)
- Use the proper name to designate IPv6 addresses in ifcfg-* files. (bsc#1126101)
- Drop a '-' in the route file for the last column. (bsc#1123694)
- Make sure the resulting resolv.conf file is not empty. (bsc#1119397)
- Update to version 18.5 (bsc#1121878, bsc#1116767):
  * Add cloud-id binary to packages for SUSE.
  * azure: Accept variation in error msg from mount for ntfs volumes.
  * azure: Add apply_network_config option to disable network from IMDS.
  * azure: Add udev rules to create cloud-init Gen2 disk name symlinks.
  * azure: Detect vnet migration via netlink media change event.
  * azure: Fix a copy and paste error in error handling when reading azure ovf.
  * azure: Fix a regression introduced when persisting ephemeral dhcp lease.
  * azure: _poll_imds only retry on 404, failing on timeout.
  * azure: Remove /etc/netplan/90-hotplug-azure.yaml when net from IMDS.
  * azure: Report ready to fabric after reprovision and reduce logging.
  * azure: Retry imds polling on requests.Timeout.
  * config: On ubuntu select cloud archive mirrors for armel, armhf, arm64.
  * dhclient-hook: Clean it up, add tests and fix a bug on 'down' event.
  * doc: Change dns_nameserver property to dns_nameservers.
  * docs: Remove colon from network v1 config example.
  * instance-data: Add standard keys platform and subplatform. Refactor ec2.
  * instance-data: Fallback to instance-data.json if sensitive is absent.
  * logs: collect-logs ignore instance-data-sensitive.json on non-root user
  * net: Ephemeral*Network: Add connectivity check via URL.
  * net: Ignore nics that have 'zero' mac address.
  * net: Render 'metric' values in per-subnet routes.
  * NoCloud: Allow top level 'network' key in network-config.
  * ovf: Fix ovf network config generation gateway/routes.
  * ovf: Identify label iso9660 filesystems with label 'OVF ENV'.
  * query: Better error when missing read permission on instance-data.
  * resizefs: Prefix discovered devpath with '/dev/' when path does not exist.
  * systemd: On SUSE ensure cloud-init.service runs before wicked.
  * tools: Add cloud-id command line utility.
  * Update detection of openSUSE variants.
  * write_files: Add support for appending to files.
- Fix a decoding error that could cause persisting the metadata to fail. (bsc#1101894)
- Fix a problem that could cause static network to be configured with BOOTPROTO=none.
  (bsc#1114160)
- Changes from 18.4 (bsc#1087331, bsc#1097388, bsc#1111427, bsc#1095627):
  * Avoid Python 3 dependency when building for distros with Python 2 support.
  * Add dhcp-client as requirement as cloud-init uses dhclient to setup a temporary
    network for metadata retrieval. (fate#327672)
  * Use ds._crawled_metadata instance attribute if set when writing instance-data.json.
  * ec2: Update crawled metadata and add standardized keys.
  * lxd: Adjust to snap installed lxd.
  * Add support for Infiniband network interfaces (IPoIB).
  * cli: Add cloud-init query subcommand to query instance metadata.
  * stages: Fix bug causing datasource to have incorrect sys_cfg.
  * net_util: Ensure static configurations have netmask in translate_network result.
  * Fall back to root:root on syslog permissions if other options fail.
  * OpenStack: Support setting mac address on bond.
  * EphemeralIPv4Network: Be more explicit when adding default route.
  * OpenStack: Support reading of newer versions of metadata.
  * OpenStack: Fix a bug that was causing causing 'latest' version to be used from
    network.
  * user-data: Use jinja template to render instance-data.json in cloud-config.
  * config: Disable ssh access to a configured user account.
  * sysconfig: Refactor sysconfig to accept distro specific templates paths.
  * hyperv_reporting_handler: Simplify threaded publisher.
  * VMWare: Fix a network config bug in vm with static IPv4 and no gateway.
  * logging: Add logging config type hyperv for reporting via Azure KVP
  * Add datasource Oracle Compute Infrastructure (OCI).
  * azure: Allow azure to generate network configuration from IMDS per boot.
  * Scaleway: Add network configuration to the DataSource.
  * netplan: Correctly render macaddress on a bonds and bridges when provided.
  * tools: Add 'net-convert' subcommand command to 'cloud-init devel'.
  * Use typeset or local in profile.d scripts.
  * OpenNebula: Fix null gateway6.
  * tools: add '--debug' to tools/net-convert.py
  * update_metadata: A datasource can support network re-config every boot.
  * Retry on failed import of gpg receive keys.
  * tools: Fix run-container when neither source or binary package requested.
- Changes from 18.3:
  * Explicitly prevent `sudo` access for user module.
  * lxd: Delete default network and detach device if lxd-init created them.
  * openstack: Avoid unneeded metadata probe on non-openstack platforms.
  * stages: Fix tracebacks if a module stage is undefined or empty.
  * Be safer on string/bytes when writing multipart user-data to disk.
  * Fix get_proc_env for pids that have non-utf8 content in environment.
  * netplan: Fix mtu if provided by network config for all rendered types.
  * subp: Support combine_capture argument.
  * util: Add get_linux_distro function to replace platform.dist
  * Do not use the systemd_prefix macro, not available in this environment.
  * openstack: Allow discovery in init-local using dhclient in a sandbox.
  * yaml_load/schema: Add invalid line and column nums to error message.
  * Azure: Ignore NTFS mount errors when checking ephemeral drive.
  * cc_mounts: Do not add devices to fstab that are already present.
  * ds-identify: Ensure that we have certain tokens in PATH.
  * read_file_or_url: Move to url_helper, fix bug in its FileResponse.
  * ds-identify: Recognize container-other as a container.
  * ds-identify: Remove duplicate call to is_ds_enabled.
  * azure: Add reported ready marker file.
  * netinfo: Fix netdev_pformat when a nic does not have an address assigned.
  * collect-logs: Add -v flag, write to stderr, limit journal to single boot.
  * IBMCloud: Disable config-drive and nocloud only if IBMCloud is enabled.
  * Add reporting events and log_time around early source of blocking time.
  * IBMCloud: recognize provisioning environment during debug boots.
  * net: Detect unstable network names and trigger a settle if needed.
  * sysconfig: dhcp6 subnet type should not imply dhcpv4.
  * schema: In validation, raise ImportError if strict but no jsonschema.
  * set_passwords: Add newline to end of sshd config, only restart if updated.
  * net: Depend on iproute2's ip instead of net-tools ifconfig or route.
  * renderer: Support unicode in render_from_file.
  * Implement ntp client spec with auto support for distro selection.
  * apport: Add Brightbox, IBM, LXD, and OpenTelekomCloud to list of clouds.
  * tests: Fix ec2 integration network metadata validation.
  * cc_resizefs, util: Handle no /dev/zfs.
- The distribution indicator is set to SUSE during template expansion. Do not replace
  anything set to Ubuntu.
- Do not run cloud-init after network-online, this breaks functionality in cloud-init.
  Certain parts of the code running in this phase expect to run before the network is
  on-line.
- Root should not be enabled by default. Image builders/users that want root access by
  default should provide an appropriate configuration file during image build or image
  setup.
- Set distribution default to OpenSUSE/SLES. (bsc#1099340)
- Run metadata detection after network-online. (bsc#1097388)
- Properly accumulate all the defined routes for a given network device. Previously only
  the last defined route was written to the routes file. (bsc#1132692)
- Write the udev rules to a different file than the default. (bsc#1125950)
- Settle udev if not all configured devices are in the device tree to avoid race a
  condition between udev and cloud-init. (bsc#1125950)

Changes in dhcp:
- No changes, just being released together to be included in CaaS Platform.


-----------------------------------------
Patch: SUSE-2019-1716
Released: Thu Jun 27 13:15:38 2019
Summary: Security update for glibc
Severity: moderate
References: 1117993,1132678,941234,CVE-2015-5180
Description:
This update for glibc fixes the following issues:

Security issue fixed:

- CVE-2015-5180: Fixed a NULL pointer dereference with internal QTYPE (bsc#941234).

Feature work:

- IBM zSeries arch13 hardware support in glibc added (fate#327072, bsc#1132678)

Other issue addressed: 

- Fixed a concurrency issue with ldconfig (bsc#1117993).


-----------------------------------------
Patch: SUSE-2019-1721
Released: Tue Jul  2 12:02:02 2019
Summary: Security update for dnsmasq
Severity: moderate
References: 1054429,1076958,CVE-2017-15107
Description:
This update for dnsmasq fixes the following issues:

Security issue fixed:

- CVE-2017-15107: Fixed a vulnerability in DNSSEC implementation. Processing of
  wildcard synthesized NSEC records may result improper validation for non-existance. (bsc#1076958)

Non-security issue fixed:

- Reload system dbus to pick up policy change on install (bsc#1054429).


-----------------------------------------
Patch: SUSE-2019-1722
Released: Tue Jul  2 12:05:09 2019
Summary: Security update for glib2
Severity: important
References: 1061599,1107116,1107121,1137001,CVE-2018-16428,CVE-2018-16429,CVE-2019-12450
Description:
This update for glib2 provides the following fix:


Security issues fixed:

- CVE-2019-12450: Fixed an improper file permission when copy operation
  takes place (bsc#1137001).     
- CVE-2018-16428: Avoid a null pointer dereference that could crash glib2 users in markup processing (bnc#1107121).
- CVE-2018-16429: Fixed out-of-bounds read vulnerability ing_markup_parse_context_parse() (bsc#1107116).

Non-security issues fixed:

- Install dummy *-mimeapps.list files to prevent dead symlinks. (bsc#1061599)



-----------------------------------------
Patch: SUSE-2019-1726
Released: Tue Jul  2 17:01:24 2019
Summary: Recommended update for nfs-utils
Severity: moderate
References: 1116221,1118371
Description:
This update for nfs-utils fixes the following issues:

- Improves the integration for systemd (bsc#1116221)
- nfs.service will no longe rely on /etc/insserv.conf (bsc#1118371)


-----------------------------------------
Patch: SUSE-2019-1727
Released: Tue Jul  2 17:01:45 2019
Summary: Recommended update for ceph
Severity: moderate
References: 1133139
Description:
This update for ceph provides the following fixes:

- rgw: Fix object expirer. (bsc#1133139)
- spec: Add the ceph-qa-health-ok subpackage.


-----------------------------------------
Patch: SUSE-2019-1729
Released: Tue Jul  2 17:36:07 2019
Summary: Recommended update for openssl-1_1
Severity: moderate
References: 1133925,1135550,SLE-6126,SLE-6129,SLE-6430
Description:
This update for openssl-1_1 to version 1.1.1c fixes the following issues:

Issues addressed:

- Updated to 1.1.1c (bsc#1133925, jsc#SLE-6430)    
- Fixed a crash caused by long locale messages (bsc#1135550).
- Added s390x vectorized support for ChaCha20 and Poly1305 (jsc#SLE-6126, jsc#SLE-6129)


-----------------------------------------
Patch: SUSE-2019-1733
Released: Wed Jul  3 13:54:39 2019
Summary: Security update for elfutils
Severity: low
References: 1030472,1030476,1033084,1033085,1033087,1033088,1033089,1033090,1106390,1107067,1111973,1112723,1112726,1123685,1125007,CVE-2016-10254,CVE-2016-10255,CVE-2017-7607,CVE-2017-7608,CVE-2017-7610,CVE-2017-7611,CVE-2017-7612,CVE-2017-7613,CVE-2018-16062,CVE-2018-16403,CVE-2018-18310,CVE-2018-18520,CVE-2018-18521,CVE-2019-7150,CVE-2019-7665
Description:
This update for elfutils fixes the following issues:

Security issues fixed: 	  

- CVE-2018-16403: Fixed a heap-based buffer over-read that could have led to Denial of Service (bsc#1107067).  
- CVE-2016-10254: Fixed a memory allocation failure in alloxate_elf (bsc#1030472).
- CVE-2019-7665: NT_PLATFORM core file note should be a zero terminated string (bsc#1125007).
- CVE-2016-10255: Fixed a memory allocation failure in libelf_set_rawdata_wrlock (bsc#1030476).
- CVE-2019-7150: Added a missing check in dwfl_segment_report_module which could have allowed truncated files 
  to be read (bsc#1123685).
- CVE-2018-16062: Fixed a heap-buffer-overflow (bsc#1106390).
- CVE-2017-7611: Fixed a heap-based buffer over-read that could have led to Denial of Service (bsc#1033088).
- CVE-2017-7613: Fixed denial of service caused by the missing validation of the number of sections 
  and the number of segments in a crafted ELF file (bsc#1033090).
- CVE-2017-7607: Fixed a heap-based buffer overflow in handle_gnu_hash (bsc#1033084).
- CVE-2017-7608: Fixed a heap-based buffer overflow in ebl_object_note_type_name() (bsc#1033085).
- CVE-2017-7610: Fixed a heap-based buffer overflow in check_group (bsc#1033087).
- CVE-2018-18521: Fixed multiple divide-by-zero vulnerabilities in function arlib_add_symbols() (bsc#1112723).
- CVE-2017-7612: Fixed a denial of service in check_sysv_hash() via a crafted ELF file (bsc#1033089).
- CVE-2018-18310: Fixed an invalid address read in dwfl_segment_report_module.c (bsc#1111973).
- CVE-2018-18520: Fixed bad handling of ar files inside are files (bsc#1112726).


-----------------------------------------
Patch: SUSE-2019-1749
Released: Thu Jul  4 16:06:53 2019
Summary: Security update for libu2f-host
Severity: moderate
References: 1124781,1128140,1135727,1135729,CVE-2018-20340,CVE-2019-12209,CVE-2019-12210,CVE-2019-9578
Description:
This update for libu2f-host and pam_u2f to version 1.0.8 fixes the following issues:
	  
Security issues fixed for libu2f-host: 

- CVE-2019-9578: Fixed a memory leak due to a wrong parse of init's response (bsc#1128140).
- CVE-2018-20340: Fixed an unchecked buffer, which could allow a buffer overflow 
  with a custom made malicious USB device (bsc#1124781).

Security issues fixed for pam_u2f:

- CVE-2019-12209: Fixed an issue where symlinks in the user's directory were followed (bsc#1135729).
- CVE-2019-12210: Fixed file descriptor leaks (bsc#1135727).


-----------------------------------------
Patch: SUSE-2019-1783
Released: Tue Jul  9 09:50:46 2019
Summary: Security update for postgresql10
Severity: important
References: 1138034,CVE-2019-10164
Description:
This update for postgresql10 to version 10.9 fixes the following issue:

Security issue fixed:	  

- CVE-2019-10164: Fixed buffer-overflow vulnerabilities in SCRAM verifier parsing (bsc#1138034).

More information at https://www.postgresql.org/docs/10/release-10-9.html


-----------------------------------------
Patch: SUSE-2019-1797
Released: Tue Jul  9 23:41:01 2019
Summary: Recommended update for grub2
Severity: moderate
References: 1127293,928131,940457
Description:
This update for grub2 fixes the following issues:

- Check/refresh zipl-kernel before hibernate on s390x. (bsc#940457)

- Removing hardcoded 'vmlinuz'.

- Try to refresh zipl-kernel on failed kexec. (bsc#1127293)

- Fully support 'previous' zipl-kernel with 'mem=1G' being available on dedicated entries. (bsc#928131)



-----------------------------------------
Patch: SUSE-2019-1799
Released: Wed Jul 10 07:38:53 2019
Summary: Recommended update for net-snmp
Severity: moderate
References: 1116807,1140341,SLE-6120
Description:
This update for net-snmp fixes the following issues:

- Added Lustre filesystem support (bsc#1140341, jsc#SLE-6120).
- Added info about the original agent which triggered the trap. When the trap is
  forwarded there was no info about the original agent (bsc#1116807).


-----------------------------------------
Patch: SUSE-2019-1818
Released: Thu Jul 11 07:48:39 2019
Summary: Recommended update for timezone
Severity: moderate
References: 1135262,1140016
Description:
This update for timezone fixes the following issues:

- Timezone update 2019b. (bsc#1140016):
  - Brazil no longer observes DST.
  - 'zic -b slim' outputs smaller TZif files.
  - Palestine's 2019 spring-forward transition was on 03-29, not 03-30.
  - Add info about the Crimea situation.


-----------------------------------------
Patch: SUSE-2019-1830
Released: Fri Jul 12 17:50:41 2019
Summary: Security update for glib2
Severity: important
References: 1139959,1140122,CVE-2019-13012
Description:
This update for glib2 fixes the following issues:

Security issue fixed:

- CVE-2019-13012: Fixed improper restriction of file permissions when creating directories (bsc#1139959).

Non-security issue fixed:

- Added explicit requires between libglib2 and libgio2 (bsc#1140122).


-----------------------------------------
Patch: SUSE-2019-1834
Released: Fri Jul 12 17:55:14 2019
Summary: Security update for expat
Severity: moderate
References: 1139937,CVE-2018-20843
Description:
This update for expat fixes the following issues:

Security issue fixed:

- CVE-2018-20843: Fixed a denial of service triggered by high resource consumption 
  in the XML parser when XML names contain a large amount of colons (bsc#1139937).


-----------------------------------------
Patch: SUSE-2019-1844
Released: Mon Jul 15 07:13:09 2019
Summary: Recommended update for pam
Severity: low
References: 1116544
Description:
This update for pam fixes the following issues:

- restricted the number of file descriptors to close to a more sensible number based upon resource limits (bsc#1116544)
    

-----------------------------------------
Patch: SUSE-2019-1845
Released: Mon Jul 15 07:13:18 2019
Summary: Recommended update for open-iscsi
Severity: moderate
References: 1135070
Description:
This update for open-iscsi fixes the following issues:

- Adds iscsiuio support of systemd (bsc#1135070)

-----------------------------------------
Patch: SUSE-2019-1850
Released: Mon Jul 15 14:47:53 2019
Summary: Security update for webkit2gtk3
Severity: important
References: 1133291,1135715,CVE-2019-6237,CVE-2019-8571,CVE-2019-8583,CVE-2019-8584,CVE-2019-8586,CVE-2019-8587,CVE-2019-8594,CVE-2019-8595,CVE-2019-8596,CVE-2019-8597,CVE-2019-8601,CVE-2019-8607,CVE-2019-8608,CVE-2019-8609,CVE-2019-8610,CVE-2019-8611,CVE-2019-8615,CVE-2019-8619,CVE-2019-8622,CVE-2019-8623
Description:
This update for webkit2gtk3 to version 2.24.2 fixes the following issues:

Security issues fixed:

- CVE-2019-6237, CVE-2019-8571, CVE-2019-8583, CVE-2019-8584, CVE-2019-8586,
  CVE-2019-8587, CVE-2019-8594, CVE-2019-8595, CVE-2019-8596, CVE-2019-8597,
  CVE-2019-8601, CVE-2019-8607, CVE-2019-8608, CVE-2019-8609, CVE-2019-8610,
  CVE-2019-8615, CVE-2019-8611, CVE-2019-8619, CVE-2019-8622, CVE-2019-8623 (bsc#1135715).


-----------------------------------------
Patch: SUSE-2019-1861
Released: Wed Jul 17 11:35:02 2019
Summary: Security update for MozillaFirefox
Severity: important
References: 1140868,CVE-2019-11709,CVE-2019-11711,CVE-2019-11712,CVE-2019-11713,CVE-2019-11715,CVE-2019-11717,CVE-2019-11719,CVE-2019-11729,CVE-2019-11730,CVE-2019-9811
Description:
This update for MozillaFirefox, mozilla-nss fixes the following issues:

MozillaFirefox to version ESR 60.8:

- CVE-2019-9811: Sandbox escape via installation of malicious language pack (bsc#1140868).
- CVE-2019-11711: Script injection within domain through inner window reuse (bsc#1140868).
- CVE-2019-11712: Cross-origin POST requests can be made with NPAPI plugins by following 308 redirects (bsc#1140868).
- CVE-2019-11713: Use-after-free with HTTP/2 cached stream (bsc#1140868).
- CVE-2019-11729: Empty or malformed p256-ECDH public keys may trigger a segmentation fault (bsc#1140868).
- CVE-2019-11715: HTML parsing error can contribute to content XSS (bsc#1140868).
- CVE-2019-11717: Caret character improperly escaped in origins (bsc#1140868).
- CVE-2019-11719: Out-of-bounds read when importing curve25519 private key (bsc#1140868).
- CVE-2019-11730: Same-origin policy treats all files in a directory as having the same-origin (bsc#1140868).
- CVE-2019-11709: Multiple Memory safety bugs fixed (bsc#1140868).

mozilla-nss to version 3.44.1:

* Added IPSEC IKE support to softoken 
* Many new FIPS test cases


-----------------------------------------
Patch: SUSE-2019-1867
Released: Wed Jul 17 13:11:03 2019
Summary: Security update for libxslt
Severity: moderate
References: 1140095,1140101,CVE-2019-13117,CVE-2019-13118
Description:
This update for libxslt fixes the following issues:

Security issues fixed:

- CVE-2019-13118: Fixed a read of uninitialized stack data (bsc#1140101).
- CVE-2019-13117: Fixed a uninitialized read which allowed to discern whether a byte on the stack contains certain special characters (bsc#1140095).


-----------------------------------------
Patch: SUSE-2019-1896
Released: Thu Jul 18 16:26:45 2019
Summary: Security update for libxml2
Severity: moderate
References: 1010675,1110146,1126613,CVE-2016-9318
Description:
This update for libxml2 fixes the following issues:

Issue fixed:

- Fixed a bug related to the fix for CVE-2016-9318 which allowed xsltproc to access 
  the internet even when --nonet was given and also was making docbook-xsl-stylesheets to have 
  incomplete xml catalog file (bsc#1010675, bsc#1126613 and bsc#1110146).


-----------------------------------------
Patch: SUSE-2019-1898
Released: Fri Jul 19 11:32:36 2019
Summary: Recommended update for grub2
Severity: important
References: 1134287,1139345
Description:
This update for grub2 fixes the following issues:

- Fix a regression introduced by the previous update which could prevent
  booting on ppc64. (bsc#1134287, bsc#1139345).


-----------------------------------------
Patch: SUSE-2019-1900
Released: Fri Jul 19 12:44:21 2019
Summary: Recommended update for rsyslog
Severity: moderate
References: 1141022
Description:

This update for rsyslog fixes the following issues:

- The rsyslog-module-mmjsonparse is shipped for the Enterprise Server. (bsc#1141022 FATE#324208)
  

-----------------------------------------
Patch: SUSE-2019-1904
Released: Fri Jul 19 12:47:59 2019
Summary: Recommended update for openssh
Severity: important
References: 1138936
Description:
This update for openssh fixes the following issues:

- Fix a regression in utf-8 handling that could cause crashes of scp (bsc#1138936).



-----------------------------------------
Patch: SUSE-2019-1955
Released: Tue Jul 23 11:42:41 2019
Summary: Security update for bzip2
Severity: important
References: 1139083,985657,CVE-2016-3189,CVE-2019-12900
Description:
This update for bzip2 fixes the following issues:

Security issue fixed:

- CVE-2019-12900: Fixed an out-of-bounds write in decompress.c with many selectors (bsc#1139083).
- CVE-2016-3189: Fixed a use-after-free in bzip2recover (bsc#985657).


-----------------------------------------
Patch: SUSE-2019-1961
Released: Wed Jul 24 10:32:49 2019
Summary: Security update for spamassassin
Severity: important
References: 1108745,1108748,1108750,CVE-2016-1238,CVE-2017-15705,CVE-2018-11780,CVE-2018-11781
Description:
This update for spamassassin to version 3.4.2 fixes the following issues:

Security issues fixed:

- CVE-2017-15705: Fixed denial of service via unclosed tags in crafted emails (bsc#1108745).
- CVE-2018-11781: Fixed a code injection in the meta rule syntax by local users (bsc#1108748).
- CVE-2018-11780: Fixed a potential remote code execution vulnerability in PDFInfo plugin (bsc#1108750).

Non-security issues fixed:

- Added four new plugins (disabled by default): HashBL, ResourceLimits, FromNameSpoof, Phishing
- sa-update script: optional support for SHA-256 / SHA-512 been added for better validation of rules
- GeoIP2 support has been added to RelayCountry and URILocalBL plugins
- Several new or enhanced configuration options


-----------------------------------------
Patch: SUSE-2019-1962
Released: Wed Jul 24 11:41:12 2019
Summary: Security update for openexr
Severity: moderate
References: 1040109,1040112,1040113,1040115,1113455,CVE-2017-9111,CVE-2017-9112,CVE-2017-9113,CVE-2017-9115,CVE-2018-18444
Description:
This update for openexr fixes the following issues:

Security issue fixed:

- CVE-2017-9111: Fixed an invalid write of size 8 in the storeSSE function in ImfOptimizedPixelReading.h (bsc#1040109).
- CVE-2017-9113: Fixed an invalid write of size 1 in the bufferedReadPixels function in ImfInputFile.cpp (bsc#1040113).
- CVE-2017-9115: Fixed an invalid write of size 2 in the = operator function inhalf.h (bsc#1040115).
- CVE-2018-18444: Fixed Out-of-bounds write in makeMultiView.cpp (bsc#1113455).
- CVE-2017-9112: Fixed invalid read of size 1 in the getBits function in ImfHuf.cpp (bsc#1040112).


-----------------------------------------
Patch: SUSE-2019-1972
Released: Thu Jul 25 15:00:03 2019
Summary: Security update for libsolv, libzypp, zypper
Severity: moderate
References: 1109893,1110542,1111319,1112911,1113296,1120629,1120630,1120631,1127155,1131823,1134226,1137977,CVE-2018-20532,CVE-2018-20533,CVE-2018-20534
Description:
This update for libsolv, libzypp and zypper fixes the following issues:

libsolv was updated to version 0.6.36 fixes the following issues:

Security issues fixed:

- CVE-2018-20532: Fixed a NULL pointer dereference in testcase_read() (bsc#1120629).
- CVE-2018-20533: Fixed a NULL pointer dereference in testcase_str2dep_complex() (bsc#1120630).
- CVE-2018-20534: Fixed a NULL pointer dereference in pool_whatprovides() (bsc#1120631).

Non-security issues fixed:

- Made cleandeps jobs on patterns work (bsc#1137977).
- Fixed an issue multiversion packages that obsolete their own name (bsc#1127155).
- Keep consistent package name if there are multiple alternatives (bsc#1131823).

libzypp received following fixes:

- Fixes a bug where locking the kernel was not possible (bsc#1113296)

zypper received following fixes:

- Fixes a bug where the wrong exit code was set when refreshing
  repos if --root was used (bsc#1134226)
- Improved the displaying of locks (bsc#1112911)
- Fixes an issue where `https` repository urls caused an error prompt to
   appear twice (bsc#1110542)
- zypper will now always warn when no repositories are defined (bsc#1109893)


-----------------------------------------
Patch: SUSE-2019-1975
Released: Fri Jul 26 00:07:32 2019
Summary: Recommended update for sssd
Severity: moderate
References: 1125277,1137876,1139247
Description:
This update for sssd fixes the following issues:

- Fixes a memory leak in nss netgroup enumeration (bsc#1139247)


-----------------------------------------
Patch: SUSE-2019-1983
Released: Fri Jul 26 00:12:11 2019
Summary: Recommended update for plymouth
Severity: moderate
References: 1138248
Description:
This update for plymouth fixes the following issue:

- Add dependency on dracut for plymouth-scripts to avoid unwanted kiwi behavior(bsc#1138248).


-----------------------------------------
Patch: SUSE-2019-1988
Released: Fri Jul 26 09:02:08 2019
Summary: Recommended update for libXi
Severity: low
References: 1049681,1134167
Description:

This update for libXi provides the following fix:

- Fix a crash on X11 clients when tablet inputs are connected. (bsc#1049681)
- Fix a crash that would happen in case of a _XReply() call fails, freeing an uninitialized
  pointer. (bsc#1134167)


-----------------------------------------
Patch: SUSE-2019-1990
Released: Fri Jul 26 14:59:30 2019
Summary: Security update for cronie
Severity: low
References: 1128935,1128937,1130746,1133100,CVE-2019-9704,CVE-2019-9705
Description:
This update for cronie fixes the following issues:
	  
Security issues fixed:

- CVE-2019-9704: Fixed an insufficient check in the return value of calloc which
  could allow a local user to create Denial of Service by crashing the deamon (bsc#1128937).
- CVE-2019-9705: Fixed an implementation vulnerability which could allow a local user to
  exhaust the memory resulting in Denial of Service (bsc#1128935).  

Bug fixes:

- Manual start of cron is possible even when it's already started using systemd (bsc#1133100).
- Cron schedules only one job of crontab (bsc#1130746).


-----------------------------------------
Patch: SUSE-2019-1996
Released: Fri Jul 26 16:12:34 2019
Summary: Recommended update for sysstat
Severity: moderate
References: 1138767
Description:
This update for sysstat fixes the following issues:

- Fix scaling issue with mtab symlinks and automounter. (bsc#1138767)


-----------------------------------------
Patch: SUSE-2019-1997
Released: Fri Jul 26 16:12:56 2019
Summary: Recommended update for tracker
Severity: moderate
References: 1038823
Description:
This update for tracker fixes the following issues:

- Move gstreamer initialization to the plugin initialization phase, since it can rebuild the registry cache and should be done outside the sandbox. Also disable some plugins, per upstream, since they can cause sandbox violations and other problems. (bgo#790457) (bsc#1038823)


-----------------------------------------
Patch: SUSE-2019-2010
Released: Mon Jul 29 14:45:27 2019
Summary: Security update for ImageMagick
Severity: moderate
References: 1139885,1139886,1140100,1140102,1140103,1140106,1140110,1140111,1140501,1140513,1140534,1140538,1140554,1140664,1140666,1140669,1140673,1141171,CVE-2019-12974,CVE-2019-12975,CVE-2019-12976,CVE-2019-12978,CVE-2019-12979,CVE-2019-13133,CVE-2019-13134,CVE-2019-13135,CVE-2019-13295,CVE-2019-13297,CVE-2019-13300,CVE-2019-13301,CVE-2019-13307,CVE-2019-13308,CVE-2019-13310,CVE-2019-13311,CVE-2019-13391,CVE-2019-13454
Description:
This update for ImageMagick fixes the following issues:

- CVE-2019-13301: Fixed a memory leak in AcquireMagickMemory() (bsc#1140554).
- CVE-2019-13310: Fixed a memory leak at AcquireMagickMemory because of an error in MagickWand/mogrify.c (bsc#1140501).
- CVE-2019-13311: Fixed a memory leak at AcquireMagickMemory because of a wand/mogrify.c error (bsc#1140513).
- CVE-2019-13454: Fixed a division by zero in RemoveDuplicateLayers in MagickCore/layer.c (bsc#1141171).
- CVE-2019-13295: Fixed a heap-based buffer over-read at MagickCore/threshold.c in AdaptiveThresholdImage (bsc#1140664).
- CVE-2019-13297: Fixed a heap-based buffer over-read at MagickCore/threshold.c in AdaptiveThresholdImage (bsc#1140666).
- CVE-2019-12979: Fixed the use of uninitialized values in SyncImageSettings() (bsc#1139886).
- CVE-2019-13391: Fixed a heap-based buffer over-read in MagickCore/fourier.c (bsc#1140673).
- CVE-2019-13308: Fixed a heap-based buffer overflow in MagickCore/fourier.c (bsc#1140534).
- CVE-2019-13300: Fixed a heap-based buffer overflow at MagickCore/statistic.c in EvaluateImages (bsc#1140669).
- CVE-2019-13307: Fixed a heap-based buffer overflow at MagickCore/statistic.c (bsc#1140538).
- CVE-2019-12975: Fixed a memory leak in the WriteDPXImage() in coders/dpx.c (bsc#1140106).
- CVE-2019-13135: Fixed the use of uninitialized values in ReadCUTImage() (bsc#1140103).
- CVE-2019-12978: Fixed the use of uninitialized values in ReadPANGOImage() (bsc#1139885).
- CVE-2019-12974: Fixed a NULL pointer dereference in the ReadPANGOImage() (bsc#1140111).
- CVE-2019-13133: Fixed a memory leak in the ReadBMPImage() (bsc#1140100).
- CVE-2019-13134: Fixed a memory leak in the ReadVIFFImage() (bsc#1140102).
- CVE-2019-12976: Fixed a memory leak in the ReadPCLImage() in coders/pcl.c(bsc#1140110).


-----------------------------------------
Patch: SUSE-2019-2013
Released: Mon Jul 29 15:42:41 2019
Summary: Security update for bzip2
Severity: important
References: 1139083,CVE-2019-12900
Description:
This update for bzip2 fixes the following issues:

- Fixed a regression with the fix for CVE-2019-12900, which caused incompatibilities
  with files that used many selectors (bsc#1139083).


-----------------------------------------
Patch: SUSE-2019-2014
Released: Mon Jul 29 17:22:26 2019
Summary: Security update for openexr
Severity: moderate
References: 1061305,CVE-2017-14988
Description:
This update for openexr fixes the following issues:

- CVE-2017-14988: Fixed a denial of service in Header::readfrom() (bsc#1061305).


-----------------------------------------
Patch: SUSE-2019-2025
Released: Tue Jul 30 19:16:57 2019
Summary: Recommended update for mozilla-nspr, mozilla-nss
Severity: moderate
References: 1141322
Description:
This update for mozilla-nspr, mozilla-nss fixes the following issues:

mozilla-nss was updated to NSS 3.45 (bsc#1141322):

* New function in pk11pub.h: PK11_FindRawCertsWithSubject
* The following CA certificates were Removed:
  CN = Certinomis - Root CA (bmo#1552374)
* Implement Delegated Credentials (draft-ietf-tls-subcerts) (bmo#1540403)
  This adds a new experimental function SSL_DelegateCredential
  Note: In 3.45, selfserv does not yet support delegated credentials (See bmo#1548360).
  Note: In 3.45 the SSLChannelInfo is left unmodified, while an upcoming change in 3.46 will set SSLChannelInfo.authKeyBits to that of the delegated credential for better policy enforcement (See bmo#1563078).
* Replace ARM32 Curve25519 implementation with one from fiat-crypto (bmo#1550579)
* Expose a function PK11_FindRawCertsWithSubject for finding certificates with a given subject on a given slot (bmo#1552262)
* Add IPSEC IKE support to softoken (bmo#1546229)
* Add support for the Elbrus lcc compiler (<=1.23) (bmo#1554616)
* Expose an external clock for SSL (bmo#1543874)
  This adds new experimental functions: SSL_SetTimeFunc, 
  SSL_CreateAntiReplayContext, SSL_SetAntiReplayContext, and 
  SSL_ReleaseAntiReplayContext.
  The experimental function SSL_InitAntiReplay is removed.
* Various changes in response to the ongoing FIPS review (bmo#1546477)
  Note: The source package size has increased substantially 
  due to the new FIPS test vectors. This will likely 
  prompt follow-on work, but please accept our 
  apologies in the meantime.

mozilla-nspr was updated to version 4.21:

* Changed prbit.h to use builtin function on aarch64.



-----------------------------------------
Patch: SUSE-2019-2028
Released: Wed Jul 31 13:34:45 2019
Summary: Security update for java-1_7_0-openjdk
Severity: important
References: 1087082,1134297,1141780,1141782,1141783,1141784,1141785,1141786,1141787,1141789,CVE-2018-3639,CVE-2019-2426,CVE-2019-2745,CVE-2019-2762,CVE-2019-2766,CVE-2019-2769,CVE-2019-2786,CVE-2019-2816,CVE-2019-2842,CVE-2019-7317
Description:
This update for java-1_7_0-openjdk to version 7u231 fixes the following issues:

Security issues fixed:

- CVE_2019-2426: Improve web server connections (bsc#1134297).
- CVE-2019-2745: Improved ECC Implementation (bsc#1141784).
- CVE-2019-2762: Exceptional throw cases (bsc#1141782).
- CVE-2019-2766: Improve file protocol handling (bsc#1141789).
- CVE-2019-2769: Better copies of CopiesList (bsc#1141783).
- CVE-2019-2786: More limited privilege usage (bsc#1141787).
- CVE-2019-2816: Normalize normalization (bsc#1141785).
- CVE-2019-2842: Extended AES support (bsc#1141786).
- CVE-2019-7317: Improve PNG support (bsc#1141780).
- CVE-2018-3639: fix revision to prefer PR_SPEC_DISABLE_NOEXEC to PR_SPEC_DISABLE (bsc#1087082).
- Certificate validation improvements


-----------------------------------------
Patch: SUSE-2019-2035
Released: Thu Aug  1 17:34:22 2019
Summary: Security update for polkit
Severity: important
References: 1121826,CVE-2019-6133
Description:
This update for polkit fixes the following issues:

Security issue fixed:

- CVE-2019-6133: Fixed improper caching of auth decisions, which could bypass 
  uid checking in the interactive backend (bsc#1121826).


-----------------------------------------
Patch: SUSE-2019-2036
Released: Thu Aug  1 17:35:24 2019
Summary: Security update for java-1_8_0-openjdk
Severity: important
References: 1115375,1141780,1141782,1141783,1141784,1141785,1141786,1141787,1141789,CVE-2019-2745,CVE-2019-2762,CVE-2019-2766,CVE-2019-2769,CVE-2019-2786,CVE-2019-2816,CVE-2019-2842,CVE-2019-7317
Description:
This update for java-1_8_0-openjdk to version 8u222 fixes the following issues:

Security issues fixed:

- CVE-2019-2745: Improved ECC Implementation (bsc#1141784).
- CVE-2019-2762: Exceptional throw cases (bsc#1141782).
- CVE-2019-2766: Improve file protocol handling (bsc#1141789).
- CVE-2019-2769: Better copies of CopiesList (bsc#1141783).
- CVE-2019-2786: More limited privilege usage (bsc#1141787).
- CVE-2019-2816: Normalize normalization (bsc#1141785).
- CVE-2019-2842: Extended AES support (bsc#1141786).
- CVE-2019-7317: Improve PNG support (bsc#1141780).
- Certificate validation improvements

Non-security issue fixed:

- Fixed an issue where the installation failed when the manpages are not present (bsc#1115375)


-----------------------------------------
Patch: SUSE-2019-2053
Released: Tue Aug  6 09:44:54 2019
Summary: Security update for python3
Severity: important
References: 1109663,1109847,1138459,CVE-2018-1000802,CVE-2018-14647,CVE-2019-10160
Description:
This update for python3 fixes the following issues:

- CVE-2019-10160: Fixed a regression in urlparse() and urlsplit() introduced by the fix for CVE-2019-9636 (bsc#1138459).
- CVE-2018-14647: Fixed a denial of service vulnerability caused by a crafted XML document (bsc#1109847).
- CVE-2018-1000802: Fixed a command injection in the shutil module (bsc#1109663).


-----------------------------------------
Patch: SUSE-2019-2054
Released: Tue Aug  6 10:06:21 2019
Summary: Recommended update for xmlsec1
Severity: low
References: 1141202
Description:

This update for xmlsec1 fixes the following issue:

- xmlsec1 libraries are provided for SUSE CAASP 3.0 
  as dependency of open-vm-tools. (bsc#1141202)
  

-----------------------------------------
Patch: SUSE-2019-2057
Released: Tue Aug  6 14:25:41 2019
Summary: Optional update for sysstat
Severity: low
References: 1142470
Description:
This update for sysstat does not fix any user visible issues.

-----------------------------------------
Patch: SUSE-2019-2076
Released: Wed Aug  7 10:42:48 2019
Summary: Recommended update for dnsmasq
Severity: moderate
References: 1135449
Description:
This update for dnsmasq fixes the following issues:

- Change permissions on /srv/tftpboot from 0750 to 0755 to sync with other providers/users of the directory. (bsc#1135449)


-----------------------------------------
Patch: SUSE-2019-2080
Released: Wed Aug  7 11:41:10 2019
Summary: Security update for evince
Severity: important
References: 1133037,1141619,CVE-2019-1010006,CVE-2019-11459
Description:
This update for evince fixes the following issues:

Security issues fixed: 	  

- CVE-2019-11459: Fixed an improper error handling in which could have led to use of uninitialized use of memory (bsc#1133037).
- CVE-2019-1010006: Fixed a buffer overflow in backend/tiff/tiff-document.c (bsc#1141619).


-----------------------------------------
Patch: SUSE-2019-2088
Released: Wed Aug  7 18:17:28 2019
Summary: Security update for tcpdump
Severity: moderate
References: 1068716,1142439,CVE-2017-16808,CVE-2019-1010220
Description:
This update for tcpdump fixes the following issues:

Security issues fixed:

- CVE-2019-1010220: Fixed a buffer over-read in print_prefix() which may expose data (bsc#1142439).
- CVE-2017-16808: Fixed a heap-based buffer over-read related to aoe_print() and lookup_emem() (bsc#1068716).


-----------------------------------------
Patch: SUSE-2019-2091
Released: Thu Aug  8 13:25:31 2019
Summary: Security update for python
Severity: important
References: 1138459,1141853,CVE-2018-20852,CVE-2019-10160
Description:
This update for python fixes the following issues:

- CVE-2019-10160: Fixed a regression in urlparse() and urlsplit() introduced by the fix for CVE-2019-9636 (bsc#1138459).
- CVE-2018-20852: Fixed an information leak where cookies could be send to the wrong server because of incorrect domain validation (bsc#1141853).


-----------------------------------------
Patch: SUSE-2019-2104
Released: Fri Aug  9 13:19:11 2019
Summary: Security update for wireshark
Severity: moderate
References: 1141980,CVE-2019-13619
Description:
This update for wireshark to version 2.4.16 fixes the following issues:

Security issue fixed:

- CVE-2019-13619: ASN.1 BER and related dissectors crash (bsc#1141980).


-----------------------------------------
Patch: SUSE-2019-2118
Released: Tue Aug 13 14:57:46 2019
Summary: Security update for mariadb-100
Severity: important
References: 1136037,CVE-2019-2529,CVE-2019-2537
Description:
This update for mariadb-100 to version 10.0.38 fixes the following issues:

- CVE-2019-2537: Fixed a denial of service vulnerability which can lead to MySQL compromise (bsc#1136037).
- CVE-2019-2529: Fixed a denial of service vulnerability by an privileged attacker via a protocol compromise (bsc#1136037).


-----------------------------------------
Patch: SUSE-2019-2120
Released: Wed Aug 14 11:17:39 2019
Summary: Recommended update for pam
Severity: moderate
References: 1136298,SLE-7257
Description:
This update for pam fixes the following issues:

- Enable pam_userdb.so (SLE-7257,bsc#1136298)
- Upgraded pam_userdb to 1.3.1.  (bsc#1136298)


-----------------------------------------
Patch: SUSE-2019-2128
Released: Wed Aug 14 11:24:38 2019
Summary: Recommended update for open-vm-tools
Severity: important
References: 1143452
Description:
This update for open-vm-tools fixes the following issues:

- Fixes a regression which was introduced by the recent patch of open-vm-tools in
  the vmtoolsd service file to cause cyclic dependencies (bsc#1143452)


-----------------------------------------
Patch: SUSE-2019-2152
Released: Thu Aug 15 17:48:35 2019
Summary: Security update for openjpeg2
Severity: moderate
References: 962522,CVE-2016-1923
Description:
This update for openjpeg2 fixes the following issues:

Security issue fixed:

- CVE-2016-1923: Fixed anout of bounds read int opj_j2k_update_image_data() and opj_tgt_reset () (bsc#962522).


-----------------------------------------
Patch: SUSE-2019-1606
Released: Wed Aug 21 13:36:49 2019
Summary: Security update for libssh2_org
Severity: moderate
References: 1128481,1136570,CVE-2019-3860
Description:
This update for libssh2_org fixes the following issues:

- Fix the previous fix for CVE-2019-3860 (bsc#1136570, bsc#1128481)
  (Out-of-bounds reads with specially crafted SFTP packets)


-----------------------------------------
Patch: SUSE-2019-2217
Released: Mon Aug 26 11:29:49 2019
Summary: Recommended update for sblim-gather
Severity: moderate
References: 1143461,1143503
Description:
This update for sblim-gather fixes the following issues:

- Fixes an issue where sblim gatherd ignored checking cmb_enable sysfs attibute for
  devices later than 9fff (bsc#1143461, bsc#1143503)


-----------------------------------------
Patch: SUSE-2019-2258
Released: Mon Sep  2 09:03:44 2019
Summary: Recommended update for NetworkManager
Severity: low
References: 990204
Description:
This update for NetworkManager fixes the following issues:

Security issue fixed:

- Fixed that passwords are not echoed on terminal when asking for them (bsc#990204).


-----------------------------------------
Patch: SUSE-2019-2264
Released: Mon Sep  2 09:07:12 2019
Summary: Security update for perl
Severity: important
References: 1114674,CVE-2018-18311
Description:
This update for perl fixes the following issues:

Security issue fixed:

- CVE-2018-18311: Fixed integer overflow with oversize environment (bsc#1114674).


-----------------------------------------
Patch: SUSE-2019-2269
Released: Mon Sep  2 14:23:28 2019
Summary: Security update for postgresql10
Severity: important
References: 1145092,CVE-2019-10208
Description:
This update for postgresql10 fixes the following issues:

Security issue fixed:

- CVE-2019-10208: Fixed arbitrary SQL execution via suitable SECURITY DEFINER function under the identity of the function owner (bsc#1145092).


-----------------------------------------
Patch: SUSE-2019-2294
Released: Wed Sep  4 17:42:32 2019
Summary: Recommended update for open-iscsi
Severity: moderate
References: 1113712,1142029
Description:
This update for open-iscsi fixes the following issue:

- systemd[1]: [/usr/lib/systemd/system/iscsiuio.service:12] Unknown lvalue '' in section 'Service' (bsc#1142029)
- Fixes an issue where an iSCSI boot failure appeared in MPIO config with
  single path active (bsc#1113712)

Additionally: This update includes a lot of smaller bug fixes. Please refer to this rpm's changelog
file to get the full list of all changes.


-----------------------------------------
Patch: SUSE-2019-2329
Released: Fri Sep  6 16:08:08 2019
Summary: Security update for apache2
Severity: important
References: 1145575,1145738,1145740,1145741,1145742,CVE-2019-10081,CVE-2019-10082,CVE-2019-10092,CVE-2019-10098,CVE-2019-9517
Description:
This update for apache2 fixes the following issues:

Security issues fixed:

- CVE-2019-9517: Fixed HTTP/2 implementations that are vulnerable to unconstrained interal data buffering (bsc#1145575).
- CVE-2019-10081: Fixed mod_http2 that is vulnerable to memory corruption on early pushes (bsc#1145742).
- CVE-2019-10082: Fixed mod_http2 that is vulnerable to read-after-free in h2 connection shutdown (bsc#1145741).
- CVE-2019-10092: Fixed limited cross-site scripting in mod_proxy (bsc#1145740).
- CVE-2019-10098: Fixed mod_rewrite configuration vulnerablility to open redirect (bsc#1145738).


-----------------------------------------
Patch: SUSE-2019-2330
Released: Fri Sep  6 16:08:52 2019
Summary: Security update for mariadb, mariadb-connector-c
Severity: important
References: 1126088,1132666,1136035,1143215,CVE-2019-2614,CVE-2019-2627,CVE-2019-2628
Description:
This update for mariadb and mariadb-connector-c fixes the following issues:

mariadb:

- Update to version 10.2.25 (bsc#1136035)
- CVE-2019-2628: Fixed a remote denial of service by an privileged attacker (bsc#1136035).
- CVE-2019-2627: Fixed another remote denial of service by an privileged attacker (bsc#1136035).
- CVE-2019-2614: Fixed a potential remote denial of service by an privileged attacker (bsc#1136035).
- Fixed reading options for multiple instances if my${INSTANCE}.cnf is used (bsc#1132666).
- Adjust mysql-systemd-helper ('shutdown protected MySQL' section) so it checks both ping response
  and the pid in a process list as it can take some time till the process is terminated. Otherwise
  it can lead to 'found left-over process' situation when regular mariadb is started (bsc#1143215).

mariadb-connector-c:

- Update to version 3.1.2 (bsc#1136035)
- Moved libmariadb.pc from /usr/lib/pkgconfig to /usr/lib64/pkgconfig for x86_64 (bsc#1126088) 


-----------------------------------------
Patch: SUSE-2019-2345
Released: Tue Sep 10 13:29:58 2019
Summary: Security update for webkit2gtk3
Severity: important
References: 1135715,1148931,CVE-2019-8595,CVE-2019-8607,CVE-2019-8615,CVE-2019-8644,CVE-2019-8649,CVE-2019-8658,CVE-2019-8666,CVE-2019-8669,CVE-2019-8671,CVE-2019-8672,CVE-2019-8673,CVE-2019-8676,CVE-2019-8677,CVE-2019-8678,CVE-2019-8679,CVE-2019-8680,CVE-2019-8681,CVE-2019-8683,CVE-2019-8684,CVE-2019-8686,CVE-2019-8687,CVE-2019-8688,CVE-2019-8689,CVE-2019-8690
Description:
This update for webkit2gtk3 fixes the following issues:

Updated to version 2.24.4 (bsc#1148931).

Security issues fixed:
	  
- CVE-2019-8644, CVE-2019-8649, CVE-2019-8658, CVE-2019-8669, CVE-2019-8678,
  CVE-2019-8680, CVE-2019-8683, CVE-2019-8684, CVE-2019-8688, CVE-2019-8595,
  CVE-2019-8607, CVE-2019-8615, CVE-2019-8644, CVE-2019-8649, CVE-2019-8658,
  CVE-2019-8666, CVE-2019-8669, CVE-2019-8671, CVE-2019-8672, CVE-2019-8673,
  CVE-2019-8676, CVE-2019-8677, CVE-2019-8678, CVE-2019-8679, CVE-2019-8680,
  CVE-2019-8681, CVE-2019-8683, CVE-2019-8684, CVE-2019-8686, CVE-2019-8687,
  CVE-2019-8688, CVE-2019-8689, CVE-2019-8690

Non-security issues fixed:
	  
- Improved loading of multimedia streams to avoid memory exhaustion due to excessive caching.
- Updated the user agent string to make happy certain websites which would claim that the browser being used was unsupported.


-----------------------------------------
Patch: SUSE-2019-2347
Released: Tue Sep 10 14:51:11 2019
Summary: Security update for ghostscript
Severity: moderate
References: 1144621,CVE-2019-10216
Description:
This update for ghostscript fixes the following issues:

Security issue fixed:

- CVE-2019-10216: Fix privilege escalation via specially crafted PostScript file (bsc#1144621).


-----------------------------------------
Patch: SUSE-2019-2351
Released: Wed Sep 11 08:25:49 2019
Summary: Recommended update for libtcnative-1-0
Severity: moderate
References: 1144296
Description:
This update for libtcnative-1-0 fixes the following issues:

- Upgrade to libtcnative-1.2.23 to fix compatibility with Tomcat. (bsc#1144296)


-----------------------------------------
Patch: SUSE-2019-2355
Released: Wed Sep 11 13:18:25 2019
Summary: Recommended update for lvm2
Severity: moderate
References: 1122666,1135984,1137296,1145232
Description:
This update for lvm2 fixes the following issues:

- Fixes an issue where the message 'unknown feature in status' message was wrongly shown (bsc#1135984)
- Fixes an issue with the usage of device aliases with lvmetad (bsc#1137296)
- Fixes an issue with SD card readers where the error 'open failed: No medium found'
  was shown (bsc#1122666)


-----------------------------------------
Patch: SUSE-2019-2356
Released: Wed Sep 11 13:18:35 2019
Summary: Recommended update for nfs-utils
Severity: moderate
References: 1137262,983491
Description:
This update for nfs-utils fixes the following issues:

- The -u option of 'exportfs' will now fail when IP addresses are unresolvable (bsc#1137262, bsc#983491)


-----------------------------------------
Patch: SUSE-2019-2364
Released: Thu Sep 12 11:23:04 2019
Summary: Security update for ceph
Severity: moderate
References: 1121567,1149961,CVE-2018-16889
Description:
This update for ceph to version 12.2.12-594-g02236657ca fixes the following issues:

Security issues fixed:

- CVE-2018-16889: Fixed missing sanitation of customer encryption keys from log output in v4 auth. (bsc#1121567)


-----------------------------------------
Patch: SUSE-2019-2372
Released: Thu Sep 12 14:01:27 2019
Summary: Recommended update for krb5
Severity: moderate
References: 1139942,1140914,SLE-7081
Description:
This update for krb5 fixes the following issues:

- Fix missing responder if there is no pre-auth; (bsc#1139942)
- Load mechglue config files from /etc/gss/mech.d; (bsc#1140914, jsc#SLE-7081)
- Fix impersonate_name to work with interposers; (bsc#1140914, jsc#SLE-7081)
  

-----------------------------------------
Patch: SUSE-2019-2389
Released: Tue Sep 17 15:45:12 2019
Summary: Security update for ibus
Severity: important
References: 1150011,CVE-2019-14822
Description:
This update for ibus fixes the following issues:

Security issue fixed:

- CVE-2019-14822: Fixed a misconfiguration of the DBus server that allowed an unprivileged user to monitor and send method calls to the ibus bus of another user. (bsc#1150011)


-----------------------------------------
Patch: SUSE-2019-2390
Released: Tue Sep 17 15:46:02 2019
Summary: Security update for openldap2
Severity: moderate
References: 1143194,1143273,CVE-2019-13057,CVE-2019-13565
Description:
This update for openldap2 fixes the following issues:

Security issues fixed:

- CVE-2019-13565: Fixed ssf memory reuse that leads to incorrect authorization of another connection, granting excess connection rights (ssf) (bsc#1143194).
- CVE-2019-13057: Fixed rootDN of a backend that may proxyauth incorrectly to another backend, violating multi-tenant isolation (bsc#1143273).


-----------------------------------------
Patch: SUSE-2019-2426
Released: Fri Sep 20 18:48:51 2019
Summary: Security update for nmap
Severity: important
References: 1135350,CVE-2018-15173
Description:
This update for nmap fixes the following issues:
	  
- Fixed a regression in the version scanner, caused by the fix for CVE-2018-15173. (bsc#1135350)


-----------------------------------------
Patch: SUSE-2019-2436
Released: Mon Sep 23 14:37:44 2019
Summary: Security update for MozillaFirefox
Severity: important
References: 1149294,1149295,1149296,1149297,1149298,1149299,1149303,1149304,1149324,CVE-2019-11740,CVE-2019-11742,CVE-2019-11743,CVE-2019-11744,CVE-2019-11746,CVE-2019-11752,CVE-2019-11753,CVE-2019-9812
Description:
This update for MozillaFirefox to ESR 60.9 fixes the following issues:

Security issues fixed:

- CVE-2019-11742: Fixed a same-origin policy violation involving SVG filters and canvas to steal cross-origin images. (bsc#1149303)
- CVE-2019-11746: Fixed a use-after-free while manipulating video. (bsc#1149297)
- CVE-2019-11744: Fixed an XSS caused by breaking out of title and textarea elements using innerHTML. (bsc#1149304)
- CVE-2019-11753: Fixed a privilege escalation with Mozilla Maintenance Service in custom Firefox installation location. (bsc#1149295)
- CVE-2019-11752: Fixed a use-after-free while extracting a key value in IndexedDB. (bsc#1149296)
- CVE-2019-11743: Fixed a timing side-channel attack on cross-origin information, utilizing unload event attributes. (bsc#1149298)
- CVE-2019-11740: Fixed several memory safety bugs. (bsc#1149299)


-----------------------------------------
Patch: SUSE-2019-2440
Released: Mon Sep 23 17:15:13 2019
Summary: Security update for expat
Severity: moderate
References: 1149429,CVE-2019-15903
Description:
This update for expat fixes the following issues:

Security issue fixed:

- CVE-2019-15903: Fixed a heap-based buffer over-read caused by crafted XML documents. (bsc#1149429)


-----------------------------------------
Patch: SUSE-2019-2441
Released: Tue Sep 24 09:15:54 2019
Summary: Recommended update for apache2-mod_nss
Severity: moderate
References: 1150133
Description:
This update for apache2-mod_nss fixes the following issues:

- Use a stronger password in gencert to pass the stricter tests in
  FIPS mode (bsc#1150133)


-----------------------------------------
Patch: SUSE-2019-2444
Released: Tue Sep 24 10:34:58 2019
Summary: Security update for djvulibre
Severity: moderate
References: 1146569,1146571,1146572,1146702,CVE-2019-15142,CVE-2019-15143,CVE-2019-15144,CVE-2019-15145
Description:
This update for djvulibre fixes the following issues:

Security issues fixed:

- CVE-2019-15142: Fixed heap-based buffer over-read (bsc#1146702).
- CVE-2019-15143: Fixed resource exhaustion caused by corrupted image files (bsc#1146569).
- CVE-2019-15144: Fixed denial-of-service caused by crafted PBM image files (bsc#1146571).
- CVE-2019-15145: Fixed out-of-bounds read caused by corrupted JB2 image files (bsc#1146572).
- Fixed segfault when libtiff encounters corrupted TIFF (upstream issue #295).


-----------------------------------------
Patch: SUSE-2019-2454
Released: Tue Sep 24 16:46:35 2019
Summary: Security update for dovecot22
Severity: important
References: 1145559,CVE-2019-11500
Description:
This update for dovecot22 fixes the following issues:

- CVE-2019-11500: Fixed a potential remote code execution in the IMAP and ManageSieve protocol parsers (bsc#1145559).


-----------------------------------------
Patch: SUSE-2019-2456
Released: Wed Sep 25 08:36:31 2019
Summary: Recommended update for lvm2
Severity: moderate
References: 1145231
Description:
This update for lvm2 fixes the following issues:

- MD devices will now get detected by LVM2 with metadata=1.0/0.9 (bsc#1145231)


-----------------------------------------
Patch: SUSE-2019-2478
Released: Thu Sep 26 14:50:36 2019
Summary: Security update for ghostscript
Severity: important
References: 1129180,1131863,1134156,1140359,1146882,1146884,CVE-2019-12973,CVE-2019-14811,CVE-2019-14812,CVE-2019-14813,CVE-2019-14817,CVE-2019-3835,CVE-2019-3839
Description:
This update for ghostscript to 9.27 fixes the following issues:

Security issues fixed:

- CVE-2019-3835: Fixed an unauthorized file system access caused by an available superexec operator.  (bsc#1129180)
- CVE-2019-3839: Fixed an unauthorized file system access caused by available privileged operators. (bsc#1134156)
- CVE-2019-12973: Fixed a denial-of-service vulnerability in the OpenJPEG function opj_t1_encode_cblks. (bsc#1140359)
- CVE-2019-14811: Fixed a safer mode bypass by .forceput exposure in .pdf_hook_DSC_Creator. (bsc#1146882)
- CVE-2019-14812: Fixed a safer mode bypass by .forceput exposure in setuserparams. (bsc#1146882)
- CVE-2019-14813: Fixed a safer mode bypass by .forceput exposure in setsystemparams. (bsc#1146882)
- CVE-2019-14817: Fixed a safer mode bypass by .forceput exposure in .pdfexectoken and other procedures. (bsc#1146884)


-----------------------------------------
Patch: SUSE-2019-2480
Released: Fri Sep 27 13:12:08 2019
Summary: Security update for gpg2
Severity: moderate
References: 1124847,1141093,CVE-2019-13050
Description:
This update for gpg2 fixes the following issues:

Security issue fixed:

- CVE-2019-13050: Fixed denial-of-service attacks via big keys. (bsc#1141093)

Non-security issue fixed:

- Allow coredumps in X11 desktop sessions (bsc#1124847).


-----------------------------------------
Patch: SUSE-2019-2502
Released: Tue Oct  1 13:06:14 2019
Summary: Security update for bind
Severity: important
References: 1104129,1118367,1118368,1126068,1126069,1128220,1133185,1138687,CVE-2018-5740,CVE-2018-5743,CVE-2018-5745,CVE-2019-6465,CVE-2019-6471
Description:
This update for bind fixes the following issues:

Security issues fixed:

- CVE-2019-6465: Fixed an issue where controls for zone transfers may not be properly applied to Dynamically Loadable Zones (bsc#1126069).
- CVE-2019-6471: Fixed a reachable assert in dispatch.c. (bsc#1138687)
- CVE-2018-5745: Fixed a denial of service vulnerability if a trust anchor rolls over to an unsupported key algorithm when using managed-keys (bsc#1126068).
- CVE-2018-5743: Fixed a denial of service vulnerability which could be caused by to many simultaneous TCP connections (bsc#1133185).
- CVE-2018-5740: Fixed a denial of service vulnerability in the 'deny-answer-aliases' feature (bsc#1104129).

Non-security issues fixed:

- Don't rely on /etc/insserv.conf anymore for proper dependencies against 
  nss-lookup.target in named.service and lwresd.service (bsc#1118367, bsc#1118368).
- Fix FIPS related regression (bsc#1128220).


-----------------------------------------
Patch: SUSE-2019-2504
Released: Tue Oct  1 13:07:07 2019
Summary: Security update for openssl-1_0_0
Severity: moderate
References: 1131291,1150003,1150250,CVE-2019-1547,CVE-2019-1563
Description:
This update for openssl-1_0_0 fixes the following issues:

OpenSSL Security Advisory [10 September 2019]

* CVE-2019-1547: Added EC_GROUP_set_generator side channel attack avoidance. (bsc#1150003)
* CVE-2019-1563: Fixed Bleichenbacher attack against cms/pkcs7 encryption transported key (bsc#1150250)

In addition fixed invalid curve attacks by validating that an EC point lies on the curve (bsc#1131291).


-----------------------------------------
Patch: SUSE-2019-2510
Released: Tue Oct  1 17:37:12 2019
Summary: Security update for libgcrypt
Severity: moderate
References: 1148987,CVE-2019-13627
Description:
This update for libgcrypt fixes the following issues:

Security issues fixed:
	  
- CVE-2019-13627: Mitigated ECDSA timing attack. (bsc#1148987)


-----------------------------------------
Patch: SUSE-2019-2513
Released: Wed Oct  2 10:48:28 2019
Summary: Security update for jasper
Severity: moderate
References: 1010783,1117505,1117507,1117508,1117511,CVE-2016-9396,CVE-2018-19539,CVE-2018-19540,CVE-2018-19541,CVE-2018-19542
Description:
This update for jasper fixes the following issues:

Security issues fixed:

- CVE-2018-19540: Fixed  a heap based overflow in jas_icctxtdesc_input (bsc#1117508).
- CVE-2018-19541: Fix heap based overread in jas_image_depalettize (bsc#1117507).
- CVE-2018-19542: Fixed a denial of service in jp2_decode (bsc#1117505).
- CVE-2018-19539: Fixed a denial of service in jas_image_readcmpt (bsc#1117511).
- CVE-2016-9396: Fixed a denial of service in jpc_cox_getcompparms (bsc#1010783).


-----------------------------------------
Patch: SUSE-2019-2536
Released: Thu Oct  3 15:03:14 2019
Summary: Security update for sqlite3
Severity: moderate
References: 1150137,CVE-2019-16168
Description:
This update for sqlite3 fixes the following issues:

Security issue fixed:

- CVE-2019-16168: Fixed improper validation of sqlite_stat1 field that could lead to denial of service (bsc#1150137).


-----------------------------------------
Patch: SUSE-2019-2551
Released: Fri Oct  4 13:19:48 2019
Summary: Recommended update for lvm2
Severity: important
References: 1152530
Description:
This update for lvm2 fixes the following issues:

- Remedy a regression that could cause serious performance degradation when
  lvm2 operated in a chroot environment. [bsc#1152530]


-----------------------------------------
Patch: SUSE-2019-2556
Released: Fri Oct  4 13:36:49 2019
Summary: Recommended update for tcsh
Severity: moderate
References: 1134508,992577
Description:
This update for tcsh fixes the following issues:

- Make a copy of the file descriptor of the history file to be able not only to lock but
  also unlock the file. (bsc#992577, bsc#1134508)
- Add Shift-JIS Japanese character support. (fate#324487)


-----------------------------------------
Patch: SUSE-2019-2560
Released: Fri Oct  4 13:53:48 2019
Summary: Recommended update for apache2-mod_auth_openidc, cjose, libjansson
Severity: moderate
References: 1149232,ECO-209
Description:
This update for apache2-mod_auth_openidc, cjose, libjansson fixes the following issues:

apache2-mod_auth_openidc is included in version 2.4.0.

It provides a OpenID connect provider module for Apache2.


Also cjose and libjansson were added or updated as dependencies.

cjose was included in version 0.6.1.

libjansson was updated to new upstream release 2.12 (bsc#1149232)

* Bug fixes:

  - Fix error message in `json_pack()` for NULL object (#409).
  - Avoid invalid memory read in `json_pack()` (#421).
  - Call va_end after va_copy in `json_vsprintf()` (#427).
  - Improve handling of formats with '?' and '*' in `json_pack()` (#438).
  - Remove inappropriate `jsonp_free()` which caused segmentation fault in error handling (#444).

Update to new upstream release 2.11:

* New features:

  - Add `json_pack()` format specifiers s*, o* and O* for values
    that can be omitted if null (#339).
  - Add `json_error_code()` to retrieve numeric error codes
    (#365, #380, #381).
  - Enable thread safety for `json_dump()` on all systems.
    Enable thread safe `json_decref()` and `json_incref()` for
    modern compilers (#389).
  - Add `json_sprintf()` and `json_vsprintf()` (#393).
* Bug Fixes:
  - Fix incorrect report of success from `json_dump_file()` when
    an error is returned by `fclose()` (#359).
  - Make json_equal() const-correct (#344).
  - Fix incomplete stealing of references by `json_pack()` (#374)

Update to new upstream release 2.9:

* New features:

  - Add JSON_EMBED encoding flag allowing arrays and objects to
    be encoded into existing streams (#329).
  - Add `json_dumpb()` function for dumping to a pre-allocated
    buffer (#328).
  - Add `json_dumpfd()` and `json_loadfd()` functions for dumping
    to streaming file descriptors (#328).
  - Add support for parsing buffers larger than 2GB (#309).

* New features:

  Add json_auto_t to automatically decref a value that goes out of scope. 
  Available only on GCC and Clang. (#301)

Update to new upstream release 2.8:

* New features:

  - Always preserve insertion order of object items. json_object_iter() 
    and friends, json_object_foreach() and json_dumps() and friends now 
    always work in the insertion order of object items (#293).
  - Add json_object_foreach_safe() macro that allows json_object_del() 
    calls during iteration (#230).
  - Add json_get_alloc_funcs() to allow reading the allocation functions 
    set by json_set_alloc_funcs() (#262, #264).
  - Add json_pack() format specifiers s?, o? and O? for values that can 
    be null (#261, #270).

* Bug fixes:

  - Fix a crash when parsing inputs consisting of very deeply nested 
    arrays or objects (#282, #284).
  - Never convert numbers to integers in the parser when 
    JSON_DECODE_INT_AS_REAL is set. 
  - Fix a use-after-free in json_pack() error handling.
  - Fix subnormal number parsing on mingw32.
  - Handle out-of-memory situations gracefully in the hashtable 
    implementation



-----------------------------------------
Patch: SUSE-2019-2567
Released: Mon Oct  7 15:04:56 2019
Summary: Recommended update for cups-filters
Severity: important
References: 1152720
Description:
This update for cups-filters fixes the following issues:

- Make cups-filters work with Ghostscript 9.27 and later
  * foomatic-rip: Changed Ghostscript call to count pages in a
    PDF file to use 'runpdfbegin' and not the undocumented
    Ghostscript internal 'pdfdict' (bsc#1152720)



-----------------------------------------
Patch: SUSE-2019-2620
Released: Wed Oct  9 09:48:40 2019
Summary: Security update for MozillaFirefox
Severity: important
References: 1087200,1109465,1117473,1123482,1124525,1133810,1140868,1145665,1149323,CVE-2019-11709,CVE-2019-11710,CVE-2019-11711,CVE-2019-11712,CVE-2019-11713,CVE-2019-11714,CVE-2019-11715,CVE-2019-11716,CVE-2019-11717,CVE-2019-11718,CVE-2019-11719,CVE-2019-11720,CVE-2019-11721,CVE-2019-11723,CVE-2019-11724,CVE-2019-11725,CVE-2019-11727,CVE-2019-11728,CVE-2019-11729,CVE-2019-11730,CVE-2019-11733,CVE-2019-11735,CVE-2019-11736,CVE-2019-11738,CVE-2019-11740,CVE-2019-11742,CVE-2019-11743,CVE-2019-11744,CVE-2019-11746,CVE-2019-11747,CVE-2019-11748,CVE-2019-11749,CVE-2019-11750,CVE-2019-11751,CVE-2019-11752,CVE-2019-11753,CVE-2019-9811,CVE-2019-9812
Description:
This update for MozillaFirefox fixes the following issues:

Updated to new ESR version 68.1 (bsc#1149323).

In addition to the already fixed vulnerabilities released in previous ESR updates,
the following were also fixed:
    CVE-2019-11751, CVE-2019-11736, CVE-2019-9812, CVE-2019-11748, CVE-2019-11749,
    CVE-2019-11750, CVE-2019-11738, CVE-2019-11747, CVE-2019-11735.

Several run-time issues were also resolved (bsc#1117473, bsc#1124525, bsc#1133810).

The version displayed in Help > About is now correct (bsc#1087200).


-----------------------------------------
Patch: SUSE-2019-2650
Released: Mon Oct 14 10:52:46 2019
Summary: Security update for binutils
Severity: moderate
References: 1109412,1109413,1109414,1111996,1112534,1112535,1113247,1113252,1113255,1116827,1118830,1118831,1120640,1121034,1121035,1121056,1133131,1133232,1141913,1142772,CVE-2018-1000876,CVE-2018-17358,CVE-2018-17359,CVE-2018-17360,CVE-2018-17985,CVE-2018-18309,CVE-2018-18483,CVE-2018-18484,CVE-2018-18605,CVE-2018-18606,CVE-2018-18607,CVE-2018-19931,CVE-2018-19932,CVE-2018-20623,CVE-2018-20651,CVE-2018-20671,CVE-2019-1010180,ECO-368,SLE-6206
Description:
This update for binutils fixes the following issues:

binutils was updated to current 2.32 branch @7b468db3 [jsc#ECO-368]:

Includes the following security fixes:

- CVE-2018-17358: Fixed invalid memory access in _bfd_stab_section_find_nearest_line in syms.c (bsc#1109412)
- CVE-2018-17359: Fixed invalid memory access exists in bfd_zalloc in opncls.c (bsc#1109413)
- CVE-2018-17360: Fixed heap-based buffer over-read in bfd_getl32 in libbfd.c (bsc#1109414)
- CVE-2018-17985: Fixed a stack consumption problem caused by the cplus_demangle_type (bsc#1116827)
- CVE-2018-18309: Fixed an invalid memory address dereference was discovered in read_reloc in reloc.c (bsc#1111996)
- CVE-2018-18483: Fixed get_count function provided by libiberty that allowed attackers to cause a denial of service or other unspecified impact (bsc#1112535)
- CVE-2018-18484: Fixed stack exhaustion in the C++ demangling functions provided by libiberty, caused by recursive stack frames (bsc#1112534)
- CVE-2018-18605: Fixed a heap-based buffer over-read issue was discovered in the function sec_merge_hash_lookup causing a denial of service (bsc#1113255)
- CVE-2018-18606: Fixed a NULL pointer dereference in _bfd_add_merge_section when attempting to merge sections with large alignments, causing denial of service (bsc#1113252)
- CVE-2018-18607: Fixed a NULL pointer dereference in elf_link_input_bfd when used for finding STT_TLS symbols without any TLS section, causing denial of service (bsc#1113247)
- CVE-2018-19931: Fixed a heap-based buffer overflow in bfd_elf32_swap_phdr_in in elfcode.h (bsc#1118831)
- CVE-2018-19932: Fixed an integer overflow and infinite loop caused by the IS_CONTAINED_BY_LMA (bsc#1118830)
- CVE-2018-20623: Fixed a use-after-free in the error function in elfcomm.c (bsc#1121035)
- CVE-2018-20651: Fixed a denial of service via a NULL pointer dereference in elf_link_add_object_symbols in elflink.c (bsc#1121034)
- CVE-2018-20671: Fixed an integer overflow that can trigger a heap-based buffer overflow in  load_specific_debug_section in objdump.c (bsc#1121056)
- CVE-2018-1000876: Fixed integer overflow in bfd_get_dynamic_reloc_upper_bound,bfd_canonicalize_dynamic_reloc in objdump (bsc#1120640)
- CVE-2019-1010180: Fixed an out of bound memory access that could lead to crashes (bsc#1142772)

- Enable xtensa architecture (Tensilica lc6 and related)
- Use -ffat-lto-objects in order to provide assembly for static libs
  (bsc#1141913).
- Fixed some LTO problems (bsc#1133131 bsc#1133232).
- riscv: Don't check ABI flags if no code section

Update to binutils 2.32:

* The binutils now support for the C-SKY processor series.
* The x86 assembler now supports a -mvexwig=[0|1] option to control
  encoding of VEX.W-ignored (WIG) VEX instructions.
  It also has a new -mx86-used-note=[yes|no] option to generate (or
  not) x86 GNU property notes.
* The MIPS assembler now supports the Loongson EXTensions R2 (EXT2),
  the Loongson EXTensions (EXT) instructions, the Loongson Content
  Address Memory (CAM) ASE and the Loongson MultiMedia extensions
  Instructions (MMI) ASE.
* The addr2line, c++filt, nm and objdump tools now have a default
  limit on the maximum amount of recursion that is allowed whilst
  demangling strings.  This limit can be disabled if necessary.
* Objdump's --disassemble option can now take a parameter,
  specifying the starting symbol for disassembly.  Disassembly will
  continue from this symbol up to the next symbol or the end of the
  function.
* The BFD linker will now report property change in linker map file
  when merging GNU properties.
* The BFD linker's -t option now doesn't report members within
  archives, unless -t is given twice.  This makes it more useful
  when generating a list of files that should be packaged for a
  linker bug report.
* The GOLD linker has improved warning messages for relocations that
  refer to discarded sections.

- Improve relro support on s390 [fate#326356]
- Handle ELF compressed header alignment correctly.

  

-----------------------------------------
Patch: SUSE-2019-2669
Released: Tue Oct 15 14:38:11 2019
Summary: Security update for libpcap
Severity: important
References: 1153332,CVE-2018-16301,CVE-2019-15165
Description:
This update for libpcap fixes the following issues:

- CVE-2019-15165: Added sanity checks for PHB header length before allocating memory (bsc#1153332).
- CVE-2018-16301: Fixed a buffer overflow (bsc#1153332).


-----------------------------------------
Patch: SUSE-2019-2670
Released: Tue Oct 15 14:43:56 2019
Summary: Recommended update for MozillaFirefox, MozillaFirefox-branding-SLE
Severity: moderate
References: 1151186,1153423,1153869
Description:
This update for MozillaFirefox, MozillaFirefox-branding-SLE fixes the following issues:

Changes in MozillaFirefox-branding-SLE:

- moved extensions preferences to core package (bsc#1153869)

Changes in MozillaFirefox:

- Add Provides-line for translations-common to help migration (bsc#1153423) 
- Moved some settings from branding-package here (bsc#1153869)
- remove obsolete kde.js setting (bsc#1151186) and related patch:
- Disable DoH by default

  * Not yet officially active in ESR, but just to make sure


-----------------------------------------
Patch: SUSE-2019-2677
Released: Tue Oct 15 21:07:14 2019
Summary: Recommended update for e2fsprogs
Severity: moderate
References: 1145716,1152101,CVE-2019-5094
Description:
This update for e2fsprogs fixes the following issues:

Security issue fixed:

- CVE-2019-5094: Fixed an arbitrary code execution via specially crafted ext4 file systems. (bsc#1152101)

Non-security issue fixed:

- libext2fs: Call fsync(2) to clear stale errors for a new a unix I/O channel. (bsc#1145716)


-----------------------------------------
Patch: SUSE-2019-2687
Released: Wed Oct 16 16:07:00 2019
Summary: Security update for mariadb-100
Severity: moderate
References: 1132826,1141798,CVE-2019-2614,CVE-2019-2627,CVE-2019-2737,CVE-2019-2739,CVE-2019-2740,CVE-2019-2805
Description:
This update for mariadb-100 fixes the following issues:

Updated to MariaDB 10.0.40-1.

Security issues fixed:

- CVE-2019-2805, CVE-2019-2740, CVE-2019-2739, CVE-2019-2737, 
  CVE-2019-2614, CVE-2019-2627. (bsc#1132826) (bsc#1141798).


-----------------------------------------
Patch: SUSE-2019-2701
Released: Wed Oct 16 17:33:49 2019
Summary: Recommended update for cifs-utils
Severity: moderate
References: 1130528,1132087,1136031
Description:
This update for cifs-utils fixes the following issues:

- Update to cifs-utils 6.9 (bsc#1132087, bsc#1136031)
- Allow cached DNS entry to expire (fate#325270)
- Document new SMB2.1+ defaults (bsc#1130528)


-----------------------------------------
Patch: SUSE-2019-2703
Released: Thu Oct 17 10:05:41 2019
Summary: Recommended update for binutils
Severity: important
References: 1152590,1154016,1154025
Description:
This update for binutils fixes the following issues:

- Fixed a segfault in ld when building some versions of pacemaker. (bsc#1154025, bsc#1154016)
- Add avr, epiphany and rx to target_list so that the common binutils can handle all objects we can create with crosses.  (bsc#1152590)



-----------------------------------------
Patch: SUSE-2019-2694
Released: Fri Dec 20 14:21:14 2019
Summary: Recommended update for rpcbind
Severity: moderate
References: 1142343
Description:
This update for rpcbind fixes the following issues:

- Return correct IP address with multiple ip addresses in the same subnet. (bsc#1142343)


-----------------------------------------
Patch: SUSE-2020-473
Released: Tue Feb 25 13:08:08 2020
Summary: Recommended update for llvm6, jsoncpp
Severity: moderate
References: 1112730
Description:
This update for llvm6, jsoncpp provides the following fixes:

Changes in llvm6:

- Make sure opt-viewer installed in /usr/bin can find resources from /usr/share/opt-viewer.
  (bsc#1112730)
- Make sure llvm6-polly will not conflict with future llvm7-polly.
- Add direct conflict between llvm6-polly-devel and future llvm7-polly-devel to prevent
  false reports of file conflicts.

Changes in jsoncpp:

- No change rebuild to get libjsoncpp1 released to SDK 12-SP4.


-----------------------------------------
Patch: SUSE-2020-1577
Released: Tue Jun  9 14:19:21 2020
Summary: Recommended update for openslp
Severity: moderate
References: 1117969,1136136
Description:
This update for openslp fixes the following issues:

- Use tcp connects to talk with other directory agents (DAs) (bsc#1117969)
- Fix segfault in predicate match if a registered service has
  a malformed attribute list (bsc#1136136)