openSUSE-2012-536 moderate openSUSE 12.2 Update Multiple version upgrades for rails components. rubygem-actionmailer-3_2-3.2.7-2.4.1.i586.rpm rubygem-actionmailer-3_2-3.2.7-2.4.1.src.rpm rubygem-actionmailer-3_2-doc-3.2.7-2.4.1.i586.rpm rubygem-actionpack-3_2-3.2.7-3.4.1.i586.rpm rubygem-actionpack-3_2-3.2.7-3.4.1.src.rpm rubygem-actionpack-3_2-doc-3.2.7-3.4.1.i586.rpm rubygem-activemodel-3_2-3.2.7-2.4.1.i586.rpm rubygem-activemodel-3_2-3.2.7-2.4.1.src.rpm rubygem-activemodel-3_2-doc-3.2.7-2.4.1.i586.rpm rubygem-activerecord-3_2-3.2.7-2.4.1.i586.rpm rubygem-activerecord-3_2-3.2.7-2.4.1.src.rpm rubygem-activerecord-3_2-doc-3.2.7-2.4.1.i586.rpm rubygem-activeresource-3_2-3.2.7-2.4.1.i586.rpm rubygem-activeresource-3_2-3.2.7-2.4.1.src.rpm rubygem-activeresource-3_2-doc-3.2.7-2.4.1.i586.rpm rubygem-activesupport-3_2-3.2.7-2.4.1.i586.rpm rubygem-activesupport-3_2-3.2.7-2.4.1.src.rpm rubygem-activesupport-3_2-doc-3.2.7-2.4.1.i586.rpm rubygem-journey-1_0-1.0.4-3.4.1.i586.rpm rubygem-journey-1_0-1.0.4-3.4.1.src.rpm rubygem-journey-1_0-doc-1.0.4-3.4.1.i586.rpm rubygem-journey-1_0-testsuite-1.0.4-3.4.1.i586.rpm rubygem-rails-3_2-3.2.7-2.4.1.i586.rpm rubygem-rails-3_2-3.2.7-2.4.1.src.rpm rubygem-rails-3_2-doc-3.2.7-2.4.1.i586.rpm rubygem-railties-3_2-3.2.7-2.4.1.i586.rpm rubygem-railties-3_2-3.2.7-2.4.1.src.rpm rubygem-railties-3_2-doc-3.2.7-2.4.1.i586.rpm rubygem-sprockets-2_1-2.1.3-3.4.1.i586.rpm rubygem-sprockets-2_1-2.1.3-3.4.1.src.rpm rubygem-sprockets-2_1-doc-2.1.3-3.4.1.i586.rpm rubygem-actionmailer-3_2-3.2.7-2.4.1.x86_64.rpm rubygem-actionmailer-3_2-doc-3.2.7-2.4.1.x86_64.rpm rubygem-actionpack-3_2-3.2.7-3.4.1.x86_64.rpm rubygem-actionpack-3_2-doc-3.2.7-3.4.1.x86_64.rpm rubygem-activemodel-3_2-3.2.7-2.4.1.x86_64.rpm rubygem-activemodel-3_2-doc-3.2.7-2.4.1.x86_64.rpm rubygem-activerecord-3_2-3.2.7-2.4.1.x86_64.rpm rubygem-activerecord-3_2-doc-3.2.7-2.4.1.x86_64.rpm rubygem-activeresource-3_2-3.2.7-2.4.1.x86_64.rpm rubygem-activeresource-3_2-doc-3.2.7-2.4.1.x86_64.rpm rubygem-activesupport-3_2-3.2.7-2.4.1.x86_64.rpm rubygem-activesupport-3_2-doc-3.2.7-2.4.1.x86_64.rpm rubygem-journey-1_0-1.0.4-3.4.1.x86_64.rpm rubygem-journey-1_0-doc-1.0.4-3.4.1.x86_64.rpm rubygem-journey-1_0-testsuite-1.0.4-3.4.1.x86_64.rpm rubygem-rails-3_2-3.2.7-2.4.1.x86_64.rpm rubygem-rails-3_2-doc-3.2.7-2.4.1.x86_64.rpm rubygem-railties-3_2-3.2.7-2.4.1.x86_64.rpm rubygem-railties-3_2-doc-3.2.7-2.4.1.x86_64.rpm rubygem-sprockets-2_1-2.1.3-3.4.1.x86_64.rpm rubygem-sprockets-2_1-doc-2.1.3-3.4.1.x86_64.rpm openSUSE-2012-533 important openSUSE 12.2 Update Fix buffer overflow in MS Word ODF filter among other non-security related bugs. Also a version update to 2.4.3 happened: * Words: - Always show vertical scroll bar to avoid race condition (kde#301076) - Do not save with an attribue that makes LibreOffice and OpenOffice crash (kde#298689 ) * Kexi: - Fixed import from csv when “Start at Line” value changed (kde#302209) - Set limit to 255 characters for Text type (VARCHAR) (kde#301277 and 301136) + - Remove limits for Text data type, leave as option (kde#301277) - Fixed data saving when focus policy for one of widgets is NoFocus (kde#301109) * Krita: - Read and set the resolution for psd images * Charts: - Fix load/save styles of all shapes (title,subtitle,axistitles,footer,etc.) - Lines in the chart should be displayed (kde#271771) - Combined Bar and Line Charts only show bars (Trendlines not supported) (kde#288537) - Load/save chart type for each dataset (kde#271771 and 288537) calligra-doc-2.4.3-2.4.1.noarch.rpm calligra-doc-2.4.3-2.4.1.src.rpm calligra-2.4.3-2.4.1.i586.rpm calligra-2.4.3-2.4.1.src.rpm calligra-braindump-2.4.3-2.4.1.i586.rpm calligra-braindump-debuginfo-2.4.3-2.4.1.i586.rpm calligra-debuginfo-2.4.3-2.4.1.i586.rpm calligra-debugsource-2.4.3-2.4.1.i586.rpm calligra-devel-2.4.3-2.4.1.i586.rpm calligra-flow-2.4.3-2.4.1.i586.rpm calligra-flow-debuginfo-2.4.3-2.4.1.i586.rpm calligra-karbon-2.4.3-2.4.1.i586.rpm calligra-karbon-debuginfo-2.4.3-2.4.1.i586.rpm calligra-kexi-2.4.3-2.4.1.i586.rpm calligra-kexi-debuginfo-2.4.3-2.4.1.i586.rpm calligra-kexi-mssql-driver-2.4.3-2.4.1.i586.rpm calligra-kexi-mssql-driver-debuginfo-2.4.3-2.4.1.i586.rpm calligra-kexi-mysql-driver-2.4.3-2.4.1.i586.rpm calligra-kexi-mysql-driver-debuginfo-2.4.3-2.4.1.i586.rpm calligra-kexi-postgresql-driver-2.4.3-2.4.1.i586.rpm calligra-kexi-postgresql-driver-debuginfo-2.4.3-2.4.1.i586.rpm calligra-kexi-spreadsheet-import-2.4.3-2.4.1.i586.rpm calligra-kexi-spreadsheet-import-debuginfo-2.4.3-2.4.1.i586.rpm calligra-kexi-xbase-driver-2.4.3-2.4.1.i586.rpm calligra-kexi-xbase-driver-debuginfo-2.4.3-2.4.1.i586.rpm calligra-krita-2.4.3-2.4.1.i586.rpm calligra-krita-debuginfo-2.4.3-2.4.1.i586.rpm calligra-kthesaurus-2.4.3-2.4.1.i586.rpm calligra-kthesaurus-debuginfo-2.4.3-2.4.1.i586.rpm calligra-plan-2.4.3-2.4.1.i586.rpm calligra-plan-debuginfo-2.4.3-2.4.1.i586.rpm calligra-sheets-2.4.3-2.4.1.i586.rpm calligra-sheets-debuginfo-2.4.3-2.4.1.i586.rpm calligra-stage-2.4.3-2.4.1.i586.rpm calligra-stage-debuginfo-2.4.3-2.4.1.i586.rpm calligra-tools-2.4.3-2.4.1.i586.rpm calligra-tools-debuginfo-2.4.3-2.4.1.i586.rpm calligra-words-2.4.3-2.4.1.i586.rpm calligra-words-debuginfo-2.4.3-2.4.1.i586.rpm calligra-2.4.3-2.4.1.x86_64.rpm calligra-braindump-2.4.3-2.4.1.x86_64.rpm calligra-braindump-debuginfo-2.4.3-2.4.1.x86_64.rpm calligra-debuginfo-2.4.3-2.4.1.x86_64.rpm calligra-debugsource-2.4.3-2.4.1.x86_64.rpm calligra-devel-2.4.3-2.4.1.x86_64.rpm calligra-flow-2.4.3-2.4.1.x86_64.rpm calligra-flow-debuginfo-2.4.3-2.4.1.x86_64.rpm calligra-karbon-2.4.3-2.4.1.x86_64.rpm calligra-karbon-debuginfo-2.4.3-2.4.1.x86_64.rpm calligra-kexi-2.4.3-2.4.1.x86_64.rpm calligra-kexi-debuginfo-2.4.3-2.4.1.x86_64.rpm calligra-kexi-mssql-driver-2.4.3-2.4.1.x86_64.rpm calligra-kexi-mssql-driver-debuginfo-2.4.3-2.4.1.x86_64.rpm calligra-kexi-mysql-driver-2.4.3-2.4.1.x86_64.rpm calligra-kexi-mysql-driver-debuginfo-2.4.3-2.4.1.x86_64.rpm calligra-kexi-postgresql-driver-2.4.3-2.4.1.x86_64.rpm calligra-kexi-postgresql-driver-debuginfo-2.4.3-2.4.1.x86_64.rpm calligra-kexi-spreadsheet-import-2.4.3-2.4.1.x86_64.rpm calligra-kexi-spreadsheet-import-debuginfo-2.4.3-2.4.1.x86_64.rpm calligra-kexi-xbase-driver-2.4.3-2.4.1.x86_64.rpm calligra-kexi-xbase-driver-debuginfo-2.4.3-2.4.1.x86_64.rpm calligra-krita-2.4.3-2.4.1.x86_64.rpm calligra-krita-debuginfo-2.4.3-2.4.1.x86_64.rpm calligra-kthesaurus-2.4.3-2.4.1.x86_64.rpm calligra-kthesaurus-debuginfo-2.4.3-2.4.1.x86_64.rpm calligra-plan-2.4.3-2.4.1.x86_64.rpm calligra-plan-debuginfo-2.4.3-2.4.1.x86_64.rpm calligra-sheets-2.4.3-2.4.1.x86_64.rpm calligra-sheets-debuginfo-2.4.3-2.4.1.x86_64.rpm calligra-stage-2.4.3-2.4.1.x86_64.rpm calligra-stage-debuginfo-2.4.3-2.4.1.x86_64.rpm calligra-tools-2.4.3-2.4.1.x86_64.rpm calligra-tools-debuginfo-2.4.3-2.4.1.x86_64.rpm calligra-words-2.4.3-2.4.1.x86_64.rpm calligra-words-debuginfo-2.4.3-2.4.1.x86_64.rpm openSUSE-2012-554 low openSUSE 12.2 Update Stable fix update.. largely recommended by upstream (we need some gnucash finally working in the dist.. it's rare for us) gnucash-2.4.11-2.5.5.i586.rpm gnucash-2.4.11-2.5.5.src.rpm gnucash-debuginfo-2.4.11-2.5.5.i586.rpm gnucash-debugsource-2.4.11-2.5.5.i586.rpm gnucash-devel-2.4.11-2.5.5.i586.rpm gnucash-lang-2.4.11-2.5.5.noarch.rpm python-gnucash-2.4.11-2.5.5.i586.rpm python-gnucash-debuginfo-2.4.11-2.5.5.i586.rpm gnucash-2.4.11-2.5.5.x86_64.rpm gnucash-debuginfo-2.4.11-2.5.5.x86_64.rpm gnucash-debugsource-2.4.11-2.5.5.x86_64.rpm gnucash-devel-2.4.11-2.5.5.x86_64.rpm python-gnucash-2.4.11-2.5.5.x86_64.rpm python-gnucash-debuginfo-2.4.11-2.5.5.x86_64.rpm openSUSE-2012-556 low openSUSE 12.2 Update akonadi-google received a few good backported patches for 12.2, esp. for 301240-parsing_token_page.diff fixed bnc#774810 akonadi-google-0.3.1-2.4.1.i586.rpm akonadi-google-0.3.1-2.4.1.src.rpm akonadi-google-debuginfo-0.3.1-2.4.1.i586.rpm akonadi-google-debugsource-0.3.1-2.4.1.i586.rpm akonadi-google-lang-0.3.1-2.4.1.noarch.rpm libkgoogle-devel-0.3.1-2.4.1.i586.rpm libkgoogle0-0.3.1-2.4.1.i586.rpm libkgoogle0-debuginfo-0.3.1-2.4.1.i586.rpm akonadi-google-0.3.1-2.4.1.x86_64.rpm akonadi-google-debuginfo-0.3.1-2.4.1.x86_64.rpm akonadi-google-debugsource-0.3.1-2.4.1.x86_64.rpm libkgoogle-devel-0.3.1-2.4.1.x86_64.rpm libkgoogle0-0.3.1-2.4.1.x86_64.rpm libkgoogle0-debuginfo-0.3.1-2.4.1.x86_64.rpm openSUSE-2012-560 moderate openSUSE 12.2 Update xf86-video-nv was updated to version 2.1.20: + Make failure to XAA non-fatal + Fix for new vgahw ABI (bnc#770560) + Sun's copyrights now belong to Oracle + nv: port to new compat API. + nv: make XAA optional. + nv: add missing fbman includes. + remove duplicated includes xf86-video-nv-2.1.20-2.4.1.i586.rpm xf86-video-nv-2.1.20-2.4.1.src.rpm xf86-video-nv-debuginfo-2.1.20-2.4.1.i586.rpm xf86-video-nv-debugsource-2.1.20-2.4.1.i586.rpm xf86-video-nv-2.1.20-2.4.1.x86_64.rpm xf86-video-nv-debuginfo-2.1.20-2.4.1.x86_64.rpm xf86-video-nv-debugsource-2.1.20-2.4.1.x86_64.rpm openSUSE-2012-559 moderate openSUSE 12.2 Update xf86-video-intel - Update to version 2.20.3: Just a minor bugfix for gen4 chipsets (965gm, gm45 and friends) that crept into 2.20.2. As an added bonus, the pessimistic workaround for a GPU hang on gen4 has been relaxed and the shaders have been overhauled which should pave the way to eliminating the last of the uncommon CPU operations, along with immediately realising a small performance improvement. xf86-video-intel-2.20.3-1.8.1.i586.rpm xf86-video-intel-2.20.3-1.8.1.src.rpm xf86-video-intel-32bit-2.20.3-1.8.1.x86_64.rpm xf86-video-intel-debuginfo-2.20.3-1.8.1.i586.rpm xf86-video-intel-debuginfo-32bit-2.20.3-1.8.1.x86_64.rpm xf86-video-intel-debugsource-2.20.3-1.8.1.i586.rpm xf86-video-intel-2.20.3-1.8.1.x86_64.rpm xf86-video-intel-debuginfo-2.20.3-1.8.1.x86_64.rpm xf86-video-intel-debugsource-2.20.3-1.8.1.x86_64.rpm openSUSE-2012-544 low openSUSE 12.2 Update Update to pcp-3.6.5. + Fixes for security advisory CVE-2012-3418; (bnc#775009). + Workaround for security advisory CVE-2012-3419; (bnc#775010). + Fixes for security advisory CVE-2012-3420; (bnc#775011). + Fixes for security advisory CVE-2012-3421; (bnc#775013). libpcp-devel-3.6.5-9.9.1.i586.rpm libpcp-devel-debuginfo-3.6.5-9.9.1.i586.rpm libpcp3-3.6.5-9.9.1.i586.rpm libpcp3-debuginfo-3.6.5-9.9.1.i586.rpm pcp-3.6.5-9.9.1.i586.rpm pcp-3.6.5-9.9.1.src.rpm pcp-debuginfo-3.6.5-9.9.1.i586.rpm pcp-debugsource-3.6.5-9.9.1.i586.rpm pcp-import-iostat2pcp-3.6.5-9.9.1.i586.rpm pcp-import-mrtg2pcp-3.6.5-9.9.1.i586.rpm pcp-import-sar2pcp-3.6.5-9.9.1.i586.rpm pcp-import-sheet2pcp-3.6.5-9.9.1.i586.rpm perl-PCP-LogImport-3.6.5-9.9.1.i586.rpm perl-PCP-LogImport-debuginfo-3.6.5-9.9.1.i586.rpm perl-PCP-LogSummary-3.6.5-9.9.1.i586.rpm perl-PCP-MMV-3.6.5-9.9.1.i586.rpm perl-PCP-MMV-debuginfo-3.6.5-9.9.1.i586.rpm perl-PCP-PMDA-3.6.5-9.9.1.i586.rpm perl-PCP-PMDA-debuginfo-3.6.5-9.9.1.i586.rpm libpcp-devel-3.6.5-9.9.1.x86_64.rpm libpcp-devel-debuginfo-3.6.5-9.9.1.x86_64.rpm libpcp3-3.6.5-9.9.1.x86_64.rpm libpcp3-debuginfo-3.6.5-9.9.1.x86_64.rpm pcp-3.6.5-9.9.1.x86_64.rpm pcp-debuginfo-3.6.5-9.9.1.x86_64.rpm pcp-debugsource-3.6.5-9.9.1.x86_64.rpm pcp-import-iostat2pcp-3.6.5-9.9.1.x86_64.rpm pcp-import-mrtg2pcp-3.6.5-9.9.1.x86_64.rpm pcp-import-sar2pcp-3.6.5-9.9.1.x86_64.rpm pcp-import-sheet2pcp-3.6.5-9.9.1.x86_64.rpm perl-PCP-LogImport-3.6.5-9.9.1.x86_64.rpm perl-PCP-LogImport-debuginfo-3.6.5-9.9.1.x86_64.rpm perl-PCP-LogSummary-3.6.5-9.9.1.x86_64.rpm perl-PCP-MMV-3.6.5-9.9.1.x86_64.rpm perl-PCP-MMV-debuginfo-3.6.5-9.9.1.x86_64.rpm perl-PCP-PMDA-3.6.5-9.9.1.x86_64.rpm perl-PCP-PMDA-debuginfo-3.6.5-9.9.1.x86_64.rpm openSUSE-2012-540 moderate openSUSE 12.2 Update Wireshark was updated to 1.8.2: * The DCP ETSI dissector could trigger a zero division. (wnpa-sec-2012-13 CVE-2012-4285) * The MongoDB dissector could go into a large loop. (wnpa-sec-2012-14 CVE-2012-4287) * The XTP dissector could go into an infinite loop. (wnpa-sec-2012-15 CVE-2012-4288) * The ERF dissector could overflow a buffer. (wnpa-sec-2012-16 CVE-2012-4294 CVE-2012-4295) * The AFP dissector could go into a large loop. (wnpa-sec-2012-17 CVE-2012-4289) * The RTPS2 dissector could overflow a buffer. (wnpa-sec-2012-18 CVE-2012-4296) * The GSM RLC MAC dissector could overflow a buffer. (wnpa-sec-2012-19 CVE-2012-4297) * The CIP dissector could exhaust system memory. (wnpa-sec-2012-20 CVE-2012-4291) * The STUN dissector could crash. (wnpa-sec-2012-21 CVE-2012-4292) * The EtherCAT Mailbox dissector could abort. (wnpa-sec-2012-22 CVE-2012-4293) * The CTDB dissector could go into a large loop. (wnpa-sec-2012-23 CVE-2012-4290) * The pcap-ng file parser could trigger a zero division. (wnpa-sec-2012-24 CVE-2012-4286) * The Ixia IxVeriWave file parser could overflow a buffer. (wnpa-sec-2012-25 CVE-2012-4298) Further bug fixes and updated protocol support as listed in: http://www.wireshark.org/docs/relnotes/wireshark-1.8.2.html wireshark-1.8.2-1.3.1.i586.rpm wireshark-1.8.2-1.3.1.src.rpm wireshark-debuginfo-1.8.2-1.3.1.i586.rpm wireshark-debugsource-1.8.2-1.3.1.i586.rpm wireshark-devel-1.8.2-1.3.1.i586.rpm wireshark-1.8.2-1.3.1.x86_64.rpm wireshark-debuginfo-1.8.2-1.3.1.x86_64.rpm wireshark-debugsource-1.8.2-1.3.1.x86_64.rpm wireshark-devel-1.8.2-1.3.1.x86_64.rpm openSUSE-2012-561 low openSUSE 12.2 Update The PIT timer in KVM was running too fast, causing issues with some timer related code like e.g. the GRUB menu timeout. This update fixes it. kvm-1.1.1-1.4.2.i586.rpm kvm-1.1.1-1.4.2.src.rpm kvm-1.1.1-1.4.2.x86_64.rpm openSUSE-2012-537 low openSUSE 12.2 Update openttd was updated to 1.2.2 - many bugfixes including: Fix: In some cases ships could be covered with land [FS#5254] (CVE-2012-3436, bnc#775023) openttd-1.2.2-2.4.1.i586.rpm openttd-1.2.2-2.4.1.src.rpm openttd-data-1.2.2-2.4.1.noarch.rpm openttd-debuginfo-1.2.2-2.4.1.i586.rpm openttd-dedicated-1.2.2-2.4.1.i586.rpm openttd-dedicated-debuginfo-1.2.2-2.4.1.i586.rpm openttd-1.2.2-2.4.1.x86_64.rpm openttd-debuginfo-1.2.2-2.4.1.x86_64.rpm openttd-dedicated-1.2.2-2.4.1.x86_64.rpm openttd-dedicated-debuginfo-1.2.2-2.4.1.x86_64.rpm openSUSE-2012-555 low openSUSE 12.2 Update mcelog was updated to fix: - bnc#774226 mcelog + systemd: won't start without MCELOG_ADMIN_EMAIL set - fix uninitialized variable mail_setup mcelog-1.0pre3.6e4e2a000124-13.4.1.src.rpm mcelog-1.0pre3.6e4e2a000124-13.4.1.x86_64.rpm mcelog-debuginfo-1.0pre3.6e4e2a000124-13.4.1.x86_64.rpm mcelog-debugsource-1.0pre3.6e4e2a000124-13.4.1.x86_64.rpm openSUSE-2012-562 low openSUSE 12.2 Update Update to cifs-utils to the stable release 5.6. + -Werror has been removed by default from CFLAGS + PIE and RELRO are enabled by default at build time + better integration with systemd by allowing the use of /bin/systemd-ask-password if available + better checks and warnings from cifscreds when used in environments that do not have a session keyring - No longer initialize oldfsgid inside acquire_mountpoint() of mount.cifs.c as -Werror got removed. - mount.cifs: initialize oldfsgid to surpress a warning while building for RHEL 4 or CentOS 5. cifs-utils-5.6-2.5.1.i586.rpm cifs-utils-5.6-2.5.1.src.rpm cifs-utils-debuginfo-5.6-2.5.1.i586.rpm cifs-utils-debugsource-5.6-2.5.1.i586.rpm cifs-utils-5.6-2.5.1.x86_64.rpm cifs-utils-debuginfo-5.6-2.5.1.x86_64.rpm cifs-utils-debugsource-5.6-2.5.1.x86_64.rpm openSUSE-2012-563 low openSUSE 12.2 Update tdb received some bug and stability fixes: - Ignore tdb run transaction expand check on ppc as well; (bnc#769268). - Build and link binaries with PIE flags. libtdb-devel-1.2.10-2.6.1.i586.rpm libtdb1-1.2.10-2.6.1.i586.rpm libtdb1-32bit-1.2.10-2.6.1.x86_64.rpm libtdb1-debuginfo-1.2.10-2.6.1.i586.rpm libtdb1-debuginfo-32bit-1.2.10-2.6.1.x86_64.rpm python-tdb-1.2.10-2.6.1.i586.rpm python-tdb-debuginfo-1.2.10-2.6.1.i586.rpm tdb-1.2.10-2.6.1.src.rpm tdb-debugsource-1.2.10-2.6.1.i586.rpm tdb-tools-1.2.10-2.6.1.i586.rpm tdb-tools-debuginfo-1.2.10-2.6.1.i586.rpm libtdb-devel-1.2.10-2.6.1.x86_64.rpm libtdb1-1.2.10-2.6.1.x86_64.rpm libtdb1-debuginfo-1.2.10-2.6.1.x86_64.rpm python-tdb-1.2.10-2.6.1.x86_64.rpm python-tdb-debuginfo-1.2.10-2.6.1.x86_64.rpm tdb-debugsource-1.2.10-2.6.1.x86_64.rpm tdb-tools-1.2.10-2.6.1.x86_64.rpm tdb-tools-debuginfo-1.2.10-2.6.1.x86_64.rpm openSUSE-2012-539 low openSUSE 12.2 Update The nut upsd is prone to multiple flaws that allow remote attackers to cause a denial of service (application crash) by sending unexpected data. libupsclient1-2.6.3-2.4.3.i586.rpm libupsclient1-debuginfo-2.6.3-2.4.3.i586.rpm nut-2.6.3-2.4.3.i586.rpm nut-2.6.3-2.4.3.src.rpm nut-cgi-2.6.3-2.4.3.i586.rpm nut-cgi-debuginfo-2.6.3-2.4.3.i586.rpm nut-debuginfo-2.6.3-2.4.3.i586.rpm nut-debugsource-2.6.3-2.4.3.i586.rpm nut-devel-2.6.3-2.4.3.i586.rpm nut-drivers-net-2.6.3-2.4.3.i586.rpm nut-drivers-net-debuginfo-2.6.3-2.4.3.i586.rpm libupsclient1-2.6.3-2.4.3.x86_64.rpm libupsclient1-debuginfo-2.6.3-2.4.3.x86_64.rpm nut-2.6.3-2.4.3.x86_64.rpm nut-cgi-2.6.3-2.4.3.x86_64.rpm nut-cgi-debuginfo-2.6.3-2.4.3.x86_64.rpm nut-debuginfo-2.6.3-2.4.3.x86_64.rpm nut-debugsource-2.6.3-2.4.3.x86_64.rpm nut-devel-2.6.3-2.4.3.x86_64.rpm nut-drivers-net-2.6.3-2.4.3.x86_64.rpm nut-drivers-net-debuginfo-2.6.3-2.4.3.x86_64.rpm openSUSE-2012-557 low openSUSE 12.2 Update This update fixes the following issues for mdadm: - Fix various issues will installation on IMSM RAID arrays, booting from those arrays, and clean shutdown when such an array is used for '/'. (bnc#752107 bnc#732294 bnc#770351) mdadm-3.2.5-3.7.1.i586.rpm mdadm-3.2.5-3.7.1.src.rpm mdadm-debuginfo-3.2.5-3.7.1.i586.rpm mdadm-debugsource-3.2.5-3.7.1.i586.rpm mdadm-3.2.5-3.7.1.x86_64.rpm mdadm-debuginfo-3.2.5-3.7.1.x86_64.rpm mdadm-debugsource-3.2.5-3.7.1.x86_64.rpm openSUSE-2012-558 low openSUSE 12.2 Update This update fixes the following issues for ristretto: - update to version 0.6.3 - use thumbnail as appicon - update the first image in the image-list when receiving a ready-signal which is required to show the thumbnail once it's generated - update to version 0.6.2 - fix a crash when configuring the 'limit-quality' property - translation updates ristretto-0.6.3-2.4.1.i586.rpm ristretto-0.6.3-2.4.1.src.rpm ristretto-debuginfo-0.6.3-2.4.1.i586.rpm ristretto-debugsource-0.6.3-2.4.1.i586.rpm ristretto-lang-0.6.3-2.4.1.noarch.rpm ristretto-0.6.3-2.4.1.x86_64.rpm ristretto-debuginfo-0.6.3-2.4.1.x86_64.rpm ristretto-debugsource-0.6.3-2.4.1.x86_64.rpm openSUSE-2012-545 low openSUSE 12.2 Update This update fixes the following issue for xfce4-panel-plugin-battery: - update to version 1.0.5 (this introduces compatibility with xfce 4.10) - better compliance with the panel plugin HIG - don't set labels orientation on 4.8 panels - set progressbar orientation in setup_battmon xfce4-panel-plugin-battery-1.0.5-2.4.1.i586.rpm xfce4-panel-plugin-battery-1.0.5-2.4.1.src.rpm xfce4-panel-plugin-battery-debuginfo-1.0.5-2.4.1.i586.rpm xfce4-panel-plugin-battery-debugsource-1.0.5-2.4.1.i586.rpm xfce4-panel-plugin-battery-lang-1.0.5-2.4.1.noarch.rpm xfce4-panel-plugin-battery-1.0.5-2.4.1.x86_64.rpm xfce4-panel-plugin-battery-debuginfo-1.0.5-2.4.1.x86_64.rpm xfce4-panel-plugin-battery-debugsource-1.0.5-2.4.1.x86_64.rpm openSUSE-2012-546 low openSUSE 12.2 Update This update fixes the following issues for xfwm4: - bxo#8949: add xfwm4-implement-net_wm_moveresize_cancel-message.patch in order to implement NET_WM_MOVERESIZE_CANCEL message as gtk+-3.4 now uses it - bxo#9108: add xfwm4-fix-crash-in-settings-dialog.patch in order to fix a crash in settings dialog with wrong title alignment value - bxo#8827: add xfwm4-fix-bug-in-workspace-deletion.patch which reverts part of git commit 8637c3a as this breaks deletetion of current workspace xfwm4-4.10.0-2.4.1.i586.rpm xfwm4-4.10.0-2.4.1.src.rpm xfwm4-branding-upstream-4.10.0-2.4.1.noarch.rpm xfwm4-debuginfo-4.10.0-2.4.1.i586.rpm xfwm4-debugsource-4.10.0-2.4.1.i586.rpm xfwm4-lang-4.10.0-2.4.1.noarch.rpm xfwm4-4.10.0-2.4.1.x86_64.rpm xfwm4-debuginfo-4.10.0-2.4.1.x86_64.rpm xfwm4-debugsource-4.10.0-2.4.1.x86_64.rpm openSUSE-2012-547 low openSUSE 12.2 Update This update fixes the following issues for xfce4-panel-plugin-fsguard: - update to version 1.0.1 (this introduces compatibility with xfce 4.10) - better compliance with panel plugin HIG - fix look on transparent/colored panels - added compatibility with xfce4-panel v.4.9.0+ - fix config loading - port to libxfce4ui - build the plugin as a module - dropped obsolete xfce4-fsguard-plugin-fix-config-loading.patch xfce4-panel-plugin-fsguard-1.0.1-11.4.1.i586.rpm xfce4-panel-plugin-fsguard-1.0.1-11.4.1.src.rpm xfce4-panel-plugin-fsguard-debuginfo-1.0.1-11.4.1.i586.rpm xfce4-panel-plugin-fsguard-debugsource-1.0.1-11.4.1.i586.rpm xfce4-panel-plugin-fsguard-lang-1.0.1-11.4.1.noarch.rpm xfce4-panel-plugin-fsguard-1.0.1-11.4.1.x86_64.rpm xfce4-panel-plugin-fsguard-debuginfo-1.0.1-11.4.1.x86_64.rpm xfce4-panel-plugin-fsguard-debugsource-1.0.1-11.4.1.x86_64.rpm openSUSE-2012-548 low openSUSE 12.2 Update This update fixes the following issues for xfce4-panel-plugin-systemload: - update to version 1.1.1 (this introduces compatibility with xfce 4.10) - simplify tooltip handling code - better compliance with panel plugin HIG - only set label angle with panel > 4.9 - set plugin to small in all modes except deskbar modes - facilitate bringing up the configuration dialog - fix background transparency by setting the main evbox hidden - changing uptime label orientation in the vertical mode - compatibility with panel 4.9+ xfce4-panel-plugin-systemload-1.1.1-2.4.1.i586.rpm xfce4-panel-plugin-systemload-1.1.1-2.4.1.src.rpm xfce4-panel-plugin-systemload-debuginfo-1.1.1-2.4.1.i586.rpm xfce4-panel-plugin-systemload-debugsource-1.1.1-2.4.1.i586.rpm xfce4-panel-plugin-systemload-lang-1.1.1-2.4.1.noarch.rpm xfce4-panel-plugin-systemload-1.1.1-2.4.1.x86_64.rpm xfce4-panel-plugin-systemload-debuginfo-1.1.1-2.4.1.x86_64.rpm xfce4-panel-plugin-systemload-debugsource-1.1.1-2.4.1.x86_64.rpm openSUSE_Maintenance_804 low openSUSE 12.2 Update This update fixes the following issues for xfce4-panel-plugin-wavelan: - update to version 0.5.11 (this introduces compatibility with xfce 4.10) - better compliance with panel plugin HIG - fix transparency and put event box above its children xfce4-panel-plugin-wavelan-0.5.11-3.4.1.i586.rpm xfce4-panel-plugin-wavelan-0.5.11-3.4.1.src.rpm xfce4-panel-plugin-wavelan-debuginfo-0.5.11-3.4.1.i586.rpm xfce4-panel-plugin-wavelan-debugsource-0.5.11-3.4.1.i586.rpm xfce4-panel-plugin-wavelan-lang-0.5.11-3.4.1.noarch.rpm xfce4-panel-plugin-wavelan-0.5.11-3.4.1.x86_64.rpm xfce4-panel-plugin-wavelan-debuginfo-0.5.11-3.4.1.x86_64.rpm xfce4-panel-plugin-wavelan-debugsource-0.5.11-3.4.1.x86_64.rpm openSUSE-2012-549 low openSUSE 12.2 Update Make valgrind support and work with gcc 4.8 and glibc 2.16. valgrind-3.7.0-10.4.1.i586.rpm valgrind-3.7.0-10.4.1.src.rpm valgrind-debuginfo-3.7.0-10.4.1.i586.rpm valgrind-debugsource-3.7.0-10.4.1.i586.rpm valgrind-devel-3.7.0-10.4.1.i586.rpm valgrind-3.7.0-10.4.1.x86_64.rpm valgrind-debuginfo-3.7.0-10.4.1.x86_64.rpm valgrind-debugsource-3.7.0-10.4.1.x86_64.rpm valgrind-devel-3.7.0-10.4.1.x86_64.rpm openSUSE-2012-550 low openSUSE 12.2 Update Updated lens data for Sigma, Tamron, Nikon, Canon, Tokina. - Add pending lens data update for Canon and Samsung. lensfun-0.2.5-28.6.1.src.rpm lensfun-data-0.2.5-28.6.1.noarch.rpm lensfun-debugsource-0.2.5-28.6.1.i586.rpm lensfun-devel-0.2.5-28.6.1.i586.rpm lensfun-doc-0.2.5-28.6.1.i586.rpm liblensfun0-0.2.5-28.6.1.i586.rpm liblensfun0-debuginfo-0.2.5-28.6.1.i586.rpm lensfun-debugsource-0.2.5-28.6.1.x86_64.rpm lensfun-devel-0.2.5-28.6.1.x86_64.rpm lensfun-doc-0.2.5-28.6.1.x86_64.rpm liblensfun0-0.2.5-28.6.1.x86_64.rpm liblensfun0-debuginfo-0.2.5-28.6.1.x86_64.rpm openSUSE-2012-535 moderate openSUSE 12.2 Update phpMyAdmin was updated to 3.5.2.2 - fix for bnc#776698, bnc#776701 phpMyAdmin-3.5.2.2-1.4.1.noarch.rpm phpMyAdmin-3.5.2.2-1.4.1.src.rpm openSUSE-2012-541 moderate openSUSE 12.2 Update Tor 0.2.2.38 fixes a rare race condition that can crash exit relays; fixes a remotely triggerable crash bug; and fixes a timing attack that could in theory leak path information. tor-0.2.2.38-3.4.1.i586.rpm tor-0.2.2.38-3.4.1.src.rpm tor-debuginfo-0.2.2.38-3.4.1.i586.rpm tor-debugsource-0.2.2.38-3.4.1.i586.rpm tor-0.2.2.38-3.4.1.x86_64.rpm tor-debuginfo-0.2.2.38-3.4.1.x86_64.rpm tor-debugsource-0.2.2.38-3.4.1.x86_64.rpm openSUSE-2012-552 low openSUSE 12.2 Update The kernel-firmware package was fixed to also package the license files and other documentation. kernel-firmware-20120719git-2.9.1.noarch.rpm kernel-firmware-20120719git-2.9.1.src.rpm openSUSE-2012-564 moderate openSUSE 12.2 Update A security issue in otrs was fixed: * OSA-2012-1, http://otrs.org/advisory/ otrs-3.1.9-20.4.1.noarch.rpm otrs-3.1.9-20.4.1.src.rpm otrs-doc-3.1.9-20.4.1.noarch.rpm otrs-itsm-3.1.6-20.4.1.noarch.rpm openSUSE-2012-551 low openSUSE 12.2 Update ModemManager was fixed to: - fix calls to pppd when using the qmi_wwan. Fix bnc#776520. ModemManager-0.5.2.0-2.4.1.i586.rpm ModemManager-0.5.2.0-2.4.1.src.rpm ModemManager-debuginfo-0.5.2.0-2.4.1.i586.rpm ModemManager-debugsource-0.5.2.0-2.4.1.i586.rpm ModemManager-devel-0.5.2.0-2.4.1.i586.rpm ModemManager-0.5.2.0-2.4.1.x86_64.rpm ModemManager-debuginfo-0.5.2.0-2.4.1.x86_64.rpm ModemManager-debugsource-0.5.2.0-2.4.1.x86_64.rpm ModemManager-devel-0.5.2.0-2.4.1.x86_64.rpm openSUSE-2012-553 low openSUSE 12.2 Update fix a memory leak in the cairo drawing code in the gtk-xfce-engine. gtk-xfce-engine-3.0.0-2.4.1.i586.rpm gtk-xfce-engine-3.0.0-2.4.1.src.rpm gtk-xfce-engine-32bit-3.0.0-2.4.1.x86_64.rpm gtk-xfce-engine-debuginfo-3.0.0-2.4.1.i586.rpm gtk-xfce-engine-debuginfo-32bit-3.0.0-2.4.1.x86_64.rpm gtk-xfce-engine-debugsource-3.0.0-2.4.1.i586.rpm gtk-xfce-engine-3.0.0-2.4.1.x86_64.rpm gtk-xfce-engine-debuginfo-3.0.0-2.4.1.x86_64.rpm gtk-xfce-engine-debugsource-3.0.0-2.4.1.x86_64.rpm openSUSE-2012-538 critical openSUSE 12.2 Update Mozilla Firefox, Thunderbird, xulrunner, seamonkey 15.0 update (bnc#777588) * MFSA 2012-57/CVE-2012-1970 Miscellaneous memory safety hazards * MFSA 2012-58/CVE-2012-1972/CVE-2012-1973/CVE-2012-1974/CVE-2012-1975 CVE-2012-1976/CVE-2012-3956/CVE-2012-3957/CVE-2012-3958/CVE-2012-3959 CVE-2012-3960/CVE-2012-3961/CVE-2012-3962/CVE-2012-3963/CVE-2012-3964 Use-after-free issues found using Address Sanitizer * MFSA 2012-59/CVE-2012-1956 (bmo#756719) Location object can be shadowed using Object.defineProperty * MFSA 2012-60/CVE-2012-3965 (bmo#769108) Escalation of privilege through about:newtab * MFSA 2012-61/CVE-2012-3966 (bmo#775794, bmo#775793) Memory corruption with bitmap format images with negative height * MFSA 2012-62/CVE-2012-3967/CVE-2012-3968 WebGL use-after-free and memory corruption * MFSA 2012-63/CVE-2012-3969/CVE-2012-3970 SVG buffer overflow and use-after-free issues * MFSA 2012-64/CVE-2012-3971 Graphite 2 memory corruption * MFSA 2012-65/CVE-2012-3972 (bmo#746855) Out-of-bounds read in format-number in XSLT * MFSA 2012-66/CVE-2012-3973 (bmo#757128) HTTPMonitor extension allows for remote debugging without explicit activation * MFSA 2012-68/CVE-2012-3975 (bmo#770684) DOMParser loads linked resources in extensions when parsing text/html * MFSA 2012-69/CVE-2012-3976 (bmo#768568) Incorrect site SSL certificate data display * MFSA 2012-70/CVE-2012-3978 (bmo#770429) Location object security checks bypassed by chrome code * MFSA 2012-72/CVE-2012-3980 (bmo#771859) Web console eval capable of executing chrome-privileged code - fix HTML5 video crash with GStreamer enabled (bmo#761030) - GStreamer is only used for MP4 (no WebM, OGG) - updated filelist - moved browser specific preferences to correct location MozillaFirefox-15.0-2.7.1.i586.rpm MozillaFirefox-15.0-2.7.1.src.rpm MozillaFirefox-branding-upstream-15.0-2.7.1.i586.rpm MozillaFirefox-buildsymbols-15.0-2.7.1.i586.rpm MozillaFirefox-debuginfo-15.0-2.7.1.i586.rpm MozillaFirefox-debugsource-15.0-2.7.1.i586.rpm MozillaFirefox-devel-15.0-2.7.1.i586.rpm MozillaFirefox-translations-common-15.0-2.7.1.i586.rpm MozillaFirefox-translations-other-15.0-2.7.1.i586.rpm MozillaThunderbird-15.0-49.9.1.i586.rpm MozillaThunderbird-15.0-49.9.1.src.rpm MozillaThunderbird-buildsymbols-15.0-49.9.1.i586.rpm MozillaThunderbird-debuginfo-15.0-49.9.1.i586.rpm MozillaThunderbird-debugsource-15.0-49.9.1.i586.rpm MozillaThunderbird-devel-15.0-49.9.1.i586.rpm MozillaThunderbird-devel-debuginfo-15.0-49.9.1.i586.rpm MozillaThunderbird-translations-common-15.0-49.9.1.i586.rpm MozillaThunderbird-translations-other-15.0-49.9.1.i586.rpm enigmail-1.4.4+15.0-49.9.1.i586.rpm enigmail-debuginfo-1.4.4+15.0-49.9.1.i586.rpm libfreebl3-3.13.6-2.7.1.i586.rpm libfreebl3-32bit-3.13.6-2.7.1.x86_64.rpm libfreebl3-debuginfo-3.13.6-2.7.1.i586.rpm libfreebl3-debuginfo-32bit-3.13.6-2.7.1.x86_64.rpm libsoftokn3-3.13.6-2.7.1.i586.rpm libsoftokn3-32bit-3.13.6-2.7.1.x86_64.rpm libsoftokn3-debuginfo-3.13.6-2.7.1.i586.rpm libsoftokn3-debuginfo-32bit-3.13.6-2.7.1.x86_64.rpm mozilla-nss-3.13.6-2.7.1.i586.rpm mozilla-nss-3.13.6-2.7.1.src.rpm mozilla-nss-32bit-3.13.6-2.7.1.x86_64.rpm mozilla-nss-certs-3.13.6-2.7.1.i586.rpm mozilla-nss-certs-32bit-3.13.6-2.7.1.x86_64.rpm mozilla-nss-certs-debuginfo-3.13.6-2.7.1.i586.rpm mozilla-nss-certs-debuginfo-32bit-3.13.6-2.7.1.x86_64.rpm mozilla-nss-debuginfo-3.13.6-2.7.1.i586.rpm mozilla-nss-debuginfo-32bit-3.13.6-2.7.1.x86_64.rpm mozilla-nss-debugsource-3.13.6-2.7.1.i586.rpm mozilla-nss-devel-3.13.6-2.7.1.i586.rpm mozilla-nss-sysinit-3.13.6-2.7.1.i586.rpm mozilla-nss-sysinit-32bit-3.13.6-2.7.1.x86_64.rpm mozilla-nss-sysinit-debuginfo-3.13.6-2.7.1.i586.rpm mozilla-nss-sysinit-debuginfo-32bit-3.13.6-2.7.1.x86_64.rpm mozilla-nss-tools-3.13.6-2.7.1.i586.rpm mozilla-nss-tools-debuginfo-3.13.6-2.7.1.i586.rpm seamonkey-2.12-2.8.1.i586.rpm seamonkey-2.12-2.8.1.src.rpm seamonkey-debuginfo-2.12-2.8.1.i586.rpm seamonkey-debugsource-2.12-2.8.1.i586.rpm seamonkey-dom-inspector-2.12-2.8.1.i586.rpm seamonkey-irc-2.12-2.8.1.i586.rpm seamonkey-translations-common-2.12-2.8.1.i586.rpm seamonkey-translations-other-2.12-2.8.1.i586.rpm seamonkey-venkman-2.12-2.8.1.i586.rpm mozilla-js-15.0-2.8.1.i586.rpm mozilla-js-32bit-15.0-2.8.1.x86_64.rpm mozilla-js-debuginfo-15.0-2.8.1.i586.rpm mozilla-js-debuginfo-32bit-15.0-2.8.1.x86_64.rpm xulrunner-15.0-2.8.1.i586.rpm xulrunner-15.0-2.8.1.src.rpm xulrunner-32bit-15.0-2.8.1.x86_64.rpm xulrunner-buildsymbols-15.0-2.8.1.i586.rpm xulrunner-debuginfo-15.0-2.8.1.i586.rpm xulrunner-debuginfo-32bit-15.0-2.8.1.x86_64.rpm xulrunner-debugsource-15.0-2.8.1.i586.rpm xulrunner-devel-15.0-2.8.1.i586.rpm xulrunner-devel-debuginfo-15.0-2.8.1.i586.rpm MozillaFirefox-15.0-2.7.1.x86_64.rpm MozillaFirefox-branding-upstream-15.0-2.7.1.x86_64.rpm MozillaFirefox-buildsymbols-15.0-2.7.1.x86_64.rpm MozillaFirefox-debuginfo-15.0-2.7.1.x86_64.rpm MozillaFirefox-debugsource-15.0-2.7.1.x86_64.rpm MozillaFirefox-devel-15.0-2.7.1.x86_64.rpm MozillaFirefox-translations-common-15.0-2.7.1.x86_64.rpm MozillaFirefox-translations-other-15.0-2.7.1.x86_64.rpm MozillaThunderbird-15.0-49.9.1.x86_64.rpm MozillaThunderbird-buildsymbols-15.0-49.9.1.x86_64.rpm MozillaThunderbird-debuginfo-15.0-49.9.1.x86_64.rpm MozillaThunderbird-debugsource-15.0-49.9.1.x86_64.rpm MozillaThunderbird-devel-15.0-49.9.1.x86_64.rpm MozillaThunderbird-devel-debuginfo-15.0-49.9.1.x86_64.rpm MozillaThunderbird-translations-common-15.0-49.9.1.x86_64.rpm MozillaThunderbird-translations-other-15.0-49.9.1.x86_64.rpm enigmail-1.4.4+15.0-49.9.1.x86_64.rpm enigmail-debuginfo-1.4.4+15.0-49.9.1.x86_64.rpm libfreebl3-3.13.6-2.7.1.x86_64.rpm libfreebl3-debuginfo-3.13.6-2.7.1.x86_64.rpm libsoftokn3-3.13.6-2.7.1.x86_64.rpm libsoftokn3-debuginfo-3.13.6-2.7.1.x86_64.rpm mozilla-nss-3.13.6-2.7.1.x86_64.rpm mozilla-nss-certs-3.13.6-2.7.1.x86_64.rpm mozilla-nss-certs-debuginfo-3.13.6-2.7.1.x86_64.rpm mozilla-nss-debuginfo-3.13.6-2.7.1.x86_64.rpm mozilla-nss-debugsource-3.13.6-2.7.1.x86_64.rpm mozilla-nss-devel-3.13.6-2.7.1.x86_64.rpm mozilla-nss-sysinit-3.13.6-2.7.1.x86_64.rpm mozilla-nss-sysinit-debuginfo-3.13.6-2.7.1.x86_64.rpm mozilla-nss-tools-3.13.6-2.7.1.x86_64.rpm mozilla-nss-tools-debuginfo-3.13.6-2.7.1.x86_64.rpm seamonkey-2.12-2.8.1.x86_64.rpm seamonkey-debuginfo-2.12-2.8.1.x86_64.rpm seamonkey-debugsource-2.12-2.8.1.x86_64.rpm seamonkey-dom-inspector-2.12-2.8.1.x86_64.rpm seamonkey-irc-2.12-2.8.1.x86_64.rpm seamonkey-translations-common-2.12-2.8.1.x86_64.rpm seamonkey-translations-other-2.12-2.8.1.x86_64.rpm seamonkey-venkman-2.12-2.8.1.x86_64.rpm mozilla-js-15.0-2.8.1.x86_64.rpm mozilla-js-debuginfo-15.0-2.8.1.x86_64.rpm xulrunner-15.0-2.8.1.x86_64.rpm xulrunner-buildsymbols-15.0-2.8.1.x86_64.rpm xulrunner-debuginfo-15.0-2.8.1.x86_64.rpm xulrunner-debugsource-15.0-2.8.1.x86_64.rpm xulrunner-devel-15.0-2.8.1.x86_64.rpm xulrunner-devel-debuginfo-15.0-2.8.1.x86_64.rpm