openSUSE-2017-1039 moderate openSUSE Leap 42.3 Update This update for mkvtoolnix to version 14.0.0 fixes the following issues: - support chapters in WebM - UI updates and translations updates - improved and extended format and container support - many bug fixes, included fixes for crashes mkvtoolnix-14.0.0-5.1.src.rpm mkvtoolnix-14.0.0-5.1.x86_64.rpm mkvtoolnix-debuginfo-14.0.0-5.1.x86_64.rpm mkvtoolnix-debugsource-14.0.0-5.1.x86_64.rpm mkvtoolnix-gui-14.0.0-5.1.x86_64.rpm mkvtoolnix-gui-debuginfo-14.0.0-5.1.x86_64.rpm openSUSE-2017-1025 moderate openSUSE Leap 42.3 Update This update for openconnect fixes the following issues: - openconnect would fail to connect to a Junos Pulse gateway (bsc#1056389) This update to version 7.08 also contains the following improvements and fixes: - Various cryptography related improvements and fixed - Improved support for Cisco DTLS, Pulse Secure 8.2R5, OpenVPN, Juniper VPN openconnect-7.08-7.1.src.rpm openconnect-7.08-7.1.x86_64.rpm openconnect-debuginfo-7.08-7.1.x86_64.rpm openconnect-debugsource-7.08-7.1.x86_64.rpm openconnect-devel-7.08-7.1.x86_64.rpm openconnect-doc-7.08-7.1.x86_64.rpm openconnect-lang-7.08-7.1.noarch.rpm openSUSE-2017-1040 moderate openSUSE Leap 42.3 Update This update for shorewall fixes the following issues: - shorewall.conf could contain invalid keywords - dropBcast and dropBcasts are now supported boo#1053650 The following upstream changes are included: - Fix for BASIC_FILTERS=Yes and tcfilters - Fix USER/GROUP messages - Fix port number 0 or > 65535 perl execption The following tracked packaging changes are included: - Make build reproducible boo#1047218 shorewall-5.1.5.2-3.1.noarch.rpm shorewall-5.1.5.2-3.1.src.rpm shorewall-core-5.1.5.2-3.1.noarch.rpm shorewall-docs-5.1.5.2-3.1.noarch.rpm shorewall-init-5.1.5.2-3.1.noarch.rpm shorewall-lite-5.1.5.2-3.1.noarch.rpm shorewall6-5.1.5.2-3.1.noarch.rpm shorewall6-lite-5.1.5.2-3.1.noarch.rpm openSUSE-2017-1041 moderate openSUSE Leap 42.3 Update This update for fetchmsttfonts contains the following fixes: - fetchmsttfonts now uses sf.net automatic mirror selection (boo#1057119) - The cryptographic checksums of the downloaded fonts are now verified (boo#958651) fetchmsttfonts-11.4-23.1.noarch.rpm fetchmsttfonts-11.4-23.1.src.rpm openSUSE-2017-1050 low openSUSE Leap 42.3 Update This update for pullin-bcm43xx-firmware fixes the following issues: - systemd would raise a warning due to the service file being executable (boo#1053657) pullin-bcm43xx-firmware-1.0-9.1.noarch.rpm pullin-bcm43xx-firmware-1.0-9.1.src.rpm openSUSE-2017-1051 moderate openSUSE Leap 42.3 Update This update for avrdude contains the following fixes: - limit avrdude to USB by dropping parport from 50-avrdude.rules (boo#994883, boo#1049593) avrdude-6.1-8.1.src.rpm avrdude-6.1-8.1.x86_64.rpm avrdude-debuginfo-6.1-8.1.x86_64.rpm avrdude-debugsource-6.1-8.1.x86_64.rpm openSUSE-2017-1052 low openSUSE Leap 42.3 Update This update for iproute2 provides the following fixes: - Fix command line parser in routel command preventing it from entering in an infinite loop. (bsc#1034855) - Do not truncate the output of 'ip addr' on systems with a large number of VFs. (bsc#1045399, bsc#1056261) - Clarify the meaning of "priority" in ip-rule(8) and ip-route(8) manual pages. (bsc#990635) iproute2-doc-4.4-6.1.noarch.rpm iproute2-doc-4.4-6.1.src.rpm iproute2-4.4-6.1.i586.rpm iproute2-4.4-6.1.src.rpm iproute2-debuginfo-4.4-6.1.i586.rpm iproute2-debugsource-4.4-6.1.i586.rpm libnetlink-devel-4.4-6.1.i586.rpm iproute2-4.4-6.1.x86_64.rpm iproute2-debuginfo-4.4-6.1.x86_64.rpm iproute2-debugsource-4.4-6.1.x86_64.rpm libnetlink-devel-4.4-6.1.x86_64.rpm openSUSE-2017-1077 moderate openSUSE Leap 42.3 Update This update for gnustep-base fixes the following issues: - gnustep-base would run dhnc unconditionally (boo#1055816) - GNUstep did not require gnustep-make as a run-time dependency (boo#1034091) gnustep-base-1.25.0-3.1.src.rpm gnustep-base-1.25.0-3.1.x86_64.rpm gnustep-base-debuginfo-1.25.0-3.1.x86_64.rpm gnustep-base-debugsource-1.25.0-3.1.x86_64.rpm gnustep-base-devel-1.25.0-3.1.x86_64.rpm openSUSE-2017-1087 low openSUSE Leap 42.3 Update This update for squidview fixes the following issues: - HOWTO link would be created incorrectly (boo#1057981) In addition squidview was updated to 0.86 with a number of upstream fixes and improvements: - add support for a number of squid result codes squidview-0.86-8.1.i586.rpm squidview-0.86-8.1.src.rpm squidview-debuginfo-0.86-8.1.i586.rpm squidview-debugsource-0.86-8.1.i586.rpm squidview-0.86-8.1.x86_64.rpm squidview-debuginfo-0.86-8.1.x86_64.rpm squidview-debugsource-0.86-8.1.x86_64.rpm openSUSE-2017-1088 moderate openSUSE Leap 42.3 Update This update for plasma5-pk-updates fixes the following issues: - The applet would not notify when an installed update required a reboot (boo#951580) plasma5-pk-updates-0.2-11.1.i586.rpm plasma5-pk-updates-0.2-11.1.src.rpm plasma5-pk-updates-debuginfo-0.2-11.1.i586.rpm plasma5-pk-updates-debugsource-0.2-11.1.i586.rpm plasma5-pk-updates-lang-0.2-11.1.noarch.rpm plasma5-pk-updates-0.2-11.1.x86_64.rpm plasma5-pk-updates-debuginfo-0.2-11.1.x86_64.rpm plasma5-pk-updates-debugsource-0.2-11.1.x86_64.rpm openSUSE-2017-1093 moderate openSUSE Leap 42.3 Update This update for bitlbee-facebook contains the following fixes: - Fix connection errors with Facebook - various fixes for chat and messaging functions bitlbee-facebook-1.1.2-5.1.src.rpm bitlbee-facebook-1.1.2-5.1.x86_64.rpm bitlbee-facebook-debuginfo-1.1.2-5.1.x86_64.rpm bitlbee-facebook-debugsource-1.1.2-5.1.x86_64.rpm openSUSE-2017-1137 moderate openSUSE Leap 42.3 Update This update for kmail fixes the following issues: * boo#1053540, boo#1013687: index-related functionality did not work out of the box - recommend akonadi-search * boo#1054205: corrupted indexes and cashes when using local filtering of mail kmail-17.04.2-3.1.src.rpm kmail-17.04.2-3.1.x86_64.rpm kmail-application-icons-17.04.2-3.1.x86_64.rpm kmail-debuginfo-17.04.2-3.1.x86_64.rpm kmail-debugsource-17.04.2-3.1.x86_64.rpm kmail-lang-17.04.2-3.1.noarch.rpm ktnef-17.04.2-3.1.x86_64.rpm ktnef-debuginfo-17.04.2-3.1.x86_64.rpm openSUSE-2017-1176 moderate openSUSE Leap 42.3 Update This update for bluez fixes the following vulnerabilities: * CVE-2016-7837: Buffer overflow in parse_line function (bsc#1026652) * CVE-2017-1000250: information disclosure vulnerability in service_search_attr_req (bsc#1057342) bluez-5.41-6.1.i586.rpm bluez-5.41-6.1.src.rpm bluez-cups-5.41-6.1.i586.rpm bluez-cups-debuginfo-5.41-6.1.i586.rpm bluez-debuginfo-5.41-6.1.i586.rpm bluez-debugsource-5.41-6.1.i586.rpm bluez-devel-32bit-5.41-6.1.x86_64.rpm bluez-devel-5.41-6.1.i586.rpm bluez-test-5.41-6.1.i586.rpm bluez-test-debuginfo-5.41-6.1.i586.rpm libbluetooth3-32bit-5.41-6.1.x86_64.rpm libbluetooth3-5.41-6.1.i586.rpm libbluetooth3-debuginfo-32bit-5.41-6.1.x86_64.rpm libbluetooth3-debuginfo-5.41-6.1.i586.rpm bluez-5.41-6.1.x86_64.rpm bluez-cups-5.41-6.1.x86_64.rpm bluez-cups-debuginfo-5.41-6.1.x86_64.rpm bluez-debuginfo-5.41-6.1.x86_64.rpm bluez-debugsource-5.41-6.1.x86_64.rpm bluez-devel-5.41-6.1.x86_64.rpm bluez-test-5.41-6.1.x86_64.rpm bluez-test-debuginfo-5.41-6.1.x86_64.rpm libbluetooth3-5.41-6.1.x86_64.rpm libbluetooth3-debuginfo-5.41-6.1.x86_64.rpm openSUSE-2017-1165 moderate openSUSE Leap 42.3 Update This update adds libtxc_dxtn to the distribution. libtxc_dxtn is an S3TC implementation for mesa with full S3TC compression and decompression support. libtxc_dxtn-1.0.1-3.1.i586.rpm libtxc_dxtn-1.0.1-3.1.src.rpm libtxc_dxtn-32bit-1.0.1-3.1.x86_64.rpm libtxc_dxtn-debuginfo-1.0.1-3.1.i586.rpm libtxc_dxtn-debuginfo-32bit-1.0.1-3.1.x86_64.rpm libtxc_dxtn-debugsource-1.0.1-3.1.i586.rpm libtxc_dxtn-devel-1.0.1-3.1.i586.rpm libtxc_dxtn-1.0.1-3.1.x86_64.rpm libtxc_dxtn-debuginfo-1.0.1-3.1.x86_64.rpm libtxc_dxtn-debugsource-1.0.1-3.1.x86_64.rpm libtxc_dxtn-devel-1.0.1-3.1.x86_64.rpm openSUSE-2017-1178 moderate openSUSE Leap 42.3 Update This update for python3-PyJWT fixes the following vulnerabilty: * CVE-2017-11424: Insufficient filtering of PEM encoding public keys allowed for creation of JWTs from scratch (boo#1054106, with duplicate CVE-2017-12880) python3-PyJWT-1.4.2-3.1.noarch.rpm python3-PyJWT-1.4.2-3.1.src.rpm openSUSE-2017-1170 moderate openSUSE Leap 42.3 Update This update contains python-blinker 1.4. The package is a dependency of cloud-init. This updates the package to the version used in SLE, and it will inherit future updates from there. python-blinker-1.4-8.1.noarch.rpm python-blinker-1.4-8.1.src.rpm openSUSE-2017-962 low openSUSE Leap 42.3 Update This update for python-fasteners fixes the following issues: - Allow providing a custom exception logger to 'locked' decorator - Allow providing a custom logger to process lock class This version is a dependency for an update version of google-cloud-sdk. This update was imported from the SUSE:SLE-12:Update update project. python-fasteners-0.14.1-6.1.noarch.rpm python-fasteners-0.14.1-6.1.src.rpm openSUSE-2017-967 low openSUSE Leap 42.3 Update This update contains a set of Python modules required by newer versions of the Google Cloud SDK. - python-dulwich 0.16.3 - python-monotonic 1.2 This version is a run-time dependency for an upcoming update of google-cloud-sdk. This update was imported from the SUSE:SLE-12:Update update project. python-dulwich-0.16.3-8.1.i586.rpm python-dulwich-0.16.3-8.1.src.rpm python-dulwich-debuginfo-0.16.3-8.1.i586.rpm python-dulwich-debugsource-0.16.3-8.1.i586.rpm python-monotonic-1.2-5.1.noarch.rpm python-monotonic-1.2-5.1.src.rpm python-dulwich-0.16.3-8.1.x86_64.rpm python-dulwich-debuginfo-0.16.3-8.1.x86_64.rpm python-dulwich-debugsource-0.16.3-8.1.x86_64.rpm openSUSE-2017-968 low openSUSE Leap 42.3 Update The Python module httplib2 has been updated to version 0.9.2, which brings some fixes and enhancements: - Fix incorrect ResponseNotReady exceptions, retry on transient errors. - Fix a problem with headers when a binary string - like b'Authorization'- is passed. - Default to doing DNS resolution through a proxy server if present. - Add an updated cacerts.txt file and fix some tests. This update was imported from the SUSE:SLE-12:Update update project. python-httplib2-0.9.2-7.1.noarch.rpm python-httplib2-0.9.2-7.1.src.rpm openSUSE-2017-1027 moderate openSUSE Leap 42.3 Update This update for conky fixes the following issues: * try more than one sysctl to get CPU temperature * cached versions of get_nvidia_value and get_nvidia_string_value * check st_ctime to work with mutt MUA * update uri to get NOAA METAR data * enable pulseaudio conky-1.10.6-12.1.src.rpm conky-1.10.6-12.1.x86_64.rpm conky-debuginfo-1.10.6-12.1.x86_64.rpm conky-debugsource-1.10.6-12.1.x86_64.rpm conky-doc-1.10.6-12.1.x86_64.rpm nano-plugin-conky-1.10.6-12.1.x86_64.rpm vim-plugin-conky-1.10.6-12.1.x86_64.rpm openSUSE-2017-1053 moderate openSUSE Leap 42.3 Update This update for atftp fixes the following issues: - permissions of /srv/tftpboot were too restrictive (boo#940608) atftp-0.7.0-176.1.i586.rpm atftp-0.7.0-176.1.src.rpm atftp-debuginfo-0.7.0-176.1.i586.rpm atftp-debugsource-0.7.0-176.1.i586.rpm atftp-0.7.0-176.1.x86_64.rpm atftp-debuginfo-0.7.0-176.1.x86_64.rpm atftp-debugsource-0.7.0-176.1.x86_64.rpm openSUSE-2017-1032 low openSUSE Leap 42.3 Update This update for gtk3 provides the following fixes: - Fix display DPI auto-detection. (bsc#1022830) gtk3-3.20.10-9.1.src.rpm gtk3-branding-upstream-3.20.10-9.1.noarch.rpm gtk3-data-3.20.10-9.1.noarch.rpm gtk3-debugsource-3.20.10-9.1.i586.rpm gtk3-devel-3.20.10-9.1.i586.rpm gtk3-devel-32bit-3.20.10-9.1.x86_64.rpm gtk3-devel-debuginfo-3.20.10-9.1.i586.rpm gtk3-devel-debuginfo-32bit-3.20.10-9.1.x86_64.rpm gtk3-immodule-amharic-3.20.10-9.1.i586.rpm gtk3-immodule-amharic-32bit-3.20.10-9.1.x86_64.rpm gtk3-immodule-amharic-debuginfo-3.20.10-9.1.i586.rpm gtk3-immodule-amharic-debuginfo-32bit-3.20.10-9.1.x86_64.rpm gtk3-immodule-broadway-3.20.10-9.1.i586.rpm gtk3-immodule-broadway-debuginfo-3.20.10-9.1.i586.rpm gtk3-immodule-inuktitut-3.20.10-9.1.i586.rpm gtk3-immodule-inuktitut-32bit-3.20.10-9.1.x86_64.rpm gtk3-immodule-inuktitut-debuginfo-3.20.10-9.1.i586.rpm gtk3-immodule-inuktitut-debuginfo-32bit-3.20.10-9.1.x86_64.rpm gtk3-immodule-multipress-3.20.10-9.1.i586.rpm gtk3-immodule-multipress-32bit-3.20.10-9.1.x86_64.rpm gtk3-immodule-multipress-debuginfo-3.20.10-9.1.i586.rpm gtk3-immodule-multipress-debuginfo-32bit-3.20.10-9.1.x86_64.rpm gtk3-immodule-thai-3.20.10-9.1.i586.rpm gtk3-immodule-thai-32bit-3.20.10-9.1.x86_64.rpm gtk3-immodule-thai-debuginfo-3.20.10-9.1.i586.rpm gtk3-immodule-thai-debuginfo-32bit-3.20.10-9.1.x86_64.rpm gtk3-immodule-vietnamese-3.20.10-9.1.i586.rpm gtk3-immodule-vietnamese-32bit-3.20.10-9.1.x86_64.rpm gtk3-immodule-vietnamese-debuginfo-3.20.10-9.1.i586.rpm gtk3-immodule-vietnamese-debuginfo-32bit-3.20.10-9.1.x86_64.rpm gtk3-immodule-xim-3.20.10-9.1.i586.rpm gtk3-immodule-xim-32bit-3.20.10-9.1.x86_64.rpm gtk3-immodule-xim-debuginfo-3.20.10-9.1.i586.rpm gtk3-immodule-xim-debuginfo-32bit-3.20.10-9.1.x86_64.rpm gtk3-immodules-tigrigna-3.20.10-9.1.i586.rpm gtk3-immodules-tigrigna-32bit-3.20.10-9.1.x86_64.rpm gtk3-immodules-tigrigna-debuginfo-3.20.10-9.1.i586.rpm gtk3-immodules-tigrigna-debuginfo-32bit-3.20.10-9.1.x86_64.rpm gtk3-lang-3.20.10-9.1.noarch.rpm gtk3-tools-3.20.10-9.1.i586.rpm gtk3-tools-32bit-3.20.10-9.1.x86_64.rpm gtk3-tools-debuginfo-3.20.10-9.1.i586.rpm gtk3-tools-debuginfo-32bit-3.20.10-9.1.x86_64.rpm libgtk-3-0-3.20.10-9.1.i586.rpm libgtk-3-0-32bit-3.20.10-9.1.x86_64.rpm libgtk-3-0-debuginfo-3.20.10-9.1.i586.rpm libgtk-3-0-debuginfo-32bit-3.20.10-9.1.x86_64.rpm typelib-1_0-Gtk-3_0-3.20.10-9.1.i586.rpm gtk3-debugsource-3.20.10-9.1.x86_64.rpm gtk3-devel-3.20.10-9.1.x86_64.rpm gtk3-devel-debuginfo-3.20.10-9.1.x86_64.rpm gtk3-immodule-amharic-3.20.10-9.1.x86_64.rpm gtk3-immodule-amharic-debuginfo-3.20.10-9.1.x86_64.rpm gtk3-immodule-broadway-3.20.10-9.1.x86_64.rpm gtk3-immodule-broadway-debuginfo-3.20.10-9.1.x86_64.rpm gtk3-immodule-inuktitut-3.20.10-9.1.x86_64.rpm gtk3-immodule-inuktitut-debuginfo-3.20.10-9.1.x86_64.rpm gtk3-immodule-multipress-3.20.10-9.1.x86_64.rpm gtk3-immodule-multipress-debuginfo-3.20.10-9.1.x86_64.rpm gtk3-immodule-thai-3.20.10-9.1.x86_64.rpm gtk3-immodule-thai-debuginfo-3.20.10-9.1.x86_64.rpm gtk3-immodule-vietnamese-3.20.10-9.1.x86_64.rpm gtk3-immodule-vietnamese-debuginfo-3.20.10-9.1.x86_64.rpm gtk3-immodule-xim-3.20.10-9.1.x86_64.rpm gtk3-immodule-xim-debuginfo-3.20.10-9.1.x86_64.rpm gtk3-immodules-tigrigna-3.20.10-9.1.x86_64.rpm gtk3-immodules-tigrigna-debuginfo-3.20.10-9.1.x86_64.rpm gtk3-tools-3.20.10-9.1.x86_64.rpm gtk3-tools-debuginfo-3.20.10-9.1.x86_64.rpm libgtk-3-0-3.20.10-9.1.x86_64.rpm libgtk-3-0-debuginfo-3.20.10-9.1.x86_64.rpm typelib-1_0-Gtk-3_0-3.20.10-9.1.x86_64.rpm openSUSE-2017-1046 moderate openSUSE Leap 42.3 Update This update for keepassxc to version 2.2.0 contains several enhancements and new features: * YubiKey 2FA integration for unlocking databases * TOTP support * CSV import tool * KeePassXC CLI tool * diceware password generator * support for entry references * support for Twofish encryption keepassxc-2.2.0-4.1.src.rpm keepassxc-2.2.0-4.1.x86_64.rpm keepassxc-debuginfo-2.2.0-4.1.x86_64.rpm keepassxc-debugsource-2.2.0-4.1.x86_64.rpm keepassxc-lang-2.2.0-4.1.noarch.rpm openSUSE-2017-1086 moderate openSUSE Leap 42.3 Update This update for libraw fixes the following issues: - CVE-2017-14348: A specially crafted file could have been used to trigger a heap-based buffer overflow (boo#1058467) libraw-0.17.1-6.1.src.rpm libraw-debugsource-0.17.1-6.1.i586.rpm libraw-devel-0.17.1-6.1.i586.rpm libraw-devel-static-0.17.1-6.1.i586.rpm libraw-tools-0.17.1-6.1.i586.rpm libraw-tools-debuginfo-0.17.1-6.1.i586.rpm libraw15-0.17.1-6.1.i586.rpm libraw15-debuginfo-0.17.1-6.1.i586.rpm libraw-debugsource-0.17.1-6.1.x86_64.rpm libraw-devel-0.17.1-6.1.x86_64.rpm libraw-devel-static-0.17.1-6.1.x86_64.rpm libraw-tools-0.17.1-6.1.x86_64.rpm libraw-tools-debuginfo-0.17.1-6.1.x86_64.rpm libraw15-0.17.1-6.1.x86_64.rpm libraw15-debuginfo-0.17.1-6.1.x86_64.rpm openSUSE-2017-835 important openSUSE Leap 42.3 Update This update for rubygem-puppet fixes the following issues: - CVE-2017-2295: A remote attacker could have forced unsafe YAML deserialization which could have led to code execution (bsc#1040151) ruby2.1-rubygem-puppet-3.8.7-20.1.i586.rpm ruby2.1-rubygem-puppet-doc-3.8.7-20.1.i586.rpm ruby2.1-rubygem-puppet-testsuite-3.8.7-20.1.i586.rpm ruby2.2-rubygem-puppet-3.8.7-20.1.i586.rpm ruby2.2-rubygem-puppet-doc-3.8.7-20.1.i586.rpm ruby2.2-rubygem-puppet-testsuite-3.8.7-20.1.i586.rpm ruby2.3-rubygem-puppet-3.8.7-20.1.i586.rpm ruby2.3-rubygem-puppet-doc-3.8.7-20.1.i586.rpm ruby2.3-rubygem-puppet-testsuite-3.8.7-20.1.i586.rpm ruby2.4-rubygem-puppet-3.8.7-20.1.i586.rpm ruby2.4-rubygem-puppet-doc-3.8.7-20.1.i586.rpm ruby2.4-rubygem-puppet-testsuite-3.8.7-20.1.i586.rpm rubygem-puppet-3.8.7-20.1.i586.rpm rubygem-puppet-3.8.7-20.1.src.rpm rubygem-puppet-emacs-3.8.7-20.1.noarch.rpm rubygem-puppet-master-3.8.7-20.1.i586.rpm rubygem-puppet-master-unicorn-3.8.7-20.1.noarch.rpm rubygem-puppet-vim-3.8.7-20.1.noarch.rpm ruby2.1-rubygem-puppet-3.8.7-20.1.x86_64.rpm ruby2.1-rubygem-puppet-doc-3.8.7-20.1.x86_64.rpm ruby2.1-rubygem-puppet-testsuite-3.8.7-20.1.x86_64.rpm ruby2.2-rubygem-puppet-3.8.7-20.1.x86_64.rpm ruby2.2-rubygem-puppet-doc-3.8.7-20.1.x86_64.rpm ruby2.2-rubygem-puppet-testsuite-3.8.7-20.1.x86_64.rpm ruby2.3-rubygem-puppet-3.8.7-20.1.x86_64.rpm ruby2.3-rubygem-puppet-doc-3.8.7-20.1.x86_64.rpm ruby2.3-rubygem-puppet-testsuite-3.8.7-20.1.x86_64.rpm ruby2.4-rubygem-puppet-3.8.7-20.1.x86_64.rpm ruby2.4-rubygem-puppet-doc-3.8.7-20.1.x86_64.rpm ruby2.4-rubygem-puppet-testsuite-3.8.7-20.1.x86_64.rpm rubygem-puppet-3.8.7-20.1.x86_64.rpm rubygem-puppet-master-3.8.7-20.1.x86_64.rpm openSUSE-2017-1092 moderate openSUSE Leap 42.3 Update This update for tor fixes the following issues: - CVE-2017-0380: hidden services with the SafeLogging option disabled could disclose the stack (boo#1059194) tor-0.3.0.11-3.1.i586.rpm tor-0.3.0.11-3.1.src.rpm tor-debuginfo-0.3.0.11-3.1.i586.rpm tor-debugsource-0.3.0.11-3.1.i586.rpm tor-0.3.0.11-3.1.x86_64.rpm tor-debuginfo-0.3.0.11-3.1.x86_64.rpm tor-debugsource-0.3.0.11-3.1.x86_64.rpm openSUSE-2017-1008 moderate openSUSE Leap 42.3 Update This update for Containerd, Docker and RunC provides several fixes and enhancements. Containerd: - Update containerd to the version needed for docker-v17.04.0-ce. (bsc#1034053) - Fix spurious messages filling journal. (bsc#1032769) - Set TasksMax=infinity to make sure runC doesn't start failing randomly. Docker: - Update to version 17.04.0-ce. (bsc#1034053) - Fix execids leaks due to bad error handling. (bsc#1037436) - Make Apparmor's pkg/aaparser work on read-only root. (bsc#1037607) - Improve Docker's systemd configuration. (bsc#1032287) - Check if the docker binary is available before attempting to use it. (bsc#1038476) - Build man pages for all architectures. (bsc#953182) - Fix DNS resolution when Docker host uses 127.0.0.1 as resolver. (bsc#1034063) - Enable Delegate=yes, since systemd will safely ignore lvalues it doesn't understand. - Update SUSE secrets patch to handle bsc#1030702. - Change lvm2 from Requires to Recommends: Docker usually uses a default storage driver, when it's not configured explicitly. This default driver then depends on the underlying system and gets chosen during installation. (bsc#1032644) - Disable libseccomp for Leap 42.1, SLE 12 and 12-SP1, because docker needs a higher version. Otherwise, we get the error "conditional filtering requires libseccomp version >= 2.2.1. (bsc#1028639, bsc#1028638) - Add a backport of fix to AppArmor lazy loading docker-exec case. - Fix systemd TasksMax default which could throttle docker. (bsc#1026827) - Enable pkcs11 For a comprehensive list of changes please refer to /usr/share/doc/packages/docker/CHANGELOG.md RunC: - Update version to the one required by docker-17.04.0-ce. (bsc#1034053) - Make sure to ignore cgroup v2 mountpoints. (bsc#1028113) golang-packaging: - Remove duplicates when finding Requires. - Set correct modifier if no arguments are provided. - Handle extra_flags for build/test correctly. This update rebuilds and updates number of golang packages with the new version of golang-packaging: - golang-bitbucket-taruti-bigendian - golang-github-cpuguy83-go-md2man - golang-github-dchest-authcookie - golang-github-docker-libnetwork - golang-github-exercism-cli - golang-github-fitstar-falcore - golang-github-golang-geo - golang-github-golang-glog - golang-github-golang-protobuf - golang-github-gorilla-context - golang-github-gorilla-websocket - golang-github-hoisie-httplib - golang-github-hoisie-mustache - golang-github-hoisie-web - golang-github-jpoirier-cpu - golang-github-kr-pty - golang-github-kr-text - golang-github-petar-gollrb - golang-github-philio-gomysql - golang-github-russross-blackfriday - golang-github-shurcool-sanitized_anchor_name - golang-googlecode-couch-go - golang-googlecode-freetype-go - golang-googlecode-goconf - golang-googlecode-mango-doc - golang-google-golangorg-appengine - golang-gopkgin-check - golang-org-x-crypto - golang-org-x-debug - golang-org-x-image - golang-org-x-net - golang-org-x-net-context - golang-org-x-net-html - golang-org-x-net-websocket - golang-org-x-sync - golang-org-x-sys - golang-org-x-text - golang-org-x-time-rate - golang-org-x-tool Some packages of this update were imported from the SUSE:SLE-12:Update update project. containerd-0.2.5+gitr639_422e31c-13.1.i586.rpm containerd-0.2.5+gitr639_422e31c-13.1.src.rpm containerd-ctr-0.2.5+gitr639_422e31c-13.1.i586.rpm containerd-ctr-debuginfo-0.2.5+gitr639_422e31c-13.1.i586.rpm containerd-debuginfo-0.2.5+gitr639_422e31c-13.1.i586.rpm containerd-debugsource-0.2.5+gitr639_422e31c-13.1.i586.rpm containerd-test-0.2.5+gitr639_422e31c-13.1.noarch.rpm go-1.7.5-27.1.i586.rpm go-1.7.5-27.1.src.rpm go-debuginfo-1.7.5-27.1.i586.rpm go-debugsource-1.7.5-27.1.i586.rpm go-doc-1.7.5-27.1.i586.rpm golang-bitbucket-taruti-bigendian-0.0.0+hg20130320.25.37f0ed9bf940-3.1.i586.rpm golang-bitbucket-taruti-bigendian-0.0.0+hg20130320.25.37f0ed9bf940-3.1.src.rpm go-md2man-1.0.6+git20160904.a65d4d2-11.1.i586.rpm golang-github-cpuguy83-go-md2man-1.0.6+git20160904.a65d4d2-11.1.i586.rpm golang-github-cpuguy83-go-md2man-1.0.6+git20160904.a65d4d2-11.1.src.rpm golang-github-dchest-authcookie-0.0.0+git20120917.fbdef6e-3.1.i586.rpm golang-github-dchest-authcookie-0.0.0+git20120917.fbdef6e-3.1.src.rpm docker-libnetwork-0.0.0+git20170119.7b2b1fe-2.1.i586.rpm docker-libnetwork-debuginfo-0.0.0+git20170119.7b2b1fe-2.1.i586.rpm golang-github-docker-libnetwork-0.0.0+git20170119.7b2b1fe-2.1.i586.rpm golang-github-docker-libnetwork-0.0.0+git20170119.7b2b1fe-2.1.src.rpm golang-github-docker-libnetwork-debugsource-0.0.0+git20170119.7b2b1fe-2.1.i586.rpm exercism-2.4.0+git20170324.41427fc-3.1.i586.rpm golang-github-exercism-cli-2.4.0+git20170324.41427fc-3.1.i586.rpm golang-github-exercism-cli-2.4.0+git20170324.41427fc-3.1.src.rpm golang-github-fitstar-falcore-0.0.0+git20161013.63e3547-3.1.i586.rpm golang-github-fitstar-falcore-0.0.0+git20161013.63e3547-3.1.src.rpm golang-github-golang-geo-0.0.0+git20170112.f819552-2.1.noarch.rpm golang-github-golang-geo-0.0.0+git20170112.f819552-2.1.src.rpm golang-github-golang-glog-0.0.0+git20141105.44145f0-7.1.i586.rpm golang-github-golang-glog-0.0.0+git20141105.44145f0-7.1.src.rpm golang-github-golang-protobuf-0.0.0+git20170217.69b215d-5.1.i586.rpm golang-github-golang-protobuf-0.0.0+git20170217.69b215d-5.1.src.rpm protoc-gen-go-0.0.0+git20170217.69b215d-5.1.i586.rpm golang-github-gorilla-context-1.1-3.1.noarch.rpm golang-github-gorilla-context-1.1-3.1.src.rpm golang-github-gorilla-websocket-0.0.0+git20170718.a69d9f6-3.1.noarch.rpm golang-github-gorilla-websocket-0.0.0+git20170718.a69d9f6-3.1.src.rpm golang-github-hoisie-httplib-0.0.0+git20120409.3cbb2f7-3.1.noarch.rpm golang-github-hoisie-httplib-0.0.0+git20120409.3cbb2f7-3.1.src.rpm golang-github-hoisie-mustache-0.0.0+git20160804.6375acf-3.1.noarch.rpm golang-github-hoisie-mustache-0.0.0+git20160804.6375acf-3.1.src.rpm golang-github-hoisie-web-0.0.0+git20160809.a498c02-5.1.noarch.rpm golang-github-hoisie-web-0.0.0+git20160809.a498c02-5.1.src.rpm golang-github-jpoirier-cpu-0.0.0+git20141224.5b5a7ea-3.1.i586.rpm golang-github-jpoirier-cpu-0.0.0+git20141224.5b5a7ea-3.1.src.rpm golang-github-kr-pty-0.0.0+git20160716.ce7fa45-3.1.i586.rpm golang-github-kr-pty-0.0.0+git20160716.ce7fa45-3.1.src.rpm golang-github-kr-text-0.0.0+git20160504.7cafcd8-3.1.i586.rpm golang-github-kr-text-0.0.0+git20160504.7cafcd8-3.1.src.rpm golang-github-petar-gollrb-0.0.0+git20130427.53be0d3-3.1.i586.rpm golang-github-petar-gollrb-0.0.0+git20130427.53be0d3-3.1.src.rpm golang-github-philio-gomysql-0.0.0+git20110531.e621cd9-3.1.i586.rpm golang-github-philio-gomysql-0.0.0+git20110531.e621cd9-3.1.src.rpm golang-github-russross-blackfriday-1.4.0+git20151230.c8875c0-11.1.i586.rpm golang-github-russross-blackfriday-1.4.0+git20151230.c8875c0-11.1.src.rpm golang-github-shurcool-sanitized_anchor_name-0.0.0+git20151027.10ef21a-11.1.i586.rpm golang-github-shurcool-sanitized_anchor_name-0.0.0+git20151027.10ef21a-11.1.src.rpm appengine-0.0.0+git20150702.e335b53-6.1.i586.rpm golang-google-golangorg-appengine-0.0.0+git20150702.e335b53-6.1.i586.rpm golang-google-golangorg-appengine-0.0.0+git20150702.e335b53-6.1.src.rpm golang-googlecode-couch-go-0.0.0+hg20120329.80177d89e264-3.1.i586.rpm golang-googlecode-couch-go-0.0.0+hg20120329.80177d89e264-3.1.src.rpm golang-googlecode-freetype-go-0.0.0+git20170609.e2365df-3.1.noarch.rpm golang-googlecode-freetype-go-0.0.0+git20170609.e2365df-3.1.src.rpm golang-googlecode-goconf-0.0.0+hg20120508.a4db5c465ed1-3.1.i586.rpm golang-googlecode-goconf-0.0.0+hg20120508.a4db5c465ed1-3.1.src.rpm golang-googlecode-mango-doc-0.0.0+hg20141127.23dea2f59f66-2.1.i586.rpm golang-googlecode-mango-doc-0.0.0+hg20141127.23dea2f59f66-2.1.src.rpm mango-doc-0.0.0+hg20141127.23dea2f59f66-2.1.i586.rpm golang-gopkgin-check-0.0.0+git20161122.aa8c435-3.1.i586.rpm golang-gopkgin-check-0.0.0+git20161122.aa8c435-3.1.src.rpm golang-org-x-crypto-1.5.2+git20161212.9a6f0a0-2.1.i586.rpm golang-org-x-crypto-1.5.2+git20161212.9a6f0a0-2.1.src.rpm golang-org-x-image-1.0.3+git20161212.88b0132-3.1.i586.rpm golang-org-x-image-1.0.3+git20161212.88b0132-3.1.src.rpm golang-org-x-net-context-0.0.0+git20170424.da118f7-2.1.i586.rpm golang-org-x-net-context-0.0.0+git20170424.da118f7-2.1.src.rpm golang-org-x-net-html-0.0.0+git20170424.da118f7-2.1.i586.rpm golang-org-x-net-html-0.0.0+git20170424.da118f7-2.1.src.rpm golang-org-x-net-websocket-0.0.0+git20170424.da118f7-2.1.i586.rpm golang-org-x-net-websocket-0.0.0+git20170424.da118f7-2.1.src.rpm golang-org-x-net-1.5.2+git20161213.cfae461-11.1.i586.rpm golang-org-x-net-1.5.2+git20161213.cfae461-11.1.src.rpm h2i-1.5.2+git20161213.cfae461-11.1.i586.rpm golang-org-x-sync-0.0.0+git20161206.450f422-2.1.i586.rpm golang-org-x-sync-0.0.0+git20161206.450f422-2.1.src.rpm golang-org-x-sys-0.0.0+git20161205.478fcf5-3.1.i586.rpm golang-org-x-sys-0.0.0+git20161205.478fcf5-3.1.src.rpm colcmp-1.5.2+git20161209.47a200a-11.1.i586.rpm golang-org-x-text-1.5.2+git20161209.47a200a-11.1.i586.rpm golang-org-x-text-1.5.2+git20161209.47a200a-11.1.src.rpm gotext-1.5.2+git20161209.47a200a-11.1.i586.rpm golang-org-x-time-rate-0.0.0+git20161028.f51c127-2.1.noarch.rpm golang-org-x-time-rate-0.0.0+git20161028.f51c127-2.1.src.rpm go-tools-1.4.2+git20161212.0a14ca4-6.1.i586.rpm golang-org-x-tools-1.4.2+git20161212.0a14ca4-6.1.i586.rpm golang-org-x-tools-1.4.2+git20161212.0a14ca4-6.1.src.rpm golang-packaging-15.0.3-11.1.noarch.rpm golang-packaging-15.0.3-11.1.src.rpm runc-0.1.1+gitr2947_9c2d8d1-13.2.i586.rpm runc-0.1.1+gitr2947_9c2d8d1-13.2.src.rpm runc-debuginfo-0.1.1+gitr2947_9c2d8d1-13.2.i586.rpm runc-debugsource-0.1.1+gitr2947_9c2d8d1-13.2.i586.rpm runc-test-0.1.1+gitr2947_9c2d8d1-13.2.noarch.rpm containerd-0.2.5+gitr639_422e31c-13.1.x86_64.rpm containerd-ctr-0.2.5+gitr639_422e31c-13.1.x86_64.rpm containerd-ctr-debuginfo-0.2.5+gitr639_422e31c-13.1.x86_64.rpm containerd-debuginfo-0.2.5+gitr639_422e31c-13.1.x86_64.rpm containerd-debugsource-0.2.5+gitr639_422e31c-13.1.x86_64.rpm docker-distribution-2.6.1-8.1.src.rpm docker-distribution-debugsource-2.6.1-8.1.x86_64.rpm docker-distribution-registry-2.6.1-8.1.x86_64.rpm docker-distribution-registry-debuginfo-2.6.1-8.1.x86_64.rpm docker-17.04.0_ce-33.11.src.rpm docker-17.04.0_ce-33.11.x86_64.rpm docker-bash-completion-17.04.0_ce-33.11.noarch.rpm docker-debuginfo-17.04.0_ce-33.11.x86_64.rpm docker-debugsource-17.04.0_ce-33.11.x86_64.rpm docker-test-17.04.0_ce-33.11.x86_64.rpm docker-test-debuginfo-17.04.0_ce-33.11.x86_64.rpm docker-zsh-completion-17.04.0_ce-33.11.noarch.rpm go-1.7.5-27.1.x86_64.rpm go-debuginfo-1.7.5-27.1.x86_64.rpm go-debugsource-1.7.5-27.1.x86_64.rpm go-doc-1.7.5-27.1.x86_64.rpm golang-bitbucket-taruti-bigendian-0.0.0+hg20130320.25.37f0ed9bf940-3.1.x86_64.rpm go-md2man-1.0.6+git20160904.a65d4d2-11.1.x86_64.rpm golang-github-cpuguy83-go-md2man-1.0.6+git20160904.a65d4d2-11.1.x86_64.rpm golang-github-dchest-authcookie-0.0.0+git20120917.fbdef6e-3.1.x86_64.rpm docker-libnetwork-0.0.0+git20170119.7b2b1fe-2.1.x86_64.rpm docker-libnetwork-debuginfo-0.0.0+git20170119.7b2b1fe-2.1.x86_64.rpm golang-github-docker-libnetwork-0.0.0+git20170119.7b2b1fe-2.1.x86_64.rpm golang-github-docker-libnetwork-debugsource-0.0.0+git20170119.7b2b1fe-2.1.x86_64.rpm exercism-2.4.0+git20170324.41427fc-3.1.x86_64.rpm golang-github-exercism-cli-2.4.0+git20170324.41427fc-3.1.x86_64.rpm golang-github-fitstar-falcore-0.0.0+git20161013.63e3547-3.1.x86_64.rpm golang-github-golang-glog-0.0.0+git20141105.44145f0-7.1.x86_64.rpm golang-github-golang-protobuf-0.0.0+git20170217.69b215d-5.1.x86_64.rpm protoc-gen-go-0.0.0+git20170217.69b215d-5.1.x86_64.rpm golang-github-jpoirier-cpu-0.0.0+git20141224.5b5a7ea-3.1.x86_64.rpm golang-github-kr-pty-0.0.0+git20160716.ce7fa45-3.1.x86_64.rpm golang-github-kr-text-0.0.0+git20160504.7cafcd8-3.1.x86_64.rpm golang-github-petar-gollrb-0.0.0+git20130427.53be0d3-3.1.x86_64.rpm golang-github-philio-gomysql-0.0.0+git20110531.e621cd9-3.1.x86_64.rpm golang-github-russross-blackfriday-1.4.0+git20151230.c8875c0-11.1.x86_64.rpm golang-github-shurcool-sanitized_anchor_name-0.0.0+git20151027.10ef21a-11.1.x86_64.rpm appengine-0.0.0+git20150702.e335b53-6.1.x86_64.rpm golang-google-golangorg-appengine-0.0.0+git20150702.e335b53-6.1.x86_64.rpm golang-googlecode-couch-go-0.0.0+hg20120329.80177d89e264-3.1.x86_64.rpm golang-googlecode-goconf-0.0.0+hg20120508.a4db5c465ed1-3.1.x86_64.rpm golang-googlecode-mango-doc-0.0.0+hg20141127.23dea2f59f66-2.1.x86_64.rpm mango-doc-0.0.0+hg20141127.23dea2f59f66-2.1.x86_64.rpm golang-gopkgin-check-0.0.0+git20161122.aa8c435-3.1.x86_64.rpm golang-org-x-crypto-1.5.2+git20161212.9a6f0a0-2.1.x86_64.rpm golang-org-x-debug-0.0.0+git20160621.fb50892-2.1.src.rpm golang-org-x-debug-0.0.0+git20160621.fb50892-2.1.x86_64.rpm golang-org-x-debug-debugproxy-0.0.0+git20160621.fb50892-2.1.x86_64.rpm golang-org-x-image-1.0.3+git20161212.88b0132-3.1.x86_64.rpm golang-org-x-net-context-0.0.0+git20170424.da118f7-2.1.x86_64.rpm golang-org-x-net-html-0.0.0+git20170424.da118f7-2.1.x86_64.rpm golang-org-x-net-websocket-0.0.0+git20170424.da118f7-2.1.x86_64.rpm golang-org-x-net-1.5.2+git20161213.cfae461-11.1.x86_64.rpm h2i-1.5.2+git20161213.cfae461-11.1.x86_64.rpm golang-org-x-sync-0.0.0+git20161206.450f422-2.1.x86_64.rpm golang-org-x-sys-0.0.0+git20161205.478fcf5-3.1.x86_64.rpm colcmp-1.5.2+git20161209.47a200a-11.1.x86_64.rpm golang-org-x-text-1.5.2+git20161209.47a200a-11.1.x86_64.rpm gotext-1.5.2+git20161209.47a200a-11.1.x86_64.rpm go-tools-1.4.2+git20161212.0a14ca4-6.1.x86_64.rpm golang-org-x-tools-1.4.2+git20161212.0a14ca4-6.1.x86_64.rpm runc-0.1.1+gitr2947_9c2d8d1-13.2.x86_64.rpm runc-debuginfo-0.1.1+gitr2947_9c2d8d1-13.2.x86_64.rpm runc-debugsource-0.1.1+gitr2947_9c2d8d1-13.2.x86_64.rpm openSUSE-2017-826 moderate openSUSE Leap 42.3 Update This update for xorg-x11-server fixes the following issues: - Improve retrieval of entropy for generating random authentication cookies (bsc#1025084) - Fix rendering with glamor acceleration. (bsc#1047154) xorg-x11-server-7.6_1.18.3-22.1.i586.rpm True xorg-x11-server-7.6_1.18.3-22.1.src.rpm True xorg-x11-server-debuginfo-7.6_1.18.3-22.1.i586.rpm True xorg-x11-server-debugsource-7.6_1.18.3-22.1.i586.rpm True xorg-x11-server-extra-7.6_1.18.3-22.1.i586.rpm True xorg-x11-server-extra-debuginfo-7.6_1.18.3-22.1.i586.rpm True xorg-x11-server-sdk-7.6_1.18.3-22.1.i586.rpm True xorg-x11-server-source-7.6_1.18.3-22.1.i586.rpm True xorg-x11-server-7.6_1.18.3-22.1.x86_64.rpm True xorg-x11-server-debuginfo-7.6_1.18.3-22.1.x86_64.rpm True xorg-x11-server-debugsource-7.6_1.18.3-22.1.x86_64.rpm True xorg-x11-server-extra-7.6_1.18.3-22.1.x86_64.rpm True xorg-x11-server-extra-debuginfo-7.6_1.18.3-22.1.x86_64.rpm True xorg-x11-server-sdk-7.6_1.18.3-22.1.x86_64.rpm True xorg-x11-server-source-7.6_1.18.3-22.1.x86_64.rpm True openSUSE-2017-875 low openSUSE Leap 42.3 Update This update for gnome-packagekit provides the following fixes: - Fix gpk-update-viewer not responding after installing all available updates (bsc#1036542) - Fix logout button not working when relogin is needed (bsc#988167) This update was imported from the SUSE:SLE-12-SP2:Update update project. gnome-packagekit-3.20.0-6.1.i586.rpm gnome-packagekit-3.20.0-6.1.src.rpm gnome-packagekit-debuginfo-3.20.0-6.1.i586.rpm gnome-packagekit-debugsource-3.20.0-6.1.i586.rpm gnome-packagekit-extras-3.20.0-6.1.i586.rpm gnome-packagekit-extras-debuginfo-3.20.0-6.1.i586.rpm gnome-packagekit-lang-3.20.0-6.1.noarch.rpm gnome-packagekit-3.20.0-6.1.x86_64.rpm gnome-packagekit-debuginfo-3.20.0-6.1.x86_64.rpm gnome-packagekit-debugsource-3.20.0-6.1.x86_64.rpm gnome-packagekit-extras-3.20.0-6.1.x86_64.rpm gnome-packagekit-extras-debuginfo-3.20.0-6.1.x86_64.rpm openSUSE-2017-836 low openSUSE Leap 42.3 Update This update provides a new version of smartmontools with various improvements and bug fixes: - Experimental support for NVMe devices on FreeBSD, Linux and Windows. (boo#999541) - smartctl '-i', '-c', '-H' and '-l error': NVMe support. - smartctl '-l nvmelog': New option for NVMe. - smartd.conf '-H', '-l error' and '-W': NVMe support. - Optional NVMe device scanning support on Linux and Windows. - Configure option '--with-nvme-devicescan' to include NVMe in default device scanning result. - Drop systemd dependency on syslog.target (boo#983938). - SCSI: Improved support of modern disks (SAS SSDs). - AACRAID fixes, SMART STATUS should work now. - '/dev/megaraid_sas_ioctl_node' fd leak fix. - Re-add /usr/sbin/rcsmards symlink (boo#900099). - Fix service restart in smartmontools.generate_smartd_opts.in (boo#900099). - re-add sysvinit support in specfile. - HDD, SSD and USB additions to drive database. - Build with large file support in 32 bit systems. smartmontools-6.5-8.1.i586.rpm smartmontools-6.5-8.1.src.rpm smartmontools-debuginfo-6.5-8.1.i586.rpm smartmontools-debugsource-6.5-8.1.i586.rpm smartmontools-6.5-8.1.x86_64.rpm smartmontools-debuginfo-6.5-8.1.x86_64.rpm smartmontools-debugsource-6.5-8.1.x86_64.rpm openSUSE-2017-833 important openSUSE Leap 42.3 Update This update for ucode-intel brings newer revisions of microcode firmwares for many Intel devices: - BDX-ML B0/M0/R0 (06-4f-01:ef): b00001f -> b000021 - Skylake D0 (06-4e-03:c0): 9e -> ba - Broadwell ULT/ULX E/F-step (06-3d-04:c0): 24 -> 25 - ULT Cx/Dx (06-45-01:72): 1f -> 20 - Crystalwell Cx (06-46-01:32): 16 -> 17 - Broadwell Halo E/G-step (06-47-01:22): 16 -> 17 - HSX EX E0 (06-3f-04:80): d -> f - Skylake R0 (06-5e-03:36): 9e -> ba - Haswell Cx/Dx (06-3c-03:32): 20 -> 22 - HSX C0 (06-3f-02:6f): 39 -> 3a - KBL H0 (06-8e-09:c0): -> 62 - KBL Y0 (06-8e-0a:c0): -> 66 - KBL B0 (06-9e-09:2a): -> 5e - SKX H0 (06-55-04:97): -> 2000022 The updated CPU microcode addresses the following bugs: - Intel Skylake AVX/ FMA3 issue. (bsc#993639) - Intel Skylake HyperThreading issue. (bsc#1046431) ucode-intel-20170707-10.1.i586.rpm ucode-intel-20170707-10.1.src.rpm ucode-intel-blob-20170707-10.1.i586.rpm ucode-intel-debuginfo-20170707-10.1.i586.rpm ucode-intel-debugsource-20170707-10.1.i586.rpm ucode-intel-20170707-10.1.x86_64.rpm ucode-intel-blob-20170707-10.1.x86_64.rpm ucode-intel-debuginfo-20170707-10.1.x86_64.rpm ucode-intel-debugsource-20170707-10.1.x86_64.rpm openSUSE-2017-829 low openSUSE Leap 42.3 Update This update supplies access library and tools for the Kernel Crypto API. The libkcapi0 library and the libkcapi-tools are used to access the cryptographic interface of the kernel over the AF_ALG socket interface. (FATE#323554 bsc#1045948) libkcapi-0.13.0-2.1.src.rpm libkcapi-devel-0.13.0-2.1.i586.rpm libkcapi-tools-0.13.0-2.1.i586.rpm libkcapi-tools-debuginfo-0.13.0-2.1.i586.rpm libkcapi0-0.13.0-2.1.i586.rpm libkcapi0-debuginfo-0.13.0-2.1.i586.rpm libkcapi-devel-0.13.0-2.1.x86_64.rpm libkcapi-tools-0.13.0-2.1.x86_64.rpm libkcapi-tools-debuginfo-0.13.0-2.1.x86_64.rpm libkcapi0-0.13.0-2.1.x86_64.rpm libkcapi0-debuginfo-0.13.0-2.1.x86_64.rpm openSUSE-2017-840 moderate openSUSE Leap 42.3 Update This update to Wireshark 2.2.8 fixes some minor vulnerabilities could be used to trigger dissector crashes, infinite loops, or cause excessive use of memory resources by making Wireshark read specially crafted packages from the network or a capture file: - CVE-2017-7702,CVE-2017-11410: WBMXL dissector infinite loop (wnpa-sec-2017-13) - CVE-2017-9350,CVE-2017-11411: openSAFETY dissector memory exhaustion (wnpa-sec-2017-28) - CVE-2017-11408: AMQP dissector crash (wnpa-sec-2017-34) - CVE-2017-11407: MQ dissector crash (wnpa-sec-2017-35) - CVE-2017-11406: DOCSIS infinite loop (wnpa-sec-2017-36) wireshark-2.2.8-17.1.src.rpm wireshark-2.2.8-17.1.x86_64.rpm wireshark-debuginfo-2.2.8-17.1.x86_64.rpm wireshark-debugsource-2.2.8-17.1.x86_64.rpm wireshark-devel-2.2.8-17.1.x86_64.rpm wireshark-ui-gtk-2.2.8-17.1.x86_64.rpm wireshark-ui-gtk-debuginfo-2.2.8-17.1.x86_64.rpm wireshark-ui-qt-2.2.8-17.1.x86_64.rpm wireshark-ui-qt-debuginfo-2.2.8-17.1.x86_64.rpm openSUSE-2017-847 important openSUSE Leap 42.3 Update This update for systemd and dracut fixes the following issues: Issues fixed in systemd: - Automounter issue in combination with NFS volumes (bsc#1040968) - Missing symbolic link for SAS device in /dev/disk/by-path (bsc#1040153) - Add minimal support for boot.d/* scripts in systemd-sysv-convert (bsc#1046750) The update also contains a tracked code change for CVE-2017-9445, a possible out-of-bounds write triggered by a specially crafted TCP payload from a DNS server. The openSUSE package does not ship resolved and is not affected. (bsc#1045290) Issues fixed in dracut: - Bail out if module directory does not exist. (bsc#1043900) - Suppress bogus error message. (bsc#1032029) - Fix module force loading with systemd. (bsc#986216) - Ship udev files required by systemd. (bsc#1040153) - Ignore module resolution errors (e.g. with kgraft). (bsc#1037120) - switch fips checking to use the libkcapi based fipscheck toolset (bsc#1048565) - ISCSI boot would fail randomly (bsc#1032284) This update was imported from the SUSE:SLE-12-SP2:Update and SUSE:SLE-12-SP3:Update update projects. dracut-044.1-23.2.i586.rpm dracut-044.1-23.2.src.rpm dracut-debuginfo-044.1-23.2.i586.rpm dracut-debugsource-044.1-23.2.i586.rpm dracut-fips-044.1-23.2.i586.rpm dracut-tools-044.1-23.2.i586.rpm libsystemd0-mini-228-29.1.i586.rpm libsystemd0-mini-debuginfo-228-29.1.i586.rpm libudev-mini-devel-228-29.1.i586.rpm libudev-mini1-228-29.1.i586.rpm libudev-mini1-debuginfo-228-29.1.i586.rpm systemd-mini-228-29.1.i586.rpm systemd-mini-228-29.1.src.rpm systemd-mini-bash-completion-228-29.1.noarch.rpm systemd-mini-debuginfo-228-29.1.i586.rpm systemd-mini-debugsource-228-29.1.i586.rpm systemd-mini-devel-228-29.1.i586.rpm systemd-mini-sysvinit-228-29.1.i586.rpm udev-mini-228-29.1.i586.rpm udev-mini-debuginfo-228-29.1.i586.rpm libsystemd0-228-29.1.i586.rpm libsystemd0-32bit-228-29.1.x86_64.rpm libsystemd0-debuginfo-228-29.1.i586.rpm libsystemd0-debuginfo-32bit-228-29.1.x86_64.rpm libudev-devel-228-29.1.i586.rpm libudev1-228-29.1.i586.rpm libudev1-32bit-228-29.1.x86_64.rpm libudev1-debuginfo-228-29.1.i586.rpm libudev1-debuginfo-32bit-228-29.1.x86_64.rpm nss-myhostname-228-29.1.i586.rpm nss-myhostname-32bit-228-29.1.x86_64.rpm nss-myhostname-debuginfo-228-29.1.i586.rpm nss-myhostname-debuginfo-32bit-228-29.1.x86_64.rpm nss-mymachines-228-29.1.i586.rpm nss-mymachines-debuginfo-228-29.1.i586.rpm systemd-228-29.1.i586.rpm systemd-228-29.1.src.rpm systemd-32bit-228-29.1.x86_64.rpm systemd-bash-completion-228-29.1.noarch.rpm systemd-debuginfo-228-29.1.i586.rpm systemd-debuginfo-32bit-228-29.1.x86_64.rpm systemd-debugsource-228-29.1.i586.rpm systemd-devel-228-29.1.i586.rpm systemd-logger-228-29.1.i586.rpm systemd-sysvinit-228-29.1.i586.rpm udev-228-29.1.i586.rpm udev-debuginfo-228-29.1.i586.rpm dracut-044.1-23.2.x86_64.rpm dracut-debuginfo-044.1-23.2.x86_64.rpm dracut-debugsource-044.1-23.2.x86_64.rpm dracut-fips-044.1-23.2.x86_64.rpm dracut-tools-044.1-23.2.x86_64.rpm libsystemd0-mini-228-29.1.x86_64.rpm libsystemd0-mini-debuginfo-228-29.1.x86_64.rpm libudev-mini-devel-228-29.1.x86_64.rpm libudev-mini1-228-29.1.x86_64.rpm libudev-mini1-debuginfo-228-29.1.x86_64.rpm systemd-mini-228-29.1.x86_64.rpm systemd-mini-debuginfo-228-29.1.x86_64.rpm systemd-mini-debugsource-228-29.1.x86_64.rpm systemd-mini-devel-228-29.1.x86_64.rpm systemd-mini-sysvinit-228-29.1.x86_64.rpm udev-mini-228-29.1.x86_64.rpm udev-mini-debuginfo-228-29.1.x86_64.rpm libsystemd0-228-29.1.x86_64.rpm libsystemd0-debuginfo-228-29.1.x86_64.rpm libudev-devel-228-29.1.x86_64.rpm libudev1-228-29.1.x86_64.rpm libudev1-debuginfo-228-29.1.x86_64.rpm nss-myhostname-228-29.1.x86_64.rpm nss-myhostname-debuginfo-228-29.1.x86_64.rpm nss-mymachines-228-29.1.x86_64.rpm nss-mymachines-debuginfo-228-29.1.x86_64.rpm systemd-228-29.1.x86_64.rpm systemd-debuginfo-228-29.1.x86_64.rpm systemd-debugsource-228-29.1.x86_64.rpm systemd-devel-228-29.1.x86_64.rpm systemd-logger-228-29.1.x86_64.rpm systemd-sysvinit-228-29.1.x86_64.rpm udev-228-29.1.x86_64.rpm udev-debuginfo-228-29.1.x86_64.rpm openSUSE-2017-841 moderate openSUSE Leap 42.3 Update This update for catdoc fixes the following issues: - CVE-2017-11110: Attackers may have used specially crafted files to cause a denial of service through a heap-based buffer under-flow and application crash, or have unspecified other impact (boo#1047877) catdoc-0.95-10.1.i586.rpm catdoc-0.95-10.1.src.rpm catdoc-debuginfo-0.95-10.1.i586.rpm catdoc-debugsource-0.95-10.1.i586.rpm catdoc-0.95-10.1.x86_64.rpm catdoc-debuginfo-0.95-10.1.x86_64.rpm catdoc-debugsource-0.95-10.1.x86_64.rpm openSUSE-2017-842 moderate openSUSE Leap 42.3 Update This update for gsoap fixes the following security issue: - CVE-2017-9765: A remote attacker may have triggered a buffer overflow to cause a server crash (denial of service) after sending 2GB of a specially crafted XML message, or possibly have unspecified futher impact. (bsc#1049348) gsoap-2.8.46-3.1.src.rpm gsoap-debugsource-2.8.46-3.1.i586.rpm gsoap-devel-2.8.46-3.1.i586.rpm gsoap-devel-debuginfo-2.8.46-3.1.i586.rpm gsoap-doc-2.8.46-3.1.noarch.rpm libgsoap-2_8_46-2.8.46-3.1.i586.rpm libgsoap-2_8_46-debuginfo-2.8.46-3.1.i586.rpm gsoap-debugsource-2.8.46-3.1.x86_64.rpm gsoap-devel-2.8.46-3.1.x86_64.rpm gsoap-devel-debuginfo-2.8.46-3.1.x86_64.rpm libgsoap-2_8_46-2.8.46-3.1.x86_64.rpm libgsoap-2_8_46-debuginfo-2.8.46-3.1.x86_64.rpm openSUSE-2017-846 low openSUSE Leap 42.3 Update This update for sendmail fixes the following issues: - The requirements of the libmilter, sendmail-devel packages did not consider other MTAs (boo#1049188) libmilter-doc-8.15.2-6.1.noarch.rpm libmilter1_0-8.15.2-6.1.x86_64.rpm libmilter1_0-debuginfo-8.15.2-6.1.x86_64.rpm rmail-8.15.2-6.1.x86_64.rpm rmail-debuginfo-8.15.2-6.1.x86_64.rpm sendmail-8.15.2-6.1.src.rpm sendmail-8.15.2-6.1.x86_64.rpm sendmail-debuginfo-8.15.2-6.1.x86_64.rpm sendmail-debugsource-8.15.2-6.1.x86_64.rpm sendmail-devel-8.15.2-6.1.x86_64.rpm sendmail-starttls-8.15.2-6.1.noarch.rpm openSUSE-2017-844 moderate openSUSE Leap 42.3 Update This update for jasper fixes the following issues: Security issues fixed: - CVE-2016-9262: Multiple integer overflows in the jas_realloc function in base/jas_malloc.c and mem_resize function in base/jas_stream.c allow remote attackers to cause a denial of service via a crafted image, which triggers use after free vulnerabilities. (bsc#1009994) - CVE-2016-9388: The ras_getcmap function in ras_dec.c allows remote attackers to cause a denial of service (assertion failure) via a crafted image file. (bsc#1010975) - CVE-2016-9389: The jpc_irct and jpc_iict functions in jpc_mct.c allow remote attackers to cause a denial of service (assertion failure). (bsc#1010968) - CVE-2016-9390: The jas_seq2d_create function in jas_seq.c allows remote attackers to cause a denial of service (assertion failure) via a crafted image file. (bsc#1010774) - CVE-2016-9391: The jpc_bitstream_getbits function in jpc_bs.c allows remote attackers to cause a denial of service (assertion failure) via a very large integer. (bsc#1010782) - CVE-2017-1000050: The jp2_encode function in jp2_enc.c allows remote attackers to cause a denial of service. (bsc#1047958) CVEs already fixed with previous update: - CVE-2016-9392: The calcstepsizes function in jpc_dec.c allows remote attackers to cause a denial of service (assertion failure) via a crafted file. (bsc#1010757) - CVE-2016-9393: The jpc_pi_nextrpcl function in jpc_t2cod.c allows remote attackers to cause a denial of service (assertion failure) via a crafted file. (bsc#1010766) - CVE-2016-9394: The jas_seq2d_create function in jas_seq.c allows remote attackers to cause a denial of service (assertion failure) via a crafted file. (bsc#1010756) This update was imported from the SUSE:SLE-12:Update update project. jasper-1.900.14-179.1.i586.rpm jasper-1.900.14-179.1.src.rpm jasper-debuginfo-1.900.14-179.1.i586.rpm jasper-debugsource-1.900.14-179.1.i586.rpm libjasper-devel-1.900.14-179.1.i586.rpm libjasper1-1.900.14-179.1.i586.rpm libjasper1-32bit-1.900.14-179.1.x86_64.rpm libjasper1-debuginfo-1.900.14-179.1.i586.rpm libjasper1-debuginfo-32bit-1.900.14-179.1.x86_64.rpm jasper-1.900.14-179.1.x86_64.rpm jasper-debuginfo-1.900.14-179.1.x86_64.rpm jasper-debugsource-1.900.14-179.1.x86_64.rpm libjasper-devel-1.900.14-179.1.x86_64.rpm libjasper1-1.900.14-179.1.x86_64.rpm libjasper1-debuginfo-1.900.14-179.1.x86_64.rpm openSUSE-2017-852 low openSUSE Leap 42.3 Update This update for iptables provides the following fix: - Fix a locking issue of iptables-batch when other programs modify the iptables rules in parallel (bsc#1045130) This update was imported from the SUSE:SLE-12:Update update project. iptables-1.4.21-9.1.i586.rpm iptables-1.4.21-9.1.src.rpm iptables-debuginfo-1.4.21-9.1.i586.rpm iptables-debugsource-1.4.21-9.1.i586.rpm libipq-devel-1.4.21-9.1.i586.rpm libipq0-1.4.21-9.1.i586.rpm libipq0-debuginfo-1.4.21-9.1.i586.rpm libiptc-devel-1.4.21-9.1.i586.rpm libiptc0-1.4.21-9.1.i586.rpm libiptc0-debuginfo-1.4.21-9.1.i586.rpm libxtables-devel-1.4.21-9.1.i586.rpm libxtables10-1.4.21-9.1.i586.rpm libxtables10-debuginfo-1.4.21-9.1.i586.rpm xtables-plugins-1.4.21-9.1.i586.rpm xtables-plugins-debuginfo-1.4.21-9.1.i586.rpm iptables-1.4.21-9.1.x86_64.rpm iptables-debuginfo-1.4.21-9.1.x86_64.rpm iptables-debugsource-1.4.21-9.1.x86_64.rpm libipq-devel-1.4.21-9.1.x86_64.rpm libipq0-1.4.21-9.1.x86_64.rpm libipq0-debuginfo-1.4.21-9.1.x86_64.rpm libiptc-devel-1.4.21-9.1.x86_64.rpm libiptc0-1.4.21-9.1.x86_64.rpm libiptc0-debuginfo-1.4.21-9.1.x86_64.rpm libxtables-devel-1.4.21-9.1.x86_64.rpm libxtables10-1.4.21-9.1.x86_64.rpm libxtables10-debuginfo-1.4.21-9.1.x86_64.rpm xtables-plugins-1.4.21-9.1.x86_64.rpm xtables-plugins-debuginfo-1.4.21-9.1.x86_64.rpm openSUSE-2017-853 moderate openSUSE Leap 42.3 Update This update for lxc fixes the following issue: * lxc-start would fail to start (boo#1036360) This fix requires to manually start apparmor after installation or rebooting the machine. lxc-1.1.5-19.1.src.rpm lxc-1.1.5-19.1.x86_64.rpm lxc-debuginfo-1.1.5-19.1.x86_64.rpm lxc-debugsource-1.1.5-19.1.x86_64.rpm lxc-devel-1.1.5-19.1.x86_64.rpm openSUSE-2017-910 low openSUSE Leap 42.3 Update This update provides python-boto 2.42.0 and python-simplejson 3.8.2, which bring many fixes and enhancements. python-boto: - Respect is_secure parameter in generate_url_sigv4 - Update MTurk API - Update endpoints.json - Allow s3 bucket lifecycle policies with multiple transitions - Fixes upload parts for glacier - Autodetect sigv4 for ap-northeast-2 - Added support for ap-northeast-2 - Remove VeriSign Class 3 CA from trusted certs - Add note about boto3 on all pages of boto docs - Fix for listing EMR steps based on cluster_states filter - Fixed param name in set_contents_from_string docstring - Spelling and documentation fixes - Add deprecation notice to emr methods - Add some GovCloud endpoints. python-simplejson: - Fix issue with iterable_as_array and indent option - New iterable_as_array encoder option to perform lazy serialization of any iterable objects, without having to convert to tuple or list - Do not cache Decimal class in encoder, only reference the decimal module - No longer trust custom str/repr methods for int, long, float subclasses: these instances are now formatted as if they were exact instances of those types - Fix reference leak when an error occurs during dict encoding - Fix dump when only sort_keys is set - Automatically strip any UTF-8 BOM from input to more closely follow the latest specs - Fix lower bound checking in scan_once / raw_decode API - Consistently reject int_as_string_bitcount settings that are not positive integers - Add int_as_string_bitcount encoder option - Fix potential crash when encoder created with incorrect options - Documentation updates. This update was imported from the SUSE:SLE-12:Update update project. python-gcs-oauth2-boto-plugin-1.14-6.1.noarch.rpm python-gcs-oauth2-boto-plugin-1.14-6.1.src.rpm python-simplejson-3.8.2-8.2.i586.rpm python-simplejson-3.8.2-8.2.src.rpm python-simplejson-debuginfo-3.8.2-8.2.i586.rpm python-simplejson-debugsource-3.8.2-8.2.i586.rpm python-boto-2.42.0-10.2.noarch.rpm python-boto-2.42.0-10.2.src.rpm python-boto-doc-2.42.0-10.2.noarch.rpm python-simplejson-3.8.2-8.2.x86_64.rpm python-simplejson-debuginfo-3.8.2-8.2.x86_64.rpm python-simplejson-debugsource-3.8.2-8.2.x86_64.rpm openSUSE-2017-838 moderate openSUSE Leap 42.3 Update This update for virtualbox fixes the following issues: - VirtualBox would fail to start VMs "Kernel driver not installed (rc=-1908)" (boo#1037291) - Issues building kernel modules and guest additions (boo#1042726, boo#1044931) - Issue with configuring host-only network parameters (boo#1027742) - Revise warning screen concerning USB passthru - boo#1041137. Various upstream fixes are included in the 5.1.24 release: - VMM: mask the VME CPUID capability on AMD Ryzen processors for now to make certain guests works, for example Windows XP - VMM: emulate more SSE2 instructions - VMM: properly clear the TF and AC flags when dispatching real-mode interrupts - GUI: fixes to make the mini-toolbar work with recent versions of KDE / Plasma (bug #16325) - GUI: fixed a potential crash when a VM with multiple screens is running in full screen / seamless mode and a host screen is removed, for example when connecting to the host via RDP - GUI: fixed initial size hints for guests which set intermediate sizes before responding (bug #16593) - GUI: prevent stopped screen updates or black screen on reboot in a multi-screen setup under certain conditions - Audio: many improvements for Windows 10 guests (bugs #15189, #15925, #16170, #16682, #16794 and others) - Storage: fixed possible crash when using Intels SPDK - API: use the correct file name of the VM machine state if the VM settings directory is renamed, for example during grouping / ungrouping a VM (bugs #16075 and #16745) - API: return the correct error code if powering up a VM fails - API: video recording did not automatically start at VM start when enabled in the VM settings (bug #16803) - API: when relocating a medium, check that the target path is fully qualified - EFI: fix for VMs with more than 3504MB RAM (bug #11103) - Host-only adapter: correctly determine IPv4 netmasks on Windows hosts (bug #16826) - NAT network: properly do the refcounting for starting / stopping the NAT / DHCP services if the NAT network is changed while the adapter network connection type is anything else but NAT network - VBoxManage: fixed controlvm videocapfile (bug #16779) - Linux / Mac OS X hosts: more fixes for loading shared libraries (5.1.20 regression; bugs #16778, #16693) - Linux hosts / guests: Linux 4.12 fixes (bugs #16725, #16800) - Linux hosts / guests: reduce the kernel stack consumption for Linux kernels with CONFIG_CPUMASK_OFFSTACK defined - Linux hosts / guests: fixes for kernel modules built with gcc-7 (bug #16772) - Linux hosts / guests: Linux 4.13 fix (bug #16887) - Linux hosts: don't depend on net-tools on newer distributions as this package is deprecated in favour of iproute (bug #16764) - Linux hosts: make 2D video acceleration available for older Linux distributions (5.1 regression; bug #16858) - Linux Additions: fix for dynamic resizing with Oracle Linux 6 with UEK4 - Linux Additions: make Fedora 25 and 26 Alpha work when 3D pass-through is enabled - Linux Additions: no longer recommend removing distribution- installed Additions if they are updated to our guidelines python-virtualbox-5.1.24-22.1.x86_64.rpm python-virtualbox-debuginfo-5.1.24-22.1.x86_64.rpm virtualbox-5.1.24-22.1.src.rpm virtualbox-5.1.24-22.1.x86_64.rpm virtualbox-debuginfo-5.1.24-22.1.x86_64.rpm virtualbox-debugsource-5.1.24-22.1.x86_64.rpm virtualbox-devel-5.1.24-22.1.x86_64.rpm virtualbox-guest-desktop-icons-5.1.24-22.1.noarch.rpm virtualbox-guest-kmp-default-5.1.24_k4.4.76_1-22.1.x86_64.rpm virtualbox-guest-kmp-default-debuginfo-5.1.24_k4.4.76_1-22.1.x86_64.rpm virtualbox-guest-source-5.1.24-22.1.noarch.rpm virtualbox-guest-tools-5.1.24-22.1.x86_64.rpm virtualbox-guest-tools-debuginfo-5.1.24-22.1.x86_64.rpm virtualbox-guest-x11-5.1.24-22.1.x86_64.rpm virtualbox-guest-x11-debuginfo-5.1.24-22.1.x86_64.rpm virtualbox-host-kmp-default-5.1.24_k4.4.76_1-22.1.x86_64.rpm virtualbox-host-kmp-default-debuginfo-5.1.24_k4.4.76_1-22.1.x86_64.rpm virtualbox-host-source-5.1.24-22.1.noarch.rpm virtualbox-qt-5.1.24-22.1.x86_64.rpm virtualbox-qt-debuginfo-5.1.24-22.1.x86_64.rpm virtualbox-vnc-5.1.24-22.1.x86_64.rpm virtualbox-websrv-5.1.24-22.1.x86_64.rpm virtualbox-websrv-debuginfo-5.1.24-22.1.x86_64.rpm openSUSE-2017-831 important openSUSE Leap 42.3 Update This update for libXi fixes the following issues: - many X clients would crash with SIGSEGV on tablet devices or some GTK applications (bsc#1049681) libXi-1.7.5-8.1.src.rpm libXi-debugsource-1.7.5-8.1.i586.rpm libXi-devel-1.7.5-8.1.i586.rpm libXi-devel-32bit-1.7.5-8.1.x86_64.rpm libXi6-1.7.5-8.1.i586.rpm libXi6-32bit-1.7.5-8.1.x86_64.rpm libXi6-debuginfo-1.7.5-8.1.i586.rpm libXi6-debuginfo-32bit-1.7.5-8.1.x86_64.rpm libXi-debugsource-1.7.5-8.1.x86_64.rpm libXi-devel-1.7.5-8.1.x86_64.rpm libXi6-1.7.5-8.1.x86_64.rpm libXi6-debuginfo-1.7.5-8.1.x86_64.rpm openSUSE-2017-839 moderate openSUSE Leap 42.3 Update This update for coolkey provides fixes and enhancements, including: - PK15 support. - Fix CAC card support. - Fix card removal issues. - Add PKCS11 module to p11-kit-32bit. This update was imported from the SUSE:SLE-12:Update update project. coolkey-1.1.0-156.1.i586.rpm coolkey-1.1.0-156.1.src.rpm coolkey-32bit-1.1.0-156.1.x86_64.rpm coolkey-debuginfo-1.1.0-156.1.i586.rpm coolkey-debuginfo-32bit-1.1.0-156.1.x86_64.rpm coolkey-debugsource-1.1.0-156.1.i586.rpm coolkey-devel-1.1.0-156.1.i586.rpm coolkey-1.1.0-156.1.x86_64.rpm coolkey-debuginfo-1.1.0-156.1.x86_64.rpm coolkey-debugsource-1.1.0-156.1.x86_64.rpm coolkey-devel-1.1.0-156.1.x86_64.rpm openSUSE-2017-851 moderate openSUSE Leap 42.3 Update This update for GraphicsMagick fixes the following issue: - CVE-2017-11403: A specially crafted PNG file may have have triggerd a use-after-free flaw (boo#1049072) GraphicsMagick-1.3.25-17.1.i586.rpm GraphicsMagick-1.3.25-17.1.src.rpm GraphicsMagick-debuginfo-1.3.25-17.1.i586.rpm GraphicsMagick-debugsource-1.3.25-17.1.i586.rpm GraphicsMagick-devel-1.3.25-17.1.i586.rpm libGraphicsMagick++-Q16-12-1.3.25-17.1.i586.rpm libGraphicsMagick++-Q16-12-debuginfo-1.3.25-17.1.i586.rpm libGraphicsMagick++-devel-1.3.25-17.1.i586.rpm libGraphicsMagick-Q16-3-1.3.25-17.1.i586.rpm libGraphicsMagick-Q16-3-debuginfo-1.3.25-17.1.i586.rpm libGraphicsMagick3-config-1.3.25-17.1.i586.rpm libGraphicsMagickWand-Q16-2-1.3.25-17.1.i586.rpm libGraphicsMagickWand-Q16-2-debuginfo-1.3.25-17.1.i586.rpm perl-GraphicsMagick-1.3.25-17.1.i586.rpm perl-GraphicsMagick-debuginfo-1.3.25-17.1.i586.rpm GraphicsMagick-1.3.25-17.1.x86_64.rpm GraphicsMagick-debuginfo-1.3.25-17.1.x86_64.rpm GraphicsMagick-debugsource-1.3.25-17.1.x86_64.rpm GraphicsMagick-devel-1.3.25-17.1.x86_64.rpm libGraphicsMagick++-Q16-12-1.3.25-17.1.x86_64.rpm libGraphicsMagick++-Q16-12-debuginfo-1.3.25-17.1.x86_64.rpm libGraphicsMagick++-devel-1.3.25-17.1.x86_64.rpm libGraphicsMagick-Q16-3-1.3.25-17.1.x86_64.rpm libGraphicsMagick-Q16-3-debuginfo-1.3.25-17.1.x86_64.rpm libGraphicsMagick3-config-1.3.25-17.1.x86_64.rpm libGraphicsMagickWand-Q16-2-1.3.25-17.1.x86_64.rpm libGraphicsMagickWand-Q16-2-debuginfo-1.3.25-17.1.x86_64.rpm perl-GraphicsMagick-1.3.25-17.1.x86_64.rpm perl-GraphicsMagick-debuginfo-1.3.25-17.1.x86_64.rpm openSUSE-2017-856 low openSUSE Leap 42.3 Update This update for python-websockify fixes the following issues: - remove unused run-time dependency on pyOpenSSL (boo#1049987) python-websockify-0.8.0-5.1.noarch.rpm python-websockify-0.8.0-5.1.src.rpm openSUSE-2017-857 moderate openSUSE Leap 42.3 Update This update gnuhealth 3.2.1 fixes the following issues: - View error on lab order (bsc#1049985) gnuhealth-3.2.1-15.1.noarch.rpm gnuhealth-3.2.1-15.1.src.rpm openSUSE-2017-850 moderate openSUSE Leap 42.3 Update This update for the_silver_searcher to version 2.0.0 fixes a minor security issue and includes various improvements. New and updated functionality: - New and updated support for various file types - Performance improvements, including faster substring search - Add --print-all-files options to print all files searched - Add support for inverting ignore rules (e.g. !blah.txt) - Add zsh completion function The following functionality has changed: - No longer read from .agignore, .ignore is used The following potential security issue was fixed: - Heap buffer overflow when searching an absolute path (boo#1050057) The following bug fixes are included: - Fix context line printing when reading from a pipe - Ignore local-domain socket just like named pipes - Fix --word-regexp not applying to alternates the_silver_searcher-2.0.0-6.1.i586.rpm the_silver_searcher-2.0.0-6.1.src.rpm the_silver_searcher-debuginfo-2.0.0-6.1.i586.rpm the_silver_searcher-debugsource-2.0.0-6.1.i586.rpm the_silver_searcher-2.0.0-6.1.x86_64.rpm the_silver_searcher-debuginfo-2.0.0-6.1.x86_64.rpm the_silver_searcher-debugsource-2.0.0-6.1.x86_64.rpm openSUSE-2017-861 moderate openSUSE Leap 42.3 Update This update for oidentd fixes the following issues: - Upgrade and start-up problems related to service files (boo#953608) oidentd-2.0.8-153.1.i586.rpm oidentd-2.0.8-153.1.src.rpm oidentd-debuginfo-2.0.8-153.1.i586.rpm oidentd-debugsource-2.0.8-153.1.i586.rpm oidentd-2.0.8-153.1.x86_64.rpm oidentd-debuginfo-2.0.8-153.1.x86_64.rpm oidentd-debugsource-2.0.8-153.1.x86_64.rpm openSUSE-2017-862 low openSUSE Leap 42.3 Update This update for mpg123 fixes the following issues: - Improve over previous fix for CVE-2017-10683 to avoid playback issues (bsc#1046766) libmpg123-0-1.25.3-3.1.i586.rpm libmpg123-0-32bit-1.25.3-3.1.x86_64.rpm libmpg123-0-debuginfo-1.25.3-3.1.i586.rpm libmpg123-0-debuginfo-32bit-1.25.3-3.1.x86_64.rpm libout123-0-1.25.3-3.1.i586.rpm libout123-0-32bit-1.25.3-3.1.x86_64.rpm libout123-0-debuginfo-1.25.3-3.1.i586.rpm libout123-0-debuginfo-32bit-1.25.3-3.1.x86_64.rpm mpg123-1.25.3-3.1.i586.rpm mpg123-1.25.3-3.1.src.rpm mpg123-debuginfo-1.25.3-3.1.i586.rpm mpg123-debugsource-1.25.3-3.1.i586.rpm mpg123-devel-1.25.3-3.1.i586.rpm mpg123-devel-32bit-1.25.3-3.1.x86_64.rpm mpg123-esound-1.25.3-3.1.i586.rpm mpg123-esound-32bit-1.25.3-3.1.x86_64.rpm mpg123-esound-debuginfo-1.25.3-3.1.i586.rpm mpg123-esound-debuginfo-32bit-1.25.3-3.1.x86_64.rpm mpg123-jack-1.25.3-3.1.i586.rpm mpg123-jack-32bit-1.25.3-3.1.x86_64.rpm mpg123-jack-debuginfo-1.25.3-3.1.i586.rpm mpg123-jack-debuginfo-32bit-1.25.3-3.1.x86_64.rpm mpg123-openal-1.25.3-3.1.i586.rpm mpg123-openal-32bit-1.25.3-3.1.x86_64.rpm mpg123-openal-debuginfo-1.25.3-3.1.i586.rpm mpg123-openal-debuginfo-32bit-1.25.3-3.1.x86_64.rpm mpg123-portaudio-1.25.3-3.1.i586.rpm mpg123-portaudio-32bit-1.25.3-3.1.x86_64.rpm mpg123-portaudio-debuginfo-1.25.3-3.1.i586.rpm mpg123-portaudio-debuginfo-32bit-1.25.3-3.1.x86_64.rpm mpg123-pulse-1.25.3-3.1.i586.rpm mpg123-pulse-32bit-1.25.3-3.1.x86_64.rpm mpg123-pulse-debuginfo-1.25.3-3.1.i586.rpm mpg123-pulse-debuginfo-32bit-1.25.3-3.1.x86_64.rpm mpg123-sdl-1.25.3-3.1.i586.rpm mpg123-sdl-32bit-1.25.3-3.1.x86_64.rpm mpg123-sdl-debuginfo-1.25.3-3.1.i586.rpm mpg123-sdl-debuginfo-32bit-1.25.3-3.1.x86_64.rpm libmpg123-0-1.25.3-3.1.x86_64.rpm libmpg123-0-debuginfo-1.25.3-3.1.x86_64.rpm libout123-0-1.25.3-3.1.x86_64.rpm libout123-0-debuginfo-1.25.3-3.1.x86_64.rpm mpg123-1.25.3-3.1.x86_64.rpm mpg123-debuginfo-1.25.3-3.1.x86_64.rpm mpg123-debugsource-1.25.3-3.1.x86_64.rpm mpg123-devel-1.25.3-3.1.x86_64.rpm mpg123-esound-1.25.3-3.1.x86_64.rpm mpg123-esound-debuginfo-1.25.3-3.1.x86_64.rpm mpg123-jack-1.25.3-3.1.x86_64.rpm mpg123-jack-debuginfo-1.25.3-3.1.x86_64.rpm mpg123-openal-1.25.3-3.1.x86_64.rpm mpg123-openal-debuginfo-1.25.3-3.1.x86_64.rpm mpg123-portaudio-1.25.3-3.1.x86_64.rpm mpg123-portaudio-debuginfo-1.25.3-3.1.x86_64.rpm mpg123-pulse-1.25.3-3.1.x86_64.rpm mpg123-pulse-debuginfo-1.25.3-3.1.x86_64.rpm mpg123-sdl-1.25.3-3.1.x86_64.rpm mpg123-sdl-debuginfo-1.25.3-3.1.x86_64.rpm openSUSE-2017-866 moderate openSUSE Leap 42.3 Update This update for mysql-community-server to version 5.6.37 fixes security issues and bugs. The following vulnerabilities were fixed: - CVE-2017-3633: Memcached unspecified vulnerability (boo#1049394) - CVE-2017-3634: DML unspecified vulnerability (boo#1049396) - CVE-2017-3635: C API unspecified vulnerability (boo#1049398) - CVE-2017-3636: Client programs unspecified vulnerability (boo#1049399) - CVE-2017-3641: DML unspecified vulnerability (boo#1049404) - CVE-2017-3647: Replication unspecified vulnerability (boo#1049410) - CVE-2017-3648: Charsets unspecified vulnerability (boo#1049411) - CVE-2017-3649: Replication unspecified vulnerability (boo#1049412) - CVE-2017-3651: Client mysqldump unspecified vulnerability (boo#1049415) - CVE-2017-3652: DDL unspecified vulnerability (boo#1049416) - CVE-2017-3653: DDL unspecified vulnerability (boo#1049417) - CVE-2017-3732: Security, Encryption unspecified vulnerability (boo#1049421) The following general changes are included: - switch systemd unit file from 'Restart=on-failure' to 'Restart=on-abort' - update file lists for new man-pages and tools (for mariadb) For a list of upstream changes in this release, see: http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-37.html libmysql56client18-32bit-5.6.37-27.1.x86_64.rpm libmysql56client18-5.6.37-27.1.i586.rpm libmysql56client18-debuginfo-32bit-5.6.37-27.1.x86_64.rpm libmysql56client18-debuginfo-5.6.37-27.1.i586.rpm libmysql56client_r18-32bit-5.6.37-27.1.x86_64.rpm libmysql56client_r18-5.6.37-27.1.i586.rpm mysql-community-server-5.6.37-27.1.i586.rpm mysql-community-server-5.6.37-27.1.src.rpm mysql-community-server-bench-5.6.37-27.1.i586.rpm mysql-community-server-bench-debuginfo-5.6.37-27.1.i586.rpm mysql-community-server-client-5.6.37-27.1.i586.rpm mysql-community-server-client-debuginfo-5.6.37-27.1.i586.rpm mysql-community-server-debuginfo-5.6.37-27.1.i586.rpm mysql-community-server-debugsource-5.6.37-27.1.i586.rpm mysql-community-server-errormessages-5.6.37-27.1.i586.rpm mysql-community-server-test-5.6.37-27.1.i586.rpm mysql-community-server-test-debuginfo-5.6.37-27.1.i586.rpm mysql-community-server-tools-5.6.37-27.1.i586.rpm mysql-community-server-tools-debuginfo-5.6.37-27.1.i586.rpm libmysql56client18-5.6.37-27.1.x86_64.rpm libmysql56client18-debuginfo-5.6.37-27.1.x86_64.rpm libmysql56client_r18-5.6.37-27.1.x86_64.rpm mysql-community-server-5.6.37-27.1.x86_64.rpm mysql-community-server-bench-5.6.37-27.1.x86_64.rpm mysql-community-server-bench-debuginfo-5.6.37-27.1.x86_64.rpm mysql-community-server-client-5.6.37-27.1.x86_64.rpm mysql-community-server-client-debuginfo-5.6.37-27.1.x86_64.rpm mysql-community-server-debuginfo-5.6.37-27.1.x86_64.rpm mysql-community-server-debugsource-5.6.37-27.1.x86_64.rpm mysql-community-server-errormessages-5.6.37-27.1.x86_64.rpm mysql-community-server-test-5.6.37-27.1.x86_64.rpm mysql-community-server-test-debuginfo-5.6.37-27.1.x86_64.rpm mysql-community-server-tools-5.6.37-27.1.x86_64.rpm mysql-community-server-tools-debuginfo-5.6.37-27.1.x86_64.rpm openSUSE-2017-874 low openSUSE Leap 42.3 Update This update for enlightenment-theme-openSUSE fixes the following issues: - display issues in the Enlightenment window title bar and borders (boo#1050560) enlightenment-theme-openSUSE-20170726-3.1.noarch.rpm enlightenment-theme-openSUSE-20170726-3.1.src.rpm openSUSE-2017-931 important openSUSE Leap 42.3 Update This update for drm fixes the following issues: - GPU hang on Intel GPUs (bsc#1050256) - large topology support for vmwgfx (bsc#1048155) drm-4.9.33-5.2.src.rpm drm-debugsource-4.9.33-5.2.x86_64.rpm drm-kmp-default-4.9.33_k4.4.79_4-5.2.x86_64.rpm drm-kmp-default-debuginfo-4.9.33_k4.4.79_4-5.2.x86_64.rpm openSUSE-2017-865 moderate openSUSE Leap 42.3 Update This update for apache2 fixes the following issues: Security issue fixed: - CVE-2017-9788: Uninitialized memory reflection in mod_auth_digest. (bsc#1048576) Bug fixes: - Include individual sysconfig.d files instead of the whole sysconfig.d directory. - Include sysconfig.d/include.conf after httpd.conf is processed. (bsc#1023616, bsc#1043055) This update was imported from the SUSE:SLE-12-SP2:Update update project. apache2-2.4.23-13.1.i586.rpm apache2-2.4.23-13.1.src.rpm apache2-debuginfo-2.4.23-13.1.i586.rpm apache2-debugsource-2.4.23-13.1.i586.rpm apache2-devel-2.4.23-13.1.i586.rpm apache2-doc-2.4.23-13.1.noarch.rpm apache2-event-2.4.23-13.1.i586.rpm apache2-event-debuginfo-2.4.23-13.1.i586.rpm apache2-example-pages-2.4.23-13.1.i586.rpm apache2-prefork-2.4.23-13.1.i586.rpm apache2-prefork-debuginfo-2.4.23-13.1.i586.rpm apache2-utils-2.4.23-13.1.i586.rpm apache2-utils-debuginfo-2.4.23-13.1.i586.rpm apache2-worker-2.4.23-13.1.i586.rpm apache2-worker-debuginfo-2.4.23-13.1.i586.rpm apache2-2.4.23-13.1.x86_64.rpm apache2-debuginfo-2.4.23-13.1.x86_64.rpm apache2-debugsource-2.4.23-13.1.x86_64.rpm apache2-devel-2.4.23-13.1.x86_64.rpm apache2-event-2.4.23-13.1.x86_64.rpm apache2-event-debuginfo-2.4.23-13.1.x86_64.rpm apache2-example-pages-2.4.23-13.1.x86_64.rpm apache2-prefork-2.4.23-13.1.x86_64.rpm apache2-prefork-debuginfo-2.4.23-13.1.x86_64.rpm apache2-utils-2.4.23-13.1.x86_64.rpm apache2-utils-debuginfo-2.4.23-13.1.x86_64.rpm apache2-worker-2.4.23-13.1.x86_64.rpm apache2-worker-debuginfo-2.4.23-13.1.x86_64.rpm openSUSE-2017-854 important openSUSE Leap 42.3 Update This update Chromium to version 60.0.3112.78 fixes security issue and bugs. The following security issues were fixed: * CVE-2017-5091: Use after free in IndexedDB * CVE-2017-5092: Use after free in PPAPI * CVE-2017-5093: UI spoofing in Blink * CVE-2017-5094: Type confusion in extensions * CVE-2017-5095: Out-of-bounds write in PDFium * CVE-2017-5096: User information leak via Android intents * CVE-2017-5097: Out-of-bounds read in Skia * CVE-2017-5098: Use after free in V8 * CVE-2017-5099: Out-of-bounds write in PPAPI * CVE-2017-5100: Use after free in Chrome Apps * CVE-2017-5101: URL spoofing in OmniBox * CVE-2017-5102: Uninitialized use in Skia * CVE-2017-5103: Uninitialized use in Skia * CVE-2017-5104: UI spoofing in browser * CVE-2017-7000: Pointer disclosure in SQLite * CVE-2017-5105: URL spoofing in OmniBox * CVE-2017-5106: URL spoofing in OmniBox * CVE-2017-5107: User information leak via SVG * CVE-2017-5108: Type confusion in PDFium * CVE-2017-5109: UI spoofing in browser * CVE-2017-5110: UI spoofing in payments dialog * Various fixes from internal audits, fuzzing and other initiatives A number of upstream bugfixes are also included in this release. chromedriver-60.0.3112.78-107.1.x86_64.rpm chromedriver-debuginfo-60.0.3112.78-107.1.x86_64.rpm chromium-60.0.3112.78-107.1.src.rpm chromium-60.0.3112.78-107.1.x86_64.rpm chromium-debuginfo-60.0.3112.78-107.1.x86_64.rpm chromium-debugsource-60.0.3112.78-107.1.x86_64.rpm openSUSE-2017-872 low openSUSE Leap 42.3 Update This update for procps provides the following fixes: - Allow reading and writing content lines longer than 1024 characters under /proc/sys (bsc#1039941) - Avoid printing messages when /proc/sys/net/ipv6/conf/*/stable_secret is not set This update was imported from the SUSE:SLE-12:Update update project. libprocps3-3.3.9-14.1.i586.rpm libprocps3-debuginfo-3.3.9-14.1.i586.rpm procps-3.3.9-14.1.i586.rpm procps-3.3.9-14.1.src.rpm procps-debuginfo-3.3.9-14.1.i586.rpm procps-debugsource-3.3.9-14.1.i586.rpm procps-devel-3.3.9-14.1.i586.rpm libprocps3-3.3.9-14.1.x86_64.rpm libprocps3-debuginfo-3.3.9-14.1.x86_64.rpm procps-3.3.9-14.1.x86_64.rpm procps-debuginfo-3.3.9-14.1.x86_64.rpm procps-debugsource-3.3.9-14.1.x86_64.rpm procps-devel-3.3.9-14.1.x86_64.rpm openSUSE-2017-881 moderate openSUSE Leap 42.3 Update This update for icoutils fixes the following issues: - CVE-2017-6009: Buffer Overflows in wrestool (bsc#1025703) - CVE-2017-6010, CVE-2017-6011: out-of-bounds read leading to a buffer overflow in the "simple_vec" function (bsc#1025700) icoutils-0.31.3-13.1.i586.rpm icoutils-0.31.3-13.1.src.rpm icoutils-debuginfo-0.31.3-13.1.i586.rpm icoutils-debugsource-0.31.3-13.1.i586.rpm icoutils-0.31.3-13.1.x86_64.rpm icoutils-debuginfo-0.31.3-13.1.x86_64.rpm icoutils-debugsource-0.31.3-13.1.x86_64.rpm openSUSE-2017-871 low openSUSE Leap 42.3 Update This update for shotwell fixes the following issues: - Fix segmentation fault on "Import From Application..." after disabling plugins (bsc#1040047) This update was imported from the SUSE:SLE-12-SP2:Update update project. shotwell-0.22.0+git.20160103-11.1.src.rpm shotwell-0.22.0+git.20160103-11.1.x86_64.rpm shotwell-debuginfo-0.22.0+git.20160103-11.1.x86_64.rpm shotwell-debugsource-0.22.0+git.20160103-11.1.x86_64.rpm shotwell-lang-0.22.0+git.20160103-11.1.noarch.rpm openSUSE-2017-870 moderate openSUSE Leap 42.3 Update This update for squidGuard provides the following fixes: - Adapt squidGuard to work properly with current versions of squid (bsc#1040757) - Change the default configuration file to only reference existing filter lists (bsc#961499) This update was imported from the SUSE:SLE-12:Update update project. squidGuard-1.4-8.1.src.rpm squidGuard-1.4-8.1.x86_64.rpm squidGuard-debuginfo-1.4-8.1.x86_64.rpm squidGuard-debugsource-1.4-8.1.x86_64.rpm squidGuard-doc-1.4-8.1.x86_64.rpm openSUSE-2017-869 moderate openSUSE Leap 42.3 Update This update for libical fixes the following issues: Security issues fixed: - CVE-2016-5824: libical 1.0 allows remote attackers to cause a denial of service (use-after-free) via a crafted ics file. (bsc#986639) - CVE-2016-5827: The icaltime_from_string function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted string to the icalparser_parse_string function. (bsc#986631) - CVE-2016-9584: libical allows remote attackers to cause a denial of service (use-after-free) and possibly read heap memory via a crafted ics file. (bsc#1015964) Bug fixes: - libical crashes while parsing timezones (bsc#1044995) This update was imported from the SUSE:SLE-12-SP2:Update update project. libical-1.0.1-16.1.src.rpm libical-debugsource-1.0.1-16.1.i586.rpm libical-devel-1.0.1-16.1.i586.rpm libical-devel-static-1.0.1-16.1.i586.rpm libical-doc-1.0.1-16.1.noarch.rpm libical1-1.0.1-16.1.i586.rpm libical1-32bit-1.0.1-16.1.x86_64.rpm libical1-debuginfo-1.0.1-16.1.i586.rpm libical1-debuginfo-32bit-1.0.1-16.1.x86_64.rpm libical-debugsource-1.0.1-16.1.x86_64.rpm libical-devel-1.0.1-16.1.x86_64.rpm libical-devel-static-1.0.1-16.1.x86_64.rpm libical1-1.0.1-16.1.x86_64.rpm libical1-debuginfo-1.0.1-16.1.x86_64.rpm openSUSE-2017-883 moderate openSUSE Leap 42.3 Update This update for poppler fixes the following issues: Security issues fixed: - CVE-2017-9775: DoS stack buffer overflow in GfxState.cc in pdftocairo via a crafted PDF document (bsc#1045719) - CVE-2017-9776: DoS integer overflow leading to heap buffer overflow in JBIG2Stream.cc via a crafted PDF document (bsc#1045721) - CVE-2017-7515: Stack exhaustion due to infinite recursive call in pdfunite (bsc#1043088) - CVE-2017-7511: Null pointer dereference in pdfunite via crafted documents (bsc#1041783) - CVE-2017-9406: Memory leak in the gmalloc function in gmem.cc (bsc#1042803) - CVE-2017-9408: Memory leak in the Object::initArray function (bsc#1042802) This update was imported from the SUSE:SLE-12-SP2:Update update project. libpoppler-qt4-4-0.43.0-5.1.i586.rpm libpoppler-qt4-4-32bit-0.43.0-5.1.x86_64.rpm libpoppler-qt4-4-debuginfo-0.43.0-5.1.i586.rpm libpoppler-qt4-4-debuginfo-32bit-0.43.0-5.1.x86_64.rpm libpoppler-qt4-devel-0.43.0-5.1.i586.rpm poppler-qt-0.43.0-5.1.src.rpm poppler-qt-debugsource-0.43.0-5.1.i586.rpm libpoppler-qt5-1-0.43.0-5.1.i586.rpm libpoppler-qt5-1-32bit-0.43.0-5.1.x86_64.rpm libpoppler-qt5-1-debuginfo-0.43.0-5.1.i586.rpm libpoppler-qt5-1-debuginfo-32bit-0.43.0-5.1.x86_64.rpm libpoppler-qt5-devel-0.43.0-5.1.i586.rpm poppler-qt5-0.43.0-5.1.src.rpm poppler-qt5-debugsource-0.43.0-5.1.i586.rpm libpoppler-cpp0-0.43.0-5.1.i586.rpm libpoppler-cpp0-32bit-0.43.0-5.1.x86_64.rpm libpoppler-cpp0-debuginfo-0.43.0-5.1.i586.rpm libpoppler-cpp0-debuginfo-32bit-0.43.0-5.1.x86_64.rpm libpoppler-devel-0.43.0-5.1.i586.rpm libpoppler-glib-devel-0.43.0-5.1.i586.rpm libpoppler-glib8-0.43.0-5.1.i586.rpm libpoppler-glib8-32bit-0.43.0-5.1.x86_64.rpm libpoppler-glib8-debuginfo-0.43.0-5.1.i586.rpm libpoppler-glib8-debuginfo-32bit-0.43.0-5.1.x86_64.rpm libpoppler60-0.43.0-5.1.i586.rpm libpoppler60-32bit-0.43.0-5.1.x86_64.rpm libpoppler60-debuginfo-0.43.0-5.1.i586.rpm libpoppler60-debuginfo-32bit-0.43.0-5.1.x86_64.rpm poppler-0.43.0-5.1.src.rpm poppler-debugsource-0.43.0-5.1.i586.rpm poppler-tools-0.43.0-5.1.i586.rpm poppler-tools-debuginfo-0.43.0-5.1.i586.rpm typelib-1_0-Poppler-0_18-0.43.0-5.1.i586.rpm libpoppler-qt4-4-0.43.0-5.1.x86_64.rpm libpoppler-qt4-4-debuginfo-0.43.0-5.1.x86_64.rpm libpoppler-qt4-devel-0.43.0-5.1.x86_64.rpm poppler-qt-debugsource-0.43.0-5.1.x86_64.rpm libpoppler-qt5-1-0.43.0-5.1.x86_64.rpm libpoppler-qt5-1-debuginfo-0.43.0-5.1.x86_64.rpm libpoppler-qt5-devel-0.43.0-5.1.x86_64.rpm poppler-qt5-debugsource-0.43.0-5.1.x86_64.rpm libpoppler-cpp0-0.43.0-5.1.x86_64.rpm libpoppler-cpp0-debuginfo-0.43.0-5.1.x86_64.rpm libpoppler-devel-0.43.0-5.1.x86_64.rpm libpoppler-glib-devel-0.43.0-5.1.x86_64.rpm libpoppler-glib8-0.43.0-5.1.x86_64.rpm libpoppler-glib8-debuginfo-0.43.0-5.1.x86_64.rpm libpoppler60-0.43.0-5.1.x86_64.rpm libpoppler60-debuginfo-0.43.0-5.1.x86_64.rpm poppler-debugsource-0.43.0-5.1.x86_64.rpm poppler-tools-0.43.0-5.1.x86_64.rpm poppler-tools-debuginfo-0.43.0-5.1.x86_64.rpm typelib-1_0-Poppler-0_18-0.43.0-5.1.x86_64.rpm openSUSE-2017-884 moderate openSUSE Leap 42.3 Update This update for texlive-specs-a fixes the following issues: - lualatex does not compile document that uses texlive-algorithm2e package (boo#1051054) texlive-12many-2016.122.0.0.3svn15878-26.1.noarch.rpm texlive-12many-doc-2016.122.0.0.3svn15878-26.1.noarch.rpm texlive-2up-2016.122.svn40417-26.1.noarch.rpm texlive-2up-doc-2016.122.svn40417-26.1.noarch.rpm texlive-Asana-Math-2016.122.0.000.955svn37556-26.1.noarch.rpm texlive-Asana-Math-doc-2016.122.0.000.955svn37556-26.1.noarch.rpm texlive-Asana-Math-fonts-2016.122.0.000.955svn37556-26.1.noarch.rpm texlive-ESIEEcv-2016.122.svn15878-26.1.noarch.rpm texlive-ESIEEcv-doc-2016.122.svn15878-26.1.noarch.rpm texlive-FAQ-en-2016.122.3.28svn34303-26.1.noarch.rpm texlive-GS1-2016.122.15svn27540-26.1.noarch.rpm texlive-GS1-doc-2016.122.15svn27540-26.1.noarch.rpm texlive-HA-prosper-2016.122.4.21svn15878-26.1.noarch.rpm texlive-HA-prosper-doc-2016.122.4.21svn15878-26.1.noarch.rpm texlive-IEEEconf-2016.122.1.4svn15878-26.1.noarch.rpm texlive-IEEEconf-doc-2016.122.1.4svn15878-26.1.noarch.rpm texlive-IEEEtran-2016.122.1.8bsvn38238-26.1.noarch.rpm texlive-IEEEtran-doc-2016.122.1.8bsvn38238-26.1.noarch.rpm texlive-MemoirChapStyles-2016.122.1.7esvn25918-26.1.noarch.rpm texlive-SIstyle-2016.122.2.3asvn15878-26.1.noarch.rpm texlive-SIstyle-doc-2016.122.2.3asvn15878-26.1.noarch.rpm texlive-SIunits-2016.122.1.36svn15878-26.1.noarch.rpm texlive-SIunits-doc-2016.122.1.36svn15878-26.1.noarch.rpm texlive-Tabbing-2016.122.svn17022-26.1.noarch.rpm texlive-Tabbing-doc-2016.122.svn17022-26.1.noarch.rpm texlive-Type1fonts-2016.122.2.14svn19603-26.1.noarch.rpm texlive-a0poster-2016.122.1.22bsvn15878-26.1.noarch.rpm texlive-a0poster-doc-2016.122.1.22bsvn15878-26.1.noarch.rpm texlive-a2ping-2016.122.svn29725-26.1.noarch.rpm texlive-a2ping-doc-2016.122.svn29725-26.1.noarch.rpm texlive-a4wide-2016.122.svn20943-26.1.noarch.rpm texlive-a4wide-doc-2016.122.svn20943-26.1.noarch.rpm texlive-a5comb-2016.122.4svn17020-26.1.noarch.rpm texlive-a5comb-doc-2016.122.4svn17020-26.1.noarch.rpm texlive-aastex-2016.122.6.0svn39929-26.1.noarch.rpm texlive-aastex-doc-2016.122.6.0svn39929-26.1.noarch.rpm texlive-abbr-2016.122.svn15878-26.1.noarch.rpm texlive-abbr-doc-2016.122.svn15878-26.1.noarch.rpm texlive-abc-2016.122.2.0bsvn41157-26.1.noarch.rpm texlive-abc-doc-2016.122.2.0bsvn41157-26.1.noarch.rpm texlive-abntex2-2016.122.1.9.6svn39913-26.1.noarch.rpm texlive-abntex2-doc-2016.122.1.9.6svn39913-26.1.noarch.rpm texlive-abraces-2016.122.1._svn27880-26.1.noarch.rpm texlive-abraces-doc-2016.122.1._svn27880-26.1.noarch.rpm texlive-abstract-2016.122.1.2asvn15878-26.1.noarch.rpm texlive-abstract-doc-2016.122.1.2asvn15878-26.1.noarch.rpm texlive-abstyles-2016.122.svn15878-26.1.noarch.rpm texlive-abstyles-doc-2016.122.svn15878-26.1.noarch.rpm texlive-academicons-2016.122.1.7.0svn41194-26.1.noarch.rpm texlive-academicons-doc-2016.122.1.7.0svn41194-26.1.noarch.rpm texlive-academicons-fonts-2016.122.1.7.0svn41194-26.1.noarch.rpm texlive-accanthis-2016.122.svn32089-26.1.noarch.rpm texlive-accanthis-doc-2016.122.svn32089-26.1.noarch.rpm texlive-accanthis-fonts-2016.122.svn32089-26.1.noarch.rpm texlive-accfonts-2016.122.0.0.25svn18835-26.1.noarch.rpm texlive-accfonts-doc-2016.122.0.0.25svn18835-26.1.noarch.rpm texlive-achemso-2016.122.3.10csvn41037-26.1.noarch.rpm texlive-achemso-doc-2016.122.3.10csvn41037-26.1.noarch.rpm texlive-acmart-2016.122.1.09svn41243-26.1.noarch.rpm texlive-acmart-doc-2016.122.1.09svn41243-26.1.noarch.rpm texlive-acmconf-2016.122.1.3svn15878-26.1.noarch.rpm texlive-acmconf-doc-2016.122.1.3svn15878-26.1.noarch.rpm texlive-acro-2016.122.2.4bsvn40874-26.1.noarch.rpm texlive-acro-doc-2016.122.2.4bsvn40874-26.1.noarch.rpm texlive-acronym-2016.122.1.41svn36582-26.1.noarch.rpm texlive-acronym-doc-2016.122.1.41svn36582-26.1.noarch.rpm texlive-acroterm-2016.122.0.0.1svn20498-26.1.noarch.rpm texlive-acroterm-doc-2016.122.0.0.1svn20498-26.1.noarch.rpm texlive-active-conf-2016.122.0.0.3asvn15878-26.1.noarch.rpm texlive-active-conf-doc-2016.122.0.0.3asvn15878-26.1.noarch.rpm texlive-actuarialangle-2016.122.svn28004-26.1.noarch.rpm texlive-actuarialangle-doc-2016.122.svn28004-26.1.noarch.rpm texlive-addlines-2016.122.0.0.2asvn37805-26.1.noarch.rpm texlive-addlines-doc-2016.122.0.0.2asvn37805-26.1.noarch.rpm texlive-adfathesis-2016.122.2.42svn26048-26.1.noarch.rpm texlive-adfathesis-doc-2016.122.2.42svn26048-26.1.noarch.rpm texlive-adforn-2016.122.1.001_b_2svn20019-26.1.noarch.rpm texlive-adforn-doc-2016.122.1.001_b_2svn20019-26.1.noarch.rpm texlive-adforn-fonts-2016.122.1.001_b_2svn20019-26.1.noarch.rpm texlive-adfsymbols-2016.122.1.001svn19766-26.1.noarch.rpm texlive-adfsymbols-doc-2016.122.1.001svn19766-26.1.noarch.rpm texlive-adfsymbols-fonts-2016.122.1.001svn19766-26.1.noarch.rpm texlive-adhocfilelist-2016.122.svn29349-26.1.noarch.rpm texlive-adhocfilelist-doc-2016.122.svn29349-26.1.noarch.rpm texlive-adjmulticol-2016.122.1.1svn28936-26.1.noarch.rpm texlive-adjmulticol-doc-2016.122.1.1svn28936-26.1.noarch.rpm texlive-adjustbox-2016.122.1.0svn26555-26.1.noarch.rpm texlive-adjustbox-doc-2016.122.1.0svn26555-26.1.noarch.rpm texlive-adobemapping-2016.122.svn41067-26.1.noarch.rpm texlive-adrconv-2016.122.1.3svn17683-26.1.noarch.rpm texlive-adrconv-doc-2016.122.1.3svn17683-26.1.noarch.rpm texlive-adtrees-2016.122.1.0svn39438-26.1.noarch.rpm texlive-adtrees-doc-2016.122.1.0svn39438-26.1.noarch.rpm texlive-advdate-2016.122.svn20538-26.1.noarch.rpm texlive-advdate-doc-2016.122.svn20538-26.1.noarch.rpm texlive-ae-2016.122.1.4svn15878-26.1.noarch.rpm texlive-ae-doc-2016.122.1.4svn15878-26.1.noarch.rpm texlive-aecc-2016.122.1.0svn28574-26.1.noarch.rpm texlive-aecc-doc-2016.122.1.0svn28574-26.1.noarch.rpm texlive-aeguill-2016.122.svn15878-26.1.noarch.rpm texlive-aeguill-doc-2016.122.svn15878-26.1.noarch.rpm texlive-afm2pl-2016.122.svn40768-26.1.noarch.rpm texlive-afm2pl-doc-2016.122.svn40768-26.1.noarch.rpm texlive-afparticle-2016.122.1.3svn35900-26.1.noarch.rpm texlive-afparticle-doc-2016.122.1.3svn35900-26.1.noarch.rpm texlive-afthesis-2016.122.2.7svn15878-26.1.noarch.rpm texlive-afthesis-doc-2016.122.2.7svn15878-26.1.noarch.rpm texlive-aguplus-2016.122.1.6bsvn17156-26.1.noarch.rpm texlive-aguplus-doc-2016.122.1.6bsvn17156-26.1.noarch.rpm texlive-aiaa-2016.122.3.6svn15878-26.1.noarch.rpm texlive-aiaa-doc-2016.122.3.6svn15878-26.1.noarch.rpm texlive-aichej-2016.122.svn15878-26.1.noarch.rpm texlive-ajl-2016.122.svn34016-26.1.noarch.rpm texlive-akktex-2016.122.0.0.3.2svn26055-26.1.noarch.rpm texlive-akktex-doc-2016.122.0.0.3.2svn26055-26.1.noarch.rpm texlive-akletter-2016.122.1.5isvn15878-26.1.noarch.rpm texlive-akletter-doc-2016.122.1.5isvn15878-26.1.noarch.rpm texlive-alegreya-2016.122.svn38689-26.1.noarch.rpm texlive-alegreya-doc-2016.122.svn38689-26.1.noarch.rpm texlive-alegreya-fonts-2016.122.svn38689-26.1.noarch.rpm texlive-aleph-2016.122.svn40768-26.1.noarch.rpm texlive-alertmessage-2016.122.1.1svn38055-26.1.noarch.rpm texlive-alertmessage-doc-2016.122.1.1svn38055-26.1.noarch.rpm texlive-alg-2016.122.svn15878-26.1.noarch.rpm texlive-alg-doc-2016.122.svn15878-26.1.noarch.rpm texlive-algorithm2e-2016.122.5.1svn38805-26.1.noarch.rpm texlive-algorithm2e-doc-2016.122.5.1svn38805-26.1.noarch.rpm texlive-algorithmicx-2016.122.svn15878-26.1.noarch.rpm texlive-algorithmicx-doc-2016.122.svn15878-26.1.noarch.rpm texlive-algorithms-2016.122.0.0.1svn38085-26.1.noarch.rpm texlive-algorithms-doc-2016.122.0.0.1svn38085-26.1.noarch.rpm texlive-allrunes-2016.122.2.1svn21886-26.1.noarch.rpm texlive-allrunes-doc-2016.122.2.1svn21886-26.1.noarch.rpm texlive-allrunes-fonts-2016.122.2.1svn21886-26.1.noarch.rpm texlive-almfixed-2016.122.0.0.92svn35065-26.1.noarch.rpm texlive-almfixed-doc-2016.122.0.0.92svn35065-26.1.noarch.rpm texlive-almfixed-fonts-2016.122.0.0.92svn35065-26.1.noarch.rpm texlive-alnumsec-2016.122.0.0.03svn15878-26.1.noarch.rpm texlive-alnumsec-doc-2016.122.0.0.03svn15878-26.1.noarch.rpm texlive-alterqcm-2016.122.3.7csvn23385-26.1.noarch.rpm texlive-alterqcm-doc-2016.122.3.7csvn23385-26.1.noarch.rpm texlive-altfont-2016.122.1.1svn15878-26.1.noarch.rpm texlive-altfont-doc-2016.122.1.1svn15878-26.1.noarch.rpm texlive-ametsoc-2016.122.4.3.2svn36030-26.1.noarch.rpm texlive-ametsoc-doc-2016.122.4.3.2svn36030-26.1.noarch.rpm texlive-amiri-2016.122.0.0.108svn38429-26.1.noarch.rpm texlive-amiri-doc-2016.122.0.0.108svn38429-26.1.noarch.rpm texlive-amiri-fonts-2016.122.0.0.108svn38429-26.1.noarch.rpm texlive-amsaddr-2016.122.1.1svn29630-26.1.noarch.rpm texlive-amsaddr-doc-2016.122.1.1svn29630-26.1.noarch.rpm texlive-amscls-2016.122.svn36804-26.1.noarch.rpm texlive-amscls-doc-2016.122.svn36804-26.1.noarch.rpm texlive-amsfonts-2016.122.3.04svn29208-26.1.noarch.rpm texlive-amsfonts-doc-2016.122.3.04svn29208-26.1.noarch.rpm texlive-amsfonts-fonts-2016.122.3.04svn29208-26.1.noarch.rpm texlive-amslatex-primer-2016.122.2.3svn28980-26.1.noarch.rpm texlive-amsldoc-it-2016.122.svn15878-26.1.noarch.rpm texlive-amsldoc-vn-2016.122.2.0svn21855-26.1.noarch.rpm texlive-amsmath-2016.122.2.15bsvn40218-26.1.noarch.rpm texlive-amsmath-doc-2016.122.2.15bsvn40218-26.1.noarch.rpm texlive-amsmath-it-2016.122.svn22930-26.1.noarch.rpm texlive-amsrefs-2016.122.2.14svn30646-26.1.noarch.rpm texlive-amsrefs-doc-2016.122.2.14svn30646-26.1.noarch.rpm texlive-amstex-2016.122.2.2svn40768-26.1.noarch.rpm texlive-amstex-doc-2016.122.2.2svn40768-26.1.noarch.rpm texlive-amsthdoc-it-2016.122.svn15878-26.1.noarch.rpm texlive-animate-2016.122.svn40534-26.1.noarch.rpm texlive-animate-doc-2016.122.svn40534-26.1.noarch.rpm texlive-anonchap-2016.122.1.1asvn17049-26.1.noarch.rpm texlive-anonchap-doc-2016.122.1.1asvn17049-26.1.noarch.rpm texlive-anonymouspro-2016.122.2.1svn33441-26.1.noarch.rpm texlive-anonymouspro-doc-2016.122.2.1svn33441-26.1.noarch.rpm texlive-anonymouspro-fonts-2016.122.2.1svn33441-26.1.noarch.rpm texlive-answers-2016.122.2.16svn35032-26.1.noarch.rpm texlive-answers-doc-2016.122.2.16svn35032-26.1.noarch.rpm texlive-antiqua-2016.122.001.003svn24266-26.1.noarch.rpm texlive-antiqua-doc-2016.122.001.003svn24266-26.1.noarch.rpm texlive-antiqua-fonts-2016.122.001.003svn24266-26.1.noarch.rpm texlive-antomega-2016.122.0.0.8svn21933-26.1.noarch.rpm texlive-antomega-doc-2016.122.0.0.8svn21933-26.1.noarch.rpm texlive-antt-2016.122.2.08svn18651-26.1.noarch.rpm texlive-antt-doc-2016.122.2.08svn18651-26.1.noarch.rpm texlive-antt-fonts-2016.122.2.08svn18651-26.1.noarch.rpm texlive-anufinalexam-2016.122.svn26053-26.1.noarch.rpm texlive-anyfontsize-2016.122.svn17050-26.1.noarch.rpm texlive-anyfontsize-doc-2016.122.svn17050-26.1.noarch.rpm texlive-anysize-2016.122.svn15878-26.1.noarch.rpm texlive-anysize-doc-2016.122.svn15878-26.1.noarch.rpm texlive-aobs-tikz-2016.122.1.0svn32662-26.1.noarch.rpm texlive-aobs-tikz-doc-2016.122.1.0svn32662-26.1.noarch.rpm texlive-aomart-2016.122.1.14asvn36324-26.1.noarch.rpm texlive-aomart-doc-2016.122.1.14asvn36324-26.1.noarch.rpm texlive-apa-2016.122.1.3.4svn15878-26.1.noarch.rpm texlive-apa-doc-2016.122.1.3.4svn15878-26.1.noarch.rpm texlive-apa6-2016.122.2.14svn35631-26.1.noarch.rpm texlive-apa6-doc-2016.122.2.14svn35631-26.1.noarch.rpm texlive-apa6e-2016.122.0.0.3svn23350-26.1.noarch.rpm texlive-apa6e-doc-2016.122.0.0.3svn23350-26.1.noarch.rpm texlive-apacite-2016.122.6.03svn31264-26.1.noarch.rpm texlive-apacite-doc-2016.122.6.03svn31264-26.1.noarch.rpm texlive-apalike2-2016.122.svn15878-26.1.noarch.rpm texlive-apnum-2016.122.1.6svn39710-26.1.noarch.rpm texlive-apnum-doc-2016.122.1.6svn39710-26.1.noarch.rpm texlive-appendix-2016.122.1.2bsvn39039-26.1.noarch.rpm texlive-appendix-doc-2016.122.1.2bsvn39039-26.1.noarch.rpm texlive-appendixnumberbeamer-2016.122.svn40322-26.1.noarch.rpm texlive-appendixnumberbeamer-doc-2016.122.svn40322-26.1.noarch.rpm texlive-apprends-latex-2016.122.4.02svn19306-26.1.noarch.rpm texlive-apptools-2016.122.1.0svn28400-26.1.noarch.rpm texlive-apptools-doc-2016.122.1.0svn28400-26.1.noarch.rpm texlive-arabi-2016.122.1.1svn25095-26.1.noarch.rpm texlive-arabi-add-2016.122.1.0svn37709-26.1.noarch.rpm texlive-arabi-add-doc-2016.122.1.0svn37709-26.1.noarch.rpm texlive-arabi-doc-2016.122.1.1svn25095-26.1.noarch.rpm texlive-arabi-fonts-2016.122.1.1svn25095-26.1.noarch.rpm texlive-arabluatex-2016.122.1.2svn40990-26.1.noarch.rpm texlive-arabluatex-doc-2016.122.1.2svn40990-26.1.noarch.rpm texlive-arabtex-2016.122.3.17svn25711-26.1.noarch.rpm texlive-arabtex-doc-2016.122.3.17svn25711-26.1.noarch.rpm texlive-arabtex-fonts-2016.122.3.17svn25711-26.1.noarch.rpm texlive-arabxetex-2016.122.1.2.1svn38299-26.1.noarch.rpm texlive-arabxetex-doc-2016.122.1.2.1svn38299-26.1.noarch.rpm texlive-aramaic-serto-2016.122.1.0svn30042-26.1.noarch.rpm texlive-aramaic-serto-doc-2016.122.1.0svn30042-26.1.noarch.rpm texlive-aramaic-serto-fonts-2016.122.1.0svn30042-26.1.noarch.rpm texlive-arara-2016.122.3.0svn29762-26.1.noarch.rpm texlive-arara-doc-2016.122.3.0svn29762-26.1.noarch.rpm texlive-archaeologie-2016.122.1.42svn40054-26.1.noarch.rpm texlive-archaeologie-doc-2016.122.1.42svn40054-26.1.noarch.rpm texlive-archaic-2016.122.svn38005-26.1.noarch.rpm texlive-archaic-doc-2016.122.svn38005-26.1.noarch.rpm texlive-archaic-fonts-2016.122.svn38005-26.1.noarch.rpm texlive-arcs-2016.122.1svn15878-26.1.noarch.rpm texlive-arcs-doc-2016.122.1svn15878-26.1.noarch.rpm texlive-arev-2016.122.svn15878-26.1.noarch.rpm texlive-arev-doc-2016.122.svn15878-26.1.noarch.rpm texlive-arev-fonts-2016.122.svn15878-26.1.noarch.rpm texlive-armtex-2016.122.3.0_beta3svn33894-26.1.noarch.rpm texlive-armtex-doc-2016.122.3.0_beta3svn33894-26.1.noarch.rpm texlive-armtex-fonts-2016.122.3.0_beta3svn33894-26.1.noarch.rpm texlive-around-the-bend-2016.122.svn15878-26.1.noarch.rpm texlive-arphic-2016.122.svn15878-26.1.noarch.rpm texlive-arphic-doc-2016.122.svn15878-26.1.noarch.rpm texlive-arphic-fonts-2016.122.svn15878-26.1.noarch.rpm texlive-specs-a-2016-26.1.src.rpm openSUSE-2017-885 moderate openSUSE Leap 42.3 Update This update to kopano-webapp fixes the following issues: Update to 3.3.1, the version originally included in Leap 42.3 was a git snapshot. This also includes upstream bug fixes: * Improve webapp presence cache by making it hash-based * Various UI bugfixes * Contact and business card bug fixes kopano-webapp-3.3.1-3.1.noarch.rpm kopano-webapp-3.3.1-3.1.src.rpm kopano-webapp-contactfax-3.3.1-3.1.noarch.rpm kopano-webapp-folderwidgets-3.3.1-3.1.noarch.rpm kopano-webapp-gmaps-3.3.1-3.1.noarch.rpm kopano-webapp-lang-3.3.1-3.1.noarch.rpm kopano-webapp-pimfolder-3.3.1-3.1.noarch.rpm kopano-webapp-quickitems-3.3.1-3.1.noarch.rpm kopano-webapp-titlecounter-3.3.1-3.1.noarch.rpm kopano-webapp-webappmanual-3.3.1-3.1.noarch.rpm kopano-webapp-zdeveloper-3.3.1-3.1.noarch.rpm openSUSE-2017-886 low openSUSE Leap 42.3 Update This update for kdepim-addons fixes the following issues: - Fix saving the AdBlock plugin's settings if ~/.local/share/adblock/ does not exist. (boo#1013566) kdepim-addons-17.04.2-3.1.src.rpm kdepim-addons-17.04.2-3.1.x86_64.rpm kdepim-addons-debuginfo-17.04.2-3.1.x86_64.rpm kdepim-addons-debugsource-17.04.2-3.1.x86_64.rpm kdepim-addons-lang-17.04.2-3.1.noarch.rpm openSUSE-2017-880 low openSUSE Leap 42.3 Update This update for virtualbox fixes the following issues: * VMM: reset the TSC on VM reset to work around a Windows bug (bug #16643) * Audio: fixed memory leak when enabled with VRDP connections (5.1.24 regression; bug #16928) * Audio: fixed creation of too many sound sinks on Linux hosts when using the PulseAudio backend (bug #16938) * Audio: implemented record gain registers for AC'97 emulation; those are needed for newer Ubuntu guests which rely on those when controlling gain and muting the recording (capturing) levels * Storage: fixed hang when using the emulated NVMe controller with the SPDK (bug #16945) * Mouse: double click was not working with a precision touchpad (bug #14632) * Linux hosts: properly bring up host-only network interfaces with iproute (5.1.24 regression; bug #16911) * Linux hosts: provide Python 3 libraries for deb/rpm packages * Windows guests: fixed automatic logons for Vista and newer Windows guests (5.1.24 regression; bug #16921) python-virtualbox-5.1.26-25.1.x86_64.rpm python-virtualbox-debuginfo-5.1.26-25.1.x86_64.rpm virtualbox-5.1.26-25.1.src.rpm virtualbox-5.1.26-25.1.x86_64.rpm virtualbox-debuginfo-5.1.26-25.1.x86_64.rpm virtualbox-debugsource-5.1.26-25.1.x86_64.rpm virtualbox-devel-5.1.26-25.1.x86_64.rpm virtualbox-guest-desktop-icons-5.1.26-25.1.noarch.rpm virtualbox-guest-kmp-default-5.1.26_k4.4.76_1-25.1.x86_64.rpm virtualbox-guest-kmp-default-debuginfo-5.1.26_k4.4.76_1-25.1.x86_64.rpm virtualbox-guest-source-5.1.26-25.1.noarch.rpm virtualbox-guest-tools-5.1.26-25.1.x86_64.rpm virtualbox-guest-tools-debuginfo-5.1.26-25.1.x86_64.rpm virtualbox-guest-x11-5.1.26-25.1.x86_64.rpm virtualbox-guest-x11-debuginfo-5.1.26-25.1.x86_64.rpm virtualbox-host-kmp-default-5.1.26_k4.4.76_1-25.1.x86_64.rpm virtualbox-host-kmp-default-debuginfo-5.1.26_k4.4.76_1-25.1.x86_64.rpm virtualbox-host-source-5.1.26-25.1.noarch.rpm virtualbox-qt-5.1.26-25.1.x86_64.rpm virtualbox-qt-debuginfo-5.1.26-25.1.x86_64.rpm virtualbox-vnc-5.1.26-25.1.x86_64.rpm virtualbox-websrv-5.1.26-25.1.x86_64.rpm virtualbox-websrv-debuginfo-5.1.26-25.1.x86_64.rpm openSUSE-2017-878 low openSUSE Leap 42.3 Update This update for release-notes-openSUSE fixes the following issues: * Description about kernel graphics update. (boo#1050519) release-notes-openSUSE-42.3.20170731-3.1.noarch.rpm release-notes-openSUSE-42.3.20170731-3.1.src.rpm openSUSE-2017-899 moderate openSUSE Leap 42.3 Update This update for pspp fixes the following issues: CVE-2017-10792: Crafted input could have allowed a denial of service attack via a NULL pointer dereference in ll_insert (boo#1046997) CVE-2017-10791: Crafted input could have allowed a denial of service attack via an integer overflow in the hash_int library (boo#1046998) pspp-0.10.2-5.1.src.rpm pspp-0.10.2-5.1.x86_64.rpm pspp-debuginfo-0.10.2-5.1.x86_64.rpm pspp-debugsource-0.10.2-5.1.x86_64.rpm pspp-devel-0.10.2-5.1.x86_64.rpm openSUSE-2017-894 low openSUSE Leap 42.3 Update This update for hyper-v provides the following fixes: - Check if VSS daemon is listening before a hot backup (bsc#1029693) - Ensure kvp device file descriptor is closed on exec - Add PCI pass-through UUID to lsvmbus. This update was imported from the SUSE:SLE-12-SP2:Update update project. hyper-v-7-5.1.i586.rpm True hyper-v-7-5.1.src.rpm True hyper-v-debuginfo-7-5.1.i586.rpm True hyper-v-debugsource-7-5.1.i586.rpm True hyper-v-7-5.1.x86_64.rpm True hyper-v-debuginfo-7-5.1.x86_64.rpm True hyper-v-debugsource-7-5.1.x86_64.rpm True openSUSE-2017-877 moderate openSUSE Leap 42.3 Update This update for fate fixes the following issues: - When looking up a feature by ID, FATE would throw "Error in formatting xquery / Error 500/FORG0001" (boo#1050997) - FATE would crash on selected feature in query (boo#1044954) It also contain a collection of internal code improvements and fixes. fate-1.6.0.2-26.1.src.rpm fate-1.6.0.2-26.1.x86_64.rpm fate-debuginfo-1.6.0.2-26.1.x86_64.rpm openSUSE-2017-895 moderate openSUSE Leap 42.3 Update This update for pulseaudio fixes the following issue: - When turning on a usb headset which has two different USB profiles, pulseaudio often detects only one entry point (boo#1051714) libpulse-devel-32bit-9.0-5.1.x86_64.rpm libpulse-devel-9.0-5.1.i586.rpm libpulse-mainloop-glib0-32bit-9.0-5.1.x86_64.rpm libpulse-mainloop-glib0-9.0-5.1.i586.rpm libpulse-mainloop-glib0-debuginfo-32bit-9.0-5.1.x86_64.rpm libpulse-mainloop-glib0-debuginfo-9.0-5.1.i586.rpm libpulse0-32bit-9.0-5.1.x86_64.rpm libpulse0-9.0-5.1.i586.rpm libpulse0-debuginfo-32bit-9.0-5.1.x86_64.rpm libpulse0-debuginfo-9.0-5.1.i586.rpm pulseaudio-9.0-5.1.i586.rpm pulseaudio-9.0-5.1.src.rpm pulseaudio-bash-completion-9.0-5.1.i586.rpm pulseaudio-debuginfo-9.0-5.1.i586.rpm pulseaudio-debugsource-9.0-5.1.i586.rpm pulseaudio-esound-compat-9.0-5.1.i586.rpm pulseaudio-gdm-hooks-9.0-5.1.i586.rpm pulseaudio-lang-9.0-5.1.noarch.rpm pulseaudio-module-bluetooth-9.0-5.1.i586.rpm pulseaudio-module-bluetooth-debuginfo-9.0-5.1.i586.rpm pulseaudio-module-gconf-9.0-5.1.i586.rpm pulseaudio-module-gconf-debuginfo-9.0-5.1.i586.rpm pulseaudio-module-jack-9.0-5.1.i586.rpm pulseaudio-module-jack-debuginfo-9.0-5.1.i586.rpm pulseaudio-module-lirc-9.0-5.1.i586.rpm pulseaudio-module-lirc-debuginfo-9.0-5.1.i586.rpm pulseaudio-module-x11-9.0-5.1.i586.rpm pulseaudio-module-x11-debuginfo-9.0-5.1.i586.rpm pulseaudio-module-zeroconf-9.0-5.1.i586.rpm pulseaudio-module-zeroconf-debuginfo-9.0-5.1.i586.rpm pulseaudio-system-wide-9.0-5.1.i586.rpm pulseaudio-utils-32bit-9.0-5.1.x86_64.rpm pulseaudio-utils-9.0-5.1.i586.rpm pulseaudio-utils-debuginfo-32bit-9.0-5.1.x86_64.rpm pulseaudio-utils-debuginfo-9.0-5.1.i586.rpm pulseaudio-zsh-completion-9.0-5.1.i586.rpm libpulse-devel-9.0-5.1.x86_64.rpm libpulse-mainloop-glib0-9.0-5.1.x86_64.rpm libpulse-mainloop-glib0-debuginfo-9.0-5.1.x86_64.rpm libpulse0-9.0-5.1.x86_64.rpm libpulse0-debuginfo-9.0-5.1.x86_64.rpm pulseaudio-9.0-5.1.x86_64.rpm pulseaudio-bash-completion-9.0-5.1.x86_64.rpm pulseaudio-debuginfo-9.0-5.1.x86_64.rpm pulseaudio-debugsource-9.0-5.1.x86_64.rpm pulseaudio-esound-compat-9.0-5.1.x86_64.rpm pulseaudio-gdm-hooks-9.0-5.1.x86_64.rpm pulseaudio-module-bluetooth-9.0-5.1.x86_64.rpm pulseaudio-module-bluetooth-debuginfo-9.0-5.1.x86_64.rpm pulseaudio-module-gconf-9.0-5.1.x86_64.rpm pulseaudio-module-gconf-debuginfo-9.0-5.1.x86_64.rpm pulseaudio-module-jack-9.0-5.1.x86_64.rpm pulseaudio-module-jack-debuginfo-9.0-5.1.x86_64.rpm pulseaudio-module-lirc-9.0-5.1.x86_64.rpm pulseaudio-module-lirc-debuginfo-9.0-5.1.x86_64.rpm pulseaudio-module-x11-9.0-5.1.x86_64.rpm pulseaudio-module-x11-debuginfo-9.0-5.1.x86_64.rpm pulseaudio-module-zeroconf-9.0-5.1.x86_64.rpm pulseaudio-module-zeroconf-debuginfo-9.0-5.1.x86_64.rpm pulseaudio-system-wide-9.0-5.1.x86_64.rpm pulseaudio-utils-9.0-5.1.x86_64.rpm pulseaudio-utils-debuginfo-9.0-5.1.x86_64.rpm pulseaudio-zsh-completion-9.0-5.1.x86_64.rpm openSUSE-2017-935 low openSUSE Leap 42.3 Update This update provides a new version of sysdig fixes and various improvements and bug fixes: * New features: + Support netlink sockets. + Support for Kernel 4.11. + Decode unshare syscall. * Bug fixes: + Fix a bug on cgroups parsing that prevented sysdig to start. + Allow sysdig to read k8s state from very large k8s environments. + Improve compatibility with older linux kernels. + Improve rkt detection by checking the existence of files into /var/lib/rkt. + Fix rkt detection for containers created before sysdig runs. + Fix container detection if docker itself is running inside a container. + Fix detection of lxc containers. + Fix memory leak on spy_users chisel. sysdig-0.17.0-8.8.src.rpm sysdig-0.17.0-8.8.x86_64.rpm sysdig-debuginfo-0.17.0-8.8.x86_64.rpm sysdig-debugsource-0.17.0-8.8.x86_64.rpm sysdig-kmp-default-0.17.0_k4.4.79_4-8.8.x86_64.rpm sysdig-kmp-default-debuginfo-0.17.0_k4.4.79_4-8.8.x86_64.rpm openSUSE-2017-896 low openSUSE Leap 42.3 Update This update for lsscsi provides the following fixes: - Fix the detection of the WWN for SCSI disks (bsc#1008935) - Fix the output of 'lsscsi -t' (bsc#1047884) This update was imported from the SUSE:SLE-12-SP2:Update update project. lsscsi-0.29-5.1.i586.rpm lsscsi-0.29-5.1.src.rpm lsscsi-debuginfo-0.29-5.1.i586.rpm lsscsi-debugsource-0.29-5.1.i586.rpm lsscsi-0.29-5.1.x86_64.rpm lsscsi-debuginfo-0.29-5.1.x86_64.rpm lsscsi-debugsource-0.29-5.1.x86_64.rpm openSUSE-2017-889 moderate openSUSE Leap 42.3 Update This update for cacti, cacti-spine fixes the following issues: - CVE-2017-12065: Possible code execution via avgnan, outlier-start, or outlier-end parameter (bsc#1051633) - CVE-2017-11691: XSS in auth_profile.php allows remote attackers to inject arbitrary JS via specially crafted HTTP Referer headers (bsc#1050950) - CVE-2017-10970: XSS Issue in link.php bsc#1047512 - CVE-2017-11163: XSS Issue in lib/html_form.php bsc#1048102 In addition, cacti and cacti-spine were updated to the current stable release 1.1.16, containing all upstream improvements and bugfixes. cacti-spine-1.1.16-10.1.i586.rpm cacti-spine-1.1.16-10.1.src.rpm cacti-spine-debuginfo-1.1.16-10.1.i586.rpm cacti-spine-debugsource-1.1.16-10.1.i586.rpm cacti-spine-1.1.16-10.1.x86_64.rpm cacti-spine-debuginfo-1.1.16-10.1.x86_64.rpm cacti-spine-debugsource-1.1.16-10.1.x86_64.rpm cacti-1.1.16-19.1.noarch.rpm cacti-1.1.16-19.1.src.rpm cacti-doc-1.1.16-19.1.noarch.rpm openSUSE-2017-897 moderate openSUSE Leap 42.3 Update This update for lifecycle-data fixes the following issues: - lifecycle-data-openSUSE was not installed with zypper-lifecycle-plugin (boo#1052022) - uClibc is now marked as deprecated lifecycle-data-1-5.1.src.rpm lifecycle-data-openSUSE-1-5.1.noarch.rpm openSUSE-2017-900 moderate openSUSE Leap 42.3 Update This update for rubygem-rubyzip fixes the following issues: - CVE-2017-5946: A directory traversal vulnerability could lead to access and overwrite files that are outside of the restricted directory (boo#1027050) ruby2.1-rubygem-rubyzip-1.1.7-8.1.i586.rpm ruby2.1-rubygem-rubyzip-doc-1.1.7-8.1.i586.rpm ruby2.1-rubygem-rubyzip-testsuite-1.1.7-8.1.i586.rpm ruby2.2-rubygem-rubyzip-1.1.7-8.1.i586.rpm ruby2.2-rubygem-rubyzip-doc-1.1.7-8.1.i586.rpm ruby2.2-rubygem-rubyzip-testsuite-1.1.7-8.1.i586.rpm ruby2.3-rubygem-rubyzip-1.1.7-8.1.i586.rpm ruby2.3-rubygem-rubyzip-doc-1.1.7-8.1.i586.rpm ruby2.3-rubygem-rubyzip-testsuite-1.1.7-8.1.i586.rpm ruby2.4-rubygem-rubyzip-1.1.7-8.1.i586.rpm ruby2.4-rubygem-rubyzip-doc-1.1.7-8.1.i586.rpm ruby2.4-rubygem-rubyzip-testsuite-1.1.7-8.1.i586.rpm rubygem-rubyzip-1.1.7-8.1.src.rpm ruby2.1-rubygem-rubyzip-1.1.7-8.1.x86_64.rpm ruby2.1-rubygem-rubyzip-doc-1.1.7-8.1.x86_64.rpm ruby2.1-rubygem-rubyzip-testsuite-1.1.7-8.1.x86_64.rpm ruby2.2-rubygem-rubyzip-1.1.7-8.1.x86_64.rpm ruby2.2-rubygem-rubyzip-doc-1.1.7-8.1.x86_64.rpm ruby2.2-rubygem-rubyzip-testsuite-1.1.7-8.1.x86_64.rpm ruby2.3-rubygem-rubyzip-1.1.7-8.1.x86_64.rpm ruby2.3-rubygem-rubyzip-doc-1.1.7-8.1.x86_64.rpm ruby2.3-rubygem-rubyzip-testsuite-1.1.7-8.1.x86_64.rpm ruby2.4-rubygem-rubyzip-1.1.7-8.1.x86_64.rpm ruby2.4-rubygem-rubyzip-doc-1.1.7-8.1.x86_64.rpm ruby2.4-rubygem-rubyzip-testsuite-1.1.7-8.1.x86_64.rpm openSUSE-2017-902 important openSUSE Leap 42.3 Update This MariaDB update to version 10.0.31 GA fixes the following issues: Security issues fixed: - CVE-2017-3308: Subcomponent: Server: DML: Easily "exploitable" vulnerability allows low privileged attacker with network access via multiple protocols to compromise MariaDB Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS). (bsc#1048715) - CVE-2017-3309: Subcomponent: Server: Optimizer: Easily "exploitable" vulnerability allows low privileged attacker with network access via multiple protocols to compromise MariaDB Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS). (bsc#1048715) - CVE-2017-3453: Subcomponent: Server: Optimizer: Easily "exploitable" vulnerability allows low privileged attacker with network access via multiple protocols to compromise MariaDB Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS). (bsc#1048715) - CVE-2017-3456: Subcomponent: Server: DML: Easily "exploitable" vulnerability allows low privileged attacker with network access via multiple protocols to compromise MariaDB Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS). (bsc#1048715) - CVE-2017-3464: Subcomponent: Server: DDL: Easily "exploitable" vulnerability allows low privileged attacker with network access via multiple protocols to compromise MariaDB Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS). (bsc#1048715) Bug fixes: - switch from 'Restart=on-failure' to 'Restart=on-abort' in mysql.service in order to follow the upstream. It also fixes hanging mysql-systemd-helper when mariadb fails (e.g. because of the misconfiguration) (bsc#963041) - XtraDB updated to 5.6.36-82.0 - TokuDB updated to 5.6.36-82.0 - Innodb updated to 5.6.36 - Performance Schema updated to 5.6.36 Release notes and changelog: - https://kb.askmonty.org/en/mariadb-10031-release-notes - https://kb.askmonty.org/en/mariadb-10031-changelog This update was imported from the SUSE:SLE-12-SP1:Update update project. libmysqlclient-devel-10.0.31-23.1.i586.rpm libmysqlclient18-10.0.31-23.1.i586.rpm libmysqlclient18-32bit-10.0.31-23.1.x86_64.rpm libmysqlclient18-debuginfo-10.0.31-23.1.i586.rpm libmysqlclient18-debuginfo-32bit-10.0.31-23.1.x86_64.rpm libmysqlclient_r18-10.0.31-23.1.i586.rpm libmysqlclient_r18-32bit-10.0.31-23.1.x86_64.rpm libmysqld-devel-10.0.31-23.1.i586.rpm libmysqld18-10.0.31-23.1.i586.rpm libmysqld18-debuginfo-10.0.31-23.1.i586.rpm mariadb-10.0.31-23.1.i586.rpm mariadb-10.0.31-23.1.src.rpm mariadb-bench-10.0.31-23.1.i586.rpm mariadb-bench-debuginfo-10.0.31-23.1.i586.rpm mariadb-client-10.0.31-23.1.i586.rpm mariadb-client-debuginfo-10.0.31-23.1.i586.rpm mariadb-debuginfo-10.0.31-23.1.i586.rpm mariadb-debugsource-10.0.31-23.1.i586.rpm mariadb-errormessages-10.0.31-23.1.i586.rpm mariadb-test-10.0.31-23.1.i586.rpm mariadb-test-debuginfo-10.0.31-23.1.i586.rpm mariadb-tools-10.0.31-23.1.i586.rpm mariadb-tools-debuginfo-10.0.31-23.1.i586.rpm libmysqlclient-devel-10.0.31-23.1.x86_64.rpm libmysqlclient18-10.0.31-23.1.x86_64.rpm libmysqlclient18-debuginfo-10.0.31-23.1.x86_64.rpm libmysqlclient_r18-10.0.31-23.1.x86_64.rpm libmysqld-devel-10.0.31-23.1.x86_64.rpm libmysqld18-10.0.31-23.1.x86_64.rpm libmysqld18-debuginfo-10.0.31-23.1.x86_64.rpm mariadb-10.0.31-23.1.x86_64.rpm mariadb-bench-10.0.31-23.1.x86_64.rpm mariadb-bench-debuginfo-10.0.31-23.1.x86_64.rpm mariadb-client-10.0.31-23.1.x86_64.rpm mariadb-client-debuginfo-10.0.31-23.1.x86_64.rpm mariadb-debuginfo-10.0.31-23.1.x86_64.rpm mariadb-debugsource-10.0.31-23.1.x86_64.rpm mariadb-errormessages-10.0.31-23.1.x86_64.rpm mariadb-test-10.0.31-23.1.x86_64.rpm mariadb-test-debuginfo-10.0.31-23.1.x86_64.rpm mariadb-tools-10.0.31-23.1.x86_64.rpm mariadb-tools-debuginfo-10.0.31-23.1.x86_64.rpm openSUSE-2017-890 important openSUSE Leap 42.3 Update The openSUSE Leap 42.3 kernel was updated to 4.4.79 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-7542: The ip6_find_1stfragopt function in net/ipv6/output_core.c in the Linux kernel allowed local users to cause a denial of service (integer overflow and infinite loop) by leveraging the ability to open a raw socket (bnc#1049882). - CVE-2017-11473: Buffer overflow in the mp_override_legacy_irq() function in arch/x86/kernel/acpi/boot.c in the Linux kernel allowed local users to gain privileges via a crafted ACPI table (bnc#1049603). - CVE-2017-7533: A bug in inotify code allowed local users to escalate privilege (bnc#1049483). - CVE-2017-7541: The brcmf_cfg80211_mgmt_tx function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux kernel allowed local users to cause a denial of service (buffer overflow and system crash) or possibly gain privileges via a crafted NL80211_CMD_FRAME Netlink packet (bnc#1049645). The following non-security bugs were fixed: - ACPI / processor: Avoid reserving IO regions too early (bsc#1051478). - ALSA: fm801: Initialize chip after IRQ handler is registered (bsc#1031717). - Added sbitmap patch to blacklist.conf Add a patch "sbitmap: fix wakeup hang after sbq resize" to the blacklist.conf file because it is not needed in SLE 12 SP2. - Btrfs: incremental send, fix invalid path for link commands (bsc#1051479). - Btrfs: incremental send, fix invalid path for unlink commands (bsc#1051479). - Btrfs: send, fix invalid path after renaming and linking file (bsc#1051479). - Delete patches.drivers/0004-iommu-amd-reduce-delay-waiting-for-command-buffer-space. Remove the patch because it caused problems for users. See bsc#1048348. - Drop patches; obsoleted by 'scsi: Add STARGET_CREATE_REMOVE state' - Fix kABI breakage by KVM CVE fix (bsc#1045922). - IB/rxe: Fix kernel panic from skb destructor (bsc#1049361). - KVM: nVMX: Fix nested VPID vmx exec control (bsc#1051478). - KVM: nVMX: fix msr bitmaps to prevent L2 from accessing L0 x2APIC (bsc#1051478). - KVM: x86: avoid simultaneous queueing of both IRQ and SMI (bsc#1051478). - NFS: Cache aggressively when file is open for writing (bsc#1033587). - NFS: Do not flush caches for a getattr that races with writeback (bsc#1033587). - NFS: invalidate file size when taking a lock (git-fixes). - PCI / PM: Fix native PME handling during system suspend/resume (bsc#1051478). - PCI: Add Mellanox device IDs (bsc#1051478). - PCI: Convert Mellanox broken INTx quirks to be for listed devices only (bsc#1051478). - PCI: Correct PCI_STD_RESOURCE_END usage (bsc#1051478). - PCI: Enable ECRC only if device supports it (bsc#1051478). - PCI: Support INTx masking on ConnectX-4 with firmware x.14.1100+ (bsc#1051478). - PCI: dwc: Fix uninitialized variable in dw_handle_msi_irq() (bsc#1051478). - PCI: dwc: dra7xx: Use RW1C for IRQSTATUS_MSI and IRQSTATUS_MAIN (bsc#1051478). - PM / Hibernate: Fix scheduling while atomic during hibernation (bsc#1051059). - RDMA/qedr: Prevent memory overrun in verbs' user responses (bsc#1022604 FATE#321747). - README.BRANCH: Add Oliver as openSUSE-42.3 branch co-maintainer - Refresh patches.kabi/Fix-kABI-breakage-by-KVM-CVE-fix.patch. Fix a stupid bug where the VCPU_REGS_TF shift was used as a mask. - Revert "Add "shutdown" to "struct class"." (kabi). - Revert "mm/list_lru.c: fix list_lru_count_node() to be race free" (kabi). - Revert "powerpc/numa: Fix percpu allocations to be NUMA aware" (bsc#1048914). - Revert "powerpc/numa: Fix percpu allocations to be NUMA aware" (bsc#1048914). - Revert "tpm: Issue a TPM2_Shutdown for TPM2 devices." (kabi). - Update patches.drivers/0011-hpsa-remove-abort-handler.patch (bsc#1022600 fate#321928 bsc#1016119). - Update patches.fixes/xfs-refactor-log-record-unpack-and-data-processing.patch (bsc#1043598, bsc#1036215). - apply mainline tags to some hyperv patches - arm64: kernel: restrict /dev/mem read() calls to linear region (bsc#1046651).++ kernel-source.spec (revision 3)%define patchversion 4.4.79Version: 4.4.79Release: <RELEASE>.g4dc78e3 - arm64: mm: remove page_mapping check in __sync_icache_dcache (bsc#1040347). - blacklist 2400fd822f46 powerpc/asm: Mark cr0 as clobbered in mftb() - blacklist.conf: 9eeacd3a2f17 not a bug fix (bnc#1050061) - blacklist.conf: Blacklist 4e201566402c ('genirq/msi: Drop artificial PCI dependency') (bsc#1051478) This commit just removes an include and does not fix a real issue. - blacklist.conf: Blacklist aa2369f11ff7 ('mm/gup.c: fix access_ok() argument type') (bsc#1051478) Fixes only a compile-warning. - blacklist.conf: Blacklist c133c7615751 ('x86/nmi: Fix timeout test in test_nmi_ipi()') It only fixes a self-test (bsc#1051478). - blacklist.conf: Blacklist c9525a3fab63 ('x86/watchdog: Fix Kconfig help text file path reference to lockup watchdog documentation') Updates only kconfig help-text (bsc#1051478). - blacklist.conf: Blacklist e80e7edc55ba ('PCI/MSI: Initialize MSI capability for all architectures') This only fixes machines not supported by our kernels. - blacklist.conf: Do not need 55d728a40d36, we do it differently in SLE - blacklist.conf: add inapplicable commits for wifi (bsc#1031717) - blacklist.conf: blacklist 7b73305160f1, unneeded cleanup - blacklist.conf: da0510c47519fe0999cffe316e1d370e29f952be # FRV not applicable to SLE - blkfront: add uevent for size change (bnc#1036632). - block: Fix front merge check (bsc#1051239). - brcmfmac: Fix glom_skb leak in brcmf_sdiod_recv_chain (bsc#1031717). - btrfs: Do not clear SGID when inheriting ACLs (bsc#1030552). - btrfs: add cond_resched to btrfs_qgroup_trace_leaf_items (bsc#1028286). - btrfs: fix lockup in find_free_extent with read-only block groups (bsc#1046682). - cpuidle: dt: Add missing 'of_node_put()' (bnc#1022476). - cxgb4: fix BUG() on interrupt deallocating path of ULD (bsc#1005778). - cxgb4: fix a NULL dereference (bsc#1005778). - cxgb4: fix memory leak in init_one() (bsc#1005778). - dentry name snapshots (bsc#1049483). - device-dax: fix sysfs attribute deadlock (bsc#1048919). - drm/i915: Fix scaler init during CRTC HW state readout (bsc#1031717). - drm/vmwgfx: Fix large topology crash (bsc#1048155). - drm/vmwgfx: Support topology greater than texture size (bsc#1048155). - efi/libstub: Skip GOP with PIXEL_BLT_ONLY format (bnc#974215). - ext2: Do not clear SGID when inheriting ACLs (bsc#1030552). - ext4: Do not clear SGID when inheriting ACLs (bsc#1030552). - ext4: avoid unnecessary stalls in ext4_evict_inode() (bsc#1049486). - ext4: handle the rest of ext4_mb_load_buddy() ENOMEM errors (bsc#1012829). - gcov: add support for gcc version >= 6 (bsc#1051663). - gcov: support GCC 7.1 (bsc#1051663). - gfs2: fix flock panic issue (bsc#1012829). - hv: print extra debug in kvp_on_msg in error paths (bnc#1039153). - hv_netvsc: Exclude non-TCP port numbers from vRSS hashing (bsc#1048421). - hv_netvsc: Fix the queue index computation in forwarding case (bsc#1048421). - i2c: designware-baytrail: fix potential null pointer dereference on dev (bsc#1011913). - introduce the walk_process_tree() helper (bnc#1022476). - iommu/amd: Fix interrupt remapping when disable guest_mode (bsc#1051471). - iwlwifi: mvm: reset the fw_dump_desc pointer after ASSERT (bsc#1031717). - iwlwifi: mvm: unconditionally stop device after init (bsc#1031717). - iwlwifi: pcie: fix command completion name debug (bsc#1031717). - kABI-fix for "x86/panic: replace smp_send_stop() with kdump friendly version in panic path" (bsc#1051478). - kABI: protect lwtunnel include in ip6_route.h (kabi). - kABI: protect struct iscsi_tpg_attrib (kabi). - kABI: protect struct tpm_chip (kabi). - kABI: protect struct xfrm_dst (kabi). - kvm: nVMX: Fix nested_vmx_check_msr_bitmap_controls (bsc#1051478). - libnvdimm, pmem: fix a NULL pointer BUG in nd_pmem_notify (bsc#1048919). - libnvdimm, region: fix flush hint detection crash (bsc#1048919). - libnvdimm: fix badblock range handling of ARS range (bsc#1051048). - lightnvm: fix "warning: ‘ret’ may be used uninitialized" (FATE#319466). - md-cluster: Fix a memleak in an error handling path (bsc#1049289). - mm: make PR_SET_THP_DISABLE immediately active (bnc#1048891). - mwifiex: do not update MCS set from hostapd (bsc#1031717). - net/ena: switch to pci_alloc_irq_vectors (bsc#1047121). - net: ena: add hardware hints capability to the driver (bsc#1047121). - net: ena: add hardware hints capability to the driver (bsc#1047121). - net: ena: add missing return when ena_com_get_io_handlers() fails (bsc#1047121). - net: ena: add missing return when ena_com_get_io_handlers() fails (bsc#1047121). - net: ena: add missing unmap bars on device removal (bsc#1047121). - net: ena: add missing unmap bars on device removal (bsc#1047121). - net: ena: add reset reason for each device FLR (bsc#1047121). - net: ena: add reset reason for each device FLR (bsc#1047121). - net: ena: add support for out of order rx buffers refill (bsc#1047121). - net: ena: add support for out of order rx buffers refill (bsc#1047121). - net: ena: allow the driver to work with small number of msix vectors (bsc#1047121). - net: ena: allow the driver to work with small number of msix vectors (bsc#1047121). - net: ena: bug fix in lost tx packets detection mechanism (bsc#1047121). - net: ena: bug fix in lost tx packets detection mechanism (bsc#1047121). - net: ena: change return value for unsupported features unsupported return value (bsc#1047121). - net: ena: change return value for unsupported features unsupported return value (bsc#1047121). - net: ena: change sizeof() argument to be the type pointer (bsc#1047121). - net: ena: change sizeof() argument to be the type pointer (bsc#1047121). - net: ena: disable admin msix while working in polling mode (bsc#1047121). - net: ena: disable admin msix while working in polling mode (bsc#1047121). - net: ena: fix bug that might cause hang after consecutive open/close interface (bsc#1047121). - net: ena: fix bug that might cause hang after consecutive open/close interface (bsc#1047121). - net: ena: fix race condition between submit and completion admin command (bsc#1047121). - net: ena: fix race condition between submit and completion admin command (bsc#1047121). - net: ena: fix rare uncompleted admin command false alarm (bsc#1047121). - net: ena: fix rare uncompleted admin command false alarm (bsc#1047121). - net: ena: fix theoretical Rx hang on low memory systems (bsc#1047121). - net: ena: fix theoretical Rx hang on low memory systems (bsc#1047121). - net: ena: separate skb allocation to dedicated function (bsc#1047121). - net: ena: separate skb allocation to dedicated function (bsc#1047121). - net: ena: update driver's rx drop statistics (bsc#1047121). - net: ena: update driver's rx drop statistics (bsc#1047121). - net: ena: update ena driver to version 1.1.7 (bsc#1047121). - net: ena: update ena driver to version 1.1.7 (bsc#1047121). - net: ena: update ena driver to version 1.2.0 (bsc#1047121). - net: ena: update ena driver to version 1.2.0 (bsc#1047121). - net: ena: use lower_32_bits()/upper_32_bits() to split dma address (bsc#1047121). - net: ena: use lower_32_bits()/upper_32_bits() to split dma address (bsc#1047121). - net: ena: use napi_schedule_irqoff when possible (bsc#1047121). - net: ena: use napi_schedule_irqoff when possible (bsc#1047121). - net: hns: Bugfix for Tx timeout handling in hns driver (bsc#1048451). - net: phy: Do not perform software reset for Generic PHY (bsc#1042286). - nvme: also provide a UUID in the WWID sysfs attribute (bsc#1048146). - nvme: wwid_show: strip trailing 0-bytes (bsc#1048146). - nvmet: identify controller: improve standard compliance (bsc#1048146). - ocfs2: Do not clear SGID when inheriting ACLs (bsc#1030552). - ocfs2: Make ocfs2_set_acl() static (bsc#1030552). - ocfs2: fix deadlock caused by recursive locking in xattr (bsc#1012829). - perf/x86/intel: Cure bogus unwind from PEBS entries (bsc#1051478). - perf/x86/intel: Fix PEBSv3 record drain (bsc#1051478). - perf/x86: Fix spurious NMI with PEBS Load Latency event (bsc#1051478). - platform/x86: ideapad-laptop: Add IdeaPad 310-15IKB to no_hw_rfkill (bsc#1051022). - platform/x86: ideapad-laptop: Add IdeaPad V310-15ISK to no_hw_rfkill (bsc#1051022). - platform/x86: ideapad-laptop: Add IdeaPad V510-15IKB to no_hw_rfkill (bsc#1051022). - platform/x86: ideapad-laptop: Add Lenovo Yoga 910-13IKB to no_hw_rfkill dmi list (bsc#1051022). - platform/x86: ideapad-laptop: Add Y520-15IKBN to no_hw_rfkill (bsc#1051022). - platform/x86: ideapad-laptop: Add Y700 15-ACZ to no_hw_rfkill DMI list (bsc#1051022). - platform/x86: ideapad-laptop: Add Y720-15IKBN to no_hw_rfkill (bsc#1051022). - platform/x86: ideapad-laptop: Add several models to no_hw_rfkill (bsc#1051022). - powerpc/fadump: Add a warning when 'fadump_reserve_mem=' is used (bsc#1049231). - powerpc: Add POWER9 architected mode to cputable (bsc#1048916, fate#321439). - powerpc: Support POWER9 in architected mode (bsc#1048916, fate#321439). - prctl: propagate has_child_subreaper flag to every descendant (bnc#1022476). - qed: Add missing static/local dcbx info (bsc#1019695). - qed: Correct print in iscsi error-flow (bsc#1019695). - reiserfs: Do not clear SGID when inheriting ACLs (bsc#1030552). - reorder upstream commit d0c2c9973ecd net: use core MTU range checking in virt drivers - rpm/kernel-binary.spec.in: find-debuginfo.sh should not touch build-id This needs rpm-4.14+ (bsc#964063). - s390/crash: Remove unused KEXEC_NOTE_BYTES (bsc#1049706). - s390/kdump: remove code to create ELF notes in the crashed system (bsc#1049706). - sched/core: Allow __sched_setscheduler() in interrupts when PI is not used (bnc#1022476). - sched/debug: Print the scheduler topology group mask (bnc#1022476). - sched/fair, cpumask: Export for_each_cpu_wrap() (bnc#1022476). - sched/fair: Fix O(nr_cgroups) in load balance path (bnc#1022476). - sched/fair: Use task_groups instead of leaf_cfs_rq_list to walk all cfs_rqs (bnc#1022476). - sched/topology: Add sched_group_capacity debugging (bnc#1022476). - sched/topology: Fix building of overlapping sched-groups (bnc#1022476). - sched/topology: Fix overlapping sched_group_capacity (bnc#1022476). - sched/topology: Move comment about asymmetric node setups (bnc#1022476). - sched/topology: Refactor function build_overlap_sched_groups() (bnc#1022476). - sched/topology: Remove FORCE_SD_OVERLAP (bnc#1022476). - sched/topology: Simplify build_overlap_sched_groups() (bnc#1022476). - sched/topology: Small cleanup (bnc#1022476). - sched/topology: Verify the first group matches the child domain (bnc#1022476). - scsi: Add STARGET_CREATE_REMOVE state to scsi_target_state (bsc#1013887). - scsi: aacraid: Do not copy uninitialized stack memory to userspace (bsc#1048912). - scsi: aacraid: fix leak of data from stack back to userspace (bsc#1048912). - scsi: kABI fix for new state STARGET_CREATED_REMOVE (bsc#1013887). - scsi: lpfc: Add MDS Diagnostic support (bsc#1037838). - scsi: lpfc: Add auto EQ delay logic (bsc#1042257). - scsi: lpfc: Added recovery logic for running out of NVMET IO context resources (bsc#1037838). - scsi: lpfc: Adding additional stats counters for nvme (bsc#1037838). - scsi: lpfc: Cleanup entry_repost settings on SLI4 queues (bsc#1037838). - scsi: lpfc: Driver responds LS_RJT to Beacon Off ELS - Linux (bsc#1044623). - scsi: lpfc: Fix NMI watchdog assertions when running nvmet IOPS tests (bsc#1037838). - scsi: lpfc: Fix NVME I+T not registering NVME as a supported FC4 type (bsc#1037838). - scsi: lpfc: Fix NVMEI driver not decrementing counter causing bad rport state (bsc#1037838). - scsi: lpfc: Fix NVMEI's handling of NVMET's PRLI response attributes (bsc#1037838). - scsi: lpfc: Fix SLI3 drivers attempting NVME ELS commands (bsc#1044623). - scsi: lpfc: Fix crash after firmware flash when IO is running (bsc#1044623). - scsi: lpfc: Fix crash doing IO with resets (bsc#1044623). - scsi: lpfc: Fix crash in lpfc_sli_ringtxcmpl_put when nvmet gets an abort request (bsc#1044623). - scsi: lpfc: Fix debugfs root inode "lpfc" not getting deleted on driver unload (bsc#1037838). - scsi: lpfc: Fix defects reported by Coverity Scan (bsc#1042257). - scsi: lpfc: Fix nvme io stoppage after link bounce (bsc#1045404). - scsi: lpfc: Fix nvmet RQ resource needs for large block writes (bsc#1037838). - scsi: lpfc: Fix system crash when port is reset (bsc#1037838). - scsi: lpfc: Fix system panic when express lane enabled (bsc#1044623). - scsi: lpfc: Fix used-RPI accounting problem (bsc#1037838). - scsi: lpfc: Reduce time spent in IRQ for received NVME commands (bsc#1044623). - scsi: lpfc: Separate NVMET RQ buffer posting from IO resources SGL/iocbq/context (bsc#1037838). - scsi: lpfc: Separate NVMET data buffer pool fir ELS/CT (bsc#1037838). - scsi: lpfc: Vport creation is failing with "Link Down" error (bsc#1044623). - scsi: lpfc: fix refcount error on node list (bsc#1045404). - scsi: lpfc: update to revision to 11.4.0.1 (bsc#1044623). - scsi: lpfc: update version to 11.2.0.14 (bsc#1037838). - scsi: qedf: Fix a return value in case of error in 'qedf_alloc_global_queues' (bsc#1048912). - scsi: qedi: Remove WARN_ON for untracked cleanup (bsc#1044443). - scsi: qedi: Remove WARN_ON from clear task context (bsc#1044443). - sfc: Add ethtool -m support for QSFP modules (bsc#1049619). - string.h: add memcpy_and_pad() (bsc#1048146). - timers: Plug locking race vs. timer migration (bnc#1022476). - udf: Fix deadlock between writeback and udf_setsize() (bsc#1012829). - udf: Fix races with i_size changes during readpage (bsc#1012829). - x86/LDT: Print the real LDT base address (bsc#1051478). - x86/mce: Make timer handling more robust (bsc#1042422). - x86/panic: replace smp_send_stop() with kdump friendly version in panic path (bsc#1051478). - x86/platform/uv/BAU: Disable BAU on single hub configurations (bsc#1050320). - x86/platform/uv/BAU: Fix congested_response_us not taking effect (bsc#1050322). - xen/pvh*: Support > 32 VCPUs at domain restore (bnc#1045563). - xen: hold lock_device_hotplug throughout vcpu hotplug operations (bsc#1042422). - xfs: Do not clear SGID when inheriting ACLs (bsc#1030552). - xfs: detect and handle invalid iclog size set by mkfs (bsc#1043598). - xfs: detect and trim torn writes during log recovery (bsc#1036215). - xfs: do not BUG() on mixed direct and mapped I/O (bsc#1050188). - xfs: refactor and open code log record crc check (bsc#1036215). - xfs: refactor log record start detection into a new helper (bsc#1036215). - xfs: return start block of first bad log record during recovery (bsc#1036215). - xfs: support a crc verification only log record pass (bsc#1036215). - xgene: Do not fail probe, if there is no clk resource for SGMII interfaces (bsc#1048501). kernel-devel-4.4.79-4.2.noarch.rpm True kernel-macros-4.4.79-4.2.noarch.rpm True kernel-source-4.4.79-4.2.noarch.rpm True kernel-source-4.4.79-4.2.src.rpm True kernel-source-vanilla-4.4.79-4.2.noarch.rpm True kernel-debug-4.4.79-4.2.nosrc.rpm True kernel-debug-4.4.79-4.2.x86_64.rpm True kernel-debug-base-4.4.79-4.2.x86_64.rpm True kernel-debug-base-debuginfo-4.4.79-4.2.x86_64.rpm True kernel-debug-debuginfo-4.4.79-4.2.x86_64.rpm True kernel-debug-debugsource-4.4.79-4.2.x86_64.rpm True kernel-debug-devel-4.4.79-4.2.x86_64.rpm True kernel-debug-devel-debuginfo-4.4.79-4.2.x86_64.rpm True kernel-default-4.4.79-4.2.nosrc.rpm True kernel-default-4.4.79-4.2.x86_64.rpm True kernel-default-base-4.4.79-4.2.x86_64.rpm True kernel-default-base-debuginfo-4.4.79-4.2.x86_64.rpm True kernel-default-debuginfo-4.4.79-4.2.x86_64.rpm True kernel-default-debugsource-4.4.79-4.2.x86_64.rpm True kernel-default-devel-4.4.79-4.2.x86_64.rpm True kernel-docs-4.4.79-4.2.noarch.rpm True kernel-docs-4.4.79-4.2.src.rpm True kernel-docs-html-4.4.79-4.2.noarch.rpm True kernel-docs-pdf-4.4.79-4.2.noarch.rpm True kernel-obs-build-4.4.79-4.2.src.rpm True kernel-obs-build-4.4.79-4.2.x86_64.rpm True kernel-obs-build-debugsource-4.4.79-4.2.x86_64.rpm True kernel-obs-qa-4.4.79-4.2.src.rpm True kernel-obs-qa-4.4.79-4.2.x86_64.rpm True kernel-syms-4.4.79-4.2.src.rpm True kernel-syms-4.4.79-4.2.x86_64.rpm True kernel-vanilla-4.4.79-4.2.nosrc.rpm True kernel-vanilla-4.4.79-4.2.x86_64.rpm True kernel-vanilla-base-4.4.79-4.2.x86_64.rpm True kernel-vanilla-base-debuginfo-4.4.79-4.2.x86_64.rpm True kernel-vanilla-debuginfo-4.4.79-4.2.x86_64.rpm True kernel-vanilla-debugsource-4.4.79-4.2.x86_64.rpm True kernel-vanilla-devel-4.4.79-4.2.x86_64.rpm True openSUSE-2017-898 moderate openSUSE Leap 42.3 Update This update for audacity, wxWidgets-3_0 fixes the following issues: - Audacity did not start to to a binary incompatibility (boo#1051717) libwx_baseu-suse-nostl1-3.0.2-11.1.i586.rpm libwx_baseu-suse-nostl1-debuginfo-3.0.2-11.1.i586.rpm libwx_baseu_net-suse-nostl1-3.0.2-11.1.i586.rpm libwx_baseu_net-suse-nostl1-debuginfo-3.0.2-11.1.i586.rpm libwx_baseu_xml-suse-nostl1-3.0.2-11.1.i586.rpm libwx_baseu_xml-suse-nostl1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_adv-suse-nostl1-3.0.2-11.1.i586.rpm libwx_gtk2u_adv-suse-nostl1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_aui-suse-nostl1-3.0.2-11.1.i586.rpm libwx_gtk2u_aui-suse-nostl1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_core-suse-nostl1-3.0.2-11.1.i586.rpm libwx_gtk2u_core-suse-nostl1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_gl-suse-nostl1-3.0.2-11.1.i586.rpm libwx_gtk2u_gl-suse-nostl1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_html-suse-nostl1-3.0.2-11.1.i586.rpm libwx_gtk2u_html-suse-nostl1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_media-suse-nostl1-3.0.2-11.1.i586.rpm libwx_gtk2u_media-suse-nostl1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_propgrid-suse-nostl1-3.0.2-11.1.i586.rpm libwx_gtk2u_propgrid-suse-nostl1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_qa-suse-nostl1-3.0.2-11.1.i586.rpm libwx_gtk2u_qa-suse-nostl1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_ribbon-suse-nostl1-3.0.2-11.1.i586.rpm libwx_gtk2u_ribbon-suse-nostl1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_richtext-suse-nostl1-3.0.2-11.1.i586.rpm libwx_gtk2u_richtext-suse-nostl1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_stc-suse-nostl1-3.0.2-11.1.i586.rpm libwx_gtk2u_stc-suse-nostl1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_webview-suse-nostl1-3.0.2-11.1.i586.rpm libwx_gtk2u_webview-suse-nostl1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_xrc-suse-nostl1-3.0.2-11.1.i586.rpm libwx_gtk2u_xrc-suse-nostl1-debuginfo-3.0.2-11.1.i586.rpm wxWidgets-3_0-nostl-3.0.2-11.1.src.rpm wxWidgets-3_0-nostl-debugsource-3.0.2-11.1.i586.rpm wxWidgets-3_0-nostl-devel-3.0.2-11.1.i586.rpm wxWidgets-3_0-nostl-devel-debuginfo-3.0.2-11.1.i586.rpm libwx_baseu-suse1-3.0.2-11.1.i586.rpm libwx_baseu-suse1-32bit-3.0.2-11.1.x86_64.rpm libwx_baseu-suse1-debuginfo-3.0.2-11.1.i586.rpm libwx_baseu-suse1-debuginfo-32bit-3.0.2-11.1.x86_64.rpm libwx_baseu_net-suse1-3.0.2-11.1.i586.rpm libwx_baseu_net-suse1-32bit-3.0.2-11.1.x86_64.rpm libwx_baseu_net-suse1-debuginfo-3.0.2-11.1.i586.rpm libwx_baseu_net-suse1-debuginfo-32bit-3.0.2-11.1.x86_64.rpm libwx_baseu_xml-suse1-3.0.2-11.1.i586.rpm libwx_baseu_xml-suse1-32bit-3.0.2-11.1.x86_64.rpm libwx_baseu_xml-suse1-debuginfo-3.0.2-11.1.i586.rpm libwx_baseu_xml-suse1-debuginfo-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_adv-suse1-3.0.2-11.1.i586.rpm libwx_gtk2u_adv-suse1-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_adv-suse1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_adv-suse1-debuginfo-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_aui-suse1-3.0.2-11.1.i586.rpm libwx_gtk2u_aui-suse1-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_aui-suse1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_aui-suse1-debuginfo-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_core-suse1-3.0.2-11.1.i586.rpm libwx_gtk2u_core-suse1-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_core-suse1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_core-suse1-debuginfo-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_gl-suse1-3.0.2-11.1.i586.rpm libwx_gtk2u_gl-suse1-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_gl-suse1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_gl-suse1-debuginfo-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_html-suse1-3.0.2-11.1.i586.rpm libwx_gtk2u_html-suse1-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_html-suse1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_html-suse1-debuginfo-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_media-suse1-3.0.2-11.1.i586.rpm libwx_gtk2u_media-suse1-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_media-suse1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_media-suse1-debuginfo-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_propgrid-suse1-3.0.2-11.1.i586.rpm libwx_gtk2u_propgrid-suse1-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_propgrid-suse1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_propgrid-suse1-debuginfo-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_qa-suse1-3.0.2-11.1.i586.rpm libwx_gtk2u_qa-suse1-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_qa-suse1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_qa-suse1-debuginfo-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_ribbon-suse1-3.0.2-11.1.i586.rpm libwx_gtk2u_ribbon-suse1-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_ribbon-suse1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_ribbon-suse1-debuginfo-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_richtext-suse1-3.0.2-11.1.i586.rpm libwx_gtk2u_richtext-suse1-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_richtext-suse1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_richtext-suse1-debuginfo-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_stc-suse1-3.0.2-11.1.i586.rpm libwx_gtk2u_stc-suse1-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_stc-suse1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_stc-suse1-debuginfo-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_webview-suse1-3.0.2-11.1.i586.rpm libwx_gtk2u_webview-suse1-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_webview-suse1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_webview-suse1-debuginfo-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_xrc-suse1-3.0.2-11.1.i586.rpm libwx_gtk2u_xrc-suse1-32bit-3.0.2-11.1.x86_64.rpm libwx_gtk2u_xrc-suse1-debuginfo-3.0.2-11.1.i586.rpm libwx_gtk2u_xrc-suse1-debuginfo-32bit-3.0.2-11.1.x86_64.rpm wxWidgets-3_0-3.0.2-11.1.src.rpm wxWidgets-3_0-debugsource-3.0.2-11.1.i586.rpm wxWidgets-3_0-devel-3.0.2-11.1.i586.rpm wxWidgets-3_0-devel-32bit-3.0.2-11.1.x86_64.rpm wxWidgets-3_0-devel-debuginfo-3.0.2-11.1.i586.rpm wxWidgets-3_0-devel-debuginfo-32bit-3.0.2-11.1.x86_64.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-3.0.2-11.1.i586.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-32bit-3.0.2-11.1.x86_64.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-debuginfo-3.0.2-11.1.i586.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-debuginfo-32bit-3.0.2-11.1.x86_64.rpm audacity-2.1.3-3.2.src.rpm audacity-2.1.3-3.2.x86_64.rpm audacity-debuginfo-2.1.3-3.2.x86_64.rpm audacity-debugsource-2.1.3-3.2.x86_64.rpm audacity-lang-2.1.3-3.2.noarch.rpm libwx_baseu-suse-nostl1-3.0.2-11.1.x86_64.rpm libwx_baseu-suse-nostl1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_baseu_net-suse-nostl1-3.0.2-11.1.x86_64.rpm libwx_baseu_net-suse-nostl1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_baseu_xml-suse-nostl1-3.0.2-11.1.x86_64.rpm libwx_baseu_xml-suse-nostl1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_adv-suse-nostl1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_adv-suse-nostl1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_aui-suse-nostl1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_aui-suse-nostl1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_core-suse-nostl1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_core-suse-nostl1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_gl-suse-nostl1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_gl-suse-nostl1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_html-suse-nostl1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_html-suse-nostl1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_media-suse-nostl1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_media-suse-nostl1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_propgrid-suse-nostl1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_propgrid-suse-nostl1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_qa-suse-nostl1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_qa-suse-nostl1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_ribbon-suse-nostl1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_ribbon-suse-nostl1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_richtext-suse-nostl1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_richtext-suse-nostl1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_stc-suse-nostl1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_stc-suse-nostl1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_webview-suse-nostl1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_webview-suse-nostl1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_xrc-suse-nostl1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_xrc-suse-nostl1-debuginfo-3.0.2-11.1.x86_64.rpm wxWidgets-3_0-nostl-debugsource-3.0.2-11.1.x86_64.rpm wxWidgets-3_0-nostl-devel-3.0.2-11.1.x86_64.rpm wxWidgets-3_0-nostl-devel-debuginfo-3.0.2-11.1.x86_64.rpm libwx_baseu-suse1-3.0.2-11.1.x86_64.rpm libwx_baseu-suse1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_baseu_net-suse1-3.0.2-11.1.x86_64.rpm libwx_baseu_net-suse1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_baseu_xml-suse1-3.0.2-11.1.x86_64.rpm libwx_baseu_xml-suse1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_adv-suse1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_adv-suse1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_aui-suse1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_aui-suse1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_core-suse1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_core-suse1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_gl-suse1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_gl-suse1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_html-suse1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_html-suse1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_media-suse1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_media-suse1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_propgrid-suse1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_propgrid-suse1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_qa-suse1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_qa-suse1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_ribbon-suse1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_ribbon-suse1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_richtext-suse1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_richtext-suse1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_stc-suse1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_stc-suse1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_webview-suse1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_webview-suse1-debuginfo-3.0.2-11.1.x86_64.rpm libwx_gtk2u_xrc-suse1-3.0.2-11.1.x86_64.rpm libwx_gtk2u_xrc-suse1-debuginfo-3.0.2-11.1.x86_64.rpm wxWidgets-3_0-debugsource-3.0.2-11.1.x86_64.rpm wxWidgets-3_0-devel-3.0.2-11.1.x86_64.rpm wxWidgets-3_0-devel-debuginfo-3.0.2-11.1.x86_64.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-3.0.2-11.1.x86_64.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-debuginfo-3.0.2-11.1.x86_64.rpm openSUSE-2017-901 moderate openSUSE Leap 42.3 Update This update for nasm fixes the following issues: Security issues fixed: - CVE-2017-10686: Multiple heap use after free vulnerabilities. (bsc#1047936) - CVE-2017-11111: Heap-based buffer overflow and application crash. (bsc#1047925) This update was imported from the SUSE:SLE-12:Update update project. nasm-2.10.09-10.1.i586.rpm nasm-2.10.09-10.1.src.rpm nasm-debuginfo-2.10.09-10.1.i586.rpm nasm-debugsource-2.10.09-10.1.i586.rpm nasm-doc-2.10.09-10.1.i586.rpm nasm-2.10.09-10.1.x86_64.rpm nasm-debuginfo-2.10.09-10.1.x86_64.rpm nasm-debugsource-2.10.09-10.1.x86_64.rpm nasm-doc-2.10.09-10.1.x86_64.rpm openSUSE-2017-927 low openSUSE Leap 42.3 Update This update for WindowMaker-applets fixes the following issues: - Fix invalid XPM icon paths in /etc/wmmount. (boo#1046193) WindowMaker-applets-1.0.1-7.1.src.rpm WindowMaker-applets-1.0.1-7.1.x86_64.rpm WindowMaker-applets-debuginfo-1.0.1-7.1.x86_64.rpm WindowMaker-applets-debugsource-1.0.1-7.1.x86_64.rpm openSUSE-2017-903 moderate openSUSE Leap 42.3 Update This update for openssl fixes the following issues including fixes for our ongoing FIPS 140-2 evaluation: - Remove DES-CBC3-SHA based ciphers from DEFAULT_SUSE to address SWEET32 problem (bsc#1027908) - Use getrandom syscall instead of reading from /dev/urandom to get at least 128 bits of entropy to comply with FIPS 140.2 IG 7.14 (bsc#1027079 bsc#1044175) - Fix x86 extended feature detection (bsc#1029523) - Allow runtime switching of s390x capabilities via the "OPENSSL_s390xcap" environmental variable (bsc#1028723) - s_client sent empty client certificate (bsc#1028281) Add back certificate initialization set_cert_key_stuff() which was removed in a previous update. - Fix a bug in XTS key handling (bsc#1019637) - Don't run FIPS power-up self-tests when the checksum files aren't installed (bsc#1042392) This update was imported from the SUSE:SLE-12-SP2:Update update project. libopenssl-devel-1.0.2j-10.1.i586.rpm libopenssl-devel-32bit-1.0.2j-10.1.x86_64.rpm libopenssl1_0_0-1.0.2j-10.1.i586.rpm libopenssl1_0_0-32bit-1.0.2j-10.1.x86_64.rpm libopenssl1_0_0-debuginfo-1.0.2j-10.1.i586.rpm libopenssl1_0_0-debuginfo-32bit-1.0.2j-10.1.x86_64.rpm libopenssl1_0_0-hmac-1.0.2j-10.1.i586.rpm libopenssl1_0_0-hmac-32bit-1.0.2j-10.1.x86_64.rpm openssl-1.0.2j-10.1.i586.rpm openssl-1.0.2j-10.1.src.rpm openssl-cavs-1.0.2j-10.1.i586.rpm openssl-cavs-debuginfo-1.0.2j-10.1.i586.rpm openssl-debuginfo-1.0.2j-10.1.i586.rpm openssl-debugsource-1.0.2j-10.1.i586.rpm openssl-doc-1.0.2j-10.1.noarch.rpm libopenssl-devel-1.0.2j-10.1.x86_64.rpm libopenssl1_0_0-1.0.2j-10.1.x86_64.rpm libopenssl1_0_0-debuginfo-1.0.2j-10.1.x86_64.rpm libopenssl1_0_0-hmac-1.0.2j-10.1.x86_64.rpm openssl-1.0.2j-10.1.x86_64.rpm openssl-cavs-1.0.2j-10.1.x86_64.rpm openssl-cavs-debuginfo-1.0.2j-10.1.x86_64.rpm openssl-debuginfo-1.0.2j-10.1.x86_64.rpm openssl-debugsource-1.0.2j-10.1.x86_64.rpm openSUSE-2017-928 moderate openSUSE Leap 42.3 Update This update provides nut 2.7.4 including various improvements and bug fixes: - New class of device supported: ATS - Automatic Transfer Switch. - NUT command and variable naming scheme changes. - Network protocol information change. - nut-scanner: Don't depend on development libraries (boo#963505). - nut-server.service: Restore systemd relationship (boo#907387). - Fix service files paths (boo#907387). - Fix bash-completion path. - Install init or systemd files not both at once. - Improved SSL support through Mozilla NSS, Augeas support. - Fixed UPower device matching in recent kernels. - Drop dummy init scripts. They are not needed any more (nut-monitor, nut-server, nut-driver, boo#801542#c2). - upsdrvctl is now installed to $prefix/sbin rather than $driverexec. This usually means moving from /bin to /sbin, apart from few exceptions. - FreeDesktop Hardware Abstraction Layer (HAL) support was removed. - libupsclient had undefined references related to functions of libcommon.This issue was reported on Debian (bug #731156) and is now fixed - nutdrv_atcl_usb: new driver for 'ATCL FOR UPS' - al175: re-introduced this driver (actually, it was in 2.7.1) Please visit http://networkupstools.org/source/2.7/new-2.7.4.txt to see all changes. libupsclient1-2.7.4-6.1.x86_64.rpm libupsclient1-debuginfo-2.7.4-6.1.x86_64.rpm nut-2.7.4-6.1.src.rpm nut-2.7.4-6.1.x86_64.rpm nut-cgi-2.7.4-6.1.x86_64.rpm nut-cgi-debuginfo-2.7.4-6.1.x86_64.rpm nut-debuginfo-2.7.4-6.1.x86_64.rpm nut-debugsource-2.7.4-6.1.x86_64.rpm nut-devel-2.7.4-6.1.x86_64.rpm nut-doc-asciidoc-2.7.4-6.1.noarch.rpm nut-doc-images-2.7.4-6.1.noarch.rpm nut-drivers-net-2.7.4-6.1.x86_64.rpm nut-drivers-net-debuginfo-2.7.4-6.1.x86_64.rpm openSUSE-2017-925 important openSUSE Leap 42.3 Update This update for salt fixes the following issues: - Wrong os_family grains on SUSE - fix unittests. (boo#1038855) - Fix setting the language on SUSE systems. (boo#1038855) - Bugfix: unable to use hostname for minion ID as '127'. (upstream) - Bugfix: remove sleep call in CheppryPy API handler. (upstream) - Fix core grains constants for timezone. (boo#1032931) - Prevents zero length error on Python 2.6. - Fixes zypper test error after backporting. - Refactoring on Zypper and Yum execution and state modules to allow installation of patches/errata. - Allows to set 'timeout' and 'gather_job_timeout' via kwargs. - Add missing bootstrap script for Salt Cloud. (boo#1032452) - raet protocol is no longer supported. (boo#1020831) - Fix: add missing /var/cache/salt/cloud directory. (boo#1032213) - Cleanup salt user environment preparation. (boo#1027722) - Fix: race condition on cache directory creation. - Fix: /var/log/salt/minion fails logrotate. (boo#1030009) - Fix: Result of master_tops extension is mutually overwritten. (boo#1030073) - Allows to set custom timeouts for 'manage.up' and 'manage.status'. - Keep fix for migrating salt home directory. (boo#1022562) - Fix salt-minion update on RHEL. (boo#1022841) - Prevents 'OSError' exception in case certain job cache path doesn't exist. (boo#1023535) salt-2016.11.4-8.1.src.rpm salt-2016.11.4-8.1.x86_64.rpm salt-api-2016.11.4-8.1.x86_64.rpm salt-bash-completion-2016.11.4-8.1.noarch.rpm salt-cloud-2016.11.4-8.1.x86_64.rpm salt-doc-2016.11.4-8.1.x86_64.rpm salt-fish-completion-2016.11.4-8.1.noarch.rpm salt-master-2016.11.4-8.1.x86_64.rpm salt-minion-2016.11.4-8.1.x86_64.rpm salt-proxy-2016.11.4-8.1.x86_64.rpm salt-ssh-2016.11.4-8.1.x86_64.rpm salt-syndic-2016.11.4-8.1.x86_64.rpm salt-zsh-completion-2016.11.4-8.1.noarch.rpm openSUSE-2017-926 low openSUSE Leap 42.3 Update This update for amavisd-new fixes the following issues: - IPv6: DENIED ACCESS due to INVALID PEER IP ADDRESS. (boo#1012969) amavisd-new-2.8.1-11.1.src.rpm amavisd-new-2.8.1-11.1.x86_64.rpm amavisd-new-debuginfo-2.8.1-11.1.x86_64.rpm amavisd-new-debugsource-2.8.1-11.1.x86_64.rpm amavisd-new-docs-2.8.1-11.1.x86_64.rpm openSUSE-2017-924 low openSUSE Leap 42.3 Update This update for kdesvn fixes the following issues: - Add fix-crash-root-path.patch to fix kded crash when the root path ('/') is checked for a working copy. (kde#383187) kdesvn-2.0.0-4.1.i586.rpm kdesvn-2.0.0-4.1.src.rpm kdesvn-debuginfo-2.0.0-4.1.i586.rpm kdesvn-debugsource-2.0.0-4.1.i586.rpm kdesvn-2.0.0-4.1.x86_64.rpm kdesvn-debuginfo-2.0.0-4.1.x86_64.rpm kdesvn-debugsource-2.0.0-4.1.x86_64.rpm openSUSE-2017-940 important openSUSE Leap 42.3 Update This update for subversion to 1.9.7 fixes security issues and bugs. The following vulnerabilities were fixed: - CVE-2017-9800: A remote attacker could have caused svn clients to execute arbitrary code via specially crafted URLs in svn:externals and svn:sync-from-url properties. (boo#1051362) - CVE-2005-4900: SHA-1 collisions may cause repository inconsistencies (boo#1026936) The following bugfix changes are included: - Add instructions for running svnserve as a user different from "svn", and remove sysconfig variables that are no longer effective with the systemd unit. (boo#1049448) libsvn_auth_gnome_keyring-1-0-1.9.7-8.1.i586.rpm libsvn_auth_gnome_keyring-1-0-debuginfo-1.9.7-8.1.i586.rpm libsvn_auth_kwallet-1-0-1.9.7-8.1.i586.rpm libsvn_auth_kwallet-1-0-debuginfo-1.9.7-8.1.i586.rpm subversion-1.9.7-8.1.i586.rpm subversion-1.9.7-8.1.src.rpm subversion-bash-completion-1.9.7-8.1.noarch.rpm subversion-debuginfo-1.9.7-8.1.i586.rpm subversion-debugsource-1.9.7-8.1.i586.rpm subversion-devel-1.9.7-8.1.i586.rpm subversion-perl-1.9.7-8.1.i586.rpm subversion-perl-debuginfo-1.9.7-8.1.i586.rpm subversion-python-1.9.7-8.1.i586.rpm subversion-python-ctypes-1.9.7-8.1.i586.rpm subversion-python-debuginfo-1.9.7-8.1.i586.rpm subversion-ruby-1.9.7-8.1.i586.rpm subversion-ruby-debuginfo-1.9.7-8.1.i586.rpm subversion-server-1.9.7-8.1.i586.rpm subversion-server-debuginfo-1.9.7-8.1.i586.rpm subversion-tools-1.9.7-8.1.i586.rpm subversion-tools-debuginfo-1.9.7-8.1.i586.rpm libsvn_auth_gnome_keyring-1-0-1.9.7-8.1.x86_64.rpm libsvn_auth_gnome_keyring-1-0-debuginfo-1.9.7-8.1.x86_64.rpm libsvn_auth_kwallet-1-0-1.9.7-8.1.x86_64.rpm libsvn_auth_kwallet-1-0-debuginfo-1.9.7-8.1.x86_64.rpm subversion-1.9.7-8.1.x86_64.rpm subversion-debuginfo-1.9.7-8.1.x86_64.rpm subversion-debugsource-1.9.7-8.1.x86_64.rpm subversion-devel-1.9.7-8.1.x86_64.rpm subversion-perl-1.9.7-8.1.x86_64.rpm subversion-perl-debuginfo-1.9.7-8.1.x86_64.rpm subversion-python-1.9.7-8.1.x86_64.rpm subversion-python-ctypes-1.9.7-8.1.x86_64.rpm subversion-python-debuginfo-1.9.7-8.1.x86_64.rpm subversion-ruby-1.9.7-8.1.x86_64.rpm subversion-ruby-debuginfo-1.9.7-8.1.x86_64.rpm subversion-server-1.9.7-8.1.x86_64.rpm subversion-server-debuginfo-1.9.7-8.1.x86_64.rpm subversion-tools-1.9.7-8.1.x86_64.rpm subversion-tools-debuginfo-1.9.7-8.1.x86_64.rpm openSUSE-2017-923 low openSUSE Leap 42.3 Update This update for info2html fixes the following issues: - Avoid DirnameCheck() as it breaks the info2html. (boo#1052383) - Avoid $* asignment with newer perl. info2html-2.0-223.1.noarch.rpm info2html-2.0-223.1.src.rpm openSUSE-2017-922 low openSUSE Leap 42.3 Update This update for texlive-specs-a fixes the following issues: - Apply patch algorithm2e_umlauts.dif as well. (bnc#1051054) texlive-12many-2016.122.0.0.3svn15878-29.1.noarch.rpm texlive-12many-doc-2016.122.0.0.3svn15878-29.1.noarch.rpm texlive-2up-2016.122.svn40417-29.1.noarch.rpm texlive-2up-doc-2016.122.svn40417-29.1.noarch.rpm texlive-Asana-Math-2016.122.0.000.955svn37556-29.1.noarch.rpm texlive-Asana-Math-doc-2016.122.0.000.955svn37556-29.1.noarch.rpm texlive-Asana-Math-fonts-2016.122.0.000.955svn37556-29.1.noarch.rpm texlive-ESIEEcv-2016.122.svn15878-29.1.noarch.rpm texlive-ESIEEcv-doc-2016.122.svn15878-29.1.noarch.rpm texlive-FAQ-en-2016.122.3.28svn34303-29.1.noarch.rpm texlive-GS1-2016.122.15svn27540-29.1.noarch.rpm texlive-GS1-doc-2016.122.15svn27540-29.1.noarch.rpm texlive-HA-prosper-2016.122.4.21svn15878-29.1.noarch.rpm texlive-HA-prosper-doc-2016.122.4.21svn15878-29.1.noarch.rpm texlive-IEEEconf-2016.122.1.4svn15878-29.1.noarch.rpm texlive-IEEEconf-doc-2016.122.1.4svn15878-29.1.noarch.rpm texlive-IEEEtran-2016.122.1.8bsvn38238-29.1.noarch.rpm texlive-IEEEtran-doc-2016.122.1.8bsvn38238-29.1.noarch.rpm texlive-MemoirChapStyles-2016.122.1.7esvn25918-29.1.noarch.rpm texlive-SIstyle-2016.122.2.3asvn15878-29.1.noarch.rpm texlive-SIstyle-doc-2016.122.2.3asvn15878-29.1.noarch.rpm texlive-SIunits-2016.122.1.36svn15878-29.1.noarch.rpm texlive-SIunits-doc-2016.122.1.36svn15878-29.1.noarch.rpm texlive-Tabbing-2016.122.svn17022-29.1.noarch.rpm texlive-Tabbing-doc-2016.122.svn17022-29.1.noarch.rpm texlive-Type1fonts-2016.122.2.14svn19603-29.1.noarch.rpm texlive-a0poster-2016.122.1.22bsvn15878-29.1.noarch.rpm texlive-a0poster-doc-2016.122.1.22bsvn15878-29.1.noarch.rpm texlive-a2ping-2016.122.svn29725-29.1.noarch.rpm texlive-a2ping-doc-2016.122.svn29725-29.1.noarch.rpm texlive-a4wide-2016.122.svn20943-29.1.noarch.rpm texlive-a4wide-doc-2016.122.svn20943-29.1.noarch.rpm texlive-a5comb-2016.122.4svn17020-29.1.noarch.rpm texlive-a5comb-doc-2016.122.4svn17020-29.1.noarch.rpm texlive-aastex-2016.122.6.0svn39929-29.1.noarch.rpm texlive-aastex-doc-2016.122.6.0svn39929-29.1.noarch.rpm texlive-abbr-2016.122.svn15878-29.1.noarch.rpm texlive-abbr-doc-2016.122.svn15878-29.1.noarch.rpm texlive-abc-2016.122.2.0bsvn41157-29.1.noarch.rpm texlive-abc-doc-2016.122.2.0bsvn41157-29.1.noarch.rpm texlive-abntex2-2016.122.1.9.6svn39913-29.1.noarch.rpm texlive-abntex2-doc-2016.122.1.9.6svn39913-29.1.noarch.rpm texlive-abraces-2016.122.1._svn27880-29.1.noarch.rpm texlive-abraces-doc-2016.122.1._svn27880-29.1.noarch.rpm texlive-abstract-2016.122.1.2asvn15878-29.1.noarch.rpm texlive-abstract-doc-2016.122.1.2asvn15878-29.1.noarch.rpm texlive-abstyles-2016.122.svn15878-29.1.noarch.rpm texlive-abstyles-doc-2016.122.svn15878-29.1.noarch.rpm texlive-academicons-2016.122.1.7.0svn41194-29.1.noarch.rpm texlive-academicons-doc-2016.122.1.7.0svn41194-29.1.noarch.rpm texlive-academicons-fonts-2016.122.1.7.0svn41194-29.1.noarch.rpm texlive-accanthis-2016.122.svn32089-29.1.noarch.rpm texlive-accanthis-doc-2016.122.svn32089-29.1.noarch.rpm texlive-accanthis-fonts-2016.122.svn32089-29.1.noarch.rpm texlive-accfonts-2016.122.0.0.25svn18835-29.1.noarch.rpm texlive-accfonts-doc-2016.122.0.0.25svn18835-29.1.noarch.rpm texlive-achemso-2016.122.3.10csvn41037-29.1.noarch.rpm texlive-achemso-doc-2016.122.3.10csvn41037-29.1.noarch.rpm texlive-acmart-2016.122.1.09svn41243-29.1.noarch.rpm texlive-acmart-doc-2016.122.1.09svn41243-29.1.noarch.rpm texlive-acmconf-2016.122.1.3svn15878-29.1.noarch.rpm texlive-acmconf-doc-2016.122.1.3svn15878-29.1.noarch.rpm texlive-acro-2016.122.2.4bsvn40874-29.1.noarch.rpm texlive-acro-doc-2016.122.2.4bsvn40874-29.1.noarch.rpm texlive-acronym-2016.122.1.41svn36582-29.1.noarch.rpm texlive-acronym-doc-2016.122.1.41svn36582-29.1.noarch.rpm texlive-acroterm-2016.122.0.0.1svn20498-29.1.noarch.rpm texlive-acroterm-doc-2016.122.0.0.1svn20498-29.1.noarch.rpm texlive-active-conf-2016.122.0.0.3asvn15878-29.1.noarch.rpm texlive-active-conf-doc-2016.122.0.0.3asvn15878-29.1.noarch.rpm texlive-actuarialangle-2016.122.svn28004-29.1.noarch.rpm texlive-actuarialangle-doc-2016.122.svn28004-29.1.noarch.rpm texlive-addlines-2016.122.0.0.2asvn37805-29.1.noarch.rpm texlive-addlines-doc-2016.122.0.0.2asvn37805-29.1.noarch.rpm texlive-adfathesis-2016.122.2.42svn26048-29.1.noarch.rpm texlive-adfathesis-doc-2016.122.2.42svn26048-29.1.noarch.rpm texlive-adforn-2016.122.1.001_b_2svn20019-29.1.noarch.rpm texlive-adforn-doc-2016.122.1.001_b_2svn20019-29.1.noarch.rpm texlive-adforn-fonts-2016.122.1.001_b_2svn20019-29.1.noarch.rpm texlive-adfsymbols-2016.122.1.001svn19766-29.1.noarch.rpm texlive-adfsymbols-doc-2016.122.1.001svn19766-29.1.noarch.rpm texlive-adfsymbols-fonts-2016.122.1.001svn19766-29.1.noarch.rpm texlive-adhocfilelist-2016.122.svn29349-29.1.noarch.rpm texlive-adhocfilelist-doc-2016.122.svn29349-29.1.noarch.rpm texlive-adjmulticol-2016.122.1.1svn28936-29.1.noarch.rpm texlive-adjmulticol-doc-2016.122.1.1svn28936-29.1.noarch.rpm texlive-adjustbox-2016.122.1.0svn26555-29.1.noarch.rpm texlive-adjustbox-doc-2016.122.1.0svn26555-29.1.noarch.rpm texlive-adobemapping-2016.122.svn41067-29.1.noarch.rpm texlive-adrconv-2016.122.1.3svn17683-29.1.noarch.rpm texlive-adrconv-doc-2016.122.1.3svn17683-29.1.noarch.rpm texlive-adtrees-2016.122.1.0svn39438-29.1.noarch.rpm texlive-adtrees-doc-2016.122.1.0svn39438-29.1.noarch.rpm texlive-advdate-2016.122.svn20538-29.1.noarch.rpm texlive-advdate-doc-2016.122.svn20538-29.1.noarch.rpm texlive-ae-2016.122.1.4svn15878-29.1.noarch.rpm texlive-ae-doc-2016.122.1.4svn15878-29.1.noarch.rpm texlive-aecc-2016.122.1.0svn28574-29.1.noarch.rpm texlive-aecc-doc-2016.122.1.0svn28574-29.1.noarch.rpm texlive-aeguill-2016.122.svn15878-29.1.noarch.rpm texlive-aeguill-doc-2016.122.svn15878-29.1.noarch.rpm texlive-afm2pl-2016.122.svn40768-29.1.noarch.rpm texlive-afm2pl-doc-2016.122.svn40768-29.1.noarch.rpm texlive-afparticle-2016.122.1.3svn35900-29.1.noarch.rpm texlive-afparticle-doc-2016.122.1.3svn35900-29.1.noarch.rpm texlive-afthesis-2016.122.2.7svn15878-29.1.noarch.rpm texlive-afthesis-doc-2016.122.2.7svn15878-29.1.noarch.rpm texlive-aguplus-2016.122.1.6bsvn17156-29.1.noarch.rpm texlive-aguplus-doc-2016.122.1.6bsvn17156-29.1.noarch.rpm texlive-aiaa-2016.122.3.6svn15878-29.1.noarch.rpm texlive-aiaa-doc-2016.122.3.6svn15878-29.1.noarch.rpm texlive-aichej-2016.122.svn15878-29.1.noarch.rpm texlive-ajl-2016.122.svn34016-29.1.noarch.rpm texlive-akktex-2016.122.0.0.3.2svn26055-29.1.noarch.rpm texlive-akktex-doc-2016.122.0.0.3.2svn26055-29.1.noarch.rpm texlive-akletter-2016.122.1.5isvn15878-29.1.noarch.rpm texlive-akletter-doc-2016.122.1.5isvn15878-29.1.noarch.rpm texlive-alegreya-2016.122.svn38689-29.1.noarch.rpm texlive-alegreya-doc-2016.122.svn38689-29.1.noarch.rpm texlive-alegreya-fonts-2016.122.svn38689-29.1.noarch.rpm texlive-aleph-2016.122.svn40768-29.1.noarch.rpm texlive-alertmessage-2016.122.1.1svn38055-29.1.noarch.rpm texlive-alertmessage-doc-2016.122.1.1svn38055-29.1.noarch.rpm texlive-alg-2016.122.svn15878-29.1.noarch.rpm texlive-alg-doc-2016.122.svn15878-29.1.noarch.rpm texlive-algorithm2e-2016.122.5.1svn38805-29.1.noarch.rpm texlive-algorithm2e-doc-2016.122.5.1svn38805-29.1.noarch.rpm texlive-algorithmicx-2016.122.svn15878-29.1.noarch.rpm texlive-algorithmicx-doc-2016.122.svn15878-29.1.noarch.rpm texlive-algorithms-2016.122.0.0.1svn38085-29.1.noarch.rpm texlive-algorithms-doc-2016.122.0.0.1svn38085-29.1.noarch.rpm texlive-allrunes-2016.122.2.1svn21886-29.1.noarch.rpm texlive-allrunes-doc-2016.122.2.1svn21886-29.1.noarch.rpm texlive-allrunes-fonts-2016.122.2.1svn21886-29.1.noarch.rpm texlive-almfixed-2016.122.0.0.92svn35065-29.1.noarch.rpm texlive-almfixed-doc-2016.122.0.0.92svn35065-29.1.noarch.rpm texlive-almfixed-fonts-2016.122.0.0.92svn35065-29.1.noarch.rpm texlive-alnumsec-2016.122.0.0.03svn15878-29.1.noarch.rpm texlive-alnumsec-doc-2016.122.0.0.03svn15878-29.1.noarch.rpm texlive-alterqcm-2016.122.3.7csvn23385-29.1.noarch.rpm texlive-alterqcm-doc-2016.122.3.7csvn23385-29.1.noarch.rpm texlive-altfont-2016.122.1.1svn15878-29.1.noarch.rpm texlive-altfont-doc-2016.122.1.1svn15878-29.1.noarch.rpm texlive-ametsoc-2016.122.4.3.2svn36030-29.1.noarch.rpm texlive-ametsoc-doc-2016.122.4.3.2svn36030-29.1.noarch.rpm texlive-amiri-2016.122.0.0.108svn38429-29.1.noarch.rpm texlive-amiri-doc-2016.122.0.0.108svn38429-29.1.noarch.rpm texlive-amiri-fonts-2016.122.0.0.108svn38429-29.1.noarch.rpm texlive-amsaddr-2016.122.1.1svn29630-29.1.noarch.rpm texlive-amsaddr-doc-2016.122.1.1svn29630-29.1.noarch.rpm texlive-amscls-2016.122.svn36804-29.1.noarch.rpm texlive-amscls-doc-2016.122.svn36804-29.1.noarch.rpm texlive-amsfonts-2016.122.3.04svn29208-29.1.noarch.rpm texlive-amsfonts-doc-2016.122.3.04svn29208-29.1.noarch.rpm texlive-amsfonts-fonts-2016.122.3.04svn29208-29.1.noarch.rpm texlive-amslatex-primer-2016.122.2.3svn28980-29.1.noarch.rpm texlive-amsldoc-it-2016.122.svn15878-29.1.noarch.rpm texlive-amsldoc-vn-2016.122.2.0svn21855-29.1.noarch.rpm texlive-amsmath-2016.122.2.15bsvn40218-29.1.noarch.rpm texlive-amsmath-doc-2016.122.2.15bsvn40218-29.1.noarch.rpm texlive-amsmath-it-2016.122.svn22930-29.1.noarch.rpm texlive-amsrefs-2016.122.2.14svn30646-29.1.noarch.rpm texlive-amsrefs-doc-2016.122.2.14svn30646-29.1.noarch.rpm texlive-amstex-2016.122.2.2svn40768-29.1.noarch.rpm texlive-amstex-doc-2016.122.2.2svn40768-29.1.noarch.rpm texlive-amsthdoc-it-2016.122.svn15878-29.1.noarch.rpm texlive-animate-2016.122.svn40534-29.1.noarch.rpm texlive-animate-doc-2016.122.svn40534-29.1.noarch.rpm texlive-anonchap-2016.122.1.1asvn17049-29.1.noarch.rpm texlive-anonchap-doc-2016.122.1.1asvn17049-29.1.noarch.rpm texlive-anonymouspro-2016.122.2.1svn33441-29.1.noarch.rpm texlive-anonymouspro-doc-2016.122.2.1svn33441-29.1.noarch.rpm texlive-anonymouspro-fonts-2016.122.2.1svn33441-29.1.noarch.rpm texlive-answers-2016.122.2.16svn35032-29.1.noarch.rpm texlive-answers-doc-2016.122.2.16svn35032-29.1.noarch.rpm texlive-antiqua-2016.122.001.003svn24266-29.1.noarch.rpm texlive-antiqua-doc-2016.122.001.003svn24266-29.1.noarch.rpm texlive-antiqua-fonts-2016.122.001.003svn24266-29.1.noarch.rpm texlive-antomega-2016.122.0.0.8svn21933-29.1.noarch.rpm texlive-antomega-doc-2016.122.0.0.8svn21933-29.1.noarch.rpm texlive-antt-2016.122.2.08svn18651-29.1.noarch.rpm texlive-antt-doc-2016.122.2.08svn18651-29.1.noarch.rpm texlive-antt-fonts-2016.122.2.08svn18651-29.1.noarch.rpm texlive-anufinalexam-2016.122.svn26053-29.1.noarch.rpm texlive-anyfontsize-2016.122.svn17050-29.1.noarch.rpm texlive-anyfontsize-doc-2016.122.svn17050-29.1.noarch.rpm texlive-anysize-2016.122.svn15878-29.1.noarch.rpm texlive-anysize-doc-2016.122.svn15878-29.1.noarch.rpm texlive-aobs-tikz-2016.122.1.0svn32662-29.1.noarch.rpm texlive-aobs-tikz-doc-2016.122.1.0svn32662-29.1.noarch.rpm texlive-aomart-2016.122.1.14asvn36324-29.1.noarch.rpm texlive-aomart-doc-2016.122.1.14asvn36324-29.1.noarch.rpm texlive-apa-2016.122.1.3.4svn15878-29.1.noarch.rpm texlive-apa-doc-2016.122.1.3.4svn15878-29.1.noarch.rpm texlive-apa6-2016.122.2.14svn35631-29.1.noarch.rpm texlive-apa6-doc-2016.122.2.14svn35631-29.1.noarch.rpm texlive-apa6e-2016.122.0.0.3svn23350-29.1.noarch.rpm texlive-apa6e-doc-2016.122.0.0.3svn23350-29.1.noarch.rpm texlive-apacite-2016.122.6.03svn31264-29.1.noarch.rpm texlive-apacite-doc-2016.122.6.03svn31264-29.1.noarch.rpm texlive-apalike2-2016.122.svn15878-29.1.noarch.rpm texlive-apnum-2016.122.1.6svn39710-29.1.noarch.rpm texlive-apnum-doc-2016.122.1.6svn39710-29.1.noarch.rpm texlive-appendix-2016.122.1.2bsvn39039-29.1.noarch.rpm texlive-appendix-doc-2016.122.1.2bsvn39039-29.1.noarch.rpm texlive-appendixnumberbeamer-2016.122.svn40322-29.1.noarch.rpm texlive-appendixnumberbeamer-doc-2016.122.svn40322-29.1.noarch.rpm texlive-apprends-latex-2016.122.4.02svn19306-29.1.noarch.rpm texlive-apptools-2016.122.1.0svn28400-29.1.noarch.rpm texlive-apptools-doc-2016.122.1.0svn28400-29.1.noarch.rpm texlive-arabi-2016.122.1.1svn25095-29.1.noarch.rpm texlive-arabi-add-2016.122.1.0svn37709-29.1.noarch.rpm texlive-arabi-add-doc-2016.122.1.0svn37709-29.1.noarch.rpm texlive-arabi-doc-2016.122.1.1svn25095-29.1.noarch.rpm texlive-arabi-fonts-2016.122.1.1svn25095-29.1.noarch.rpm texlive-arabluatex-2016.122.1.2svn40990-29.1.noarch.rpm texlive-arabluatex-doc-2016.122.1.2svn40990-29.1.noarch.rpm texlive-arabtex-2016.122.3.17svn25711-29.1.noarch.rpm texlive-arabtex-doc-2016.122.3.17svn25711-29.1.noarch.rpm texlive-arabtex-fonts-2016.122.3.17svn25711-29.1.noarch.rpm texlive-arabxetex-2016.122.1.2.1svn38299-29.1.noarch.rpm texlive-arabxetex-doc-2016.122.1.2.1svn38299-29.1.noarch.rpm texlive-aramaic-serto-2016.122.1.0svn30042-29.1.noarch.rpm texlive-aramaic-serto-doc-2016.122.1.0svn30042-29.1.noarch.rpm texlive-aramaic-serto-fonts-2016.122.1.0svn30042-29.1.noarch.rpm texlive-arara-2016.122.3.0svn29762-29.1.noarch.rpm texlive-arara-doc-2016.122.3.0svn29762-29.1.noarch.rpm texlive-archaeologie-2016.122.1.42svn40054-29.1.noarch.rpm texlive-archaeologie-doc-2016.122.1.42svn40054-29.1.noarch.rpm texlive-archaic-2016.122.svn38005-29.1.noarch.rpm texlive-archaic-doc-2016.122.svn38005-29.1.noarch.rpm texlive-archaic-fonts-2016.122.svn38005-29.1.noarch.rpm texlive-arcs-2016.122.1svn15878-29.1.noarch.rpm texlive-arcs-doc-2016.122.1svn15878-29.1.noarch.rpm texlive-arev-2016.122.svn15878-29.1.noarch.rpm texlive-arev-doc-2016.122.svn15878-29.1.noarch.rpm texlive-arev-fonts-2016.122.svn15878-29.1.noarch.rpm texlive-armtex-2016.122.3.0_beta3svn33894-29.1.noarch.rpm texlive-armtex-doc-2016.122.3.0_beta3svn33894-29.1.noarch.rpm texlive-armtex-fonts-2016.122.3.0_beta3svn33894-29.1.noarch.rpm texlive-around-the-bend-2016.122.svn15878-29.1.noarch.rpm texlive-arphic-2016.122.svn15878-29.1.noarch.rpm texlive-arphic-doc-2016.122.svn15878-29.1.noarch.rpm texlive-arphic-fonts-2016.122.svn15878-29.1.noarch.rpm texlive-specs-a-2016-29.1.src.rpm openSUSE-2017-920 moderate openSUSE Leap 42.3 Update This update for ncurses fixes the following issues: Security issues fixed: - CVE-2017-11112: Illegal address access in append_acs. (bsc#1047964) - CVE-2017-11113: Dereferencing NULL pointer in _nc_parse_entry. (bsc#1047965) - CVE-2017-10684, CVE-2017-10685: Add modified upstream fix from ncurses 6.0 to avoid broken termcap format (bsc#1046853, bsc#1046858, bsc#1049344) This update was imported from the SUSE:SLE-12:Update update project. libncurses5-32bit-5.9-59.1.x86_64.rpm libncurses5-5.9-59.1.i586.rpm libncurses5-debuginfo-32bit-5.9-59.1.x86_64.rpm libncurses5-debuginfo-5.9-59.1.i586.rpm libncurses6-32bit-5.9-59.1.x86_64.rpm libncurses6-5.9-59.1.i586.rpm libncurses6-debuginfo-32bit-5.9-59.1.x86_64.rpm libncurses6-debuginfo-5.9-59.1.i586.rpm ncurses-5.9-59.1.src.rpm ncurses-debugsource-5.9-59.1.i586.rpm ncurses-devel-32bit-5.9-59.1.x86_64.rpm ncurses-devel-5.9-59.1.i586.rpm ncurses-devel-debuginfo-32bit-5.9-59.1.x86_64.rpm ncurses-devel-debuginfo-5.9-59.1.i586.rpm ncurses-utils-5.9-59.1.i586.rpm ncurses-utils-debuginfo-5.9-59.1.i586.rpm tack-5.9-59.1.i586.rpm tack-debuginfo-5.9-59.1.i586.rpm terminfo-5.9-59.1.i586.rpm terminfo-base-5.9-59.1.i586.rpm libncurses5-5.9-59.1.x86_64.rpm libncurses5-debuginfo-5.9-59.1.x86_64.rpm libncurses6-5.9-59.1.x86_64.rpm libncurses6-debuginfo-5.9-59.1.x86_64.rpm ncurses-debugsource-5.9-59.1.x86_64.rpm ncurses-devel-5.9-59.1.x86_64.rpm ncurses-devel-debuginfo-5.9-59.1.x86_64.rpm ncurses-utils-5.9-59.1.x86_64.rpm ncurses-utils-debuginfo-5.9-59.1.x86_64.rpm tack-5.9-59.1.x86_64.rpm tack-debuginfo-5.9-59.1.x86_64.rpm terminfo-5.9-59.1.x86_64.rpm terminfo-base-5.9-59.1.x86_64.rpm openSUSE-2017-936 moderate openSUSE Leap 42.3 Update This update for openldap2 fixes the following issues: * Let OpenLDAP read system wide certificate directory by default and avoid hiding the error if user specified CA location cannot be read (boo#1009470). * Fix CVE-2017-9287: openldap2: Double free vulnerability with patch (boo#1041764) * Fix an uninitialized variable that causes startup failure (boo#1037396) * Fix a regression in handling of non-blocking connection with (boo#1031702) libldap-2_4-2-2.4.44-18.1.i586.rpm libldap-2_4-2-32bit-2.4.44-18.1.x86_64.rpm libldap-2_4-2-debuginfo-2.4.44-18.1.i586.rpm libldap-2_4-2-debuginfo-32bit-2.4.44-18.1.x86_64.rpm libldap-data-2.4.44-18.1.noarch.rpm openldap2-2.4.44-18.1.i586.rpm openldap2-2.4.44-18.1.src.rpm openldap2-back-meta-2.4.44-18.1.i586.rpm openldap2-back-meta-debuginfo-2.4.44-18.1.i586.rpm openldap2-back-perl-2.4.44-18.1.i586.rpm openldap2-back-perl-debuginfo-2.4.44-18.1.i586.rpm openldap2-back-sock-2.4.44-18.1.i586.rpm openldap2-back-sock-debuginfo-2.4.44-18.1.i586.rpm openldap2-back-sql-2.4.44-18.1.i586.rpm openldap2-back-sql-debuginfo-2.4.44-18.1.i586.rpm openldap2-client-2.4.44-18.1.i586.rpm openldap2-client-debuginfo-2.4.44-18.1.i586.rpm openldap2-contrib-2.4.44-18.1.i586.rpm openldap2-contrib-debuginfo-2.4.44-18.1.i586.rpm openldap2-debuginfo-2.4.44-18.1.i586.rpm openldap2-debugsource-2.4.44-18.1.i586.rpm openldap2-devel-2.4.44-18.1.i586.rpm openldap2-devel-32bit-2.4.44-18.1.x86_64.rpm openldap2-devel-static-2.4.44-18.1.i586.rpm openldap2-doc-2.4.44-18.1.noarch.rpm openldap2-ppolicy-check-password-1.2-18.1.i586.rpm openldap2-ppolicy-check-password-debuginfo-1.2-18.1.i586.rpm libldap-2_4-2-2.4.44-18.1.x86_64.rpm libldap-2_4-2-debuginfo-2.4.44-18.1.x86_64.rpm openldap2-2.4.44-18.1.x86_64.rpm openldap2-back-meta-2.4.44-18.1.x86_64.rpm openldap2-back-meta-debuginfo-2.4.44-18.1.x86_64.rpm openldap2-back-perl-2.4.44-18.1.x86_64.rpm openldap2-back-perl-debuginfo-2.4.44-18.1.x86_64.rpm openldap2-back-sock-2.4.44-18.1.x86_64.rpm openldap2-back-sock-debuginfo-2.4.44-18.1.x86_64.rpm openldap2-back-sql-2.4.44-18.1.x86_64.rpm openldap2-back-sql-debuginfo-2.4.44-18.1.x86_64.rpm openldap2-client-2.4.44-18.1.x86_64.rpm openldap2-client-debuginfo-2.4.44-18.1.x86_64.rpm openldap2-contrib-2.4.44-18.1.x86_64.rpm openldap2-contrib-debuginfo-2.4.44-18.1.x86_64.rpm openldap2-debuginfo-2.4.44-18.1.x86_64.rpm openldap2-debugsource-2.4.44-18.1.x86_64.rpm openldap2-devel-2.4.44-18.1.x86_64.rpm openldap2-devel-static-2.4.44-18.1.x86_64.rpm openldap2-ppolicy-check-password-1.2-18.1.x86_64.rpm openldap2-ppolicy-check-password-debuginfo-1.2-18.1.x86_64.rpm openSUSE-2017-939 important openSUSE Leap 42.3 Update This update for git fixes the following security issues: - CVE-2017-1000117: A malicious third-party could have caused a git client to execute arbitrary commands via crafted "ssh://..." URLs, including submodules (boo#1052481) git-2.13.5-3.1.i586.rpm git-2.13.5-3.1.src.rpm git-arch-2.13.5-3.1.i586.rpm git-core-2.13.5-3.1.i586.rpm git-core-debuginfo-2.13.5-3.1.i586.rpm git-credential-gnome-keyring-2.13.5-3.1.i586.rpm git-credential-gnome-keyring-debuginfo-2.13.5-3.1.i586.rpm git-cvs-2.13.5-3.1.i586.rpm git-daemon-2.13.5-3.1.i586.rpm git-daemon-debuginfo-2.13.5-3.1.i586.rpm git-debugsource-2.13.5-3.1.i586.rpm git-doc-2.13.5-3.1.noarch.rpm git-email-2.13.5-3.1.i586.rpm git-gui-2.13.5-3.1.i586.rpm git-svn-2.13.5-3.1.i586.rpm git-svn-debuginfo-2.13.5-3.1.i586.rpm git-web-2.13.5-3.1.i586.rpm gitk-2.13.5-3.1.i586.rpm git-2.13.5-3.1.x86_64.rpm git-arch-2.13.5-3.1.x86_64.rpm git-core-2.13.5-3.1.x86_64.rpm git-core-debuginfo-2.13.5-3.1.x86_64.rpm git-credential-gnome-keyring-2.13.5-3.1.x86_64.rpm git-credential-gnome-keyring-debuginfo-2.13.5-3.1.x86_64.rpm git-cvs-2.13.5-3.1.x86_64.rpm git-daemon-2.13.5-3.1.x86_64.rpm git-daemon-debuginfo-2.13.5-3.1.x86_64.rpm git-debugsource-2.13.5-3.1.x86_64.rpm git-email-2.13.5-3.1.x86_64.rpm git-gui-2.13.5-3.1.x86_64.rpm git-svn-2.13.5-3.1.x86_64.rpm git-svn-debuginfo-2.13.5-3.1.x86_64.rpm git-web-2.13.5-3.1.x86_64.rpm gitk-2.13.5-3.1.x86_64.rpm openSUSE-2017-937 moderate openSUSE Leap 42.3 Update This update for libheimdal fixes the following issues: - Fix CVE-2017-11103: Orpheus' Lyre KDC-REP service name validation. This is a critical vulnerability. In _krb5_extract_ticket() the KDC-REP service name must be obtained from encrypted version stored in 'enc_part' instead of the unencrypted version stored in 'ticket'. Use of the unecrypted version provides an opportunity for successful server impersonation and other attacks. Identified by Jeffrey Altman, Viktor Duchovni and Nico Williams. See https://www.orpheus-lyre.info/ for more details. (bsc#1048278) - Fix CVE-2017-6594: transit path validation inadvertently caused the previous hop realm to not be added to the transit path of issued tickets. This may, in some cases, enable bypass of capath policy in Heimdal versions 1.5 through 7.2. Note, this may break sites that rely on the bug. With the bug some incomplete [capaths] worked, that should not have. These may now break authentication in some cross-realm configurations. libheimdal-7.4.0-3.1.i586.rpm libheimdal-7.4.0-3.1.src.rpm libheimdal-debuginfo-7.4.0-3.1.i586.rpm libheimdal-debugsource-7.4.0-3.1.i586.rpm libheimdal-devel-7.4.0-3.1.i586.rpm libheimdal-7.4.0-3.1.x86_64.rpm libheimdal-debuginfo-7.4.0-3.1.x86_64.rpm libheimdal-debugsource-7.4.0-3.1.x86_64.rpm libheimdal-devel-7.4.0-3.1.x86_64.rpm openSUSE-2017-956 moderate openSUSE Leap 42.3 Update This update for fate to version 1.6.0.3 fixes the following issues: - Standard approvers were not prepopulated in ECOs (boo#1049390) - Attachments were accepted, but not added / referenced (boo#1052788) - Crash when trying to approve an ECO (boo#1053025) - Engineering Manager could not be added (boo#1052391) - Priority could not be changed (boo#1052799) fate-1.6.0.3-29.1.src.rpm fate-1.6.0.3-29.1.x86_64.rpm fate-debuginfo-1.6.0.3-29.1.x86_64.rpm openSUSE-2017-934 moderate openSUSE Leap 42.3 Update This update for potrace fixes the following security issues: - CVE-2017-12067: potential buffer overflows and arithmetic overflows (bsc#1051634) The update also fixes various bugs, including a bug triggered by very large bitmaps. libpotrace0-1.15-13.1.i586.rpm libpotrace0-debuginfo-1.15-13.1.i586.rpm potrace-1.15-13.1.i586.rpm potrace-1.15-13.1.src.rpm potrace-debuginfo-1.15-13.1.i586.rpm potrace-debugsource-1.15-13.1.i586.rpm potrace-devel-1.15-13.1.i586.rpm libpotrace0-1.15-13.1.x86_64.rpm libpotrace0-debuginfo-1.15-13.1.x86_64.rpm potrace-1.15-13.1.x86_64.rpm potrace-debuginfo-1.15-13.1.x86_64.rpm potrace-debugsource-1.15-13.1.x86_64.rpm potrace-devel-1.15-13.1.x86_64.rpm openSUSE-2017-917 low openSUSE Leap 42.3 Update This update for yast2-network provides the following fixes: - Avoid creating duplicate udev rules in AutoYaST installation. (bsc#1038717) - Create udev rules correctly when more than one device is being configured. (bsc#1050986) - Display a warning in AutoYaST installation when importing the DNS configuration with disabled second stage (the second stage is currently required for writing the configuration). (bsc#1046198) - Change dhclient configuration warning messages to not block AutoYaST. (bsc#1037727) - Load /etc/hosts entries before import the ones defined in a given AutoYaST profile making it backward compatible. (bsc#1039851) This update was imported from the SUSE:SLE-12-SP3:Update update project. yast2-network-3.2.34-3.1.noarch.rpm yast2-network-3.2.34-3.1.src.rpm openSUSE-2017-921 important openSUSE Leap 42.3 Update This update to Mozilla Firefox 52.3esr fixes a number of security issues. The following vulnerabilities were advised upstream under MFSA 2017-19 (boo#1052829): - CVE-2017-7798: XUL injection in the style editor in devtools - CVE-2017-7800: Use-after-free in WebSockets during disconnection - CVE-2017-7801: Use-after-free with marquee during window resizing - CVE-2017-7784: Use-after-free with image observers - CVE-2017-7802: Use-after-free resizing image elements - CVE-2017-7785: Buffer overflow manipulating ARIA attributes in DOM - CVE-2017-7786: Buffer overflow while painting non-displayable SVG - CVE-2017-7753: Out-of-bounds read with cached style data and pseudo-elements# - CVE-2017-7787: Same-origin policy bypass with iframes through page reloads - CVE-2017-7807: Domain hijacking through AppCache fallback - CVE-2017-7792: Buffer overflow viewing certificates with an extremely long OID - CVE-2017-7804: Memory protection bypass through WindowsDllDetourPatcher - CVE-2017-7791: Spoofing following page navigation with data: protocol and modal alerts - CVE-2017-7782: WindowsDllDetourPatcher allocates memory without DEP protections - CVE-2017-7803: CSP containing 'sandbox' improperly applied - CVE-2017-7779: Memory safety bugs fixed in Firefox 55 and Firefox ESR 52.3 MozillaFirefox-52.3.0-60.1.src.rpm MozillaFirefox-52.3.0-60.1.x86_64.rpm MozillaFirefox-branding-upstream-52.3.0-60.1.x86_64.rpm MozillaFirefox-buildsymbols-52.3.0-60.1.x86_64.rpm MozillaFirefox-debuginfo-52.3.0-60.1.x86_64.rpm MozillaFirefox-debugsource-52.3.0-60.1.x86_64.rpm MozillaFirefox-devel-52.3.0-60.1.x86_64.rpm MozillaFirefox-translations-common-52.3.0-60.1.x86_64.rpm MozillaFirefox-translations-other-52.3.0-60.1.x86_64.rpm openSUSE-2017-932 low openSUSE Leap 42.3 Update This update for messagelib fixes the following issues: - Fix umlauts and other special characters when a mail is exported as html for print preview and printing via an external browser. (bnc#1052482) messagelib-17.04.2-3.1.src.rpm messagelib-17.04.2-3.1.x86_64.rpm messagelib-debuginfo-17.04.2-3.1.x86_64.rpm messagelib-debugsource-17.04.2-3.1.x86_64.rpm messagelib-devel-17.04.2-3.1.x86_64.rpm messagelib-lang-17.04.2-3.1.noarch.rpm openSUSE-2017-905 low openSUSE Leap 42.3 Update This update for python-PyYAML fixes the following issues: - Adding an implicit resolver to a derived loader should not affect the base loader. - Uniform representation for OrderedDict? across different versions of Python. - Fixed comparison to None warning. This update was imported from the SUSE:SLE-12:Update update project. python-PyYAML-3.12-10.1.i586.rpm python-PyYAML-3.12-10.1.src.rpm python-PyYAML-debuginfo-3.12-10.1.i586.rpm python-PyYAML-debugsource-3.12-10.1.i586.rpm python-PyYAML-3.12-10.1.x86_64.rpm python-PyYAML-debuginfo-3.12-10.1.x86_64.rpm python-PyYAML-debugsource-3.12-10.1.x86_64.rpm openSUSE-2017-904 low openSUSE Leap 42.3 Update This update python-uritemplate 3.0.0 with many fixes and improvements. This package is a dependency for an upcoming update for google-cloud-sdk. This update was imported from the SUSE:SLE-12:Update update project. python-uritemplate-3.0.0-10.1.noarch.rpm python-uritemplate-3.0.0-10.1.src.rpm openSUSE-2017-919 important openSUSE Leap 42.3 Update This update for tcmu-runner fixes the following issues: - qcow handler opens up an information leak via the CheckConfig D-Bus method (bsc#1049491) - glfs handler allows local DoS via crafted CheckConfig strings (bsc#1049485) - UnregisterHandler dbus method in tcmu-runner daemon for non-existing handler causes denial of service (bsc#1049488) - UnregisterHandler D-Bus method in tcmu-runner daemon for internal handler causes denial of service (bsc#1049489) - Memory leaks can be triggered in tcmu-runner daemon by calling D-Bus method for (Un)RegisterHandler (bsc#1049490) This update was imported from the SUSE:SLE-12-SP3:Update update project. libtcmu-devel-1.2.0-3.1.i586.rpm libtcmu1-1.2.0-3.1.i586.rpm libtcmu1-debuginfo-1.2.0-3.1.i586.rpm tcmu-runner-1.2.0-3.1.i586.rpm tcmu-runner-1.2.0-3.1.src.rpm tcmu-runner-debuginfo-1.2.0-3.1.i586.rpm tcmu-runner-debugsource-1.2.0-3.1.i586.rpm tcmu-runner-devel-1.2.0-3.1.i586.rpm libtcmu-devel-1.2.0-3.1.x86_64.rpm libtcmu1-1.2.0-3.1.x86_64.rpm libtcmu1-debuginfo-1.2.0-3.1.x86_64.rpm tcmu-runner-1.2.0-3.1.x86_64.rpm tcmu-runner-debuginfo-1.2.0-3.1.x86_64.rpm tcmu-runner-debugsource-1.2.0-3.1.x86_64.rpm tcmu-runner-devel-1.2.0-3.1.x86_64.rpm tcmu-runner-handler-rbd-1.2.0-3.1.x86_64.rpm tcmu-runner-handler-rbd-debuginfo-1.2.0-3.1.x86_64.rpm openSUSE-2017-915 low openSUSE Leap 42.3 Update This update librsvg to version 2.40.18 fixes the following issues: Security issue fixed: - CVE-2017-11464: A SIGFPE is raised in the function box_blur_line of rsvg-filter.c. (bsc#1049607) This update was imported from the SUSE:SLE-12-SP2:Update update project. gdk-pixbuf-loader-rsvg-2.40.18-12.1.i586.rpm gdk-pixbuf-loader-rsvg-32bit-2.40.18-12.1.x86_64.rpm gdk-pixbuf-loader-rsvg-debuginfo-2.40.18-12.1.i586.rpm gdk-pixbuf-loader-rsvg-debuginfo-32bit-2.40.18-12.1.x86_64.rpm librsvg-2-2-2.40.18-12.1.i586.rpm librsvg-2-2-32bit-2.40.18-12.1.x86_64.rpm librsvg-2-2-debuginfo-2.40.18-12.1.i586.rpm librsvg-2-2-debuginfo-32bit-2.40.18-12.1.x86_64.rpm librsvg-2.40.18-12.1.src.rpm librsvg-debugsource-2.40.18-12.1.i586.rpm librsvg-devel-2.40.18-12.1.i586.rpm rsvg-thumbnailer-2.40.18-12.1.noarch.rpm rsvg-view-2.40.18-12.1.i586.rpm rsvg-view-debuginfo-2.40.18-12.1.i586.rpm typelib-1_0-Rsvg-2_0-2.40.18-12.1.i586.rpm gdk-pixbuf-loader-rsvg-2.40.18-12.1.x86_64.rpm gdk-pixbuf-loader-rsvg-debuginfo-2.40.18-12.1.x86_64.rpm librsvg-2-2-2.40.18-12.1.x86_64.rpm librsvg-2-2-debuginfo-2.40.18-12.1.x86_64.rpm librsvg-debugsource-2.40.18-12.1.x86_64.rpm librsvg-devel-2.40.18-12.1.x86_64.rpm rsvg-view-2.40.18-12.1.x86_64.rpm rsvg-view-debuginfo-2.40.18-12.1.x86_64.rpm typelib-1_0-Rsvg-2_0-2.40.18-12.1.x86_64.rpm openSUSE-2017-906 low openSUSE Leap 42.3 Update python-httpretty did not ship the license file. This update was imported from the SUSE:SLE-12-SP1:Update update project. python-httpretty-0.8.8-7.1.noarch.rpm python-httpretty-0.8.8-7.1.src.rpm openSUSE-2017-909 low openSUSE Leap 42.3 Update google-apitools is a collection of utilities to make it easier to build client-side tools, especially those that talk to Google APIs. python-google-apitools-0.5.6-2.1.noarch.rpm python-google-apitools-0.5.6-2.1.src.rpm openSUSE-2017-907 low openSUSE Leap 42.3 Update This update provides python-oauth2client version 3.0.0, which brings many fixes and enhancements: - Move GCE metadata interface to a separate module. - Populate scopes and token_expiry for GCE credentials. - Fix Python 3.5 compatibility. - Add oauth2client.contrib.sqlalchemy, a SQLAlchemy-based credential store. - Improve error when an invalid client secret is provided. - Add oauth2client.contrib.multiprocess_storage. - Pull httplib2 usage into a separate transport module. - Fix application default credentials resolution order. - Add configurable timeout for GCE metadata server check. - Add warnings when using deprecated approval_prompt='force'. - Add deprecation warning to oauth2client.contrib.multistore_file. - Add support to override token_uri and revoke_uri in oauth2client.service_account.ServiceAccountCredentials. - Add basic support for JWT access credentials. - Fix oauth2client.client.DeviceFlowInfo to use UTC instead of the system timezone when calculating code expiration. - Fix issue where flask_util.UserOAuth2.required would accept expired credentials. - Fix issue where flask_util would fill the session with Flow objects. - Remove 'oauth2client.util.dict_to_tuple_key()' from public interface. - Implement 'ServiceAccountCredentials.from_p12_keyfile_buffer()' to allow passing a file-like object in addition to the factory constructor that uses a filename directly. - Implement 'ServiceAccountCredentials.create_delegated()' to allow upgrading a credential to one that acts on behalf of a given subject. - Avoid OAuth2Credentials 'id_token' going out of sync after a token refresh. - Added 'to_json' and 'from_json' methods to all 'Credentials' classes. - Fall back to read-only credentials on EACCES errors. - Add access token refresh error class that includes HTTP status. - Fix incremental auth in flask_util. This update was imported from the SUSE:SLE-12:Update update project. python-oauth2client-3.0.0-7.1.noarch.rpm python-oauth2client-3.0.0-7.1.src.rpm python-oauth2client-django-3.0.0-7.1.noarch.rpm python-oauth2client-flask-3.0.0-7.1.noarch.rpm python-oauth2client-gce-3.0.0-7.1.noarch.rpm python-oauth2client-test-3.0.0-7.1.noarch.rpm openSUSE-2017-911 moderate openSUSE Leap 42.3 Update The Google Cloud SDK has been updated to version 0.9.87, bringing several fixes, enhancements and new features. A comprehensive list of changes is available in the package's change log. The Python Client for Google APIs has been updated to version 1.4.2. This update removes the embedded oauth2client, which is now delivered as a separate package "python-oauth2client". This update was imported from the SUSE:SLE-12:Update update project. google-cloud-sdk-0.9.87-7.1.noarch.rpm google-cloud-sdk-0.9.87-7.1.src.rpm openSUSE-2017-938 moderate openSUSE Leap 42.3 Update This update for taglib fixes the following issues: - CVE-2017-12678: Denial of service vulnerability via specially crafted ID3v2 data (boo#1052699) libtag-devel-1.11-5.1.i586.rpm libtag1-1.11-5.1.i586.rpm libtag1-32bit-1.11-5.1.x86_64.rpm libtag1-debuginfo-1.11-5.1.i586.rpm libtag1-debuginfo-32bit-1.11-5.1.x86_64.rpm libtag_c0-1.11-5.1.i586.rpm libtag_c0-32bit-1.11-5.1.x86_64.rpm libtag_c0-debuginfo-1.11-5.1.i586.rpm libtag_c0-debuginfo-32bit-1.11-5.1.x86_64.rpm taglib-1.11-5.1.i586.rpm taglib-1.11-5.1.src.rpm taglib-debuginfo-1.11-5.1.i586.rpm taglib-debugsource-1.11-5.1.i586.rpm libtag-devel-1.11-5.1.x86_64.rpm libtag1-1.11-5.1.x86_64.rpm libtag1-debuginfo-1.11-5.1.x86_64.rpm libtag_c0-1.11-5.1.x86_64.rpm libtag_c0-debuginfo-1.11-5.1.x86_64.rpm taglib-1.11-5.1.x86_64.rpm taglib-debuginfo-1.11-5.1.x86_64.rpm taglib-debugsource-1.11-5.1.x86_64.rpm openSUSE-2017-949 moderate openSUSE Leap 42.3 Update This update for fossil to version 2.3 fixes the following issues: - Potential XSS vulnerability on the /help webpage (boo#1053267) This update also contains all upstream improvements and fixes in version 2.3: - Update internal Unicode character tables, used in regular expression handling, from version 9.0 to 10.0. - Show the last-sync-URL on the /urllist page - Added the "Event Summary" activity report - Added the "Security Audit" page, available to administrators only - Added the Last Login time to the user list page, for administrators only - Added the --numstat option to the fossil diff command - Limit the size of the heap and stack on unix systems, as a proactive defense against the Stack Clash attack - Fix "database locked" warnings caused by "PRAGMA optimize" - Documentation updates fossil-2.3-3.1.i586.rpm fossil-2.3-3.1.src.rpm fossil-debuginfo-2.3-3.1.i586.rpm fossil-debugsource-2.3-3.1.i586.rpm fossil-2.3-3.1.x86_64.rpm fossil-debuginfo-2.3-3.1.x86_64.rpm fossil-debugsource-2.3-3.1.x86_64.rpm openSUSE-2017-952 moderate openSUSE Leap 42.3 Update This update for shutter fixes one security issue: - CVE-2016-10081: Remote attackers could trick users into assisting them in executing arbitrary commands via a crafted image name that is mishandled during a "Run a plugin" action (boo#1017571) shutter-0.93.1-5.1.noarch.rpm shutter-0.93.1-5.1.src.rpm shutter-lang-0.93.1-5.1.noarch.rpm openSUSE-2017-960 low openSUSE Leap 42.3 Update This update for wine-gecko fixes the following issues: - Wine requires wine-gecko 2.47 (boo#1049562) wine-gecko-2.47-6.1.noarch.rpm wine-gecko-2.47-6.1.src.rpm openSUSE-2017-914 important openSUSE Leap 42.3 Update This update for libsoup fixes the following issues: - A bug in the HTTP Chunked Encoding code has been fixed that could have been exploited by attackers to cause a stack-based buffer overflow in client or server code running libsoup (bsc#1052916, CVE-2017-2885). This update was imported from the SUSE:SLE-12-SP2:Update update project. libsoup-2.54.1-5.1.src.rpm libsoup-2_4-1-2.54.1-5.1.i586.rpm libsoup-2_4-1-32bit-2.54.1-5.1.x86_64.rpm libsoup-2_4-1-debuginfo-2.54.1-5.1.i586.rpm libsoup-2_4-1-debuginfo-32bit-2.54.1-5.1.x86_64.rpm libsoup-debugsource-2.54.1-5.1.i586.rpm libsoup-devel-2.54.1-5.1.i586.rpm libsoup-devel-32bit-2.54.1-5.1.x86_64.rpm libsoup-lang-2.54.1-5.1.noarch.rpm typelib-1_0-Soup-2_4-2.54.1-5.1.i586.rpm libsoup-2_4-1-2.54.1-5.1.x86_64.rpm libsoup-2_4-1-debuginfo-2.54.1-5.1.x86_64.rpm libsoup-debugsource-2.54.1-5.1.x86_64.rpm libsoup-devel-2.54.1-5.1.x86_64.rpm typelib-1_0-Soup-2_4-2.54.1-5.1.x86_64.rpm openSUSE-2017-965 moderate openSUSE Leap 42.3 Update This update for virtualbox fixes the following issues: - fix missing support for buildiong kernel modules via vboxconfig.sh (boo#1042726) - mkinitrd was needlessly called twice during installation (boo#1052428) The vbox autostart mechanism was improved to be compatible with systemd. python-virtualbox-5.1.26-28.2.x86_64.rpm python-virtualbox-debuginfo-5.1.26-28.2.x86_64.rpm virtualbox-5.1.26-28.2.src.rpm virtualbox-5.1.26-28.2.x86_64.rpm virtualbox-debuginfo-5.1.26-28.2.x86_64.rpm virtualbox-debugsource-5.1.26-28.2.x86_64.rpm virtualbox-devel-5.1.26-28.2.x86_64.rpm virtualbox-guest-desktop-icons-5.1.26-28.2.noarch.rpm virtualbox-guest-kmp-default-5.1.26_k4.4.79_19-28.2.x86_64.rpm virtualbox-guest-kmp-default-debuginfo-5.1.26_k4.4.79_19-28.2.x86_64.rpm virtualbox-guest-source-5.1.26-28.2.noarch.rpm virtualbox-guest-tools-5.1.26-28.2.x86_64.rpm virtualbox-guest-tools-debuginfo-5.1.26-28.2.x86_64.rpm virtualbox-guest-x11-5.1.26-28.2.x86_64.rpm virtualbox-guest-x11-debuginfo-5.1.26-28.2.x86_64.rpm virtualbox-host-kmp-default-5.1.26_k4.4.79_19-28.2.x86_64.rpm virtualbox-host-kmp-default-debuginfo-5.1.26_k4.4.79_19-28.2.x86_64.rpm virtualbox-host-source-5.1.26-28.2.noarch.rpm virtualbox-qt-5.1.26-28.2.x86_64.rpm virtualbox-qt-debuginfo-5.1.26-28.2.x86_64.rpm virtualbox-vnc-5.1.26-28.2.x86_64.rpm virtualbox-websrv-5.1.26-28.2.x86_64.rpm virtualbox-websrv-debuginfo-5.1.26-28.2.x86_64.rpm openSUSE-2017-913 moderate openSUSE Leap 42.3 Update This update for cyrus-sasl provides the following fixes: - Silence "GSSAPI client step 1" debug log message (bsc#1044840) This update was imported from the SUSE:SLE-12:Update update project. cyrus-sasl-ldap-auxprop-2.1.26-14.1.i586.rpm cyrus-sasl-ldap-auxprop-32bit-2.1.26-14.1.x86_64.rpm cyrus-sasl-ldap-auxprop-debuginfo-2.1.26-14.1.i586.rpm cyrus-sasl-ldap-auxprop-debuginfo-32bit-2.1.26-14.1.x86_64.rpm cyrus-sasl-saslauthd-2.1.26-14.1.i586.rpm cyrus-sasl-saslauthd-2.1.26-14.1.src.rpm cyrus-sasl-saslauthd-debuginfo-2.1.26-14.1.i586.rpm cyrus-sasl-saslauthd-debugsource-2.1.26-14.1.i586.rpm cyrus-sasl-sqlauxprop-2.1.26-14.1.i586.rpm cyrus-sasl-sqlauxprop-32bit-2.1.26-14.1.x86_64.rpm cyrus-sasl-sqlauxprop-debuginfo-2.1.26-14.1.i586.rpm cyrus-sasl-sqlauxprop-debuginfo-32bit-2.1.26-14.1.x86_64.rpm cyrus-sasl-2.1.26-14.1.i586.rpm cyrus-sasl-2.1.26-14.1.src.rpm cyrus-sasl-32bit-2.1.26-14.1.x86_64.rpm cyrus-sasl-crammd5-2.1.26-14.1.i586.rpm cyrus-sasl-crammd5-32bit-2.1.26-14.1.x86_64.rpm cyrus-sasl-crammd5-debuginfo-2.1.26-14.1.i586.rpm cyrus-sasl-crammd5-debuginfo-32bit-2.1.26-14.1.x86_64.rpm cyrus-sasl-debuginfo-2.1.26-14.1.i586.rpm cyrus-sasl-debuginfo-32bit-2.1.26-14.1.x86_64.rpm cyrus-sasl-debugsource-2.1.26-14.1.i586.rpm cyrus-sasl-devel-2.1.26-14.1.i586.rpm cyrus-sasl-devel-32bit-2.1.26-14.1.x86_64.rpm cyrus-sasl-digestmd5-2.1.26-14.1.i586.rpm cyrus-sasl-digestmd5-32bit-2.1.26-14.1.x86_64.rpm cyrus-sasl-digestmd5-debuginfo-2.1.26-14.1.i586.rpm cyrus-sasl-digestmd5-debuginfo-32bit-2.1.26-14.1.x86_64.rpm cyrus-sasl-gs2-2.1.26-14.1.i586.rpm cyrus-sasl-gs2-debuginfo-2.1.26-14.1.i586.rpm cyrus-sasl-gssapi-2.1.26-14.1.i586.rpm cyrus-sasl-gssapi-32bit-2.1.26-14.1.x86_64.rpm cyrus-sasl-gssapi-debuginfo-2.1.26-14.1.i586.rpm cyrus-sasl-gssapi-debuginfo-32bit-2.1.26-14.1.x86_64.rpm cyrus-sasl-ntlm-2.1.26-14.1.i586.rpm cyrus-sasl-ntlm-debuginfo-2.1.26-14.1.i586.rpm cyrus-sasl-otp-2.1.26-14.1.i586.rpm cyrus-sasl-otp-32bit-2.1.26-14.1.x86_64.rpm cyrus-sasl-otp-debuginfo-2.1.26-14.1.i586.rpm cyrus-sasl-otp-debuginfo-32bit-2.1.26-14.1.x86_64.rpm cyrus-sasl-plain-2.1.26-14.1.i586.rpm cyrus-sasl-plain-32bit-2.1.26-14.1.x86_64.rpm cyrus-sasl-plain-debuginfo-2.1.26-14.1.i586.rpm cyrus-sasl-plain-debuginfo-32bit-2.1.26-14.1.x86_64.rpm cyrus-sasl-scram-2.1.26-14.1.i586.rpm cyrus-sasl-scram-debuginfo-2.1.26-14.1.i586.rpm libsasl2-3-2.1.26-14.1.i586.rpm libsasl2-3-32bit-2.1.26-14.1.x86_64.rpm libsasl2-3-debuginfo-2.1.26-14.1.i586.rpm libsasl2-3-debuginfo-32bit-2.1.26-14.1.x86_64.rpm cyrus-sasl-ldap-auxprop-2.1.26-14.1.x86_64.rpm cyrus-sasl-ldap-auxprop-debuginfo-2.1.26-14.1.x86_64.rpm cyrus-sasl-saslauthd-2.1.26-14.1.x86_64.rpm cyrus-sasl-saslauthd-debuginfo-2.1.26-14.1.x86_64.rpm cyrus-sasl-saslauthd-debugsource-2.1.26-14.1.x86_64.rpm cyrus-sasl-sqlauxprop-2.1.26-14.1.x86_64.rpm cyrus-sasl-sqlauxprop-debuginfo-2.1.26-14.1.x86_64.rpm cyrus-sasl-2.1.26-14.1.x86_64.rpm cyrus-sasl-crammd5-2.1.26-14.1.x86_64.rpm cyrus-sasl-crammd5-debuginfo-2.1.26-14.1.x86_64.rpm cyrus-sasl-debuginfo-2.1.26-14.1.x86_64.rpm cyrus-sasl-debugsource-2.1.26-14.1.x86_64.rpm cyrus-sasl-devel-2.1.26-14.1.x86_64.rpm cyrus-sasl-digestmd5-2.1.26-14.1.x86_64.rpm cyrus-sasl-digestmd5-debuginfo-2.1.26-14.1.x86_64.rpm cyrus-sasl-gs2-2.1.26-14.1.x86_64.rpm cyrus-sasl-gs2-debuginfo-2.1.26-14.1.x86_64.rpm cyrus-sasl-gssapi-2.1.26-14.1.x86_64.rpm cyrus-sasl-gssapi-debuginfo-2.1.26-14.1.x86_64.rpm cyrus-sasl-ntlm-2.1.26-14.1.x86_64.rpm cyrus-sasl-ntlm-debuginfo-2.1.26-14.1.x86_64.rpm cyrus-sasl-otp-2.1.26-14.1.x86_64.rpm cyrus-sasl-otp-debuginfo-2.1.26-14.1.x86_64.rpm cyrus-sasl-plain-2.1.26-14.1.x86_64.rpm cyrus-sasl-plain-debuginfo-2.1.26-14.1.x86_64.rpm cyrus-sasl-scram-2.1.26-14.1.x86_64.rpm cyrus-sasl-scram-debuginfo-2.1.26-14.1.x86_64.rpm libsasl2-3-2.1.26-14.1.x86_64.rpm libsasl2-3-debuginfo-2.1.26-14.1.x86_64.rpm openSUSE-2017-930 important openSUSE Leap 42.3 Update The openSUSE Leap 42.3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-1000111: Fixed a race condition in net-packet code that could be exploited to cause out-of-bounds memory access (bsc#1052365). - CVE-2017-1000112: Fixed a race condition in net-packet code that could have been exploited by unprivileged users to gain root access. (bsc#1052311). - CVE-2017-8831: The saa7164_bus_get function in drivers/media/pci/saa7164/saa7164-bus.c in the Linux kernel allowed local users to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact by changing a certain sequence-number value, aka a "double fetch" vulnerability (bnc#1037994). The following non-security bugs were fixed: - acpi/nfit: Add support of NVDIMM memory error notification in ACPI 6.2 (bsc#1052325). - acpi/nfit: Issue Start ARS to retrieve existing records (bsc#1052325). - bcache: force trigger gc (bsc#1038078). - bcache: only recovery I/O error for writethrough mode (bsc#1043652). - block: do not allow updates through sysfs until registration completes (bsc#1047027). - config: disable CONFIG_RT_GROUP_SCHED (bsc#1052204). - drivers: hv: : As a bandaid, increase HV_UTIL_TIMEOUT from 30 to 60 seconds (bnc#1039153) - drivers: hv: Fix a typo (fate#320485). - drivers: hv: util: Make hv_poll_channel() a little more efficient (fate#320485). - drivers: hv: vmbus: Close timing hole that can corrupt per-cpu page (fate#320485). - drivers: hv: vmbus: Fix error code returned by vmbus_post_msg() (fate#320485). - Fix kABI breakage with CONFIG_RT_GROUP_SCHED=n (bsc#1052204). - hv_netvsc: change netvsc device default duplex to FULL (fate#320485). - hv_netvsc: Fix the carrier state error when data path is off (fate#320485). - hv_netvsc: Remove unnecessary var link_state from struct netvsc_device_info (fate#320485). - hyperv: fix warning about missing prototype (fate#320485). - hyperv: netvsc: Neaten netvsc_send_pkt by using a temporary (fate#320485). - hyperv: remove unnecessary return variable (fate#320485). - i40e/i40evf: Fix use after free in Rx cleanup path (bsc#1051689). - IB/hfi1: Wait for QSFP modules to initialize (bsc#1019151). - ibmvnic: Check for transport event on driver resume (bsc#1051556, bsc#1052709). - ibmvnic: Initialize SCRQ's during login renegotiation (bsc#1052223). - ibmvnic: Report rx buffer return codes as netdev_dbg (bsc#1052794). - iommu/amd: Enable ga_log_intr when enabling guest_mode (bsc1052533). - iommu/amd: Fix schedule-while-atomic BUG in initialization code (bsc1052533). - KABI protect struct acpi_nfit_desc (bsc#1052325). - kabi/severities: add drivers/scsi/hisi_sas to kabi severities - libnvdimm: fix badblock range handling of ARS range (bsc#1023175). - libnvdimm, pmem: fix a NULL pointer BUG in nd_pmem_notify (bsc#1023175). - net: add netdev_lockdep_set_classes() helper (fate#320485). - net: hyperv: use new api ethtool_{get|set}_link_ksettings (fate#320485). - net/mlx4_core: Fixes missing capability bit in flags2 capability dump (bsc#1015337). - net/mlx4_core: Fix namespace misalignment in QinQ VST support commit (bsc#1015337). - net/mlx4_core: Fix sl_to_vl_change bit offset in flags2 dump (bsc#1015337). - netsvc: Remove upstream commit e14b4db7a567 netvsc: fix race during initialization will be replaced by following changes - netsvc: Revert "netvsc: optimize calculation of number of slots" (fate#320485). - netvsc: add comments about callback's and NAPI (fate#320485). - netvsc: Add #include's for csum_* function declarations (fate#320485). - netvsc: add rtnl annotations in rndis (fate#320485). - netvsc: add some rtnl_dereference annotations (fate#320485). - netvsc: avoid race with callback (fate#320485). - netvsc: change logic for change mtu and set_queues (fate#320485). - netvsc: change max channel calculation (fate#320485). - netvsc: change order of steps in setting queues (fate#320485). - netvsc: Deal with rescinded channels correctly (fate#320485). - netvsc: do not access netdev-&gt;num_rx_queues directly (fate#320485). - netvsc: do not overload variable in same function (fate#320485). - netvsc: do not print pointer value in error message (fate#320485). - netvsc: eliminate unnecessary skb == NULL checks (fate#320485). - netvsc: enable GRO (fate#320485). - netvsc: Fix a bug in sub-channel handling (fate#320485). - netvsc: fix and cleanup rndis_filter_set_packet_filter (fate#320485). - netvsc: fix calculation of available send sections (fate#320485). - netvsc: fix dereference before null check errors (fate#320485). - netvsc: fix error unwind on device setup failure (fate#320485). - netvsc: fix hang on netvsc module removal (fate#320485). - netvsc: fix NAPI performance regression (fate#320485). - netvsc: fix net poll mode (fate#320485). - netvsc: fix netvsc_set_channels (fate#320485). - netvsc: fix ptr_ret.cocci warnings (fate#320485). - netvsc: fix rcu dereference warning from ethtool (fate#320485). - netvsc: fix RCU warning in get_stats (fate#320485). - netvsc: fix return value for set_channels (fate#320485). - netvsc: fix rtnl deadlock on unregister of vf (fate#320485, bsc#1052442). - netvsc: fix use after free on module removal (fate#320485). - netvsc: fix warnings reported by lockdep (fate#320485). - netvsc: fold in get_outbound_net_device (fate#320485). - netvsc: force link update after MTU change (fate#320485). - netvsc: handle offline mtu and channel change (fate#320485). - netvsc: implement NAPI (fate#320485). - netvsc: include rtnetlink.h (fate#320485). - netvsc: Initialize all channel related state prior to opening the channel (fate#320485). - netvsc: make sure and unregister datapath (fate#320485, bsc#1052899). - netvsc: make sure napi enabled before vmbus_open (fate#320485). - netvsc: mark error cases as unlikely (fate#320485). - netvsc: move filter setting to rndis_device (fate#320485). - netvsc: need napi scheduled during removal (fate#320485). - netvsc: need rcu_derefence when accessing internal device info (fate#320485). - netvsc: optimize calculation of number of slots (fate#320485). - netvsc: optimize receive completions (fate#320485). - netvsc: pass net_device to netvsc_init_buf and netvsc_connect_vsp (fate#320485). - netvsc: prefetch the first incoming ring element (fate#320485). - netvsc: Properly initialize the return value (fate#320485). - netvsc: remove bogus rtnl_unlock (fate#320485). - netvsc: remove no longer used max_num_rss queues (fate#320485). - netvsc: Remove redundant use of ipv6_hdr() (fate#320485). - netvsc: remove unnecessary indirection of page_buffer (fate#320485). - netvsc: remove unnecessary lock on shutdown (fate#320485). - netvsc: remove unused #define (fate#320485). - netvsc: replace netdev_alloc_skb_ip_align with napi_alloc_skb (fate#320485). - netvsc: save pointer to parent netvsc_device in channel table (fate#320485). - netvsc: signal host if receive ring is emptied (fate#320485). - netvsc: transparent VF management (fate#320485, bsc#1051979). - netvsc: use ERR_PTR to avoid dereference issues (fate#320485). - netvsc: use hv_get_bytes_to_read (fate#320485). - netvsc: use napi_consume_skb (fate#320485). - netvsc: use RCU to protect inner device structure (fate#320485). - netvsc: uses RCU instead of removal flag (fate#320485). - netvsc: use typed pointer for internal state (fate#320485). - nvme: fabrics commands should use the fctype field for data direction (bsc#1043805). - powerpc/perf: Fix SDAR_MODE value for continous sampling on Power9 (bsc#1053043 (git-fixes)). - powerpc/tm: Fix saving of TM SPRs in core dump (fate#318470, git-fixes 08e1c01d6aed). - qeth: fix L3 next-hop im xmit qeth hdr (bnc#1052773, LTC#157374). - rdma/bnxt_re: checking for NULL instead of IS_ERR() (bsc#1052925). - scsi: aacraid: fix PCI error recovery path (bsc#1048912). - scsi_devinfo: fixup string compare (bsc#1037404). - scsi_dh_alua: suppress errors from unsupported devices (bsc#1038792). - scsi: hisi_sas: add pci_dev in hisi_hba struct (bsc#1049298). - scsi: hisi_sas: add v2 hw internal abort timeout workaround (bsc#1049298). - scsi: hisi_sas: controller reset for multi-bits ECC and AXI fatal errors (bsc#1049298). - scsi: hisi_sas: fix NULL deference when TMF timeouts (bsc#1049298). - scsi: hisi_sas: fix timeout check in hisi_sas_internal_task_abort() (bsc#1049298). - scsi: hisi_sas: optimise DMA slot memory (bsc#1049298). - scsi: hisi_sas: optimise the usage of hisi_hba.lock (bsc#1049298). - scsi: hisi_sas: relocate get_ata_protocol() (bsc#1049298). - scsi: hisi_sas: workaround a SoC SATA IO processing bug (bsc#1049298). - scsi: hisi_sas: workaround SoC about abort timeout bug (bsc#1049298). - scsi: hisi_sas: workaround STP link SoC bug (bsc#1049298). - scsi: lpfc: do not double count abort errors (bsc#1048912). - scsi: lpfc: fix linking against modular NVMe support (bsc#1048912). - scsi: qedi: Fix return code in qedi_ep_connect() (bsc#1048912). - scsi: storvsc: Prefer kcalloc over kzalloc with multiply (fate#320485). - scsi: storvsc: remove return at end of void function (fate#320485). - tools: hv: Add clean up for included files in Ubuntu net config (fate#320485). - tools: hv: Add clean up function for Ubuntu config (fate#320485). - tools: hv: properly handle long paths (fate#320485). - tools: hv: set allow-hotplug for VF on Ubuntu (fate#320485). - tools: hv: set hotplug for VF on Suse (fate#320485). - tools: hv: vss: Thaw the filesystem and continue if freeze call has timed out (fate#320485). - vfs: fix missing inode_get_dev sites (bsc#1052049). - vmbus: cleanup header file style (fate#320485). - vmbus: expose debug info for drivers (fate#320485). - vmbus: fix spelling errors (fate#320485). - vmbus: introduce in-place packet iterator (fate#320485). - vmbus: only reschedule tasklet if time limit exceeded (fate#320485). - vmbus: re-enable channel tasklet (fate#320485). - vmbus: remove unnecessary initialization (fate#320485). - vmbus: remove useless return's (fate#320485). - x86/dmi: Switch dmi_remap() from ioremap() to ioremap_cache() (bsc#1051399). - x86/hyperv: Check frequency MSRs presence according to the specification (fate#320485). - The package release number was increased to be higher than the Leap 42.2 package (boo#1053531). kernel-devel-4.4.79-19.1.noarch.rpm True kernel-macros-4.4.79-19.1.noarch.rpm True kernel-source-4.4.79-19.1.noarch.rpm True kernel-source-4.4.79-19.1.src.rpm True kernel-source-vanilla-4.4.79-19.1.noarch.rpm True kernel-debug-4.4.79-19.1.nosrc.rpm True kernel-debug-4.4.79-19.1.x86_64.rpm True kernel-debug-base-4.4.79-19.1.x86_64.rpm True kernel-debug-base-debuginfo-4.4.79-19.1.x86_64.rpm True kernel-debug-debuginfo-4.4.79-19.1.x86_64.rpm True kernel-debug-debugsource-4.4.79-19.1.x86_64.rpm True kernel-debug-devel-4.4.79-19.1.x86_64.rpm True kernel-debug-devel-debuginfo-4.4.79-19.1.x86_64.rpm True kernel-default-4.4.79-19.1.nosrc.rpm True kernel-default-4.4.79-19.1.x86_64.rpm True kernel-default-base-4.4.79-19.1.x86_64.rpm True kernel-default-base-debuginfo-4.4.79-19.1.x86_64.rpm True kernel-default-debuginfo-4.4.79-19.1.x86_64.rpm True kernel-default-debugsource-4.4.79-19.1.x86_64.rpm True kernel-default-devel-4.4.79-19.1.x86_64.rpm True kernel-docs-4.4.79-19.2.noarch.rpm True kernel-docs-4.4.79-19.2.src.rpm True kernel-docs-html-4.4.79-19.2.noarch.rpm True kernel-docs-pdf-4.4.79-19.2.noarch.rpm True kernel-obs-build-4.4.79-19.1.src.rpm True kernel-obs-build-4.4.79-19.1.x86_64.rpm True kernel-obs-build-debugsource-4.4.79-19.1.x86_64.rpm True kernel-obs-qa-4.4.79-19.1.src.rpm True kernel-obs-qa-4.4.79-19.1.x86_64.rpm True kernel-syms-4.4.79-19.1.src.rpm True kernel-syms-4.4.79-19.1.x86_64.rpm True kernel-vanilla-4.4.79-19.1.nosrc.rpm True kernel-vanilla-4.4.79-19.1.x86_64.rpm True kernel-vanilla-base-4.4.79-19.1.x86_64.rpm True kernel-vanilla-base-debuginfo-4.4.79-19.1.x86_64.rpm True kernel-vanilla-debuginfo-4.4.79-19.1.x86_64.rpm True kernel-vanilla-debugsource-4.4.79-19.1.x86_64.rpm True kernel-vanilla-devel-4.4.79-19.1.x86_64.rpm True openSUSE-2017-941 important openSUSE Leap 42.3 Update This update for mercurial fixes the following issues: Mercurial was updated to 4.2.3, a security fix update for - CVE-2017-1000115: Incomplete symlink auditing allowed writing to files outside of the repository (boo#1053344) - CVE-2017-1000116: Client-side code execution via argument injection in SSH URLs (boo#1052696) mercurial-4.2.3-4.1.i586.rpm mercurial-4.2.3-4.1.src.rpm mercurial-debuginfo-4.2.3-4.1.i586.rpm mercurial-debugsource-4.2.3-4.1.i586.rpm mercurial-lang-4.2.3-4.1.noarch.rpm mercurial-4.2.3-4.1.x86_64.rpm mercurial-debuginfo-4.2.3-4.1.x86_64.rpm mercurial-debugsource-4.2.3-4.1.x86_64.rpm openSUSE-2017-942 low openSUSE Leap 42.3 Update This update for libxml2 fixes the following security issue: - CVE-2017-8872: Out-of-bounds read in htmlParseTryOrFinish. (bsc#1038444) This update was imported from the SUSE:SLE-12-SP2:Update update project. libxml2-2-2.9.4-12.1.i586.rpm libxml2-2-32bit-2.9.4-12.1.x86_64.rpm libxml2-2-debuginfo-2.9.4-12.1.i586.rpm libxml2-2-debuginfo-32bit-2.9.4-12.1.x86_64.rpm libxml2-2.9.4-12.1.src.rpm libxml2-debugsource-2.9.4-12.1.i586.rpm libxml2-devel-2.9.4-12.1.i586.rpm libxml2-devel-32bit-2.9.4-12.1.x86_64.rpm libxml2-doc-2.9.4-12.1.noarch.rpm libxml2-tools-2.9.4-12.1.i586.rpm libxml2-tools-debuginfo-2.9.4-12.1.i586.rpm python-libxml2-2.9.4-12.1.i586.rpm python-libxml2-2.9.4-12.1.src.rpm python-libxml2-debuginfo-2.9.4-12.1.i586.rpm python-libxml2-debugsource-2.9.4-12.1.i586.rpm libxml2-2-2.9.4-12.1.x86_64.rpm libxml2-2-debuginfo-2.9.4-12.1.x86_64.rpm libxml2-debugsource-2.9.4-12.1.x86_64.rpm libxml2-devel-2.9.4-12.1.x86_64.rpm libxml2-tools-2.9.4-12.1.x86_64.rpm libxml2-tools-debuginfo-2.9.4-12.1.x86_64.rpm python-libxml2-2.9.4-12.1.x86_64.rpm python-libxml2-debuginfo-2.9.4-12.1.x86_64.rpm python-libxml2-debugsource-2.9.4-12.1.x86_64.rpm openSUSE-2017-943 important openSUSE Leap 42.3 Update This update for openjpeg2 fixes the following issues: - CVE 2016-7163: Integer Overflow could lead to remote code execution (bsc#997857) - CVE 2015-8871: Use-after-free in opj_j2k_write_mco function could lead to denial of service (bsc#979907) This update was imported from the SUSE:SLE-12-SP2:Update update project. libopenjp2-7-2.1.0-16.1.i586.rpm libopenjp2-7-32bit-2.1.0-16.1.x86_64.rpm libopenjp2-7-debuginfo-2.1.0-16.1.i586.rpm libopenjp2-7-debuginfo-32bit-2.1.0-16.1.x86_64.rpm openjpeg2-2.1.0-16.1.i586.rpm openjpeg2-2.1.0-16.1.src.rpm openjpeg2-debuginfo-2.1.0-16.1.i586.rpm openjpeg2-debugsource-2.1.0-16.1.i586.rpm openjpeg2-devel-2.1.0-16.1.i586.rpm libopenjp2-7-2.1.0-16.1.x86_64.rpm libopenjp2-7-debuginfo-2.1.0-16.1.x86_64.rpm openjpeg2-2.1.0-16.1.x86_64.rpm openjpeg2-debuginfo-2.1.0-16.1.x86_64.rpm openjpeg2-debugsource-2.1.0-16.1.x86_64.rpm openjpeg2-devel-2.1.0-16.1.x86_64.rpm openSUSE-2017-944 low openSUSE Leap 42.3 Update This update for python3-requests fixes the following issues: - Prevent https connections from failing due to missing dependency on ca-certificates(-mozilla) (boo#912903) python3-requests-2.7.0-11.1.noarch.rpm python3-requests-2.7.0-11.1.src.rpm openSUSE-2017-959 low openSUSE Leap 42.3 Update This update for k3b fixes the following issues: - Fix for creating Video DVDs. (bnc#1051338) - k3b shows the system configuration problems dialog if disabled. (bnc#1051368) - k3b suggests to the user to install libburn on startup. The message is actually misleading as k3b would actually use cdrskin which is packaged separately in openSUSE. But let's stick to prefer the proven cdrecord for now, people can still install cdrskin if they'd prefer to use it. (bnc#1050715) k3b-17.04.2-4.1.src.rpm k3b-17.04.2-4.1.x86_64.rpm k3b-debuginfo-17.04.2-4.1.x86_64.rpm k3b-debugsource-17.04.2-4.1.x86_64.rpm k3b-devel-17.04.2-4.1.x86_64.rpm k3b-lang-17.04.2-4.1.noarch.rpm openSUSE-2017-957 low openSUSE Leap 42.3 Update This update for vncmanager fixes the following issues: - Using the MIT-SHM extension would fail for Xvnc, causing some application issues. Disable MIT-SHM extension in Xvnc started by vncmanager (bnc#1053373) vncmanager-1.0.1-6.1.src.rpm vncmanager-1.0.1-6.1.x86_64.rpm vncmanager-debuginfo-1.0.1-6.1.x86_64.rpm vncmanager-debugsource-1.0.1-6.1.x86_64.rpm openSUSE-2017-945 low openSUSE Leap 42.3 Update This update for sed provides the following fixes: - Don't terminate with a segmentation fault if close of last file descriptor fails. (bsc#954661) This update was imported from the SUSE:SLE-12:Update update project. sed-4.2.2-11.1.i586.rpm sed-4.2.2-11.1.src.rpm sed-debuginfo-4.2.2-11.1.i586.rpm sed-debugsource-4.2.2-11.1.i586.rpm sed-lang-4.2.2-11.1.noarch.rpm sed-4.2.2-11.1.x86_64.rpm sed-debuginfo-4.2.2-11.1.x86_64.rpm sed-debugsource-4.2.2-11.1.x86_64.rpm openSUSE-2017-1066 important openSUSE Leap 42.3 Update This update for virtualbox fixes the following issues: - VirtualBox would fail if VBoxNetNAT was selected due to missing setuid (boo#1033425) python-virtualbox-5.1.26-31.1.x86_64.rpm python-virtualbox-debuginfo-5.1.26-31.1.x86_64.rpm virtualbox-5.1.26-31.1.src.rpm virtualbox-5.1.26-31.1.x86_64.rpm virtualbox-debuginfo-5.1.26-31.1.x86_64.rpm virtualbox-debugsource-5.1.26-31.1.x86_64.rpm virtualbox-devel-5.1.26-31.1.x86_64.rpm virtualbox-guest-desktop-icons-5.1.26-31.1.noarch.rpm virtualbox-guest-kmp-default-5.1.26_k4.4.85_22-31.1.x86_64.rpm virtualbox-guest-kmp-default-debuginfo-5.1.26_k4.4.85_22-31.1.x86_64.rpm virtualbox-guest-source-5.1.26-31.1.noarch.rpm virtualbox-guest-tools-5.1.26-31.1.x86_64.rpm virtualbox-guest-tools-debuginfo-5.1.26-31.1.x86_64.rpm virtualbox-guest-x11-5.1.26-31.1.x86_64.rpm virtualbox-guest-x11-debuginfo-5.1.26-31.1.x86_64.rpm virtualbox-host-kmp-default-5.1.26_k4.4.85_22-31.1.x86_64.rpm virtualbox-host-kmp-default-debuginfo-5.1.26_k4.4.85_22-31.1.x86_64.rpm virtualbox-host-source-5.1.26-31.1.noarch.rpm virtualbox-qt-5.1.26-31.1.x86_64.rpm virtualbox-qt-debuginfo-5.1.26-31.1.x86_64.rpm virtualbox-vnc-5.1.26-31.1.x86_64.rpm virtualbox-websrv-5.1.26-31.1.x86_64.rpm virtualbox-websrv-debuginfo-5.1.26-31.1.x86_64.rpm openSUSE-2017-948 moderate openSUSE Leap 42.3 Update This update for nodejs4 and nodejs6 fixes the following issues: Security issues fixed: - CVE-2017-1000381: The c-ares function ares_parse_naptr_reply() could be triggered to read memory outside of the given input buffer if the passed in DNS response packet was crafted in a particular way. (bsc#1044946) - CVE-2017-11499: Disable V8 snapshots. The hashseed embedded in the snapshot is currently the same for all runs of the binary. This opens node up to collision attacks which could result in a Denial of Service. We have temporarily disabled snapshots until a more robust solution is found. (bsc#1048299) Non-security fixes: - GCC 7 compilation fixes for v8 backported and add missing ICU59 headers (bsc#1041282) - New upstream LTS release 6.11.1 * https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V6.md#6.11.1 - New upstream LTS release 6.11.0 * https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V6.md#6.11.0 - New upstream LTS release 6.10.3 * https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V6.md#6.10.3 - New upstream LTS release 6.10.2 * https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V6.md#6.10.2 - New upstream LTS release 6.10.1 * https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V6.md#6.10.1 - New upstream LTS release 6.10.0 * https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V6.md#6.10.0 - New upstream LTS release 4.8.4 * https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V4.md#4.8.4 - New upstream LTS release 4.8.3 * https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V4.md#4.8.3 - New upstream LTS release 4.8.2 * https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V4.md#4.8.2 - New upstream LTS release 4.8.1 * https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V4.md#4.8.1 - New upstream LTS release 4.8.0 * https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V4.md#4.8.0 This update was imported from the SUSE:SLE-12:Update update project. nodejs-common-1.0-2.1.noarch.rpm nodejs-common-1.0-2.1.src.rpm nodejs4-4.8.4-8.1.i586.rpm nodejs4-4.8.4-8.1.src.rpm nodejs4-debuginfo-4.8.4-8.1.i586.rpm nodejs4-debugsource-4.8.4-8.1.i586.rpm nodejs4-devel-4.8.4-8.1.i586.rpm nodejs4-docs-4.8.4-8.1.noarch.rpm npm4-4.8.4-8.1.i586.rpm nodejs6-6.11.1-3.1.i586.rpm nodejs6-6.11.1-3.1.src.rpm nodejs6-debuginfo-6.11.1-3.1.i586.rpm nodejs6-debugsource-6.11.1-3.1.i586.rpm nodejs6-devel-6.11.1-3.1.i586.rpm nodejs6-docs-6.11.1-3.1.noarch.rpm npm6-6.11.1-3.1.i586.rpm nodejs4-4.8.4-8.1.x86_64.rpm nodejs4-debuginfo-4.8.4-8.1.x86_64.rpm nodejs4-debugsource-4.8.4-8.1.x86_64.rpm nodejs4-devel-4.8.4-8.1.x86_64.rpm npm4-4.8.4-8.1.x86_64.rpm nodejs6-6.11.1-3.1.x86_64.rpm nodejs6-debuginfo-6.11.1-3.1.x86_64.rpm nodejs6-debugsource-6.11.1-3.1.x86_64.rpm nodejs6-devel-6.11.1-3.1.x86_64.rpm npm6-6.11.1-3.1.x86_64.rpm openSUSE-2017-966 moderate openSUSE Leap 42.3 Update This update for GraphicsMagick fixes the following issues: - CVE-2017-11643: Heap overflow in WriteRGBImage() in coders/rgb.c could lead to denial of service [boo#1050611] - CVE-2017-11636: Heap overflow in WriteCMYKImage()function in coders/cmyk.c could lead to denial of service [boo#1050674] GraphicsMagick-1.3.25-20.1.i586.rpm GraphicsMagick-1.3.25-20.1.src.rpm GraphicsMagick-debuginfo-1.3.25-20.1.i586.rpm GraphicsMagick-debugsource-1.3.25-20.1.i586.rpm GraphicsMagick-devel-1.3.25-20.1.i586.rpm libGraphicsMagick++-Q16-12-1.3.25-20.1.i586.rpm libGraphicsMagick++-Q16-12-debuginfo-1.3.25-20.1.i586.rpm libGraphicsMagick++-devel-1.3.25-20.1.i586.rpm libGraphicsMagick-Q16-3-1.3.25-20.1.i586.rpm libGraphicsMagick-Q16-3-debuginfo-1.3.25-20.1.i586.rpm libGraphicsMagick3-config-1.3.25-20.1.i586.rpm libGraphicsMagickWand-Q16-2-1.3.25-20.1.i586.rpm libGraphicsMagickWand-Q16-2-debuginfo-1.3.25-20.1.i586.rpm perl-GraphicsMagick-1.3.25-20.1.i586.rpm perl-GraphicsMagick-debuginfo-1.3.25-20.1.i586.rpm GraphicsMagick-1.3.25-20.1.x86_64.rpm GraphicsMagick-debuginfo-1.3.25-20.1.x86_64.rpm GraphicsMagick-debugsource-1.3.25-20.1.x86_64.rpm GraphicsMagick-devel-1.3.25-20.1.x86_64.rpm libGraphicsMagick++-Q16-12-1.3.25-20.1.x86_64.rpm libGraphicsMagick++-Q16-12-debuginfo-1.3.25-20.1.x86_64.rpm libGraphicsMagick++-devel-1.3.25-20.1.x86_64.rpm libGraphicsMagick-Q16-3-1.3.25-20.1.x86_64.rpm libGraphicsMagick-Q16-3-debuginfo-1.3.25-20.1.x86_64.rpm libGraphicsMagick3-config-1.3.25-20.1.x86_64.rpm libGraphicsMagickWand-Q16-2-1.3.25-20.1.x86_64.rpm libGraphicsMagickWand-Q16-2-debuginfo-1.3.25-20.1.x86_64.rpm perl-GraphicsMagick-1.3.25-20.1.x86_64.rpm perl-GraphicsMagick-debuginfo-1.3.25-20.1.x86_64.rpm openSUSE-2017-950 important openSUSE Leap 42.3 Update This update for systemd fixes the following issues: - compat-rules: Don't rely on ID_SERIAL when generating 'by-id' links for NVMe devices. (bsc#1048679) - fstab-generator: Handle NFS "bg" mounts correctly. (bsc#874665, fate#323464) - timesyncd: Don't use compiled-in list if FallbackNTP has been configured explicitly. This update was imported from the SUSE:SLE-12-SP2:Update update project. libsystemd0-mini-228-32.2.i586.rpm libsystemd0-mini-debuginfo-228-32.2.i586.rpm libudev-mini-devel-228-32.2.i586.rpm libudev-mini1-228-32.2.i586.rpm libudev-mini1-debuginfo-228-32.2.i586.rpm systemd-mini-228-32.2.i586.rpm systemd-mini-228-32.2.src.rpm systemd-mini-bash-completion-228-32.2.noarch.rpm systemd-mini-debuginfo-228-32.2.i586.rpm systemd-mini-debugsource-228-32.2.i586.rpm systemd-mini-devel-228-32.2.i586.rpm systemd-mini-sysvinit-228-32.2.i586.rpm udev-mini-228-32.2.i586.rpm udev-mini-debuginfo-228-32.2.i586.rpm libsystemd0-228-32.2.i586.rpm libsystemd0-32bit-228-32.2.x86_64.rpm libsystemd0-debuginfo-228-32.2.i586.rpm libsystemd0-debuginfo-32bit-228-32.2.x86_64.rpm libudev-devel-228-32.2.i586.rpm libudev1-228-32.2.i586.rpm libudev1-32bit-228-32.2.x86_64.rpm libudev1-debuginfo-228-32.2.i586.rpm libudev1-debuginfo-32bit-228-32.2.x86_64.rpm nss-myhostname-228-32.2.i586.rpm nss-myhostname-32bit-228-32.2.x86_64.rpm nss-myhostname-debuginfo-228-32.2.i586.rpm nss-myhostname-debuginfo-32bit-228-32.2.x86_64.rpm nss-mymachines-228-32.2.i586.rpm nss-mymachines-debuginfo-228-32.2.i586.rpm systemd-228-32.2.i586.rpm systemd-228-32.2.src.rpm systemd-32bit-228-32.2.x86_64.rpm systemd-bash-completion-228-32.2.noarch.rpm systemd-debuginfo-228-32.2.i586.rpm systemd-debuginfo-32bit-228-32.2.x86_64.rpm systemd-debugsource-228-32.2.i586.rpm systemd-devel-228-32.2.i586.rpm systemd-logger-228-32.2.i586.rpm systemd-sysvinit-228-32.2.i586.rpm udev-228-32.2.i586.rpm udev-debuginfo-228-32.2.i586.rpm libsystemd0-mini-228-32.2.x86_64.rpm libsystemd0-mini-debuginfo-228-32.2.x86_64.rpm libudev-mini-devel-228-32.2.x86_64.rpm libudev-mini1-228-32.2.x86_64.rpm libudev-mini1-debuginfo-228-32.2.x86_64.rpm systemd-mini-228-32.2.x86_64.rpm systemd-mini-debuginfo-228-32.2.x86_64.rpm systemd-mini-debugsource-228-32.2.x86_64.rpm systemd-mini-devel-228-32.2.x86_64.rpm systemd-mini-sysvinit-228-32.2.x86_64.rpm udev-mini-228-32.2.x86_64.rpm udev-mini-debuginfo-228-32.2.x86_64.rpm libsystemd0-228-32.2.x86_64.rpm libsystemd0-debuginfo-228-32.2.x86_64.rpm libudev-devel-228-32.2.x86_64.rpm libudev1-228-32.2.x86_64.rpm libudev1-debuginfo-228-32.2.x86_64.rpm nss-myhostname-228-32.2.x86_64.rpm nss-myhostname-debuginfo-228-32.2.x86_64.rpm nss-mymachines-228-32.2.x86_64.rpm nss-mymachines-debuginfo-228-32.2.x86_64.rpm systemd-228-32.2.x86_64.rpm systemd-debuginfo-228-32.2.x86_64.rpm systemd-debugsource-228-32.2.x86_64.rpm systemd-devel-228-32.2.x86_64.rpm systemd-logger-228-32.2.x86_64.rpm systemd-sysvinit-228-32.2.x86_64.rpm udev-228-32.2.x86_64.rpm udev-debuginfo-228-32.2.x86_64.rpm openSUSE-2017-947 moderate openSUSE Leap 42.3 Update This update for minicom fixes the following issue: This security issue was fixed: - CVE-2017-7467: Invalid cursor coordinates and scroll regions could lead to code execution (bsc#1033783). This update was imported from the SUSE:SLE-12:Update update project. minicom-2.7-8.1.src.rpm minicom-2.7-8.1.x86_64.rpm minicom-debuginfo-2.7-8.1.x86_64.rpm minicom-debugsource-2.7-8.1.x86_64.rpm minicom-lang-2.7-8.1.noarch.rpm openSUSE-2017-951 moderate openSUSE Leap 42.3 Update This update for curl fixes the following issues: - CVE-2017-1000100: TFP sends more than buffer size and it could lead to a denial of service (bsc#1051644) - CVE-2017-1000101: URL globbing out of bounds read could lead to a denial of service (bsc#1051643) This update was imported from the SUSE:SLE-12:Update update project. curl-7.37.0-20.1.i586.rpm curl-7.37.0-20.1.src.rpm curl-debuginfo-7.37.0-20.1.i586.rpm curl-debugsource-7.37.0-20.1.i586.rpm libcurl-devel-32bit-7.37.0-20.1.x86_64.rpm libcurl-devel-7.37.0-20.1.i586.rpm libcurl4-32bit-7.37.0-20.1.x86_64.rpm libcurl4-7.37.0-20.1.i586.rpm libcurl4-debuginfo-32bit-7.37.0-20.1.x86_64.rpm libcurl4-debuginfo-7.37.0-20.1.i586.rpm curl-7.37.0-20.1.x86_64.rpm curl-debuginfo-7.37.0-20.1.x86_64.rpm curl-debugsource-7.37.0-20.1.x86_64.rpm libcurl-devel-7.37.0-20.1.x86_64.rpm libcurl4-7.37.0-20.1.x86_64.rpm libcurl4-debuginfo-7.37.0-20.1.x86_64.rpm openSUSE-2017-954 important openSUSE Leap 42.3 Update This java-1_8_0-openjdk update to version jdk8u141 (icedtea 3.5.0) fixes the following issues: Security issues fixed: - CVE-2017-10053: Improved image post-processing steps (bsc#1049305) - CVE-2017-10067: Additional jar validation steps (bsc#1049306) - CVE-2017-10074: Image conversion improvements (bsc#1049307) - CVE-2017-10078: Better script accessibility for JavaScript (bsc#1049308) - CVE-2017-10081: Right parenthesis issue (bsc#1049309) - CVE-2017-10086: Unspecified vulnerability in subcomponent JavaFX (bsc#1049310) - CVE-2017-10087: Better Thread Pool execution (bsc#1049311) - CVE-2017-10089: Service Registration Lifecycle (bsc#1049312) - CVE-2017-10090: Better handling of channel groups (bsc#1049313) - CVE-2017-10096: Transform Transformer Exceptions (bsc#1049314) - CVE-2017-10101: Better reading of text catalogs (bsc#1049315) - CVE-2017-10102: Improved garbage collection (bsc#1049316) - CVE-2017-10105: Unspecified vulnerability in subcomponent deployment (bsc#1049317) - CVE-2017-10107: Less Active Activations (bsc#1049318) - CVE-2017-10108: Better naming attribution (bsc#1049319) - CVE-2017-10109: Better sourcing of code (bsc#1049320) - CVE-2017-10110: Better image fetching (bsc#1049321) - CVE-2017-10111: Rearrange MethodHandle arrangements (bsc#1049322) - CVE-2017-10114: Unspecified vulnerability in subcomponent JavaFX (bsc#1049323) - CVE-2017-10115: Higher quality DSA operations (bsc#1049324) - CVE-2017-10116: Proper directory lookup processing (bsc#1049325) - CVE-2017-10118: Higher quality ECDSA operations (bsc#1049326) - CVE-2017-10125: Unspecified vulnerability in subcomponent deployment (bsc#1049327) - CVE-2017-10135: Better handling of PKCS8 material (bsc#1049328) - CVE-2017-10176: Additional elliptic curve support (bsc#1049329) - CVE-2017-10193: Improve algorithm constraints implementation (bsc#1049330) - CVE-2017-10198: Clear certificate chain connections (bsc#1049331) - CVE-2017-10243: Unspecified vulnerability in subcomponent JAX-WS (bsc#1049332) Bug fixes: - Check registry registration location - Improved certificate processing - JMX diagnostic improvements - Update to libpng 1.6.28 - Import of OpenJDK 8 u141 build 15 (bsc#1049302) New features: - Support using RSAandMGF1 with the SHA hash algorithms in the PKCS11 provider This update was imported from the SUSE:SLE-12-SP1:Update update project. java-1_8_0-openjdk-1.8.0.144-13.3.i586.rpm java-1_8_0-openjdk-1.8.0.144-13.3.src.rpm java-1_8_0-openjdk-accessibility-1.8.0.144-13.3.i586.rpm java-1_8_0-openjdk-debuginfo-1.8.0.144-13.3.i586.rpm java-1_8_0-openjdk-debugsource-1.8.0.144-13.3.i586.rpm java-1_8_0-openjdk-demo-1.8.0.144-13.3.i586.rpm java-1_8_0-openjdk-demo-debuginfo-1.8.0.144-13.3.i586.rpm java-1_8_0-openjdk-devel-1.8.0.144-13.3.i586.rpm java-1_8_0-openjdk-devel-debuginfo-1.8.0.144-13.3.i586.rpm java-1_8_0-openjdk-headless-1.8.0.144-13.3.i586.rpm java-1_8_0-openjdk-headless-debuginfo-1.8.0.144-13.3.i586.rpm java-1_8_0-openjdk-javadoc-1.8.0.144-13.3.noarch.rpm java-1_8_0-openjdk-src-1.8.0.144-13.3.i586.rpm java-1_8_0-openjdk-1.8.0.144-13.3.x86_64.rpm java-1_8_0-openjdk-accessibility-1.8.0.144-13.3.x86_64.rpm java-1_8_0-openjdk-debuginfo-1.8.0.144-13.3.x86_64.rpm java-1_8_0-openjdk-debugsource-1.8.0.144-13.3.x86_64.rpm java-1_8_0-openjdk-demo-1.8.0.144-13.3.x86_64.rpm java-1_8_0-openjdk-demo-debuginfo-1.8.0.144-13.3.x86_64.rpm java-1_8_0-openjdk-devel-1.8.0.144-13.3.x86_64.rpm java-1_8_0-openjdk-devel-debuginfo-1.8.0.144-13.3.x86_64.rpm java-1_8_0-openjdk-headless-1.8.0.144-13.3.x86_64.rpm java-1_8_0-openjdk-headless-debuginfo-1.8.0.144-13.3.x86_64.rpm java-1_8_0-openjdk-src-1.8.0.144-13.3.x86_64.rpm openSUSE-2017-976 low openSUSE Leap 42.3 Update This update for tryton, trytond and gnuhealth fixes the following issues: gnuhealth: - Add gnuhealth-webdav@.service tryton, trydond, tryton_account, tryton_stock - typo in trytond.conf removed - various small bug fixes in the Tryton 4.2 series (boo#1054032) gnuhealth-3.2.1-18.1.noarch.rpm gnuhealth-3.2.1-18.1.src.rpm trytond_account-4.2.2-3.1.noarch.rpm trytond_account-4.2.2-3.1.src.rpm trytond_stock-4.2.3-3.1.noarch.rpm trytond_stock-4.2.3-3.1.src.rpm tryton-4.2.6-13.1.noarch.rpm tryton-4.2.6-13.1.src.rpm trytond-4.2.6-15.1.noarch.rpm trytond-4.2.6-15.1.src.rpm openSUSE-2017-1026 moderate openSUSE Leap 42.3 Update This update for gnuhealth fixes the following issues: - health_imaging : Update health professional retrieval to the current standard method (boo#1054032) gnuhealth-3.2.2-21.1.noarch.rpm gnuhealth-3.2.2-21.1.src.rpm openSUSE-2017-955 important openSUSE Leap 42.3 Update This update for MozillaThunderbird to version 52.3 fixes security issues and bugs. The following vulnerabilities were fixed: - CVE-2017-7798: XUL injection in the style editor in devtools - CVE-2017-7800: Use-after-free in WebSockets during disconnection - CVE-2017-7801: Use-after-free with marquee during window resizing - CVE-2017-7784: Use-after-free with image observers - CVE-2017-7802: Use-after-free resizing image elements - CVE-2017-7785: Buffer overflow manipulating ARIA attributes in DOM - CVE-2017-7786: Buffer overflow while painting non-displayable SVG - CVE-2017-7753: Out-of-bounds read with cached style data and pseudo-elements# - CVE-2017-7787: Same-origin policy bypass with iframes through page reloads - CVE-2017-7807: Domain hijacking through AppCache fallback - CVE-2017-7792: Buffer overflow viewing certificates with an extremely long OID - CVE-2017-7804: Memory protection bypass through WindowsDllDetourPatcher - CVE-2017-7791: Spoofing following page navigation with data: protocol and modal alerts - CVE-2017-7782: WindowsDllDetourPatcher allocates memory without DEP protections - CVE-2017-7803: CSP containing 'sandbox' improperly applied - CVE-2017-7779: Memory safety bugs fixed in Firefox 55 and Firefox ESR 52.3 The following bugs were fixed: - Unwanted inline images shown in rogue SPAM messages - Deleting message from the POP3 server not working when maildir storage was used - Message disposition flag (replied / forwarded) lost when reply or forwarded message was stored as draft and draft was sent later - Inline images not scaled to fit when printing - Selected text from another message sometimes included in a reply - No authorisation prompt displayed when inserting image into email body although image URL requires authentication - Large attachments taking a long time to open under some circumstances MozillaThunderbird-52.3.0-44.1.i586.rpm MozillaThunderbird-52.3.0-44.1.src.rpm MozillaThunderbird-buildsymbols-52.3.0-44.1.i586.rpm MozillaThunderbird-debuginfo-52.3.0-44.1.i586.rpm MozillaThunderbird-debugsource-52.3.0-44.1.i586.rpm MozillaThunderbird-devel-52.3.0-44.1.i586.rpm MozillaThunderbird-translations-common-52.3.0-44.1.i586.rpm MozillaThunderbird-translations-other-52.3.0-44.1.i586.rpm MozillaThunderbird-52.3.0-44.1.x86_64.rpm MozillaThunderbird-buildsymbols-52.3.0-44.1.x86_64.rpm MozillaThunderbird-debuginfo-52.3.0-44.1.x86_64.rpm MozillaThunderbird-debugsource-52.3.0-44.1.x86_64.rpm MozillaThunderbird-devel-52.3.0-44.1.x86_64.rpm MozillaThunderbird-translations-common-52.3.0-44.1.x86_64.rpm MozillaThunderbird-translations-other-52.3.0-44.1.x86_64.rpm openSUSE-2017-971 important openSUSE Leap 42.3 Update This update for ImageMagick fixes the following issues: Security issues fixed: - CVE-2017-9439: A memory leak was found in the function ReadPDBImage incoders/pdb.c (bsc#1042826) - CVE-2017-9440: A memory leak was found in the function ReadPSDChannelin coders/psd.c (bsc#1042812) - CVE-2017-9501: An assertion failure could cause a denial of service via a crafted file (bsc#1043289) - CVE-2017-11403: ReadMNGImage function in coders/png.c has an out-of-order CloseBlob call, resulting in a use-after-free via acrafted file (bsc#1049072) This update was imported from the SUSE:SLE-12:Update update project. ImageMagick-6.8.8.1-34.1.i586.rpm ImageMagick-6.8.8.1-34.1.src.rpm ImageMagick-debuginfo-6.8.8.1-34.1.i586.rpm ImageMagick-debugsource-6.8.8.1-34.1.i586.rpm ImageMagick-devel-32bit-6.8.8.1-34.1.x86_64.rpm ImageMagick-devel-6.8.8.1-34.1.i586.rpm ImageMagick-doc-6.8.8.1-34.1.noarch.rpm ImageMagick-extra-6.8.8.1-34.1.i586.rpm ImageMagick-extra-debuginfo-6.8.8.1-34.1.i586.rpm libMagick++-6_Q16-3-32bit-6.8.8.1-34.1.x86_64.rpm libMagick++-6_Q16-3-6.8.8.1-34.1.i586.rpm libMagick++-6_Q16-3-debuginfo-32bit-6.8.8.1-34.1.x86_64.rpm libMagick++-6_Q16-3-debuginfo-6.8.8.1-34.1.i586.rpm libMagick++-devel-32bit-6.8.8.1-34.1.x86_64.rpm libMagick++-devel-6.8.8.1-34.1.i586.rpm libMagickCore-6_Q16-1-32bit-6.8.8.1-34.1.x86_64.rpm libMagickCore-6_Q16-1-6.8.8.1-34.1.i586.rpm libMagickCore-6_Q16-1-debuginfo-32bit-6.8.8.1-34.1.x86_64.rpm libMagickCore-6_Q16-1-debuginfo-6.8.8.1-34.1.i586.rpm libMagickWand-6_Q16-1-32bit-6.8.8.1-34.1.x86_64.rpm libMagickWand-6_Q16-1-6.8.8.1-34.1.i586.rpm libMagickWand-6_Q16-1-debuginfo-32bit-6.8.8.1-34.1.x86_64.rpm libMagickWand-6_Q16-1-debuginfo-6.8.8.1-34.1.i586.rpm perl-PerlMagick-6.8.8.1-34.1.i586.rpm perl-PerlMagick-debuginfo-6.8.8.1-34.1.i586.rpm ImageMagick-6.8.8.1-34.1.x86_64.rpm ImageMagick-debuginfo-6.8.8.1-34.1.x86_64.rpm ImageMagick-debugsource-6.8.8.1-34.1.x86_64.rpm ImageMagick-devel-6.8.8.1-34.1.x86_64.rpm ImageMagick-extra-6.8.8.1-34.1.x86_64.rpm ImageMagick-extra-debuginfo-6.8.8.1-34.1.x86_64.rpm libMagick++-6_Q16-3-6.8.8.1-34.1.x86_64.rpm libMagick++-6_Q16-3-debuginfo-6.8.8.1-34.1.x86_64.rpm libMagick++-devel-6.8.8.1-34.1.x86_64.rpm libMagickCore-6_Q16-1-6.8.8.1-34.1.x86_64.rpm libMagickCore-6_Q16-1-debuginfo-6.8.8.1-34.1.x86_64.rpm libMagickWand-6_Q16-1-6.8.8.1-34.1.x86_64.rpm libMagickWand-6_Q16-1-debuginfo-6.8.8.1-34.1.x86_64.rpm perl-PerlMagick-6.8.8.1-34.1.x86_64.rpm perl-PerlMagick-debuginfo-6.8.8.1-34.1.x86_64.rpm openSUSE-2017-953 moderate openSUSE Leap 42.3 Update This update for libplist fixes the following issues: Security issues fixed: - CVE-2017-6439: Heap-based buffer overflow in the parse_string_node function. (bsc#1029638) - CVE-2017-6438: Heap-based buffer overflow in the parse_unicode_node function. (bsc#1029706) - CVE-2017-6437: The base64encode function in base64.c allows local users to cause denial of service (out-of-bounds read) via a crafted plist file. (bsc#1029707) - CVE-2017-6436: Integer overflow in parse_string_node. (bsc#1029751) - CVE-2017-6435: Crafted plist file could lead to Heap-buffer overflow. (bsc#1029639) This update was imported from the SUSE:SLE-12-SP2:Update update project. libplist++-devel-1.12-11.1.i586.rpm libplist++3-1.12-11.1.i586.rpm libplist++3-32bit-1.12-11.1.x86_64.rpm libplist++3-debuginfo-1.12-11.1.i586.rpm libplist++3-debuginfo-32bit-1.12-11.1.x86_64.rpm libplist-1.12-11.1.src.rpm libplist-debugsource-1.12-11.1.i586.rpm libplist-devel-1.12-11.1.i586.rpm libplist3-1.12-11.1.i586.rpm libplist3-32bit-1.12-11.1.x86_64.rpm libplist3-debuginfo-1.12-11.1.i586.rpm libplist3-debuginfo-32bit-1.12-11.1.x86_64.rpm plistutil-1.12-11.1.i586.rpm plistutil-debuginfo-1.12-11.1.i586.rpm python-plist-1.12-11.1.i586.rpm python-plist-debuginfo-1.12-11.1.i586.rpm libplist++-devel-1.12-11.1.x86_64.rpm libplist++3-1.12-11.1.x86_64.rpm libplist++3-debuginfo-1.12-11.1.x86_64.rpm libplist-debugsource-1.12-11.1.x86_64.rpm libplist-devel-1.12-11.1.x86_64.rpm libplist3-1.12-11.1.x86_64.rpm libplist3-debuginfo-1.12-11.1.x86_64.rpm plistutil-1.12-11.1.x86_64.rpm plistutil-debuginfo-1.12-11.1.x86_64.rpm python-plist-1.12-11.1.x86_64.rpm python-plist-debuginfo-1.12-11.1.x86_64.rpm openSUSE-2017-972 important openSUSE Leap 42.3 Update This update for freeradius-server fixes the following issues: - update to 3.0.15 (bsc#1049086) * Bind the lifetime of program name and python path to the module * CVE-2017-10978: FR-GV-201: Check input / output length in make_secret() (bsc#1049086) * CVE-2017-10983: FR-GV-206: Fix read overflow when decoding DHCP option 63 (bsc#1049086) * CVE-2017-10984: FR-GV-301: Fix write overflow in data2vp_wimax() (bsc#1049086) * CVE-2017-10985: FR-GV-302: Fix infinite loop and memory exhaustion with 'concat' attributes (bsc#1049086) * CVE-2017-10986: FR-GV-303: Fix infinite read in dhcp_attr2vp() (bsc#1049086) * CVE-2017-10987: FR-GV-304: Fix buffer over-read in fr_dhcp_decode_suboptions() (bsc#1049086) * CVE-2017-10988: FR-GV-305: Decode 'signed' attributes correctly. (bsc#1049086) * FR-AD-001: use strncmp() instead of memcmp() for bounded data * Print messages when we see deprecated configuration items * Show reasons why we couldn't parse a certificate expiry time * Be more accepting about truncated ASN1 times. * Fix OpenSSL API issue which could leak small amounts of memory. * For Access-Reject, call rad_authlog() after running the post-auth section, just like for Access-Accept. * Don't crash when reading corrupted data from session resumption cache. * Parse port in dhcpclient. * Don't leak memory for OpenSSL. * Portability fixes taken from OpenBSD port collection. * run rad_authlog after post-auth for Access-Reject. * Don't process VMPS packets twice. * Fix attribute truncation in rlm_perl * Fix bug when processing huntgroups. * FR-AD-002 - Bind the lifetime of program name and python path to the module * FR-AD-003 - Pass correct statement length into sqlite3_prepare[_v2] This update was imported from the SUSE:SLE-12-SP3:Update update project. freeradius-server-3.0.15-3.1.src.rpm freeradius-server-3.0.15-3.1.x86_64.rpm freeradius-server-debuginfo-3.0.15-3.1.x86_64.rpm freeradius-server-debugsource-3.0.15-3.1.x86_64.rpm freeradius-server-devel-3.0.15-3.1.x86_64.rpm freeradius-server-doc-3.0.15-3.1.x86_64.rpm freeradius-server-krb5-3.0.15-3.1.x86_64.rpm freeradius-server-krb5-debuginfo-3.0.15-3.1.x86_64.rpm freeradius-server-ldap-3.0.15-3.1.x86_64.rpm freeradius-server-ldap-debuginfo-3.0.15-3.1.x86_64.rpm freeradius-server-libs-3.0.15-3.1.x86_64.rpm freeradius-server-libs-debuginfo-3.0.15-3.1.x86_64.rpm freeradius-server-mysql-3.0.15-3.1.x86_64.rpm freeradius-server-mysql-debuginfo-3.0.15-3.1.x86_64.rpm freeradius-server-perl-3.0.15-3.1.x86_64.rpm freeradius-server-perl-debuginfo-3.0.15-3.1.x86_64.rpm freeradius-server-postgresql-3.0.15-3.1.x86_64.rpm freeradius-server-postgresql-debuginfo-3.0.15-3.1.x86_64.rpm freeradius-server-python-3.0.15-3.1.x86_64.rpm freeradius-server-python-debuginfo-3.0.15-3.1.x86_64.rpm freeradius-server-sqlite-3.0.15-3.1.x86_64.rpm freeradius-server-sqlite-debuginfo-3.0.15-3.1.x86_64.rpm freeradius-server-utils-3.0.15-3.1.x86_64.rpm freeradius-server-utils-debuginfo-3.0.15-3.1.x86_64.rpm openSUSE-2017-975 low openSUSE Leap 42.3 Update This update provides a new version of kopano and libs3 fixes the following issues: - kopano 8.3.3.24 * server: Disallow empty value for embedded_attachment_limit and depth counting error. [KC-745] * common: Fix incorrect timeout check in scheduler which had disabled softdeletes. [KC-638] * server: Disable reminders from shared stores. [KC-758] * Catch pointer underflows / NULL pointers. [KC-694, KC-60, KC-177, KC-355, KC-378, KC-379, KC-669, KC-754] * libserver: Avoid creating multi-stream gzip files. [KC-104, KC-304, KC-597 - libs3 4.1.git257 * Adapted v4 signature construction for Linux. * Add auth. region to relevant API calls. * Support the generate_query_string operation with the new authorization/signature logic. * Fix query parameter handling in canonicalization. * Remove obsolete hash functions, update library major version due to API change. * Fix expected output for ACL with new identifier format. * Increase length of auth. header to account for requests with many amz headers. * Fix the logic that determines the hostname to use in HTTP headers. * fix S3_destroy_request_context() to correctly abort curl_multi context. * Request timeout for _create_bucket and _put_object. * Request timeout for _get_object and _head_object. * timeout: report timeout error if request timed out. * Fix signature error when requesting with sub resource. * Fix urlencode error according to AWS S3 documents. libs3-4-4.1.git257-5.1.i586.rpm libs3-4-debuginfo-4.1.git257-5.1.i586.rpm libs3-4.1.git257-5.1.src.rpm libs3-debugsource-4.1.git257-5.1.i586.rpm libs3-devel-4.1.git257-5.1.i586.rpm libs3-tools-4.1.git257-5.1.i586.rpm libs3-tools-debuginfo-4.1.git257-5.1.i586.rpm kopano-8.3.3.24-3.2.src.rpm kopano-archiver-8.3.3.24-3.2.x86_64.rpm kopano-archiver-debuginfo-8.3.3.24-3.2.x86_64.rpm kopano-backup-8.3.3.24-3.2.x86_64.rpm kopano-bash-completion-8.3.3.24-3.2.noarch.rpm kopano-client-8.3.3.24-3.2.x86_64.rpm kopano-client-debuginfo-8.3.3.24-3.2.x86_64.rpm kopano-common-8.3.3.24-3.2.x86_64.rpm kopano-compat-8.3.3.24-3.2.x86_64.rpm kopano-contacts-8.3.3.24-3.2.x86_64.rpm kopano-contacts-debuginfo-8.3.3.24-3.2.x86_64.rpm kopano-dagent-8.3.3.24-3.2.x86_64.rpm kopano-dagent-debuginfo-8.3.3.24-3.2.x86_64.rpm kopano-debugsource-8.3.3.24-3.2.x86_64.rpm kopano-devel-8.3.3.24-3.2.x86_64.rpm kopano-gateway-8.3.3.24-3.2.x86_64.rpm kopano-gateway-debuginfo-8.3.3.24-3.2.x86_64.rpm kopano-ical-8.3.3.24-3.2.x86_64.rpm kopano-ical-debuginfo-8.3.3.24-3.2.x86_64.rpm kopano-lang-8.3.3.24-3.2.x86_64.rpm kopano-migration-imap-8.3.3.24-3.2.noarch.rpm kopano-migration-pst-8.3.3.24-3.2.x86_64.rpm kopano-monitor-8.3.3.24-3.2.x86_64.rpm kopano-monitor-debuginfo-8.3.3.24-3.2.x86_64.rpm kopano-presence-8.3.3.24-3.2.x86_64.rpm kopano-search-8.3.3.24-3.2.x86_64.rpm kopano-server-8.3.3.24-3.2.x86_64.rpm kopano-server-debuginfo-8.3.3.24-3.2.x86_64.rpm kopano-server-packages-8.3.3.24-3.2.x86_64.rpm kopano-spooler-8.3.3.24-3.2.x86_64.rpm kopano-spooler-debuginfo-8.3.3.24-3.2.x86_64.rpm kopano-utils-8.3.3.24-3.2.x86_64.rpm kopano-utils-debuginfo-8.3.3.24-3.2.x86_64.rpm libkcarchiver0-8.3.3.24-3.2.x86_64.rpm libkcarchiver0-debuginfo-8.3.3.24-3.2.x86_64.rpm libkcarchivercore0-8.3.3.24-3.2.x86_64.rpm libkcarchivercore0-debuginfo-8.3.3.24-3.2.x86_64.rpm libkcfreebusy0-8.3.3.24-3.2.x86_64.rpm libkcfreebusy0-debuginfo-8.3.3.24-3.2.x86_64.rpm libkchl0-8.3.3.24-3.2.x86_64.rpm libkchl0-debuginfo-8.3.3.24-3.2.x86_64.rpm libkcicalmapi0-8.3.3.24-3.2.x86_64.rpm libkcicalmapi0-debuginfo-8.3.3.24-3.2.x86_64.rpm libkcinetmapi0-8.3.3.24-3.2.x86_64.rpm libkcinetmapi0-debuginfo-8.3.3.24-3.2.x86_64.rpm libkcmapi0-8.3.3.24-3.2.x86_64.rpm libkcmapi0-debuginfo-8.3.3.24-3.2.x86_64.rpm libkcserver0-8.3.3.24-3.2.x86_64.rpm libkcserver0-debuginfo-8.3.3.24-3.2.x86_64.rpm libkcsoap0-8.3.3.24-3.2.x86_64.rpm libkcsoap0-debuginfo-8.3.3.24-3.2.x86_64.rpm libkcssl0-8.3.3.24-3.2.x86_64.rpm libkcssl0-debuginfo-8.3.3.24-3.2.x86_64.rpm libkcsync0-8.3.3.24-3.2.x86_64.rpm libkcsync0-debuginfo-8.3.3.24-3.2.x86_64.rpm libkcutil0-8.3.3.24-3.2.x86_64.rpm libkcutil0-debuginfo-8.3.3.24-3.2.x86_64.rpm libmapi1-8.3.3.24-3.2.x86_64.rpm libmapi1-debuginfo-8.3.3.24-3.2.x86_64.rpm php-mapi-8.3.3.24-3.2.x86_64.rpm php-mapi-debuginfo-8.3.3.24-3.2.x86_64.rpm python-kopano-8.3.3.24-3.2.x86_64.rpm python-mapi-8.3.3.24-3.2.x86_64.rpm python-mapi-debuginfo-8.3.3.24-3.2.x86_64.rpm libs3-4-4.1.git257-5.1.x86_64.rpm libs3-4-debuginfo-4.1.git257-5.1.x86_64.rpm libs3-debugsource-4.1.git257-5.1.x86_64.rpm libs3-devel-4.1.git257-5.1.x86_64.rpm libs3-tools-4.1.git257-5.1.x86_64.rpm libs3-tools-debuginfo-4.1.git257-5.1.x86_64.rpm openSUSE-2017-1049 low openSUSE Leap 42.3 Update This update for release-notes-openSUSE contains the following changes: - Update translations - Add note about deprecated packages - Add note about GCC 6 package version (boo#1048692) - Add note about MP3 support in the default repo - Add note about LibreOffice and Type-1 fonts (boo#1048660) - Mention libatlas3 under removed packages - Update description about kernel graphics (boo#1050519) release-notes-openSUSE-42.3.20170911-6.1.noarch.rpm release-notes-openSUSE-42.3.20170911-6.1.src.rpm openSUSE-2017-977 important openSUSE Leap 42.3 Update This update for procps fixes the following issues: - Fix a regression introduced in a previous update that would result in sysctl dying with a SIGSEGV error (bsc#1053409). This update was imported from the SUSE:SLE-12:Update update project. libprocps3-3.3.9-17.1.i586.rpm libprocps3-debuginfo-3.3.9-17.1.i586.rpm procps-3.3.9-17.1.i586.rpm procps-3.3.9-17.1.src.rpm procps-debuginfo-3.3.9-17.1.i586.rpm procps-debugsource-3.3.9-17.1.i586.rpm procps-devel-3.3.9-17.1.i586.rpm libprocps3-3.3.9-17.1.x86_64.rpm libprocps3-debuginfo-3.3.9-17.1.x86_64.rpm procps-3.3.9-17.1.x86_64.rpm procps-debuginfo-3.3.9-17.1.x86_64.rpm procps-debugsource-3.3.9-17.1.x86_64.rpm procps-devel-3.3.9-17.1.x86_64.rpm openSUSE-2017-973 important openSUSE Leap 42.3 Update This update for openvswitch fixes the following issues: - CVE-2017-9263: OpenFlow role status message can cause a call to abort() leading to application crash (bsc#1041470) - CVE-2017-9265: Buffer over-read while parsing message could lead to crash or maybe arbitrary code execution (bsc#1041447) - Do not restart the ovs-vswitchd and ovsdb-server services on package updates (bsc#1002734) - Do not restart the ovs-vswitchd, ovsdb-server and openvswitch services on package removals. This facilitates potential future package moves but also preserves connectivity when the package is removed (bsc#1050896) This update was imported from the SUSE:SLE-12-SP3:Update update project. openvswitch-2.7.0-4.1.src.rpm openvswitch-2.7.0-4.1.x86_64.rpm openvswitch-debuginfo-2.7.0-4.1.x86_64.rpm openvswitch-debugsource-2.7.0-4.1.x86_64.rpm openvswitch-devel-2.7.0-4.1.x86_64.rpm openvswitch-ovn-central-2.7.0-4.1.x86_64.rpm openvswitch-ovn-central-debuginfo-2.7.0-4.1.x86_64.rpm openvswitch-ovn-common-2.7.0-4.1.x86_64.rpm openvswitch-ovn-common-debuginfo-2.7.0-4.1.x86_64.rpm openvswitch-ovn-docker-2.7.0-4.1.x86_64.rpm openvswitch-ovn-host-2.7.0-4.1.x86_64.rpm openvswitch-ovn-host-debuginfo-2.7.0-4.1.x86_64.rpm openvswitch-ovn-vtep-2.7.0-4.1.x86_64.rpm openvswitch-ovn-vtep-debuginfo-2.7.0-4.1.x86_64.rpm openvswitch-pki-2.7.0-4.1.x86_64.rpm openvswitch-test-2.7.0-4.1.x86_64.rpm openvswitch-test-debuginfo-2.7.0-4.1.x86_64.rpm openvswitch-vtep-2.7.0-4.1.x86_64.rpm openvswitch-vtep-debuginfo-2.7.0-4.1.x86_64.rpm python-openvswitch-2.7.0-4.1.x86_64.rpm python-openvswitch-test-2.7.0-4.1.x86_64.rpm openSUSE-2017-978 low openSUSE Leap 42.3 Update This update for lua51 provides the following fixes: - Add Lua(API) and Lua(devel) symbols to fix building of lua51-luasocket. (bsc#1051626) This update was imported from the SUSE:SLE-12:Update update project. liblua5_1-32bit-5.1.5-16.1.x86_64.rpm liblua5_1-5.1.5-16.1.i586.rpm liblua5_1-debuginfo-32bit-5.1.5-16.1.x86_64.rpm liblua5_1-debuginfo-5.1.5-16.1.i586.rpm lua51-5.1.5-16.1.i586.rpm lua51-5.1.5-16.1.src.rpm lua51-debuginfo-5.1.5-16.1.i586.rpm lua51-debugsource-5.1.5-16.1.i586.rpm lua51-devel-5.1.5-16.1.i586.rpm lua51-doc-5.1.5-16.1.noarch.rpm liblua5_1-5.1.5-16.1.x86_64.rpm liblua5_1-debuginfo-5.1.5-16.1.x86_64.rpm lua51-5.1.5-16.1.x86_64.rpm lua51-debuginfo-5.1.5-16.1.x86_64.rpm lua51-debugsource-5.1.5-16.1.x86_64.rpm lua51-devel-5.1.5-16.1.x86_64.rpm openSUSE-2017-974 low openSUSE Leap 42.3 Update This update for gnome-shell provides the following fixes: - Fix not intuitive login screen for root user (bsc#1047262) - Disable session selection button when it's hidden in user switch dialog (bsc#1034584, bsc#1034827) - Fix app windows overlay app list in overview screen (bsc#1008539) - Properly handle failures when loading extensions (bsc#1036494, CVE-2017-8288) This update was imported from the SUSE:SLE-12-SP2:Update update project. gnome-shell-3.20.4-13.1.src.rpm gnome-shell-3.20.4-13.1.x86_64.rpm gnome-shell-browser-plugin-3.20.4-13.1.x86_64.rpm gnome-shell-browser-plugin-debuginfo-3.20.4-13.1.x86_64.rpm gnome-shell-calendar-3.20.4-13.1.x86_64.rpm gnome-shell-calendar-debuginfo-3.20.4-13.1.x86_64.rpm gnome-shell-debuginfo-3.20.4-13.1.x86_64.rpm gnome-shell-debugsource-3.20.4-13.1.x86_64.rpm gnome-shell-devel-3.20.4-13.1.x86_64.rpm gnome-shell-lang-3.20.4-13.1.noarch.rpm openSUSE-2017-983 low openSUSE Leap 42.3 Update This update for SuSEfirewall2 provides the following fixes: - Make SuSEfirewall2 check for existing configuration in more sysctl.d style directories to allow packages and the user to create overrides easily (bsc#1044523) - Add support for customizing the sysctl paths to be scanned for existing configuration by changing the FW_SYSCTL_PATHS configuration variable (bsc#906136) - Correct the initialization order between SuSEfirewall2 and NFS components to make sure NFS server ports are correctly opened when both services are enabled in systemd, and to fix NFS clients not receiving callbacks from the server when started before SuSEfirewall2. (bsc#946325, bsc#963740) This update was imported from the SUSE:SLE-12-SP3:Update update project. SuSEfirewall2-3.6.312.333-4.1.noarch.rpm SuSEfirewall2-3.6.312.333-4.1.src.rpm openSUSE-2017-979 low openSUSE Leap 42.3 Update This update for python-rpm-macros fixes the following issues: - Fix skip_python2 in environment where python2 is not actually present. - Introduce smarter buildset support. - Fix %python_files on non-standard build sets. - Introduce %python_for_executables in favor of magically taking "last python in %pythons". - Fix %license tag handling. This update was imported from the SUSE:SLE-12:Update update project. python-rpm-macros-2017.06.29.107ac7a-3.1.noarch.rpm python-rpm-macros-2017.06.29.107ac7a-3.1.src.rpm openSUSE-2017-980 important openSUSE Leap 42.3 Update This update for exim fixes the following issues: Changes in exim: - specify users with ref:mail, to make them dynamic. (boo#1046971) - CVE-2017-1000369: Fixed memory leaks that could be exploited to "stack crash" local privilege escalation (boo#1044692) - Require user(mail) group(mail) to meet new users handling in TW. - Prerequire permissions (fixes rpmlint). - conditionally disable DANE on SuSE versions with OpenSSL < 1.0 - CVE-2016-1531: when installed setuid root, allows local users to gain privileges via the perl_startup argument. - CVE-2016-9963: DKIM information leakage (boo#1015930) - Makefile tuning: + add sqlite support + disable WITH_OLD_DEMIME + enable AUTH_CYRUS_SASL + enable AUTH_TLS + enable SYSLOG_LONG_LINES + enable SUPPORT_PAM + MAX_NAMED_LIST=64 + enable EXPERIMENTAL_DMARC + enable EXPERIMENTAL_EVENT + enable EXPERIMENTAL_PROXY + enable EXPERIMENTAL_CERTNAMES + enable EXPERIMENTAL_DSN + enable EXPERIMENTAL_DANE + enable EXPERIMENTAL_SOCKS + enable EXPERIMENTAL_INTERNATIONAL exim-4.86.2-14.1.src.rpm exim-4.86.2-14.1.x86_64.rpm exim-debuginfo-4.86.2-14.1.x86_64.rpm exim-debugsource-4.86.2-14.1.x86_64.rpm eximon-4.86.2-14.1.x86_64.rpm eximon-debuginfo-4.86.2-14.1.x86_64.rpm eximstats-html-4.86.2-14.1.x86_64.rpm openSUSE-2017-970 low openSUSE Leap 42.3 Update This update provides google-cloud-sdk 140.0.0, which brings many new features, enhancements and bug fixes. For a comprehensive list of changes, please refer to the package's change log. This update was imported from the SUSE:SLE-12:Update update project. google-cloud-sdk-140.0.0-10.1.noarch.rpm google-cloud-sdk-140.0.0-10.1.src.rpm openSUSE-2017-992 important openSUSE Leap 42.3 Update This update for freerdp fixes the following issues: - CVE-2017-2834: Out-of-bounds write in license_recv() (bsc#1050714) - CVE-2017-2835: Out-of-bounds write in rdp_recv_tpkt_pdu (bsc#1050712) - CVE-2017-2836: Rdp Client Read Server Proprietary Certificate Denial of Service (bsc#1050699) - CVE-2017-2837: Client GCC Read Server Security Data DoS (bsc#1050704) - CVE-2017-2838: Client License Read Product Info Denial of Service Vulnerability (bsc#1050708) - CVE-2017-2839: Client License Read Challenge Packet Denial of Service (bsc#1050711) This update was imported from the SUSE:SLE-12-SP2:Update update project. freerdp-2.0.0~git.1463131968.4e66df7-6.1.i586.rpm freerdp-2.0.0~git.1463131968.4e66df7-6.1.src.rpm freerdp-debuginfo-2.0.0~git.1463131968.4e66df7-6.1.i586.rpm freerdp-debugsource-2.0.0~git.1463131968.4e66df7-6.1.i586.rpm freerdp-devel-2.0.0~git.1463131968.4e66df7-6.1.i586.rpm libfreerdp2-2.0.0~git.1463131968.4e66df7-6.1.i586.rpm libfreerdp2-debuginfo-2.0.0~git.1463131968.4e66df7-6.1.i586.rpm freerdp-2.0.0~git.1463131968.4e66df7-6.1.x86_64.rpm freerdp-debuginfo-2.0.0~git.1463131968.4e66df7-6.1.x86_64.rpm freerdp-debugsource-2.0.0~git.1463131968.4e66df7-6.1.x86_64.rpm freerdp-devel-2.0.0~git.1463131968.4e66df7-6.1.x86_64.rpm libfreerdp2-2.0.0~git.1463131968.4e66df7-6.1.x86_64.rpm libfreerdp2-debuginfo-2.0.0~git.1463131968.4e66df7-6.1.x86_64.rpm openSUSE-2017-985 important openSUSE Leap 42.3 Update Postgresql93 was updated to 9.3.18 to fix the following issues: * CVE-2017-7547: Further restrict visibility of pg_user_mappings.umoptions, to protect passwords stored as user mapping options. (bsc#1051685) * CVE-2017-7546: Disallow empty passwords in all password-based authentication methods. (bsc#1051684) * CVE-2017-7548: lo_put() function ignores ACLs. (bsc#1053259) The changelog for the release is here: https://www.postgresql.org/docs/9.3/static/release-9-3-18.html This update was imported from the SUSE:SLE-12:Update update project. postgresql93-devel-9.3.18-8.1.i586.rpm postgresql93-devel-debuginfo-9.3.18-8.1.i586.rpm postgresql93-libs-9.3.18-8.1.src.rpm postgresql93-libs-debugsource-9.3.18-8.1.i586.rpm postgresql93-devel-9.3.18-8.1.x86_64.rpm postgresql93-devel-debuginfo-9.3.18-8.1.x86_64.rpm postgresql93-libs-debugsource-9.3.18-8.1.x86_64.rpm postgresql93-9.3.18-8.1.src.rpm postgresql93-9.3.18-8.1.x86_64.rpm postgresql93-contrib-9.3.18-8.1.x86_64.rpm postgresql93-contrib-debuginfo-9.3.18-8.1.x86_64.rpm postgresql93-debuginfo-9.3.18-8.1.x86_64.rpm postgresql93-debugsource-9.3.18-8.1.x86_64.rpm postgresql93-docs-9.3.18-8.1.noarch.rpm postgresql93-plperl-9.3.18-8.1.x86_64.rpm postgresql93-plperl-debuginfo-9.3.18-8.1.x86_64.rpm postgresql93-plpython-9.3.18-8.1.x86_64.rpm postgresql93-plpython-debuginfo-9.3.18-8.1.x86_64.rpm postgresql93-pltcl-9.3.18-8.1.x86_64.rpm postgresql93-pltcl-debuginfo-9.3.18-8.1.x86_64.rpm postgresql93-server-9.3.18-8.1.x86_64.rpm postgresql93-server-debuginfo-9.3.18-8.1.x86_64.rpm postgresql93-test-9.3.18-8.1.x86_64.rpm openSUSE-2017-987 important openSUSE Leap 42.3 Update This update provides Samba 4.6.7, which fixes the following issues: - CVE-2017-11103: Metadata were being taken from the unauthenticated plaintext (the Ticket) rather than the authenticated and encrypted KDC response. (bsc#1048278) - Fix cephwrap_chdir(). (bsc#1048790) - Fix ctdb logs to /var/log/log.ctdb instead of /var/log/ctdb. (bsc#1048339) - Fix inconsistent ctdb socket path. (bsc#1048352) - Fix non-admin cephx authentication. (bsc#1048387) - CTDB cannot start when there is no persistent database. (bsc#1052577) The CTDB resource agent was also fixed to not fail when the database is empty. This update was imported from the SUSE:SLE-12-SP3:Update update project. ldirectord-4.0.1+git.1495055229.643177f1-3.1.i586.rpm monitoring-plugins-metadata-4.0.1+git.1495055229.643177f1-3.1.noarch.rpm resource-agents-4.0.1+git.1495055229.643177f1-3.1.i586.rpm resource-agents-4.0.1+git.1495055229.643177f1-3.1.src.rpm resource-agents-debuginfo-4.0.1+git.1495055229.643177f1-3.1.i586.rpm resource-agents-debugsource-4.0.1+git.1495055229.643177f1-3.1.i586.rpm ctdb-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm ctdb-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm ctdb-tests-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm ctdb-tests-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libdcerpc-binding0-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libdcerpc-binding0-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libdcerpc-binding0-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libdcerpc-binding0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libdcerpc-devel-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libdcerpc-samr-devel-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libdcerpc-samr0-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libdcerpc-samr0-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libdcerpc-samr0-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libdcerpc-samr0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libdcerpc0-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libdcerpc0-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libdcerpc0-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libdcerpc0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libndr-devel-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libndr-krb5pac-devel-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libndr-krb5pac0-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libndr-krb5pac0-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libndr-krb5pac0-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libndr-krb5pac0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libndr-nbt-devel-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libndr-nbt0-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libndr-nbt0-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libndr-nbt0-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libndr-nbt0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libndr-standard-devel-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libndr-standard0-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libndr-standard0-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libndr-standard0-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libndr-standard0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libndr0-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libndr0-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libndr0-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libndr0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libnetapi-devel-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libnetapi0-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libnetapi0-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libnetapi0-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libnetapi0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamba-credentials-devel-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamba-credentials0-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-credentials0-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamba-credentials0-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-credentials0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamba-errors-devel-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamba-errors0-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-errors0-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamba-errors0-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-errors0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamba-hostconfig-devel-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamba-hostconfig0-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-hostconfig0-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamba-hostconfig0-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-hostconfig0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamba-passdb-devel-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamba-passdb0-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-passdb0-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamba-passdb0-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-passdb0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamba-policy-devel-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamba-policy0-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-policy0-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamba-policy0-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-policy0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamba-util-devel-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamba-util0-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-util0-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamba-util0-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-util0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamdb-devel-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamdb0-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamdb0-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsamdb0-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamdb0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsmbclient-devel-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsmbclient0-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsmbclient0-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsmbclient0-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsmbclient0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsmbconf-devel-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsmbconf0-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsmbconf0-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsmbconf0-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsmbconf0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsmbldap-devel-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsmbldap0-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsmbldap0-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libsmbldap0-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsmbldap0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libtevent-util-devel-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libtevent-util0-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libtevent-util0-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libtevent-util0-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libtevent-util0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libwbclient-devel-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libwbclient0-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libwbclient0-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm libwbclient0-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libwbclient0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm samba-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm samba-4.6.7+git.38.90b2cdb4f22-3.1.src.rpm samba-client-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-client-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm samba-client-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-client-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm samba-core-devel-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm samba-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm samba-debugsource-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm samba-doc-4.6.7+git.38.90b2cdb4f22-3.1.noarch.rpm samba-libs-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-libs-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm samba-libs-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-libs-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm samba-pidl-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm samba-python-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm samba-python-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm samba-test-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm samba-test-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm samba-winbind-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-winbind-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm samba-winbind-debuginfo-32bit-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-winbind-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.i586.rpm ldirectord-4.0.1+git.1495055229.643177f1-3.1.x86_64.rpm resource-agents-4.0.1+git.1495055229.643177f1-3.1.x86_64.rpm resource-agents-debuginfo-4.0.1+git.1495055229.643177f1-3.1.x86_64.rpm resource-agents-debugsource-4.0.1+git.1495055229.643177f1-3.1.x86_64.rpm ctdb-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm ctdb-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm ctdb-tests-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm ctdb-tests-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libdcerpc-binding0-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libdcerpc-binding0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libdcerpc-devel-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libdcerpc-samr-devel-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libdcerpc-samr0-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libdcerpc-samr0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libdcerpc0-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libdcerpc0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libndr-devel-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libndr-krb5pac-devel-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libndr-krb5pac0-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libndr-krb5pac0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libndr-nbt-devel-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libndr-nbt0-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libndr-nbt0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libndr-standard-devel-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libndr-standard0-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libndr-standard0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libndr0-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libndr0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libnetapi-devel-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libnetapi0-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libnetapi0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-credentials-devel-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-credentials0-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-credentials0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-errors-devel-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-errors0-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-errors0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-hostconfig-devel-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-hostconfig0-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-hostconfig0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-passdb-devel-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-passdb0-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-passdb0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-policy-devel-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-policy0-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-policy0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-util-devel-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-util0-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamba-util0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamdb-devel-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamdb0-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsamdb0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsmbclient-devel-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsmbclient0-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsmbclient0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsmbconf-devel-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsmbconf0-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsmbconf0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsmbldap-devel-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsmbldap0-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libsmbldap0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libtevent-util-devel-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libtevent-util0-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libtevent-util0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libwbclient-devel-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libwbclient0-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm libwbclient0-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-ceph-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-ceph-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-client-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-client-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-core-devel-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-debugsource-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-libs-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-libs-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-pidl-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-python-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-python-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-test-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-test-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-winbind-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm samba-winbind-debuginfo-4.6.7+git.38.90b2cdb4f22-3.1.x86_64.rpm openSUSE-2017-986 moderate openSUSE Leap 42.3 Update This update for git-annex fixes the following issues: - CVE-2017-12976: Disallow hostname starting with a dash, which would get passed to ssh and be treated an option. This could be used by an attacker who provides a crafted repository url to cause the victim to execute arbitrary code via -oProxyCommand. (boo#1054653). git-annex-6.20170818-3.1.src.rpm git-annex-6.20170818-3.1.x86_64.rpm git-annex-bash-completion-6.20170818-3.1.x86_64.rpm openSUSE-2017-1012 moderate openSUSE Leap 42.3 Update This update for cobbler and hwdata fix the following issues: cobbler: - Fix missing arguments and location for Xen. (bsc#1048183) hwdata: - Update to version 0.301. (bsc#1053415) This update was imported from the SUSE:SLE-12:Update update project. hwdata-0.301-6.1.noarch.rpm hwdata-0.301-6.1.src.rpm cobbler-2.6.6-8.2.noarch.rpm cobbler-2.6.6-8.2.src.rpm cobbler-tests-2.6.6-8.2.noarch.rpm cobbler-web-2.6.6-8.2.noarch.rpm koan-2.6.6-8.2.noarch.rpm openSUSE-2017-1089 moderate openSUSE Leap 42.3 Update This update for gnuhealth, trytond fixes the following issues: Changes in gnuhealth: - version 3.2.3 Fix bug #52038: Field history is repeated in the tree view of the prescription line - Documentation adapted Changes in trytond: - package documentation updated Changes in trytond_company: - bugfix update to 4.2.1 Changes in trytond_currency: - bugfix update to 4.2.1 changes in trytond_purchase: - bugfix update to 4.2.2 gnuhealth-3.2.3-24.1.noarch.rpm gnuhealth-3.2.3-24.1.src.rpm trytond_company-4.2.1-3.1.noarch.rpm trytond_company-4.2.1-3.1.src.rpm trytond_currency-4.2.1-3.1.noarch.rpm trytond_currency-4.2.1-3.1.src.rpm trytond_purchase-4.2.2-3.1.noarch.rpm trytond_purchase-4.2.2-3.1.src.rpm trytond-4.2.6-18.1.noarch.rpm trytond-4.2.6-18.1.src.rpm openSUSE-2017-1034 moderate openSUSE Leap 42.3 Update This update for ceph fixes the following issues: * fs: Invalid error code returned by MDS is causing a kernel client WARNING (issue#19205, pr#13831, boo#1028109) * rbd: systemctl stop rbdmap unmaps all rbds and not just the ones in /etc/ceph/rbdmap (boo#1024691) * doc: Improvements to crushtool manpage (boo#1033786) * rgw: Use decoded URI when verifying TempURL (boo#1015371) * tools: ceph-disk: do not setup_statedir on trigger (boo#1025643) + Async Messenger patches from PTF boo#997082 * DispatchQueue: Move from msg/simple to msg * DispatchQueue: move dispatch_throtter from SimpleMessenger to DispatchQueue * AsyncMessenger: introduce DispatchQueue to separate nonfast message * AsyncConnection: make local message deliver via DispatchQueue * AsyncConnection: change all exception deliver to DispatchQueue * AsyncConnection: add DispathQueue throttle * DispatchQueue: add name to separte different instance * DispatchQueue: remove pipe words * AsyncConnection: release dispatch throttle with fast dispatch message * AsyncConnection: continue to read when meeting EINTR * AsyncConnection: need to prepare message when features mismatch * AsyncConnection: fix delay state using dispatch_queue * msg/simple: add ms_handle_refused callback * OSD: Implement ms_handle_refused * messages/MOSDFailure.h: distinguish between timeout and immediate failure * msg/async: implement ECONNREFUSED detection * test/osd: add test for fast mark down functionality - Note that boo#970642 is fixed by commit fc3e6567416769f83d7b258f8dc852f96f2adeaf "doc: ceph-deploy man: remove references to mds destroy. Not implemented" which is included in this update - Update to version 12.1.2+git.1501865907.88dc8cdc9d: + latest upstream master (7350fa65d79b5f0ace427e609565f07be35cfe62) * os/bluestore: allow multiple DeferredBatches in flight at once (pr#16769, issue#20295, boo#1043399) - Update to version 12.1.2+git.1501790037.82d6a9c37a: + osd: move CMPEXT response munging into completion function (boo#1047244) - Update to version 12.1.2+git.1501684697.aa6b0153ef: + upstream luminous v12.1.2 release candidate + latest upstream master (e27a78c9ed3984b54a312ced3ad67fcc8f464fc0) * mon: add mgr metdata commands, and overall 'versions' command for all daemon versions (boo#1050063, pr#16460) - Update to version 12.1.1+git.1501231943.67577225bc + Notable changes: * rgw_file: properly & |'d flags (boo#1047977) - Update to version 12.1.0+git.1500295948.39d2e5f424: + spec file: * socat build dependency only for make check * fix typo WTIH_BABELTRACE - Update to version 12.1.0+git.1500284183.1ed97736ab: + Spec file changes: * bump epoch (not relevant for SUSE) * add socat buildrequires * libcephfs2 now obsoletes libcephfs1 (boo#1047020) * HAVE_BABELTRACE option renamed to WITH_BABELTRACE * fix a regression in ceph-base %postun scriptlet + Selected other changes: * Revert "msg/async: increase worker reference with local listen table enabled backend" * build: build erasure-code isa lib without versions * ceph-disk/ceph_disk/main.py: Replace ST_ISBLK() test by is_diskdevice() * ceph.in: filter out audit from ceph -w * common,config: OPT_FLOAT and OPT_DOUBLE output format in config show * common/Timer: do not add event if already shutdown * compressor/zlib: remove g_ceph_context/g_conf from compressor plugin * core: make the conversion from wire error to host OS work * core:" Stringify needs access to << before reference" src/include/stringify.h * crush/CrushWrapper: make get_immediate_parent[_id] ignore per-class shadow hierarchy * doc/mgr/dashboard: update dashboard docs to reflect new defaults * doc/rados.8: add offset option for put command * doc: fix link for ceph-mgr cephx authorization * doc: update intro, quick start docs * isa-l: update isa-l to v2.18 * librbd: fail IO request when exclusive lock cannot be obtained * mgr,librados: service map * mgr,mon: debug init and mgrdigest subscriptions * mgr,mon: enable/disable mgr modules via 'ceph mgr module ...' commands * mgr/ClusterState: do not mangle PGMap outside of Incremental * mgr/restful: bind to :: and update docs * mgr: Zabbix monitoring module * mon,crush: create crush rules using device classes for replicated and ec pools via cli * mon/MgrStatMonitor: do not crash on luminous dev version upgrades * mon/MonClient: respect the priority in SRV RR * mon/Monitor: recreate mon session if features changed * mon/OSDMonitor: do not allow crush device classes until luminous * mon/OSDMonitor: guard 'osd crush set-device-class' * mon/mgr: add detail error infomation * mon: Fix status output warning for mon_warn_osd_usage_min_max_delta * mon: add support public_bind_addr option * mon: collect mon metdata as part of the election * mon: debug session feature tracking * mon: do crushtool test with fork and timeout, but w/o exec of crushtool * mon: fix hang on deprecated/removed 'pg set_\*full_ratio' commands * mon: include device class in tree view; hide shadow hierarchy * mon: maintain the "cluster" PerfCounters when using ceph-mgr * mon: revamp health check/warning system * msg/async: increase worker reference with local listen table enabled backend * msg/async: make recv_stamp more precise * msg: QueueStrategy::wait() joins all threads * msg: make listen backlog an option, increase from 128 to 512 * os/blueStore: Failure retry for opening file * os/bluestore/BlueFS: clean up log_writer aios from compaction * os/bluestore/BlueFS: clear current log entrys before dump all fnode * os/bluestore/KernelDevice: batch aio submit * os/bluestore: Make BitmapFreelistManager kv itereator short lived * os/bluestore: cap rocksdb cache size * os/bluestore: clear up redundant size assignment in KernelDevice * os/bluestore: differ default cache size for hdd/ssd backends * os/bluestore: fix deferred_aio deadlock * os/bluestore: move object exist in assign nid * os/bluestore: only submit deferred if there is any * os/bluestore: reduce some overhead for _do_clone_range() and _do_remove() * os/bluestore: use bufferlist functions whenever possible * os/filestore/FileJournal: FileJournal::open() close journal file before return error * os/filestore/HashIndex: randomize split threshold by a configurable amount * os/filestore: call committed_thru when no journal entries are replayed * os/filestore: do not free event if not added * os/filestore: queue ondisk completion before apply work * os/filestore: require experimental flag for btrfs * osd/OSD: auto class on osd start up * osd/PrimaryLogPG solve cache tier osd high memory consumption * osd/ReplicatedBackend: reset thread heartbeat after every omap entry * osd/filestore: Revert "os/filestore: move ondisk in front * osd: Check for and automatically repair object info soid during scrub * osd: Preserve OSDOp information for historic ops * osd: check queue_transaction return value * osd: clear_queued_recovery() in on_shutdown() * osd: compact osd feature * pybind/mgr/dashboard: bind to :: by default * pybind/mgr/dashboard: fix get kernel_version error * rbd-mirror: ignore permission errors on rbd_mirroring object * rbd: do not attempt to load key if auth is disabled * rgw: fix compilation with cryptopp * rgw,test: fix rgw placement rule pool config option * rgw/rgw_frontend.h: Return negative value for empty uid in RGWLoadGenFrontend::init() * rgw/rgw_rados: Remove duplicate calls in RGWRados::finalize() * rgw: /info claims we do support Swift's accounts ACLs * rgw: Correcting the condition in ceph_assert while parsing an AWS Principal * rgw: Do not fetch bucket stats by default upon bucket listing * rgw: Fix a bug that multipart upload may exceed the quota * rgw: Initialize pointer fields * rgw: fix leaks with incomplete multiparts * rgw: fix memory leak in copy_obj_to_remote_dest * rgw: fix not initialized vars which cause rgw crash with ec data pool * rgw: fix radosgw-admin data sync run crash * rgw: fix s3 object uploads with chunked transfers and v4 signatures * rgw: fix the subdir without slash of s3 website url * rgw: fix zone did't update realm_id when added to zonegroup * rgw: log_meta only for more than one zone * rgw: rgw_file skip policy read for virtual components * rgw: using RGW_OBJ_NS_MULTIPART in check_bad_index_multipart * rgw: verify md5 in post obj * rgw_file: add compression interop to RGW NFS * rgw：fix s3 aws v2 signature priority between header['X-Amz-Date'] and header['Date'] * vstart.sh: bind restful, dashboard to ::, not 127.0.0.1 * vstart: add --rgw_compression to set rgw compression plugin * vstart: allow to start multiple radosgw when RGW=x - Update to version 12.1.0+git.1499090920.2c11b88d14: + With this update, Ceph no longer autocreates a pool called "rbd" with id 0 Deployment tools must take this into account! + systemd: Add explicit Before=ceph.target (boo#1042973) - Update to version 12.1.4+git.1502953626.155adb5253: + ceph.spec: provide libxio 1.7 and obsolete libxio <= 1.7 - Update to version 12.1.4+git.1502878199.4183317204: + ceph.spec: obsolete libxio (Note to reviewer: libxio was only ever used by Ceph (for an experimental IB/RDMA feature), it was never submitted to Factory, and its functionality has been integrated into Ceph in a different form. For all practical purposes, libxio has been replaced by Ceph itself.) - Update to version 12.1.4+git.1502871088.edf82a59df: + latest upstream luminous (a5f84b37668fc8e03165aaf5cbb380c78e4deba4) * increment upstream version number to 12.1.4 - Update to version 12.1.3+git.1502698163.45fc586a51: + latest upstream luminous (6808af486d3bdce966232810004648502c967b13) * increment upstream version number to 12.1.3 - Update to version 12.1.2+git.1501914637.59afe41c49: + spec file * ceph-volume added to ceph-base RPM, where it co-exists with ceph-disk - Update to version 12.1.2+git.1501865907.88dc8cdc9d: + latest upstream master (7350fa65d79b5f0ace427e609565f07be35cfe62) * os/bluestore: allow multiple DeferredBatches in flight at once (pr#16769, issue#20295, boo#1043399) - Update to version 12.1.2+git.1501790037.82d6a9c37a: + osd: move CMPEXT response munging into completion function (boo#1047244) - Update to version 12.1.2+git.1501684697.aa6b0153ef: + upstream luminous v12.1.2 release candidate + latest upstream master (e27a78c9ed3984b54a312ced3ad67fcc8f464fc0) * mon: add mgr metdata commands, and overall 'versions' command for all daemon versions (boo#1050063, pr#16460) - Update to version 12.1.1+git.1501669490.04d0738487: + mon: extensible output format for health checks - Update to version 12.1.1+git.1501501507.6dd9e8fd8c: + update to latest upstream master (fa70335db25f2b661b329d5d8f37039b77f2d1ae) + spec file: * build/ops: rpm: Drop legacy libxio support (pr#16449) + Other notable changes: * osd: moved OpFinisher logic from OSDOp to OpContext (pr#16617) - Update to version 12.1.1+git.1501231943.67577225bc + Notable changes: * rgw_file: properly & |'d flags (boo#1047977) - Update to version 12.1.1+git.1500447879.e5aac115d7: + upstream 12.1.1 (release candidate) + Other notable changes: * build/ops: rpm: fix typo WTIH_BABELTRACE (pr#16366) * build/ops: rpm: put mgr python build dependencies in make_check bcond (pr#15940) * ceph-disk: support osd new (pr#15432) * ceph: allow '-' with -i and -o for stdin/stdout (pr#16359) * cls/rbd: trash_list should be iterable (pr#16372) * doc: update quick start to add a note for mgr create command for luminous+ builds (pr#16350) * libradosstriper: fix format injection vulnerability (pr#15674) * mgr/dashboard: add OSD list view (pr#16373) * mon, osd: misc fixes (pr#16283) * mon/MDSMonitor: fix segv when multiple MDSs raise same alert (pr#16302) * mon/MgrMonitor: fix standby addition to mgrmap (pr#16397) * mon/MgrMonitor: only induce mgr epoch shortly after mkfs (pr#16356) * mon: Fix output text and doc (pr#16367) * mon: add force-create-pg back (pr#16353) * mon: skip crush smoke test when running under valgrind (pr#16346) * os/bluestore: use reference to avoid string copy (pr#16364) * osd: combine conditional statements (pr#16391) * osd: restart boot process if waiting for luminous mons (pr#16341) * rgw: S3 lifecycle now supports expiration date (pr#15807) * rgw: acl grants num limit (pr#16291) * rgw: delete object in error path (pr#16324) * rgw: drop unused find_replacement() and some function docs (pr#16386) * rgw: fix err when copy object in bucket with specified placement rule (pr#15837) * rgw: fix potential null pointer dereference in rgw_admin (pr#15667) * rgw: raise debug level of RGWPostObj_ObjStore_S3::get_policy (pr#16203) * rgw: req xml params size limitation error msg (pr#16310) * rgw_file: add service map registration (pr#16251) * test,rgw: fix rgw placement rule pool config option (pr#16380) * test/fio: print all perfcounters rather than objectstore itself (pr#16339) - Update to version 12.1.0+git.1500295948.39d2e5f424: + spec file: * socat build dependency only for make check * fix typo WTIH_BABELTRACE - Update to version 12.1.0+git.1500284183.1ed97736ab: + Spec file changes: * bump epoch (not relevant for SUSE) * add socat buildrequires * libcephfs2 now obsoletes libcephfs1 (boo#1047020) * HAVE_BABELTRACE option renamed to WITH_BABELTRACE * fix a regression in ceph-base %postun scriptlet + Selected other changes: * Revert "msg/async: increase worker reference with local listen table enabled backend" * build: build erasure-code isa lib without versions * ceph-disk/ceph_disk/main.py: Replace ST_ISBLK() test by is_diskdevice() * ceph.in: filter out audit from ceph -w * common,config: OPT_FLOAT and OPT_DOUBLE output format in config show * common/Timer: do not add event if already shutdown * compressor/zlib: remove g_ceph_context/g_conf from compressor plugin * core: make the conversion from wire error to host OS work * core:" Stringify needs access to << before reference" src/include/stringify.h * crush/CrushWrapper: make get_immediate_parent[_id] ignore per-class shadow hierarchy * doc/mgr/dashboard: update dashboard docs to reflect new defaults * doc/rados.8: add offset option for put command * doc: fix link for ceph-mgr cephx authorization * doc: update intro, quick start docs * isa-l: update isa-l to v2.18 * librbd: fail IO request when exclusive lock cannot be obtained * mgr,librados: service map * mgr,mon: debug init and mgrdigest subscriptions * mgr,mon: enable/disable mgr modules via 'ceph mgr module ...' commands * mgr/ClusterState: do not mangle PGMap outside of Incremental * mgr/restful: bind to :: and update docs * mgr: Zabbix monitoring module * mon,crush: create crush rules using device classes for replicated and ec pools via cli * mon/MgrStatMonitor: do not crash on luminous dev version upgrades * mon/MonClient: respect the priority in SRV RR * mon/Monitor: recreate mon session if features changed * mon/OSDMonitor: do not allow crush device classes until luminous * mon/OSDMonitor: guard 'osd crush set-device-class' * mon/mgr: add detail error infomation * mon: Fix status output warning for mon_warn_osd_usage_min_max_delta * mon: add support public_bind_addr option * mon: collect mon metdata as part of the election * mon: debug session feature tracking * mon: do crushtool test with fork and timeout, but w/o exec of crushtool * mon: fix hang on deprecated/removed 'pg set_\*full_ratio' commands * mon: include device class in tree view; hide shadow hierarchy * mon: maintain the "cluster" PerfCounters when using ceph-mgr * mon: revamp health check/warning system * msg/async: increase worker reference with local listen table enabled backend * msg/async: make recv_stamp more precise * msg: QueueStrategy::wait() joins all threads * msg: make listen backlog an option, increase from 128 to 512 * os/blueStore: Failure retry for opening file * os/bluestore/BlueFS: clean up log_writer aios from compaction * os/bluestore/BlueFS: clear current log entrys before dump all fnode * os/bluestore/KernelDevice: batch aio submit * os/bluestore: Make BitmapFreelistManager kv itereator short lived * os/bluestore: cap rocksdb cache size * os/bluestore: clear up redundant size assignment in KernelDevice * os/bluestore: differ default cache size for hdd/ssd backends * os/bluestore: fix deferred_aio deadlock * os/bluestore: move object exist in assign nid * os/bluestore: only submit deferred if there is any * os/bluestore: reduce some overhead for _do_clone_range() and _do_remove() * os/bluestore: use bufferlist functions whenever possible * os/filestore/FileJournal: FileJournal::open() close journal file before return error * os/filestore/HashIndex: randomize split threshold by a configurable amount * os/filestore: call committed_thru when no journal entries are replayed * os/filestore: do not free event if not added * os/filestore: queue ondisk completion before apply work * os/filestore: require experimental flag for btrfs * osd/OSD: auto class on osd start up * osd/PrimaryLogPG solve cache tier osd high memory consumption * osd/ReplicatedBackend: reset thread heartbeat after every omap entry * osd/filestore: Revert "os/filestore: move ondisk in front * osd: Check for and automatically repair object info soid during scrub * osd: Preserve OSDOp information for historic ops * osd: check queue_transaction return value * osd: clear_queued_recovery() in on_shutdown() * osd: compact osd feature * pybind/mgr/dashboard: bind to :: by default * pybind/mgr/dashboard: fix get kernel_version error * rbd-mirror: ignore permission errors on rbd_mirroring object * rbd: do not attempt to load key if auth is disabled * rgw: fix compilation with cryptopp * rgw,test: fix rgw placement rule pool config option * rgw/rgw_frontend.h: Return negative value for empty uid in RGWLoadGenFrontend::init() * rgw/rgw_rados: Remove duplicate calls in RGWRados::finalize() * rgw: /info claims we do support Swift's accounts ACLs * rgw: Correcting the condition in ceph_assert while parsing an AWS Principal * rgw: Do not fetch bucket stats by default upon bucket listing * rgw: Fix a bug that multipart upload may exceed the quota * rgw: Initialize pointer fields * rgw: fix leaks with incomplete multiparts * rgw: fix memory leak in copy_obj_to_remote_dest * rgw: fix not initialized vars which cause rgw crash with ec data pool * rgw: fix radosgw-admin data sync run crash * rgw: fix s3 object uploads with chunked transfers and v4 signatures * rgw: fix the subdir without slash of s3 website url * rgw: fix zone did't update realm_id when added to zonegroup * rgw: log_meta only for more than one zone * rgw: rgw_file skip policy read for virtual components * rgw: using RGW_OBJ_NS_MULTIPART in check_bad_index_multipart * rgw: verify md5 in post obj * rgw_file: add compression interop to RGW NFS * rgw：fix s3 aws v2 signature priority between header['X-Amz-Date'] and header['Date'] * vstart.sh: bind restful, dashboard to ::, not 127.0.0.1 * vstart: add --rgw_compression to set rgw compression plugin * vstart: allow to start multiple radosgw when RGW=x - Update to version 12.1.0+git.1499090920.2c11b88d14: + With this update, Ceph no longer autocreates a pool called "rbd" with id 0 Deployment tools must take this into account! + systemd: Add explicit Before=ceph.target (boo#1042973) ceph-test-12.1.4+git.1502953626.155adb5253-3.3.src.rpm ceph-test-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-test-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-test-debugsource-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-12.1.4+git.1502953626.155adb5253-3.3.src.rpm ceph-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-base-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-base-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-common-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-common-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-debugsource-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-fuse-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-fuse-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-mds-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-mds-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-mgr-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-mgr-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-mon-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-mon-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-osd-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-osd-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-radosgw-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-radosgw-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm ceph-resource-agents-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm libcephfs-devel-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm libcephfs2-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm libcephfs2-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm librados-devel-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm librados-devel-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm librados2-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm librados2-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm libradosstriper-devel-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm libradosstriper1-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm libradosstriper1-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm librbd-devel-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm librbd1-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm librbd1-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm librgw-devel-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm librgw2-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm librgw2-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm python-ceph-compat-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm python-cephfs-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm python-cephfs-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm python-rados-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm python-rados-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm python-rbd-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm python-rbd-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm python-rgw-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm python-rgw-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm python3-ceph-argparse-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm python3-cephfs-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm python3-cephfs-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm python3-rados-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm python3-rados-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm python3-rbd-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm python3-rbd-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm python3-rgw-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm python3-rgw-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm rados-objclass-devel-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm rbd-fuse-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm rbd-fuse-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm rbd-mirror-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm rbd-mirror-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm rbd-nbd-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm rbd-nbd-debuginfo-12.1.4+git.1502953626.155adb5253-3.3.x86_64.rpm openSUSE-2017-989 important openSUSE Leap 42.3 Update The Software Update Stack was updated to receive fixes and enhancements. libzypp: - CVE-2017-7435, CVE-2017-7436, CVE-2017-9269: Fix GPG check workflows, mainly for unsigned repositories and packages. (bsc#1045735, bsc#1038984) - Fix gpg-pubkey release (creation time) computation. (bsc#1036659) - Update lsof blacklist. (bsc#1046417) - Re-probe on refresh if the repository type changes. (bsc#1048315) - Propagate proper error code to DownloadProgressReport. (bsc#1047785) - Allow to trigger an appdata refresh unconditionally. (bsc#1009745) - Support custom repo variables defined in /etc/zypp/vars.d. yast2-pkg-bindings: - Do not crash when the repository URL is not defined. (bsc#1043218) This update was imported from the SUSE:SLE-12-SP3:Update update project. libzypp-16.15.3-9.1.i586.rpm True libzypp-16.15.3-9.1.src.rpm True libzypp-debuginfo-16.15.3-9.1.i586.rpm True libzypp-debugsource-16.15.3-9.1.i586.rpm True libzypp-devel-16.15.3-9.1.i586.rpm True libzypp-devel-doc-16.15.3-9.1.i586.rpm True yast2-pkg-bindings-devel-doc-3.2.4-4.1.noarch.rpm True yast2-pkg-bindings-devel-doc-3.2.4-4.1.src.rpm True yast2-pkg-bindings-3.2.4-4.1.i586.rpm True yast2-pkg-bindings-3.2.4-4.1.src.rpm True yast2-pkg-bindings-debuginfo-3.2.4-4.1.i586.rpm True yast2-pkg-bindings-debugsource-3.2.4-4.1.i586.rpm True libzypp-16.15.3-9.1.x86_64.rpm True libzypp-debuginfo-16.15.3-9.1.x86_64.rpm True libzypp-debugsource-16.15.3-9.1.x86_64.rpm True libzypp-devel-16.15.3-9.1.x86_64.rpm True libzypp-devel-doc-16.15.3-9.1.x86_64.rpm True yast2-pkg-bindings-3.2.4-4.1.x86_64.rpm True yast2-pkg-bindings-debuginfo-3.2.4-4.1.x86_64.rpm True yast2-pkg-bindings-debugsource-3.2.4-4.1.x86_64.rpm True openSUSE-2017-990 low openSUSE Leap 42.3 Update This update for javapackages-tools fixes the following issues: - Add provides on javapackages-local. (bsc#1039890) This update was imported from the SUSE:SLE-12:Update update project. javapackages-tools-2.0.1-15.1.i586.rpm javapackages-tools-2.0.1-15.1.src.rpm javapackages-tools-2.0.1-15.1.x86_64.rpm openSUSE-2017-999 moderate openSUSE Leap 42.3 Update This update for cacti and cacti-spine fixes security issues and bugs. The following vulnerabilities were fixed: * CVE-2017-12927: Cross-site scripting vulnerability in methodparameter (bsc#1054390) * CVE-2017-12978:Cross-site scripting vulnerability via the title field (bsc#1054742) It also contains all upstream bug fixes and improvements in the 1.1.18 release: * Sort devices by polling time to allow long running d * Allow user to hide Graphs from disabled Devices * Create a separate Realm for Realtime Graphs * Fix various JavaScript errors * updated translations * Can now export Device table results to CSV * Allow Log Rotation to be other than Daily, and other log rotation improvements cacti-spine-1.1.19-13.1.i586.rpm cacti-spine-1.1.19-13.1.src.rpm cacti-spine-debuginfo-1.1.19-13.1.i586.rpm cacti-spine-debugsource-1.1.19-13.1.i586.rpm cacti-spine-1.1.19-13.1.x86_64.rpm cacti-spine-debuginfo-1.1.19-13.1.x86_64.rpm cacti-spine-debugsource-1.1.19-13.1.x86_64.rpm cacti-1.1.19-22.1.noarch.rpm cacti-1.1.19-22.1.src.rpm cacti-doc-1.1.19-22.1.noarch.rpm openSUSE-2017-1000 moderate openSUSE Leap 42.3 Update This recommended update for xonotic to version 0.8.2 fixes the following issues: * Notification banner about new version was shown during game play * Users might not have been able to join servers that are on version 0.8.2 The updated package now ships appdata xml to enable visibility in software installers. xonotic-0.8.2-5.1.src.rpm xonotic-0.8.2-5.1.x86_64.rpm xonotic-data-0.8.2-5.1.noarch.rpm xonotic-debuginfo-0.8.2-5.1.x86_64.rpm xonotic-debugsource-0.8.2-5.1.x86_64.rpm xonotic-server-0.8.2-5.1.x86_64.rpm xonotic-server-debuginfo-0.8.2-5.1.x86_64.rpm openSUSE-2017-1001 moderate openSUSE Leap 42.3 Update This recommended update for kwave fixes the following issue: - Fix desktop file categories (boo#1055344) kwave-17.04.2-3.1.i586.rpm kwave-17.04.2-3.1.src.rpm kwave-debuginfo-17.04.2-3.1.i586.rpm kwave-debugsource-17.04.2-3.1.i586.rpm kwave-lang-17.04.2-3.1.noarch.rpm kwave-17.04.2-3.1.x86_64.rpm kwave-debuginfo-17.04.2-3.1.x86_64.rpm kwave-debugsource-17.04.2-3.1.x86_64.rpm openSUSE-2017-1002 moderate openSUSE Leap 42.3 Update This recommended update provides version 17.07.00 for fwts: * Support for latest acpi (6.2) * Support for SMBIOS 3.1.1 * Enhanced support for secureboot * Improved support for OPAL (ppc64le firmware) fwts-17.07.00-8.1.i586.rpm fwts-17.07.00-8.1.src.rpm fwts-debuginfo-17.07.00-8.1.i586.rpm fwts-debugsource-17.07.00-8.1.i586.rpm fwts-17.07.00-8.1.x86_64.rpm fwts-debuginfo-17.07.00-8.1.x86_64.rpm fwts-debugsource-17.07.00-8.1.x86_64.rpm openSUSE-2017-996 moderate openSUSE Leap 42.3 Update This update for pspp fixes the following issues: - CVE-2017-12958: Illegal address access in function output_hex() could lead to denial of service or unexpected state (boo#1054585) - CVE-2017-12959: Assertion in function dict_add_mrset() could lead to denial of service (boo#1054588) - CVE-2017-12960: Assertion in function dict_rename_var() could lead to denial of service (boo#1054587) - CVE-2017-12961: Assertion in function parse_attributes() could lead to denial of service (boo#1054586) pspp-1.0.1-8.1.src.rpm pspp-1.0.1-8.1.x86_64.rpm pspp-debuginfo-1.0.1-8.1.x86_64.rpm pspp-debugsource-1.0.1-8.1.x86_64.rpm pspp-devel-1.0.1-8.1.x86_64.rpm openSUSE-2017-1003 low openSUSE Leap 42.3 Update This update for ninja to version 1.7.2 fixes the following issues: This version is an updated build dependency for Chromium (bsc#1055189 fate#323787) - Ship macros.ninja in %{_rpmconfigdir}/macros.d, as used by meson. - various small updates and improvements This update was imported from the SUSE:SLE-12-SP2:Update update project. ninja-1.7.2-14.1.i586.rpm ninja-1.7.2-14.1.src.rpm ninja-debuginfo-1.7.2-14.1.i586.rpm ninja-debugsource-1.7.2-14.1.i586.rpm ninja-1.7.2-14.1.x86_64.rpm ninja-debuginfo-1.7.2-14.1.x86_64.rpm ninja-debugsource-1.7.2-14.1.x86_64.rpm openSUSE-2017-1016 moderate openSUSE Leap 42.3 Update This update for salt fixes the following issues: - Update to 2017.7.1 See https://docs.saltstack.com/en/develop/topics/releases/2017.7.1.html for full changelog - CVE-2017-12791: crafted minion ID could lead directory traversal on the Salt-master (boo#1053955) - Run fdupes over all of /usr because it still warns about duplicate files. Remove ancient suse_version > 1020 conditional. - Replace unnecessary %__ indirections. Use grep -q in favor of >/dev/null. - Avoid bashisms in %pre. - Update to 2017.7.0 See https://docs.saltstack.com/en/develop/topics/releases/2017.7.0.html for full changelog - fix ownership for whole master cache directory (boo#1035914) - fix setting the language on SUSE systems (boo#1038855) - wrong os_family grains on SUSE - fix unittests (boo#1038855) - speed-up cherrypy by removing sleep call - Disable 3rd party runtime packages to be explicitly recommended. (boo#1040886) - fix format error (boo#1043111) - Add a salt-minion watchdog for RHEL6 and SLES11 systems (sysV) to restart salt-minion in case of crashes during upgrade. - Add procps as dependency. - Bugfix: jobs scheduled to run at a future time stay pending for Salt minions (boo#1036125) salt-2017.7.1-11.1.src.rpm salt-2017.7.1-11.1.x86_64.rpm salt-api-2017.7.1-11.1.x86_64.rpm salt-bash-completion-2017.7.1-11.1.noarch.rpm salt-cloud-2017.7.1-11.1.x86_64.rpm salt-doc-2017.7.1-11.1.x86_64.rpm salt-fish-completion-2017.7.1-11.1.noarch.rpm salt-master-2017.7.1-11.1.x86_64.rpm salt-minion-2017.7.1-11.1.x86_64.rpm salt-proxy-2017.7.1-11.1.x86_64.rpm salt-ssh-2017.7.1-11.1.x86_64.rpm salt-syndic-2017.7.1-11.1.x86_64.rpm salt-zsh-completion-2017.7.1-11.1.noarch.rpm openSUSE-2017-993 moderate openSUSE Leap 42.3 Update This update for expat fixes the following issues: - CVE-2016-9063: Possible integer overflow to fix inside XML_Parse leading to unexpected behaviour (bsc#1047240) - CVE-2017-9233: External Entity Vulnerability could lead to denial of service (bsc#1047236) This update was imported from the SUSE:SLE-12:Update update project. expat-2.1.0-24.1.i586.rpm expat-2.1.0-24.1.src.rpm expat-debuginfo-2.1.0-24.1.i586.rpm expat-debuginfo-32bit-2.1.0-24.1.x86_64.rpm expat-debugsource-2.1.0-24.1.i586.rpm libexpat-devel-2.1.0-24.1.i586.rpm libexpat-devel-32bit-2.1.0-24.1.x86_64.rpm libexpat1-2.1.0-24.1.i586.rpm libexpat1-32bit-2.1.0-24.1.x86_64.rpm libexpat1-debuginfo-2.1.0-24.1.i586.rpm libexpat1-debuginfo-32bit-2.1.0-24.1.x86_64.rpm expat-2.1.0-24.1.x86_64.rpm expat-debuginfo-2.1.0-24.1.x86_64.rpm expat-debugsource-2.1.0-24.1.x86_64.rpm libexpat-devel-2.1.0-24.1.x86_64.rpm libexpat1-2.1.0-24.1.x86_64.rpm libexpat1-debuginfo-2.1.0-24.1.x86_64.rpm openSUSE-2017-994 important openSUSE Leap 42.3 Update This update for php7 fixes the following issues: - CVE-2016-10397: parse_url() can be bypassed to return fake host. (bsc#1047454) - CVE-2017-11142: Remoteattackers could cause a CPU consumption denial of service attack by injectinglong form variables, related to main/php_variables. (bsc#1048100) - CVE-2017-11144: The opensslextension PEM sealing code did not check the return value of the OpenSSL sealingfunction, which could lead to a crash. (bsc#1048096) - CVE-2017-11145: Lack of bounds checks in timelib_meridian coud lead to information leak. (bsc#1048112) - CVE-2017-11146: Lack of bounds checks in timelib_meridian parse code could lead to information leak. (bsc#1048111) - CVE-2017-11147: The PHAR archive handler could beused by attackers supplying malicious archive files to crash the PHP interpreteror potentially disclose information. (bsc#1048094) - CVE-2017-11628: Stack-base dbuffer overflow in zend_ini_do_op() could lead to denial of service (bsc#1050726) - CVE-2017-7890: Buffer over-read from unitialized data in gdImageCreateFromGifCtx function could lead to denial of service (bsc#1050241) - CVE-2016-5766: Integer Overflow in _gd2GetHeader() resulting in heap overflow could lead to denial of service or code execution (bsc#986386) Other fixes: - Soap Request with References (bsc#1053645) - php7-pear should explicitly require php7-pear-Archive_Tar otherwise this dependency must be declared in every php7-pear-* package explicitly. [bnc#1052389] This update was imported from the SUSE:SLE-12:Update update project. apache2-mod_php7-7.0.7-19.1.i586.rpm apache2-mod_php7-debuginfo-7.0.7-19.1.i586.rpm php7-7.0.7-19.1.i586.rpm php7-7.0.7-19.1.src.rpm php7-bcmath-7.0.7-19.1.i586.rpm php7-bcmath-debuginfo-7.0.7-19.1.i586.rpm php7-bz2-7.0.7-19.1.i586.rpm php7-bz2-debuginfo-7.0.7-19.1.i586.rpm php7-calendar-7.0.7-19.1.i586.rpm php7-calendar-debuginfo-7.0.7-19.1.i586.rpm php7-ctype-7.0.7-19.1.i586.rpm php7-ctype-debuginfo-7.0.7-19.1.i586.rpm php7-curl-7.0.7-19.1.i586.rpm php7-curl-debuginfo-7.0.7-19.1.i586.rpm php7-dba-7.0.7-19.1.i586.rpm php7-dba-debuginfo-7.0.7-19.1.i586.rpm php7-debuginfo-7.0.7-19.1.i586.rpm php7-debugsource-7.0.7-19.1.i586.rpm php7-devel-7.0.7-19.1.i586.rpm php7-dom-7.0.7-19.1.i586.rpm php7-dom-debuginfo-7.0.7-19.1.i586.rpm php7-enchant-7.0.7-19.1.i586.rpm php7-enchant-debuginfo-7.0.7-19.1.i586.rpm php7-exif-7.0.7-19.1.i586.rpm php7-exif-debuginfo-7.0.7-19.1.i586.rpm php7-fastcgi-7.0.7-19.1.i586.rpm php7-fastcgi-debuginfo-7.0.7-19.1.i586.rpm php7-fileinfo-7.0.7-19.1.i586.rpm php7-fileinfo-debuginfo-7.0.7-19.1.i586.rpm php7-firebird-7.0.7-19.1.i586.rpm php7-firebird-debuginfo-7.0.7-19.1.i586.rpm php7-fpm-7.0.7-19.1.i586.rpm php7-fpm-debuginfo-7.0.7-19.1.i586.rpm php7-ftp-7.0.7-19.1.i586.rpm php7-ftp-debuginfo-7.0.7-19.1.i586.rpm php7-gd-7.0.7-19.1.i586.rpm php7-gd-debuginfo-7.0.7-19.1.i586.rpm php7-gettext-7.0.7-19.1.i586.rpm php7-gettext-debuginfo-7.0.7-19.1.i586.rpm php7-gmp-7.0.7-19.1.i586.rpm php7-gmp-debuginfo-7.0.7-19.1.i586.rpm php7-iconv-7.0.7-19.1.i586.rpm php7-iconv-debuginfo-7.0.7-19.1.i586.rpm php7-imap-7.0.7-19.1.i586.rpm php7-imap-debuginfo-7.0.7-19.1.i586.rpm php7-intl-7.0.7-19.1.i586.rpm php7-intl-debuginfo-7.0.7-19.1.i586.rpm php7-json-7.0.7-19.1.i586.rpm php7-json-debuginfo-7.0.7-19.1.i586.rpm php7-ldap-7.0.7-19.1.i586.rpm php7-ldap-debuginfo-7.0.7-19.1.i586.rpm php7-mbstring-7.0.7-19.1.i586.rpm php7-mbstring-debuginfo-7.0.7-19.1.i586.rpm php7-mcrypt-7.0.7-19.1.i586.rpm php7-mcrypt-debuginfo-7.0.7-19.1.i586.rpm php7-mysql-7.0.7-19.1.i586.rpm php7-mysql-debuginfo-7.0.7-19.1.i586.rpm php7-odbc-7.0.7-19.1.i586.rpm php7-odbc-debuginfo-7.0.7-19.1.i586.rpm php7-opcache-7.0.7-19.1.i586.rpm php7-opcache-debuginfo-7.0.7-19.1.i586.rpm php7-openssl-7.0.7-19.1.i586.rpm php7-openssl-debuginfo-7.0.7-19.1.i586.rpm php7-pcntl-7.0.7-19.1.i586.rpm php7-pcntl-debuginfo-7.0.7-19.1.i586.rpm php7-pdo-7.0.7-19.1.i586.rpm php7-pdo-debuginfo-7.0.7-19.1.i586.rpm php7-pear-7.0.7-19.1.noarch.rpm php7-pear-Archive_Tar-7.0.7-19.1.noarch.rpm php7-pgsql-7.0.7-19.1.i586.rpm php7-pgsql-debuginfo-7.0.7-19.1.i586.rpm php7-phar-7.0.7-19.1.i586.rpm php7-phar-debuginfo-7.0.7-19.1.i586.rpm php7-posix-7.0.7-19.1.i586.rpm php7-posix-debuginfo-7.0.7-19.1.i586.rpm php7-pspell-7.0.7-19.1.i586.rpm php7-pspell-debuginfo-7.0.7-19.1.i586.rpm php7-readline-7.0.7-19.1.i586.rpm php7-readline-debuginfo-7.0.7-19.1.i586.rpm php7-shmop-7.0.7-19.1.i586.rpm php7-shmop-debuginfo-7.0.7-19.1.i586.rpm php7-snmp-7.0.7-19.1.i586.rpm php7-snmp-debuginfo-7.0.7-19.1.i586.rpm php7-soap-7.0.7-19.1.i586.rpm php7-soap-debuginfo-7.0.7-19.1.i586.rpm php7-sockets-7.0.7-19.1.i586.rpm php7-sockets-debuginfo-7.0.7-19.1.i586.rpm php7-sqlite-7.0.7-19.1.i586.rpm php7-sqlite-debuginfo-7.0.7-19.1.i586.rpm php7-sysvmsg-7.0.7-19.1.i586.rpm php7-sysvmsg-debuginfo-7.0.7-19.1.i586.rpm php7-sysvsem-7.0.7-19.1.i586.rpm php7-sysvsem-debuginfo-7.0.7-19.1.i586.rpm php7-sysvshm-7.0.7-19.1.i586.rpm php7-sysvshm-debuginfo-7.0.7-19.1.i586.rpm php7-tidy-7.0.7-19.1.i586.rpm php7-tidy-debuginfo-7.0.7-19.1.i586.rpm php7-tokenizer-7.0.7-19.1.i586.rpm php7-tokenizer-debuginfo-7.0.7-19.1.i586.rpm php7-wddx-7.0.7-19.1.i586.rpm php7-wddx-debuginfo-7.0.7-19.1.i586.rpm php7-xmlreader-7.0.7-19.1.i586.rpm php7-xmlreader-debuginfo-7.0.7-19.1.i586.rpm php7-xmlrpc-7.0.7-19.1.i586.rpm php7-xmlrpc-debuginfo-7.0.7-19.1.i586.rpm php7-xmlwriter-7.0.7-19.1.i586.rpm php7-xmlwriter-debuginfo-7.0.7-19.1.i586.rpm php7-xsl-7.0.7-19.1.i586.rpm php7-xsl-debuginfo-7.0.7-19.1.i586.rpm php7-zip-7.0.7-19.1.i586.rpm php7-zip-debuginfo-7.0.7-19.1.i586.rpm php7-zlib-7.0.7-19.1.i586.rpm php7-zlib-debuginfo-7.0.7-19.1.i586.rpm apache2-mod_php7-7.0.7-19.1.x86_64.rpm apache2-mod_php7-debuginfo-7.0.7-19.1.x86_64.rpm php7-7.0.7-19.1.x86_64.rpm php7-bcmath-7.0.7-19.1.x86_64.rpm php7-bcmath-debuginfo-7.0.7-19.1.x86_64.rpm php7-bz2-7.0.7-19.1.x86_64.rpm php7-bz2-debuginfo-7.0.7-19.1.x86_64.rpm php7-calendar-7.0.7-19.1.x86_64.rpm php7-calendar-debuginfo-7.0.7-19.1.x86_64.rpm php7-ctype-7.0.7-19.1.x86_64.rpm php7-ctype-debuginfo-7.0.7-19.1.x86_64.rpm php7-curl-7.0.7-19.1.x86_64.rpm php7-curl-debuginfo-7.0.7-19.1.x86_64.rpm php7-dba-7.0.7-19.1.x86_64.rpm php7-dba-debuginfo-7.0.7-19.1.x86_64.rpm php7-debuginfo-7.0.7-19.1.x86_64.rpm php7-debugsource-7.0.7-19.1.x86_64.rpm php7-devel-7.0.7-19.1.x86_64.rpm php7-dom-7.0.7-19.1.x86_64.rpm php7-dom-debuginfo-7.0.7-19.1.x86_64.rpm php7-enchant-7.0.7-19.1.x86_64.rpm php7-enchant-debuginfo-7.0.7-19.1.x86_64.rpm php7-exif-7.0.7-19.1.x86_64.rpm php7-exif-debuginfo-7.0.7-19.1.x86_64.rpm php7-fastcgi-7.0.7-19.1.x86_64.rpm php7-fastcgi-debuginfo-7.0.7-19.1.x86_64.rpm php7-fileinfo-7.0.7-19.1.x86_64.rpm php7-fileinfo-debuginfo-7.0.7-19.1.x86_64.rpm php7-firebird-7.0.7-19.1.x86_64.rpm php7-firebird-debuginfo-7.0.7-19.1.x86_64.rpm php7-fpm-7.0.7-19.1.x86_64.rpm php7-fpm-debuginfo-7.0.7-19.1.x86_64.rpm php7-ftp-7.0.7-19.1.x86_64.rpm php7-ftp-debuginfo-7.0.7-19.1.x86_64.rpm php7-gd-7.0.7-19.1.x86_64.rpm php7-gd-debuginfo-7.0.7-19.1.x86_64.rpm php7-gettext-7.0.7-19.1.x86_64.rpm php7-gettext-debuginfo-7.0.7-19.1.x86_64.rpm php7-gmp-7.0.7-19.1.x86_64.rpm php7-gmp-debuginfo-7.0.7-19.1.x86_64.rpm php7-iconv-7.0.7-19.1.x86_64.rpm php7-iconv-debuginfo-7.0.7-19.1.x86_64.rpm php7-imap-7.0.7-19.1.x86_64.rpm php7-imap-debuginfo-7.0.7-19.1.x86_64.rpm php7-intl-7.0.7-19.1.x86_64.rpm php7-intl-debuginfo-7.0.7-19.1.x86_64.rpm php7-json-7.0.7-19.1.x86_64.rpm php7-json-debuginfo-7.0.7-19.1.x86_64.rpm php7-ldap-7.0.7-19.1.x86_64.rpm php7-ldap-debuginfo-7.0.7-19.1.x86_64.rpm php7-mbstring-7.0.7-19.1.x86_64.rpm php7-mbstring-debuginfo-7.0.7-19.1.x86_64.rpm php7-mcrypt-7.0.7-19.1.x86_64.rpm php7-mcrypt-debuginfo-7.0.7-19.1.x86_64.rpm php7-mysql-7.0.7-19.1.x86_64.rpm php7-mysql-debuginfo-7.0.7-19.1.x86_64.rpm php7-odbc-7.0.7-19.1.x86_64.rpm php7-odbc-debuginfo-7.0.7-19.1.x86_64.rpm php7-opcache-7.0.7-19.1.x86_64.rpm php7-opcache-debuginfo-7.0.7-19.1.x86_64.rpm php7-openssl-7.0.7-19.1.x86_64.rpm php7-openssl-debuginfo-7.0.7-19.1.x86_64.rpm php7-pcntl-7.0.7-19.1.x86_64.rpm php7-pcntl-debuginfo-7.0.7-19.1.x86_64.rpm php7-pdo-7.0.7-19.1.x86_64.rpm php7-pdo-debuginfo-7.0.7-19.1.x86_64.rpm php7-pgsql-7.0.7-19.1.x86_64.rpm php7-pgsql-debuginfo-7.0.7-19.1.x86_64.rpm php7-phar-7.0.7-19.1.x86_64.rpm php7-phar-debuginfo-7.0.7-19.1.x86_64.rpm php7-posix-7.0.7-19.1.x86_64.rpm php7-posix-debuginfo-7.0.7-19.1.x86_64.rpm php7-pspell-7.0.7-19.1.x86_64.rpm php7-pspell-debuginfo-7.0.7-19.1.x86_64.rpm php7-readline-7.0.7-19.1.x86_64.rpm php7-readline-debuginfo-7.0.7-19.1.x86_64.rpm php7-shmop-7.0.7-19.1.x86_64.rpm php7-shmop-debuginfo-7.0.7-19.1.x86_64.rpm php7-snmp-7.0.7-19.1.x86_64.rpm php7-snmp-debuginfo-7.0.7-19.1.x86_64.rpm php7-soap-7.0.7-19.1.x86_64.rpm php7-soap-debuginfo-7.0.7-19.1.x86_64.rpm php7-sockets-7.0.7-19.1.x86_64.rpm php7-sockets-debuginfo-7.0.7-19.1.x86_64.rpm php7-sqlite-7.0.7-19.1.x86_64.rpm php7-sqlite-debuginfo-7.0.7-19.1.x86_64.rpm php7-sysvmsg-7.0.7-19.1.x86_64.rpm php7-sysvmsg-debuginfo-7.0.7-19.1.x86_64.rpm php7-sysvsem-7.0.7-19.1.x86_64.rpm php7-sysvsem-debuginfo-7.0.7-19.1.x86_64.rpm php7-sysvshm-7.0.7-19.1.x86_64.rpm php7-sysvshm-debuginfo-7.0.7-19.1.x86_64.rpm php7-tidy-7.0.7-19.1.x86_64.rpm php7-tidy-debuginfo-7.0.7-19.1.x86_64.rpm php7-tokenizer-7.0.7-19.1.x86_64.rpm php7-tokenizer-debuginfo-7.0.7-19.1.x86_64.rpm php7-wddx-7.0.7-19.1.x86_64.rpm php7-wddx-debuginfo-7.0.7-19.1.x86_64.rpm php7-xmlreader-7.0.7-19.1.x86_64.rpm php7-xmlreader-debuginfo-7.0.7-19.1.x86_64.rpm php7-xmlrpc-7.0.7-19.1.x86_64.rpm php7-xmlrpc-debuginfo-7.0.7-19.1.x86_64.rpm php7-xmlwriter-7.0.7-19.1.x86_64.rpm php7-xmlwriter-debuginfo-7.0.7-19.1.x86_64.rpm php7-xsl-7.0.7-19.1.x86_64.rpm php7-xsl-debuginfo-7.0.7-19.1.x86_64.rpm php7-zip-7.0.7-19.1.x86_64.rpm php7-zip-debuginfo-7.0.7-19.1.x86_64.rpm php7-zlib-7.0.7-19.1.x86_64.rpm php7-zlib-debuginfo-7.0.7-19.1.x86_64.rpm openSUSE-2017-995 moderate openSUSE Leap 42.3 Update This update for wireshark to version 2.2.9 fixes the following issues: Minor vulnerabilities that could be used to trigger dissector crashes, infinite loops, or cause excessive use of memory resources by making Wireshark read specially crafted packages from the network or a capture file: * CVE-2017-13767: MSDP dissector infinite loop (boo#1056248) * CVE-2017-13766: Profinet I/O buffer overrun (boo#1056249) * CVE-2017-13765: IrCOMM dissector buffer overrun (boo#1056251) * Further bug fixes and updated protocol support as listed in: https://www.wireshark.org/docs/relnotes/wireshark-2.2.9.html wireshark-2.2.9-21.1.src.rpm wireshark-2.2.9-21.1.x86_64.rpm wireshark-debuginfo-2.2.9-21.1.x86_64.rpm wireshark-debugsource-2.2.9-21.1.x86_64.rpm wireshark-devel-2.2.9-21.1.x86_64.rpm wireshark-ui-gtk-2.2.9-21.1.x86_64.rpm wireshark-ui-gtk-debuginfo-2.2.9-21.1.x86_64.rpm wireshark-ui-qt-2.2.9-21.1.x86_64.rpm wireshark-ui-qt-debuginfo-2.2.9-21.1.x86_64.rpm openSUSE-2017-1036 moderate openSUSE Leap 42.3 Update This update for libidn2 fixes the following issues: * integer overflow in bidi.c/_isBidi() could lead to unexpected behavior (boo#1056451) * integer overflow in puny_decode.c/decode_digit() could lead to unexpected behavior (boo#1056450) libunistring was rebuilt to supply a -32bit package, a dependency for libidn2-0-32bit (boo#1056981). libidn2-0-2.0.4-3.1.i586.rpm libidn2-0-32bit-2.0.4-3.1.x86_64.rpm libidn2-0-debuginfo-2.0.4-3.1.i586.rpm libidn2-0-debuginfo-32bit-2.0.4-3.1.x86_64.rpm libidn2-2.0.4-3.1.src.rpm libidn2-debugsource-2.0.4-3.1.i586.rpm libidn2-devel-2.0.4-3.1.i586.rpm libidn2-tools-2.0.4-3.1.i586.rpm libidn2-tools-debuginfo-2.0.4-3.1.i586.rpm libunistring-0.9.3-25.1.src.rpm libunistring-debugsource-0.9.3-25.1.i586.rpm libunistring-devel-0.9.3-25.1.i586.rpm libunistring-devel-32bit-0.9.3-25.1.x86_64.rpm libunistring0-0.9.3-25.1.i586.rpm libunistring0-32bit-0.9.3-25.1.x86_64.rpm libunistring0-debuginfo-0.9.3-25.1.i586.rpm libunistring0-debuginfo-32bit-0.9.3-25.1.x86_64.rpm libidn2-0-2.0.4-3.1.x86_64.rpm libidn2-0-debuginfo-2.0.4-3.1.x86_64.rpm libidn2-debugsource-2.0.4-3.1.x86_64.rpm libidn2-devel-2.0.4-3.1.x86_64.rpm libidn2-tools-2.0.4-3.1.x86_64.rpm libidn2-tools-debuginfo-2.0.4-3.1.x86_64.rpm libunistring-debugsource-0.9.3-25.1.x86_64.rpm libunistring-devel-0.9.3-25.1.x86_64.rpm libunistring0-0.9.3-25.1.x86_64.rpm libunistring0-debuginfo-0.9.3-25.1.x86_64.rpm openSUSE-2017-1004 low openSUSE Leap 42.3 Update This update for tcsh provides the following fix: - Avoid closing sockets that were not opened by tcsh itself. (bsc#1028864) This update was imported from the SUSE:SLE-12:Update update project. tcsh-6.18.01-11.1.i586.rpm tcsh-6.18.01-11.1.src.rpm tcsh-debuginfo-6.18.01-11.1.i586.rpm tcsh-debugsource-6.18.01-11.1.i586.rpm tcsh-lang-6.18.01-11.1.i586.rpm tcsh-6.18.01-11.1.x86_64.rpm tcsh-debuginfo-6.18.01-11.1.x86_64.rpm tcsh-debugsource-6.18.01-11.1.x86_64.rpm tcsh-lang-6.18.01-11.1.x86_64.rpm openSUSE-2017-1011 moderate openSUSE Leap 42.3 Update icu was updated to fix two security issues. These security issues were fixed: - CVE-2014-8147: The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) used an integer data type that is inconsistent with a header file, which allowed remote attackers to cause a denial of service (incorrect malloc followed by invalid free) or possibly execute arbitrary code via crafted text (bsc#929629). - CVE-2014-8146: The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) did not properly track directionally isolated pieces of text, which allowed remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via crafted text (bsc#929629). This update was imported from the SUSE:SLE-12:Update update project. icu-52.1-15.1.i586.rpm icu-52.1-15.1.src.rpm icu-data-52.1-15.1.i586.rpm icu-debuginfo-52.1-15.1.i586.rpm icu-debugsource-52.1-15.1.i586.rpm libicu-devel-32bit-52.1-15.1.x86_64.rpm libicu-devel-52.1-15.1.i586.rpm libicu-doc-52.1-15.1.i586.rpm libicu52_1-32bit-52.1-15.1.x86_64.rpm libicu52_1-52.1-15.1.i586.rpm libicu52_1-data-52.1-15.1.i586.rpm libicu52_1-debuginfo-32bit-52.1-15.1.x86_64.rpm libicu52_1-debuginfo-52.1-15.1.i586.rpm icu-52.1-15.1.x86_64.rpm icu-data-52.1-15.1.x86_64.rpm icu-debuginfo-52.1-15.1.x86_64.rpm icu-debugsource-52.1-15.1.x86_64.rpm libicu-devel-52.1-15.1.x86_64.rpm libicu-doc-52.1-15.1.x86_64.rpm libicu52_1-52.1-15.1.x86_64.rpm libicu52_1-data-52.1-15.1.x86_64.rpm libicu52_1-debuginfo-52.1-15.1.x86_64.rpm openSUSE-2017-1010 moderate openSUSE Leap 42.3 Update This update for php5 fixes the following issues: - CVE-2016-10397: parse_url() can be bypassed to return fake host. (bsc#1047454) - CVE-2017-11143: An invalid free in the WDDX deserialization of booleanparameters could be used by attackers able to inject XML for deserialization tocrash the PHP interpreter. (bsc#1048097) - CVE-2017-11144: The opensslextension PEM sealing code did not check the return value of the OpenSSL sealingfunction, which could lead to a crash. (bsc#1048096) - CVE-2017-11145: Lack of bounds checks in timelib_meridian coud lead to information leak. (bsc#1048112) - CVE-2017-11146: Lack of bounds checks in timelib_meridian parse code could lead to information leak. (bsc#1048111) - CVE-2017-11147: The PHAR archive handler could beused by attackers supplying malicious archive files to crash the PHP interpreteror potentially disclose information. (bsc#1048094) - CVE-2016-5766: Integer Overflow in _gd2GetHeader() resulting could lead to heap overflow (bsc#986386) - CVE-2017-11628: Stack-base dbuffer overflow in zend_ini_do_op() in Zend/zend_ini_parser.c (bsc#1050726) - CVE-2017-7890: Buffer over-read from unitialized data in gdImageCreateFromGifCtx function could lead to denial of service (bsc#1050241) This update was imported from the SUSE:SLE-12:Update update project. apache2-mod_php5-5.5.14-82.1.i586.rpm apache2-mod_php5-debuginfo-5.5.14-82.1.i586.rpm php5-5.5.14-82.1.i586.rpm php5-5.5.14-82.1.src.rpm php5-bcmath-5.5.14-82.1.i586.rpm php5-bcmath-debuginfo-5.5.14-82.1.i586.rpm php5-bz2-5.5.14-82.1.i586.rpm php5-bz2-debuginfo-5.5.14-82.1.i586.rpm php5-calendar-5.5.14-82.1.i586.rpm php5-calendar-debuginfo-5.5.14-82.1.i586.rpm php5-ctype-5.5.14-82.1.i586.rpm php5-ctype-debuginfo-5.5.14-82.1.i586.rpm php5-curl-5.5.14-82.1.i586.rpm php5-curl-debuginfo-5.5.14-82.1.i586.rpm php5-dba-5.5.14-82.1.i586.rpm php5-dba-debuginfo-5.5.14-82.1.i586.rpm php5-debuginfo-5.5.14-82.1.i586.rpm php5-debugsource-5.5.14-82.1.i586.rpm php5-devel-5.5.14-82.1.i586.rpm php5-dom-5.5.14-82.1.i586.rpm php5-dom-debuginfo-5.5.14-82.1.i586.rpm php5-enchant-5.5.14-82.1.i586.rpm php5-enchant-debuginfo-5.5.14-82.1.i586.rpm php5-exif-5.5.14-82.1.i586.rpm php5-exif-debuginfo-5.5.14-82.1.i586.rpm php5-fastcgi-5.5.14-82.1.i586.rpm php5-fastcgi-debuginfo-5.5.14-82.1.i586.rpm php5-fileinfo-5.5.14-82.1.i586.rpm php5-fileinfo-debuginfo-5.5.14-82.1.i586.rpm php5-firebird-5.5.14-82.1.i586.rpm php5-firebird-debuginfo-5.5.14-82.1.i586.rpm php5-fpm-5.5.14-82.1.i586.rpm php5-fpm-debuginfo-5.5.14-82.1.i586.rpm php5-ftp-5.5.14-82.1.i586.rpm php5-ftp-debuginfo-5.5.14-82.1.i586.rpm php5-gd-5.5.14-82.1.i586.rpm php5-gd-debuginfo-5.5.14-82.1.i586.rpm php5-gettext-5.5.14-82.1.i586.rpm php5-gettext-debuginfo-5.5.14-82.1.i586.rpm php5-gmp-5.5.14-82.1.i586.rpm php5-gmp-debuginfo-5.5.14-82.1.i586.rpm php5-iconv-5.5.14-82.1.i586.rpm php5-iconv-debuginfo-5.5.14-82.1.i586.rpm php5-imap-5.5.14-82.1.i586.rpm php5-imap-debuginfo-5.5.14-82.1.i586.rpm php5-intl-5.5.14-82.1.i586.rpm php5-intl-debuginfo-5.5.14-82.1.i586.rpm php5-json-5.5.14-82.1.i586.rpm php5-json-debuginfo-5.5.14-82.1.i586.rpm php5-ldap-5.5.14-82.1.i586.rpm php5-ldap-debuginfo-5.5.14-82.1.i586.rpm php5-mbstring-5.5.14-82.1.i586.rpm php5-mbstring-debuginfo-5.5.14-82.1.i586.rpm php5-mcrypt-5.5.14-82.1.i586.rpm php5-mcrypt-debuginfo-5.5.14-82.1.i586.rpm php5-mssql-5.5.14-82.1.i586.rpm php5-mssql-debuginfo-5.5.14-82.1.i586.rpm php5-mysql-5.5.14-82.1.i586.rpm php5-mysql-debuginfo-5.5.14-82.1.i586.rpm php5-odbc-5.5.14-82.1.i586.rpm php5-odbc-debuginfo-5.5.14-82.1.i586.rpm php5-opcache-5.5.14-82.1.i586.rpm php5-opcache-debuginfo-5.5.14-82.1.i586.rpm php5-openssl-5.5.14-82.1.i586.rpm php5-openssl-debuginfo-5.5.14-82.1.i586.rpm php5-pcntl-5.5.14-82.1.i586.rpm php5-pcntl-debuginfo-5.5.14-82.1.i586.rpm php5-pdo-5.5.14-82.1.i586.rpm php5-pdo-debuginfo-5.5.14-82.1.i586.rpm php5-pear-5.5.14-82.1.noarch.rpm php5-pgsql-5.5.14-82.1.i586.rpm php5-pgsql-debuginfo-5.5.14-82.1.i586.rpm php5-phar-5.5.14-82.1.i586.rpm php5-phar-debuginfo-5.5.14-82.1.i586.rpm php5-posix-5.5.14-82.1.i586.rpm php5-posix-debuginfo-5.5.14-82.1.i586.rpm php5-pspell-5.5.14-82.1.i586.rpm php5-pspell-debuginfo-5.5.14-82.1.i586.rpm php5-readline-5.5.14-82.1.i586.rpm php5-readline-debuginfo-5.5.14-82.1.i586.rpm php5-shmop-5.5.14-82.1.i586.rpm php5-shmop-debuginfo-5.5.14-82.1.i586.rpm php5-snmp-5.5.14-82.1.i586.rpm php5-snmp-debuginfo-5.5.14-82.1.i586.rpm php5-soap-5.5.14-82.1.i586.rpm php5-soap-debuginfo-5.5.14-82.1.i586.rpm php5-sockets-5.5.14-82.1.i586.rpm php5-sockets-debuginfo-5.5.14-82.1.i586.rpm php5-sqlite-5.5.14-82.1.i586.rpm php5-sqlite-debuginfo-5.5.14-82.1.i586.rpm php5-suhosin-5.5.14-82.1.i586.rpm php5-suhosin-debuginfo-5.5.14-82.1.i586.rpm php5-sysvmsg-5.5.14-82.1.i586.rpm php5-sysvmsg-debuginfo-5.5.14-82.1.i586.rpm php5-sysvsem-5.5.14-82.1.i586.rpm php5-sysvsem-debuginfo-5.5.14-82.1.i586.rpm php5-sysvshm-5.5.14-82.1.i586.rpm php5-sysvshm-debuginfo-5.5.14-82.1.i586.rpm php5-tidy-5.5.14-82.1.i586.rpm php5-tidy-debuginfo-5.5.14-82.1.i586.rpm php5-tokenizer-5.5.14-82.1.i586.rpm php5-tokenizer-debuginfo-5.5.14-82.1.i586.rpm php5-wddx-5.5.14-82.1.i586.rpm php5-wddx-debuginfo-5.5.14-82.1.i586.rpm php5-xmlreader-5.5.14-82.1.i586.rpm php5-xmlreader-debuginfo-5.5.14-82.1.i586.rpm php5-xmlrpc-5.5.14-82.1.i586.rpm php5-xmlrpc-debuginfo-5.5.14-82.1.i586.rpm php5-xmlwriter-5.5.14-82.1.i586.rpm php5-xmlwriter-debuginfo-5.5.14-82.1.i586.rpm php5-xsl-5.5.14-82.1.i586.rpm php5-xsl-debuginfo-5.5.14-82.1.i586.rpm php5-zip-5.5.14-82.1.i586.rpm php5-zip-debuginfo-5.5.14-82.1.i586.rpm php5-zlib-5.5.14-82.1.i586.rpm php5-zlib-debuginfo-5.5.14-82.1.i586.rpm apache2-mod_php5-5.5.14-82.1.x86_64.rpm apache2-mod_php5-debuginfo-5.5.14-82.1.x86_64.rpm php5-5.5.14-82.1.x86_64.rpm php5-bcmath-5.5.14-82.1.x86_64.rpm php5-bcmath-debuginfo-5.5.14-82.1.x86_64.rpm php5-bz2-5.5.14-82.1.x86_64.rpm php5-bz2-debuginfo-5.5.14-82.1.x86_64.rpm php5-calendar-5.5.14-82.1.x86_64.rpm php5-calendar-debuginfo-5.5.14-82.1.x86_64.rpm php5-ctype-5.5.14-82.1.x86_64.rpm php5-ctype-debuginfo-5.5.14-82.1.x86_64.rpm php5-curl-5.5.14-82.1.x86_64.rpm php5-curl-debuginfo-5.5.14-82.1.x86_64.rpm php5-dba-5.5.14-82.1.x86_64.rpm php5-dba-debuginfo-5.5.14-82.1.x86_64.rpm php5-debuginfo-5.5.14-82.1.x86_64.rpm php5-debugsource-5.5.14-82.1.x86_64.rpm php5-devel-5.5.14-82.1.x86_64.rpm php5-dom-5.5.14-82.1.x86_64.rpm php5-dom-debuginfo-5.5.14-82.1.x86_64.rpm php5-enchant-5.5.14-82.1.x86_64.rpm php5-enchant-debuginfo-5.5.14-82.1.x86_64.rpm php5-exif-5.5.14-82.1.x86_64.rpm php5-exif-debuginfo-5.5.14-82.1.x86_64.rpm php5-fastcgi-5.5.14-82.1.x86_64.rpm php5-fastcgi-debuginfo-5.5.14-82.1.x86_64.rpm php5-fileinfo-5.5.14-82.1.x86_64.rpm php5-fileinfo-debuginfo-5.5.14-82.1.x86_64.rpm php5-firebird-5.5.14-82.1.x86_64.rpm php5-firebird-debuginfo-5.5.14-82.1.x86_64.rpm php5-fpm-5.5.14-82.1.x86_64.rpm php5-fpm-debuginfo-5.5.14-82.1.x86_64.rpm php5-ftp-5.5.14-82.1.x86_64.rpm php5-ftp-debuginfo-5.5.14-82.1.x86_64.rpm php5-gd-5.5.14-82.1.x86_64.rpm php5-gd-debuginfo-5.5.14-82.1.x86_64.rpm php5-gettext-5.5.14-82.1.x86_64.rpm php5-gettext-debuginfo-5.5.14-82.1.x86_64.rpm php5-gmp-5.5.14-82.1.x86_64.rpm php5-gmp-debuginfo-5.5.14-82.1.x86_64.rpm php5-iconv-5.5.14-82.1.x86_64.rpm php5-iconv-debuginfo-5.5.14-82.1.x86_64.rpm php5-imap-5.5.14-82.1.x86_64.rpm php5-imap-debuginfo-5.5.14-82.1.x86_64.rpm php5-intl-5.5.14-82.1.x86_64.rpm php5-intl-debuginfo-5.5.14-82.1.x86_64.rpm php5-json-5.5.14-82.1.x86_64.rpm php5-json-debuginfo-5.5.14-82.1.x86_64.rpm php5-ldap-5.5.14-82.1.x86_64.rpm php5-ldap-debuginfo-5.5.14-82.1.x86_64.rpm php5-mbstring-5.5.14-82.1.x86_64.rpm php5-mbstring-debuginfo-5.5.14-82.1.x86_64.rpm php5-mcrypt-5.5.14-82.1.x86_64.rpm php5-mcrypt-debuginfo-5.5.14-82.1.x86_64.rpm php5-mssql-5.5.14-82.1.x86_64.rpm php5-mssql-debuginfo-5.5.14-82.1.x86_64.rpm php5-mysql-5.5.14-82.1.x86_64.rpm php5-mysql-debuginfo-5.5.14-82.1.x86_64.rpm php5-odbc-5.5.14-82.1.x86_64.rpm php5-odbc-debuginfo-5.5.14-82.1.x86_64.rpm php5-opcache-5.5.14-82.1.x86_64.rpm php5-opcache-debuginfo-5.5.14-82.1.x86_64.rpm php5-openssl-5.5.14-82.1.x86_64.rpm php5-openssl-debuginfo-5.5.14-82.1.x86_64.rpm php5-pcntl-5.5.14-82.1.x86_64.rpm php5-pcntl-debuginfo-5.5.14-82.1.x86_64.rpm php5-pdo-5.5.14-82.1.x86_64.rpm php5-pdo-debuginfo-5.5.14-82.1.x86_64.rpm php5-pgsql-5.5.14-82.1.x86_64.rpm php5-pgsql-debuginfo-5.5.14-82.1.x86_64.rpm php5-phar-5.5.14-82.1.x86_64.rpm php5-phar-debuginfo-5.5.14-82.1.x86_64.rpm php5-posix-5.5.14-82.1.x86_64.rpm php5-posix-debuginfo-5.5.14-82.1.x86_64.rpm php5-pspell-5.5.14-82.1.x86_64.rpm php5-pspell-debuginfo-5.5.14-82.1.x86_64.rpm php5-readline-5.5.14-82.1.x86_64.rpm php5-readline-debuginfo-5.5.14-82.1.x86_64.rpm php5-shmop-5.5.14-82.1.x86_64.rpm php5-shmop-debuginfo-5.5.14-82.1.x86_64.rpm php5-snmp-5.5.14-82.1.x86_64.rpm php5-snmp-debuginfo-5.5.14-82.1.x86_64.rpm php5-soap-5.5.14-82.1.x86_64.rpm php5-soap-debuginfo-5.5.14-82.1.x86_64.rpm php5-sockets-5.5.14-82.1.x86_64.rpm php5-sockets-debuginfo-5.5.14-82.1.x86_64.rpm php5-sqlite-5.5.14-82.1.x86_64.rpm php5-sqlite-debuginfo-5.5.14-82.1.x86_64.rpm php5-suhosin-5.5.14-82.1.x86_64.rpm php5-suhosin-debuginfo-5.5.14-82.1.x86_64.rpm php5-sysvmsg-5.5.14-82.1.x86_64.rpm php5-sysvmsg-debuginfo-5.5.14-82.1.x86_64.rpm php5-sysvsem-5.5.14-82.1.x86_64.rpm php5-sysvsem-debuginfo-5.5.14-82.1.x86_64.rpm php5-sysvshm-5.5.14-82.1.x86_64.rpm php5-sysvshm-debuginfo-5.5.14-82.1.x86_64.rpm php5-tidy-5.5.14-82.1.x86_64.rpm php5-tidy-debuginfo-5.5.14-82.1.x86_64.rpm php5-tokenizer-5.5.14-82.1.x86_64.rpm php5-tokenizer-debuginfo-5.5.14-82.1.x86_64.rpm php5-wddx-5.5.14-82.1.x86_64.rpm php5-wddx-debuginfo-5.5.14-82.1.x86_64.rpm php5-xmlreader-5.5.14-82.1.x86_64.rpm php5-xmlreader-debuginfo-5.5.14-82.1.x86_64.rpm php5-xmlrpc-5.5.14-82.1.x86_64.rpm php5-xmlrpc-debuginfo-5.5.14-82.1.x86_64.rpm php5-xmlwriter-5.5.14-82.1.x86_64.rpm php5-xmlwriter-debuginfo-5.5.14-82.1.x86_64.rpm php5-xsl-5.5.14-82.1.x86_64.rpm php5-xsl-debuginfo-5.5.14-82.1.x86_64.rpm php5-zip-5.5.14-82.1.x86_64.rpm php5-zip-debuginfo-5.5.14-82.1.x86_64.rpm php5-zlib-5.5.14-82.1.x86_64.rpm php5-zlib-debuginfo-5.5.14-82.1.x86_64.rpm openSUSE-2017-997 moderate openSUSE Leap 42.3 Update This update for libebml to version 1.3.5 fixes the following issues: * undefined behavior in EbmlElement::GetSemantic() (boo#1056669) It also contains various upstream improvements and fixes: * No longer insist that all mandatory elements are present, only those for which there is no default value * Fix reading and EBML element even though the ID was not found within the allowed reading limit. libebml-1.3.5-5.1.src.rpm libebml-debugsource-1.3.5-5.1.i586.rpm libebml-devel-1.3.5-5.1.i586.rpm libebml4-1.3.5-5.1.i586.rpm libebml4-32bit-1.3.5-5.1.x86_64.rpm libebml4-debuginfo-1.3.5-5.1.i586.rpm libebml4-debuginfo-32bit-1.3.5-5.1.x86_64.rpm libebml-debugsource-1.3.5-5.1.x86_64.rpm libebml-devel-1.3.5-5.1.x86_64.rpm libebml4-1.3.5-5.1.x86_64.rpm libebml4-debuginfo-1.3.5-5.1.x86_64.rpm openSUSE-2017-1005 important openSUSE Leap 42.3 Update This update for systemd fixes the following issues: - Revert fix for bsc#1004995 which could have caused boot failure on LVM (bsc#1048605) - compat-rules: drop the bogus 'import everything' rule (bsc#1046268) - core: use an AF_UNIX/SOCK_DGRAM socket for cgroup agent notification (bsc#1045384 bsc#1047379) - udev/path_id: introduce support for NVMe devices (bsc#1045987) This update was imported from the SUSE:SLE-12-SP2:Update update project. libsystemd0-mini-228-35.1.i586.rpm libsystemd0-mini-debuginfo-228-35.1.i586.rpm libudev-mini-devel-228-35.1.i586.rpm libudev-mini1-228-35.1.i586.rpm libudev-mini1-debuginfo-228-35.1.i586.rpm systemd-mini-228-35.1.i586.rpm systemd-mini-228-35.1.src.rpm systemd-mini-bash-completion-228-35.1.noarch.rpm systemd-mini-debuginfo-228-35.1.i586.rpm systemd-mini-debugsource-228-35.1.i586.rpm systemd-mini-devel-228-35.1.i586.rpm systemd-mini-sysvinit-228-35.1.i586.rpm udev-mini-228-35.1.i586.rpm udev-mini-debuginfo-228-35.1.i586.rpm libsystemd0-228-35.1.i586.rpm libsystemd0-32bit-228-35.1.x86_64.rpm libsystemd0-debuginfo-228-35.1.i586.rpm libsystemd0-debuginfo-32bit-228-35.1.x86_64.rpm libudev-devel-228-35.1.i586.rpm libudev1-228-35.1.i586.rpm libudev1-32bit-228-35.1.x86_64.rpm libudev1-debuginfo-228-35.1.i586.rpm libudev1-debuginfo-32bit-228-35.1.x86_64.rpm nss-myhostname-228-35.1.i586.rpm nss-myhostname-32bit-228-35.1.x86_64.rpm nss-myhostname-debuginfo-228-35.1.i586.rpm nss-myhostname-debuginfo-32bit-228-35.1.x86_64.rpm nss-mymachines-228-35.1.i586.rpm nss-mymachines-debuginfo-228-35.1.i586.rpm systemd-228-35.1.i586.rpm systemd-228-35.1.src.rpm systemd-32bit-228-35.1.x86_64.rpm systemd-bash-completion-228-35.1.noarch.rpm systemd-debuginfo-228-35.1.i586.rpm systemd-debuginfo-32bit-228-35.1.x86_64.rpm systemd-debugsource-228-35.1.i586.rpm systemd-devel-228-35.1.i586.rpm systemd-logger-228-35.1.i586.rpm systemd-sysvinit-228-35.1.i586.rpm udev-228-35.1.i586.rpm udev-debuginfo-228-35.1.i586.rpm libsystemd0-mini-228-35.1.x86_64.rpm libsystemd0-mini-debuginfo-228-35.1.x86_64.rpm libudev-mini-devel-228-35.1.x86_64.rpm libudev-mini1-228-35.1.x86_64.rpm libudev-mini1-debuginfo-228-35.1.x86_64.rpm systemd-mini-228-35.1.x86_64.rpm systemd-mini-debuginfo-228-35.1.x86_64.rpm systemd-mini-debugsource-228-35.1.x86_64.rpm systemd-mini-devel-228-35.1.x86_64.rpm systemd-mini-sysvinit-228-35.1.x86_64.rpm udev-mini-228-35.1.x86_64.rpm udev-mini-debuginfo-228-35.1.x86_64.rpm libsystemd0-228-35.1.x86_64.rpm libsystemd0-debuginfo-228-35.1.x86_64.rpm libudev-devel-228-35.1.x86_64.rpm libudev1-228-35.1.x86_64.rpm libudev1-debuginfo-228-35.1.x86_64.rpm nss-myhostname-228-35.1.x86_64.rpm nss-myhostname-debuginfo-228-35.1.x86_64.rpm nss-mymachines-228-35.1.x86_64.rpm nss-mymachines-debuginfo-228-35.1.x86_64.rpm systemd-228-35.1.x86_64.rpm systemd-debuginfo-228-35.1.x86_64.rpm systemd-debugsource-228-35.1.x86_64.rpm systemd-devel-228-35.1.x86_64.rpm systemd-logger-228-35.1.x86_64.rpm systemd-sysvinit-228-35.1.x86_64.rpm udev-228-35.1.x86_64.rpm udev-debuginfo-228-35.1.x86_64.rpm openSUSE-2017-1023 important openSUSE Leap 42.3 Update This update for xen fixes several issues. These security issues were fixed: - CVE-2017-12135: Unbounded recursion in grant table code allowed a malicious guest to crash the host or potentially escalate privileges/leak information (XSA-226, bsc#1051787). - CVE-2017-12137: Incorrectly-aligned updates to pagetables allowed for privilege escalation (XSA-227, bsc#1051788). - CVE-2017-12136: Race conditions with maptrack free list handling allows a malicious guest administrator to crash the host or escalate their privilege to that of the host (XSA-228, bsc#1051789). - CVE-2017-11434: The dhcp_decode function in slirp/bootp.c allowed local guest OS users to cause a denial of service (out-of-bounds read) via a crafted DHCP options string (bsc#1049578). - CVE-2017-10664: qemu-nbd did not ignore SIGPIPE, which allowed remote attackers to cause a denial of service (daemon crash) by disconnecting during a server-to-client reply attempt (bsc#1046637). - CVE-2017-12855: Premature clearing of GTF_writing / GTF_reading lead to potentially leaking sensitive information (XSA-230 bsc#1052686. These non-security issues were fixed: - bsc#1055695: XEN: 11SP4 and 12SP3 HVM guests can not be restored after the save using xl stack - bsc#1035231: Migration of HVM domU did not use superpages on destination dom0 - bsc#1002573: Optimized LVM functions in block-dmmd block-dmmd This update was imported from the SUSE:SLE-12-SP3:Update update project. xen-4.9.0_11-4.1.src.rpm xen-4.9.0_11-4.1.x86_64.rpm xen-debugsource-4.9.0_11-4.1.x86_64.rpm xen-devel-4.9.0_11-4.1.x86_64.rpm xen-doc-html-4.9.0_11-4.1.x86_64.rpm xen-libs-4.9.0_11-4.1.x86_64.rpm xen-libs-debuginfo-4.9.0_11-4.1.x86_64.rpm xen-tools-4.9.0_11-4.1.x86_64.rpm xen-tools-debuginfo-4.9.0_11-4.1.x86_64.rpm xen-tools-domU-4.9.0_11-4.1.x86_64.rpm xen-tools-domU-debuginfo-4.9.0_11-4.1.x86_64.rpm openSUSE-2017-1017 important openSUSE Leap 42.3 Update The openSUSE Leap 42.3 kernel was updated to 4.4.85 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-14051: An integer overflow in the qla2x00_sysfs_write_optrom_ctl function in drivers/scsi/qla2xxx/qla_attr.c in the Linux kernel allowed local users to cause a denial of service (memory corruption and system crash) by leveraging root access (bnc#1056588). - CVE-2017-12134: The xen_biovec_phys_mergeable function in drivers/xen/biomerge.c in Xen might allow local OS guest users to corrupt block device data streams and consequently obtain sensitive memory information, cause a denial of service, or gain host OS privileges by leveraging incorrect block IO merge-ability calculation (bnc#1051790 bnc#1053919). The following non-security bugs were fixed: - acpi: apd: Add clock frequency for Hisilicon Hip07/08 I2C controller (bsc#1049291). - acpi: apd: Fix HID for Hisilicon Hip07/08 (bsc#1049291). - acpi: APEI: Enable APEI multiple GHES source to share a single external IRQ (bsc#1053627). - acpi: irq: Fix return code of acpi_gsi_to_irq() (bsc#1053627). - acpi: pci: fix GIC irq model default PCI IRQ polarity (bsc#1053629). - acpi: scan: Prefer devices without _HID for _ADR matching (git-fixes). - Add "shutdown" to "struct class" (bsc#1053117). - alsa: hda - Add stereo mic quirk for Lenovo G50-70 (17aa:3978) (bsc#1020657). - alsa: hda - Implement mic-mute LED mode enum (bsc#1055013). - alsa: hda - Workaround for i915 KBL breakage (bsc#1048356,bsc#1047989,bsc#1055272). - alsa: ice1712: Add support for STAudio ADCIII (bsc#1048934). - alsa: usb-audio: Apply sample rate quirk to Sennheiser headset (bsc#1052580). - arm64: do not trace atomic operations (bsc#1055290). - block: add kblock_mod_delayed_work_on() (bsc#1050211). - block: Make blk_mq_delay_kick_requeue_list() rerun the queue at a quiet time (bsc#1050211). - block: provide bio_uninit() free freeing integrity/task associations (bsc#1050211). - block: return on congested block device (FATE#321994). - bluetooth: bnep: fix possible might sleep error in bnep_session (bsc#1031784). - bluetooth: cmtp: fix possible might sleep error in cmtp_session (bsc#1031784). - bnxt_en: Add a callback to inform RDMA driver during PCI shutdown (bsc#1053309). - bnxt_en: Add additional chip ID definitions (bsc#1053309). - bnxt_en: Add bnxt_get_num_stats() to centrally get the number of ethtool stats (bsc#1053309). - bnxt_en: Add missing logic to handle TPA end error conditions (bsc#1053309). - bnxt_en: Add PCI IDs for BCM57454 VF devices (bsc#1053309). - bnxt_en: Allow the user to set ethtool stats-block-usecs to 0 (bsc#1053309). - bnxt_en: Call bnxt_dcb_init() after getting firmware DCBX configuration (bsc#1053309). - bnxt_en: Check status of firmware DCBX agent before setting DCB_CAP_DCBX_HOST (bsc#1053309). - bnxt_en: Fix bug in ethtool -L (bsc#1053309). - bnxt_en: Fix netpoll handling (bsc#1053309). - bnxt_en: Fix race conditions in .ndo_get_stats64() (bsc#1053309). - bnxt_en: Fix SRIOV on big-endian architecture (bsc#1053309). - bnxt_en: Fix xmit_more with BQL (bsc#1053309). - bnxt_en: Implement ndo_bridge_{get|set}link methods (bsc#1053309). - bnxt_en: Implement xmit_more (bsc#1053309). - bnxt_en: Optimize doorbell write operations for newer chips (bsc#1053309). - bnxt_en: Pass in sh parameter to bnxt_set_dflt_rings() (bsc#1053309). - bnxt_en: Report firmware DCBX agent (bsc#1053309). - bnxt_en: Retrieve the hardware bridge mode from the firmware (bsc#1053309). - bnxt_en: Set ETS min_bw parameter for older firmware (bsc#1053309). - bnxt_en: Support for Short Firmware Message (bsc#1053309). - bnxt_en: Update firmware interface spec to 1.8.0 (bsc#1053309). - bnxt: fix unsigned comparsion with 0 (bsc#1053309). - bnxt: fix unused variable warnings (bsc#1053309). - btrfs: fix early ENOSPC due to delalloc (bsc#1049226). - btrfs: nowait aio: Correct assignment of pos (FATE#321994). - btrfs: nowait aio support (FATE#321994). - ceph: avoid accessing freeing inode in ceph_check_delayed_caps() (bsc#1048228). - ceph: avoid invalid memory dereference in the middle of umount (bsc#1048228). - ceph: cleanup writepage_nounlock() (bsc#1048228). - ceph: do not re-send interrupted flock request (bsc#1048228). - ceph: getattr before read on ceph.* xattrs (bsc#1048228). - ceph: handle epoch barriers in cap messages (bsc#1048228). - ceph: new mount option that specifies fscache uniquifier (bsc#1048228). - ceph: redirty page when writepage_nounlock() skips unwritable page (bsc#1048228). - ceph: remove special ack vs commit behavior (bsc#1048228). - ceph: remove useless page->mapping check in writepage_nounlock() (bsc#1048228). - ceph: re-request max size after importing caps (bsc#1048228). - ceph: update ceph_dentry_info::lease_session when necessary (bsc#1048228). - ceph: update the 'approaching max_size' code (bsc#1048228). - ceph: when seeing write errors on an inode, switch to sync writes (bsc#1048228). - cifs: Fix maximum SMB2 header size (bsc#1056185). - clocksource/drivers/arm_arch_timer: Fix mem frame loop initialization (bsc#1055709). - crush: assume weight_set != null imples weight_set_size > 0 (bsc#1048228). - crush: crush_init_workspace starts with struct crush_work (bsc#1048228). - crush: implement weight and id overrides for straw2 (bsc#1048228). - crush: remove an obsolete comment (bsc#1048228). - crypto: chcr - Add ctr mode and process large sg entries for cipher (bsc#1048325). - crypto: chcr - Avoid changing request structure (bsc#1048325). - crypto: chcr - Ensure Destination sg entry size less than 2k (bsc#1048325). - crypto: chcr - Fix fallback key setting (bsc#1048325). - crypto: chcr - Pass lcb bit setting to firmware (bsc#1048325). - crypto: chcr - Return correct error code (bsc#1048325). - cxgb4: update latest firmware version supported (bsc#1048327). - cxgbit: add missing __kfree_skb() (bsc#1052095). - cxgbit: fix sg_nents calculation (bsc#1052095). - Disable patch 0017-nvmet_fc-Simplify-sg-list-handling.patch (bsc#1052384) - dm: make flush bios explicitly sync (bsc#1050211). - dm mpath: do not lock up a CPU with requeuing activity (bsc#1048912). - drivers: net: xgene: Fix wrong logical operation (bsc#1056827). - drm/vmwgfx: Limit max desktop dimensions to 8Kx8K (bsc#1048155). - ext4: nowait aio support (FATE#321994). - fs: Introduce filemap_range_has_page() (FATE#321994). - fs: Introduce RWF_NOWAIT and FMODE_AIO_NOWAIT (FATE#321994). - fs: pass on flags in compat_writev (bsc#1050211). - fs: return if direct I/O will trigger writeback (FATE#321994). - fs: Separate out kiocb flags setup based on RWF_* flags (FATE#321994). - fs: Use RWF_* flags for AIO operations (FATE#321994). - fuse: initialize the flock flag in fuse_file on allocation (git-fixes). - i2c: designware: Add ACPI HID for Hisilicon Hip07/08 I2C controller (bsc#1049291). - i2c: designware: Convert to use unified device property API (bsc#1049291). - i2c: xgene: Set ACPI_COMPANION_I2C (bsc#1053633). - i2c: xgene-slimpro: Add ACPI support by using PCC mailbox (bsc#1053633). - i2c: xgene-slimpro: include linux/io.h for memremap (bsc#1053633). - i2c: xgene-slimpro: Use a single function to send command message (bsc#1053633). - i40e/i40evf: fix out-of-bounds read of cpumask (bsc#1053685). - ib/iser: Fix connection teardown race condition (bsc#1050211). - iscsi-target: fix invalid flags in text response (bsc#1052095). - iwlwifi: missing error code in iwl_trans_pcie_alloc() (bsc#1031717). - kabi: arm64: compatibility workaround for lse atomics (bsc#1055290). - kABI: protect enum pid_type (kabi). - kABI: protect struct iscsi_np (kabi). - kABI: protect struct se_lun (kabi). - kabi/severities: add fs/ceph to kabi severities (bsc#1048228). - kabi/severities: Ignore drivers/scsi/cxgbi (bsc#1052094) - kabi/severities: Ignore kABI changes due to last patchset (bnc#1053472) - kABI: uninline task_tgid_nr_nr (kabi). - kvm: arm64: Restore host physical timer access on hyp_panic() (bsc#1054082). - kvm: arm/arm64: Fix bug in advertising KVM_CAP_MSI_DEVID capability (bsc#1054082). - kvm, pkeys: do not use PKRU value in vcpu->arch.guest_fpu.state (bsc#1055935). - kvm: x86: block guest protection keys unless the host has them enabled (bsc#1055935). - kvm: x86: kABI workaround for PKRU fixes (bsc#1055935). - kvm: x86: simplify handling of PKRU (bsc#1055935). - libceph: abort already submitted but abortable requests when map or pool goes full (bsc#1048228). - libceph: add an epoch_barrier field to struct ceph_osd_client (bsc#1048228). - libceph: advertise support for NEW_OSDOP_ENCODING and SERVER_LUMINOUS (bsc#1048228). - libceph: advertise support for OSD_POOLRESEND (bsc#1048228). - libceph: allow requests to return immediately on full conditions if caller wishes (bsc#1048228). - libceph: always populate t->target_{oid,oloc} in calc_target() (bsc#1048228). - libceph: always signal completion when done (bsc#1048228). - libceph: apply_upmap() (bsc#1048228). - libceph: avoid unnecessary pi lookups in calc_target() (bsc#1048228). - libceph: ceph_connection_operations::reencode_message() method (bsc#1048228). - libceph: ceph_decode_skip_* helpers (bsc#1048228). - libceph: compute actual pgid in ceph_pg_to_up_acting_osds() (bsc#1048228). - libceph, crush: per-pool crush_choose_arg_map for crush_do_rule() (bsc#1048228). - libceph: delete from need_resend_linger before check_linger_pool_dne() (bsc#1048228). - libceph: do not call encode_request_finish() on MOSDBackoff messages (bsc#1048228). - libceph: do not call ->reencode_message() more than once per message (bsc#1048228). - libceph: do not pass pgid by value (bsc#1048228). - libceph: drop need_resend from calc_target() (bsc#1048228). - libceph: encode_{pgid,oloc}() helpers (bsc#1048228). - libceph: fallback for when there isn't a pool-specific choose_arg (bsc#1048228). - libceph: fix old style declaration warnings (bsc#1048228). - libceph: foldreq->last_force_resend into ceph_osd_request_target (bsc#1048228). - libceph: get rid of ack vs commit (bsc#1048228). - libceph: handle non-empty dest in ceph_{oloc,oid}_copy() (bsc#1048228). - libceph: initialize last_linger_id with a large integer (bsc#1048228). - libceph: introduce and switch to decode_pg_mapping() (bsc#1048228). - libceph: introduce ceph_spg, ceph_pg_to_primary_shard() (bsc#1048228). - libceph: kill __{insert,lookup,remove}_pg_mapping() (bsc#1048228). - libceph: make DEFINE_RB_* helpers more general (bsc#1048228). - libceph: make encode_request_*() work with r_mempool requests (bsc#1048228). - libceph: make RECOVERY_DELETES feature create a new interval (bsc#1048228). - libceph: make sure need_resend targets reflect latest map (bsc#1048228). - libceph: MOSDOp v8 encoding (actual spgid + full hash) (bsc#1048228). - libceph: new features macros (bsc#1048228). - libceph: new pi->last_force_request_resend (bsc#1048228). - libceph: NULL deref on osdmap_apply_incremental() error path (bsc#1048228). - libceph: osd_request_timeout option (bsc#1048228). - libceph: osd_state is 32 bits wide in luminous (bsc#1048228). - libceph: pg_upmap[_items] infrastructure (bsc#1048228). - libceph: pool deletion detection (bsc#1048228). - libceph: potential NULL dereference in ceph_msg_data_create() (bsc#1048228). - libceph: remove ceph_sanitize_features() workaround (bsc#1048228). - libceph: remove now unused finish_request() wrapper (bsc#1048228). - libceph: remove req->r_replay_version (bsc#1048228). - libceph: resend on PG splits if OSD has RESEND_ON_SPLIT (bsc#1048228). - libceph: respect RADOS_BACKOFF backoffs (bsc#1048228). - libceph: set -EINVAL in one place in crush_decode() (bsc#1048228). - libceph: support SERVER_JEWEL feature bits (bsc#1048228). - libceph: take osdc->lock in osdmap_show() and dump flags in hex (bsc#1048228). - libceph: upmap semantic changes (bsc#1048228). - libceph: use alloc_pg_mapping() in __decode_pg_upmap_items() (bsc#1048228). - libceph: use target pi for calc_target() calculations (bsc#1048228). - lib: test_rhashtable: fix for large entry counts (bsc#1055359). - lib: test_rhashtable: Fix KASAN warning (bsc#1055359). - locking/rwsem: Fix down_write_killable() for CONFIG_RWSEM_GENERIC_SPINLOCK=y (bsc#969756). - locking/rwsem-spinlock: Fix EINTR branch in __down_write_common() (bsc#969756). - lpfc: Add Buffer to Buffer credit recovery support (bsc#1052384). - lpfc: convert info messages to standard messages (bsc#1052384). - lpfc: Correct issues with FAWWN and FDISCs (bsc#1052384). - lpfc: Correct return error codes to align with nvme_fc transport (bsc#1052384). - lpfc: Fix bad sgl reposting after 2nd adapter reset (bsc#1052384). - lpfc: Fix crash in lpfc nvmet when fc port is reset (bsc#1052384). - lpfc: Fix duplicate NVME rport entries and namespaces (bsc#1052384). - lpfc: Fix handling of FCP and NVME FC4 types in Pt2Pt topology (bsc#1052384). - lpfc: fix "integer constant too large" error on 32bit archs (bsc#1052384). - lpfc: Fix loop mode target discovery (bsc#1052384). - lpfc: Fix MRQ > 1 context list handling (bsc#1052384). - lpfc: Fix NVME PRLI handling during RSCN (bsc#1052384). - lpfc: Fix nvme target failure after 2nd adapter reset (bsc#1052384). - lpfc: Fix oops when NVME Target is discovered in a nonNVME environment (bsc#1052384). - lpfc: Fix plogi collision that causes illegal state transition (bsc#1052384). - lpfc: Fix rediscovery on switch blade pull (bsc#1052384). - lpfc: Fix relative offset error on large nvmet target ios (bsc#1052384). - lpfc: fixup crash during storage failover operations (bsc#1042847). - lpfc: Limit amount of work processed in IRQ (bsc#1052384). - lpfc: lpfc version bump 11.4.0.3 (bsc#1052384). - lpfc: remove console log clutter (bsc#1052384). - lpfc: support nvmet_fc defer_rcv callback (bsc#1052384). - megaraid_sas: Fix probing cards without io port (bsc#1053681). - mmc: mmc: correct the logic for setting HS400ES signal voltage (bsc#1054082). - mm, madvise: ensure poisoned pages are removed from per-cpu lists (VM hw poison -- git fixes). - mptsas: Fixup device hotplug for VMWare ESXi (bsc#1030850). - net: ethernet: hip04: Call SET_NETDEV_DEV() (bsc#1049336). - netfilter: fix IS_ERR_VALUE usage (bsc#1052888). - netfilter: x_tables: pack percpu counter allocations (bsc#1052888). - netfilter: x_tables: pass xt_counters struct instead of packet counter (bsc#1052888). - netfilter: x_tables: pass xt_counters struct to counter allocator (bsc#1052888). - net: hns: add acpi function of xge led control (bsc#1049336). - net: hns: Fix a skb used after free bug (bsc#1049336). - net/mlx5: Cancel delayed recovery work when unloading the driver (bsc#1015342). - net/mlx5: Clean SRIOV eswitch resources upon VF creation failure (bsc#1015342). - net/mlx5: Consider tx_enabled in all modes on remap (bsc#1015342). - net/mlx5e: Add field select to MTPPS register (bsc#1015342). - net/mlx5e: Add missing support for PTP_CLK_REQ_PPS request (bsc#1015342). - net/mlx5e: Change 1PPS out scheme (bsc#1015342). - net/mlx5e: Fix broken disable 1PPS flow (bsc#1015342). - net/mlx5e: Fix outer_header_zero() check size (bsc#1015342). - net/mlx5e: Fix TX carrier errors report in get stats ndo (bsc#1015342). - net/mlx5e: Initialize CEE's getpermhwaddr address buffer to 0xff (bsc#1015342). - net/mlx5e: Rename physical symbol errors counter (bsc#1015342). - net/mlx5: Fix mlx5_add_flow_rules call with correct num of dests (bsc#1015342). - net/mlx5: Fix mlx5_ifc_mtpps_reg_bits structure size (bsc#1015342). - net/mlx5: Fix offset of hca cap reserved field (bsc#1015342). - net: phy: Fix lack of reference count on PHY driver (bsc#1049336). - net: phy: Fix PHY module checks and NULL deref in phy_attach_direct() (bsc#1049336). - nvme-fc: address target disconnect race conditions in fcp io submit (bsc#1052384). - nvme-fc: do not override opts->nr_io_queues (bsc#1052384). - nvme-fc: kABI fix for defer_rcv() callback (bsc#1052384). - nvme_fc/nvmet_fc: revise Create Association descriptor length (bsc#1052384). - nvme_fc: Reattach to localports on re-registration (bsc#1052384). - nvme-fc: revise TRADDR parsing (bsc#1052384). - nvme-fc: update tagset nr_hw_queues after queues reinit (bsc#1052384). - nvme-fc: use blk_mq_delay_run_hw_queue instead of open-coding it (bsc#1052384). - nvme: fix hostid parsing (bsc#1049272). - nvme-loop: update tagset nr_hw_queues after reconnecting/resetting (bsc#1052384). - nvme-pci: fix CMB sysfs file removal in reset path (bsc#1050211). - nvme-rdma: update tagset nr_hw_queues after reconnecting/resetting (bsc#1052384). - nvmet: avoid unneeded assignment of submit_bio return value (bsc#1052384). - nvmet_fc: Accept variable pad lengths on Create Association LS (bsc#1052384). - nvmet_fc: add defer_req callback for deferment of cmd buffer return (bsc#1052384). - nvmet-fc: correct use after free on list teardown (bsc#1052384). - nvmet-fc: eliminate incorrect static markers on local variables (bsc#1052384). - nvmet-fc: fix byte swapping in nvmet_fc_ls_create_association (bsc#1052384). - nvmet_fc: Simplify sg list handling (bsc#1052384). - nvmet: prefix version configfs file with attr (bsc#1052384). - of: fix "/cpus" reference leak in of_numa_parse_cpu_nodes() (bsc#1056827). - ovl: fix dentry leak for default_permissions (bsc#1054084). - pci/msi: fix the pci_alloc_irq_vectors_affinity stub (bsc#1050211). - pci/MSI: Ignore affinity if pre/post vector count is more than min_vecs (1050211). - percpu_ref: allow operation mode switching operations to be called concurrently (bsc#1055096). - percpu_ref: remove unnecessary RCU grace period for staggered atomic switching confirmation (bsc#1055096). - percpu_ref: reorganize __percpu_ref_switch_to_atomic() and relocate percpu_ref_switch_to_atomic() (bsc#1055096). - percpu_ref: restructure operation mode switching (bsc#1055096). - percpu_ref: unify staggered atomic switching wait behavior (bsc#1055096). - phy: Do not increment MDIO bus refcount unless it's a different owner (bsc#1049336). - phy: fix error case of phy_led_triggers_(un)register (bsc#1049336). - qeth: add network device features for VLAN devices (bnc#1053472, LTC#157385). - r8169: Add support for restarting auto-negotiation (bsc#1050742). - r8169:Correct the way of setting RTL8168DP ephy (bsc#1050742). - r8169:fix system hange problem (bsc#1050742). - r8169:Fix typo in setting RTL8168H PHY parameter (bsc#1050742). - r8169:Fix typo in setting RTL8168H PHY PFM mode (bsc#1050742). - r8169:Remove unnecessary phy reset for pcie nic when setting link spped (bsc#1050742). - r8169:Update the way of reading RTL8168H PHY register "rg_saw_cnt" (bsc#1050742). - rdma/mlx5: Fix existence check for extended address vector (bsc#1015342). - Remove patch 0407-nvme_fc-change-failure-code-on-remoteport-connectivi.patch (bsc#1037838) - Revert "ceph: SetPageError() for writeback pages if writepages fails" (bsc#1048228). - s390/diag: add diag26c support (bnc#1053472, LTC#156729). - s390: export symbols for crash-kmp (bsc#1053915). - s390: Include uapi/linux/if_ether.h instead of linux/if_ether.h (bsc#1053472). - s390/pci: do not cleanup in arch_setup_msi_irqs (bnc#1053472, LTC#157731). - s390/pci: fix handling of PEC 306 (bnc#1053472, LTC#157731). - s390/pci: improve error handling during fmb (de)registration (bnc#1053472, LTC#157731). - s390/pci: improve error handling during interrupt deregistration (bnc#1053472, LTC#157731). - s390/pci: improve pci hotplug (bnc#1053472, LTC#157731). - s390/pci: improve unreg_ioat error handling (bnc#1053472, LTC#157731). - s390/pci: introduce clp_get_state (bnc#1053472, LTC#157731). - s390/pci: provide more debug information (bnc#1053472, LTC#157731). - s390/pci: recognize name clashes with uids (bnc#1053472, LTC#157731). - s390/qeth: no ETH header for outbound AF_IUCV (bnc#1053472, LTC#156276). - s390/qeth: size calculation outbound buffers (bnc#1053472, LTC#156276). - s390/qeth: use diag26c to get MAC address on L2 (bnc#1053472, LTC#156729). - scsi: csiostor: add check for supported fw version (bsc#1005776). - scsi: csiostor: add support for Chelsio T6 adapters (bsc#1005776). - scsi: csiostor: fix use after free in csio_hw_use_fwconfig() (bsc#1005776). - scsi: csiostor: switch to pci_alloc_irq_vectors (bsc#1005776). - scsi: csiostor: update module version (bsc#1052093). - scsi: cxgb4i: assign rxqs in round robin mode (bsc#1052094). - scsi: qedf: Fix a potential NULL pointer dereference (bsc#1048912). - scsi: qedf: Limit number of CQs (bsc#1040813). - supported.conf: clear mistaken external support flag for cifs.ko (bsc#1053802). - tpm: fix: return rc when devm_add_action() fails (bsc#1020645, fate#321435, fate#321507, fate#321600, bsc#1034048, git-fixes 8e0ee3c9faed). - tpm: Issue a TPM2_Shutdown for TPM2 devices (bsc#1053117). - tpm: KABI fix (bsc#1053117). - tpm: read burstcount from TPM_STS in one 32-bit transaction (bsc#1020645, fate#321435, fate#321507, fate#321600, bsc#1034048, git-fixes 27084efee0c3). - tpm_tis_core: Choose appropriate timeout for reading burstcount (bsc#1020645, fate#321435, fate#321507, fate#321600, bsc#1034048, git-fixes aec04cbdf723). - tpm_tis_core: convert max timeouts from msec to jiffies (bsc#1020645, fate#321435, fate#321507, fate#321600, bsc#1034048, git-fixes aec04cbdf723). - tty: pl011: fix initialization order of QDF2400 E44 (bsc#1054082). - tty: serial: msm: Support more bauds (git-fixes). - Update patches.drivers/tpm-141-fix-RC-value-check-in-tpm2_seal_trusted.patch (bsc#1020645, fate#321435, fate#321507, fate#321600, bsc#1034048, git-fixes 5ca4c20cfd37). - usb: core: fix device node leak (bsc#1047487). - x86/mm: Fix use-after-free of ldt_struct (bsc#1055963). - xfs/dmapi: fix incorrect file->f_path.dentry->d_inode usage (bsc#1055896). - xfs: nowait aio support (FATE#321994). - xgene: Always get clk source, but ignore if it's missing for SGMII ports (bsc#1048501). - xgene: Do not fail probe, if there is no clk resource for SGMII interfaces (bsc#1048501). kernel-devel-4.4.85-22.1.noarch.rpm True kernel-macros-4.4.85-22.1.noarch.rpm True kernel-source-4.4.85-22.1.noarch.rpm True kernel-source-4.4.85-22.1.src.rpm True kernel-source-vanilla-4.4.85-22.1.noarch.rpm True kernel-debug-4.4.85-22.1.nosrc.rpm True kernel-debug-4.4.85-22.1.x86_64.rpm True kernel-debug-base-4.4.85-22.1.x86_64.rpm True kernel-debug-base-debuginfo-4.4.85-22.1.x86_64.rpm True kernel-debug-debuginfo-4.4.85-22.1.x86_64.rpm True kernel-debug-debugsource-4.4.85-22.1.x86_64.rpm True kernel-debug-devel-4.4.85-22.1.x86_64.rpm True kernel-debug-devel-debuginfo-4.4.85-22.1.x86_64.rpm True kernel-default-4.4.85-22.1.nosrc.rpm True kernel-default-4.4.85-22.1.x86_64.rpm True kernel-default-base-4.4.85-22.1.x86_64.rpm True kernel-default-base-debuginfo-4.4.85-22.1.x86_64.rpm True kernel-default-debuginfo-4.4.85-22.1.x86_64.rpm True kernel-default-debugsource-4.4.85-22.1.x86_64.rpm True kernel-default-devel-4.4.85-22.1.x86_64.rpm True kernel-docs-4.4.85-22.3.noarch.rpm True kernel-docs-4.4.85-22.3.src.rpm True kernel-docs-html-4.4.85-22.3.noarch.rpm True kernel-docs-pdf-4.4.85-22.3.noarch.rpm True kernel-obs-build-4.4.85-22.1.src.rpm True kernel-obs-build-4.4.85-22.1.x86_64.rpm True kernel-obs-build-debugsource-4.4.85-22.1.x86_64.rpm True kernel-obs-qa-4.4.85-22.1.src.rpm True kernel-obs-qa-4.4.85-22.1.x86_64.rpm True kernel-syms-4.4.85-22.1.src.rpm True kernel-syms-4.4.85-22.1.x86_64.rpm True kernel-vanilla-4.4.85-22.1.nosrc.rpm True kernel-vanilla-4.4.85-22.1.x86_64.rpm True kernel-vanilla-base-4.4.85-22.1.x86_64.rpm True kernel-vanilla-base-debuginfo-4.4.85-22.1.x86_64.rpm True kernel-vanilla-debuginfo-4.4.85-22.1.x86_64.rpm True kernel-vanilla-debugsource-4.4.85-22.1.x86_64.rpm True kernel-vanilla-devel-4.4.85-22.1.x86_64.rpm True openSUSE-2017-1035 moderate openSUSE Leap 42.3 Update This update for mpg123 fixes the following issues: - Update to version 1.25.6 * Hotfix for bug 255: Overflow reading frame data bits in layer II decoding. Now, all-zero data is returned if the frame data is exhausted. This might have a slight impact on performance, but not easily measurable so far. - Update to version 1.25.5 * Avoid another buffer read overflow in the ID3 parser on 32 bit platforms (bug 254). (CVE-2017-12797/boo#1056999) - Update to version 1.25.4 libmpg123: * Prevent harmless call to memcpy(NULL, NULL, 0). * More early checking of ID3v2 encoding values to avoid bogus text being stored. libmpg123-0-1.25.6-7.1.i586.rpm libmpg123-0-32bit-1.25.6-7.1.x86_64.rpm libmpg123-0-debuginfo-1.25.6-7.1.i586.rpm libmpg123-0-debuginfo-32bit-1.25.6-7.1.x86_64.rpm libout123-0-1.25.6-7.1.i586.rpm libout123-0-32bit-1.25.6-7.1.x86_64.rpm libout123-0-debuginfo-1.25.6-7.1.i586.rpm libout123-0-debuginfo-32bit-1.25.6-7.1.x86_64.rpm mpg123-1.25.6-7.1.i586.rpm mpg123-1.25.6-7.1.src.rpm mpg123-debuginfo-1.25.6-7.1.i586.rpm mpg123-debugsource-1.25.6-7.1.i586.rpm mpg123-devel-1.25.6-7.1.i586.rpm mpg123-devel-32bit-1.25.6-7.1.x86_64.rpm mpg123-esound-1.25.6-7.1.i586.rpm mpg123-esound-32bit-1.25.6-7.1.x86_64.rpm mpg123-esound-debuginfo-1.25.6-7.1.i586.rpm mpg123-esound-debuginfo-32bit-1.25.6-7.1.x86_64.rpm mpg123-jack-1.25.6-7.1.i586.rpm mpg123-jack-32bit-1.25.6-7.1.x86_64.rpm mpg123-jack-debuginfo-1.25.6-7.1.i586.rpm mpg123-jack-debuginfo-32bit-1.25.6-7.1.x86_64.rpm mpg123-openal-1.25.6-7.1.i586.rpm mpg123-openal-32bit-1.25.6-7.1.x86_64.rpm mpg123-openal-debuginfo-1.25.6-7.1.i586.rpm mpg123-openal-debuginfo-32bit-1.25.6-7.1.x86_64.rpm mpg123-portaudio-1.25.6-7.1.i586.rpm mpg123-portaudio-32bit-1.25.6-7.1.x86_64.rpm mpg123-portaudio-debuginfo-1.25.6-7.1.i586.rpm mpg123-portaudio-debuginfo-32bit-1.25.6-7.1.x86_64.rpm mpg123-pulse-1.25.6-7.1.i586.rpm mpg123-pulse-32bit-1.25.6-7.1.x86_64.rpm mpg123-pulse-debuginfo-1.25.6-7.1.i586.rpm mpg123-pulse-debuginfo-32bit-1.25.6-7.1.x86_64.rpm mpg123-sdl-1.25.6-7.1.i586.rpm mpg123-sdl-32bit-1.25.6-7.1.x86_64.rpm mpg123-sdl-debuginfo-1.25.6-7.1.i586.rpm mpg123-sdl-debuginfo-32bit-1.25.6-7.1.x86_64.rpm libmpg123-0-1.25.6-7.1.x86_64.rpm libmpg123-0-debuginfo-1.25.6-7.1.x86_64.rpm libout123-0-1.25.6-7.1.x86_64.rpm libout123-0-debuginfo-1.25.6-7.1.x86_64.rpm mpg123-1.25.6-7.1.x86_64.rpm mpg123-debuginfo-1.25.6-7.1.x86_64.rpm mpg123-debugsource-1.25.6-7.1.x86_64.rpm mpg123-devel-1.25.6-7.1.x86_64.rpm mpg123-esound-1.25.6-7.1.x86_64.rpm mpg123-esound-debuginfo-1.25.6-7.1.x86_64.rpm mpg123-jack-1.25.6-7.1.x86_64.rpm mpg123-jack-debuginfo-1.25.6-7.1.x86_64.rpm mpg123-openal-1.25.6-7.1.x86_64.rpm mpg123-openal-debuginfo-1.25.6-7.1.x86_64.rpm mpg123-portaudio-1.25.6-7.1.x86_64.rpm mpg123-portaudio-debuginfo-1.25.6-7.1.x86_64.rpm mpg123-pulse-1.25.6-7.1.x86_64.rpm mpg123-pulse-debuginfo-1.25.6-7.1.x86_64.rpm mpg123-sdl-1.25.6-7.1.x86_64.rpm mpg123-sdl-debuginfo-1.25.6-7.1.x86_64.rpm openSUSE-2017-1009 important openSUSE Leap 42.3 Update The Software Update Stack was updated to receive fixes and enhancements. libzypp: - Adapt to work with GnuPG 2.1.23. (bsc#1054088) - Support signing with subkeys. (bsc#1008325) - Enhance sort order for media.1/products. (bsc#1054671) zypper: - Also show a gpg key's subkeys. (bsc#1008325) - Improve signature check callback messages. (bsc#1045735) - Add options to tune the GPG check settings. (bsc#1045735) - Adapt download callback to report and handle unsigned packages. (bsc#1038984, CVE-2017-7436) - Report missing/optional files as 'not found' rather than 'error'. (bsc#1047785) This update was imported from the SUSE:SLE-12-SP3:Update update project. libzypp-16.15.6-12.1.i586.rpm True libzypp-16.15.6-12.1.src.rpm True libzypp-debuginfo-16.15.6-12.1.i586.rpm True libzypp-debugsource-16.15.6-12.1.i586.rpm True libzypp-devel-16.15.6-12.1.i586.rpm True libzypp-devel-doc-16.15.6-12.1.i586.rpm True zypper-1.13.32-8.1.i586.rpm True zypper-1.13.32-8.1.src.rpm True zypper-aptitude-1.13.32-8.1.noarch.rpm True zypper-debuginfo-1.13.32-8.1.i586.rpm True zypper-debugsource-1.13.32-8.1.i586.rpm True zypper-log-1.13.32-8.1.noarch.rpm True libzypp-16.15.6-12.1.x86_64.rpm True libzypp-debuginfo-16.15.6-12.1.x86_64.rpm True libzypp-debugsource-16.15.6-12.1.x86_64.rpm True libzypp-devel-16.15.6-12.1.x86_64.rpm True libzypp-devel-doc-16.15.6-12.1.x86_64.rpm True zypper-1.13.32-8.1.x86_64.rpm True zypper-debuginfo-1.13.32-8.1.x86_64.rpm True zypper-debugsource-1.13.32-8.1.x86_64.rpm True openSUSE-2017-1030 low openSUSE Leap 42.3 Update This update for yast2-ntp-client provides the following fixes: - Fix a crash when a restrict entry in autoyast have an empty value. (bsc#1043370) - Make sure the trusted key configuration entry is written correctly. (bsc#1043370) - Fix a crash in ntp-client. (bsc#1051899) This update was imported from the SUSE:SLE-12-SP3:Update update project. yast2-ntp-client-3.2.14-3.1.noarch.rpm yast2-ntp-client-3.2.14-3.1.src.rpm openSUSE-2017-1013 moderate openSUSE Leap 42.3 Update This update for libgcrypt fixes the following issues: - libgcrypt stored an open file descriptor to the random device in a static variable between invocations. gnome-keyring-daemon on initialization reopened descriptors 0-2 with /dev/null which caused an infinite loop when libgcrypt attempted to read from the random device (bsc#1043333) - Avoid seeding the DRBG during FIPS power-up selftests (bsc#1046659) * don't call gcry_drbg_instantiate() in healthcheck sanity test to save entropy * turn off blinding for RSA decryption in selftests_rsa to avoid allocation of a random integer - fix a bug in gcry_drbg_healthcheck_sanity() which caused skipping some of the tests (bsc#1046659) - dlsym returns PLT address on s390x, dlopen libgcrypt20.so before calling dlsym (bsc#1047008) This update was imported from the SUSE:SLE-12:Update update project. libgcrypt-1.6.1-39.1.src.rpm libgcrypt-cavs-1.6.1-39.1.i586.rpm libgcrypt-cavs-debuginfo-1.6.1-39.1.i586.rpm libgcrypt-debugsource-1.6.1-39.1.i586.rpm libgcrypt-devel-1.6.1-39.1.i586.rpm libgcrypt-devel-32bit-1.6.1-39.1.x86_64.rpm libgcrypt-devel-debuginfo-1.6.1-39.1.i586.rpm libgcrypt-devel-debuginfo-32bit-1.6.1-39.1.x86_64.rpm libgcrypt20-1.6.1-39.1.i586.rpm libgcrypt20-32bit-1.6.1-39.1.x86_64.rpm libgcrypt20-debuginfo-1.6.1-39.1.i586.rpm libgcrypt20-debuginfo-32bit-1.6.1-39.1.x86_64.rpm libgcrypt20-hmac-1.6.1-39.1.i586.rpm libgcrypt20-hmac-32bit-1.6.1-39.1.x86_64.rpm libgcrypt-cavs-1.6.1-39.1.x86_64.rpm libgcrypt-cavs-debuginfo-1.6.1-39.1.x86_64.rpm libgcrypt-debugsource-1.6.1-39.1.x86_64.rpm libgcrypt-devel-1.6.1-39.1.x86_64.rpm libgcrypt-devel-debuginfo-1.6.1-39.1.x86_64.rpm libgcrypt20-1.6.1-39.1.x86_64.rpm libgcrypt20-debuginfo-1.6.1-39.1.x86_64.rpm libgcrypt20-hmac-1.6.1-39.1.x86_64.rpm openSUSE-2017-1014 low openSUSE Leap 42.3 Update This update for machinery provides version 1.23.0 and brings the following fixes and improvements: - Support inspection of ppc64 systems. (bsc#1052877) - Gracefully handle incorrect filter paths in the experimental filtering function. - Error handling for disrupted SSH connection while inspecting. - Fix resetting of scroll bar after clicking on button "inspection details". - Add support for HAML gems >= 5.0. (bsc#1043785) - Add support for Sinatra gems >= 2.0. This update was imported from the SUSE:SLE-12:Update update project. machinery-1.23.0-5.1.src.rpm machinery-1.23.0-5.1.x86_64.rpm machinery-debuginfo-1.23.0-5.1.x86_64.rpm machinery-debugsource-1.23.0-5.1.x86_64.rpm machinery-doc-1.23.0-5.1.x86_64.rpm openSUSE-2017-1067 important openSUSE Leap 42.3 Update This update introduces lame and twolame. For ffmpeg2 it updates to version 2.8.13 and fixes several issues. These security issues were fixed: - CVE-2017-14058: The read_data function in libavformat/hls.c did not restrict reload attempts for an insufficient list, which allowed remote attackers to cause a denial of service (infinite loop) (bsc#1056762). - CVE-2017-14057: In asf_read_marker() due to lack of an EOF (End of File) check might have caused huge CPU and memory consumption. When a crafted ASF file, which claims a large "name_len" or "count" field in the header but did not contain sufficient backing data, was provided, the loops over the name and markers would consume huge CPU and memory resources, since there is no EOF check inside these loops (bsc#1056761). - CVE-2017-14059: A DoS in cine_read_header() due to lack of an EOF check might have caused huge CPU and memory consumption. When a crafted CINE file, which claims a large "duration" field in the header but did not contain sufficient backing data, was provided, the image-offset parsing loop would consume huge CPU and memory resources, since there is no EOF check inside the loop (bsc#1056763). - CVE-2017-14056: A DoS in rl2_read_header() due to lack of an EOF (End of File) check might have caused huge CPU and memory consumption. When a crafted RL2 file, which claims a large "frame_count" field in the header but did not contain sufficient backing data, was provided, the loops (for offset and size tables) would consume huge CPU and memory resources, since there is no EOF check inside these loops (bsc#1056760). - CVE-2017-14055: a DoS in mv_read_header() due to lack of an EOF (End of File) check might have caused huge CPU and memory consumption. When a crafted MV file, which claims a large "nb_frames" field in the header but did not contain sufficient backing data, was provided, the loop over the frames would consume huge CPU and memory resources, since there is no EOF check inside the loop (bsc#1056766). - boo#1046211: Lots of integer overflow fixes - CVE-2016-9561: The che_configure function in libavcodec/aacdec_template.c in FFmpeg allowed remote attackers to cause a denial of service (allocation of huge memory, and being killed by the OS) via a crafted MOV file (boo#1015120) - CVE-2017-7863: FFmpeg had an out-of-bounds write caused by a heap-based buffer overflow related to the decode_frame_common function in libavcodec/pngdec.c (boo#1034179) - CVE-2017-7865: FFmpeg had an out-of-bounds write caused by a heap-based buffer overflow related to the ipvideo_decode_block_opcode_0xA function in libavcodec/interplayvideo.c and the avcodec_align_dimensions2 function in libavcodec/utils.c (boo#1034177) - CVE-2017-7866: FFmpeg had an out-of-bounds write caused by a stack-based buffer overflow related to the decode_zbuf function in libavcodec/pngdec.c (boo#1034176) - CVE-2016-10190: Heap-based buffer overflow in libavformat/http.c in FFmpeg allowed remote web servers to execute arbitrary code via a negative chunk size in an HTTP response (boo#1022920) - CVE-2016-10191: Heap-based buffer overflow in libavformat/rtmppkt.c in FFmpeg allowed remote attackers to execute arbitrary code by leveraging failure to check for RTMP packet size mismatches (boo#1022921) - CVE-2016-10192: Heap-based buffer overflow in ffserver.c in FFmpeg allowed remote attackers to execute arbitrary code by leveraging failure to check chunk size (boo#1022922) - CVE-2017-14169: In the mxf_read_primer_pack function an integer signedness error have might occured when a crafted file, which claims a large "item_num" field such as 0xffffffff, was provided. As a result, the variable "item_num" turns negative, bypassing the check for a large value (bsc#1057536). - CVE-2017-14170: Prevent DoS in mxf_read_index_entry_array() due to lack of an EOF (End of File) check that might have caused huge CPU consumption. When a crafted MXF file, which claims a large "nb_index_entries" field in the header but did not contain sufficient backing data, was provided, the loop would consume huge CPU resources, since there was no EOF check inside the loop. Moreover, this big loop can be invoked multiple times if there is more than one applicable data segment in the crafted MXF file (bsc#1057537). - CVE-2017-14171: Prevent DoS in nsv_parse_NSVf_header() due to lack of an EOF (End of File) check taht might have caused huge CPU consumption. When a crafted NSV file, which claims a large "table_entries_used" field in the header but did not contain sufficient backing data, was provided, the loop over 'table_entries_used' would consume huge CPU resources, since there was no EOF check inside the loop (bsc#1057539). - CVE-2017-14223: Prevent DoS in asf_build_simple_index() due to lack of an EOF (End of File) check that might have caused huge CPU consumption. When a crafted ASF file, which claims a large "ict" field in the header but did not contain sufficient backing data, was provided, the for loop would consume huge CPU and memory resources, since there was no EOF check inside the loop (bsc#1058019) - CVE-2017-14222: Prevent DoS in read_tfra() due to lack of an EOF (End of File) check that might have caused huge CPU and memory consumption. When a crafted MOV file, which claims a large "item_count" field in the header but did not contain sufficient backing data, was provided, the loop would consume huge CPU and memory resources, since there was no EOF check inside the loop (bsc#1058020) These non-security issues were fixed: - Unconditionalize celt, ass, openjpeg, webp, libva, vdpau. - Build unconditionally with lame and twolame - Enable AC3 and MP3 decoding to match multimedia:libs/ffmpeg (3.x) For ffmpeg it updates to version 3.3.4 and fixes several issues. These security issues were fixed: - CVE-2017-14225: The av_color_primaries_name function may have returned a NULL pointer depending on a value contained in a file, but callers did not anticipate this, leading to a NULL pointer dereference (bsc#1058018). - CVE-2017-14223: Prevent DoS in asf_build_simple_index() due to lack of an EOF (End of File) check that might have caused huge CPU consumption. When a crafted ASF file, which claims a large "ict" field in the header but did not contain sufficient backing data, was provided, the for loop would consume huge CPU and memory resources, since there was no EOF check inside the loop (bsc#1058019). - CVE-2017-14222: Prevent DoS in read_tfra() due to lack of an EOF (End of File) check that might have caused huge CPU and memory consumption. When a crafted MOV file, which claims a large "item_count" field in the header but did not contain sufficient backing data, was provided, the loop would consume huge CPU and memory resources, since there was no EOF check inside the loop (bsc#1058020). - CVE-2017-14058: The read_data function in libavformat/hls.c did not restrict reload attempts for an insufficient list, which allowed remote attackers to cause a denial of service (infinite loop) (bsc#1056762) - CVE-2017-14057: In asf_read_marker() due to lack of an EOF (End of File) check might have caused huge CPU and memory consumption. When a crafted ASF file, which claims a large "name_len" or "count" field in the header but did not contain sufficient backing data, was provided, the loops over the name and markers would consume huge CPU and memory resources, since there is no EOF check inside these loops (bsc#1056761) - CVE-2017-14059: A DoS in cine_read_header() due to lack of an EOF check might have caused huge CPU and memory consumption. When a crafted CINE file, which claims a large "duration" field in the header but did not contain sufficient backing data, was provided, the image-offset parsing loop would consume huge CPU and memory resources, since there is no EOF check inside the loop (bsc#1056763) - CVE-2017-14054: A DoS in ivr_read_header() due to lack of an EOF (End of File) check might have caused huge CPU consumption. When a crafted IVR file, which claims a large "len" field in the header but did not contain sufficient backing data, was provided, the first type==4 loop would consume huge CPU resources, since there is no EOF check inside the loop (bsc#1056765). - CVE-2017-14056: A DoS in rl2_read_header() due to lack of an EOF (End of File) check might have caused huge CPU and memory consumption. When a crafted RL2 file, which claims a large "frame_count" field in the header but did not contain sufficient backing data, was provided, the loops (for offset and size tables) would consume huge CPU and memory resources, since there is no EOF check inside these loops (bsc#1056760) - CVE-2017-14055: a DoS in mv_read_header() due to lack of an EOF (End of File) check might have caused huge CPU and memory consumption. When a crafted MV file, which claims a large "nb_frames" field in the header but did not contain sufficient backing data, was provided, the loop over the frames would consume huge CPU and memory resources, since there is no EOF check inside the loop (bsc#1056766) - CVE-2017-11399: Integer overflow in the ape_decode_frame function allowed remote attackers to cause a denial of service (out-of-array access and application crash) or possibly have unspecified other impact via a crafted APE file (bsc#1049095). - CVE-2017-14171: Prevent DoS in nsv_parse_NSVf_header() due to lack of an EOF (End of File) check taht might have caused huge CPU consumption. When a crafted NSV file, which claims a large "table_entries_used" field in the header but did not contain sufficient backing data, was provided, the loop over 'table_entries_used' would consume huge CPU resources, since there was no EOF check inside the loop (bsc#1057539) - CVE-2017-14170: Prevent DoS in mxf_read_index_entry_array() due to lack of an EOF (End of File) check that might have caused huge CPU consumption. When a crafted MXF file, which claims a large "nb_index_entries" field in the header but did not contain sufficient backing data, was provided, the loop would consume huge CPU resources, since there was no EOF check inside the loop. Moreover, this big loop can be invoked multiple times if there is more than one applicable data segment in the crafted MXF file (bsc#1057537) - CVE-2017-14169: In the mxf_read_primer_pack function an integer signedness error have might occured when a crafted file, which claims a large "item_num" field such as 0xffffffff, was provided. As a result, the variable "item_num" turns negative, bypassing the check for a large value (bsc#1057536) It also includes various fixes for integer overflows and too-large bit shifts that didn't receive a CVE. These non-security issues were fixed: - Unconditionalize celt, ass, openjpeg, webp, netcdf, libva, vdpau. - Build unconditionally with lame and twolame - Enabled cuda and cuvid for unrestricted build. - Add additional checks to ensure MPEG is off ffmpeg-3.3.4-7.1.i586.rpm ffmpeg-3.3.4-7.1.src.rpm ffmpeg-debuginfo-3.3.4-7.1.i586.rpm ffmpeg-debugsource-3.3.4-7.1.i586.rpm libavcodec-devel-3.3.4-7.1.i586.rpm libavcodec57-3.3.4-7.1.i586.rpm libavcodec57-32bit-3.3.4-7.1.x86_64.rpm libavcodec57-debuginfo-3.3.4-7.1.i586.rpm libavcodec57-debuginfo-32bit-3.3.4-7.1.x86_64.rpm libavdevice-devel-3.3.4-7.1.i586.rpm libavdevice57-3.3.4-7.1.i586.rpm libavdevice57-32bit-3.3.4-7.1.x86_64.rpm libavdevice57-debuginfo-3.3.4-7.1.i586.rpm libavdevice57-debuginfo-32bit-3.3.4-7.1.x86_64.rpm libavfilter-devel-3.3.4-7.1.i586.rpm libavfilter6-3.3.4-7.1.i586.rpm libavfilter6-32bit-3.3.4-7.1.x86_64.rpm libavfilter6-debuginfo-3.3.4-7.1.i586.rpm libavfilter6-debuginfo-32bit-3.3.4-7.1.x86_64.rpm libavformat-devel-3.3.4-7.1.i586.rpm libavformat57-3.3.4-7.1.i586.rpm libavformat57-32bit-3.3.4-7.1.x86_64.rpm libavformat57-debuginfo-3.3.4-7.1.i586.rpm libavformat57-debuginfo-32bit-3.3.4-7.1.x86_64.rpm libavresample-devel-3.3.4-7.1.i586.rpm libavresample3-3.3.4-7.1.i586.rpm libavresample3-32bit-3.3.4-7.1.x86_64.rpm libavresample3-debuginfo-3.3.4-7.1.i586.rpm libavresample3-debuginfo-32bit-3.3.4-7.1.x86_64.rpm libavutil-devel-3.3.4-7.1.i586.rpm libavutil55-3.3.4-7.1.i586.rpm libavutil55-32bit-3.3.4-7.1.x86_64.rpm libavutil55-debuginfo-3.3.4-7.1.i586.rpm libavutil55-debuginfo-32bit-3.3.4-7.1.x86_64.rpm libpostproc-devel-3.3.4-7.1.i586.rpm libpostproc54-3.3.4-7.1.i586.rpm libpostproc54-32bit-3.3.4-7.1.x86_64.rpm libpostproc54-debuginfo-3.3.4-7.1.i586.rpm libpostproc54-debuginfo-32bit-3.3.4-7.1.x86_64.rpm libswresample-devel-3.3.4-7.1.i586.rpm libswresample2-3.3.4-7.1.i586.rpm libswresample2-32bit-3.3.4-7.1.x86_64.rpm libswresample2-debuginfo-3.3.4-7.1.i586.rpm libswresample2-debuginfo-32bit-3.3.4-7.1.x86_64.rpm libswscale-devel-3.3.4-7.1.i586.rpm libswscale4-3.3.4-7.1.i586.rpm libswscale4-32bit-3.3.4-7.1.x86_64.rpm libswscale4-debuginfo-3.3.4-7.1.i586.rpm libswscale4-debuginfo-32bit-3.3.4-7.1.x86_64.rpm ffmpeg2-2.8.13-32.1.src.rpm ffmpeg2-debugsource-2.8.13-32.1.i586.rpm ffmpeg2-devel-2.8.13-32.1.i586.rpm libavcodec56-2.8.13-32.1.i586.rpm libavcodec56-32bit-2.8.13-32.1.x86_64.rpm libavcodec56-debuginfo-2.8.13-32.1.i586.rpm libavcodec56-debuginfo-32bit-2.8.13-32.1.x86_64.rpm libavdevice56-2.8.13-32.1.i586.rpm libavdevice56-32bit-2.8.13-32.1.x86_64.rpm libavdevice56-debuginfo-2.8.13-32.1.i586.rpm libavdevice56-debuginfo-32bit-2.8.13-32.1.x86_64.rpm libavfilter5-2.8.13-32.1.i586.rpm libavfilter5-32bit-2.8.13-32.1.x86_64.rpm libavfilter5-debuginfo-2.8.13-32.1.i586.rpm libavfilter5-debuginfo-32bit-2.8.13-32.1.x86_64.rpm libavformat56-2.8.13-32.1.i586.rpm libavformat56-32bit-2.8.13-32.1.x86_64.rpm libavformat56-debuginfo-2.8.13-32.1.i586.rpm libavformat56-debuginfo-32bit-2.8.13-32.1.x86_64.rpm libavresample2-2.8.13-32.1.i586.rpm libavresample2-32bit-2.8.13-32.1.x86_64.rpm libavresample2-debuginfo-2.8.13-32.1.i586.rpm libavresample2-debuginfo-32bit-2.8.13-32.1.x86_64.rpm libavutil54-2.8.13-32.1.i586.rpm libavutil54-32bit-2.8.13-32.1.x86_64.rpm libavutil54-debuginfo-2.8.13-32.1.i586.rpm libavutil54-debuginfo-32bit-2.8.13-32.1.x86_64.rpm libpostproc53-2.8.13-32.1.i586.rpm libpostproc53-32bit-2.8.13-32.1.x86_64.rpm libpostproc53-debuginfo-2.8.13-32.1.i586.rpm libpostproc53-debuginfo-32bit-2.8.13-32.1.x86_64.rpm libswresample1-2.8.13-32.1.i586.rpm libswresample1-32bit-2.8.13-32.1.x86_64.rpm libswresample1-debuginfo-2.8.13-32.1.i586.rpm libswresample1-debuginfo-32bit-2.8.13-32.1.x86_64.rpm libswscale3-2.8.13-32.1.i586.rpm libswscale3-32bit-2.8.13-32.1.x86_64.rpm libswscale3-debuginfo-2.8.13-32.1.i586.rpm libswscale3-debuginfo-32bit-2.8.13-32.1.x86_64.rpm lame-3.99.5-2.1.i586.rpm lame-3.99.5-2.1.src.rpm lame-debuginfo-3.99.5-2.1.i586.rpm lame-debugsource-3.99.5-2.1.i586.rpm lame-doc-3.99.5-2.1.i586.rpm lame-mp3rtp-3.99.5-2.1.i586.rpm lame-mp3rtp-debuginfo-3.99.5-2.1.i586.rpm libmp3lame-devel-3.99.5-2.1.i586.rpm libmp3lame0-3.99.5-2.1.i586.rpm libmp3lame0-32bit-3.99.5-2.1.x86_64.rpm libmp3lame0-debuginfo-3.99.5-2.1.i586.rpm libmp3lame0-debuginfo-32bit-3.99.5-2.1.x86_64.rpm libtwolame-devel-0.3.13-2.1.i586.rpm libtwolame0-0.3.13-2.1.i586.rpm libtwolame0-32bit-0.3.13-2.1.x86_64.rpm libtwolame0-debuginfo-0.3.13-2.1.i586.rpm libtwolame0-debuginfo-32bit-0.3.13-2.1.x86_64.rpm twolame-0.3.13-2.1.i586.rpm twolame-0.3.13-2.1.src.rpm twolame-debuginfo-0.3.13-2.1.i586.rpm twolame-debugsource-0.3.13-2.1.i586.rpm ffmpeg-3.3.4-7.1.x86_64.rpm ffmpeg-debuginfo-3.3.4-7.1.x86_64.rpm ffmpeg-debugsource-3.3.4-7.1.x86_64.rpm libavcodec-devel-3.3.4-7.1.x86_64.rpm libavcodec57-3.3.4-7.1.x86_64.rpm libavcodec57-debuginfo-3.3.4-7.1.x86_64.rpm libavdevice-devel-3.3.4-7.1.x86_64.rpm libavdevice57-3.3.4-7.1.x86_64.rpm libavdevice57-debuginfo-3.3.4-7.1.x86_64.rpm libavfilter-devel-3.3.4-7.1.x86_64.rpm libavfilter6-3.3.4-7.1.x86_64.rpm libavfilter6-debuginfo-3.3.4-7.1.x86_64.rpm libavformat-devel-3.3.4-7.1.x86_64.rpm libavformat57-3.3.4-7.1.x86_64.rpm libavformat57-debuginfo-3.3.4-7.1.x86_64.rpm libavresample-devel-3.3.4-7.1.x86_64.rpm libavresample3-3.3.4-7.1.x86_64.rpm libavresample3-debuginfo-3.3.4-7.1.x86_64.rpm libavutil-devel-3.3.4-7.1.x86_64.rpm libavutil55-3.3.4-7.1.x86_64.rpm libavutil55-debuginfo-3.3.4-7.1.x86_64.rpm libpostproc-devel-3.3.4-7.1.x86_64.rpm libpostproc54-3.3.4-7.1.x86_64.rpm libpostproc54-debuginfo-3.3.4-7.1.x86_64.rpm libswresample-devel-3.3.4-7.1.x86_64.rpm libswresample2-3.3.4-7.1.x86_64.rpm libswresample2-debuginfo-3.3.4-7.1.x86_64.rpm libswscale-devel-3.3.4-7.1.x86_64.rpm libswscale4-3.3.4-7.1.x86_64.rpm libswscale4-debuginfo-3.3.4-7.1.x86_64.rpm ffmpeg2-debugsource-2.8.13-32.1.x86_64.rpm ffmpeg2-devel-2.8.13-32.1.x86_64.rpm libavcodec56-2.8.13-32.1.x86_64.rpm libavcodec56-debuginfo-2.8.13-32.1.x86_64.rpm libavdevice56-2.8.13-32.1.x86_64.rpm libavdevice56-debuginfo-2.8.13-32.1.x86_64.rpm libavfilter5-2.8.13-32.1.x86_64.rpm libavfilter5-debuginfo-2.8.13-32.1.x86_64.rpm libavformat56-2.8.13-32.1.x86_64.rpm libavformat56-debuginfo-2.8.13-32.1.x86_64.rpm libavresample2-2.8.13-32.1.x86_64.rpm libavresample2-debuginfo-2.8.13-32.1.x86_64.rpm libavutil54-2.8.13-32.1.x86_64.rpm libavutil54-debuginfo-2.8.13-32.1.x86_64.rpm libpostproc53-2.8.13-32.1.x86_64.rpm libpostproc53-debuginfo-2.8.13-32.1.x86_64.rpm libswresample1-2.8.13-32.1.x86_64.rpm libswresample1-debuginfo-2.8.13-32.1.x86_64.rpm libswscale3-2.8.13-32.1.x86_64.rpm libswscale3-debuginfo-2.8.13-32.1.x86_64.rpm lame-3.99.5-2.1.x86_64.rpm lame-debuginfo-3.99.5-2.1.x86_64.rpm lame-debugsource-3.99.5-2.1.x86_64.rpm lame-doc-3.99.5-2.1.x86_64.rpm lame-mp3rtp-3.99.5-2.1.x86_64.rpm lame-mp3rtp-debuginfo-3.99.5-2.1.x86_64.rpm libmp3lame-devel-3.99.5-2.1.x86_64.rpm libmp3lame0-3.99.5-2.1.x86_64.rpm libmp3lame0-debuginfo-3.99.5-2.1.x86_64.rpm libtwolame-devel-0.3.13-2.1.x86_64.rpm libtwolame0-0.3.13-2.1.x86_64.rpm libtwolame0-debuginfo-0.3.13-2.1.x86_64.rpm twolame-0.3.13-2.1.x86_64.rpm twolame-debuginfo-0.3.13-2.1.x86_64.rpm twolame-debugsource-0.3.13-2.1.x86_64.rpm openSUSE-2017-1020 important openSUSE Leap 42.3 Update This update for postgresql94 fixes the following issues: * CVE-2017-7547: Further restrict visibility of pg_user_mappings.umoptions, to protect passwords stored as user mapping options. (bsc#1051685) * CVE-2017-7546: Disallow empty passwords in all password-based authentication methods. (bsc#1051684) * CVE-2017-7548: lo_put() function ignores ACLs. (bsc#1053259) This update was imported from the SUSE:SLE-12:Update update project. postgresql94-devel-9.4.13-12.1.i586.rpm postgresql94-devel-debuginfo-9.4.13-12.1.i586.rpm postgresql94-libs-9.4.13-12.1.src.rpm postgresql94-libs-debugsource-9.4.13-12.1.i586.rpm postgresql94-9.4.13-12.1.i586.rpm postgresql94-9.4.13-12.1.src.rpm postgresql94-contrib-9.4.13-12.1.i586.rpm postgresql94-contrib-debuginfo-9.4.13-12.1.i586.rpm postgresql94-debuginfo-9.4.13-12.1.i586.rpm postgresql94-debugsource-9.4.13-12.1.i586.rpm postgresql94-docs-9.4.13-12.1.noarch.rpm postgresql94-plperl-9.4.13-12.1.i586.rpm postgresql94-plperl-debuginfo-9.4.13-12.1.i586.rpm postgresql94-plpython-9.4.13-12.1.i586.rpm postgresql94-plpython-debuginfo-9.4.13-12.1.i586.rpm postgresql94-pltcl-9.4.13-12.1.i586.rpm postgresql94-pltcl-debuginfo-9.4.13-12.1.i586.rpm postgresql94-server-9.4.13-12.1.i586.rpm postgresql94-server-debuginfo-9.4.13-12.1.i586.rpm postgresql94-test-9.4.13-12.1.i586.rpm postgresql94-devel-9.4.13-12.1.x86_64.rpm postgresql94-devel-debuginfo-9.4.13-12.1.x86_64.rpm postgresql94-libs-debugsource-9.4.13-12.1.x86_64.rpm postgresql94-9.4.13-12.1.x86_64.rpm postgresql94-contrib-9.4.13-12.1.x86_64.rpm postgresql94-contrib-debuginfo-9.4.13-12.1.x86_64.rpm postgresql94-debuginfo-9.4.13-12.1.x86_64.rpm postgresql94-debugsource-9.4.13-12.1.x86_64.rpm postgresql94-plperl-9.4.13-12.1.x86_64.rpm postgresql94-plperl-debuginfo-9.4.13-12.1.x86_64.rpm postgresql94-plpython-9.4.13-12.1.x86_64.rpm postgresql94-plpython-debuginfo-9.4.13-12.1.x86_64.rpm postgresql94-pltcl-9.4.13-12.1.x86_64.rpm postgresql94-pltcl-debuginfo-9.4.13-12.1.x86_64.rpm postgresql94-server-9.4.13-12.1.x86_64.rpm postgresql94-server-debuginfo-9.4.13-12.1.x86_64.rpm postgresql94-test-9.4.13-12.1.x86_64.rpm openSUSE-2017-1021 important openSUSE Leap 42.3 Update This update for postgresql96 fixes the following issues: * CVE-2017-7547: Further restrict visibility of pg_user_mappings.umoptions, to protect passwords stored as user mapping options. (bsc#1051685) * CVE-2017-7546: Disallow empty passwords in all password-based authentication methods. (bsc#1051684) * CVE-2017-7548: lo_put() function ignores ACLs. (bsc#1053259) The changelog for this release is here: https://www.postgresql.org/docs/9.6/static/release-9-6-4.html This update was imported from the SUSE:SLE-12:Update update project. libecpg6-32bit-9.6.4-6.1.x86_64.rpm libecpg6-9.6.4-6.1.i586.rpm libecpg6-debuginfo-32bit-9.6.4-6.1.x86_64.rpm libecpg6-debuginfo-9.6.4-6.1.i586.rpm libpq5-32bit-9.6.4-6.1.x86_64.rpm libpq5-9.6.4-6.1.i586.rpm libpq5-debuginfo-32bit-9.6.4-6.1.x86_64.rpm libpq5-debuginfo-9.6.4-6.1.i586.rpm postgresql96-devel-9.6.4-6.1.i586.rpm postgresql96-devel-debuginfo-9.6.4-6.1.i586.rpm postgresql96-libs-9.6.4-6.1.src.rpm postgresql96-libs-debugsource-9.6.4-6.1.i586.rpm postgresql96-9.6.4-6.1.i586.rpm postgresql96-9.6.4-6.1.src.rpm postgresql96-contrib-9.6.4-6.1.i586.rpm postgresql96-contrib-debuginfo-9.6.4-6.1.i586.rpm postgresql96-debuginfo-9.6.4-6.1.i586.rpm postgresql96-debugsource-9.6.4-6.1.i586.rpm postgresql96-docs-9.6.4-6.1.noarch.rpm postgresql96-plperl-9.6.4-6.1.i586.rpm postgresql96-plperl-debuginfo-9.6.4-6.1.i586.rpm postgresql96-plpython-9.6.4-6.1.i586.rpm postgresql96-plpython-debuginfo-9.6.4-6.1.i586.rpm postgresql96-pltcl-9.6.4-6.1.i586.rpm postgresql96-pltcl-debuginfo-9.6.4-6.1.i586.rpm postgresql96-server-9.6.4-6.1.i586.rpm postgresql96-server-debuginfo-9.6.4-6.1.i586.rpm postgresql96-test-9.6.4-6.1.i586.rpm libecpg6-9.6.4-6.1.x86_64.rpm libecpg6-debuginfo-9.6.4-6.1.x86_64.rpm libpq5-9.6.4-6.1.x86_64.rpm libpq5-debuginfo-9.6.4-6.1.x86_64.rpm postgresql96-devel-9.6.4-6.1.x86_64.rpm postgresql96-devel-debuginfo-9.6.4-6.1.x86_64.rpm postgresql96-libs-debugsource-9.6.4-6.1.x86_64.rpm postgresql96-9.6.4-6.1.x86_64.rpm postgresql96-contrib-9.6.4-6.1.x86_64.rpm postgresql96-contrib-debuginfo-9.6.4-6.1.x86_64.rpm postgresql96-debuginfo-9.6.4-6.1.x86_64.rpm postgresql96-debugsource-9.6.4-6.1.x86_64.rpm postgresql96-plperl-9.6.4-6.1.x86_64.rpm postgresql96-plperl-debuginfo-9.6.4-6.1.x86_64.rpm postgresql96-plpython-9.6.4-6.1.x86_64.rpm postgresql96-plpython-debuginfo-9.6.4-6.1.x86_64.rpm postgresql96-pltcl-9.6.4-6.1.x86_64.rpm postgresql96-pltcl-debuginfo-9.6.4-6.1.x86_64.rpm postgresql96-server-9.6.4-6.1.x86_64.rpm postgresql96-server-debuginfo-9.6.4-6.1.x86_64.rpm postgresql96-test-9.6.4-6.1.x86_64.rpm openSUSE-2017-1048 moderate openSUSE Leap 42.3 Update LibreOffice was updated to version 5.3.5.2, bringing new features and enhancements: Writer: - New "Go to Page" dialog for quickly jumping to another page. - Support for "Table Styles". - New drawing tools were added. - Improvements in the toolbar. - Borderless padding is displayed. Calc: - New drawing tools were added. - In new installations the default setting for new documents is now "Enable wildcards in formulas" instead of regular expressions. - Improved compatibility with ODF 1.2 Impress: - Images inserted via "Photo Album" can now be linked instead of embedded in the document. - When launching Impress, a Template Selector allows you to choose a Template to start with. - Two new default templates: Vivid and Pencil. - All existing templates have been improved. Draw: - New arrow endings, including Crow's foot notation's ones. Base: - Firebird has been upgraded to version 3.0.0. It is unable to read back Firebird 2.5 data, so embedded Firebird odb files created in LibreOffice version up to 5.2 cannot be opened with LibreOffice 5.3. Some security issues have also been fixed: - CVE-2017-7870: An out-of-bounds write caused by a heap-based buffer overflow related to the tools::Polygon::Insert function. - CVE-2017-7882: An out-of-bounds write related to the HWPFile::TagsRead function. - CVE-2017-8358: an out-of-bounds write caused by a heap-based buffer overflow related to the ReadJPEG function. - CVE-2016-10327: An out-of-bounds write caused by a heap-based buffer overflow related to the EnhWMFReader::ReadEnhWMF function. - CVE-2017-9433: An out-of-bounds write caused by a heap-based buffer overflow related to the MsWrd1Parser::readFootnoteCorrespondance function in libmwaw. A comprehensive list of new features and changes in this release is available at: https://wiki.documentfoundation.org/ReleaseNotes/5.3 This update contains binaries for the ports architectures only. This update was imported from the SUSE:SLE-12:Update update project. libreoffice-5.3.5.2-3.4.src.rpm libreoffice-5.3.5.2-3.4.x86_64.rpm libreoffice-base-5.3.5.2-3.4.x86_64.rpm libreoffice-base-debuginfo-5.3.5.2-3.4.x86_64.rpm libreoffice-base-drivers-mysql-5.3.5.2-3.4.x86_64.rpm libreoffice-base-drivers-mysql-debuginfo-5.3.5.2-3.4.x86_64.rpm libreoffice-base-drivers-postgresql-5.3.5.2-3.4.x86_64.rpm libreoffice-base-drivers-postgresql-debuginfo-5.3.5.2-3.4.x86_64.rpm libreoffice-branding-upstream-5.3.5.2-3.4.noarch.rpm libreoffice-calc-5.3.5.2-3.4.x86_64.rpm libreoffice-calc-debuginfo-5.3.5.2-3.4.x86_64.rpm libreoffice-calc-extensions-5.3.5.2-3.4.x86_64.rpm libreoffice-debuginfo-5.3.5.2-3.4.x86_64.rpm libreoffice-debugsource-5.3.5.2-3.4.x86_64.rpm libreoffice-draw-5.3.5.2-3.4.x86_64.rpm libreoffice-draw-debuginfo-5.3.5.2-3.4.x86_64.rpm libreoffice-filters-optional-5.3.5.2-3.4.x86_64.rpm libreoffice-gdb-pretty-printers-5.3.5.2-3.4.noarch.rpm libreoffice-glade-5.3.5.2-3.4.noarch.rpm libreoffice-gnome-5.3.5.2-3.4.x86_64.rpm libreoffice-gnome-debuginfo-5.3.5.2-3.4.x86_64.rpm libreoffice-gtk3-5.3.5.2-3.4.x86_64.rpm libreoffice-gtk3-debuginfo-5.3.5.2-3.4.x86_64.rpm libreoffice-icon-theme-breeze-5.3.5.2-3.4.noarch.rpm libreoffice-icon-theme-galaxy-5.3.5.2-3.4.noarch.rpm libreoffice-icon-theme-hicontrast-5.3.5.2-3.4.noarch.rpm libreoffice-icon-theme-oxygen-5.3.5.2-3.4.noarch.rpm libreoffice-icon-theme-sifr-5.3.5.2-3.4.noarch.rpm libreoffice-icon-theme-tango-5.3.5.2-3.4.noarch.rpm libreoffice-impress-5.3.5.2-3.4.x86_64.rpm libreoffice-impress-debuginfo-5.3.5.2-3.4.x86_64.rpm libreoffice-kde4-5.3.5.2-3.4.x86_64.rpm libreoffice-kde4-debuginfo-5.3.5.2-3.4.x86_64.rpm libreoffice-l10n-af-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-ar-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-as-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-bg-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-bn-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-br-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-ca-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-cs-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-cy-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-da-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-de-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-dz-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-el-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-en-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-es-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-et-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-eu-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-fa-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-fi-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-fr-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-ga-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-gl-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-gu-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-he-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-hi-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-hr-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-hu-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-it-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-ja-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-kk-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-kn-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-ko-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-lt-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-lv-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-mai-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-ml-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-mr-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-nb-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-nl-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-nn-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-nr-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-nso-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-or-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-pa-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-pl-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-pt_BR-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-pt_PT-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-ro-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-ru-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-si-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-sk-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-sl-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-sr-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-ss-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-st-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-sv-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-ta-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-te-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-th-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-tn-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-tr-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-ts-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-uk-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-ve-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-xh-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-zh_CN-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-zh_TW-5.3.5.2-3.4.noarch.rpm libreoffice-l10n-zu-5.3.5.2-3.4.noarch.rpm libreoffice-mailmerge-5.3.5.2-3.4.x86_64.rpm libreoffice-math-5.3.5.2-3.4.x86_64.rpm libreoffice-math-debuginfo-5.3.5.2-3.4.x86_64.rpm libreoffice-officebean-5.3.5.2-3.4.x86_64.rpm libreoffice-officebean-debuginfo-5.3.5.2-3.4.x86_64.rpm libreoffice-pyuno-5.3.5.2-3.4.x86_64.rpm libreoffice-pyuno-debuginfo-5.3.5.2-3.4.x86_64.rpm libreoffice-sdk-5.3.5.2-3.4.x86_64.rpm libreoffice-sdk-debuginfo-5.3.5.2-3.4.x86_64.rpm libreoffice-sdk-doc-5.3.5.2-3.4.x86_64.rpm libreoffice-writer-5.3.5.2-3.4.x86_64.rpm libreoffice-writer-debuginfo-5.3.5.2-3.4.x86_64.rpm libreoffice-writer-extensions-5.3.5.2-3.4.x86_64.rpm libreofficekit-5.3.5.2-3.4.x86_64.rpm libreofficekit-devel-5.3.5.2-3.4.x86_64.rpm openSUSE-2017-1029 low openSUSE Leap 42.3 Update This update for tftp provides the following fixes: - Changed the permissions of /srv/tftpboot to be readable by apache. (bsc#940608) This update was imported from the SUSE:SLE-12:Update update project. tftp-5.2-16.1.i586.rpm tftp-5.2-16.1.src.rpm tftp-debuginfo-5.2-16.1.i586.rpm tftp-debugsource-5.2-16.1.i586.rpm tftp-5.2-16.1.x86_64.rpm tftp-debuginfo-5.2-16.1.x86_64.rpm tftp-debugsource-5.2-16.1.x86_64.rpm openSUSE-2017-1033 low openSUSE Leap 42.3 Update This update for Mesa provides the following fix: - Fix some rendering problems detected through rendercheck tests when X server is using glamor for acceleration. (bsc#1047154) This update was imported from the SUSE:SLE-12-SP3:Update update project. Mesa-17.0.5-176.1.i586.rpm Mesa-17.0.5-176.1.src.rpm Mesa-32bit-17.0.5-176.1.x86_64.rpm Mesa-debuginfo-17.0.5-176.1.i586.rpm Mesa-debuginfo-32bit-17.0.5-176.1.x86_64.rpm Mesa-debugsource-17.0.5-176.1.i586.rpm Mesa-devel-17.0.5-176.1.i586.rpm Mesa-dri-devel-17.0.5-176.1.i586.rpm Mesa-dri-nouveau-17.0.5-176.1.i586.rpm Mesa-dri-nouveau-32bit-17.0.5-176.1.x86_64.rpm Mesa-libEGL-devel-17.0.5-176.1.i586.rpm Mesa-libEGL-devel-32bit-17.0.5-176.1.x86_64.rpm Mesa-libEGL1-17.0.5-176.1.i586.rpm Mesa-libEGL1-32bit-17.0.5-176.1.x86_64.rpm Mesa-libEGL1-debuginfo-17.0.5-176.1.i586.rpm Mesa-libEGL1-debuginfo-32bit-17.0.5-176.1.x86_64.rpm Mesa-libGL-devel-17.0.5-176.1.i586.rpm Mesa-libGL-devel-32bit-17.0.5-176.1.x86_64.rpm Mesa-libGL1-17.0.5-176.1.i586.rpm Mesa-libGL1-32bit-17.0.5-176.1.x86_64.rpm Mesa-libGL1-debuginfo-17.0.5-176.1.i586.rpm Mesa-libGL1-debuginfo-32bit-17.0.5-176.1.x86_64.rpm Mesa-libGLESv1_CM-devel-17.0.5-176.1.i586.rpm Mesa-libGLESv1_CM-devel-32bit-17.0.5-176.1.x86_64.rpm Mesa-libGLESv1_CM1-17.0.5-176.1.i586.rpm Mesa-libGLESv1_CM1-32bit-17.0.5-176.1.x86_64.rpm Mesa-libGLESv1_CM1-debuginfo-17.0.5-176.1.i586.rpm Mesa-libGLESv1_CM1-debuginfo-32bit-17.0.5-176.1.x86_64.rpm Mesa-libGLESv2-2-17.0.5-176.1.i586.rpm Mesa-libGLESv2-2-32bit-17.0.5-176.1.x86_64.rpm Mesa-libGLESv2-2-debuginfo-17.0.5-176.1.i586.rpm Mesa-libGLESv2-2-debuginfo-32bit-17.0.5-176.1.x86_64.rpm Mesa-libGLESv2-devel-17.0.5-176.1.i586.rpm Mesa-libGLESv2-devel-32bit-17.0.5-176.1.x86_64.rpm Mesa-libGLESv3-devel-17.0.5-176.1.i586.rpm Mesa-libd3d-17.0.5-176.1.i586.rpm Mesa-libd3d-32bit-17.0.5-176.1.x86_64.rpm Mesa-libd3d-debuginfo-17.0.5-176.1.i586.rpm Mesa-libd3d-debuginfo-32bit-17.0.5-176.1.x86_64.rpm Mesa-libd3d-devel-17.0.5-176.1.i586.rpm Mesa-libd3d-devel-32bit-17.0.5-176.1.x86_64.rpm Mesa-libglapi-devel-17.0.5-176.1.i586.rpm Mesa-libglapi-devel-32bit-17.0.5-176.1.x86_64.rpm Mesa-libglapi0-17.0.5-176.1.i586.rpm Mesa-libglapi0-32bit-17.0.5-176.1.x86_64.rpm Mesa-libglapi0-debuginfo-17.0.5-176.1.i586.rpm Mesa-libglapi0-debuginfo-32bit-17.0.5-176.1.x86_64.rpm Mesa-libva-17.0.5-176.1.i586.rpm Mesa-libva-debuginfo-17.0.5-176.1.i586.rpm libOSMesa-devel-17.0.5-176.1.i586.rpm libOSMesa-devel-32bit-17.0.5-176.1.x86_64.rpm libOSMesa8-17.0.5-176.1.i586.rpm libOSMesa8-32bit-17.0.5-176.1.x86_64.rpm libOSMesa8-debuginfo-17.0.5-176.1.i586.rpm libOSMesa8-debuginfo-32bit-17.0.5-176.1.x86_64.rpm libXvMC_nouveau-17.0.5-176.1.i586.rpm libXvMC_nouveau-32bit-17.0.5-176.1.x86_64.rpm libXvMC_nouveau-debuginfo-17.0.5-176.1.i586.rpm libXvMC_nouveau-debuginfo-32bit-17.0.5-176.1.x86_64.rpm libXvMC_r600-17.0.5-176.1.i586.rpm libXvMC_r600-32bit-17.0.5-176.1.x86_64.rpm libXvMC_r600-debuginfo-17.0.5-176.1.i586.rpm libXvMC_r600-debuginfo-32bit-17.0.5-176.1.x86_64.rpm libgbm-devel-17.0.5-176.1.i586.rpm libgbm-devel-32bit-17.0.5-176.1.x86_64.rpm libgbm1-17.0.5-176.1.i586.rpm libgbm1-32bit-17.0.5-176.1.x86_64.rpm libgbm1-debuginfo-17.0.5-176.1.i586.rpm libgbm1-debuginfo-32bit-17.0.5-176.1.x86_64.rpm libvdpau_nouveau-17.0.5-176.1.i586.rpm libvdpau_nouveau-32bit-17.0.5-176.1.x86_64.rpm libvdpau_nouveau-debuginfo-17.0.5-176.1.i586.rpm libvdpau_nouveau-debuginfo-32bit-17.0.5-176.1.x86_64.rpm libvdpau_r300-17.0.5-176.1.i586.rpm libvdpau_r300-32bit-17.0.5-176.1.x86_64.rpm libvdpau_r300-debuginfo-17.0.5-176.1.i586.rpm libvdpau_r300-debuginfo-32bit-17.0.5-176.1.x86_64.rpm libvdpau_r600-17.0.5-176.1.i586.rpm libvdpau_r600-32bit-17.0.5-176.1.x86_64.rpm libvdpau_r600-debuginfo-17.0.5-176.1.i586.rpm libvdpau_r600-debuginfo-32bit-17.0.5-176.1.x86_64.rpm libvdpau_radeonsi-17.0.5-176.1.i586.rpm libvdpau_radeonsi-32bit-17.0.5-176.1.x86_64.rpm libvdpau_radeonsi-debuginfo-17.0.5-176.1.i586.rpm libvdpau_radeonsi-debuginfo-32bit-17.0.5-176.1.x86_64.rpm libwayland-egl-devel-17.0.5-176.1.i586.rpm libwayland-egl1-17.0.5-176.1.i586.rpm libwayland-egl1-32bit-17.0.5-176.1.x86_64.rpm libwayland-egl1-debuginfo-17.0.5-176.1.i586.rpm libwayland-egl1-debuginfo-32bit-17.0.5-176.1.x86_64.rpm libxatracker-devel-1.0.0-176.1.i586.rpm libxatracker2-1.0.0-176.1.i586.rpm libxatracker2-debuginfo-1.0.0-176.1.i586.rpm Mesa-17.0.5-176.1.x86_64.rpm Mesa-debuginfo-17.0.5-176.1.x86_64.rpm Mesa-debugsource-17.0.5-176.1.x86_64.rpm Mesa-devel-17.0.5-176.1.x86_64.rpm Mesa-dri-devel-17.0.5-176.1.x86_64.rpm Mesa-dri-nouveau-17.0.5-176.1.x86_64.rpm Mesa-libEGL-devel-17.0.5-176.1.x86_64.rpm Mesa-libEGL1-17.0.5-176.1.x86_64.rpm Mesa-libEGL1-debuginfo-17.0.5-176.1.x86_64.rpm Mesa-libGL-devel-17.0.5-176.1.x86_64.rpm Mesa-libGL1-17.0.5-176.1.x86_64.rpm Mesa-libGL1-debuginfo-17.0.5-176.1.x86_64.rpm Mesa-libGLESv1_CM-devel-17.0.5-176.1.x86_64.rpm Mesa-libGLESv1_CM1-17.0.5-176.1.x86_64.rpm Mesa-libGLESv1_CM1-debuginfo-17.0.5-176.1.x86_64.rpm Mesa-libGLESv2-2-17.0.5-176.1.x86_64.rpm Mesa-libGLESv2-2-debuginfo-17.0.5-176.1.x86_64.rpm Mesa-libGLESv2-devel-17.0.5-176.1.x86_64.rpm Mesa-libGLESv3-devel-17.0.5-176.1.x86_64.rpm Mesa-libd3d-17.0.5-176.1.x86_64.rpm Mesa-libd3d-debuginfo-17.0.5-176.1.x86_64.rpm Mesa-libd3d-devel-17.0.5-176.1.x86_64.rpm Mesa-libglapi-devel-17.0.5-176.1.x86_64.rpm Mesa-libglapi0-17.0.5-176.1.x86_64.rpm Mesa-libglapi0-debuginfo-17.0.5-176.1.x86_64.rpm Mesa-libva-17.0.5-176.1.x86_64.rpm Mesa-libva-debuginfo-17.0.5-176.1.x86_64.rpm libOSMesa-devel-17.0.5-176.1.x86_64.rpm libOSMesa8-17.0.5-176.1.x86_64.rpm libOSMesa8-debuginfo-17.0.5-176.1.x86_64.rpm libXvMC_nouveau-17.0.5-176.1.x86_64.rpm libXvMC_nouveau-debuginfo-17.0.5-176.1.x86_64.rpm libXvMC_r600-17.0.5-176.1.x86_64.rpm libXvMC_r600-debuginfo-17.0.5-176.1.x86_64.rpm libgbm-devel-17.0.5-176.1.x86_64.rpm libgbm1-17.0.5-176.1.x86_64.rpm libgbm1-debuginfo-17.0.5-176.1.x86_64.rpm libvdpau_nouveau-17.0.5-176.1.x86_64.rpm libvdpau_nouveau-debuginfo-17.0.5-176.1.x86_64.rpm libvdpau_r300-17.0.5-176.1.x86_64.rpm libvdpau_r300-debuginfo-17.0.5-176.1.x86_64.rpm libvdpau_r600-17.0.5-176.1.x86_64.rpm libvdpau_r600-debuginfo-17.0.5-176.1.x86_64.rpm libvdpau_radeonsi-17.0.5-176.1.x86_64.rpm libvdpau_radeonsi-debuginfo-17.0.5-176.1.x86_64.rpm libwayland-egl-devel-17.0.5-176.1.x86_64.rpm libwayland-egl1-17.0.5-176.1.x86_64.rpm libwayland-egl1-debuginfo-17.0.5-176.1.x86_64.rpm libxatracker-devel-1.0.0-176.1.x86_64.rpm libxatracker2-1.0.0-176.1.x86_64.rpm libxatracker2-debuginfo-1.0.0-176.1.x86_64.rpm openSUSE-2017-1042 moderate openSUSE Leap 42.3 Update This update for multipath-tools fixes the following issues: - The multipath daemon could terminate with a segmentation fault due to overly-long NVMe WWIDs. (bsc#1048146) - Multipath daemon ignores "add" events generated by NVMe devices. (bsc#1048052) This update was imported from the SUSE:SLE-12-SP3:Update update project. kpartx-0.7.1+11+suse.246dd815-3.1.i586.rpm kpartx-debuginfo-0.7.1+11+suse.246dd815-3.1.i586.rpm libdmmp-devel-0.7.1+11+suse.246dd815-3.1.i586.rpm libdmmp0_1_0-0.7.1+11+suse.246dd815-3.1.i586.rpm libdmmp0_1_0-debuginfo-0.7.1+11+suse.246dd815-3.1.i586.rpm multipath-tools-0.7.1+11+suse.246dd815-3.1.i586.rpm multipath-tools-0.7.1+11+suse.246dd815-3.1.src.rpm multipath-tools-debuginfo-0.7.1+11+suse.246dd815-3.1.i586.rpm multipath-tools-debugsource-0.7.1+11+suse.246dd815-3.1.i586.rpm multipath-tools-devel-0.7.1+11+suse.246dd815-3.1.i586.rpm kpartx-0.7.1+11+suse.246dd815-3.1.x86_64.rpm kpartx-debuginfo-0.7.1+11+suse.246dd815-3.1.x86_64.rpm libdmmp-devel-0.7.1+11+suse.246dd815-3.1.x86_64.rpm libdmmp0_1_0-0.7.1+11+suse.246dd815-3.1.x86_64.rpm libdmmp0_1_0-debuginfo-0.7.1+11+suse.246dd815-3.1.x86_64.rpm multipath-tools-0.7.1+11+suse.246dd815-3.1.x86_64.rpm multipath-tools-debuginfo-0.7.1+11+suse.246dd815-3.1.x86_64.rpm multipath-tools-debugsource-0.7.1+11+suse.246dd815-3.1.x86_64.rpm multipath-tools-devel-0.7.1+11+suse.246dd815-3.1.x86_64.rpm openSUSE-2017-1024 important openSUSE Leap 42.3 Update This update for gdk-pixbuf fixes the following issues: - CVE-2017-2862: JPEG gdk_pixbuf__jpeg_image_load_increment Code Execution Vulnerability (bsc#1048289) - CVE-2017-2870: tiff_image_parse Code Execution Vulnerability (bsc#1048544) - CVE-2017-6313: A dangerous integer underflow in io-icns.c (bsc#1027024) - CVE-2017-6314: Infinite loop in io-tiff.c (bsc#1027025) - CVE-2017-6312: Out-of-bounds read on io-ico.c (bsc#1027026) This update was imported from the SUSE:SLE-12-SP2:Update update project. gdk-pixbuf-2.34.0-10.1.src.rpm gdk-pixbuf-debugsource-2.34.0-10.1.i586.rpm gdk-pixbuf-devel-2.34.0-10.1.i586.rpm gdk-pixbuf-devel-32bit-2.34.0-10.1.x86_64.rpm gdk-pixbuf-devel-debuginfo-2.34.0-10.1.i586.rpm gdk-pixbuf-devel-debuginfo-32bit-2.34.0-10.1.x86_64.rpm gdk-pixbuf-lang-2.34.0-10.1.noarch.rpm gdk-pixbuf-query-loaders-2.34.0-10.1.i586.rpm gdk-pixbuf-query-loaders-32bit-2.34.0-10.1.x86_64.rpm gdk-pixbuf-query-loaders-debuginfo-2.34.0-10.1.i586.rpm gdk-pixbuf-query-loaders-debuginfo-32bit-2.34.0-10.1.x86_64.rpm libgdk_pixbuf-2_0-0-2.34.0-10.1.i586.rpm libgdk_pixbuf-2_0-0-32bit-2.34.0-10.1.x86_64.rpm libgdk_pixbuf-2_0-0-debuginfo-2.34.0-10.1.i586.rpm libgdk_pixbuf-2_0-0-debuginfo-32bit-2.34.0-10.1.x86_64.rpm typelib-1_0-GdkPixbuf-2_0-2.34.0-10.1.i586.rpm gdk-pixbuf-debugsource-2.34.0-10.1.x86_64.rpm gdk-pixbuf-devel-2.34.0-10.1.x86_64.rpm gdk-pixbuf-devel-debuginfo-2.34.0-10.1.x86_64.rpm gdk-pixbuf-query-loaders-2.34.0-10.1.x86_64.rpm gdk-pixbuf-query-loaders-debuginfo-2.34.0-10.1.x86_64.rpm libgdk_pixbuf-2_0-0-2.34.0-10.1.x86_64.rpm libgdk_pixbuf-2_0-0-debuginfo-2.34.0-10.1.x86_64.rpm typelib-1_0-GdkPixbuf-2_0-2.34.0-10.1.x86_64.rpm openSUSE-2017-1028 low openSUSE Leap 42.3 Update This update for java-binfmt-misc provides the following fixes: - Update the desktop and mime databases when the package is installed, upgraded or removed (bsc#1030903) - Move the binary format wrappers to /usr/lib/binfmt.d (bsc#1029650) This update was imported from the SUSE:SLE-12:Update update project. java-binfmt-misc-1.4-12.1.i586.rpm java-binfmt-misc-1.4-12.1.src.rpm java-binfmt-misc-debuginfo-1.4-12.1.i586.rpm java-binfmt-misc-debugsource-1.4-12.1.i586.rpm java-binfmt-misc-1.4-12.1.x86_64.rpm java-binfmt-misc-debuginfo-1.4-12.1.x86_64.rpm java-binfmt-misc-debugsource-1.4-12.1.x86_64.rpm openSUSE-2017-1044 moderate openSUSE Leap 42.3 Update This update for autoyast2 provides the following fixes: - Fix a problem that classes/rules were being ignored due to the stack not being properly initialized when evaluating multiple times (in case of a self-update). (bsc#1051483) - Fix a crash while applying the configuration to the system via the "File/Apply Profile to this System" menu. (bsc#1047809) - Make sure ask-scripts and their corresponding log files are saved to /var/adm/autoinstall. (bsc#1049473) - Fix running autoyast2 on installed systems by writing the init scripts to /var/adm/autoinstall/init.d. (bsc#1052145) - Handle packages that are missing a PGP signature but have valid digests. (bsc#1054969) This update was imported from the SUSE:SLE-12-SP3:Update update project. autoyast2-3.2.22-3.1.noarch.rpm autoyast2-3.2.22-3.1.src.rpm autoyast2-installation-3.2.22-3.1.noarch.rpm openSUSE-2017-1047 important openSUSE Leap 42.3 Update This update for chromium to version 61.0.3163.79 fixes several issues. These security issues were fixed: - CVE-2017-5111: Use after free in PDFium (boo#1057364). - CVE-2017-5112: Heap buffer overflow in WebGL (boo#1057364). - CVE-2017-5113: Heap buffer overflow in Skia (boo#1057364). - CVE-2017-5114: Memory lifecycle issue in PDFium (boo#1057364). - CVE-2017-5115: Type confusion in V8 (boo#1057364). - CVE-2017-5116: Type confusion in V8 (boo#1057364). - CVE-2017-5117: Use of uninitialized value in Skia (boo#1057364). - CVE-2017-5118: Bypass of Content Security Policy in Blink (boo#1057364). - CVE-2017-5119: Use of uninitialized value in Skia (boo#1057364). - CVE-2017-5120: Potential HTTPS downgrade during redirect navigation (boo#1057364). chromedriver-61.0.3163.79-110.1.x86_64.rpm chromedriver-debuginfo-61.0.3163.79-110.1.x86_64.rpm chromium-61.0.3163.79-110.1.src.rpm chromium-61.0.3163.79-110.1.x86_64.rpm chromium-debuginfo-61.0.3163.79-110.1.x86_64.rpm chromium-debugsource-61.0.3163.79-110.1.x86_64.rpm openSUSE-2017-1054 low openSUSE Leap 42.3 Update This update for java-1_5_0-gcj-compat provides the following fix: - Added sed as a package requirement to fix installation problems. (bsc#1056718) This update was imported from the SUSE:SLE-12:Update update project. java-1_5_0-gcj-compat-1.5.0.0-139.1.i586.rpm java-1_5_0-gcj-compat-1.5.0.0-139.1.src.rpm java-1_5_0-gcj-compat-32bit-1.5.0.0-139.1.x86_64.rpm java-1_5_0-gcj-compat-devel-1.5.0.0-139.1.i586.rpm java-1_5_0-gcj-compat-1.5.0.0-139.1.x86_64.rpm java-1_5_0-gcj-compat-devel-1.5.0.0-139.1.x86_64.rpm openSUSE-2017-1055 moderate openSUSE Leap 42.3 Update This update for squid provides the following fixes: - Fix a race condition that could result in a server crash during squid reconfiguration. (bsc#1029157) - Initialize the cache directory on startup if it is missing. (bsc#1030421) - Make sure the default configuration is correctly generated after installing or upgrading. (bsc#1024020) This update was imported from the SUSE:SLE-12-SP2:Update update project. squid-3.5.21-8.1.i586.rpm squid-3.5.21-8.1.src.rpm squid-debuginfo-3.5.21-8.1.i586.rpm squid-debugsource-3.5.21-8.1.i586.rpm squid-3.5.21-8.1.x86_64.rpm squid-debuginfo-3.5.21-8.1.x86_64.rpm squid-debugsource-3.5.21-8.1.x86_64.rpm openSUSE-2017-1056 low openSUSE Leap 42.3 Update This update for unixODBC provides the following enhancements: - Enable compile time option --enable-fastvalidate. This disables some internal validation checks performed on connection handles by unixODBC, increasing performance specially when many handles are used on multi-threaded systems. (fate#323520, bsc#1044970) This update was imported from the SUSE:SLE-12-SP2:Update update project. unixODBC-2.3.4-5.1.i586.rpm unixODBC-2.3.4-5.1.src.rpm unixODBC-32bit-2.3.4-5.1.x86_64.rpm unixODBC-debuginfo-2.3.4-5.1.i586.rpm unixODBC-debuginfo-32bit-2.3.4-5.1.x86_64.rpm unixODBC-debugsource-2.3.4-5.1.i586.rpm unixODBC-devel-2.3.4-5.1.i586.rpm unixODBC-2.3.4-5.1.x86_64.rpm unixODBC-debuginfo-2.3.4-5.1.x86_64.rpm unixODBC-debugsource-2.3.4-5.1.x86_64.rpm unixODBC-devel-2.3.4-5.1.x86_64.rpm openSUSE-2017-1072 important openSUSE Leap 42.3 Update This update for qemu fixes the following issues: Security issues fixed: * CVE-2017-10664: Fix DOS vulnerability in qemu-nbd (bsc#1046636) * CVE-2017-10806: Fix DOS from stack overflow in debug messages of usb redirection support (bsc#1047674) * CVE-2017-11334: Fix OOB access during DMA operation (bsc#1048902) * CVE-2017-11434: Fix OOB access parsing dhcp slirp options (bsc#1049381) Following non-security issues were fixed: - Postrequire acl for setfacl - Prerequire shadow for groupadd - The recent security fix for CVE-2017-11334 adversely affects Xen. Include two additional patches to make sure Xen is going to be OK. - Pre-add group kvm for qemu-tools (bsc#1011144) - Fixed a few more inaccuracies in the support docs. - Fix support docs to indicate ARM64 is now fully L3 supported in SLES 12 SP3. Apply a few additional clarifications in the support docs. (bsc#1050268) - Adjust to libvdeplug-devel package naming changes. - Fix migration with xhci (bsc#1048296) - Increase VNC delay to fix missing keyboard input events (bsc#1031692) - Remove build dependency package iasl used for seabios This update was imported from the SUSE:SLE-12-SP3:Update update project. qemu-linux-user-2.9.0-32.1.i586.rpm qemu-linux-user-2.9.0-32.1.src.rpm qemu-linux-user-debuginfo-2.9.0-32.1.i586.rpm qemu-linux-user-debugsource-2.9.0-32.1.i586.rpm qemu-linux-user-2.9.0-32.1.x86_64.rpm qemu-linux-user-debuginfo-2.9.0-32.1.x86_64.rpm qemu-linux-user-debugsource-2.9.0-32.1.x86_64.rpm qemu-testsuite-2.9.0-32.4.src.rpm qemu-testsuite-2.9.0-32.4.x86_64.rpm qemu-2.9.0-32.4.src.rpm qemu-2.9.0-32.4.x86_64.rpm qemu-arm-2.9.0-32.4.x86_64.rpm qemu-arm-debuginfo-2.9.0-32.4.x86_64.rpm qemu-block-curl-2.9.0-32.4.x86_64.rpm qemu-block-curl-debuginfo-2.9.0-32.4.x86_64.rpm qemu-block-dmg-2.9.0-32.4.x86_64.rpm qemu-block-dmg-debuginfo-2.9.0-32.4.x86_64.rpm qemu-block-iscsi-2.9.0-32.4.x86_64.rpm qemu-block-iscsi-debuginfo-2.9.0-32.4.x86_64.rpm qemu-block-rbd-2.9.0-32.4.x86_64.rpm qemu-block-rbd-debuginfo-2.9.0-32.4.x86_64.rpm qemu-block-ssh-2.9.0-32.4.x86_64.rpm qemu-block-ssh-debuginfo-2.9.0-32.4.x86_64.rpm qemu-debugsource-2.9.0-32.4.x86_64.rpm qemu-extra-2.9.0-32.4.x86_64.rpm qemu-extra-debuginfo-2.9.0-32.4.x86_64.rpm qemu-guest-agent-2.9.0-32.4.x86_64.rpm qemu-guest-agent-debuginfo-2.9.0-32.4.x86_64.rpm qemu-ipxe-1.0.0-32.4.noarch.rpm qemu-ksm-2.9.0-32.4.x86_64.rpm qemu-kvm-2.9.0-32.4.x86_64.rpm qemu-lang-2.9.0-32.4.x86_64.rpm qemu-ppc-2.9.0-32.4.x86_64.rpm qemu-ppc-debuginfo-2.9.0-32.4.x86_64.rpm qemu-s390-2.9.0-32.4.x86_64.rpm qemu-s390-debuginfo-2.9.0-32.4.x86_64.rpm qemu-seabios-1.10.2-32.4.noarch.rpm qemu-sgabios-8-32.4.noarch.rpm qemu-tools-2.9.0-32.4.x86_64.rpm qemu-tools-debuginfo-2.9.0-32.4.x86_64.rpm qemu-vgabios-1.10.2-32.4.noarch.rpm qemu-x86-2.9.0-32.4.x86_64.rpm qemu-x86-debuginfo-2.9.0-32.4.x86_64.rpm openSUSE-2017-1060 moderate openSUSE Leap 42.3 Update This update for cvs fixes the following issues: - CVE-2017-12836: A leading dash in the argument of the "-d" option could lead to argument injection (bsc#1053364) This update was imported from the SUSE:SLE-12:Update update project. cvs-1.12.12-188.1.i586.rpm cvs-1.12.12-188.1.src.rpm cvs-debuginfo-1.12.12-188.1.i586.rpm cvs-debugsource-1.12.12-188.1.i586.rpm cvs-doc-1.12.12-188.1.noarch.rpm cvs-1.12.12-188.1.x86_64.rpm cvs-debuginfo-1.12.12-188.1.x86_64.rpm cvs-debugsource-1.12.12-188.1.x86_64.rpm openSUSE-2017-1071 important openSUSE Leap 42.3 Update This update for xen fixes several issues. These security issues were fixed: - CVE-2017-14316: Missing bound check in function `alloc_heap_pages` for an internal array allowed attackers using crafted hypercalls to execute arbitrary code within Xen (XSA-231, bsc#1056278) - CVE-2017-14318: The function __gnttab_cache_flush missed a check for grant tables, allowing a malicious guest to crash the host or for x86 PV guests to potentially escalate privileges (XSA-232, bsc#1056280) - CVE-2017-14317: A race in cxenstored may have cause a double-free allowind for DoS of the xenstored daemon (XSA-233, bsc#1056281). - CVE-2017-14319: An error while handling grant mappings allowed malicious or buggy x86 PV guest to escalate its privileges or crash the hypervisor (XSA-234, bsc#1056282). These non-security issues were fixed: - bsc#1057358: Fixed boot into SUSE Linux Enterprise 12.3 with secure boot - bsc#1055695: Fixed restoring updates for HVM guests for ballooned domUs This update was imported from the SUSE:SLE-12-SP3:Update update project. xen-4.9.0_12-7.1.src.rpm xen-4.9.0_12-7.1.x86_64.rpm xen-debugsource-4.9.0_12-7.1.x86_64.rpm xen-devel-4.9.0_12-7.1.x86_64.rpm xen-doc-html-4.9.0_12-7.1.x86_64.rpm xen-libs-4.9.0_12-7.1.x86_64.rpm xen-libs-debuginfo-4.9.0_12-7.1.x86_64.rpm xen-tools-4.9.0_12-7.1.x86_64.rpm xen-tools-debuginfo-4.9.0_12-7.1.x86_64.rpm xen-tools-domU-4.9.0_12-7.1.x86_64.rpm xen-tools-domU-debuginfo-4.9.0_12-7.1.x86_64.rpm openSUSE-2017-1058 moderate openSUSE Leap 42.3 Update This update for dracut provides the following fixes: - Ensure dracut.sh responds properly to hostonly_cmdline option. (bsc#1048748) - Fix system shutdown when in initrd rescue mode. (bsc#1048698) - Do not scan drivers for their reverse dependency as this causes too many extra modules to be included into the initrd. (bsc#1037344) - Make sure dracut looks for modules.builtin in the correct path when used with the --kmoddir option. (bsc#1048606) - Ensure the ssh-client is usable by including the NSS plugin libraries configured in nsswitch.conf. (bsc#1021846) - Sync initramfs after creation to ensure it is properly written to disk when using fadump and invoking crash right after service start. (bsc#1049113) - Don't detect crc32.ko as built-in, as in some kernel configurations it may also appear as a module. (bsc#1054538) - Enable systemd-based core dumps for initrd. (bsc#1054809) - Add missing coreutils dependency for initrd macros. (bsc#1055492) This update was imported from the SUSE:SLE-12-SP3:Update update project. dracut-044.1-26.1.i586.rpm dracut-044.1-26.1.src.rpm dracut-debuginfo-044.1-26.1.i586.rpm dracut-debugsource-044.1-26.1.i586.rpm dracut-fips-044.1-26.1.i586.rpm dracut-tools-044.1-26.1.i586.rpm dracut-044.1-26.1.x86_64.rpm dracut-debuginfo-044.1-26.1.x86_64.rpm dracut-debugsource-044.1-26.1.x86_64.rpm dracut-fips-044.1-26.1.x86_64.rpm dracut-tools-044.1-26.1.x86_64.rpm openSUSE-2017-1063 important openSUSE Leap 42.3 Update The openSUSE Leap 42.3 kernel was updated to 4.4.87 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-1000251: The native Bluetooth stack in the Linux Kernel (BlueZ) was vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel space (bnc#1057389). - CVE-2017-14106: The tcp_disconnect function in net/ipv4/tcp.c in the Linux kernel allowed local users to cause a denial of service (__tcp_select_window divide-by-zero error and system crash) by triggering a disconnect within a certain tcp_recvmsg code path (bnc#1056982). - CVE-2017-11472: The acpi_ns_terminate() function in drivers/acpi/acpica/nsutils.c in the Linux kernel did not flush the operand cache and causes a kernel stack dump, which allowed local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism via a crafted ACPI table (bnc#1049580). The following non-security bugs were fixed: - acpica: IORT: Update SMMU models for revision C (bsc#1036060). - acpi/nfit: Fix memory corruption/Unregister mce decoder on failure (bsc#1057047). - ahci: do not use MSI for devices with the silly Intel NVMe remapping scheme (bsc#1048912). - ahci: thunderx2: stop engine fix update (bsc#1057031). - alsa: hda/realtek - Add support headphone Mic for ALC221 of HP platform (bsc#1024405). - arm64: mm: select CONFIG_ARCH_PROC_KCORE_TEXT (bsc#1046529). - arm64: PCI: Fix struct acpi_pci_root_ops allocation failure path (bsc#1056849). - arm64: Update config files. Enable ARCH_PROC_KCORE_TEXT - blacklist.conf: gcc7 compiler warning (bsc#1056849) - bnxt: add a missing rcu synchronization (bnc#1038583). - bnxt: do not busy-poll when link is down (bnc#1038583). - bnxt_en: Enable MRU enables bit when configuring VNIC MRU (bnc#1038583). - bnxt_en: Fix and clarify link_info->advertising (bnc#1038583). - bnxt_en: Fix a VXLAN vs GENEVE issue (bnc#1038583). - bnxt_en: Fix NULL pointer dereference in a failure path during open (bnc#1038583). - bnxt_en: Fix NULL pointer dereference in reopen failure path (bnc#1038583). - bnxt_en: fix pci cleanup in bnxt_init_one() failure path (bnc#1038583). - bnxt_en: Fix ring arithmetic in bnxt_setup_tc() (bnc#1038583). - bnxt_en: Fix TX push operation on ARM64 (bnc#1038583). - bnxt_en: Fix "uninitialized variable" bug in TPA code path (bnc#1038583). - bnxt_en: Fix VF virtual link state (bnc#1038583). - bnxt_en: initialize rc to zero to avoid returning garbage (bnc#1038583). - bnxt_en: Pad TX packets below 52 bytes (bnc#1038583). - bnxt_en: Refactor TPA code path (bnc#1038583). - ceph: fix readpage from fscache (bsc#1057015). - cifs: add build_path_from_dentry_optional_prefix() (fate#323482). - cifs: add use_ipc flag to SMB2_ioctl() (fate#323482). - cifs: Fix sparse warnings (fate#323482). - cifs: implement get_dfs_refer for SMB2+ (fate#323482). - cifs: let ses->ipc_tid hold smb2 TreeIds (fate#323482). - cifs: move DFS response parsing out of SMB1 code (fate#323482). - cifs: remove any preceding delimiter from prefix_path (fate#323482). - cifs: set signing flag in SMB2+ TreeConnect if needed (fate#323482). - cifs: use DFS pathnames in SMB2+ Create requests (fate#323482). - cpufreq: intel_pstate: Disable energy efficiency optimization (bsc#1054654). - cxgb4: Fix stack out-of-bounds read due to wrong size to t4_record_mbox() (bsc#1021424 bsc#1022743). - device-dax: fix cdev leak (bsc#1057047). - dmaengine: mv_xor_v2: do not use descriptors not acked by async_tx (bsc#1056849). - dmaengine: mv_xor_v2: enable XOR engine after its configuration (bsc#1056849). - dmaengine: mv_xor_v2: fix tx_submit() implementation (bsc#1056849). - dmaengine: mv_xor_v2: handle mv_xor_v2_prep_sw_desc() error properly (bsc#1056849). - dmaengine: mv_xor_v2: properly handle wrapping in the array of HW descriptors (bsc#1056849). - dmaengine: mv_xor_v2: remove interrupt coalescing (bsc#1056849). - dmaengine: mv_xor_v2: set DMA mask to 40 bits (bsc#1056849). - drivers: base: cacheinfo: fix boot error message when acpi is enabled (bsc#1057849). - edac, thunderx: Fix a warning during l2c debugfs node creation (bsc#1057038). - edac, thunderx: Fix error handling path in thunderx_lmc_probe() (bsc#1057038). - fs/proc: kcore: use kcore_list type to check for vmalloc/module address (bsc#1046529). - gfs2: Do not clear SGID when inheriting ACLs (bsc#1012829). - ib/hns: checking for IS_ERR() instead of NULL (bsc#1056849). - ibmvnic: Clean up resources on probe failure (fate#323285, bsc#1058116). - ib/rxe: Add dst_clone() in prepare_ipv6_hdr() (bsc#1049361). - ib/rxe: Avoid ICRC errors by copying into the skb first (bsc#1049361). - ib/rxe: Disable completion upcalls when a CQ is destroyed (bsc#1049361). - ib/rxe: Fix destination cache for IPv6 (bsc#1049361). - ib/rxe: Fix up rxe_qp_cleanup() (bsc#1049361). - ib/rxe: Fix up the responder's find_resources() function (bsc#1049361). - ib/rxe: Handle NETDEV_CHANGE events (bsc#1049361). - ib/rxe: Move refcounting earlier in rxe_send() (bsc#1049361). - ib/rxe: Remove dangling prototype (bsc#1049361). - ib/rxe: Remove unneeded initialization in prepare6() (bsc#1049361). - ib/rxe: Set dma_mask and coherent_dma_mask (bsc#1049361). - iommu/arm-smmu-v3, acpi: Add temporary Cavium SMMU-V3 IORT model number definitions (bsc#1036060). - iommu/arm-smmu-v3: Increase CMDQ drain timeout value (bsc#1035479). Refresh patch to mainline version - irqchip/gic-v3-its: Fix command buffer allocation (bsc#1057067). - iwlwifi: mvm: do not send CTDP commands via debugfs if not supported (bsc#1031717). - kernel/*: switch to memdup_user_nul() (bsc#1048893). - lightnvm: remove unused rq parameter of nvme_nvm_rqtocmd() to kill warning (FATE#319466). - md/raid5: fix a race condition in stripe batch (linux-stable). - mmc: sdhci-xenon: add set_power callback (bsc#1057035). - mmc: sdhci-xenon: Fix the work flow in xenon_remove() (bsc#1057035). - mm/page_alloc.c: apply gfp_allowed_mask before the first allocation attempt (bnc#971975 VM -- git fixes). - mm/vmalloc.c: huge-vmap: fail gracefully on unexpected huge vmap mappings (bsc#1046529). - new helper: memdup_user_nul() (bsc#1048893). - nfs: flush data when locking a file to ensure cache coherence for mmap (bsc#981309). - pci: rockchip: Handle regulator_get_current_limit() failure correctly (bsc#1056849). - pci: rockchip: Use normal register bank for config accessors (bsc#1056849). - pm / Domains: Fix unsafe iteration over modified list of domains (bsc#1056849). - rtnetlink: fix rtnl_vfinfo_size (bsc#1056261). - scsi: hisi_sas: add missing break in switch statement (bsc#1056849). - sysctl: fix lax sysctl_check_table() sanity check (bsc#1048893). - sysctl: fold sysctl_writes_strict checks into helper (bsc#1048893). - sysctl: kdoc'ify sysctl_writes_strict (bsc#1048893). - sysctl: simplify unsigned int support (bsc#1048893). - ubifs: Correctly evict xattr inodes (bsc#1012829). - ubifs: Do not leak kernel memory to the MTD (bsc#1012829). - xfs: fix inobt inode allocation search optimization (bsc#1012829). kernel-devel-4.4.87-25.1.noarch.rpm True kernel-macros-4.4.87-25.1.noarch.rpm True kernel-source-4.4.87-25.1.noarch.rpm True kernel-source-4.4.87-25.1.src.rpm True kernel-source-vanilla-4.4.87-25.1.noarch.rpm True kernel-debug-4.4.87-25.1.nosrc.rpm True kernel-debug-4.4.87-25.1.x86_64.rpm True kernel-debug-base-4.4.87-25.1.x86_64.rpm True kernel-debug-base-debuginfo-4.4.87-25.1.x86_64.rpm True kernel-debug-debuginfo-4.4.87-25.1.x86_64.rpm True kernel-debug-debugsource-4.4.87-25.1.x86_64.rpm True kernel-debug-devel-4.4.87-25.1.x86_64.rpm True kernel-debug-devel-debuginfo-4.4.87-25.1.x86_64.rpm True kernel-default-4.4.87-25.1.nosrc.rpm True kernel-default-4.4.87-25.1.x86_64.rpm True kernel-default-base-4.4.87-25.1.x86_64.rpm True kernel-default-base-debuginfo-4.4.87-25.1.x86_64.rpm True kernel-default-debuginfo-4.4.87-25.1.x86_64.rpm True kernel-default-debugsource-4.4.87-25.1.x86_64.rpm True kernel-default-devel-4.4.87-25.1.x86_64.rpm True kernel-docs-4.4.87-25.2.noarch.rpm True kernel-docs-4.4.87-25.2.src.rpm True kernel-docs-html-4.4.87-25.2.noarch.rpm True kernel-docs-pdf-4.4.87-25.2.noarch.rpm True kernel-obs-build-4.4.87-25.1.src.rpm True kernel-obs-build-4.4.87-25.1.x86_64.rpm True kernel-obs-build-debugsource-4.4.87-25.1.x86_64.rpm True kernel-obs-qa-4.4.87-25.1.src.rpm True kernel-obs-qa-4.4.87-25.1.x86_64.rpm True kernel-syms-4.4.87-25.1.src.rpm True kernel-syms-4.4.87-25.1.x86_64.rpm True kernel-vanilla-4.4.87-25.1.nosrc.rpm True kernel-vanilla-4.4.87-25.1.x86_64.rpm True kernel-vanilla-base-4.4.87-25.1.x86_64.rpm True kernel-vanilla-base-debuginfo-4.4.87-25.1.x86_64.rpm True kernel-vanilla-debuginfo-4.4.87-25.1.x86_64.rpm True kernel-vanilla-debugsource-4.4.87-25.1.x86_64.rpm True kernel-vanilla-devel-4.4.87-25.1.x86_64.rpm True openSUSE-2017-1065 low openSUSE Leap 42.3 Update This update for yast2-ca-management fixes parsing of URL values in parameters such as "caIssuers" from openssl.cnf. This update was imported from the SUSE:SLE-12-SP2:Update and SUSE:SLE-12-SP2:Update update projects. yast2-ca-management-3.2.1-5.1.noarch.rpm yast2-ca-management-3.2.1-5.1.src.rpm openSUSE-2017-1064 moderate openSUSE Leap 42.3 Update This update for yast2-storage provides the following fixes: - Fix Btrfs default sub-volume name detection. (bsc#1044434, bsc#1044250) - Mark the description of the first snapshot for translation. (bsc#988700) - Allow different mount points for the home partition. (fate#323532) - Fix installation when the system has a volume group with no logical volumes. (bsc#1049108) This update was imported from the SUSE:SLE-12-SP3:Update update project. yast2-storage-3.2.16.1-3.1.i586.rpm yast2-storage-3.2.16.1-3.1.src.rpm yast2-storage-debuginfo-3.2.16.1-3.1.i586.rpm yast2-storage-debugsource-3.2.16.1-3.1.i586.rpm yast2-storage-devel-3.2.16.1-3.1.i586.rpm yast2-storage-3.2.16.1-3.1.x86_64.rpm yast2-storage-debuginfo-3.2.16.1-3.1.x86_64.rpm yast2-storage-debugsource-3.2.16.1-3.1.x86_64.rpm yast2-storage-devel-3.2.16.1-3.1.x86_64.rpm openSUSE-2017-1061 moderate openSUSE Leap 42.3 Update This update for php7 fixes several issues. These security issues were fixed: - CVE-2017-12932: Prevent heap use after free while unserializing untrusted data, related to improper use of the hash API for key deletion in a situation with an invalid array size. Exploitation of this issue could have had an unspecified impact on the integrity of PHP (bsc#1054432). - CVE-2017-12934: Prevent heap use after free while unserializing untrusted data, related to the zval_get_type function in Zend/zend_types.h. Exploitation of this issue could have had an unspecified impact on the integrity of PHP (bsc#1054408). - CVE-2017-12933: The finish_nested_data function in ext/standard/var_unserializer.re was prone to a buffer over-read while unserializing untrusted data. Exploitation of this issue could have had an unspecified impact on the integrity of PHP (bsc#1054430) These non-security issues were fixed: - bsc#1057104: php7-devel now requires php7-pear - bsc#1057845: Fixed namespace encapsulation of imported classes/functions/constants This update was imported from the SUSE:SLE-12:Update update project. apache2-mod_php7-7.0.7-22.1.i586.rpm apache2-mod_php7-debuginfo-7.0.7-22.1.i586.rpm php7-7.0.7-22.1.i586.rpm php7-7.0.7-22.1.src.rpm php7-bcmath-7.0.7-22.1.i586.rpm php7-bcmath-debuginfo-7.0.7-22.1.i586.rpm php7-bz2-7.0.7-22.1.i586.rpm php7-bz2-debuginfo-7.0.7-22.1.i586.rpm php7-calendar-7.0.7-22.1.i586.rpm php7-calendar-debuginfo-7.0.7-22.1.i586.rpm php7-ctype-7.0.7-22.1.i586.rpm php7-ctype-debuginfo-7.0.7-22.1.i586.rpm php7-curl-7.0.7-22.1.i586.rpm php7-curl-debuginfo-7.0.7-22.1.i586.rpm php7-dba-7.0.7-22.1.i586.rpm php7-dba-debuginfo-7.0.7-22.1.i586.rpm php7-debuginfo-7.0.7-22.1.i586.rpm php7-debugsource-7.0.7-22.1.i586.rpm php7-devel-7.0.7-22.1.i586.rpm php7-dom-7.0.7-22.1.i586.rpm php7-dom-debuginfo-7.0.7-22.1.i586.rpm php7-enchant-7.0.7-22.1.i586.rpm php7-enchant-debuginfo-7.0.7-22.1.i586.rpm php7-exif-7.0.7-22.1.i586.rpm php7-exif-debuginfo-7.0.7-22.1.i586.rpm php7-fastcgi-7.0.7-22.1.i586.rpm php7-fastcgi-debuginfo-7.0.7-22.1.i586.rpm php7-fileinfo-7.0.7-22.1.i586.rpm php7-fileinfo-debuginfo-7.0.7-22.1.i586.rpm php7-firebird-7.0.7-22.1.i586.rpm php7-firebird-debuginfo-7.0.7-22.1.i586.rpm php7-fpm-7.0.7-22.1.i586.rpm php7-fpm-debuginfo-7.0.7-22.1.i586.rpm php7-ftp-7.0.7-22.1.i586.rpm php7-ftp-debuginfo-7.0.7-22.1.i586.rpm php7-gd-7.0.7-22.1.i586.rpm php7-gd-debuginfo-7.0.7-22.1.i586.rpm php7-gettext-7.0.7-22.1.i586.rpm php7-gettext-debuginfo-7.0.7-22.1.i586.rpm php7-gmp-7.0.7-22.1.i586.rpm php7-gmp-debuginfo-7.0.7-22.1.i586.rpm php7-iconv-7.0.7-22.1.i586.rpm php7-iconv-debuginfo-7.0.7-22.1.i586.rpm php7-imap-7.0.7-22.1.i586.rpm php7-imap-debuginfo-7.0.7-22.1.i586.rpm php7-intl-7.0.7-22.1.i586.rpm php7-intl-debuginfo-7.0.7-22.1.i586.rpm php7-json-7.0.7-22.1.i586.rpm php7-json-debuginfo-7.0.7-22.1.i586.rpm php7-ldap-7.0.7-22.1.i586.rpm php7-ldap-debuginfo-7.0.7-22.1.i586.rpm php7-mbstring-7.0.7-22.1.i586.rpm php7-mbstring-debuginfo-7.0.7-22.1.i586.rpm php7-mcrypt-7.0.7-22.1.i586.rpm php7-mcrypt-debuginfo-7.0.7-22.1.i586.rpm php7-mysql-7.0.7-22.1.i586.rpm php7-mysql-debuginfo-7.0.7-22.1.i586.rpm php7-odbc-7.0.7-22.1.i586.rpm php7-odbc-debuginfo-7.0.7-22.1.i586.rpm php7-opcache-7.0.7-22.1.i586.rpm php7-opcache-debuginfo-7.0.7-22.1.i586.rpm php7-openssl-7.0.7-22.1.i586.rpm php7-openssl-debuginfo-7.0.7-22.1.i586.rpm php7-pcntl-7.0.7-22.1.i586.rpm php7-pcntl-debuginfo-7.0.7-22.1.i586.rpm php7-pdo-7.0.7-22.1.i586.rpm php7-pdo-debuginfo-7.0.7-22.1.i586.rpm php7-pear-7.0.7-22.1.noarch.rpm php7-pear-Archive_Tar-7.0.7-22.1.noarch.rpm php7-pgsql-7.0.7-22.1.i586.rpm php7-pgsql-debuginfo-7.0.7-22.1.i586.rpm php7-phar-7.0.7-22.1.i586.rpm php7-phar-debuginfo-7.0.7-22.1.i586.rpm php7-posix-7.0.7-22.1.i586.rpm php7-posix-debuginfo-7.0.7-22.1.i586.rpm php7-pspell-7.0.7-22.1.i586.rpm php7-pspell-debuginfo-7.0.7-22.1.i586.rpm php7-readline-7.0.7-22.1.i586.rpm php7-readline-debuginfo-7.0.7-22.1.i586.rpm php7-shmop-7.0.7-22.1.i586.rpm php7-shmop-debuginfo-7.0.7-22.1.i586.rpm php7-snmp-7.0.7-22.1.i586.rpm php7-snmp-debuginfo-7.0.7-22.1.i586.rpm php7-soap-7.0.7-22.1.i586.rpm php7-soap-debuginfo-7.0.7-22.1.i586.rpm php7-sockets-7.0.7-22.1.i586.rpm php7-sockets-debuginfo-7.0.7-22.1.i586.rpm php7-sqlite-7.0.7-22.1.i586.rpm php7-sqlite-debuginfo-7.0.7-22.1.i586.rpm php7-sysvmsg-7.0.7-22.1.i586.rpm php7-sysvmsg-debuginfo-7.0.7-22.1.i586.rpm php7-sysvsem-7.0.7-22.1.i586.rpm php7-sysvsem-debuginfo-7.0.7-22.1.i586.rpm php7-sysvshm-7.0.7-22.1.i586.rpm php7-sysvshm-debuginfo-7.0.7-22.1.i586.rpm php7-tidy-7.0.7-22.1.i586.rpm php7-tidy-debuginfo-7.0.7-22.1.i586.rpm php7-tokenizer-7.0.7-22.1.i586.rpm php7-tokenizer-debuginfo-7.0.7-22.1.i586.rpm php7-wddx-7.0.7-22.1.i586.rpm php7-wddx-debuginfo-7.0.7-22.1.i586.rpm php7-xmlreader-7.0.7-22.1.i586.rpm php7-xmlreader-debuginfo-7.0.7-22.1.i586.rpm php7-xmlrpc-7.0.7-22.1.i586.rpm php7-xmlrpc-debuginfo-7.0.7-22.1.i586.rpm php7-xmlwriter-7.0.7-22.1.i586.rpm php7-xmlwriter-debuginfo-7.0.7-22.1.i586.rpm php7-xsl-7.0.7-22.1.i586.rpm php7-xsl-debuginfo-7.0.7-22.1.i586.rpm php7-zip-7.0.7-22.1.i586.rpm php7-zip-debuginfo-7.0.7-22.1.i586.rpm php7-zlib-7.0.7-22.1.i586.rpm php7-zlib-debuginfo-7.0.7-22.1.i586.rpm apache2-mod_php7-7.0.7-22.1.x86_64.rpm apache2-mod_php7-debuginfo-7.0.7-22.1.x86_64.rpm php7-7.0.7-22.1.x86_64.rpm php7-bcmath-7.0.7-22.1.x86_64.rpm php7-bcmath-debuginfo-7.0.7-22.1.x86_64.rpm php7-bz2-7.0.7-22.1.x86_64.rpm php7-bz2-debuginfo-7.0.7-22.1.x86_64.rpm php7-calendar-7.0.7-22.1.x86_64.rpm php7-calendar-debuginfo-7.0.7-22.1.x86_64.rpm php7-ctype-7.0.7-22.1.x86_64.rpm php7-ctype-debuginfo-7.0.7-22.1.x86_64.rpm php7-curl-7.0.7-22.1.x86_64.rpm php7-curl-debuginfo-7.0.7-22.1.x86_64.rpm php7-dba-7.0.7-22.1.x86_64.rpm php7-dba-debuginfo-7.0.7-22.1.x86_64.rpm php7-debuginfo-7.0.7-22.1.x86_64.rpm php7-debugsource-7.0.7-22.1.x86_64.rpm php7-devel-7.0.7-22.1.x86_64.rpm php7-dom-7.0.7-22.1.x86_64.rpm php7-dom-debuginfo-7.0.7-22.1.x86_64.rpm php7-enchant-7.0.7-22.1.x86_64.rpm php7-enchant-debuginfo-7.0.7-22.1.x86_64.rpm php7-exif-7.0.7-22.1.x86_64.rpm php7-exif-debuginfo-7.0.7-22.1.x86_64.rpm php7-fastcgi-7.0.7-22.1.x86_64.rpm php7-fastcgi-debuginfo-7.0.7-22.1.x86_64.rpm php7-fileinfo-7.0.7-22.1.x86_64.rpm php7-fileinfo-debuginfo-7.0.7-22.1.x86_64.rpm php7-firebird-7.0.7-22.1.x86_64.rpm php7-firebird-debuginfo-7.0.7-22.1.x86_64.rpm php7-fpm-7.0.7-22.1.x86_64.rpm php7-fpm-debuginfo-7.0.7-22.1.x86_64.rpm php7-ftp-7.0.7-22.1.x86_64.rpm php7-ftp-debuginfo-7.0.7-22.1.x86_64.rpm php7-gd-7.0.7-22.1.x86_64.rpm php7-gd-debuginfo-7.0.7-22.1.x86_64.rpm php7-gettext-7.0.7-22.1.x86_64.rpm php7-gettext-debuginfo-7.0.7-22.1.x86_64.rpm php7-gmp-7.0.7-22.1.x86_64.rpm php7-gmp-debuginfo-7.0.7-22.1.x86_64.rpm php7-iconv-7.0.7-22.1.x86_64.rpm php7-iconv-debuginfo-7.0.7-22.1.x86_64.rpm php7-imap-7.0.7-22.1.x86_64.rpm php7-imap-debuginfo-7.0.7-22.1.x86_64.rpm php7-intl-7.0.7-22.1.x86_64.rpm php7-intl-debuginfo-7.0.7-22.1.x86_64.rpm php7-json-7.0.7-22.1.x86_64.rpm php7-json-debuginfo-7.0.7-22.1.x86_64.rpm php7-ldap-7.0.7-22.1.x86_64.rpm php7-ldap-debuginfo-7.0.7-22.1.x86_64.rpm php7-mbstring-7.0.7-22.1.x86_64.rpm php7-mbstring-debuginfo-7.0.7-22.1.x86_64.rpm php7-mcrypt-7.0.7-22.1.x86_64.rpm php7-mcrypt-debuginfo-7.0.7-22.1.x86_64.rpm php7-mysql-7.0.7-22.1.x86_64.rpm php7-mysql-debuginfo-7.0.7-22.1.x86_64.rpm php7-odbc-7.0.7-22.1.x86_64.rpm php7-odbc-debuginfo-7.0.7-22.1.x86_64.rpm php7-opcache-7.0.7-22.1.x86_64.rpm php7-opcache-debuginfo-7.0.7-22.1.x86_64.rpm php7-openssl-7.0.7-22.1.x86_64.rpm php7-openssl-debuginfo-7.0.7-22.1.x86_64.rpm php7-pcntl-7.0.7-22.1.x86_64.rpm php7-pcntl-debuginfo-7.0.7-22.1.x86_64.rpm php7-pdo-7.0.7-22.1.x86_64.rpm php7-pdo-debuginfo-7.0.7-22.1.x86_64.rpm php7-pgsql-7.0.7-22.1.x86_64.rpm php7-pgsql-debuginfo-7.0.7-22.1.x86_64.rpm php7-phar-7.0.7-22.1.x86_64.rpm php7-phar-debuginfo-7.0.7-22.1.x86_64.rpm php7-posix-7.0.7-22.1.x86_64.rpm php7-posix-debuginfo-7.0.7-22.1.x86_64.rpm php7-pspell-7.0.7-22.1.x86_64.rpm php7-pspell-debuginfo-7.0.7-22.1.x86_64.rpm php7-readline-7.0.7-22.1.x86_64.rpm php7-readline-debuginfo-7.0.7-22.1.x86_64.rpm php7-shmop-7.0.7-22.1.x86_64.rpm php7-shmop-debuginfo-7.0.7-22.1.x86_64.rpm php7-snmp-7.0.7-22.1.x86_64.rpm php7-snmp-debuginfo-7.0.7-22.1.x86_64.rpm php7-soap-7.0.7-22.1.x86_64.rpm php7-soap-debuginfo-7.0.7-22.1.x86_64.rpm php7-sockets-7.0.7-22.1.x86_64.rpm php7-sockets-debuginfo-7.0.7-22.1.x86_64.rpm php7-sqlite-7.0.7-22.1.x86_64.rpm php7-sqlite-debuginfo-7.0.7-22.1.x86_64.rpm php7-sysvmsg-7.0.7-22.1.x86_64.rpm php7-sysvmsg-debuginfo-7.0.7-22.1.x86_64.rpm php7-sysvsem-7.0.7-22.1.x86_64.rpm php7-sysvsem-debuginfo-7.0.7-22.1.x86_64.rpm php7-sysvshm-7.0.7-22.1.x86_64.rpm php7-sysvshm-debuginfo-7.0.7-22.1.x86_64.rpm php7-tidy-7.0.7-22.1.x86_64.rpm php7-tidy-debuginfo-7.0.7-22.1.x86_64.rpm php7-tokenizer-7.0.7-22.1.x86_64.rpm php7-tokenizer-debuginfo-7.0.7-22.1.x86_64.rpm php7-wddx-7.0.7-22.1.x86_64.rpm php7-wddx-debuginfo-7.0.7-22.1.x86_64.rpm php7-xmlreader-7.0.7-22.1.x86_64.rpm php7-xmlreader-debuginfo-7.0.7-22.1.x86_64.rpm php7-xmlrpc-7.0.7-22.1.x86_64.rpm php7-xmlrpc-debuginfo-7.0.7-22.1.x86_64.rpm php7-xmlwriter-7.0.7-22.1.x86_64.rpm php7-xmlwriter-debuginfo-7.0.7-22.1.x86_64.rpm php7-xsl-7.0.7-22.1.x86_64.rpm php7-xsl-debuginfo-7.0.7-22.1.x86_64.rpm php7-zip-7.0.7-22.1.x86_64.rpm php7-zip-debuginfo-7.0.7-22.1.x86_64.rpm php7-zlib-7.0.7-22.1.x86_64.rpm php7-zlib-debuginfo-7.0.7-22.1.x86_64.rpm openSUSE-2017-1076 low openSUSE Leap 42.3 Update This update for ktorrent fixes the following issues: - Empty tip of the day was shown (boo#1002948) ktorrent-5.0.1-9.1.src.rpm ktorrent-5.0.1-9.1.x86_64.rpm ktorrent-debuginfo-5.0.1-9.1.x86_64.rpm ktorrent-debugsource-5.0.1-9.1.x86_64.rpm ktorrent-lang-5.0.1-9.1.noarch.rpm openSUSE-2017-1082 low openSUSE Leap 42.3 Update This update for freexl to version 1.0.4 fixes several issues. These security issues were fixed: - CVE-2017-2924: Prevent heap-based buffer overflow in the read_legacy_biff function (bsc#1058433). - CVE-2017-2923: Prevent heap-based buffer overflow in the read_biff_next_record function (bsc#1058431). freexl-1.0.4-5.1.src.rpm freexl-debugsource-1.0.4-5.1.i586.rpm freexl-devel-1.0.4-5.1.i586.rpm libfreexl1-1.0.4-5.1.i586.rpm libfreexl1-debuginfo-1.0.4-5.1.i586.rpm freexl-debugsource-1.0.4-5.1.x86_64.rpm freexl-devel-1.0.4-5.1.x86_64.rpm libfreexl1-1.0.4-5.1.x86_64.rpm libfreexl1-debuginfo-1.0.4-5.1.x86_64.rpm openSUSE-2017-1069 low openSUSE Leap 42.3 Update This update for at fixes the following issues: - The systemd atd.service will now run After=nss-user-lookup.target not after systemd-user-sessions.service - Make systemd atd.service run After=time-sync.target (bsc#988890) This update was imported from the SUSE:SLE-12:Update update project. at-3.1.14-14.1.i586.rpm at-3.1.14-14.1.src.rpm at-debuginfo-3.1.14-14.1.i586.rpm at-debugsource-3.1.14-14.1.i586.rpm at-3.1.14-14.1.x86_64.rpm at-debuginfo-3.1.14-14.1.x86_64.rpm at-debugsource-3.1.14-14.1.x86_64.rpm openSUSE-2017-1070 moderate openSUSE Leap 42.3 Update This update for sg3_utils provides the following fixes: - Add lunsearch filter to findresized() so that only LUNs specified using --luns are rescanned or resized. (bsc#1025176) - In case the VPD sysfs attributes are missing or cannot be accessed, fallback to use sg_inq --page when using multipath devices in AutoYast2 installations. (bsc#1012523) - Generate /dev/disk/by-path links based on WWPN for Fibre Channel NPIV setups. (bsc#1005063) - Fix dumping data in hexadecimal format in sg_vpd when using the --hex option. (bsc#1050943) - Fix ID_SERIAL values for KVM disks by exporting all NAA values and removing some validity checking. (bsc#1050767) - Make sure initrd is rebuilt on sg3_utils updates. (bsc#1009269) This update was imported from the SUSE:SLE-12-SP2:Update update project. libsgutils-devel-1.43-12.1.i586.rpm libsgutils2-2-1.43-12.1.i586.rpm libsgutils2-2-debuginfo-1.43-12.1.i586.rpm sg3_utils-1.43-12.1.i586.rpm sg3_utils-1.43-12.1.src.rpm sg3_utils-debuginfo-1.43-12.1.i586.rpm sg3_utils-debugsource-1.43-12.1.i586.rpm libsgutils-devel-1.43-12.1.x86_64.rpm libsgutils2-2-1.43-12.1.x86_64.rpm libsgutils2-2-debuginfo-1.43-12.1.x86_64.rpm sg3_utils-1.43-12.1.x86_64.rpm sg3_utils-debuginfo-1.43-12.1.x86_64.rpm sg3_utils-debugsource-1.43-12.1.x86_64.rpm openSUSE-2017-1073 low openSUSE Leap 42.3 Update This update for drbd-utils provides the following fixes: - Make sure the legacy xmdomain.cfg configuration format works properly fixing the usage of libvirt and xen. (bsc#1052352) - Fix the stacking of resources on handlers like "before-resync-target" when called from kernel space. (bsc#1048671) This update was imported from the SUSE:SLE-12-SP3:Update update project. drbd-utils-9.0.0-3.1.i586.rpm drbd-utils-9.0.0-3.1.src.rpm drbd-utils-debuginfo-9.0.0-3.1.i586.rpm drbd-utils-debugsource-9.0.0-3.1.i586.rpm drbd-utils-9.0.0-3.1.x86_64.rpm drbd-utils-debuginfo-9.0.0-3.1.x86_64.rpm drbd-utils-debugsource-9.0.0-3.1.x86_64.rpm openSUSE-2017-1079 moderate openSUSE Leap 42.3 Update This update for php5 fixes on issues. This security issue was fixed: - CVE-2017-12933: The finish_nested_data function in ext/standard/var_unserializer.re was prone to a buffer over-read while unserializing untrusted data. Exploitation of this issue could have had an unspecified impact on the integrity of PHP (bsc#1054430) This update was imported from the SUSE:SLE-12:Update update project. apache2-mod_php5-5.5.14-85.1.i586.rpm apache2-mod_php5-debuginfo-5.5.14-85.1.i586.rpm php5-5.5.14-85.1.i586.rpm php5-5.5.14-85.1.src.rpm php5-bcmath-5.5.14-85.1.i586.rpm php5-bcmath-debuginfo-5.5.14-85.1.i586.rpm php5-bz2-5.5.14-85.1.i586.rpm php5-bz2-debuginfo-5.5.14-85.1.i586.rpm php5-calendar-5.5.14-85.1.i586.rpm php5-calendar-debuginfo-5.5.14-85.1.i586.rpm php5-ctype-5.5.14-85.1.i586.rpm php5-ctype-debuginfo-5.5.14-85.1.i586.rpm php5-curl-5.5.14-85.1.i586.rpm php5-curl-debuginfo-5.5.14-85.1.i586.rpm php5-dba-5.5.14-85.1.i586.rpm php5-dba-debuginfo-5.5.14-85.1.i586.rpm php5-debuginfo-5.5.14-85.1.i586.rpm php5-debugsource-5.5.14-85.1.i586.rpm php5-devel-5.5.14-85.1.i586.rpm php5-dom-5.5.14-85.1.i586.rpm php5-dom-debuginfo-5.5.14-85.1.i586.rpm php5-enchant-5.5.14-85.1.i586.rpm php5-enchant-debuginfo-5.5.14-85.1.i586.rpm php5-exif-5.5.14-85.1.i586.rpm php5-exif-debuginfo-5.5.14-85.1.i586.rpm php5-fastcgi-5.5.14-85.1.i586.rpm php5-fastcgi-debuginfo-5.5.14-85.1.i586.rpm php5-fileinfo-5.5.14-85.1.i586.rpm php5-fileinfo-debuginfo-5.5.14-85.1.i586.rpm php5-firebird-5.5.14-85.1.i586.rpm php5-firebird-debuginfo-5.5.14-85.1.i586.rpm php5-fpm-5.5.14-85.1.i586.rpm php5-fpm-debuginfo-5.5.14-85.1.i586.rpm php5-ftp-5.5.14-85.1.i586.rpm php5-ftp-debuginfo-5.5.14-85.1.i586.rpm php5-gd-5.5.14-85.1.i586.rpm php5-gd-debuginfo-5.5.14-85.1.i586.rpm php5-gettext-5.5.14-85.1.i586.rpm php5-gettext-debuginfo-5.5.14-85.1.i586.rpm php5-gmp-5.5.14-85.1.i586.rpm php5-gmp-debuginfo-5.5.14-85.1.i586.rpm php5-iconv-5.5.14-85.1.i586.rpm php5-iconv-debuginfo-5.5.14-85.1.i586.rpm php5-imap-5.5.14-85.1.i586.rpm php5-imap-debuginfo-5.5.14-85.1.i586.rpm php5-intl-5.5.14-85.1.i586.rpm php5-intl-debuginfo-5.5.14-85.1.i586.rpm php5-json-5.5.14-85.1.i586.rpm php5-json-debuginfo-5.5.14-85.1.i586.rpm php5-ldap-5.5.14-85.1.i586.rpm php5-ldap-debuginfo-5.5.14-85.1.i586.rpm php5-mbstring-5.5.14-85.1.i586.rpm php5-mbstring-debuginfo-5.5.14-85.1.i586.rpm php5-mcrypt-5.5.14-85.1.i586.rpm php5-mcrypt-debuginfo-5.5.14-85.1.i586.rpm php5-mssql-5.5.14-85.1.i586.rpm php5-mssql-debuginfo-5.5.14-85.1.i586.rpm php5-mysql-5.5.14-85.1.i586.rpm php5-mysql-debuginfo-5.5.14-85.1.i586.rpm php5-odbc-5.5.14-85.1.i586.rpm php5-odbc-debuginfo-5.5.14-85.1.i586.rpm php5-opcache-5.5.14-85.1.i586.rpm php5-opcache-debuginfo-5.5.14-85.1.i586.rpm php5-openssl-5.5.14-85.1.i586.rpm php5-openssl-debuginfo-5.5.14-85.1.i586.rpm php5-pcntl-5.5.14-85.1.i586.rpm php5-pcntl-debuginfo-5.5.14-85.1.i586.rpm php5-pdo-5.5.14-85.1.i586.rpm php5-pdo-debuginfo-5.5.14-85.1.i586.rpm php5-pear-5.5.14-85.1.noarch.rpm php5-pgsql-5.5.14-85.1.i586.rpm php5-pgsql-debuginfo-5.5.14-85.1.i586.rpm php5-phar-5.5.14-85.1.i586.rpm php5-phar-debuginfo-5.5.14-85.1.i586.rpm php5-posix-5.5.14-85.1.i586.rpm php5-posix-debuginfo-5.5.14-85.1.i586.rpm php5-pspell-5.5.14-85.1.i586.rpm php5-pspell-debuginfo-5.5.14-85.1.i586.rpm php5-readline-5.5.14-85.1.i586.rpm php5-readline-debuginfo-5.5.14-85.1.i586.rpm php5-shmop-5.5.14-85.1.i586.rpm php5-shmop-debuginfo-5.5.14-85.1.i586.rpm php5-snmp-5.5.14-85.1.i586.rpm php5-snmp-debuginfo-5.5.14-85.1.i586.rpm php5-soap-5.5.14-85.1.i586.rpm php5-soap-debuginfo-5.5.14-85.1.i586.rpm php5-sockets-5.5.14-85.1.i586.rpm php5-sockets-debuginfo-5.5.14-85.1.i586.rpm php5-sqlite-5.5.14-85.1.i586.rpm php5-sqlite-debuginfo-5.5.14-85.1.i586.rpm php5-suhosin-5.5.14-85.1.i586.rpm php5-suhosin-debuginfo-5.5.14-85.1.i586.rpm php5-sysvmsg-5.5.14-85.1.i586.rpm php5-sysvmsg-debuginfo-5.5.14-85.1.i586.rpm php5-sysvsem-5.5.14-85.1.i586.rpm php5-sysvsem-debuginfo-5.5.14-85.1.i586.rpm php5-sysvshm-5.5.14-85.1.i586.rpm php5-sysvshm-debuginfo-5.5.14-85.1.i586.rpm php5-tidy-5.5.14-85.1.i586.rpm php5-tidy-debuginfo-5.5.14-85.1.i586.rpm php5-tokenizer-5.5.14-85.1.i586.rpm php5-tokenizer-debuginfo-5.5.14-85.1.i586.rpm php5-wddx-5.5.14-85.1.i586.rpm php5-wddx-debuginfo-5.5.14-85.1.i586.rpm php5-xmlreader-5.5.14-85.1.i586.rpm php5-xmlreader-debuginfo-5.5.14-85.1.i586.rpm php5-xmlrpc-5.5.14-85.1.i586.rpm php5-xmlrpc-debuginfo-5.5.14-85.1.i586.rpm php5-xmlwriter-5.5.14-85.1.i586.rpm php5-xmlwriter-debuginfo-5.5.14-85.1.i586.rpm php5-xsl-5.5.14-85.1.i586.rpm php5-xsl-debuginfo-5.5.14-85.1.i586.rpm php5-zip-5.5.14-85.1.i586.rpm php5-zip-debuginfo-5.5.14-85.1.i586.rpm php5-zlib-5.5.14-85.1.i586.rpm php5-zlib-debuginfo-5.5.14-85.1.i586.rpm apache2-mod_php5-5.5.14-85.1.x86_64.rpm apache2-mod_php5-debuginfo-5.5.14-85.1.x86_64.rpm php5-5.5.14-85.1.x86_64.rpm php5-bcmath-5.5.14-85.1.x86_64.rpm php5-bcmath-debuginfo-5.5.14-85.1.x86_64.rpm php5-bz2-5.5.14-85.1.x86_64.rpm php5-bz2-debuginfo-5.5.14-85.1.x86_64.rpm php5-calendar-5.5.14-85.1.x86_64.rpm php5-calendar-debuginfo-5.5.14-85.1.x86_64.rpm php5-ctype-5.5.14-85.1.x86_64.rpm php5-ctype-debuginfo-5.5.14-85.1.x86_64.rpm php5-curl-5.5.14-85.1.x86_64.rpm php5-curl-debuginfo-5.5.14-85.1.x86_64.rpm php5-dba-5.5.14-85.1.x86_64.rpm php5-dba-debuginfo-5.5.14-85.1.x86_64.rpm php5-debuginfo-5.5.14-85.1.x86_64.rpm php5-debugsource-5.5.14-85.1.x86_64.rpm php5-devel-5.5.14-85.1.x86_64.rpm php5-dom-5.5.14-85.1.x86_64.rpm php5-dom-debuginfo-5.5.14-85.1.x86_64.rpm php5-enchant-5.5.14-85.1.x86_64.rpm php5-enchant-debuginfo-5.5.14-85.1.x86_64.rpm php5-exif-5.5.14-85.1.x86_64.rpm php5-exif-debuginfo-5.5.14-85.1.x86_64.rpm php5-fastcgi-5.5.14-85.1.x86_64.rpm php5-fastcgi-debuginfo-5.5.14-85.1.x86_64.rpm php5-fileinfo-5.5.14-85.1.x86_64.rpm php5-fileinfo-debuginfo-5.5.14-85.1.x86_64.rpm php5-firebird-5.5.14-85.1.x86_64.rpm php5-firebird-debuginfo-5.5.14-85.1.x86_64.rpm php5-fpm-5.5.14-85.1.x86_64.rpm php5-fpm-debuginfo-5.5.14-85.1.x86_64.rpm php5-ftp-5.5.14-85.1.x86_64.rpm php5-ftp-debuginfo-5.5.14-85.1.x86_64.rpm php5-gd-5.5.14-85.1.x86_64.rpm php5-gd-debuginfo-5.5.14-85.1.x86_64.rpm php5-gettext-5.5.14-85.1.x86_64.rpm php5-gettext-debuginfo-5.5.14-85.1.x86_64.rpm php5-gmp-5.5.14-85.1.x86_64.rpm php5-gmp-debuginfo-5.5.14-85.1.x86_64.rpm php5-iconv-5.5.14-85.1.x86_64.rpm php5-iconv-debuginfo-5.5.14-85.1.x86_64.rpm php5-imap-5.5.14-85.1.x86_64.rpm php5-imap-debuginfo-5.5.14-85.1.x86_64.rpm php5-intl-5.5.14-85.1.x86_64.rpm php5-intl-debuginfo-5.5.14-85.1.x86_64.rpm php5-json-5.5.14-85.1.x86_64.rpm php5-json-debuginfo-5.5.14-85.1.x86_64.rpm php5-ldap-5.5.14-85.1.x86_64.rpm php5-ldap-debuginfo-5.5.14-85.1.x86_64.rpm php5-mbstring-5.5.14-85.1.x86_64.rpm php5-mbstring-debuginfo-5.5.14-85.1.x86_64.rpm php5-mcrypt-5.5.14-85.1.x86_64.rpm php5-mcrypt-debuginfo-5.5.14-85.1.x86_64.rpm php5-mssql-5.5.14-85.1.x86_64.rpm php5-mssql-debuginfo-5.5.14-85.1.x86_64.rpm php5-mysql-5.5.14-85.1.x86_64.rpm php5-mysql-debuginfo-5.5.14-85.1.x86_64.rpm php5-odbc-5.5.14-85.1.x86_64.rpm php5-odbc-debuginfo-5.5.14-85.1.x86_64.rpm php5-opcache-5.5.14-85.1.x86_64.rpm php5-opcache-debuginfo-5.5.14-85.1.x86_64.rpm php5-openssl-5.5.14-85.1.x86_64.rpm php5-openssl-debuginfo-5.5.14-85.1.x86_64.rpm php5-pcntl-5.5.14-85.1.x86_64.rpm php5-pcntl-debuginfo-5.5.14-85.1.x86_64.rpm php5-pdo-5.5.14-85.1.x86_64.rpm php5-pdo-debuginfo-5.5.14-85.1.x86_64.rpm php5-pgsql-5.5.14-85.1.x86_64.rpm php5-pgsql-debuginfo-5.5.14-85.1.x86_64.rpm php5-phar-5.5.14-85.1.x86_64.rpm php5-phar-debuginfo-5.5.14-85.1.x86_64.rpm php5-posix-5.5.14-85.1.x86_64.rpm php5-posix-debuginfo-5.5.14-85.1.x86_64.rpm php5-pspell-5.5.14-85.1.x86_64.rpm php5-pspell-debuginfo-5.5.14-85.1.x86_64.rpm php5-readline-5.5.14-85.1.x86_64.rpm php5-readline-debuginfo-5.5.14-85.1.x86_64.rpm php5-shmop-5.5.14-85.1.x86_64.rpm php5-shmop-debuginfo-5.5.14-85.1.x86_64.rpm php5-snmp-5.5.14-85.1.x86_64.rpm php5-snmp-debuginfo-5.5.14-85.1.x86_64.rpm php5-soap-5.5.14-85.1.x86_64.rpm php5-soap-debuginfo-5.5.14-85.1.x86_64.rpm php5-sockets-5.5.14-85.1.x86_64.rpm php5-sockets-debuginfo-5.5.14-85.1.x86_64.rpm php5-sqlite-5.5.14-85.1.x86_64.rpm php5-sqlite-debuginfo-5.5.14-85.1.x86_64.rpm php5-suhosin-5.5.14-85.1.x86_64.rpm php5-suhosin-debuginfo-5.5.14-85.1.x86_64.rpm php5-sysvmsg-5.5.14-85.1.x86_64.rpm php5-sysvmsg-debuginfo-5.5.14-85.1.x86_64.rpm php5-sysvsem-5.5.14-85.1.x86_64.rpm php5-sysvsem-debuginfo-5.5.14-85.1.x86_64.rpm php5-sysvshm-5.5.14-85.1.x86_64.rpm php5-sysvshm-debuginfo-5.5.14-85.1.x86_64.rpm php5-tidy-5.5.14-85.1.x86_64.rpm php5-tidy-debuginfo-5.5.14-85.1.x86_64.rpm php5-tokenizer-5.5.14-85.1.x86_64.rpm php5-tokenizer-debuginfo-5.5.14-85.1.x86_64.rpm php5-wddx-5.5.14-85.1.x86_64.rpm php5-wddx-debuginfo-5.5.14-85.1.x86_64.rpm php5-xmlreader-5.5.14-85.1.x86_64.rpm php5-xmlreader-debuginfo-5.5.14-85.1.x86_64.rpm php5-xmlrpc-5.5.14-85.1.x86_64.rpm php5-xmlrpc-debuginfo-5.5.14-85.1.x86_64.rpm php5-xmlwriter-5.5.14-85.1.x86_64.rpm php5-xmlwriter-debuginfo-5.5.14-85.1.x86_64.rpm php5-xsl-5.5.14-85.1.x86_64.rpm php5-xsl-debuginfo-5.5.14-85.1.x86_64.rpm php5-zip-5.5.14-85.1.x86_64.rpm php5-zip-debuginfo-5.5.14-85.1.x86_64.rpm php5-zlib-5.5.14-85.1.x86_64.rpm php5-zlib-debuginfo-5.5.14-85.1.x86_64.rpm openSUSE-2017-1078 important openSUSE Leap 42.3 Update This update for emacs fixes one issues. This security issue was fixed: - CVE-2017-14482: Remote code execution via mails with "Content-Type: text/enriched" (bsc#1058425) This update was imported from the SUSE:SLE-12:Update update project. emacs-24.3-28.1.i586.rpm emacs-24.3-28.1.src.rpm emacs-debuginfo-24.3-28.1.i586.rpm emacs-debugsource-24.3-28.1.i586.rpm emacs-el-24.3-28.1.noarch.rpm emacs-info-24.3-28.1.noarch.rpm emacs-nox-24.3-28.1.i586.rpm emacs-nox-debuginfo-24.3-28.1.i586.rpm emacs-x11-24.3-28.1.i586.rpm emacs-x11-debuginfo-24.3-28.1.i586.rpm etags-24.3-28.1.i586.rpm etags-debuginfo-24.3-28.1.i586.rpm emacs-24.3-28.1.x86_64.rpm emacs-debuginfo-24.3-28.1.x86_64.rpm emacs-debugsource-24.3-28.1.x86_64.rpm emacs-nox-24.3-28.1.x86_64.rpm emacs-nox-debuginfo-24.3-28.1.x86_64.rpm emacs-x11-24.3-28.1.x86_64.rpm emacs-x11-debuginfo-24.3-28.1.x86_64.rpm etags-24.3-28.1.x86_64.rpm etags-debuginfo-24.3-28.1.x86_64.rpm openSUSE-2017-1094 moderate openSUSE Leap 42.3 Update This update for amarok fixes the following issues: - Provide mp3 playback by default for users. (boo#1049512) - Fix a possible crash when looking up metadata on MusicBrainz (kde#328359) amarok-2.8.0-19.1.src.rpm amarok-2.8.0-19.1.x86_64.rpm amarok-debuginfo-2.8.0-19.1.x86_64.rpm amarok-debugsource-2.8.0-19.1.x86_64.rpm amarok-lang-2.8.0-19.1.noarch.rpm openSUSE-2017-1095 moderate openSUSE Leap 42.3 Update This recommended update for acct fixes the following issue: - The acct.service file contained a chmod without an absolute path, causing it to be ignored (boo#1053528) acct-6.6.2-12.1.i586.rpm acct-6.6.2-12.1.src.rpm acct-debuginfo-6.6.2-12.1.i586.rpm acct-debugsource-6.6.2-12.1.i586.rpm acct-6.6.2-12.1.x86_64.rpm acct-debuginfo-6.6.2-12.1.x86_64.rpm acct-debugsource-6.6.2-12.1.x86_64.rpm openSUSE-2017-1096 low openSUSE Leap 42.3 Update This optional update for mysql-connector-cpp fixes the following issue: - libmysqlcppconn-devel did not require boost-devel (boo#838038) libmysqlcppconn-devel-1.1.8-8.1.i586.rpm libmysqlcppconn7-1.1.8-8.1.i586.rpm libmysqlcppconn7-debuginfo-1.1.8-8.1.i586.rpm mysql-connector-cpp-1.1.8-8.1.src.rpm mysql-connector-cpp-debugsource-1.1.8-8.1.i586.rpm libmysqlcppconn-devel-1.1.8-8.1.x86_64.rpm libmysqlcppconn7-1.1.8-8.1.x86_64.rpm libmysqlcppconn7-debuginfo-1.1.8-8.1.x86_64.rpm mysql-connector-cpp-debugsource-1.1.8-8.1.x86_64.rpm openSUSE-2017-1103 moderate openSUSE Leap 42.3 Update This update for python-openqa_review to version 1.7.5 contains the following fixes: - Support more recent openQA web structure (boo#1059661) python-openqa_review-1.7.5-3.1.noarch.rpm python-openqa_review-1.7.5-3.1.src.rpm openSUSE-2017-1100 moderate openSUSE Leap 42.3 Update This update for vlc fixes several issues. This security issue was fixed: - CVE-2017-9300: Heap corruption allowed remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted FLAC file (bsc#1041907). These non-security issues were fixed: - Stop depending on libkde4-devel: It's only used to find the install path for kde4, but configure falls back to the correct default for openSUSE anyway (boo#1057736). - Disable vnc access module libvlc5-2.2.6-3.1.x86_64.rpm libvlc5-debuginfo-2.2.6-3.1.x86_64.rpm libvlccore8-2.2.6-3.1.x86_64.rpm libvlccore8-debuginfo-2.2.6-3.1.x86_64.rpm vlc-2.2.6-3.1.src.rpm vlc-2.2.6-3.1.x86_64.rpm vlc-codec-gstreamer-2.2.6-3.1.x86_64.rpm vlc-codec-gstreamer-debuginfo-2.2.6-3.1.x86_64.rpm vlc-debuginfo-2.2.6-3.1.x86_64.rpm vlc-debugsource-2.2.6-3.1.x86_64.rpm vlc-devel-2.2.6-3.1.x86_64.rpm vlc-lang-2.2.6-3.1.noarch.rpm vlc-noX-2.2.6-3.1.x86_64.rpm vlc-noX-debuginfo-2.2.6-3.1.x86_64.rpm vlc-qt-2.2.6-3.1.x86_64.rpm vlc-qt-debuginfo-2.2.6-3.1.x86_64.rpm openSUSE-2017-1084 moderate openSUSE Leap 42.3 Update This update for libzip fixes the following security issue: - CVE-2017-14107: The _zip_read_eocd64 function mishandled EOCD records, which allowed remote attackers to cause a denial of service (memory allocation failure in _zip_cdir_grow in zip_dirent.c) via a crafted ZIP archive (bsc#1056996). This update was imported from the SUSE:SLE-12:Update update project. libzip-0.11.1-9.1.i586.rpm libzip-0.11.1-9.1.src.rpm libzip-debuginfo-0.11.1-9.1.i586.rpm libzip-debugsource-0.11.1-9.1.i586.rpm libzip-devel-0.11.1-9.1.i586.rpm libzip2-0.11.1-9.1.i586.rpm libzip2-32bit-0.11.1-9.1.x86_64.rpm libzip2-debuginfo-0.11.1-9.1.i586.rpm libzip2-debuginfo-32bit-0.11.1-9.1.x86_64.rpm libzip-0.11.1-9.1.x86_64.rpm libzip-debuginfo-0.11.1-9.1.x86_64.rpm libzip-debugsource-0.11.1-9.1.x86_64.rpm libzip-devel-0.11.1-9.1.x86_64.rpm libzip2-0.11.1-9.1.x86_64.rpm libzip2-debuginfo-0.11.1-9.1.x86_64.rpm openSUSE-2017-1083 moderate openSUSE Leap 42.3 Update This update for apache2 fixes the following security issue: - CVE-2017-9798: Prevent use-after-free use of memory that allowed for an information leak via OPTIONS (bsc#1058058). This update was imported from the SUSE:SLE-12-SP2:Update update project. apache2-2.4.23-16.1.i586.rpm apache2-2.4.23-16.1.src.rpm apache2-debuginfo-2.4.23-16.1.i586.rpm apache2-debugsource-2.4.23-16.1.i586.rpm apache2-devel-2.4.23-16.1.i586.rpm apache2-doc-2.4.23-16.1.noarch.rpm apache2-event-2.4.23-16.1.i586.rpm apache2-event-debuginfo-2.4.23-16.1.i586.rpm apache2-example-pages-2.4.23-16.1.i586.rpm apache2-prefork-2.4.23-16.1.i586.rpm apache2-prefork-debuginfo-2.4.23-16.1.i586.rpm apache2-utils-2.4.23-16.1.i586.rpm apache2-utils-debuginfo-2.4.23-16.1.i586.rpm apache2-worker-2.4.23-16.1.i586.rpm apache2-worker-debuginfo-2.4.23-16.1.i586.rpm apache2-2.4.23-16.1.x86_64.rpm apache2-debuginfo-2.4.23-16.1.x86_64.rpm apache2-debugsource-2.4.23-16.1.x86_64.rpm apache2-devel-2.4.23-16.1.x86_64.rpm apache2-event-2.4.23-16.1.x86_64.rpm apache2-event-debuginfo-2.4.23-16.1.x86_64.rpm apache2-example-pages-2.4.23-16.1.x86_64.rpm apache2-prefork-2.4.23-16.1.x86_64.rpm apache2-prefork-debuginfo-2.4.23-16.1.x86_64.rpm apache2-utils-2.4.23-16.1.x86_64.rpm apache2-utils-debuginfo-2.4.23-16.1.x86_64.rpm apache2-worker-2.4.23-16.1.x86_64.rpm apache2-worker-debuginfo-2.4.23-16.1.x86_64.rpm openSUSE-2017-1097 moderate openSUSE Leap 42.3 Update This update for openjpeg fixes the following issue: - Programs linked with libopenjpeg1 would expose non-standard math behavior due to usage of -ffast-math in openjpeg (boo#1029609, boo#1059440) libopenjpeg1-1.5.2-10.1.i586.rpm libopenjpeg1-32bit-1.5.2-10.1.x86_64.rpm libopenjpeg1-debuginfo-1.5.2-10.1.i586.rpm libopenjpeg1-debuginfo-32bit-1.5.2-10.1.x86_64.rpm openjpeg-1.5.2-10.1.i586.rpm openjpeg-1.5.2-10.1.src.rpm openjpeg-debuginfo-1.5.2-10.1.i586.rpm openjpeg-debugsource-1.5.2-10.1.i586.rpm openjpeg-devel-1.5.2-10.1.i586.rpm openjpeg-devel-32bit-1.5.2-10.1.x86_64.rpm libopenjpeg1-1.5.2-10.1.x86_64.rpm libopenjpeg1-debuginfo-1.5.2-10.1.x86_64.rpm openjpeg-1.5.2-10.1.x86_64.rpm openjpeg-debuginfo-1.5.2-10.1.x86_64.rpm openjpeg-debugsource-1.5.2-10.1.x86_64.rpm openjpeg-devel-1.5.2-10.1.x86_64.rpm openSUSE-2017-1085 moderate openSUSE Leap 42.3 Update This update to Chromium 61.0.3163.100 fixes the following vulnerabilities: - CVE-2017-5121: Out-of-bounds access in V8 - CVE-2017-5122: Out-of-bounds access in V8 - Various fixes from internal audits, fuzzing and other initiatives chromedriver-61.0.3163.100-113.1.x86_64.rpm chromedriver-debuginfo-61.0.3163.100-113.1.x86_64.rpm chromium-61.0.3163.100-113.1.src.rpm chromium-61.0.3163.100-113.1.x86_64.rpm chromium-debuginfo-61.0.3163.100-113.1.x86_64.rpm chromium-debugsource-61.0.3163.100-113.1.x86_64.rpm openSUSE-2017-1105 low openSUSE Leap 42.3 Update This update for tigervnc provides the following fixes: - Fix race problem when detecting listening inetd sockets. (bsc#1054300) - Fix certificate handling in the Java client. (bsc#1041847) - Make sure CN in generated certificate doesn't exceed 64 characters. (bsc#1041847) - Change with-vnc-key.sh to generate TLS certificate using current hostname to keep it short. (bsc#1041847) - Disable MIT-SHM extension when running under user "vnc". (bsc#1053373) This update was imported from the SUSE:SLE-12-SP2:Update update project. libXvnc-devel-1.6.0-21.1.i586.rpm libXvnc1-1.6.0-21.1.i586.rpm libXvnc1-debuginfo-1.6.0-21.1.i586.rpm tigervnc-1.6.0-21.1.i586.rpm tigervnc-1.6.0-21.1.src.rpm tigervnc-debuginfo-1.6.0-21.1.i586.rpm tigervnc-debugsource-1.6.0-21.1.i586.rpm xorg-x11-Xvnc-1.6.0-21.1.i586.rpm xorg-x11-Xvnc-debuginfo-1.6.0-21.1.i586.rpm libXvnc-devel-1.6.0-21.1.x86_64.rpm libXvnc1-1.6.0-21.1.x86_64.rpm libXvnc1-debuginfo-1.6.0-21.1.x86_64.rpm tigervnc-1.6.0-21.1.x86_64.rpm tigervnc-debuginfo-1.6.0-21.1.x86_64.rpm tigervnc-debugsource-1.6.0-21.1.x86_64.rpm xorg-x11-Xvnc-1.6.0-21.1.x86_64.rpm xorg-x11-Xvnc-debuginfo-1.6.0-21.1.x86_64.rpm openSUSE-2017-1110 important openSUSE Leap 42.3 Update This update for spice fixes the following security issues: - CVE-2017-7506: Fixed an out-of-bounds memory access when processing specially crafted messages from authenticated attacker to the spice server resulting into crash and/or server memory leak (bsc#1046779). This update was imported from the SUSE:SLE-12-SP3:Update update project. libspice-server-devel-0.12.8-3.1.x86_64.rpm libspice-server1-0.12.8-3.1.x86_64.rpm libspice-server1-debuginfo-0.12.8-3.1.x86_64.rpm spice-0.12.8-3.1.src.rpm spice-debugsource-0.12.8-3.1.x86_64.rpm openSUSE-2017-1098 moderate openSUSE Leap 42.3 Update This update for yast2-rear provides the following fix: - Fix the RPM package by adding some missing files. (bsc#1051340) This update was imported from the SUSE:SLE-12-SP3:Update update project. yast2-rear-3.2.1-3.1.noarch.rpm yast2-rear-3.2.1-3.1.src.rpm openSUSE-2017-1117 moderate openSUSE Leap 42.3 Update This update for otrs to version 3.3.18 fixes the following issue: This security issue was fixed: - CVE-2017-14635: Remote authenticated users could have leveraged statistics-write permissions to gain privileges via code injection (bsc#1059691). otrs-3.3.18-9.1.noarch.rpm otrs-3.3.18-9.1.src.rpm otrs-doc-3.3.18-9.1.noarch.rpm otrs-itsm-3.3.14-9.1.noarch.rpm openSUSE-2017-1111 moderate openSUSE Leap 42.3 Update This update for weechat fixes the following issues: - CVE-2017-14727: A uninitialized buffer could be used to crash the logger plugin in WeeChat (boo#1060140) weechat-1.8-3.1.i586.rpm weechat-1.8-3.1.src.rpm weechat-aspell-1.8-3.1.i586.rpm weechat-aspell-debuginfo-1.8-3.1.i586.rpm weechat-debuginfo-1.8-3.1.i586.rpm weechat-debugsource-1.8-3.1.i586.rpm weechat-devel-1.8-3.1.i586.rpm weechat-guile-1.8-3.1.i586.rpm weechat-guile-debuginfo-1.8-3.1.i586.rpm weechat-lang-1.8-3.1.noarch.rpm weechat-lua-1.8-3.1.i586.rpm weechat-lua-debuginfo-1.8-3.1.i586.rpm weechat-perl-1.8-3.1.i586.rpm weechat-perl-debuginfo-1.8-3.1.i586.rpm weechat-python-1.8-3.1.i586.rpm weechat-python-debuginfo-1.8-3.1.i586.rpm weechat-ruby-1.8-3.1.i586.rpm weechat-ruby-debuginfo-1.8-3.1.i586.rpm weechat-tcl-1.8-3.1.i586.rpm weechat-tcl-debuginfo-1.8-3.1.i586.rpm weechat-1.8-3.1.x86_64.rpm weechat-aspell-1.8-3.1.x86_64.rpm weechat-aspell-debuginfo-1.8-3.1.x86_64.rpm weechat-debuginfo-1.8-3.1.x86_64.rpm weechat-debugsource-1.8-3.1.x86_64.rpm weechat-devel-1.8-3.1.x86_64.rpm weechat-guile-1.8-3.1.x86_64.rpm weechat-guile-debuginfo-1.8-3.1.x86_64.rpm weechat-lua-1.8-3.1.x86_64.rpm weechat-lua-debuginfo-1.8-3.1.x86_64.rpm weechat-perl-1.8-3.1.x86_64.rpm weechat-perl-debuginfo-1.8-3.1.x86_64.rpm weechat-python-1.8-3.1.x86_64.rpm weechat-python-debuginfo-1.8-3.1.x86_64.rpm weechat-ruby-1.8-3.1.x86_64.rpm weechat-ruby-debuginfo-1.8-3.1.x86_64.rpm weechat-tcl-1.8-3.1.x86_64.rpm weechat-tcl-debuginfo-1.8-3.1.x86_64.rpm openSUSE-2017-1119 moderate openSUSE Leap 42.3 Update This update for libraw fixes the following issues: Security issue fixed: * CVE-2017-14265: A stack based buffer overflow in the xtrans_interpolate function was fixed. [boo#1060163] * CVE-2017-13735: A floating point exception in the kodak_radc_load_raw function was fixed which could have lead to aborts of programs using libraw on reading malicious files. [bsc#1060321] libraw-0.17.1-11.1.src.rpm libraw-debugsource-0.17.1-11.1.i586.rpm libraw-devel-0.17.1-11.1.i586.rpm libraw-devel-static-0.17.1-11.1.i586.rpm libraw-tools-0.17.1-11.1.i586.rpm libraw-tools-debuginfo-0.17.1-11.1.i586.rpm libraw15-0.17.1-11.1.i586.rpm libraw15-debuginfo-0.17.1-11.1.i586.rpm libraw-debugsource-0.17.1-11.1.x86_64.rpm libraw-devel-0.17.1-11.1.x86_64.rpm libraw-devel-static-0.17.1-11.1.x86_64.rpm libraw-tools-0.17.1-11.1.x86_64.rpm libraw-tools-debuginfo-0.17.1-11.1.x86_64.rpm libraw15-0.17.1-11.1.x86_64.rpm libraw15-debuginfo-0.17.1-11.1.x86_64.rpm openSUSE-2017-1106 moderate openSUSE Leap 42.3 Update This update for vsftpd provides the following fixes: - Fix a bug in vsftpd that would cause SSL protocol errors, aborting the connection, whenever system errors occurred that were supposed to be non-fatal. (bsc#1044292) - Fix a seccomp failure that happens in FIPS mode when SSL is enabled. (bsc#1052900) - Allow the FTP server to append to a file system pipe. (bsc#1048427) - Create a new configuration option "address_space_limit", which determines the memory limit vsftpd configures for its own process (given in bytes). The previously hard-coded limit (100 MB) may not be sufficient for vsftpd servers running with certain PAM modules enabled, and in such cases administrators may wish to raise the limit to match their system's requirements. (bsc#1042137) This update was imported from the SUSE:SLE-12:Update update project. vsftpd-3.0.2-25.1.i586.rpm vsftpd-3.0.2-25.1.src.rpm vsftpd-debuginfo-3.0.2-25.1.i586.rpm vsftpd-debugsource-3.0.2-25.1.i586.rpm vsftpd-3.0.2-25.1.x86_64.rpm vsftpd-debuginfo-3.0.2-25.1.x86_64.rpm vsftpd-debugsource-3.0.2-25.1.x86_64.rpm openSUSE-2017-1102 low openSUSE Leap 42.3 Update This update for xinetd provides the following fixes: - Specifying multiple log targets in the configuration caused a crash in xinetd, so make sure this is not allowed and in case of misconfiguration handle it correctly. (bsc#1054532) - Fix a race condition that was causing xinetd not to be running after receiving a SIGHUP and a call to bind() failing with error EADDRINUSE. The fix exposes a sysconfig variable named XINETD_BIND_DELAY that can be used to delay calls to bind(). (bsc#972691) - Fix an error that was causing a failure in xinetd when trying to fallback from IPv6 to IPv4. (bsc#947475) - Update the documentation about the maximum allowed size of server parameters. (bsc#943484) This update was imported from the SUSE:SLE-12:Update update project. xinetd-2.3.15-13.1.i586.rpm xinetd-2.3.15-13.1.src.rpm xinetd-debuginfo-2.3.15-13.1.i586.rpm xinetd-debugsource-2.3.15-13.1.i586.rpm xinetd-2.3.15-13.1.x86_64.rpm xinetd-debuginfo-2.3.15-13.1.x86_64.rpm xinetd-debugsource-2.3.15-13.1.x86_64.rpm openSUSE-2017-1118 moderate openSUSE Leap 42.3 Update This update for tiff to version 4.0.8 fixes a several bugs and security issues: These security issues were fixed: - CVE-2017-7595: The JPEGSetupEncode function allowed remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted image (bsc#1033127). - CVE-2016-10371: The TIFFWriteDirectoryTagCheckedRational function allowed remote attackers to cause a denial of service (assertion failure and application exit) via a crafted TIFF file (bsc#1038438). - CVE-2017-7598: Error in tif_dirread.c allowed remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted image (bsc#1033118). - CVE-2017-7596: Undefined behavior because of floats outside their expected value range, which allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033126). - CVE-2017-7597: Undefined behavior because of floats outside their expected value range, which allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033120). - CVE-2017-7599: Undefined behavior because of shorts outside their expected value range, which allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033113). - CVE-2017-7600: Undefined behavior because of chars outside their expected value range, which allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033112). - CVE-2017-7601: Because of a shift exponent too large for 64-bit type long undefined behavior was caused, which allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033111). - CVE-2017-7602: Prevent signed integer overflow, which allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033109). - CVE-2017-7592: The putagreytile function had a left-shift undefined behavior issue, which might allowed remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image (bsc#1033131). - CVE-2017-7593: Ensure that tif_rawdata is properly initialized, to prevent remote attackers to obtain sensitive information from process memory via a crafted image (bsc#1033129). - CVE-2017-7594: The OJPEGReadHeaderInfoSecTablesDcTable function allowed remote attackers to cause a denial of service (memory leak) via a crafted image (bsc#1033128). - CVE-2017-9403: Prevent memory leak in function TIFFReadDirEntryLong8Array, which allowed attackers to cause a denial of service via a crafted file (bsc#1042805). - CVE-2017-9404: Fixed memory leak vulnerability in function OJPEGReadHeaderInfoSecTablesQTable, which allowed attackers to cause a denial of service via a crafted file (bsc#1042804). These various other issues were fixed: - Fix uint32 overflow in TIFFReadEncodedStrip() that caused an integer division by zero. Reported by Agostino Sarubbo. - fix heap-based buffer overflow on generation of PixarLog / LUV compressed files, with ColorMap, TransferFunction attached and nasty plays with bitspersample. The fix for LUV has not been tested, but suffers from the same kind of issue of PixarLog. - modify ChopUpSingleUncompressedStrip() to instanciate compute ntrips as TIFFhowmany_32(td->td_imagelength, rowsperstrip), instead of a logic based on the total size of data. Which is faulty is the total size of data is not sufficient to fill the whole image, and thus results in reading outside of the StripByCounts/StripOffsets arrays when using TIFFReadScanline() - make OJPEGDecode() early exit in case of failure in OJPEGPreDecode(). This will avoid a divide by zero, and potential other issues. - fix misleading indentation as warned by GCC. - revert change done on 2016-01-09 that made Param member of TIFFFaxTabEnt structure a uint16 to reduce size of the binary. It happens that the Hylafax software uses the tables that follow this typedef (TIFFFaxMainTable, TIFFFaxWhiteTable, TIFFFaxBlackTable), although they are not in a public libtiff header. - add TIFFReadRGBAStripExt() and TIFFReadRGBATileExt() variants of the functions without ext, with an extra argument to control the stop_on_error behaviour. - fix potential memory leaks in error code path of TIFFRGBAImageBegin(). - increase libjpeg max memory usable to 10 MB instead of libjpeg 1MB default. This helps when creating files with "big" tile, without using libjpeg temporary files. - add _TIFFcalloc() - return 0 in Encode functions instead of -1 when TIFFFlushData1() fails. - only run JPEGFixupTagsSubsampling() if the YCbCrSubsampling tag is not explicitly present. This helps a bit to reduce the I/O amount when the tag is present (especially on cloud hosted files). - in LZWPostEncode(), increase, if necessary, the code bit-width after flushing the remaining code and before emitting the EOI code. - fix memory leak in error code path of PixarLogSetupDecode(). - fix potential memory leak in OJPEGReadHeaderInfoSecTablesQTable, OJPEGReadHeaderInfoSecTablesDcTable and OJPEGReadHeaderInfoSecTablesAcTable - avoid crash in Fax3Close() on empty file. - TIFFFillStrip(): add limitation to the number of bytes read in case td_stripbytecount[strip] is bigger than reasonable, so as to avoid excessive memory allocation. - fix memory leak when the underlying codec (ZIP, PixarLog) succeeds its setupdecode() method, but PredictorSetup fails. - TIFFFillStrip() and TIFFFillTile(): avoid excessive memory allocation in case of shorten files. Only effective on 64 bit builds and non-mapped cases. - TIFFFillStripPartial() / TIFFSeek(), avoid potential integer overflows with read_ahead in CHUNKY_STRIP_READ_SUPPORT mode. - avoid excessive memory allocation in case of shorten files. Only effective on 64 bit builds. - update tif_rawcc in CHUNKY_STRIP_READ_SUPPORT mode with tif_rawdataloaded when calling TIFFStartStrip() or TIFFFillStripPartial(). - avoid potential int32 overflow in TIFFYCbCrToRGBInit() Fixes - avoid potential int32 overflows in multiply_ms() and add_ms(). - fix out-of-buffer read in PackBitsDecode() Fixes - LogL16InitState(): avoid excessive memory allocation when RowsPerStrip tag is missing. - update dec_bitsleft at beginning of LZWDecode(), and update tif_rawcc at end of LZWDecode(). This is needed to properly work with the latest chnges in tif_read.c in CHUNKY_STRIP_READ_SUPPORT mode. - PixarLogDecode(): resync tif_rawcp with next_in and tif_rawcc with avail_in at beginning and end of function, similarly to what is done in LZWDecode(). Likely needed so that it works properly with latest chnges in tif_read.c in CHUNKY_STRIP_READ_SUPPORT mode. - initYCbCrConversion(): add basic validation of luma and refBlackWhite coefficients (just check they are not NaN for now), to avoid potential float to int overflows. - _TIFFVSetField(): fix outside range cast of double to float. - initYCbCrConversion(): check luma[1] is not zero to avoid division by zero - _TIFFVSetField(): fix outside range cast of double to float. - initYCbCrConversion(): check luma[1] is not zero to avoid division by zero. - initYCbCrConversion(): stricter validation for refBlackWhite coefficients values. - avoid uint32 underflow in cpDecodedStrips that can cause various issues, such as buffer overflows in the library. - fix readContigStripsIntoBuffer() in -i (ignore) mode so that the output buffer is correctly incremented to avoid write outside bounds. - add 3 extra bytes at end of strip buffer in readSeparateStripsIntoBuffer() to avoid read outside of heap allocated buffer. - fix integer division by zero when BitsPerSample is missing. - fix null pointer dereference in -r mode when the image has no StripByteCount tag. - avoid potential division by zero is BitsPerSamples tag is missing. - when TIFFGetField(, TIFFTAG_NUMBEROFINKS, ) is called, limit the return number of inks to SamplesPerPixel, so that code that parses ink names doesn't go past the end of the buffer. - avoid potential division by zero is BitsPerSamples tag is missing. - fix uint32 underflow/overflow that can cause heap-based buffer overflow. - replace assert( (bps % 8) == 0 ) by a non assert check. - fix 2 heap-based buffer overflows (in PSDataBW and PSDataColorContig). - prevent heap-based buffer overflow in -j mode on a paletted image. - fix wrong usage of memcpy() that can trigger unspecified behaviour. - avoid potential invalid memory read in t2p_writeproc. - avoid potential heap-based overflow in t2p_readwrite_pdf_image_tile(). - remove extraneous TIFFClose() in error code path, that caused double free. - error out cleanly in cpContig2SeparateByRow and cpSeparate2ContigByRow if BitsPerSample != 8 to avoid heap based overflow. - avoid integer division by zero. - call TIFFClose() in error code paths. - emit appropriate message if the input file is empty. - close TIFF handle in error code path. This update was imported from the SUSE:SLE-12:Update update project. libtiff-devel-32bit-4.0.8-21.1.x86_64.rpm libtiff-devel-4.0.8-21.1.i586.rpm libtiff5-32bit-4.0.8-21.1.x86_64.rpm libtiff5-4.0.8-21.1.i586.rpm libtiff5-debuginfo-32bit-4.0.8-21.1.x86_64.rpm libtiff5-debuginfo-4.0.8-21.1.i586.rpm tiff-4.0.8-21.1.i586.rpm tiff-4.0.8-21.1.src.rpm tiff-debuginfo-4.0.8-21.1.i586.rpm tiff-debugsource-4.0.8-21.1.i586.rpm libtiff-devel-4.0.8-21.1.x86_64.rpm libtiff5-4.0.8-21.1.x86_64.rpm libtiff5-debuginfo-4.0.8-21.1.x86_64.rpm tiff-4.0.8-21.1.x86_64.rpm tiff-debuginfo-4.0.8-21.1.x86_64.rpm tiff-debugsource-4.0.8-21.1.x86_64.rpm openSUSE-2017-1120 moderate openSUSE Leap 42.3 Update This update for liblouis fixes several issues. These security issues were fixed: - CVE-2017-13738: Prevent illegal address access in the _lou_getALine function that allowed to cause remote DoS (bsc#1056105). - CVE-2017-13739: Prevent heap-based buffer overflow in the function resolveSubtable() that could have caused DoS or remote code execution (bsc#1056101). - CVE-2017-13740: Prevent stack-based buffer overflow in the function parseChars() that could have caused DoS or possibly unspecified other impact (bsc#1056097) - CVE-2017-13741: Prevent use-after-free in function compileBrailleIndicator() that allowed to cause remote DoS (bsc#1056095). - CVE_2017-13742: Prevent stack-based buffer overflow in function includeFile that allowed to cause remote DoS (bsc#1056093). - CVE-2017-13743: Prevent buffer overflow triggered in the function _lou_showString() that allowed to cause remote DoS (bsc#1056090). - CVE-2017-13744: Prevent illegal address access in the function _lou_getALine() that allowed to cause remote DoS (bsc#1056088). This update was imported from the SUSE:SLE-12-SP2:Update update project. liblouis-2.6.4-6.1.src.rpm liblouis-data-2.6.4-6.1.i586.rpm liblouis-debugsource-2.6.4-6.1.i586.rpm liblouis-devel-2.6.4-6.1.i586.rpm liblouis-doc-2.6.4-6.1.i586.rpm liblouis-tools-2.6.4-6.1.i586.rpm liblouis-tools-debuginfo-2.6.4-6.1.i586.rpm liblouis9-2.6.4-6.1.i586.rpm liblouis9-debuginfo-2.6.4-6.1.i586.rpm python-louis-2.6.4-6.1.i586.rpm python-louis-2.6.4-6.1.src.rpm liblouis-data-2.6.4-6.1.x86_64.rpm liblouis-debugsource-2.6.4-6.1.x86_64.rpm liblouis-devel-2.6.4-6.1.x86_64.rpm liblouis-doc-2.6.4-6.1.x86_64.rpm liblouis-tools-2.6.4-6.1.x86_64.rpm liblouis-tools-debuginfo-2.6.4-6.1.x86_64.rpm liblouis9-2.6.4-6.1.x86_64.rpm liblouis9-debuginfo-2.6.4-6.1.x86_64.rpm python-louis-2.6.4-6.1.x86_64.rpm openSUSE-2017-1107 low openSUSE Leap 42.3 Update This update for spec-cleaner provides version 1.0.0 and fixes the following issues: - Recognize the BuildConflicts tag. - Fix few make parsing errors. - Fix some codeblock error detection. - More path replacements detection. - Keep uppercase URL tag as per vote. - Include pkgconfig and others from leap 42.3 instead of 42.2. spec-cleaner-1.0.0-34.1.noarch.rpm spec-cleaner-1.0.0-34.1.src.rpm spec-cleaner-format_spec_file-1.0.0-34.1.noarch.rpm openSUSE-2017-1108 moderate openSUSE Leap 42.3 Update This update for lvm2 provides the following fixes: - Create /dev/disk/by-part{label,uuid} and gpt-auto-root links. (bsc#1028485) - Try to refresh clvmd's device cache on the first failure. (bsc#978055) - Fix stale device cache in clvmd. (bsc#978055) - Warn if PV size in metadata is larger than disk device size. (bsc#999878) - Fix lvm2 activation issue when used on top of multipath. (bsc#998893) This update was imported from the SUSE:SLE-12-SP2:Update update project. device-mapper-1.02.97-77.1.i586.rpm device-mapper-32bit-1.02.97-77.1.x86_64.rpm device-mapper-debuginfo-1.02.97-77.1.i586.rpm device-mapper-debuginfo-32bit-1.02.97-77.1.x86_64.rpm device-mapper-devel-1.02.97-77.1.i586.rpm device-mapper-devel-32bit-1.02.97-77.1.x86_64.rpm lvm2-2.02.120-77.1.i586.rpm lvm2-2.02.120-77.1.src.rpm lvm2-clvm-2.02.120-77.1.i586.rpm lvm2-clvm-debuginfo-2.02.120-77.1.i586.rpm lvm2-cmirrord-2.02.120-77.1.i586.rpm lvm2-cmirrord-debuginfo-2.02.120-77.1.i586.rpm lvm2-debuginfo-2.02.120-77.1.i586.rpm lvm2-debugsource-2.02.120-77.1.i586.rpm lvm2-devel-2.02.120-77.1.i586.rpm device-mapper-1.02.97-77.1.x86_64.rpm device-mapper-debuginfo-1.02.97-77.1.x86_64.rpm device-mapper-devel-1.02.97-77.1.x86_64.rpm lvm2-2.02.120-77.1.x86_64.rpm lvm2-clvm-2.02.120-77.1.x86_64.rpm lvm2-clvm-debuginfo-2.02.120-77.1.x86_64.rpm lvm2-cmirrord-2.02.120-77.1.x86_64.rpm lvm2-cmirrord-debuginfo-2.02.120-77.1.x86_64.rpm lvm2-debuginfo-2.02.120-77.1.x86_64.rpm lvm2-debugsource-2.02.120-77.1.x86_64.rpm lvm2-devel-2.02.120-77.1.x86_64.rpm openSUSE-2017-1115 moderate openSUSE Leap 42.3 Update This update for git to version 2.13.6 fixes the following issues: * CVE-2017-14867: Various Perl scripts did not use safe_pipe_capture() instead of backticks, leaving them susceptible to end-user input (boo#1061041) As an additional measure, "git cvsserver" no longer is invoked by "git daemon" by default. git-2.13.6-7.1.i586.rpm git-2.13.6-7.1.src.rpm git-arch-2.13.6-7.1.i586.rpm git-core-2.13.6-7.1.i586.rpm git-core-debuginfo-2.13.6-7.1.i586.rpm git-credential-gnome-keyring-2.13.6-7.1.i586.rpm git-credential-gnome-keyring-debuginfo-2.13.6-7.1.i586.rpm git-cvs-2.13.6-7.1.i586.rpm git-daemon-2.13.6-7.1.i586.rpm git-daemon-debuginfo-2.13.6-7.1.i586.rpm git-debugsource-2.13.6-7.1.i586.rpm git-doc-2.13.6-7.1.noarch.rpm git-email-2.13.6-7.1.i586.rpm git-gui-2.13.6-7.1.i586.rpm git-svn-2.13.6-7.1.i586.rpm git-svn-debuginfo-2.13.6-7.1.i586.rpm git-web-2.13.6-7.1.i586.rpm gitk-2.13.6-7.1.i586.rpm git-2.13.6-7.1.x86_64.rpm git-arch-2.13.6-7.1.x86_64.rpm git-core-2.13.6-7.1.x86_64.rpm git-core-debuginfo-2.13.6-7.1.x86_64.rpm git-credential-gnome-keyring-2.13.6-7.1.x86_64.rpm git-credential-gnome-keyring-debuginfo-2.13.6-7.1.x86_64.rpm git-cvs-2.13.6-7.1.x86_64.rpm git-daemon-2.13.6-7.1.x86_64.rpm git-daemon-debuginfo-2.13.6-7.1.x86_64.rpm git-debugsource-2.13.6-7.1.x86_64.rpm git-email-2.13.6-7.1.x86_64.rpm git-gui-2.13.6-7.1.x86_64.rpm git-svn-2.13.6-7.1.x86_64.rpm git-svn-debuginfo-2.13.6-7.1.x86_64.rpm git-web-2.13.6-7.1.x86_64.rpm gitk-2.13.6-7.1.x86_64.rpm openSUSE-2017-1109 low openSUSE Leap 42.3 Update This update for autofs improves timeout handling to use a monotonic time source. This prevents negative adjustments of the system clock from affecting expiration of automounted volumes. This update was imported from the SUSE:SLE-12-SP2:Update update project. autofs-5.0.9-19.1.i586.rpm autofs-5.0.9-19.1.src.rpm autofs-debuginfo-5.0.9-19.1.i586.rpm autofs-debugsource-5.0.9-19.1.i586.rpm autofs-5.0.9-19.1.x86_64.rpm autofs-debuginfo-5.0.9-19.1.x86_64.rpm autofs-debugsource-5.0.9-19.1.x86_64.rpm openSUSE-2017-1121 moderate openSUSE Leap 42.3 Update This update for nextcloud fixes the following issues: - CVE-2017-9286: During upgrade of the nextcloud package local attackers could gain root access via a /tmp file race. (boo#1036756) nextcloud-11.0.3-3.1.noarch.rpm nextcloud-11.0.3-3.1.src.rpm openSUSE-2017-1112 important openSUSE Leap 42.3 Update This update for xinetd fixes a regression that could cause a crash when an 'IPv6' flag was specified without a 'bind' option (bsc#1060432) This update was imported from the SUSE:SLE-12:Update update project. xinetd-2.3.15-17.2.i586.rpm xinetd-2.3.15-17.2.src.rpm xinetd-debuginfo-2.3.15-17.2.i586.rpm xinetd-debugsource-2.3.15-17.2.i586.rpm xinetd-2.3.15-17.2.x86_64.rpm xinetd-debuginfo-2.3.15-17.2.x86_64.rpm xinetd-debugsource-2.3.15-17.2.x86_64.rpm openSUSE-2017-1125 low openSUSE Leap 42.3 Update This update for the_silver_searcher to version 2.1 provides the following new functionality: - stream decompression of zipped files - '-A n -B n' act like '-C n' by printing blank lines the_silver_searcher-2.1.0-9.1.i586.rpm the_silver_searcher-2.1.0-9.1.src.rpm the_silver_searcher-debuginfo-2.1.0-9.1.i586.rpm the_silver_searcher-debugsource-2.1.0-9.1.i586.rpm the_silver_searcher-2.1.0-9.1.x86_64.rpm the_silver_searcher-debuginfo-2.1.0-9.1.x86_64.rpm the_silver_searcher-debugsource-2.1.0-9.1.x86_64.rpm openSUSE-2017-1129 moderate openSUSE Leap 42.3 Update This update for libvirt fixes several issues. This security issue was fixed: - bsc#1053600: Escape ssh commed line to prevent interpreting malicious hostname as arguments, allowing for command execution These non-security issues were fixed: - bsc#1049505, bsc#1051017: Security manager: Don't autogenerate seclabels of type 'none' when AppArmor is inactive - bsc#1045693: Support chardevs with ARM machines This update was imported from the SUSE:SLE-12-SP3:Update update project. libvirt-3.3.0-6.1.i586.rpm libvirt-3.3.0-6.1.src.rpm libvirt-admin-3.3.0-6.1.i586.rpm libvirt-admin-debuginfo-3.3.0-6.1.i586.rpm libvirt-client-3.3.0-6.1.i586.rpm libvirt-client-debuginfo-3.3.0-6.1.i586.rpm libvirt-client-debuginfo-32bit-3.3.0-6.1.x86_64.rpm libvirt-daemon-3.3.0-6.1.i586.rpm libvirt-daemon-config-network-3.3.0-6.1.i586.rpm libvirt-daemon-config-nwfilter-3.3.0-6.1.i586.rpm libvirt-daemon-debuginfo-3.3.0-6.1.i586.rpm libvirt-daemon-driver-interface-3.3.0-6.1.i586.rpm libvirt-daemon-driver-interface-debuginfo-3.3.0-6.1.i586.rpm libvirt-daemon-driver-lxc-3.3.0-6.1.i586.rpm libvirt-daemon-driver-lxc-debuginfo-3.3.0-6.1.i586.rpm libvirt-daemon-driver-network-3.3.0-6.1.i586.rpm libvirt-daemon-driver-network-debuginfo-3.3.0-6.1.i586.rpm libvirt-daemon-driver-nodedev-3.3.0-6.1.i586.rpm libvirt-daemon-driver-nodedev-debuginfo-3.3.0-6.1.i586.rpm libvirt-daemon-driver-nwfilter-3.3.0-6.1.i586.rpm libvirt-daemon-driver-nwfilter-debuginfo-3.3.0-6.1.i586.rpm libvirt-daemon-driver-qemu-3.3.0-6.1.i586.rpm libvirt-daemon-driver-qemu-debuginfo-3.3.0-6.1.i586.rpm libvirt-daemon-driver-secret-3.3.0-6.1.i586.rpm libvirt-daemon-driver-secret-debuginfo-3.3.0-6.1.i586.rpm libvirt-daemon-driver-storage-3.3.0-6.1.i586.rpm libvirt-daemon-driver-storage-core-3.3.0-6.1.i586.rpm libvirt-daemon-driver-storage-core-debuginfo-3.3.0-6.1.i586.rpm libvirt-daemon-driver-storage-disk-3.3.0-6.1.i586.rpm libvirt-daemon-driver-storage-disk-debuginfo-3.3.0-6.1.i586.rpm libvirt-daemon-driver-storage-iscsi-3.3.0-6.1.i586.rpm libvirt-daemon-driver-storage-iscsi-debuginfo-3.3.0-6.1.i586.rpm libvirt-daemon-driver-storage-logical-3.3.0-6.1.i586.rpm libvirt-daemon-driver-storage-logical-debuginfo-3.3.0-6.1.i586.rpm libvirt-daemon-driver-storage-mpath-3.3.0-6.1.i586.rpm libvirt-daemon-driver-storage-mpath-debuginfo-3.3.0-6.1.i586.rpm libvirt-daemon-driver-storage-scsi-3.3.0-6.1.i586.rpm libvirt-daemon-driver-storage-scsi-debuginfo-3.3.0-6.1.i586.rpm libvirt-daemon-driver-uml-3.3.0-6.1.i586.rpm libvirt-daemon-driver-uml-debuginfo-3.3.0-6.1.i586.rpm libvirt-daemon-driver-vbox-3.3.0-6.1.i586.rpm libvirt-daemon-driver-vbox-debuginfo-3.3.0-6.1.i586.rpm libvirt-daemon-lxc-3.3.0-6.1.i586.rpm libvirt-daemon-qemu-3.3.0-6.1.i586.rpm libvirt-daemon-uml-3.3.0-6.1.i586.rpm libvirt-daemon-vbox-3.3.0-6.1.i586.rpm libvirt-debugsource-3.3.0-6.1.i586.rpm libvirt-devel-3.3.0-6.1.i586.rpm libvirt-devel-32bit-3.3.0-6.1.x86_64.rpm libvirt-doc-3.3.0-6.1.i586.rpm libvirt-libs-3.3.0-6.1.i586.rpm libvirt-libs-debuginfo-3.3.0-6.1.i586.rpm libvirt-lock-sanlock-3.3.0-6.1.i586.rpm libvirt-lock-sanlock-debuginfo-3.3.0-6.1.i586.rpm libvirt-nss-3.3.0-6.1.i586.rpm libvirt-nss-debuginfo-3.3.0-6.1.i586.rpm libvirt-3.3.0-6.1.x86_64.rpm libvirt-admin-3.3.0-6.1.x86_64.rpm libvirt-admin-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-client-3.3.0-6.1.x86_64.rpm libvirt-client-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-daemon-3.3.0-6.1.x86_64.rpm libvirt-daemon-config-network-3.3.0-6.1.x86_64.rpm libvirt-daemon-config-nwfilter-3.3.0-6.1.x86_64.rpm libvirt-daemon-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-interface-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-interface-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-libxl-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-libxl-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-lxc-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-lxc-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-network-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-network-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-nodedev-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-nodedev-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-nwfilter-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-nwfilter-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-qemu-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-qemu-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-secret-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-secret-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-storage-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-storage-core-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-storage-core-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-storage-disk-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-storage-disk-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-storage-logical-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-storage-logical-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-storage-mpath-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-storage-mpath-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-storage-rbd-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-storage-rbd-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-storage-scsi-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-storage-scsi-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-uml-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-uml-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-vbox-3.3.0-6.1.x86_64.rpm libvirt-daemon-driver-vbox-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-daemon-lxc-3.3.0-6.1.x86_64.rpm libvirt-daemon-qemu-3.3.0-6.1.x86_64.rpm libvirt-daemon-uml-3.3.0-6.1.x86_64.rpm libvirt-daemon-vbox-3.3.0-6.1.x86_64.rpm libvirt-daemon-xen-3.3.0-6.1.x86_64.rpm libvirt-debugsource-3.3.0-6.1.x86_64.rpm libvirt-devel-3.3.0-6.1.x86_64.rpm libvirt-doc-3.3.0-6.1.x86_64.rpm libvirt-libs-3.3.0-6.1.x86_64.rpm libvirt-libs-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-lock-sanlock-3.3.0-6.1.x86_64.rpm libvirt-lock-sanlock-debuginfo-3.3.0-6.1.x86_64.rpm libvirt-nss-3.3.0-6.1.x86_64.rpm libvirt-nss-debuginfo-3.3.0-6.1.x86_64.rpm openSUSE-2017-1113 low openSUSE Leap 42.3 Update This update for tcmu-runner provides the following fix: - Fix the path where tcmu-runner searches for plugins so that starting it from systemd works as expected. (bsc#1052795) This update was imported from the SUSE:SLE-12-SP3:Update update project. libtcmu-devel-1.2.0-6.1.i586.rpm libtcmu1-1.2.0-6.1.i586.rpm libtcmu1-debuginfo-1.2.0-6.1.i586.rpm tcmu-runner-1.2.0-6.1.i586.rpm tcmu-runner-1.2.0-6.1.src.rpm tcmu-runner-debuginfo-1.2.0-6.1.i586.rpm tcmu-runner-debugsource-1.2.0-6.1.i586.rpm tcmu-runner-devel-1.2.0-6.1.i586.rpm libtcmu-devel-1.2.0-6.1.x86_64.rpm libtcmu1-1.2.0-6.1.x86_64.rpm libtcmu1-debuginfo-1.2.0-6.1.x86_64.rpm tcmu-runner-1.2.0-6.1.x86_64.rpm tcmu-runner-debuginfo-1.2.0-6.1.x86_64.rpm tcmu-runner-debugsource-1.2.0-6.1.x86_64.rpm tcmu-runner-devel-1.2.0-6.1.x86_64.rpm tcmu-runner-handler-rbd-1.2.0-6.1.x86_64.rpm tcmu-runner-handler-rbd-debuginfo-1.2.0-6.1.x86_64.rpm openSUSE-2017-1114 important openSUSE Leap 42.3 Update This update to Mozilla Firefox 52.4esr, along with Mozilla NSS 3.28.6, fixes security issues and bugs. The following vulnerabilities advised upstream under MFSA 2017-22 (boo#1060445) were fixed: - CVE-2017-7793: Use-after-free with Fetch API - CVE-2017-7818: Use-after-free during ARIA array manipulation - CVE-2017-7819: Use-after-free while resizing images in design mode - CVE-2017-7824: Buffer overflow when drawing and validating elements with ANGLE - CVE-2017-7814: Blob and data URLs bypass phishing and malware protection warnings - CVE-2017-7823: CSP sandbox directive did not create a unique origin - CVE-2017-7810: Memory safety bugs fixed in Firefox 56 and Firefox ESR 52.4 The following security issue was fixed in Mozilla NSS 3.28.6: - CVE-2017-7805: Use-after-free in TLS 1.2 generating handshake hashes (bsc#1061005) The following bug was fixed: - boo#1029917: language accept header use incorrect locale For compatibility reasons, java-1_8_0-openjdk was rebuilt to the updated version of NSS. MozillaFirefox-52.4.0-63.1.i586.rpm MozillaFirefox-52.4.0-63.1.src.rpm MozillaFirefox-branding-upstream-52.4.0-63.1.i586.rpm MozillaFirefox-buildsymbols-52.4.0-63.1.i586.rpm MozillaFirefox-debuginfo-52.4.0-63.1.i586.rpm MozillaFirefox-debugsource-52.4.0-63.1.i586.rpm MozillaFirefox-devel-52.4.0-63.1.i586.rpm MozillaFirefox-translations-common-52.4.0-63.1.i586.rpm MozillaFirefox-translations-other-52.4.0-63.1.i586.rpm java-1_8_0-openjdk-1.8.0.144-15.2.i586.rpm java-1_8_0-openjdk-1.8.0.144-15.2.src.rpm java-1_8_0-openjdk-accessibility-1.8.0.144-15.2.i586.rpm java-1_8_0-openjdk-debuginfo-1.8.0.144-15.2.i586.rpm java-1_8_0-openjdk-debugsource-1.8.0.144-15.2.i586.rpm java-1_8_0-openjdk-demo-1.8.0.144-15.2.i586.rpm java-1_8_0-openjdk-demo-debuginfo-1.8.0.144-15.2.i586.rpm java-1_8_0-openjdk-devel-1.8.0.144-15.2.i586.rpm java-1_8_0-openjdk-devel-debuginfo-1.8.0.144-15.2.i586.rpm java-1_8_0-openjdk-headless-1.8.0.144-15.2.i586.rpm java-1_8_0-openjdk-headless-debuginfo-1.8.0.144-15.2.i586.rpm java-1_8_0-openjdk-javadoc-1.8.0.144-15.2.noarch.rpm java-1_8_0-openjdk-src-1.8.0.144-15.2.i586.rpm libfreebl3-3.28.6-44.1.i586.rpm libfreebl3-32bit-3.28.6-44.1.x86_64.rpm libfreebl3-debuginfo-3.28.6-44.1.i586.rpm libfreebl3-debuginfo-32bit-3.28.6-44.1.x86_64.rpm libsoftokn3-3.28.6-44.1.i586.rpm libsoftokn3-32bit-3.28.6-44.1.x86_64.rpm libsoftokn3-debuginfo-3.28.6-44.1.i586.rpm libsoftokn3-debuginfo-32bit-3.28.6-44.1.x86_64.rpm mozilla-nss-3.28.6-44.1.i586.rpm mozilla-nss-3.28.6-44.1.src.rpm mozilla-nss-32bit-3.28.6-44.1.x86_64.rpm mozilla-nss-certs-3.28.6-44.1.i586.rpm mozilla-nss-certs-32bit-3.28.6-44.1.x86_64.rpm mozilla-nss-certs-debuginfo-3.28.6-44.1.i586.rpm mozilla-nss-certs-debuginfo-32bit-3.28.6-44.1.x86_64.rpm mozilla-nss-debuginfo-3.28.6-44.1.i586.rpm mozilla-nss-debuginfo-32bit-3.28.6-44.1.x86_64.rpm mozilla-nss-debugsource-3.28.6-44.1.i586.rpm mozilla-nss-devel-3.28.6-44.1.i586.rpm mozilla-nss-sysinit-3.28.6-44.1.i586.rpm mozilla-nss-sysinit-32bit-3.28.6-44.1.x86_64.rpm mozilla-nss-sysinit-debuginfo-3.28.6-44.1.i586.rpm mozilla-nss-sysinit-debuginfo-32bit-3.28.6-44.1.x86_64.rpm mozilla-nss-tools-3.28.6-44.1.i586.rpm mozilla-nss-tools-debuginfo-3.28.6-44.1.i586.rpm MozillaFirefox-52.4.0-63.2.src.rpm MozillaFirefox-52.4.0-63.2.x86_64.rpm MozillaFirefox-branding-upstream-52.4.0-63.2.x86_64.rpm MozillaFirefox-buildsymbols-52.4.0-63.2.x86_64.rpm MozillaFirefox-debuginfo-52.4.0-63.2.x86_64.rpm MozillaFirefox-debugsource-52.4.0-63.2.x86_64.rpm MozillaFirefox-devel-52.4.0-63.2.x86_64.rpm MozillaFirefox-translations-common-52.4.0-63.2.x86_64.rpm MozillaFirefox-translations-other-52.4.0-63.2.x86_64.rpm java-1_8_0-openjdk-1.8.0.144-15.2.x86_64.rpm java-1_8_0-openjdk-accessibility-1.8.0.144-15.2.x86_64.rpm java-1_8_0-openjdk-debuginfo-1.8.0.144-15.2.x86_64.rpm java-1_8_0-openjdk-debugsource-1.8.0.144-15.2.x86_64.rpm java-1_8_0-openjdk-demo-1.8.0.144-15.2.x86_64.rpm java-1_8_0-openjdk-demo-debuginfo-1.8.0.144-15.2.x86_64.rpm java-1_8_0-openjdk-devel-1.8.0.144-15.2.x86_64.rpm java-1_8_0-openjdk-devel-debuginfo-1.8.0.144-15.2.x86_64.rpm java-1_8_0-openjdk-headless-1.8.0.144-15.2.x86_64.rpm java-1_8_0-openjdk-headless-debuginfo-1.8.0.144-15.2.x86_64.rpm java-1_8_0-openjdk-src-1.8.0.144-15.2.x86_64.rpm libfreebl3-3.28.6-44.1.x86_64.rpm libfreebl3-debuginfo-3.28.6-44.1.x86_64.rpm libsoftokn3-3.28.6-44.1.x86_64.rpm libsoftokn3-debuginfo-3.28.6-44.1.x86_64.rpm mozilla-nss-3.28.6-44.1.x86_64.rpm mozilla-nss-certs-3.28.6-44.1.x86_64.rpm mozilla-nss-certs-debuginfo-3.28.6-44.1.x86_64.rpm mozilla-nss-debuginfo-3.28.6-44.1.x86_64.rpm mozilla-nss-debugsource-3.28.6-44.1.x86_64.rpm mozilla-nss-devel-3.28.6-44.1.x86_64.rpm mozilla-nss-sysinit-3.28.6-44.1.x86_64.rpm mozilla-nss-sysinit-debuginfo-3.28.6-44.1.x86_64.rpm mozilla-nss-tools-3.28.6-44.1.x86_64.rpm mozilla-nss-tools-debuginfo-3.28.6-44.1.x86_64.rpm openSUSE-2017-1116 important openSUSE Leap 42.3 Update This update for dnsmasq fixes the following security issues: - CVE-2017-14491: 2 byte heap based overflow. [bsc#1060354] - CVE-2017-14492: heap based overflow. [bsc#1060355] - CVE-2017-14493: stack based overflow. [bsc#1060360] - CVE-2017-14494: DHCP - info leak. [bsc#1060361] - CVE-2017-14495: DNS - OOM DoS. [bsc#1060362] - CVE-2017-14496: DNS - DoS Integer underflow. [bsc#1060364] This update was imported from the SUSE:SLE-12-SP1:Update update project. dnsmasq-2.78-13.1.i586.rpm dnsmasq-2.78-13.1.src.rpm dnsmasq-debuginfo-2.78-13.1.i586.rpm dnsmasq-debugsource-2.78-13.1.i586.rpm dnsmasq-utils-2.78-13.1.i586.rpm dnsmasq-utils-debuginfo-2.78-13.1.i586.rpm dnsmasq-2.78-13.1.x86_64.rpm dnsmasq-debuginfo-2.78-13.1.x86_64.rpm dnsmasq-debugsource-2.78-13.1.x86_64.rpm dnsmasq-utils-2.78-13.1.x86_64.rpm dnsmasq-utils-debuginfo-2.78-13.1.x86_64.rpm openSUSE-2017-1126 low openSUSE Leap 42.3 Update This update for yast2-xml provides the following fix: - Omit libxml2 memory cleanup to prevent a crash if rubygem-nokogiri is installed. (bsc#1047449) This update was imported from the SUSE:SLE-12:Update update project. yast2-xml-3.1.2-8.1.i586.rpm yast2-xml-3.1.2-8.1.src.rpm yast2-xml-debuginfo-3.1.2-8.1.i586.rpm yast2-xml-debugsource-3.1.2-8.1.i586.rpm yast2-xml-3.1.2-8.1.x86_64.rpm yast2-xml-debuginfo-3.1.2-8.1.x86_64.rpm yast2-xml-debugsource-3.1.2-8.1.x86_64.rpm openSUSE-2017-1127 low openSUSE Leap 42.3 Update This update for yast2-bootloader provides the following fix: - Make sure the correct MBR device is found to install grub. (bsc#1039712, bsc#1052006) This update was imported from the SUSE:SLE-12-SP3:Update update project. yast2-bootloader-3.2.24-3.1.i586.rpm yast2-bootloader-3.2.24-3.1.src.rpm yast2-bootloader-3.2.24-3.1.x86_64.rpm openSUSE-2017-1135 moderate openSUSE Leap 42.3 Update This update for virtualbox to version 5.1.28 fixes the following issues: - boo#1060072: virtualbox drivers vboxdrv did not work if virtualbox-qt was not installed - Also the libqt binaries are now now longer required on headless installs. - support kernel 4.14.x API python-virtualbox-5.1.28-34.1.x86_64.rpm python-virtualbox-debuginfo-5.1.28-34.1.x86_64.rpm virtualbox-5.1.28-34.1.src.rpm virtualbox-5.1.28-34.1.x86_64.rpm virtualbox-debuginfo-5.1.28-34.1.x86_64.rpm virtualbox-debugsource-5.1.28-34.1.x86_64.rpm virtualbox-devel-5.1.28-34.1.x86_64.rpm virtualbox-guest-desktop-icons-5.1.28-34.1.noarch.rpm virtualbox-guest-kmp-default-5.1.28_k4.4.87_25-34.1.x86_64.rpm virtualbox-guest-kmp-default-debuginfo-5.1.28_k4.4.87_25-34.1.x86_64.rpm virtualbox-guest-source-5.1.28-34.1.noarch.rpm virtualbox-guest-tools-5.1.28-34.1.x86_64.rpm virtualbox-guest-tools-debuginfo-5.1.28-34.1.x86_64.rpm virtualbox-guest-x11-5.1.28-34.1.x86_64.rpm virtualbox-guest-x11-debuginfo-5.1.28-34.1.x86_64.rpm virtualbox-host-kmp-default-5.1.28_k4.4.87_25-34.1.x86_64.rpm virtualbox-host-kmp-default-debuginfo-5.1.28_k4.4.87_25-34.1.x86_64.rpm virtualbox-host-source-5.1.28-34.1.noarch.rpm virtualbox-qt-5.1.28-34.1.x86_64.rpm virtualbox-qt-debuginfo-5.1.28-34.1.x86_64.rpm virtualbox-vnc-5.1.28-34.1.x86_64.rpm virtualbox-websrv-5.1.28-34.1.x86_64.rpm virtualbox-websrv-debuginfo-5.1.28-34.1.x86_64.rpm openSUSE-2017-1150 moderate openSUSE Leap 42.3 Update This update provides the latest version of GNUHealth and it's dependencies. gnuhealth: - health_services: Fix issues related to invoice type and domain when creating the service invoice. - health_disability: Rename and fix Amputation model description from Amputation to Prosthesis. - health: Include duration frequency selections strings for translation in prescription report. - health, health_qrcodes : Fix traceback due to obsolete unicode method in reports (bsc#1043757) tryton: - Updated to 4.2.7 bugfix-release. trytond_account: - Updated to 4.2.3 bugfix-release. trytond_stock: - Updated to 4.2.4 bugfix-release. gnuhealth-3.2.5-29.1.noarch.rpm gnuhealth-3.2.5-29.1.src.rpm trytond_account-4.2.3-6.1.noarch.rpm trytond_account-4.2.3-6.1.src.rpm trytond_stock-4.2.4-6.1.noarch.rpm trytond_stock-4.2.4-6.1.src.rpm tryton-4.2.7-16.1.noarch.rpm tryton-4.2.7-16.1.src.rpm openSUSE-2017-1142 moderate openSUSE Leap 42.3 Update This update for openjpeg2 fixes several issues. These security issues were fixed: - CVE-2016-10507: Integer overflow vulnerability in the bmp24toimage function allowed remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted bmp file (bsc#1056421). - CVE-2017-14039: A heap-based buffer overflow was discovered in the opj_t2_encode_packet function. The vulnerability caused an out-of-bounds write, which may have lead to remote denial of service or possibly unspecified other impact (bsc#1056622). - CVE-2017-14164: A size-validation issue was discovered in opj_j2k_write_sot. The vulnerability caused an out-of-bounds write, which may have lead to remote DoS or possibly remote code execution (bsc#1057511). - CVE-2017-14040: An invalid write access was discovered in bin/jp2/convert.c, triggering a crash in the tgatoimage function. The vulnerability may have lead to remote denial of service or possibly unspecified other impact (bsc#1056621). - CVE-2017-14041: A stack-based buffer overflow was discovered in the pgxtoimage function. The vulnerability caused an out-of-bounds write, which may have lead to remote denial of service or possibly remote code execution (bsc#1056562). This update was imported from the SUSE:SLE-12-SP2:Update update project. libopenjp2-7-2.1.0-19.1.i586.rpm libopenjp2-7-32bit-2.1.0-19.1.x86_64.rpm libopenjp2-7-debuginfo-2.1.0-19.1.i586.rpm libopenjp2-7-debuginfo-32bit-2.1.0-19.1.x86_64.rpm openjpeg2-2.1.0-19.1.i586.rpm openjpeg2-2.1.0-19.1.src.rpm openjpeg2-debuginfo-2.1.0-19.1.i586.rpm openjpeg2-debugsource-2.1.0-19.1.i586.rpm openjpeg2-devel-2.1.0-19.1.i586.rpm libopenjp2-7-2.1.0-19.1.x86_64.rpm libopenjp2-7-debuginfo-2.1.0-19.1.x86_64.rpm openjpeg2-2.1.0-19.1.x86_64.rpm openjpeg2-debuginfo-2.1.0-19.1.x86_64.rpm openjpeg2-debugsource-2.1.0-19.1.x86_64.rpm openjpeg2-devel-2.1.0-19.1.x86_64.rpm openSUSE-2017-1132 moderate openSUSE Leap 42.3 Update This update for enigmail to version 1.9.8.3 fixes the following issues: - boo#1061812: enigmail occasionally blocked when sending e-mail enigmail-1.9.8.3-5.1.i586.rpm enigmail-1.9.8.3-5.1.src.rpm enigmail-1.9.8.3-5.1.x86_64.rpm openSUSE-2017-1136 low openSUSE Leap 42.3 Update This update for yast2-vm provides the following fix: - Add a dependency on the required yast2-bootloader package. (bsc#1048759) This update was imported from the SUSE:SLE-12-SP3:Update update project. yast2-vm-3.2.2-3.1.i586.rpm yast2-vm-3.2.2-3.1.src.rpm yast2-vm-3.2.2-3.1.x86_64.rpm openSUSE-2017-1155 moderate openSUSE Leap 42.3 Update This update for GraphicsMagick fixes the following security issues: - CVE-2017-14532: NULL Pointer Dereference in TIFFIgnoreTags in coders/tiff.c allowing for DoS (bsc#1059663) - CVE-2017-15033: Memory leak in ReadYUVImage could have allowed DoS (boo#1061873) GraphicsMagick-1.3.25-27.1.i586.rpm GraphicsMagick-1.3.25-27.1.src.rpm GraphicsMagick-debuginfo-1.3.25-27.1.i586.rpm GraphicsMagick-debugsource-1.3.25-27.1.i586.rpm GraphicsMagick-devel-1.3.25-27.1.i586.rpm libGraphicsMagick++-Q16-12-1.3.25-27.1.i586.rpm libGraphicsMagick++-Q16-12-debuginfo-1.3.25-27.1.i586.rpm libGraphicsMagick++-devel-1.3.25-27.1.i586.rpm libGraphicsMagick-Q16-3-1.3.25-27.1.i586.rpm libGraphicsMagick-Q16-3-debuginfo-1.3.25-27.1.i586.rpm libGraphicsMagick3-config-1.3.25-27.1.i586.rpm libGraphicsMagickWand-Q16-2-1.3.25-27.1.i586.rpm libGraphicsMagickWand-Q16-2-debuginfo-1.3.25-27.1.i586.rpm perl-GraphicsMagick-1.3.25-27.1.i586.rpm perl-GraphicsMagick-debuginfo-1.3.25-27.1.i586.rpm GraphicsMagick-1.3.25-27.1.x86_64.rpm GraphicsMagick-debuginfo-1.3.25-27.1.x86_64.rpm GraphicsMagick-debugsource-1.3.25-27.1.x86_64.rpm GraphicsMagick-devel-1.3.25-27.1.x86_64.rpm libGraphicsMagick++-Q16-12-1.3.25-27.1.x86_64.rpm libGraphicsMagick++-Q16-12-debuginfo-1.3.25-27.1.x86_64.rpm libGraphicsMagick++-devel-1.3.25-27.1.x86_64.rpm libGraphicsMagick-Q16-3-1.3.25-27.1.x86_64.rpm libGraphicsMagick-Q16-3-debuginfo-1.3.25-27.1.x86_64.rpm libGraphicsMagick3-config-1.3.25-27.1.x86_64.rpm libGraphicsMagickWand-Q16-2-1.3.25-27.1.x86_64.rpm libGraphicsMagickWand-Q16-2-debuginfo-1.3.25-27.1.x86_64.rpm perl-GraphicsMagick-1.3.25-27.1.x86_64.rpm perl-GraphicsMagick-debuginfo-1.3.25-27.1.x86_64.rpm openSUSE-2017-1128 moderate openSUSE Leap 42.3 Update This update adds gnu-compilers-hpc, suse-hpc to the distribution. The packages provide the SUSE HPC GNU Compiler Toolchain environment. FATE#321705, bsc#1061839. suse-hpc-0.1-2.1.i586.rpm suse-hpc-0.1-2.1.src.rpm suse-hpc-debuginfo-0.1-2.1.i586.rpm gnu-compilers-hpc-1.3-2.1.noarch.rpm gnu-compilers-hpc-1.3-2.1.src.rpm gnu-compilers-hpc-devel-1.3-2.1.noarch.rpm gnu-compilers-hpc-macros-devel-1.3-2.1.noarch.rpm suse-hpc-0.1-2.1.x86_64.rpm suse-hpc-debuginfo-0.1-2.1.x86_64.rpm openSUSE-2017-1140 low openSUSE Leap 42.3 Update This update adds libmad, madplay to the distribution: * libmad is a MPEG audio decoder library. * madplay is a MPEG audio decoder and player. libmad-0.15.1b-2.1.src.rpm libmad-debugsource-0.15.1b-2.1.i586.rpm libmad-devel-0.15.1b-2.1.i586.rpm libmad0-0.15.1b-2.1.i586.rpm libmad0-32bit-0.15.1b-2.1.x86_64.rpm libmad0-debuginfo-0.15.1b-2.1.i586.rpm libmad0-debuginfo-32bit-0.15.1b-2.1.x86_64.rpm abxtest-0.15.2b-2.1.i586.rpm madplay-0.15.2b-2.1.i586.rpm madplay-0.15.2b-2.1.src.rpm madplay-debuginfo-0.15.2b-2.1.i586.rpm madplay-debugsource-0.15.2b-2.1.i586.rpm madplay-lang-0.15.2b-2.1.noarch.rpm libmad-debugsource-0.15.1b-2.1.x86_64.rpm libmad-devel-0.15.1b-2.1.x86_64.rpm libmad0-0.15.1b-2.1.x86_64.rpm libmad0-debuginfo-0.15.1b-2.1.x86_64.rpm abxtest-0.15.2b-2.1.x86_64.rpm madplay-0.15.2b-2.1.x86_64.rpm madplay-debuginfo-0.15.2b-2.1.x86_64.rpm madplay-debugsource-0.15.2b-2.1.x86_64.rpm openSUSE-2017-1139 moderate openSUSE Leap 42.3 Update This update for mpg123 to version 1.25.7 fixes the following issues: - CVE-2017-10683: Improvement over previous fix for xrpnt overflow problems (boo#1046766) The following changes are also included in version 1.25.7: - Do not play with cursor and inverse video for progress bar when TERM=dumb - Fix parsing of host port for numerical IPv6 addresses libmpg123-0-1.25.7-10.1.i586.rpm libmpg123-0-32bit-1.25.7-10.1.x86_64.rpm libmpg123-0-debuginfo-1.25.7-10.1.i586.rpm libmpg123-0-debuginfo-32bit-1.25.7-10.1.x86_64.rpm libout123-0-1.25.7-10.1.i586.rpm libout123-0-32bit-1.25.7-10.1.x86_64.rpm libout123-0-debuginfo-1.25.7-10.1.i586.rpm libout123-0-debuginfo-32bit-1.25.7-10.1.x86_64.rpm mpg123-1.25.7-10.1.i586.rpm mpg123-1.25.7-10.1.src.rpm mpg123-debuginfo-1.25.7-10.1.i586.rpm mpg123-debugsource-1.25.7-10.1.i586.rpm mpg123-devel-1.25.7-10.1.i586.rpm mpg123-devel-32bit-1.25.7-10.1.x86_64.rpm mpg123-esound-1.25.7-10.1.i586.rpm mpg123-esound-32bit-1.25.7-10.1.x86_64.rpm mpg123-esound-debuginfo-1.25.7-10.1.i586.rpm mpg123-esound-debuginfo-32bit-1.25.7-10.1.x86_64.rpm mpg123-jack-1.25.7-10.1.i586.rpm mpg123-jack-32bit-1.25.7-10.1.x86_64.rpm mpg123-jack-debuginfo-1.25.7-10.1.i586.rpm mpg123-jack-debuginfo-32bit-1.25.7-10.1.x86_64.rpm mpg123-openal-1.25.7-10.1.i586.rpm mpg123-openal-32bit-1.25.7-10.1.x86_64.rpm mpg123-openal-debuginfo-1.25.7-10.1.i586.rpm mpg123-openal-debuginfo-32bit-1.25.7-10.1.x86_64.rpm mpg123-portaudio-1.25.7-10.1.i586.rpm mpg123-portaudio-32bit-1.25.7-10.1.x86_64.rpm mpg123-portaudio-debuginfo-1.25.7-10.1.i586.rpm mpg123-portaudio-debuginfo-32bit-1.25.7-10.1.x86_64.rpm mpg123-pulse-1.25.7-10.1.i586.rpm mpg123-pulse-32bit-1.25.7-10.1.x86_64.rpm mpg123-pulse-debuginfo-1.25.7-10.1.i586.rpm mpg123-pulse-debuginfo-32bit-1.25.7-10.1.x86_64.rpm mpg123-sdl-1.25.7-10.1.i586.rpm mpg123-sdl-32bit-1.25.7-10.1.x86_64.rpm mpg123-sdl-debuginfo-1.25.7-10.1.i586.rpm mpg123-sdl-debuginfo-32bit-1.25.7-10.1.x86_64.rpm libmpg123-0-1.25.7-10.1.x86_64.rpm libmpg123-0-debuginfo-1.25.7-10.1.x86_64.rpm libout123-0-1.25.7-10.1.x86_64.rpm libout123-0-debuginfo-1.25.7-10.1.x86_64.rpm mpg123-1.25.7-10.1.x86_64.rpm mpg123-debuginfo-1.25.7-10.1.x86_64.rpm mpg123-debugsource-1.25.7-10.1.x86_64.rpm mpg123-devel-1.25.7-10.1.x86_64.rpm mpg123-esound-1.25.7-10.1.x86_64.rpm mpg123-esound-debuginfo-1.25.7-10.1.x86_64.rpm mpg123-jack-1.25.7-10.1.x86_64.rpm mpg123-jack-debuginfo-1.25.7-10.1.x86_64.rpm mpg123-openal-1.25.7-10.1.x86_64.rpm mpg123-openal-debuginfo-1.25.7-10.1.x86_64.rpm mpg123-portaudio-1.25.7-10.1.x86_64.rpm mpg123-portaudio-debuginfo-1.25.7-10.1.x86_64.rpm mpg123-pulse-1.25.7-10.1.x86_64.rpm mpg123-pulse-debuginfo-1.25.7-10.1.x86_64.rpm mpg123-sdl-1.25.7-10.1.x86_64.rpm mpg123-sdl-debuginfo-1.25.7-10.1.x86_64.rpm openSUSE-2017-1138 moderate openSUSE Leap 42.3 Update This update for a52dec fixes the following issues: - The shared library was not built (bsc#1061641) a52dec-0.7.5+svn613-3.1.i586.rpm a52dec-0.7.5+svn613-3.1.src.rpm a52dec-debuginfo-0.7.5+svn613-3.1.i586.rpm a52dec-debugsource-0.7.5+svn613-3.1.i586.rpm liba52-0-0.7.5+svn613-3.1.i586.rpm liba52-0-32bit-0.7.5+svn613-3.1.x86_64.rpm liba52-0-debuginfo-0.7.5+svn613-3.1.i586.rpm liba52-0-debuginfo-32bit-0.7.5+svn613-3.1.x86_64.rpm liba52-devel-0.7.5+svn613-3.1.i586.rpm a52dec-0.7.5+svn613-3.1.x86_64.rpm a52dec-debuginfo-0.7.5+svn613-3.1.x86_64.rpm a52dec-debugsource-0.7.5+svn613-3.1.x86_64.rpm liba52-0-0.7.5+svn613-3.1.x86_64.rpm liba52-0-debuginfo-0.7.5+svn613-3.1.x86_64.rpm liba52-devel-0.7.5+svn613-3.1.x86_64.rpm openSUSE-2017-1143 low openSUSE Leap 42.3 Update This update for kexec-tools fixes the kexec-bootloader with separate /boot partition. This update was imported from the SUSE:SLE-12-SP2:Update and SUSE:SLE-12-SP3:Update update projects. kexec-tools-2.0.12-6.1.i586.rpm kexec-tools-2.0.12-6.1.src.rpm kexec-tools-debuginfo-2.0.12-6.1.i586.rpm kexec-tools-debugsource-2.0.12-6.1.i586.rpm kexec-tools-2.0.12-6.1.x86_64.rpm kexec-tools-debuginfo-2.0.12-6.1.x86_64.rpm kexec-tools-debugsource-2.0.12-6.1.x86_64.rpm openSUSE-2017-1153 moderate openSUSE Leap 42.3 Update This update for primus fixes the following issues: - primusrun was unable to start openGL apps on systems using bumblebee for nvidia optimus technology (boo#1051277) - primusrun was using the intel card even with installed nvidia drivers (bsc#1061561) - graphics issues due to incorrect path to gl libraries (boo#995570) primus-20150328.d1afbf6-11.1.i586.rpm primus-20150328.d1afbf6-11.1.src.rpm primus-32bit-20150328.d1afbf6-11.1.x86_64.rpm primus-debuginfo-20150328.d1afbf6-11.1.i586.rpm primus-debuginfo-32bit-20150328.d1afbf6-11.1.x86_64.rpm primus-debugsource-20150328.d1afbf6-11.1.i586.rpm primus-20150328.d1afbf6-11.1.x86_64.rpm primus-debuginfo-20150328.d1afbf6-11.1.x86_64.rpm primus-debugsource-20150328.d1afbf6-11.1.x86_64.rpm openSUSE-2017-1160 important openSUSE Leap 42.3 Update The openSUSE Leap 42.3 kernel was updated to 4.4.90 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-1000252: The KVM subsystem in the Linux kernel allowed guest OS users to cause a denial of service (assertion failure, and hypervisor hang or crash) via an out-of bounds guest_irq value, related to arch/x86/kvm/vmx.c and virt/kvm/eventfd.c (bnc#1058038). - CVE-2017-14489: The iscsi_if_rx function in drivers/scsi/scsi_transport_iscsi.c in the Linux kernel allowed local users to cause a denial of service (panic) by leveraging incorrect length validation (bnc#1059051). - CVE-2017-12153: A security flaw was discovered in the nl80211_set_rekey_data() function in net/wireless/nl80211.c in the Linux kernel This function did not check whether the required attributes are present in a Netlink request. This request can be issued by a user with the CAP_NET_ADMIN capability and may result in a NULL pointer dereference and system crash (bnc#1058410). - CVE-2017-12154: The prepare_vmcs02 function in arch/x86/kvm/vmx.c in the Linux kernel did not ensure that the "CR8-load exiting" and "CR8-store exiting" L0 vmcs02 controls exist in cases where L1 omits the "use TPR shadow" vmcs12 control, which allowed KVM L2 guest OS users to obtain read and write access to the hardware CR8 register (bnc#1058507). The following non-security bugs were fixed: - arc: Re-enable MMU upon Machine Check exception (bnc#1012382). - arm64: fault: Route pte translation faults via do_translation_fault (bnc#1012382). - arm64: Make sure SPsel is always set (bnc#1012382). - arm: pxa: add the number of DMA requestor lines (bnc#1012382). - arm: pxa: fix the number of DMA requestor lines (bnc#1012382). - bcache: correct cache_dirty_target in __update_writeback_rate() (bnc#1012382). - bcache: Correct return value for sysfs attach errors (bnc#1012382). - bcache: do not subtract sectors_to_gc for bypassed IO (bnc#1012382). - bcache: fix bch_hprint crash and improve output (bnc#1012382). - bcache: fix for gc and write-back race (bnc#1012382). - bcache: Fix leak of bdev reference (bnc#1012382). - bcache: initialize dirty stripes in flash_dev_run() (bnc#1012382). - block: Relax a check in blk_start_queue() (bnc#1012382). - bsg-lib: do not free job in bsg_prepare_job (bnc#1012382). - btrfs: change how we decide to commit transactions during flushing (bsc#1060197). - btrfs: fix NULL pointer dereference from free_reloc_roots() (bnc#1012382). - btrfs: prevent to set invalid default subvolid (bnc#1012382). - btrfs: propagate error to btrfs_cmp_data_prepare caller (bnc#1012382). - btrfs: qgroup: move noisy underflow warning to debugging build (bsc#1055755). - cifs: Fix SMB3.1.1 guest authentication to Samba (bnc#1012382). - cifs: release auth_key.response for reconnect (bnc#1012382). - crypto: AF_ALG - remove SGL terminator indicator when chaining (bnc#1012382). - crypto: talitos - Do not provide setkey for non hmac hashing algs (bnc#1012382). - crypto: talitos - fix sha224 (bnc#1012382). - cxl: Fix driver use count (bnc#1012382). - dmaengine: mmp-pdma: add number of requestors (bnc#1012382). - drivers: net: phy: xgene: Fix mdio write (bsc#1057383). - drm: Add driver-private objects to atomic state (bsc#1055493). - drm/dp: Introduce MST topology state to track available link bandwidth (bsc#1055493). - efi/fb: Avoid reconfiguration of BAR that covers the framebuffer (bsc#1051987). - efi/fb: Correct PCI_STD_RESOURCE_END usage (bsc#1051987). - ext4: fix incorrect quotaoff if the quota feature is enabled (bnc#1012382). - ext4: fix quota inconsistency during orphan cleanup for read-only mounts (bnc#1012382). - f2fs: check hot_data for roll-forward recovery (bnc#1012382). - fix xen_swiotlb_dma_mmap prototype (bnc#1012382). - ftrace: Fix memleak when unregistering dynamic ops when tracing disabled (bnc#1012382). - ftrace: Fix selftest goto location on error (bnc#1012382). - genirq: Fix for_each_action_of_desc() macro (bsc#1061064). - getcwd: Close race with d_move called by lustre (bsc#1052593). - gfs2: Fix debugfs glocks dump (bnc#1012382). - gianfar: Fix Tx flow control deactivation (bnc#1012382). - hid: usbhid: Add HID_QUIRK_NOGET for Aten CS-1758 KVM switch (bnc#1022967). - input: i8042 - add Gigabyte P57 to the keyboard reset table (bnc#1012382). - iommu/vt-d: Avoid calling virt_to_phys() on null pointer (bsc#1061067). - ipv6: accept 64k - 1 packet length in ip6_find_1stfragopt() (bnc#1012382). - ipv6: add rcu grace period before freeing fib6_node (bnc#1012382). - ipv6: fix memory leak with multiple tables during netns destruction (bnc#1012382). - ipv6: fix sparse warning on rt6i_node (bnc#1012382). - ipv6: fix typo in fib6_net_exit() (bnc#1012382). - iw_cxgb4: put ep reference in pass_accept_req() (fate#321658 bsc#1005778 fate#321660 bsc#1005780 fate#321661 bsc#1005781). - KABI fix drivers/nvme/target/nvmet.h (bsc#1058550). - kabi/severities: ignore nfs_pgio_data_destroy - kABI: Workaround kABI breakage of AMD-AVIC fixes (bsc#1044503). - keys: fix writing past end of user-supplied buffer in keyring_read() (bnc#1012382). - keys: prevent creating a different user's keyrings (bnc#1012382). - keys: prevent KEYCTL_READ on negative key (bnc#1012382). - kvm: Add struct kvm_vcpu pointer parameter to get_enable_apicv() (bsc#1044503). - kvm: async_pf: Fix #DF due to inject "Page not Present" and "Page Ready" exceptions simultaneously (bsc#1061017). - kvm: PPC: Book3S: Fix race and leak in kvm_vm_ioctl_create_spapr_tce() (bnc#1012382). - kvm: SVM: Add a missing 'break' statement (bsc#1061017). - kvm: SVM: Add irqchip_split() checks before enabling AVIC (bsc#1044503). - kvm: SVM: delete avic_vm_id_bitmap (2 megabyte static array) (bsc#1059500). - kvm: SVM: Refactor AVIC vcpu initialization into avic_init_vcpu() (bsc#1044503). - kvm: VMX: do not change SN bit in vmx_update_pi_irte() (bsc#1061017). - kvm: VMX: remove WARN_ON_ONCE in kvm_vcpu_trigger_posted_interrupt (bsc#1061017). - kvm: VMX: use cmpxchg64 (bnc#1012382). - mac80211: flush hw_roc_start work before cancelling the ROC (bnc#1012382). - md/bitmap: disable bitmap_resize for file-backed bitmaps (bsc#1061172). - md/raid5: preserve STRIPE_ON_UNPLUG_LIST in break_stripe_batch_list (bnc#1012382). - md/raid5: release/flush io in raid5_do_work() (bnc#1012382). - media: uvcvideo: Prevent heap overflow when accessing mapped controls (bnc#1012382). - media: v4l2-compat-ioctl32: Fix timespec conversion (bnc#1012382). - mips: math-emu: <MAXA|MINA>.<D|S>: Fix cases of both infinite inputs (bnc#1012382). - mips: math-emu: <MAXA|MINA>.<D|S>: Fix cases of input values with opposite signs (bnc#1012382). - mips: math-emu: <MAX|MAXA|MIN|MINA>.<D|S>: Fix cases of both inputs zero (bnc#1012382). - mips: math-emu: <MAX|MAXA|MIN|MINA>.<D|S>: Fix quiet NaN propagation (bnc#1012382). - mips: math-emu: <MAX|MIN>.<D|S>: Fix cases of both inputs negative (bnc#1012382). - mips: math-emu: MINA.<D|S>: Fix some cases of infinity and zero inputs (bnc#1012382). - mm: prevent double decrease of nr_reserved_highatomic (bnc#1012382). - nfsd: Fix general protection fault in release_lock_stateid() (bnc#1012382). - nvme-fabrics: generate spec-compliant UUID NQNs (bsc#1057498). - nvmet: Move serial number from controller to subsystem (bsc#1058550). - nvmet: preserve controller serial number between reboots (bsc#1058550). - pci: Allow PCI express root ports to find themselves (bsc#1061046). - pci: fix oops when try to find Root Port for a PCI device (bsc#1061046). - pci: Fix race condition with driver_override (bnc#1012382). - pci: Mark AMD Stoney GPU ATS as broken (bsc#1061046). - pci: shpchp: Enable bridge bus mastering if MSI is enabled (bnc#1012382). - perf/x86: Fix RDPMC vs. mm_struct tracking (bsc#1061831). - perf/x86: kABI Workaround for 'perf/x86: Fix RDPMC vs. mm_struct tracking' (bsc#1061831). - perf: xgene: Add APM X-Gene SoC Performance Monitoring Unit driver (bsc#1036737). - perf: xgene: Include module.h (bsc#1036737). - perf: xgene: Move PMU leaf functions into function pointer structure (bsc#1036737). - perf: xgene: Parse PMU subnode from the match table (bsc#1036737). - powerpc: Fix DAR reporting when alignment handler faults (bnc#1012382). - powerpc/perf: Cleanup of PM_BR_CMPL vs. PM_BRU_CMPL in Power9 event list (bsc#1056686, fate#321438, bsc#1047238, git-fixes 34922527a2bc). - powerpc/perf: Factor out PPMU_ONLY_COUNT_RUN check code from power8 (fate#321438, bsc#1053043, git-fixes efe881afdd999). - powerpc/pseries: Fix parent_dn reference leak in add_dt_node() (bnc#1012382). - qlge: avoid memcpy buffer overflow (bnc#1012382). - rdma/bnxt_re: Allocate multiple notification queues (bsc#1037579). - rdma/bnxt_re: Implement the alloc/get_hw_stats callback (bsc#1037579). - Revert "net: fix percpu memory leaks" (bnc#1012382). - Revert "net: phy: Correctly process PHY_HALTED in phy_stop_machine()" (bnc#1012382). - Revert "net: use lib/percpu_counter API for fragmentation mem accounting" (bnc#1012382). - Revert "Update patches.fixes/xfs-refactor-log-record-unpack-and-data-processing.patch (bsc#1043598, bsc#1036215)." - Revert "xfs: detect and handle invalid iclog size set by mkfs (bsc#1043598)." - Revert "xfs: detect and trim torn writes during log recovery (bsc#1036215)." - Revert "xfs: refactor and open code log record crc check (bsc#1036215)." - Revert "xfs: refactor log record start detection into a new helper (bsc#1036215)." - Revert "xfs: return start block of first bad log record during recovery (bsc#1036215)." - Revert "xfs: support a crc verification only log record pass (bsc#1036215)." - scsi: ILLEGAL REQUEST + ASC==27 =&gt; target failure (bsc#1059465). - scsi: megaraid_sas: Check valid aen class range to avoid kernel panic (bnc#1012382). - scsi: megaraid_sas: Return pended IOCTLs with cmd_status MFI_STAT_WRONG_STATE in case adapter is dead (bnc#1012382). - scsi: sg: factor out sg_fill_request_table() (bnc#1012382). - scsi: sg: fixup infoleak when using SG_GET_REQUEST_TABLE (bnc#1012382). - scsi: sg: off by one in sg_ioctl() (bnc#1012382). - scsi: sg: remove 'save_scat_len' (bnc#1012382). - scsi: sg: use standard lists for sg_requests (bnc#1012382). - scsi: storvsc: fix memory leak on ring buffer busy (bnc#1012382). - scsi_transport_fc: Also check for NOTPRESENT in fc_remote_port_add() (bsc#1037890). - scsi: zfcp: add handling for FCP_RESID_OVER to the fcp ingress path (bnc#1012382). - scsi: zfcp: fix capping of unsuccessful GPN_FT SAN response trace records (bnc#1012382). - scsi: zfcp: fix missing trace records for early returns in TMF eh handlers (bnc#1012382). - scsi: zfcp: fix passing fsf_req to SCSI trace on TMF to correlate with HBA (bnc#1012382). - scsi: zfcp: fix payload with full FCP_RSP IU in SCSI trace records (bnc#1012382). - scsi: zfcp: fix queuecommand for scsi_eh commands when DIX enabled (bnc#1012382). - scsi: zfcp: trace HBA FSF response by default on dismiss or timedout late response (bnc#1012382). - scsi: zfcp: trace high part of "new" 64 bit SCSI LUN (bnc#1012382). - seccomp: fix the usage of get/put_seccomp_filter() in seccomp_get_filter() (bnc#1012382). - skd: Avoid that module unloading triggers a use-after-free (bnc#1012382). - skd: Submit requests to firmware before triggering the doorbell (bnc#1012382). - smb3: Do not ignore O_SYNC/O_DSYNC and O_DIRECT flags (bnc#1012382). - smb: Validate negotiate (to protect against downgrade) even if signing off (bnc#1012382). - swiotlb-xen: implement xen_swiotlb_dma_mmap callback (bnc#1012382). - timer/sysclt: Restrict timer migration sysctl values to 0 and 1 (bnc#1012382). - tracing: Apply trace_clock changes to instance max buffer (bnc#1012382). - tracing: Erase irqsoff trace with empty write (bnc#1012382). - tracing: Fix trace_pipe behavior for instance traces (bnc#1012382). - tty: fix __tty_insert_flip_char regression (bnc#1012382). - tty: improve tty_insert_flip_char() fast path (bnc#1012382). - tty: improve tty_insert_flip_char() slow path (bnc#1012382). - Update patches.drivers/0029-perf-xgene-Remove-bogus-IS_ERR-check.patch (bsc#1036737). - vfs: Return -ENXIO for negative SEEK_HOLE / SEEK_DATA offsets (bnc#1012382). - video: fbdev: aty: do not leak uninitialized padding in clk to userspace (bnc#1012382). - Workaround for kABI compatibility with DP-MST patches (bsc#1055493). - x86/cpu/amd: Hide unused legacy_fixup_core_id() function (bsc#1060229). - x86/cpu/amd: Limit cpu_core_id fixup to families older than F17h (bsc#1060229). - x86/fpu: Do not let userspace set bogus xcomp_bv (bnc#1012382). - x86/fsgsbase/64: Report FSBASE and GSBASE correctly in core dumps (bnc#1012382). - x86/ldt: Fix off by one in get_segment_base() (bsc#1061872). - x86/mm: Fix boot crash caused by incorrect loop count calculation in sync_global_pgds() (bsc#1058512). - x86/mm: Fix fault error path using unsafe vma pointer (fate#321300). kernel-devel-4.4.90-28.1.noarch.rpm True kernel-macros-4.4.90-28.1.noarch.rpm True kernel-source-4.4.90-28.1.noarch.rpm True kernel-source-4.4.90-28.1.src.rpm True kernel-source-vanilla-4.4.90-28.1.noarch.rpm True kernel-debug-4.4.90-28.1.nosrc.rpm True kernel-debug-4.4.90-28.1.x86_64.rpm True kernel-debug-base-4.4.90-28.1.x86_64.rpm True kernel-debug-base-debuginfo-4.4.90-28.1.x86_64.rpm True kernel-debug-debuginfo-4.4.90-28.1.x86_64.rpm True kernel-debug-debugsource-4.4.90-28.1.x86_64.rpm True kernel-debug-devel-4.4.90-28.1.x86_64.rpm True kernel-debug-devel-debuginfo-4.4.90-28.1.x86_64.rpm True kernel-default-4.4.90-28.1.nosrc.rpm True kernel-default-4.4.90-28.1.x86_64.rpm True kernel-default-base-4.4.90-28.1.x86_64.rpm True kernel-default-base-debuginfo-4.4.90-28.1.x86_64.rpm True kernel-default-debuginfo-4.4.90-28.1.x86_64.rpm True kernel-default-debugsource-4.4.90-28.1.x86_64.rpm True kernel-default-devel-4.4.90-28.1.x86_64.rpm True kernel-docs-4.4.90-28.2.noarch.rpm True kernel-docs-4.4.90-28.2.src.rpm True kernel-docs-html-4.4.90-28.2.noarch.rpm True kernel-docs-pdf-4.4.90-28.2.noarch.rpm True kernel-obs-build-4.4.90-28.1.src.rpm True kernel-obs-build-4.4.90-28.1.x86_64.rpm True kernel-obs-build-debugsource-4.4.90-28.1.x86_64.rpm True kernel-obs-qa-4.4.90-28.1.src.rpm True kernel-obs-qa-4.4.90-28.1.x86_64.rpm True kernel-syms-4.4.90-28.1.src.rpm True kernel-syms-4.4.90-28.1.x86_64.rpm True kernel-vanilla-4.4.90-28.1.nosrc.rpm True kernel-vanilla-4.4.90-28.1.x86_64.rpm True kernel-vanilla-base-4.4.90-28.1.x86_64.rpm True kernel-vanilla-base-debuginfo-4.4.90-28.1.x86_64.rpm True kernel-vanilla-debuginfo-4.4.90-28.1.x86_64.rpm True kernel-vanilla-debugsource-4.4.90-28.1.x86_64.rpm True kernel-vanilla-devel-4.4.90-28.1.x86_64.rpm True openSUSE-2017-1145 moderate openSUSE Leap 42.3 Update This update for krb5 fixes several issues. This security issue was fixed: - CVE-2017-11462: Prevent automatic security context deletion to prevent double-free (bsc#1056995) These non-security issues were fixed: - Set "rdns" and "dns_canonicalize_hostname" to false in krb5.conf in order to improve client security in handling service principle names. (bsc#1054028) - Prevent kadmind.service startup failure caused by absence of LDAP service. (bsc#903543) - Remove main package's dependency on systemd (bsc#1032680) This update was imported from the SUSE:SLE-12-SP2:Update update project. krb5-mini-1.12.5-9.1.i586.rpm krb5-mini-1.12.5-9.1.src.rpm krb5-mini-debuginfo-1.12.5-9.1.i586.rpm krb5-mini-debugsource-1.12.5-9.1.i586.rpm krb5-mini-devel-1.12.5-9.1.i586.rpm krb5-1.12.5-9.1.i586.rpm krb5-1.12.5-9.1.src.rpm krb5-32bit-1.12.5-9.1.x86_64.rpm krb5-client-1.12.5-9.1.i586.rpm krb5-client-debuginfo-1.12.5-9.1.i586.rpm krb5-debuginfo-1.12.5-9.1.i586.rpm krb5-debuginfo-32bit-1.12.5-9.1.x86_64.rpm krb5-debugsource-1.12.5-9.1.i586.rpm krb5-devel-1.12.5-9.1.i586.rpm krb5-devel-32bit-1.12.5-9.1.x86_64.rpm krb5-doc-1.12.5-9.1.i586.rpm krb5-plugin-kdb-ldap-1.12.5-9.1.i586.rpm krb5-plugin-kdb-ldap-debuginfo-1.12.5-9.1.i586.rpm krb5-plugin-preauth-otp-1.12.5-9.1.i586.rpm krb5-plugin-preauth-otp-debuginfo-1.12.5-9.1.i586.rpm krb5-plugin-preauth-pkinit-1.12.5-9.1.i586.rpm krb5-plugin-preauth-pkinit-debuginfo-1.12.5-9.1.i586.rpm krb5-server-1.12.5-9.1.i586.rpm krb5-server-debuginfo-1.12.5-9.1.i586.rpm krb5-mini-1.12.5-9.1.x86_64.rpm krb5-mini-debuginfo-1.12.5-9.1.x86_64.rpm krb5-mini-debugsource-1.12.5-9.1.x86_64.rpm krb5-mini-devel-1.12.5-9.1.x86_64.rpm krb5-1.12.5-9.1.x86_64.rpm krb5-client-1.12.5-9.1.x86_64.rpm krb5-client-debuginfo-1.12.5-9.1.x86_64.rpm krb5-debuginfo-1.12.5-9.1.x86_64.rpm krb5-debugsource-1.12.5-9.1.x86_64.rpm krb5-devel-1.12.5-9.1.x86_64.rpm krb5-doc-1.12.5-9.1.x86_64.rpm krb5-plugin-kdb-ldap-1.12.5-9.1.x86_64.rpm krb5-plugin-kdb-ldap-debuginfo-1.12.5-9.1.x86_64.rpm krb5-plugin-preauth-otp-1.12.5-9.1.x86_64.rpm krb5-plugin-preauth-otp-debuginfo-1.12.5-9.1.x86_64.rpm krb5-plugin-preauth-pkinit-1.12.5-9.1.x86_64.rpm krb5-plugin-preauth-pkinit-debuginfo-1.12.5-9.1.x86_64.rpm krb5-server-1.12.5-9.1.x86_64.rpm krb5-server-debuginfo-1.12.5-9.1.x86_64.rpm openSUSE-2017-1144 important openSUSE Leap 42.3 Update Mozilla Thunderbird was updated to 52.4.0 (boo#1060445) * new behavior was introduced for replies to mailing list posts: "When replying to a mailing list, reply will be sent to address in From header ignoring Reply-to header". A new preference mail.override_list_reply_to allows to restore the previous behavior. * Under certain circumstances (image attachment and non-image attachment), attached images were shown truncated in messages stored in IMAP folders not synchronised for offline use. * IMAP UIDs > 0x7FFFFFFF now handled properly Security fixes from Gecko 52.4esr * CVE-2017-7793 (bmo#1371889) Use-after-free with Fetch API * CVE-2017-7818 (bmo#1363723) Use-after-free during ARIA array manipulation * CVE-2017-7819 (bmo#1380292) Use-after-free while resizing images in design mode * CVE-2017-7824 (bmo#1398381) Buffer overflow when drawing and validating elements with ANGLE * CVE-2017-7805 (bmo#1377618) (fixed via NSS requirement) Use-after-free in TLS 1.2 generating handshake hashes * CVE-2017-7814 (bmo#1376036) Blob and data URLs bypass phishing and malware protection warnings * CVE-2017-7825 (bmo#1393624, bmo#1390980) (OSX-only) OS X fonts render some Tibetan and Arabic unicode characters as spaces * CVE-2017-7823 (bmo#1396320) CSP sandbox directive did not create a unique origin * CVE-2017-7810 Memory safety bugs fixed in Firefox 56 and Firefox ESR 52.4 - Add alsa-devel BuildRequires: we care for ALSA support to be built and thus need to ensure we get the dependencies in place. In the past, alsa-devel was pulled in by accident: we buildrequire libgnome-devel. This required esound-devel and that in turn pulled in alsa-devel for us. libgnome is being fixed to no longer require esound-devel. MozillaThunderbird-52.4.0-47.1.i586.rpm MozillaThunderbird-52.4.0-47.1.src.rpm MozillaThunderbird-buildsymbols-52.4.0-47.1.i586.rpm MozillaThunderbird-debuginfo-52.4.0-47.1.i586.rpm MozillaThunderbird-debugsource-52.4.0-47.1.i586.rpm MozillaThunderbird-devel-52.4.0-47.1.i586.rpm MozillaThunderbird-translations-common-52.4.0-47.1.i586.rpm MozillaThunderbird-translations-other-52.4.0-47.1.i586.rpm MozillaThunderbird-52.4.0-47.1.x86_64.rpm MozillaThunderbird-buildsymbols-52.4.0-47.1.x86_64.rpm MozillaThunderbird-debuginfo-52.4.0-47.1.x86_64.rpm MozillaThunderbird-debugsource-52.4.0-47.1.x86_64.rpm MozillaThunderbird-devel-52.4.0-47.1.x86_64.rpm MozillaThunderbird-translations-common-52.4.0-47.1.x86_64.rpm MozillaThunderbird-translations-other-52.4.0-47.1.x86_64.rpm openSUSE-2017-1154 moderate openSUSE Leap 42.3 Update This update for xorg-x11-server fixes the following issues: When using DRI3, launching applications remotely would fail due to ssh not being recognized as a remote client (bsc#1022727) xorg-x11-server-7.6_1.18.3-25.1.i586.rpm xorg-x11-server-7.6_1.18.3-25.1.src.rpm xorg-x11-server-debuginfo-7.6_1.18.3-25.1.i586.rpm xorg-x11-server-debugsource-7.6_1.18.3-25.1.i586.rpm xorg-x11-server-extra-7.6_1.18.3-25.1.i586.rpm xorg-x11-server-extra-debuginfo-7.6_1.18.3-25.1.i586.rpm xorg-x11-server-sdk-7.6_1.18.3-25.1.i586.rpm xorg-x11-server-source-7.6_1.18.3-25.1.i586.rpm xorg-x11-server-7.6_1.18.3-25.1.x86_64.rpm xorg-x11-server-debuginfo-7.6_1.18.3-25.1.x86_64.rpm xorg-x11-server-debugsource-7.6_1.18.3-25.1.x86_64.rpm xorg-x11-server-extra-7.6_1.18.3-25.1.x86_64.rpm xorg-x11-server-extra-debuginfo-7.6_1.18.3-25.1.x86_64.rpm xorg-x11-server-sdk-7.6_1.18.3-25.1.x86_64.rpm xorg-x11-server-source-7.6_1.18.3-25.1.x86_64.rpm openSUSE-2017-1187 moderate openSUSE Leap 42.3 Update This update for gnuhealth fixes the following issues: - Fix issue that would cause files not to be found in backup (bsc#1026334) gnuhealth-3.2.5-32.1.noarch.rpm gnuhealth-3.2.5-32.1.src.rpm openSUSE-2017-1148 low openSUSE Leap 42.3 Update This update for google-cloud-sdk fixes the following issues: - Install VERSION and CHECKSUM files into the right place to fix gsutil. (bsc#1054930) - Remove the "gsutil test" command. The test command depends on third_party test implementation and is invoked during "regular" operation such as cp and ls. This update was imported from the SUSE:SLE-12:Update update project. google-cloud-sdk-140.0.0-13.1.noarch.rpm google-cloud-sdk-140.0.0-13.1.src.rpm openSUSE-2017-1156 moderate openSUSE Leap 42.3 Update This update for mbedtls fixes the following issues: - CVE-2017-14032: Possible authentication bypass of peer based authentication when auth mode is configured as 'optional' (boo#1056544). libmbedtls9-1.3.19-18.1.i586.rpm libmbedtls9-32bit-1.3.19-18.1.x86_64.rpm libmbedtls9-debuginfo-1.3.19-18.1.i586.rpm libmbedtls9-debuginfo-32bit-1.3.19-18.1.x86_64.rpm mbedtls-1.3.19-18.1.src.rpm mbedtls-debugsource-1.3.19-18.1.i586.rpm mbedtls-devel-1.3.19-18.1.i586.rpm libmbedtls9-1.3.19-18.1.x86_64.rpm libmbedtls9-debuginfo-1.3.19-18.1.x86_64.rpm mbedtls-debugsource-1.3.19-18.1.x86_64.rpm mbedtls-devel-1.3.19-18.1.x86_64.rpm openSUSE-2017-1151 low openSUSE Leap 42.3 Update This update provides aws-cli 1.11.104, which brings many fixes and enhancements. aws-cli (update to version 1.11.104): - https://github.com/aws/aws-cli/blob/1.11.104/CHANGELOG.rst python-botocore (update to version 1.5.67): - https://github.com/boto/botocore/blob/1.5.67/CHANGELOG.rst python-jmespath (update to 0.9.2): - Raise LexerError on invalid numbers - Add support for custom functions - Fix ZeroDivisionError for built-in function avg() on empty lists - Properly handle non numerical ordering operators - Add support for new lines with tokens in an expression - Add support for JEP 9 which introduces "and", "unary", "not" and "paren" expressions - Improve lexing performance - Fix parsing error for multiselect lists - Fix issue with escaping single quotes in literal strings - Add support for providing your own dict cls to support ordered dictionaries - Add map() function python-s3transfer (update to version 0.1.10): - Expose ability to use own executor class for TransferManager This update was imported from the SUSE:SLE-12:Update update project. aws-cli-1.11.104-20.1.noarch.rpm aws-cli-1.11.104-20.1.src.rpm python-s3transfer-0.1.10-9.1.noarch.rpm python-s3transfer-0.1.10-9.1.src.rpm python-boto3-1.4.4-12.1.noarch.rpm python-boto3-1.4.4-12.1.src.rpm python-botocore-1.5.67-12.1.noarch.rpm python-botocore-1.5.67-12.1.src.rpm python-jmespath-0.9.2-7.1.noarch.rpm python-jmespath-0.9.2-7.1.src.rpm openSUSE-2017-1147 moderate openSUSE Leap 42.3 Update This update for samba fixes several issues. These security issues were fixed: - CVE-2017-12163: Prevent client short SMB1 write from writing server memory to file, leaking information from the server to the client (bsc#1058624) - CVE-2017-12150: Always enforce smb signing when it is configured (bsc#1058622) - CVE-2017-12151: Keep required encryption across SMB3 dfs redirects (bsc#1058565) The following non-security issue was fixed: - Fix GUID string format on GetPrinter info request. (bsc#1050707) This update was imported from the SUSE:SLE-12-SP3:Update update project. ctdb-4.6.7+git.51.327af8d0a11-6.1.i586.rpm ctdb-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm ctdb-tests-4.6.7+git.51.327af8d0a11-6.1.i586.rpm ctdb-tests-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libdcerpc-binding0-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libdcerpc-binding0-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libdcerpc-binding0-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libdcerpc-binding0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libdcerpc-devel-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libdcerpc-samr-devel-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libdcerpc-samr0-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libdcerpc-samr0-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libdcerpc-samr0-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libdcerpc-samr0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libdcerpc0-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libdcerpc0-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libdcerpc0-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libdcerpc0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libndr-devel-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libndr-krb5pac-devel-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libndr-krb5pac0-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libndr-krb5pac0-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libndr-krb5pac0-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libndr-krb5pac0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libndr-nbt-devel-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libndr-nbt0-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libndr-nbt0-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libndr-nbt0-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libndr-nbt0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libndr-standard-devel-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libndr-standard0-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libndr-standard0-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libndr-standard0-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libndr-standard0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libndr0-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libndr0-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libndr0-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libndr0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libnetapi-devel-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libnetapi0-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libnetapi0-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libnetapi0-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libnetapi0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamba-credentials-devel-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamba-credentials0-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-credentials0-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamba-credentials0-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-credentials0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamba-errors-devel-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamba-errors0-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-errors0-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamba-errors0-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-errors0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamba-hostconfig-devel-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamba-hostconfig0-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-hostconfig0-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamba-hostconfig0-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-hostconfig0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamba-passdb-devel-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamba-passdb0-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-passdb0-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamba-passdb0-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-passdb0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamba-policy-devel-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamba-policy0-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-policy0-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamba-policy0-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-policy0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamba-util-devel-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamba-util0-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-util0-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamba-util0-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-util0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamdb-devel-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamdb0-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamdb0-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsamdb0-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamdb0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsmbclient-devel-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsmbclient0-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsmbclient0-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsmbclient0-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsmbclient0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsmbconf-devel-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsmbconf0-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsmbconf0-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsmbconf0-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsmbconf0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsmbldap-devel-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsmbldap0-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsmbldap0-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libsmbldap0-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsmbldap0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libtevent-util-devel-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libtevent-util0-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libtevent-util0-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libtevent-util0-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libtevent-util0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libwbclient-devel-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libwbclient0-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libwbclient0-4.6.7+git.51.327af8d0a11-6.1.i586.rpm libwbclient0-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libwbclient0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm samba-4.6.7+git.51.327af8d0a11-6.1.i586.rpm samba-4.6.7+git.51.327af8d0a11-6.1.src.rpm samba-client-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-client-4.6.7+git.51.327af8d0a11-6.1.i586.rpm samba-client-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-client-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm samba-core-devel-4.6.7+git.51.327af8d0a11-6.1.i586.rpm samba-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm samba-debugsource-4.6.7+git.51.327af8d0a11-6.1.i586.rpm samba-doc-4.6.7+git.51.327af8d0a11-6.1.noarch.rpm samba-libs-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-libs-4.6.7+git.51.327af8d0a11-6.1.i586.rpm samba-libs-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-libs-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm samba-pidl-4.6.7+git.51.327af8d0a11-6.1.i586.rpm samba-python-4.6.7+git.51.327af8d0a11-6.1.i586.rpm samba-python-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm samba-test-4.6.7+git.51.327af8d0a11-6.1.i586.rpm samba-test-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm samba-winbind-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-winbind-4.6.7+git.51.327af8d0a11-6.1.i586.rpm samba-winbind-debuginfo-32bit-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-winbind-debuginfo-4.6.7+git.51.327af8d0a11-6.1.i586.rpm ctdb-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm ctdb-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm ctdb-tests-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm ctdb-tests-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libdcerpc-binding0-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libdcerpc-binding0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libdcerpc-devel-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libdcerpc-samr-devel-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libdcerpc-samr0-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libdcerpc-samr0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libdcerpc0-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libdcerpc0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libndr-devel-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libndr-krb5pac-devel-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libndr-krb5pac0-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libndr-krb5pac0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libndr-nbt-devel-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libndr-nbt0-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libndr-nbt0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libndr-standard-devel-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libndr-standard0-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libndr-standard0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libndr0-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libndr0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libnetapi-devel-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libnetapi0-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libnetapi0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-credentials-devel-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-credentials0-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-credentials0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-errors-devel-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-errors0-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-errors0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-hostconfig-devel-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-hostconfig0-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-hostconfig0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-passdb-devel-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-passdb0-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-passdb0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-policy-devel-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-policy0-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-policy0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-util-devel-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-util0-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamba-util0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamdb-devel-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamdb0-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsamdb0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsmbclient-devel-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsmbclient0-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsmbclient0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsmbconf-devel-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsmbconf0-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsmbconf0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsmbldap-devel-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsmbldap0-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libsmbldap0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libtevent-util-devel-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libtevent-util0-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libtevent-util0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libwbclient-devel-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libwbclient0-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm libwbclient0-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-ceph-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-ceph-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-client-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-client-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-core-devel-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-debugsource-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-libs-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-libs-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-pidl-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-python-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-python-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-test-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-test-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-winbind-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm samba-winbind-debuginfo-4.6.7+git.51.327af8d0a11-6.1.x86_64.rpm openSUSE-2017-1158 moderate openSUSE Leap 42.3 Update This update for wireshark to version 2.2.10 fixes multiple minor security issues. These vulnerabilities that could be used to trigger dissector crashes or infinite loops by making Wireshark read specially crafted packages from the network or a capture file: * CVE-2017-15192: BT ATT dissector crash * CVE-2017-15193: MBIM dissector crash * CVE-2017-15191: DMP dissector crash wireshark-2.2.10-24.1.src.rpm wireshark-2.2.10-24.1.x86_64.rpm wireshark-debuginfo-2.2.10-24.1.x86_64.rpm wireshark-debugsource-2.2.10-24.1.x86_64.rpm wireshark-devel-2.2.10-24.1.x86_64.rpm wireshark-ui-gtk-2.2.10-24.1.x86_64.rpm wireshark-ui-gtk-debuginfo-2.2.10-24.1.x86_64.rpm wireshark-ui-qt-2.2.10-24.1.x86_64.rpm wireshark-ui-qt-debuginfo-2.2.10-24.1.x86_64.rpm openSUSE-2017-1157 low openSUSE Leap 42.3 Update This update for gnome-documents provides the following fixes: - Use libreoffice rather than unoconv to convert pre-OpenXML MS Office files. (bsc#1047718) - Fix some DBus related problems when registering and unregistering instances. (bsc#1028817) This update was imported from the SUSE:SLE-12-SP2:Update update project. gnome-books-3.20.1-5.1.x86_64.rpm gnome-documents-3.20.1-5.1.src.rpm gnome-documents-3.20.1-5.1.x86_64.rpm gnome-documents-debugsource-3.20.1-5.1.x86_64.rpm gnome-documents-lang-3.20.1-5.1.noarch.rpm gnome-documents_books-common-3.20.1-5.1.x86_64.rpm gnome-documents_books-common-debuginfo-3.20.1-5.1.x86_64.rpm gnome-shell-search-provider-documents-3.20.1-5.1.x86_64.rpm openSUSE-2017-1162 low openSUSE Leap 42.3 Update This update for libqt5-qtwebengine provides the following fixes: - Enable the use of proprietary codecs when configuring webengine so it uses the system ffmpeg binary thus allowing to reproduce html5 videos. (bsc#1043375) - Fix a compatibility issue in font rendering when using newer versions of FreeType. (bsc#1061344) This update was imported from the SUSE:SLE-12-SP3:Update update project. libqt5-qtwebengine-32bit-5.6.2-6.2.x86_64.rpm libqt5-qtwebengine-5.6.2-6.2.i586.rpm libqt5-qtwebengine-5.6.2-6.2.src.rpm libqt5-qtwebengine-debuginfo-32bit-5.6.2-6.2.x86_64.rpm libqt5-qtwebengine-debuginfo-5.6.2-6.2.i586.rpm libqt5-qtwebengine-debugsource-5.6.2-6.2.i586.rpm libqt5-qtwebengine-devel-32bit-5.6.2-6.2.x86_64.rpm libqt5-qtwebengine-devel-5.6.2-6.2.i586.rpm libqt5-qtwebengine-examples-5.6.2-6.2.i586.rpm libqt5-qtwebengine-examples-debuginfo-5.6.2-6.2.i586.rpm libqt5-qtwebengine-private-headers-devel-5.6.2-6.2.noarch.rpm libqt5-qtwebengine-5.6.2-6.2.x86_64.rpm libqt5-qtwebengine-debuginfo-5.6.2-6.2.x86_64.rpm libqt5-qtwebengine-debugsource-5.6.2-6.2.x86_64.rpm libqt5-qtwebengine-devel-5.6.2-6.2.x86_64.rpm libqt5-qtwebengine-examples-5.6.2-6.2.x86_64.rpm libqt5-qtwebengine-examples-debuginfo-5.6.2-6.2.x86_64.rpm openSUSE-2017-1173 moderate openSUSE Leap 42.3 Update This update for cacti and cacti-spine fixes the following issues: Build version 1.1.26 - issue#841: --input-fields variable not working with add_graphs.php cli - issue#986: Resolve minor appearance problem on Modern theme - issue#989: Resolve issue with data input method commands loosing spaces on import - issue#1000: add_graphs.php not recognizing input fields - issue#1003: Reversing resolution to Issue#995 due to adverse impact to polling times - issue#1008: Remove developer debug warning about thumbnail validation - issue#1009: Resolving minor issue with cmd_realtime.php and a changing hostname - issue#1010: CVE-2017-15194 - Path-Based Cross-Site Scripting (XSS) (bsc#1062554) - issue#1027: Confirm that the PHP date.timezone setting is properly set during install - issue: Fixed database session handling for PHP 7.1 - issue: Fixed some missing i18n - issue: Fixed typo's - feature: Updated Dutch translations - feature: Schema changes; Examined queries without key usage and added/changed some keys - feature: Some small improvements Build version 1.1.25 - issue#966: Email still using SMTP security even though set to none - issue#995: Redirecting exec_background() to dev null breaks some functions - issue#998: Allow removal of external data template and prevent their creation - issue: Remove spikes uses wrong variance value from WebGUI - issue: Changing filters on log page does not reset to first page - issue: Allow manual creation of external data sources once again - feature: Updated Dutch translations Build version 1.1.24 - issue#932: Zoom positioning breaks when you scroll the graph page - issue#970: Remote Data Collector Cache Synchronization missing plugin sub-directories - issue#980: Resolve issue where a new tree branches refreshs before you have a chance to name it - issue#982: Data Source Profile size information not showing properly - issue: Long sysDescriptions on automation page cause columns to be hidden - issue: Resolve visual issues in Classic theme - feature: Allow Resynchronization of Poller Resource Cache Build version 1.1.23 - issue#963: SQL Errors with snmpagent and MariaDB 10.2 - issue#964: SQL Mode optimization failing in 1.1.22 Build version 1.1.22 - issue#950: Automation - New graph rule looses name on change - issue#952: CSV Export not rendering chinese characters correctly (Second attempt) - issue#955: Validation error trying to view graph debug syntax - issue: MySQL/MariaDB database sql_mode NO_AUTO_VALUE_ON_ZERO corrupts Cacti database - issue: When creating a data source, the data source profile does not default to the system default - feature: Enhance table filters to support new Cycle plugin - feature: Updated Dutch Translations Build version 1.1.21 - issue#938: Problems upgrading to 1.1.20 with one table alter statement - issue#952: CSV Export not rendering chinese characters correctly - issue: Minor alignment issue on tables Build version 1.1.20 - issue#920: Issue with scrollbars after update to 1.1.19 related to #902 - issue#921: Tree Mode no longer expands to accomodate full tree item names - issue#922: When using LDAP domains some setings are not passed correctly to the Cacti LDAP library - issue#923: Warninga in cacti.log are displayed incorrectly - issue#926: Update Utilities page to provide more information on rebuilding poller cache - issue#927: Minor schema change to support XtraDB Cluster - issue#929: Overlapping frames on certain themes - issue#931: Aggregate graphs missing from list view - issue#933: Aggregate graphs page counter off - issue#935: Support utf8 printable in data query inserts - issue#936: TimeZone query failure undefined function - issue: Taking actions on users does not use callbacks - issue: Undefined constant in lib/snmp.php on RHEL7 - issue: Human readable socket errno's not defined - issue: Audit of ping methods tcp, udp, and icmp ping. IPv6 will still not work till php 5.5.4 cacti-spine-1.1.26-16.1.i586.rpm cacti-spine-1.1.26-16.1.src.rpm cacti-spine-debuginfo-1.1.26-16.1.i586.rpm cacti-spine-debugsource-1.1.26-16.1.i586.rpm cacti-spine-1.1.26-16.1.x86_64.rpm cacti-spine-debuginfo-1.1.26-16.1.x86_64.rpm cacti-spine-debugsource-1.1.26-16.1.x86_64.rpm cacti-1.1.26-25.1.noarch.rpm cacti-1.1.26-25.1.src.rpm cacti-doc-1.1.26-25.1.noarch.rpm openSUSE-2017-1166 low openSUSE Leap 42.3 Update This update for yast2-packager provides the following fix: - Fix configuring the EULA acceptance in AutoYaST of add-on products present in the media of the base product. (bsc#1032523) This update was imported from the SUSE:SLE-12-SP2:Update and SUSE:SLE-12-SP2:Update update projects. yast2-packager-3.2.25-3.1.i586.rpm yast2-packager-3.2.25-3.1.src.rpm yast2-packager-3.2.25-3.1.x86_64.rpm openSUSE-2017-1174 moderate openSUSE Leap 42.3 Update This update for upx fixes the following security issue: * CVE-2017-15056: specially crafted package may have caused a denial of service (boo#1062059) In addition upx was updated to 3.94, with the following improvements: * Support for aarch64). * Support for --lzma compression on 64-bit PowerPC upx-3.94-9.1.src.rpm upx-3.94-9.1.x86_64.rpm upx-debuginfo-3.94-9.1.x86_64.rpm upx-debugsource-3.94-9.1.x86_64.rpm openSUSE-2017-1177 moderate openSUSE Leap 42.3 Update This update for xorg-x11-server fixes the following vulnerabilities: * CVE-2017-12176: Unvalidated extra length in ProcEstablishConnection (bsc#1063041) * CVE-2017-12177: dbe: Unvalidated variable-length request in ProcDbeGetVisualInfo (bsc#1063040) * CVE-2017-12178: Xi: fix wrong extra length check in ProcXIChangeHierarchy (bsc#1063039) * CVE-2017-12179: Xi: integer overflow and unvalidated length in (S)ProcXIBarrierReleasePointer (bsc#1063038) * CVE-2017-12180,CVE-2017-12181,CVE-2017-12182: Unvalidated lengths in XFree86-VidMode/XFree86-DGA/XFree86-DRI extension (bsc#1063037) * CVE-2017-12183: Unvalidated lengths in XFIXES extension (bsc#1063035) * CVE-2017-12184,CVE-2017-12185,CVE-2017-12186,CVE-2017-12187: Unvalidated lengths in multiple extensions (bsc#1063034) xorg-x11-server-7.6_1.18.3-28.1.i586.rpm xorg-x11-server-7.6_1.18.3-28.1.src.rpm xorg-x11-server-debuginfo-7.6_1.18.3-28.1.i586.rpm xorg-x11-server-debugsource-7.6_1.18.3-28.1.i586.rpm xorg-x11-server-extra-7.6_1.18.3-28.1.i586.rpm xorg-x11-server-extra-debuginfo-7.6_1.18.3-28.1.i586.rpm xorg-x11-server-sdk-7.6_1.18.3-28.1.i586.rpm xorg-x11-server-source-7.6_1.18.3-28.1.i586.rpm xorg-x11-server-7.6_1.18.3-28.1.x86_64.rpm xorg-x11-server-debuginfo-7.6_1.18.3-28.1.x86_64.rpm xorg-x11-server-debugsource-7.6_1.18.3-28.1.x86_64.rpm xorg-x11-server-extra-7.6_1.18.3-28.1.x86_64.rpm xorg-x11-server-extra-debuginfo-7.6_1.18.3-28.1.x86_64.rpm xorg-x11-server-sdk-7.6_1.18.3-28.1.x86_64.rpm xorg-x11-server-source-7.6_1.18.3-28.1.x86_64.rpm openSUSE-2017-1168 low openSUSE Leap 42.3 Update This update for netcat-openbsd provides the following fix: - Fix a logic error that would prevent netcat from sending out UDP packets. (bsc#1061165) This update was imported from the SUSE:SLE-12:Update update project. netcat-openbsd-1.89-99.1.i586.rpm netcat-openbsd-1.89-99.1.src.rpm netcat-openbsd-debuginfo-1.89-99.1.i586.rpm netcat-openbsd-debugsource-1.89-99.1.i586.rpm netcat-openbsd-1.89-99.1.x86_64.rpm netcat-openbsd-debuginfo-1.89-99.1.x86_64.rpm netcat-openbsd-debugsource-1.89-99.1.x86_64.rpm openSUSE-2017-1171 low openSUSE Leap 42.3 Update This update for vm-install provides the following fix: - Make it possible to install guests based on pvops kernel. (bsc#1056738) - Add support for SLES15 and SLED15. (bsc#1056738) This update was imported from the SUSE:SLE-12-SP3:Update update project. vm-install-0.8.68-3.1.i586.rpm vm-install-0.8.68-3.1.src.rpm vm-install-0.8.68-3.1.x86_64.rpm openSUSE-2017-1169 low openSUSE Leap 42.3 Update This update for audit provides the following fix: - Make auditd start by forking the systemd service to fix some initialization failures. (bsc#1042781) This update was imported from the SUSE:SLE-12:Update update project. audit-2.3.6-8.1.i586.rpm audit-audispd-plugins-2.3.6-8.1.i586.rpm audit-audispd-plugins-debuginfo-2.3.6-8.1.i586.rpm audit-debuginfo-2.3.6-8.1.i586.rpm audit-libs-python-2.3.6-8.1.i586.rpm audit-libs-python-debuginfo-2.3.6-8.1.i586.rpm audit-secondary-2.3.6-8.1.src.rpm audit-secondary-debugsource-2.3.6-8.1.i586.rpm audit-2.3.6-8.1.src.rpm audit-debugsource-2.3.6-8.1.i586.rpm audit-devel-2.3.6-8.1.i586.rpm audit-devel-32bit-2.3.6-8.1.x86_64.rpm libaudit1-2.3.6-8.1.i586.rpm libaudit1-32bit-2.3.6-8.1.x86_64.rpm libaudit1-debuginfo-2.3.6-8.1.i586.rpm libaudit1-debuginfo-32bit-2.3.6-8.1.x86_64.rpm libauparse0-2.3.6-8.1.i586.rpm libauparse0-32bit-2.3.6-8.1.x86_64.rpm libauparse0-debuginfo-2.3.6-8.1.i586.rpm libauparse0-debuginfo-32bit-2.3.6-8.1.x86_64.rpm audit-2.3.6-8.1.x86_64.rpm audit-audispd-plugins-2.3.6-8.1.x86_64.rpm audit-audispd-plugins-debuginfo-2.3.6-8.1.x86_64.rpm audit-debuginfo-2.3.6-8.1.x86_64.rpm audit-libs-python-2.3.6-8.1.x86_64.rpm audit-libs-python-debuginfo-2.3.6-8.1.x86_64.rpm audit-secondary-debugsource-2.3.6-8.1.x86_64.rpm audit-debugsource-2.3.6-8.1.x86_64.rpm audit-devel-2.3.6-8.1.x86_64.rpm libaudit1-2.3.6-8.1.x86_64.rpm libaudit1-debuginfo-2.3.6-8.1.x86_64.rpm libauparse0-2.3.6-8.1.x86_64.rpm libauparse0-debuginfo-2.3.6-8.1.x86_64.rpm openSUSE-2017-1179 moderate openSUSE Leap 42.3 Update xerces-j2 was updated to fix several issues. This security issue was fixed: - bsc#814241: Prevent possible DoS through very long attribute names This non-security issue was fixed: - Prevent StackOverflowError when applying a pattern restriction on long strings while trying to validate an XML file against a schema (bsc#1047536, bsc#879138) This update was imported from the SUSE:SLE-12:Update update project. xerces-j2-2.8.1-9.1.noarch.rpm xerces-j2-2.8.1-9.1.src.rpm xerces-j2-demo-2.8.1-9.1.noarch.rpm xerces-j2-scripts-2.8.1-9.1.noarch.rpm xerces-j2-xml-apis-2.8.1-9.1.noarch.rpm xerces-j2-xml-resolver-2.8.1-9.1.noarch.rpm openSUSE-2017-1181 important openSUSE Leap 42.3 Update This update for xen fixes several issues: These security issues were fixed: - CVE-2017-5526: The ES1370 audio device emulation support was vulnerable to a memory leakage issue allowing a privileged user inside the guest to cause a DoS and/or potentially crash the Qemu process on the host (bsc#1059777) - CVE-2017-15593: Missing cleanup in the page type system allowed a malicious or buggy PV guest to cause DoS (XSA-242 bsc#1061084) - CVE-2017-15592: A problem in the shadow pagetable code allowed a malicious or buggy HVM guest to cause DoS or cause hypervisor memory corruption potentially allowing the guest to escalate its privilege (XSA-243 bsc#1061086) - CVE-2017-15594: Problematic handling of the selector fields in the Interrupt Descriptor Table (IDT) allowed a malicious or buggy x86 PV guest to escalate its privileges or cause DoS (XSA-244 bsc#1061087) - CVE-2017-15591: Missing checks in the handling of DMOPs allowed malicious or buggy stub domain kernels or tool stacks otherwise living outside of Domain0 to cause a DoS (XSA-238 bsc#1061077) - CVE-2017-15589: Intercepted I/O write operations with less than a full machine word's worth of data were not properly handled, which allowed a malicious unprivileged x86 HVM guest to obtain sensitive information from the host or other guests (XSA-239 bsc#1061080) - CVE-2017-15595: In certain configurations of linear page tables a stack overflow might have occured that allowed a malicious or buggy PV guest to cause DoS and potentially privilege escalation and information leaks (XSA-240 bsc#1061081) - CVE-2017-15588: Under certain conditions x86 PV guests could have caused the hypervisor to miss a necessary TLB flush for a page. This allowed a malicious x86 PV guest to access all of system memory, allowing for privilege escalation, DoS, and information leaks (XSA-241 bsc#1061082) - CVE-2017-15590: Multiple issues existed with the setup of PCI MSI interrupts that allowed a malicious or buggy guest to cause DoS and potentially privilege escalation and information leaks (XSA-237 bsc#1061076) - bsc#1055321: When dealing with the grant map space of add-to-physmap operations, ARM specific code failed to release a lock. This allowed a malicious guest administrator to cause DoS (XSA-235) This update was imported from the SUSE:SLE-12-SP3:Update update project. xen-4.9.0_14-10.1.src.rpm xen-4.9.0_14-10.1.x86_64.rpm xen-debugsource-4.9.0_14-10.1.x86_64.rpm xen-devel-4.9.0_14-10.1.x86_64.rpm xen-doc-html-4.9.0_14-10.1.x86_64.rpm xen-libs-4.9.0_14-10.1.x86_64.rpm xen-libs-debuginfo-4.9.0_14-10.1.x86_64.rpm xen-tools-4.9.0_14-10.1.x86_64.rpm xen-tools-debuginfo-4.9.0_14-10.1.x86_64.rpm xen-tools-domU-4.9.0_14-10.1.x86_64.rpm xen-tools-domU-debuginfo-4.9.0_14-10.1.x86_64.rpm openSUSE-2017-1163 important openSUSE Leap 42.3 Update This update for wpa_supplicant fixes the security issues: - Several vulnerabilities in standard conforming implementations of the WPA2 protocol have been discovered and published under the code name KRACK. This update remedies those issues in a backwards compatible manner, i.e. the updated wpa_supplicant can interface properly with both vulnerable and patched implementations of WPA2, but an attacker won't be able to exploit the KRACK weaknesses in those connections anymore even if the other party is still vulnerable. [bsc#1056061, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13087, CVE-2017-13088] This update was imported from the SUSE:SLE-12:Update update project. wpa_supplicant-2.2-13.1.i586.rpm wpa_supplicant-2.2-13.1.src.rpm wpa_supplicant-debuginfo-2.2-13.1.i586.rpm wpa_supplicant-debugsource-2.2-13.1.i586.rpm wpa_supplicant-gui-2.2-13.1.i586.rpm wpa_supplicant-gui-debuginfo-2.2-13.1.i586.rpm wpa_supplicant-2.2-13.1.x86_64.rpm wpa_supplicant-debuginfo-2.2-13.1.x86_64.rpm wpa_supplicant-debugsource-2.2-13.1.x86_64.rpm wpa_supplicant-gui-2.2-13.1.x86_64.rpm wpa_supplicant-gui-debuginfo-2.2-13.1.x86_64.rpm openSUSE-2017-1180 moderate openSUSE Leap 42.3 Update This update for exiv2 fixes the following issues: Security issues fixed: - CVE-2017-11591: There is a Floating point exception in the Exiv2::ValueType function in Exiv2 0.26 that will lead to a remote denial of service attack via crafted input. (boo#1050257) - CVE-2017-11683: There is a reachable assertion in the Internal::TiffReader::visitDirectory function in tiffvisitor.cpp of Exiv2 0.26 that will lead to a remote denial of service attack via crafted input. (boo#1051188) - CVE-2017-14865: There is a heap-based buffer overflow in the Exiv2::us2Data function of types.cpp in Exiv2 0.26. A Crafted input will lead to a denial of service attack. (boo#1061003) - CVE-2017-14862: An Invalid memory address dereference was discovered in Exiv2::DataValue::read in value.cpp in Exiv2 0.26. The vulnerability causes a segmentation fault and application crash, which leads to denial of service. (boo#1060996) - CVE-2017-14859: An Invalid memory address dereference was discovered in Exiv2::StringValueBase::read in value.cpp in Exiv2 0.26. The vulnerability causes a segmentation fault and application crash, which leads to denial of service. (boo#1061000) exiv2-0.25-10.1.i586.rpm exiv2-0.25-10.1.src.rpm exiv2-debuginfo-0.25-10.1.i586.rpm exiv2-debugsource-0.25-10.1.i586.rpm exiv2-lang-0.25-10.1.noarch.rpm libexiv2-14-0.25-10.1.i586.rpm libexiv2-14-32bit-0.25-10.1.x86_64.rpm libexiv2-14-debuginfo-0.25-10.1.i586.rpm libexiv2-14-debuginfo-32bit-0.25-10.1.x86_64.rpm libexiv2-devel-0.25-10.1.i586.rpm exiv2-0.25-10.1.x86_64.rpm exiv2-debuginfo-0.25-10.1.x86_64.rpm exiv2-debugsource-0.25-10.1.x86_64.rpm libexiv2-14-0.25-10.1.x86_64.rpm libexiv2-14-debuginfo-0.25-10.1.x86_64.rpm libexiv2-devel-0.25-10.1.x86_64.rpm openSUSE-2017-1182 moderate openSUSE Leap 42.3 Update Salt was updated to 2017.7.2 and also to fix various bugs and security issues. See https://docs.saltstack.com/en/develop/topics/releases/2017.7.2.html for full changelog. Security issues fixed: - CVE-2017-14695: A directory traversal during minion id validation was fixed. (boo#1062462) - CVE-2017-14696: A remote denial of service attack with a specially crafted authentication request was fixed. (boo#1062464) Non security issues fixed: - Add possibility to generate _version.py at the build time for raw builds: https://github.com/saltstack/salt/pull/43955 - Fix salt target-type field returns "String" for existing jids but an empty "Array" for non existing jids. (issue #1711) - Fixed minion resource exhaustion when many functions are being executed in parallel (boo#1059758) - Remove 'TasksTask' attribute from salt-master.service in older versions of systemd (boo#985112) - Provide custom SUSE salt-master.service file. - Fix wrong version reported by Salt (boo#1061407) - list_pkgs: add parameter for returned attribute selection (boo#1052264) - Adding the leftover for zypper and yum list_pkgs functionality. - Use $HOME to get the user home directory instead using '~' char (boo#1042749) salt-2017.7.2-14.1.src.rpm salt-2017.7.2-14.1.x86_64.rpm salt-api-2017.7.2-14.1.x86_64.rpm salt-bash-completion-2017.7.2-14.1.noarch.rpm salt-cloud-2017.7.2-14.1.x86_64.rpm salt-doc-2017.7.2-14.1.x86_64.rpm salt-fish-completion-2017.7.2-14.1.noarch.rpm salt-master-2017.7.2-14.1.x86_64.rpm salt-minion-2017.7.2-14.1.x86_64.rpm salt-proxy-2017.7.2-14.1.x86_64.rpm salt-ssh-2017.7.2-14.1.x86_64.rpm salt-syndic-2017.7.2-14.1.x86_64.rpm salt-zsh-completion-2017.7.2-14.1.noarch.rpm openSUSE-2017-1193 moderate openSUSE Leap 42.3 Update This update for libraw fixes the following issues: Changes in libraw: * CVE-2017-14608: An out of bounds read in the kodak_65000_load_raw function could lead to an information leak. [boo#1063798] libraw-0.17.1-14.1.src.rpm libraw-debugsource-0.17.1-14.1.i586.rpm libraw-devel-0.17.1-14.1.i586.rpm libraw-devel-static-0.17.1-14.1.i586.rpm libraw-tools-0.17.1-14.1.i586.rpm libraw-tools-debuginfo-0.17.1-14.1.i586.rpm libraw15-0.17.1-14.1.i586.rpm libraw15-debuginfo-0.17.1-14.1.i586.rpm libraw-debugsource-0.17.1-14.1.x86_64.rpm libraw-devel-0.17.1-14.1.x86_64.rpm libraw-devel-static-0.17.1-14.1.x86_64.rpm libraw-tools-0.17.1-14.1.x86_64.rpm libraw-tools-debuginfo-0.17.1-14.1.x86_64.rpm libraw15-0.17.1-14.1.x86_64.rpm libraw15-debuginfo-0.17.1-14.1.x86_64.rpm openSUSE-2017-1196 important openSUSE Leap 42.3 Update This update for mysql-community-server to 5.6.38 fixes the following issues: Full list of changes: http://dev.mysql.com/doc/relnotes/mysql/5.6/en/news-5-6-38.html CVEs fixed: - [boo#1064116] CVE-2017-10379 - [boo#1064117] CVE-2017-10384 - [boo#1064115] CVE-2017-10378 - [boo#1064101] CVE-2017-10268 - [boo#1064096] CVE-2017-10155 - [boo#1064118] CVE-2017-3731 - [boo#1064102] CVE-2017-10276 - [boo#1064105] CVE-2017-10283 - [boo#1064112] CVE-2017-10314 - [boo#1064100] CVE-2017-10227 - [boo#1064104] CVE-2017-10279 - [boo#1064108] CVE-2017-10294 - [boo#1064107] CVE-2017-10286 Additional changes: - add "BuildRequires: unixODBC-devel" to allow ODBC support for Connect engine [boo#1039034] - update filename in /var/adm/update-messages to match documentation, and build-compare pattern - some scripts from the tools subpackage, namely: wsrep_sst_xtrabackup, wsrep_sst_mariabackup.sh and wsrep_sst_xtrabackup-v2.sh need socat - fixed incorrect descriptions and mismatching RPM groups libmysql56client18-32bit-5.6.38-30.1.x86_64.rpm libmysql56client18-5.6.38-30.1.i586.rpm libmysql56client18-debuginfo-32bit-5.6.38-30.1.x86_64.rpm libmysql56client18-debuginfo-5.6.38-30.1.i586.rpm libmysql56client_r18-32bit-5.6.38-30.1.x86_64.rpm libmysql56client_r18-5.6.38-30.1.i586.rpm mysql-community-server-5.6.38-30.1.i586.rpm mysql-community-server-5.6.38-30.1.src.rpm mysql-community-server-bench-5.6.38-30.1.i586.rpm mysql-community-server-bench-debuginfo-5.6.38-30.1.i586.rpm mysql-community-server-client-5.6.38-30.1.i586.rpm mysql-community-server-client-debuginfo-5.6.38-30.1.i586.rpm mysql-community-server-debuginfo-5.6.38-30.1.i586.rpm mysql-community-server-debugsource-5.6.38-30.1.i586.rpm mysql-community-server-errormessages-5.6.38-30.1.noarch.rpm mysql-community-server-test-5.6.38-30.1.i586.rpm mysql-community-server-test-debuginfo-5.6.38-30.1.i586.rpm mysql-community-server-tools-5.6.38-30.1.i586.rpm mysql-community-server-tools-debuginfo-5.6.38-30.1.i586.rpm libmysql56client18-5.6.38-30.1.x86_64.rpm libmysql56client18-debuginfo-5.6.38-30.1.x86_64.rpm libmysql56client_r18-5.6.38-30.1.x86_64.rpm mysql-community-server-5.6.38-30.1.x86_64.rpm mysql-community-server-bench-5.6.38-30.1.x86_64.rpm mysql-community-server-bench-debuginfo-5.6.38-30.1.x86_64.rpm mysql-community-server-client-5.6.38-30.1.x86_64.rpm mysql-community-server-client-debuginfo-5.6.38-30.1.x86_64.rpm mysql-community-server-debuginfo-5.6.38-30.1.x86_64.rpm mysql-community-server-debugsource-5.6.38-30.1.x86_64.rpm mysql-community-server-test-5.6.38-30.1.x86_64.rpm mysql-community-server-test-debuginfo-5.6.38-30.1.x86_64.rpm mysql-community-server-tools-5.6.38-30.1.x86_64.rpm mysql-community-server-tools-debuginfo-5.6.38-30.1.x86_64.rpm openSUSE-2017-1186 moderate openSUSE Leap 42.3 Update This update for resource-agents provides the following fixes: - galera: Honor "safe_to_bootstrap" flag in grastate.dat to make sure galera clusters are boostrapped correctly. (bsc#1055017) - galera: Fix instance name in master_exists() so that operations (like start, stop, etc) work correctly on a galera/mysql instance. (bsc#1056635) - aws-vpc-route53: Add agent for AWS Route 53. (fate#322781, bsc#1059314) - sg_persist: Read empty values when there are no attributes yet. (bsc#1048288) - Raid1: Add support for named md devices by handling the case of mddev being a symlink. (bsc#1047991) - ocf-shellfuncs: Avoid printing empty INFO messages. (bsc#1053621) - SAPInstance: Mention monitor support in documentation. (bsc#1051913) This update was imported from the SUSE:SLE-12-SP3:Update update project. ldirectord-4.0.1+git.1495055229.643177f1-6.1.i586.rpm monitoring-plugins-metadata-4.0.1+git.1495055229.643177f1-6.1.noarch.rpm resource-agents-4.0.1+git.1495055229.643177f1-6.1.i586.rpm resource-agents-4.0.1+git.1495055229.643177f1-6.1.src.rpm resource-agents-debuginfo-4.0.1+git.1495055229.643177f1-6.1.i586.rpm resource-agents-debugsource-4.0.1+git.1495055229.643177f1-6.1.i586.rpm ldirectord-4.0.1+git.1495055229.643177f1-6.1.x86_64.rpm resource-agents-4.0.1+git.1495055229.643177f1-6.1.x86_64.rpm resource-agents-debuginfo-4.0.1+git.1495055229.643177f1-6.1.x86_64.rpm resource-agents-debugsource-4.0.1+git.1495055229.643177f1-6.1.x86_64.rpm openSUSE-2017-1189 moderate openSUSE Leap 42.3 Update This security update for irssi to version 1.0.5 addresses the following security issues: * CVE-2017-15228: When installing themes with unterminated colour formatting sequences, Irssi may access data beyond the end of the string. This issue could have resulted in denial of service (remote crash) when installing a malicious or broken theme file. * CVE-2017-15227: While waiting for the channel synchronisation, Irssi may incorrectly fail to remove destroyed channels from the query list, resulting in use after free conditions when updating the state later on. This issue could have caused denial of service (remote crash) when connecting to a malicious or broken ircd. * CVE-2017-15721: Certain incorrectly formatted DCC CTCP messages could cause NULL pointer dereference. This issue could have caused denial of service (remote crash) when connecting to a malicious or broken ircd. * CVE-2017-15723: Overlong nicks or targets may result in a NULL pointer dereference while splitting the message. This issue could have caused denial of service (remote crash) when connecting to a malicious or broken ircd. * CVE-2017-15722: In certain cases Irssi may fail to verify that a Safe channel ID is long enough, causing reads beyond the end of the string. irssi-1.0.5-17.1.i586.rpm irssi-1.0.5-17.1.src.rpm irssi-debuginfo-1.0.5-17.1.i586.rpm irssi-debugsource-1.0.5-17.1.i586.rpm irssi-devel-1.0.5-17.1.i586.rpm irssi-1.0.5-17.1.x86_64.rpm irssi-debuginfo-1.0.5-17.1.x86_64.rpm irssi-debugsource-1.0.5-17.1.x86_64.rpm irssi-devel-1.0.5-17.1.x86_64.rpm openSUSE-2017-1194 important openSUSE Leap 42.3 Update The openSUSE Leap 42.3 kernel was updated to 4.4.92 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2017-13080: Wi-Fi Protected Access (WPA and WPA2) allowed reinstallation of the Group Temporal Key (GTK) during the group key handshake, allowing an attacker within radio range to replay frames from access points to clients (bnc#1063667). - CVE-2017-15265: Race condition in the ALSA subsystem in the Linux kernel allowed local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted /dev/snd/seq ioctl calls, related to sound/core/seq/seq_clientmgr.c and sound/core/seq/seq_ports.c (bnc#1062520). - CVE-2017-15649: net/packet/af_packet.c in the Linux kernel allowed local users to gain privileges via crafted system calls that trigger mishandling of packet_fanout data structures, because of a race condition (involving fanout_add and packet_do_bind) that leads to a use-after-free, a different vulnerability than CVE-2017-6346 (bnc#1064388). The following non-security bugs were fixed: - acpi/processor: Check for duplicate processor ids at hotplug time (bnc#1056230). - acpi/processor: Implement DEVICE operator for processor enumeration (bnc#1056230). - add mainline tags to hyperv patches - alsa: au88x0: avoid theoretical uninitialized access (bnc#1012382). - alsa: compress: Remove unused variable (bnc#1012382). - alsa: usb-audio: Check out-of-bounds access by corrupted buffer descriptor (bnc#1012382). - alsa: usx2y: Suppress kernel warning at page allocation failures (bnc#1012382). - arm64: add function to get a cpu's MADT GICC table (bsc#1062279). - arm64: dts: Add Broadcom Vulcan PMU in dts (fate#319481). - arm64/perf: Access pmu register using <read/write;gt;_sys_reg (bsc#1062279). - arm64/perf: Add Broadcom Vulcan PMU support (fate#319481). - arm64/perf: Changed events naming as per the ARM ARM (fate#319481). - arm64/perf: Define complete ARMv8 recommended implementation defined events (fate#319481). - arm64: perf: do not expose CHAIN event in sysfs (bsc#1062279). - arm64: perf: Extend event config for ARMv8.1 (bsc#1062279). - arm64/perf: Filter common events based on PMCEIDn_EL0 (fate#319481). - arm64: perf: Ignore exclude_hv when kernel is running in HYP (bsc#1062279). - arm64: perf: move to common attr_group fields (bsc#1062279). - arm64: perf: Use the builtin_platform_driver (bsc#1062279). - arm64: pmu: add fallback probe table (bsc#1062279). - arm64: pmu: Hoist pmu platform device name (bsc#1062279). - arm64: pmu: Probe default hw/cache counters (bsc#1062279). - arm64: pmuv3: handle pmuv3+ (bsc#1062279). - arm64: pmuv3: handle !PMUv3 when probing (bsc#1062279). - arm64: pmuv3: use arm_pmu ACPI framework (bsc#1062279). - arm64: pmu: Wire-up Cortex A53 L2 cache events and DTLB refills (bsc#1062279). - arm: 8635/1: nommu: allow enabling REMAP_VECTORS_TO_RAM (bnc#1012382). - arm: dts: r8a7790: Use R-Car Gen 2 fallback binding for msiof nodes (bnc#1012382). - arm/perf: Convert to hotplug state machine (bsc#1062279). - arm/perf: Fix hotplug state machine conversion (bsc#1062279). - arm/perf: Use multi instance instead of custom list (bsc#1062279). - arm: remove duplicate 'const' annotations' (bnc#1012382). - asoc: dapm: fix some pointer error handling (bnc#1012382). - asoc: dapm: handle probe deferrals (bnc#1012382). - audit: log 32-bit socketcalls (bnc#1012382). - blacklist 0e7736c6b806 powerpc/powernv: Fix data type for @r in pnv_ioda_parse_m64_window() - blacklist.conf: fix commit exists twice in upstream, blacklist one of them - blacklist.conf: stack limit warning isn't triggered on SP3 - block: genhd: add device_add_disk_with_groups (bsc#1060400). - bnx2x: Do not log mc removal needlessly (bsc#1019680 FATE#321692). - bnxt_en: Do not setup MAC address in bnxt_hwrm_func_qcaps() (bsc#963575 FATE#320144). - bnxt_en: Free MSIX vectors when unregistering the device from bnxt_re (bsc#1020412 FATE#321671). - bnxt_re: Do not issue cmd to delete GID for QP1 GID entry before the QP is destroyed (bsc#1056596). - bnxt_re: Fix compare and swap atomic operands (bsc#1056596). - bnxt_re: Fix memory leak in FRMR path (bsc#1056596). - bnxt_re: Fix race between the netdev register and unregister events (bsc#1037579). - bnxt_re: Fix update of qplib_qp.mtu when modified (bsc#1056596). - bnxt_re: Free up devices in module_exit path (bsc#1056596). - bnxt_re: Remove RTNL lock dependency in bnxt_re_query_port (bsc#1056596). - bnxt_re: Stop issuing further cmds to FW once a cmd times out (bsc#1056596). - brcmfmac: setup passive scan if requested by user-space (bnc#1012382). - bridge: netlink: register netdevice before executing changelink (bnc#1012382). - ceph: avoid panic in create_session_open_msg() if utsname() returns NULL (bsc#1061451). - ceph: check negative offsets in ceph_llseek() (bsc#1061451). - ceph: fix message order check in handle_cap_export() (bsc#1061451). - ceph: fix NULL pointer dereference in ceph_flush_snaps() (bsc#1061451). - ceph: limit osd read size to CEPH_MSG_MAX_DATA_LEN (bsc#1061451). - ceph: limit osd write size (bsc#1061451). - ceph: stop on-going cached readdir if mds revokes FILE_SHARED cap (bsc#1061451). - ceph: validate correctness of some mount options (bsc#1061451). - documentation: arm64: pmu: Add Broadcom Vulcan PMU binding (fate#319481). - driver-core: platform: Add platform_irq_count() (bsc#1062279). - driver core: platform: Do not read past the end of "driver_override" buffer (bnc#1012382). - drivers: firmware: psci: drop duplicate const from psci_of_match (FATE#319482 bnc#1012382). - drivers: hv: fcopy: restore correct transfer length (bnc#1012382). - drivers/perf: arm_pmu_acpi: avoid perf IRQ init when guest PMU is off (bsc#1062279). - drivers/perf: arm_pmu_acpi: Release memory obtained by kasprintf (bsc#1062279). - drivers/perf: arm_pmu: add ACPI framework (bsc#1062279). - drivers/perf: arm_pmu: add common attr group fields (bsc#1062279). - drivers/perf: arm_pmu: Always consider IRQ0 as an error (bsc#1062279). - drivers/perf: arm_pmu: Avoid leaking pmu->irq_affinity on error (bsc#1062279). - drivers/perf: arm_pmu: avoid NULL dereference when not using devicetree (bsc#1062279). - drivers/perf: arm-pmu: convert arm_pmu_mutex to spinlock (bsc#1062279). - drivers/perf: arm_pmu: Defer the setting of __oprofile_cpu_pmu (bsc#1062279). - drivers/perf: arm_pmu: define armpmu_init_fn (bsc#1062279). - drivers/perf: arm_pmu: expose a cpumask in sysfs (bsc#1062279). - drivers/perf: arm_pmu: factor out pmu registration (bsc#1062279). - drivers/perf: arm-pmu: Fix handling of SPI lacking "interrupt-affinity" property (bsc#1062279). - drivers/perf: arm_pmu: Fix NULL pointer dereference during probe (bsc#1062279). - drivers/perf: arm-pmu: fix RCU usage on pmu resume from low-power (bsc#1062279). - drivers/perf: arm_pmu: Fix reference count of a device_node in of_pmu_irq_cfg (bsc#1062279). - drivers/perf: arm_pmu: fold init into alloc (bsc#1062279). - drivers/perf: arm_pmu: handle no platform_device (bsc#1062279). - drivers/perf: arm-pmu: Handle per-interrupt affinity mask (bsc#1062279). - drivers/perf: arm_pmu: implement CPU_PM notifier (bsc#1062279). - drivers/perf: arm_pmu: make info messages more verbose (bsc#1062279). - drivers/perf: arm_pmu: manage interrupts per-cpu (bsc#1062279). - drivers/perf: arm_pmu: move irq request/free into probe (bsc#1062279). - drivers/perf: arm_pmu: only use common attr_groups (bsc#1062279). - drivers/perf: arm_pmu: remove pointless PMU disabling (bsc#1062279). - drivers/perf: arm_pmu: rename irq request/free functions (bsc#1062279). - drivers/perf: arm_pmu: Request PMU SPIs with IRQF_PER_CPU (bsc#1062279). - drivers/perf: arm_pmu: rework per-cpu allocation (bsc#1062279). - drivers/perf: arm_pmu: simplify cpu_pmu_request_irqs() (bsc#1062279). - drivers/perf: arm_pmu: split cpu-local irq request/free (bsc#1062279). - drivers/perf: arm_pmu: split irq request from enable (bsc#1062279). - drivers/perf: arm_pmu: split out platform device probe logic (bsc#1062279). - drivers/perf: kill armpmu_register (bsc#1062279). - drm/amdkfd: fix improper return value on error (bnc#1012382). - drm: bridge: add DT bindings for TI ths8135 (bnc#1012382). - drm_fourcc: Fix DRM_FORMAT_MOD_LINEAR #define (bnc#1012382). - drm/i915/bios: ignore HDMI on port A (bnc#1012382). - e1000e: use disable_hardirq() also for MSIX vectors in e1000_netpoll() (bsc#1022912 FATE#321246). - edac, sb_edac: Assign EDAC memory controller per h/w controller (bsc#1061721). - edac, sb_edac: Avoid creating SOCK memory controller (bsc#1061721). - edac, sb_edac: Bump driver version and do some cleanups (bsc#1061721). - edac, sb_edac: Carve out dimm-populating loop (bsc#1061721). - edac, sb_edac: Check if ECC enabled when at least one DIMM is present (bsc#1061721). - edac, sb_edac: Classify memory mirroring modes (bsc#1061721). - edac, sb_edac: Classify PCI-IDs by topology (bsc#1061721). - edac, sb_edac: Do not create a second memory controller if HA1 is not present (bsc#1061721). - edac, sb_edac: Do not use "Socket#" in the memory controller name (bsc#1061721). - edac, sb_edac: Drop NUM_CHANNELS from 8 back to 4 (bsc#1061721). - edac, sb_edac: Fix mod_name (bsc#1061721). - edac, sb_edac: Get rid of ->show_interleave_mode() (bsc#1061721). - edac, sb_edac: Remove double buffering of error records (bsc#1061721). - edac, sb_edac: Remove NULL pointer check on array pci_tad (bsc#1061721). - edac, skx_edac: Handle systems with segmented PCI busses (bsc#1063102). - ext4: do not allow encrypted operations without keys (bnc#1012382). - extcon: axp288: Use vbus-valid instead of -present to determine cable presence (bnc#1012382). - exynos-gsc: Do not swap cb/cr for semi planar formats (bnc#1012382). - fix flags ordering (bsc#1034075 comment 131) - Fix mpage_writepage() for pages with buffers (bsc#1050471). - fix whitespace according to upstream commit - fs/epoll: cache leftmost node (bsc#1056427). - fs/mpage.c: fix mpage_writepage() for pages with buffers (bsc#1050471). Update to version in mainline - ftrace: Fix kmemleak in unregister_ftrace_graph (bnc#1012382). - gfs2: Fix reference to ERR_PTR in gfs2_glock_iter_next (bnc#1012382). - hid: i2c-hid: allocate hid buffers for real worst case (bnc#1012382). - hwmon: (gl520sm) Fix overflows and crash seen when writing into limit attributes (bnc#1012382). - i2c: meson: fix wrong variable usage in meson_i2c_put_data (bnc#1012382). - i40e: Initialize 64-bit statistics TX ring seqcount (bsc#1024346 FATE#321239 bsc#1024373 FATE#321247). - i40iw: Add missing memory barriers (bsc#969476 FATE#319648 bsc#969477 FATE#319816). - i40iw: Fix port number for query QP (bsc#969476 FATE#319648 bsc#969477 FATE#319816). - ib/core: Add generic function to extract IB speed from netdev (bsc#1056596). - ib/core: Add ordered workqueue for RoCE GID management (bsc#1056596). - ib/core: Fix for core panic (bsc#1022595 FATE#322350). - ib/core: Fix the validations of a multicast LID in attach or detach operations (bsc#1022595 FATE#322350). - ib/i40iw: Fix error code in i40iw_create_cq() (bsc#969476 FATE#319648 bsc#969477 FATE#319816). - ib/ipoib: Fix deadlock over vlan_mutex (bnc#1012382 bsc#1022595 FATE#322350). - ib/ipoib: Replace list_del of the neigh->list with list_del_init (FATE#322350 bnc#1012382 bsc#1022595). - ib/ipoib: rtnl_unlock can not come after free_netdev (FATE#322350 bnc#1012382 bsc#1022595). - ib/mlx5: Change logic for dispatching IB events for port state (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689). - ib/mlx5: Fix cached MR allocation flow (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689). - ib/mlx5: Fix Raw Packet QP event handler assignment (bsc#966170 FATE#320225 bsc#966172 FATE#320226). - ibmvnic: Set state UP (bsc#1062962). - ib/qib: fix false-postive maybe-uninitialized warning (FATE#321231 FATE#321473 FATE#322149 FATE#322153 bnc#1012382). - igb: re-assign hw address pointer on reset after PCI error (bnc#1012382). - iio: ad7793: Fix the serial interface reset (bnc#1012382). - iio: adc: axp288: Drop bogus AXP288_ADC_TS_PIN_CTRL register modifications (bnc#1012382). - iio: adc: hx711: Add DT binding for avia,hx711 (bnc#1012382). - iio: adc: mcp320x: Fix oops on module unload (bnc#1012382). - iio: adc: mcp320x: Fix readout of negative voltages (bnc#1012382). - iio: adc: twl4030: Disable the vusb3v1 rugulator in the error handling path of 'twl4030_madc_probe()' (bnc#1012382). - iio: adc: twl4030: Fix an error handling path in 'twl4030_madc_probe()' (bnc#1012382). - iio: ad_sigma_delta: Implement a dedicated reset function (bnc#1012382). - iio: core: Return error for failed read_reg (bnc#1012382). - iommu/io-pgtable-arm: Check for leaf entry before dereferencing it (bnc#1012382). - iwlwifi: add workaround to disable wide channels in 5GHz (bnc#1012382). - kabi fixup struct nvmet_sq (bsc#1063349). - kABI: protect enum fs_flow_table_type (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689). - kABI: protect struct mlx5_priv (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689). - kABI: protect struct rm_data_op (kabi). - kABI: protect struct sdio_func (kabi). - libata: transport: Remove circular dependency at free time (bnc#1012382). - libceph: do not allow bidirectional swap of pg-upmap-items (bsc#1061451). - lsm: fix smack_inode_removexattr and xattr_getsecurity memleak (bnc#1012382). - md/raid10: submit bio directly to replacement disk (bnc#1012382). - mips: Ensure bss section ends on a long-aligned address (bnc#1012382). - mips: Fix minimum alignment requirement of IRQ stack (git-fixes). - mips: IRQ Stack: Unwind IRQ stack onto task stack (bnc#1012382). - mips: Lantiq: Fix another request_mem_region() return code check (bnc#1012382). - mips: ralink: Fix incorrect assignment on ralink_soc (bnc#1012382). - mlx5: Avoid that mlx5_ib_sg_to_klms() overflows the klms array (bsc#966170 FATE#320225 bsc#966172 FATE#320226). - mm: avoid marking swap cached page as lazyfree (VM Functionality, bsc#1061775). - mm/backing-dev.c: fix an error handling path in 'cgwb_create()' (bnc#1063475). - mm,compaction: serialize waitqueue_active() checks (for real) (bsc#971975). - mmc: sdio: fix alignment issue in struct sdio_func (bnc#1012382). - mm: discard memblock data later (bnc#1063460). - mm: fix data corruption caused by lazyfree page (VM Functionality, bsc#1061775). - mm/memblock.c: reversed logic in memblock_discard() (bnc#1063460). - mm: meminit: mark init_reserved_page as __meminit (bnc#1063509). - mm/memory_hotplug: change pfn_to_section_nr/section_nr_to_pfn macro to inline function (bnc#1063501). - mm/memory_hotplug: define find_{smallest|biggest}_section_pfn as unsigned long (bnc#1063520). - net: core: Prevent from dereferencing null pointer when releasing SKB (bnc#1012382). - netfilter: invoke synchronize_rcu after set the _hook_ to NULL (bnc#1012382). - netfilter: nfnl_cthelper: fix incorrect helper->expect_class_max (bnc#1012382). - net/mlx4_core: Enable 4K UAR if SRIOV module parameter is not enabled (bsc#966191 FATE#320230 bsc#966186 FATE#320228). - net/mlx5: Check device capability for maximum flow counters (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689). - net/mlx5: Delay events till ib registration ends (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689). - net/mlx5e: Check for qos capability in dcbnl_initialize (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689). - net/mlx5e: Do not add/remove 802.1ad rules when changing 802.1Q VLAN filter (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689). - net/mlx5e: Fix calculated checksum offloads counters (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689). - net/mlx5e: Fix dangling page pointer on DMA mapping error (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689). - net/mlx5e: Fix DCB_CAP_ATTR_DCBX capability for DCBNL getcap (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689). - net/mlx5e: Fix inline header size for small packets (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689). - net/mlx5e: Print netdev features correctly in error message (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689). - net/mlx5e: Schedule overflow check work to mlx5e workqueue (bsc#966170 FATE#320225 bsc#966172 FATE#320226). - net/mlx5: E-Switch, Unload the representors in the correct order (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689). - net/mlx5: Fix arm SRQ command for ISSI version 0 (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689). - net/mlx5: Fix command completion after timeout access invalid structure (bsc#966318 FATE#320158 bsc#966316 FATE#320159). - net/mlx5: Fix counter list hardware structure (bsc#1015342 FATE#321688 bsc#1015343 FATE#321689). - net/mlx5: Remove the flag MLX5_INTERFACE_STATE_SHUTDOWN (bsc#966170 FATE#320225 bsc#966172 FATE#320226). - net/mlx5: Skip mlx5_unload_one if mlx5_load_one fails (bsc#966170 FATE#320225 bsc#966172 FATE#320226). - net: mvpp2: fix the mac address used when using PPv2.2 (bsc#1032150). - net: mvpp2: use {get, put}_cpu() instead of smp_processor_id() (bsc#1032150). - net/packet: check length in getsockopt() called with PACKET_HDRLEN (bnc#1012382). - netvsc: Initialize 64-bit stats seqcount (fate#320485). - nvme: allow timed-out ios to retry (bsc#1063349). - nvme: fix sqhd reference when admin queue connect fails (bsc#1063349). - nvme: fix visibility of "uuid" ns attribute (bsc#1060400). - nvme: protect against simultaneous shutdown invocations (FATE#319965 bnc#1012382 bsc#964944). - nvme: stop aer posting if controller state not live (bsc#1063349). - nvmet: implement valid sqhd values in completions (bsc#1063349). - nvmet: synchronize sqhd update (bsc#1063349). - nvme: use device_add_disk_with_groups() (bsc#1060400). - parisc: perf: Fix potential NULL pointer dereference (bnc#1012382). - partitions/efi: Fix integer overflow in GPT size calculation (FATE#322379 bnc#1012382 bsc#1020989). - perf: arm: acpi: remove cpu hotplug statemachine dependency (bsc#1062279). - perf: arm: platform: remove cpu hotplug statemachine dependency (bsc#1062279). - perf: arm: replace irq_get_percpu_devid_partition call (bsc#1062279). - perf: arm: temporary workaround for build errors (bsc#1062279). - perf: Convert to using %pOF instead of full_name (bsc#1062279). - powerpc: Fix unused function warning 'lmb_to_memblock' (FATE#322022). - powerpc/pseries: Add pseries hotplug workqueue (FATE#322022). - powerpc/pseries: Auto-online hotplugged memory (FATE#322022). - powerpc/pseries: Check memory device state before onlining/offlining (FATE#322022). - powerpc/pseries: Correct possible read beyond dlpar sysfs buffer (FATE#322022). - powerpc/pseries: Do not attempt to acquire drc during memory hot add for assigned lmbs (FATE#322022). - powerpc/pseries: Fix build break when MEMORY_HOTREMOVE=n (FATE#322022). - powerpc/pseries: fix memory leak in queue_hotplug_event() error path (FATE#322022). - powerpc/pseries: Implement indexed-count hotplug memory add (FATE#322022). - powerpc/pseries: Implement indexed-count hotplug memory remove (FATE#322022). - powerpc/pseries: Introduce memory hotplug READD operation (FATE#322022). - powerpc/pseries: Make the acquire/release of the drc for memory a seperate step (FATE#322022). - powerpc/pseries: Remove call to memblock_add() (FATE#322022). - powerpc/pseries: Revert 'Auto-online hotplugged memory' (FATE#322022). - powerpc/pseries: Use kernel hotplug queue for PowerVM hotplug events (FATE#322022). - powerpc/pseries: Use lmb_is_removable() to check removability (FATE#322022). - powerpc/pseries: Verify CPU does not exist before adding (FATE#322022). - rdma: Fix return value check for ib_get_eth_speed() (bsc#1056596). - rdma/qedr: Parse VLAN ID correctly and ignore the value of zero (bsc#1019695 FATE#321703 bsc#1019699 FATE#321702 bsc#1022604 FATE#321747). - rdma/qedr: Parse vlan priority as sl (bsc#1019695 FATE#321703 bsc#1019699 FATE#321702 bsc#1022604 FATE#321747). - rds: ib: add error handle (bnc#1012382). - rds: rdma: Fix the composite message user notification (bnc#1012382). - README.BRANCH: Add Michal and Johannes as co-maintainers. - Remove superfluous hunk in bigmem backport (bsc#1064436). Refresh patches.arch/powerpc-bigmem-16-mm-Add-addr_limit-to-mm_context-and-use-it-t.patch. - Revert "x86/acpi: Enable MADT APIs to return disabled apicids" (bnc#1056230). - Revert "x86/acpi: Set persistent cpuid <-> nodeid mapping when booting" (bnc#1056230). - s390/cpcmd,vmcp: avoid GFP_DMA allocations (bnc#1060249, LTC#159112). - s390/qdio: avoid reschedule of outbound tasklet once killed (bnc#1060249, LTC#159885). - s390/topology: alternative topology for topology-less machines (bnc#1060249, LTC#159177). - s390/topology: always use s390 specific sched_domain_topology_level (bnc#1060249, LTC#159177). - s390/topology: enable / disable topology dynamically (bnc#1060249, LTC#159177). - sched/cpuset/pm: Fix cpuset vs. suspend-resume bugs (bnc#1012382). - scsi: fixup kernel warning during rmmod() (bsc#1052360). - scsi: libfc: fix a deadlock in fc_rport_work (bsc#1063695). - scsi: lpfc: Ensure io aborts interlocked with the target (bsc#1056587). - scsi: qedi: off by one in qedi_get_cmd_from_tid() (bsc#1004527, FATE#321744). - scsi: qla2xxx: Fix uninitialized work element (bsc#1019675,FATE#321701). - scsi: scsi_transport_fc: Also check for NOTPRESENT in fc_remote_port_add() (bsc#1037890). - scsi: scsi_transport_fc: set scsi_target_id upon rescan (bsc#1058135). - scsi: sd: Do not override max_sectors_kb sysfs setting (bsc#1025461). - scsi: sd: Remove LBPRZ dependency for discards (bsc#1060985). This patch is originally part of a larger series which can't be easily backported to SLE-12. For a reasoning why we think it's safe to apply, see bsc#1060985, comment 20. - scsi: sg: close race condition in sg_remove_sfp_usercontext() (bsc#1064206). - scsi: sg: do not return bogus Sg_requests (bsc#1064206). - scsi: sg: only check for dxfer_len greater than 256M (bsc#1064206). - sh_eth: use correct name for ECMR_MPDE bit (bnc#1012382). - staging: iio: ad7192: Fix - use the dedicated reset function avoiding dma from stack (bnc#1012382). - stm class: Fix a use-after-free (bnc#1012382). - supported.conf: enable dw_mmc-rockchip driver References: bsc#1064064 - team: call netdev_change_features out of team lock (bsc#1055567). - team: fix memory leaks (bnc#1012382). - ttpci: address stringop overflow warning (bnc#1012382). - tty: goldfish: Fix a parameter of a call to free_irq (bnc#1012382). - usb: chipidea: vbus event may exist before starting gadget (bnc#1012382). - usb: core: harden cdc_parse_cdc_header (bnc#1012382). - usb: devio: Do not corrupt user memory (bnc#1012382). - usb: dummy-hcd: fix connection failures (wrong speed) (bnc#1012382). - usb: dummy-hcd: Fix erroneous synchronization change (bnc#1012382). - usb: dummy-hcd: fix infinite-loop resubmission bug (bnc#1012382). - usb: fix out-of-bounds in usb_set_configuration (bnc#1012382). - usb: gadgetfs: fix copy_to_user while holding spinlock (bnc#1012382). - usb: gadgetfs: Fix crash caused by inadequate synchronization (bnc#1012382). - usb: gadget: inode.c: fix unbalanced spin_lock in ep0_write (bnc#1012382). - usb: gadget: mass_storage: set msg_registered after msg registered (bnc#1012382). - usb: gadget: udc: atmel: set vbus irqflags explicitly (bnc#1012382). - usb: g_mass_storage: Fix deadlock when driver is unbound (bnc#1012382). - usb: Increase quirk delay for USB devices (bnc#1012382). - usb: pci-quirks.c: Corrected timeout values used in handshake (bnc#1012382). - usb: plusb: Add support for PL-27A1 (bnc#1012382). - usb: renesas_usbhs: fix the BCLR setting condition for non-DCP pipe (bnc#1012382). - usb: renesas_usbhs: fix usbhsf_fifo_clear() for RX direction (bnc#1012382). - usb: serial: mos7720: fix control-message error handling (bnc#1012382). - usb: serial: mos7840: fix control-message error handling (bnc#1012382). - usb-storage: unusual_devs entry to fix write-access regression for Seagate external drives (bnc#1012382). - usb: uas: fix bug in handling of alternate settings (bnc#1012382). - uwb: ensure that endpoint is interrupt (bnc#1012382). - uwb: properly check kthread_run return value (bnc#1012382). - x86/acpi: Restore the order of CPU IDs (bnc#1056230). - x86/cpu: Remove unused and undefined __generic_processor_info() declaration (bnc#1056230). - x86 edac, sb_edac.c: Take account of channel hashing when needed (bsc#1061721). - x86/mshyperv: Remove excess #includes from mshyperv.h (fate#320485). - xfs: handle error if xfs_btree_get_bufs fails (bsc#1059863). - xfs: remove kmem_zalloc_greedy (bnc#1012382). - xhci: fix finding correct bus_state structure for USB 3.1 hosts (bnc#1012382). kernel-devel-4.4.92-31.1.noarch.rpm True kernel-macros-4.4.92-31.1.noarch.rpm True kernel-source-4.4.92-31.1.noarch.rpm True kernel-source-4.4.92-31.1.src.rpm True kernel-source-vanilla-4.4.92-31.1.noarch.rpm True kernel-debug-4.4.92-31.1.nosrc.rpm True kernel-debug-4.4.92-31.1.x86_64.rpm True kernel-debug-base-4.4.92-31.1.x86_64.rpm True kernel-debug-base-debuginfo-4.4.92-31.1.x86_64.rpm True kernel-debug-debuginfo-4.4.92-31.1.x86_64.rpm True kernel-debug-debugsource-4.4.92-31.1.x86_64.rpm True kernel-debug-devel-4.4.92-31.1.x86_64.rpm True kernel-debug-devel-debuginfo-4.4.92-31.1.x86_64.rpm True kernel-default-4.4.92-31.1.nosrc.rpm True kernel-default-4.4.92-31.1.x86_64.rpm True kernel-default-base-4.4.92-31.1.x86_64.rpm True kernel-default-base-debuginfo-4.4.92-31.1.x86_64.rpm True kernel-default-debuginfo-4.4.92-31.1.x86_64.rpm True kernel-default-debugsource-4.4.92-31.1.x86_64.rpm True kernel-default-devel-4.4.92-31.1.x86_64.rpm True kernel-docs-4.4.92-31.2.noarch.rpm True kernel-docs-4.4.92-31.2.src.rpm True kernel-docs-html-4.4.92-31.2.noarch.rpm True kernel-docs-pdf-4.4.92-31.2.noarch.rpm True kernel-obs-build-4.4.92-31.1.src.rpm True kernel-obs-build-4.4.92-31.1.x86_64.rpm True kernel-obs-build-debugsource-4.4.92-31.1.x86_64.rpm True kernel-obs-qa-4.4.92-31.1.src.rpm True kernel-obs-qa-4.4.92-31.1.x86_64.rpm True kernel-syms-4.4.92-31.1.src.rpm True kernel-syms-4.4.92-31.1.x86_64.rpm True kernel-vanilla-4.4.92-31.1.nosrc.rpm True kernel-vanilla-4.4.92-31.1.x86_64.rpm True kernel-vanilla-base-4.4.92-31.1.x86_64.rpm True kernel-vanilla-base-debuginfo-4.4.92-31.1.x86_64.rpm True kernel-vanilla-debuginfo-4.4.92-31.1.x86_64.rpm True kernel-vanilla-debugsource-4.4.92-31.1.x86_64.rpm True kernel-vanilla-devel-4.4.92-31.1.x86_64.rpm True