13190
Recommended update for llvm9
moderate
openSUSE Leap 15.2 Update
This update for llvm9 fixes the following issues:
- Fix miscompilations with rustc 1.43 that lead to LTO failures (bsc#1173202)
This update was imported from the SUSE:SLE-15-SP2:Update update project.
clang9-9.0.1-lp152.2.3.65.x86_64.rpm
clang9-checker-9.0.1-lp152.2.3.65.x86_64.rpm
clang9-debuginfo-9.0.1-lp152.2.3.65.x86_64.rpm
clang9-devel-9.0.1-lp152.2.3.65.x86_64.rpm
clang9-doc-9.0.1-lp152.2.3.65.noarch.rpm
libLLVM9-9.0.1-lp152.2.3.65.x86_64.rpm
libLLVM9-debuginfo-9.0.1-lp152.2.3.65.x86_64.rpm
libLTO9-9.0.1-lp152.2.3.65.x86_64.rpm
libLTO9-debuginfo-9.0.1-lp152.2.3.65.x86_64.rpm
libc++-devel-9.0.1-lp152.2.3.65.x86_64.rpm
libc++1-9.0.1-lp152.2.3.65.x86_64.rpm
libc++1-debuginfo-9.0.1-lp152.2.3.65.x86_64.rpm
libc++abi-devel-9.0.1-lp152.2.3.65.x86_64.rpm
libc++abi1-9.0.1-lp152.2.3.65.x86_64.rpm
libc++abi1-debuginfo-9.0.1-lp152.2.3.65.x86_64.rpm
libclang9-9.0.1-lp152.2.3.65.x86_64.rpm
libclang9-debuginfo-9.0.1-lp152.2.3.65.x86_64.rpm
liblldb9-9.0.1-lp152.2.3.65.x86_64.rpm
liblldb9-debuginfo-9.0.1-lp152.2.3.65.x86_64.rpm
libomp9-devel-9.0.1-lp152.2.3.65.x86_64.rpm
libomp9-devel-debuginfo-9.0.1-lp152.2.3.65.x86_64.rpm
lld9-9.0.1-lp152.2.3.65.x86_64.rpm
lld9-debuginfo-9.0.1-lp152.2.3.65.x86_64.rpm
lldb9-9.0.1-lp152.2.3.65.x86_64.rpm
lldb9-debuginfo-9.0.1-lp152.2.3.65.x86_64.rpm
lldb9-devel-9.0.1-lp152.2.3.65.x86_64.rpm
llvm9-9.0.1-lp152.2.3.65.src.rpm
llvm9-9.0.1-lp152.2.3.65.x86_64.rpm
llvm9-LTO-devel-9.0.1-lp152.2.3.65.x86_64.rpm
llvm9-debuginfo-9.0.1-lp152.2.3.65.x86_64.rpm
llvm9-debugsource-9.0.1-lp152.2.3.65.x86_64.rpm
llvm9-devel-9.0.1-lp152.2.3.65.x86_64.rpm
llvm9-devel-debuginfo-9.0.1-lp152.2.3.65.x86_64.rpm
llvm9-doc-9.0.1-lp152.2.3.65.noarch.rpm
llvm9-gold-9.0.1-lp152.2.3.65.x86_64.rpm
llvm9-gold-debuginfo-9.0.1-lp152.2.3.65.x86_64.rpm
llvm9-opt-viewer-9.0.1-lp152.2.3.65.noarch.rpm
llvm9-polly-9.0.1-lp152.2.3.65.x86_64.rpm
llvm9-polly-debuginfo-9.0.1-lp152.2.3.65.x86_64.rpm
llvm9-polly-devel-9.0.1-lp152.2.3.65.x86_64.rpm
llvm9-vim-plugins-9.0.1-lp152.2.3.65.noarch.rpm
python3-clang-9.0.1-lp152.2.3.65.noarch.rpm
python3-lldb9-9.0.1-lp152.2.3.65.x86_64.rpm
clang9-9.0.1-lp152.2.3.65.i586.rpm
clang9-checker-9.0.1-lp152.2.3.65.i586.rpm
clang9-debuginfo-9.0.1-lp152.2.3.65.i586.rpm
clang9-devel-32bit-9.0.1-lp152.2.3.65.x86_64.rpm
clang9-devel-9.0.1-lp152.2.3.65.i586.rpm
libLLVM9-32bit-9.0.1-lp152.2.3.65.x86_64.rpm
libLLVM9-32bit-debuginfo-9.0.1-lp152.2.3.65.x86_64.rpm
libLLVM9-9.0.1-lp152.2.3.65.i586.rpm
libLLVM9-debuginfo-9.0.1-lp152.2.3.65.i586.rpm
libLTO9-32bit-9.0.1-lp152.2.3.65.x86_64.rpm
libLTO9-32bit-debuginfo-9.0.1-lp152.2.3.65.x86_64.rpm
libLTO9-9.0.1-lp152.2.3.65.i586.rpm
libLTO9-debuginfo-9.0.1-lp152.2.3.65.i586.rpm
libclang9-32bit-9.0.1-lp152.2.3.65.x86_64.rpm
libclang9-32bit-debuginfo-9.0.1-lp152.2.3.65.x86_64.rpm
libclang9-9.0.1-lp152.2.3.65.i586.rpm
libclang9-debuginfo-9.0.1-lp152.2.3.65.i586.rpm
libomp9-devel-9.0.1-lp152.2.3.65.i586.rpm
libomp9-devel-debuginfo-9.0.1-lp152.2.3.65.i586.rpm
lld9-9.0.1-lp152.2.3.65.i586.rpm
lld9-debuginfo-9.0.1-lp152.2.3.65.i586.rpm
llvm9-9.0.1-lp152.2.3.65.i586.rpm
llvm9-LTO-devel-32bit-9.0.1-lp152.2.3.65.x86_64.rpm
llvm9-LTO-devel-9.0.1-lp152.2.3.65.i586.rpm
llvm9-debuginfo-9.0.1-lp152.2.3.65.i586.rpm
llvm9-debugsource-9.0.1-lp152.2.3.65.i586.rpm
llvm9-devel-32bit-9.0.1-lp152.2.3.65.x86_64.rpm
llvm9-devel-32bit-debuginfo-9.0.1-lp152.2.3.65.x86_64.rpm
llvm9-devel-9.0.1-lp152.2.3.65.i586.rpm
llvm9-devel-debuginfo-9.0.1-lp152.2.3.65.i586.rpm
llvm9-gold-9.0.1-lp152.2.3.65.i586.rpm
llvm9-gold-debuginfo-9.0.1-lp152.2.3.65.i586.rpm
llvm9-polly-9.0.1-lp152.2.3.65.i586.rpm
llvm9-polly-debuginfo-9.0.1-lp152.2.3.65.i586.rpm
llvm9-polly-devel-9.0.1-lp152.2.3.65.i586.rpm
15787
Recommended update for obs-service-tar_scm
moderate
openSUSE Leap 15.2 Update
This update for obs-service-tar_scm fixes the following issues:
obs-service-tar_scm was updated to version 0.10.21.1612422695.2fdf897:
* fixes user obsservicerun and group obsrun don't exist (boo#1168573)
* don not sanitize version if versionrewrite_pattern is set
Update to version 0.10.20.1606128060.135ac94:
* fix build for CentOS adn RHEL 8
* filter dirs with "include" filter option
Update to version 0.10.19.1605080719.3b79112:
* [dist] prefer python3 over python2
Update to version 0.10.18.1600256320.569e5be:
* add license file (issue 257)
* additional option verification
* new option '--maintainers-asc' and '--last-signed-tag'
* new option '--latest-signed-commit'
* Remove superflous ')' in an error message.
Update to version 0.10.16.1595245235.15a0df2:
* Build with python 3 for Debian and Ubuntu
* [doc] added allowed urls in documentation of tar_scm.service
Update to version 0.10.16.1590752286.5c27247:
* fix situation when revision has been modified in _service
Update to version 0.10.15.1588842879.5c43eef:
Update to version 0.10.15.1588146746.5cfeeb8:
* fix #boo 1168573 (obsservicerun,obsrun) not exists in client side installation
* Helpers: when a command fail, print the command itself too with its output
* git: add support for @PARENT_TAG@ in revision
* Fix build on non-openSUSE distro
Update to version 0.10.14.1583853599.ccbb399:
* support server side credentials for SCM repos
Update to version 0.10.12.1582901608.a1c02c1:
* simplify osc git update case a lot
* fixing revision usage on a commit hash
Update to version 0.10.12.1582709176.d82a692:
* fix lost commits on local run
* fix breakage when working on a specific tag/commit
* git-lfs should not be mandatory as tar_scm will never use it
* Allow use of git-lfs only when running obs_scm
* Document _none_ special version in .service
* Version cleanup: don't strip hyphen when building Debian packages
* Add new archive option for Debian: git-buildpackage
* call git stash with LANG=C
* improved comment for method get_changesrevision
* Add debian package dep to git-lfs
* Implement git LFS blobs retrieval
Update to version 0.10.11.1579870213.888e79c:
* Add testcase for appimage with empty build section
* Handle missing build entry in appimage.yml
* Fix --mirror argument position for git clone
* Re-enable compatibility with Python 2.6
* fix decoding for locale -a containg non-ASCII
* update_cache in git now does merge
* prefer local branch over remote
* added UnicodeDecodeError to exeption list in archive.py
* fetch rev explicitly if using CACHEDIRECTORY and rev could not be found
* tar_scm.service.in: Add example to match-tag.
Update to version 0.10.10.1566390389.9f923f8:
* Revert "Merge pull request #323 from e4t/master"
* Make service 'tar' work with a cachedir as well
* Fix unit tests for modified scm directory handling
* Append '_service' to repository directory
* separate language and encoding
* git: really print the error message
* tar_scm.service: fix exclude documentation
* Don`t break testsuite if cwd contains colons
* disabling hg tests in travis
Update to version 0.10.9.1557261720.32a1cdb:
* fix encoding error for surrogates
Update to version 0.10.7.1556277536.7e9915a:
* Git also uses the LANGUAGE variable
* centos_version and rhel_version are triple digits
* Minimize diff with the version in openSUSE:Tools
* Fix the logic to pick the locale package on Fedora
* Forgot the guard 0 in one conditional
Update to version 0.10.6.1551887937.e42c270:
* Require packages to get the en_US.UTF-8 locales
Update to version 0.10.6.1551448746.2759df2:
* enforce bytes for cpio file list
* fixes breaks with unicode in filenames (boo#1127907)
obs-service-appimage-0.10.21.1612422695.2fdf897-lp152.2.3.1.noarch.rpm
obs-service-obs_scm-0.10.21.1612422695.2fdf897-lp152.2.3.1.noarch.rpm
obs-service-obs_scm-common-0.10.21.1612422695.2fdf897-lp152.2.3.1.noarch.rpm
obs-service-snapcraft-0.10.21.1612422695.2fdf897-lp152.2.3.1.noarch.rpm
obs-service-tar-0.10.21.1612422695.2fdf897-lp152.2.3.1.noarch.rpm
obs-service-tar_scm-0.10.21.1612422695.2fdf897-lp152.2.3.1.noarch.rpm
obs-service-tar_scm-0.10.21.1612422695.2fdf897-lp152.2.3.1.src.rpm
obs-service-tar_scm-test-0.10.21.1612422695.2fdf897-lp152.2.3.1.src.rpm
16331
Security update for cgal
important
openSUSE Leap 15.2 Update
This update for cgal fixes the following issues:
cgal was updated to 5.2.1
* See https://github.com/CGAL/cgal/pulls?utf8=%E2%9C%93&q=label%3AMerged_in_5.2.1
Update to 5.2.0:
* Fixed multiple code execution vulnerabilities:
boo#1184975 ( CVE-2020-35636 ), boo#1184977 ( CVE-2020-28636 ),
boo#1184973 ( CVE-2020-28601 ) and boo#1184978 ( CVE-2020-35628 )
* For full list of other changes, see:
https://www.cgal.org/2020/12/22/cgal52/
Update to 5.1.1:
See https://github.com/CGAL/cgal/pulls?utf8=%E2%9C%93&q=label%3AMerged_in_5.1.1
update to version 5.1
Many news, see https://github.com/CGAL/cgal/releases/tag/v5.1
Update to version 5.0.2
* various small bugfixes
Update to version 5.0.1
* fixes a performance regression in 3D Triangulations, when using
the Parallel_tag
Update to version 5.0.0
* requires g++ 6.3 or later
* requires boost 1.57.0 or later
* new Polygonal Surface Reconstruction
* See https://www.cgal.org/2019/11/08/cgal50/ for details
- Fix build on x86_64 and some other, do not force -fPIE, -fPIC would be
needed but is the default already.
Update to 4.14:
* new 2D Periodic Hyperbolic Triangulations
* new 2D Hyperbolic Triangulations
* new The Heat Method
* new Triangulated Surface Mesh Approximation
* For bugfixes and details see:
https://www.cgal.org/2019/03/29/cgal414/
Update to 4.13:
* Added: 3D Periodic Mesh Generation
* Classification package can now handle classification of surface
meshes and clusters, and can compute features in parallel.
* For list of more changes and bugfixes see:
https://www.cgal.org/2018/10/01/cgal413/
Update to 4.12.1:
Please see https://github.com/CGAL/cgal/milestone/33?closed=1
for the full list of fixed bugs
cgal-5.2.1-lp152.3.3.1.src.rpm
cgal-debuginfo-5.2.1-lp152.3.3.1.x86_64.rpm
cgal-debugsource-5.2.1-lp152.3.3.1.x86_64.rpm
cgal-demo-examples-devel-5.2.1-lp152.3.3.1.noarch.rpm
cgal-devel-5.2.1-lp152.3.3.1.x86_64.rpm
cgal-doc-5.2.1-lp152.3.3.1.noarch.rpm
libCGAL13-5.2.1-lp152.3.3.1.x86_64.rpm
libCGAL13-debuginfo-5.2.1-lp152.3.3.1.x86_64.rpm
libCGAL_Core13-5.2.1-lp152.3.3.1.x86_64.rpm
libCGAL_Core13-debuginfo-5.2.1-lp152.3.3.1.x86_64.rpm
libCGAL_ImageIO14-5.2.1-lp152.3.3.1.x86_64.rpm
libCGAL_ImageIO14-debuginfo-5.2.1-lp152.3.3.1.x86_64.rpm
libCGAL_Qt5-14-5.2.1-lp152.3.3.1.x86_64.rpm
libCGAL_Qt5-14-debuginfo-5.2.1-lp152.3.3.1.x86_64.rpm
16569
Recommended update for python-six
moderate
openSUSE Leap 15.2 Update
This update for python-six fixes the following issue:
- python-six had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead
to migration issues. (bsc#1186642)
python-six-1.14.0-lp152.4.9.1.src.rpm
python2-six-1.14.0-lp152.4.9.1.noarch.rpm
python3-six-1.14.0-lp152.4.9.1.noarch.rpm
python-six-doc-1.14.0-lp152.4.9.1.noarch.rpm
python-six-test-1.14.0-lp152.4.9.1.src.rpm
16811
Security update for ansible
moderate
openSUSE Leap 15.2 Update
This update for ansible to version 2.9.6 fixes the following issues:
Security issues fixed:
- CVE-2019-14904: Fixed a vulnerability in solaris_zone module via crafted solaris zone (boo#1157968).
- CVE-2019-14905: Fixed an issue where malicious code could craft filename in nxos_file_copy module (boo#1157969).
- CVE-2019-14864: Fixed Splunk and Sumologic callback plugins leak sensitive data in logs (boo#1154830).
- CVE-2019-14846: Fixed secrets disclosure on logs due to display is hardcoded to DEBUG level (boo#1153452)
- CVE-2019-14856: Fixed insufficient fix for CVE-2019-10206 (boo#1154232)
- CVE-2019-14858: Fixed data in the sub parameter fields that will not be masked
and will be displayed when run with increased verbosity (boo#1154231)
- CVE-2019-10206: ansible-playbook -k and ansible cli tools prompt passwords by
expanding them from templates as they could contain special characters.
Passwords should be wrapped to prevent templates trigger and exposing them. (boo#1142690)
- CVE-2019-10217: Fields managing sensitive data should be set as such by no_log
feature. Some of these fields in GCP modules are not set properly.
service_account_contents() which is common class for all gcp modules is not
setting no_log to True. Any sensitive data managed by that function would be
leak as an output when running ansible playbooks. (boo#1144453)
This update was imported from the openSUSE:Leap:15.1:Update update project.
ansible-2.9.6-lp152.2.8.1.noarch.rpm
ansible-2.9.6-lp152.2.8.1.src.rpm
ansible-doc-2.9.6-lp152.2.8.1.noarch.rpm
ansible-test-2.9.6-lp152.2.8.1.noarch.rpm
16965
Recommended update for grub2, efibootmgr
moderate
openSUSE Leap 15.2 Update
This update for grub2, efibootmgr provides the following fixes:
- Ship package grub2-arm64-efi and the required efibootmgr also to ppc64le, s390x and x86_64 (bsc#1186565)
- Fix error gfxterm isn't found with multiple terminals (bsc#1187565)
- Fix ocasional boot failure after kdump procedure when using XFS (bsc#1186975)
This update was imported from the SUSE:SLE-15-SP2:Update update project.
grub2-2.04-lp152.7.31.3.src.rpm
grub2-2.04-lp152.7.31.3.x86_64.rpm
grub2-branding-upstream-2.04-lp152.7.31.3.x86_64.rpm
grub2-debuginfo-2.04-lp152.7.31.3.x86_64.rpm
grub2-debugsource-2.04-lp152.7.31.3.x86_64.rpm
grub2-i386-pc-2.04-lp152.7.31.3.noarch.rpm
grub2-i386-pc-debug-2.04-lp152.7.31.3.noarch.rpm
grub2-snapper-plugin-2.04-lp152.7.31.3.noarch.rpm
grub2-systemd-sleep-plugin-2.04-lp152.7.31.3.noarch.rpm
grub2-x86_64-efi-2.04-lp152.7.31.3.noarch.rpm
grub2-x86_64-efi-debug-2.04-lp152.7.31.3.noarch.rpm
grub2-x86_64-xen-2.04-lp152.7.31.3.noarch.rpm
grub2-2.04-lp152.7.31.3.i586.rpm
grub2-branding-upstream-2.04-lp152.7.31.3.i586.rpm
grub2-debuginfo-2.04-lp152.7.31.3.i586.rpm
grub2-debugsource-2.04-lp152.7.31.3.i586.rpm
grub2-i386-efi-2.04-lp152.7.31.3.noarch.rpm
grub2-i386-efi-debug-2.04-lp152.7.31.3.noarch.rpm
grub2-i386-xen-2.04-lp152.7.31.3.noarch.rpm
16988
Recommended update for apache2-mod_wsgi
moderate
openSUSE Leap 15.2 Update
This update for apache2-mod_wsgi fixes the following issue:
- Enable installation of Python 'sitelib' wrapper. (bsc#1189467)
- This update will solve a 'DistributionNotFound' error providing the Python metadata and wrapper for 'mod_wsgi'.
This update was imported from the SUSE:SLE-15:Update update project.
apache2-mod_wsgi-python3-4.5.18-lp152.5.3.1.src.rpm
apache2-mod_wsgi-python3-4.5.18-lp152.5.3.1.x86_64.rpm
apache2-mod_wsgi-python3-debuginfo-4.5.18-lp152.5.3.1.x86_64.rpm
apache2-mod_wsgi-python3-debugsource-4.5.18-lp152.5.3.1.x86_64.rpm
apache2-mod_wsgi-4.5.18-lp152.5.3.1.src.rpm
apache2-mod_wsgi-4.5.18-lp152.5.3.1.x86_64.rpm
apache2-mod_wsgi-debuginfo-4.5.18-lp152.5.3.1.x86_64.rpm
apache2-mod_wsgi-debugsource-4.5.18-lp152.5.3.1.x86_64.rpm
16998
Security update for mupdf
important
openSUSE Leap 15.2 Update
This update for mupdf fixes the following issues:
- CVE-2020-19609: Fixed heap-based buffer overflow in tiff_expand_colormap() when parsing TIFF files (boo#1190176)
- CVE-2020-16600: Fixed use-after-free when a valid page was followed by a page with invalid pixmap dimensions (boo#1190175)
mupdf-1.12.0-lp152.6.3.1.src.rpm
mupdf-1.12.0-lp152.6.3.1.x86_64.rpm
mupdf-debuginfo-1.12.0-lp152.6.3.1.x86_64.rpm
mupdf-debugsource-1.12.0-lp152.6.3.1.x86_64.rpm
mupdf-devel-static-1.12.0-lp152.6.3.1.x86_64.rpm
mupdf-1.12.0-lp152.6.3.1.i586.rpm
mupdf-debuginfo-1.12.0-lp152.6.3.1.i586.rpm
mupdf-debugsource-1.12.0-lp152.6.3.1.i586.rpm
mupdf-devel-static-1.12.0-lp152.6.3.1.i586.rpm
17010
Security update for chromium
important
openSUSE Leap 15.2 Update
This update for chromium fixes the following issues:
Chromium 94.0.4606.54 (boo#1190765):
* CVE-2021-37956: Use after free in Offline use
* CVE-2021-37957: Use after free in WebGPU
* CVE-2021-37958: Inappropriate implementation in Navigation
* CVE-2021-37959: Use after free in Task Manager
* CVE-2021-37960: Inappropriate implementation in Blink graphics
* CVE-2021-37961: Use after free in Tab Strip
* CVE-2021-37962: Use after free in Performance Manager
* CVE-2021-37963: Side-channel information leakage in DevTools
* CVE-2021-37964: Inappropriate implementation in ChromeOS Networking
* CVE-2021-37965: Inappropriate implementation in Background Fetch API
* CVE-2021-37966: Inappropriate implementation in Compositing
* CVE-2021-37967: Inappropriate implementation in Background Fetch API
* CVE-2021-37968: Inappropriate implementation in Background Fetch API
* CVE-2021-37969: Inappropriate implementation in Google Updater
* CVE-2021-37970: Use after free in File System API
* CVE-2021-37971: Incorrect security UI in Web Browser UI
* CVE-2021-37972: Out of bounds read in libjpeg-turbo
Chromium 94.0.4606.61 (boo#1191166):
* CVE-2021-37973: Use after free in Portals
Chromium 94.0.4606.71 (boo#1191204):
* CVE-2021-37974 : Use after free in Safe Browsing
* CVE-2021-37975 : Use after free in V8
* CVE-2021-37976 : Information leak in core
chromedriver-94.0.4606.71-lp152.2.128.1.x86_64.rpm
chromedriver-debuginfo-94.0.4606.71-lp152.2.128.1.x86_64.rpm
chromium-94.0.4606.71-lp152.2.128.1.src.rpm
chromium-94.0.4606.71-lp152.2.128.1.x86_64.rpm
chromium-debuginfo-94.0.4606.71-lp152.2.128.1.x86_64.rpm
17013
Security update for mbedtls
moderate
openSUSE Leap 15.2 Update
This update for mbedtls fixes the following issues:
* CVE-2021-24119: Fixed side-channel vulnerability in base64 PEM [boo#1189589]
Guard against strong local side channel attack against base64 tables by making access aceess to them use constant flow code.
libmbedcrypto3-2.16.9-lp152.2.6.1.x86_64.rpm
libmbedcrypto3-debuginfo-2.16.9-lp152.2.6.1.x86_64.rpm
libmbedtls12-2.16.9-lp152.2.6.1.x86_64.rpm
libmbedtls12-debuginfo-2.16.9-lp152.2.6.1.x86_64.rpm
libmbedx509-0-2.16.9-lp152.2.6.1.x86_64.rpm
libmbedx509-0-debuginfo-2.16.9-lp152.2.6.1.x86_64.rpm
mbedtls-2.16.9-lp152.2.6.1.src.rpm
mbedtls-debugsource-2.16.9-lp152.2.6.1.x86_64.rpm
mbedtls-devel-2.16.9-lp152.2.6.1.x86_64.rpm
libmbedcrypto3-2.16.9-lp152.2.6.1.i586.rpm
libmbedcrypto3-32bit-2.16.9-lp152.2.6.1.x86_64.rpm
libmbedcrypto3-32bit-debuginfo-2.16.9-lp152.2.6.1.x86_64.rpm
libmbedcrypto3-debuginfo-2.16.9-lp152.2.6.1.i586.rpm
libmbedtls12-2.16.9-lp152.2.6.1.i586.rpm
libmbedtls12-32bit-2.16.9-lp152.2.6.1.x86_64.rpm
libmbedtls12-32bit-debuginfo-2.16.9-lp152.2.6.1.x86_64.rpm
libmbedtls12-debuginfo-2.16.9-lp152.2.6.1.i586.rpm
libmbedx509-0-2.16.9-lp152.2.6.1.i586.rpm
libmbedx509-0-32bit-2.16.9-lp152.2.6.1.x86_64.rpm
libmbedx509-0-32bit-debuginfo-2.16.9-lp152.2.6.1.x86_64.rpm
libmbedx509-0-debuginfo-2.16.9-lp152.2.6.1.i586.rpm
mbedtls-debugsource-2.16.9-lp152.2.6.1.i586.rpm
mbedtls-devel-2.16.9-lp152.2.6.1.i586.rpm
17014
Security update for curl
moderate
openSUSE Leap 15.2 Update
This update for curl fixes the following issues:
- CVE-2021-22947: Fixed STARTTLS protocol injection via MITM (bsc#1190374).
- CVE-2021-22946: Fixed protocol downgrade required TLS bypassed (bsc#1190373).
This update was imported from the SUSE:SLE-15-SP2:Update update project.
curl-mini-7.66.0-lp152.3.24.1.src.rpm
curl-mini-7.66.0-lp152.3.24.1.x86_64.rpm
curl-mini-debuginfo-7.66.0-lp152.3.24.1.x86_64.rpm
curl-mini-debugsource-7.66.0-lp152.3.24.1.x86_64.rpm
libcurl-mini-devel-7.66.0-lp152.3.24.1.x86_64.rpm
libcurl4-mini-7.66.0-lp152.3.24.1.x86_64.rpm
libcurl4-mini-debuginfo-7.66.0-lp152.3.24.1.x86_64.rpm
curl-7.66.0-lp152.3.24.1.src.rpm
curl-7.66.0-lp152.3.24.1.x86_64.rpm
curl-debuginfo-7.66.0-lp152.3.24.1.x86_64.rpm
curl-debugsource-7.66.0-lp152.3.24.1.x86_64.rpm
libcurl-devel-7.66.0-lp152.3.24.1.x86_64.rpm
libcurl4-7.66.0-lp152.3.24.1.x86_64.rpm
libcurl4-debuginfo-7.66.0-lp152.3.24.1.x86_64.rpm
curl-mini-7.66.0-lp152.3.24.1.i586.rpm
curl-mini-debuginfo-7.66.0-lp152.3.24.1.i586.rpm
curl-mini-debugsource-7.66.0-lp152.3.24.1.i586.rpm
libcurl-mini-devel-7.66.0-lp152.3.24.1.i586.rpm
libcurl4-mini-7.66.0-lp152.3.24.1.i586.rpm
libcurl4-mini-debuginfo-7.66.0-lp152.3.24.1.i586.rpm
curl-7.66.0-lp152.3.24.1.i586.rpm
curl-debuginfo-7.66.0-lp152.3.24.1.i586.rpm
curl-debugsource-7.66.0-lp152.3.24.1.i586.rpm
libcurl-devel-32bit-7.66.0-lp152.3.24.1.x86_64.rpm
libcurl-devel-7.66.0-lp152.3.24.1.i586.rpm
libcurl4-32bit-7.66.0-lp152.3.24.1.x86_64.rpm
libcurl4-32bit-debuginfo-7.66.0-lp152.3.24.1.x86_64.rpm
libcurl4-7.66.0-lp152.3.24.1.i586.rpm
libcurl4-debuginfo-7.66.0-lp152.3.24.1.i586.rpm
17015
Security update for git
low
openSUSE Leap 15.2 Update
This update for git fixes the following issues:
- CVE-2021-40330: Fixed unexpected cross-protocol requests via newline character in git_connect_git repository path (bsc#1189992).
This update was imported from the SUSE:SLE-15:Update update project.
git-2.26.2-lp152.2.12.1.src.rpm
git-2.26.2-lp152.2.12.1.x86_64.rpm
git-arch-2.26.2-lp152.2.12.1.x86_64.rpm
git-core-2.26.2-lp152.2.12.1.x86_64.rpm
git-core-debuginfo-2.26.2-lp152.2.12.1.x86_64.rpm
git-credential-gnome-keyring-2.26.2-lp152.2.12.1.x86_64.rpm
git-credential-gnome-keyring-debuginfo-2.26.2-lp152.2.12.1.x86_64.rpm
git-credential-libsecret-2.26.2-lp152.2.12.1.x86_64.rpm
git-credential-libsecret-debuginfo-2.26.2-lp152.2.12.1.x86_64.rpm
git-cvs-2.26.2-lp152.2.12.1.x86_64.rpm
git-daemon-2.26.2-lp152.2.12.1.x86_64.rpm
git-daemon-debuginfo-2.26.2-lp152.2.12.1.x86_64.rpm
git-debuginfo-2.26.2-lp152.2.12.1.x86_64.rpm
git-debugsource-2.26.2-lp152.2.12.1.x86_64.rpm
git-doc-2.26.2-lp152.2.12.1.noarch.rpm
git-email-2.26.2-lp152.2.12.1.x86_64.rpm
git-gui-2.26.2-lp152.2.12.1.x86_64.rpm
git-p4-2.26.2-lp152.2.12.1.x86_64.rpm
git-svn-2.26.2-lp152.2.12.1.x86_64.rpm
git-svn-debuginfo-2.26.2-lp152.2.12.1.x86_64.rpm
git-web-2.26.2-lp152.2.12.1.x86_64.rpm
gitk-2.26.2-lp152.2.12.1.x86_64.rpm
git-2.26.2-lp152.2.12.1.i586.rpm
git-arch-2.26.2-lp152.2.12.1.i586.rpm
git-core-2.26.2-lp152.2.12.1.i586.rpm
git-core-debuginfo-2.26.2-lp152.2.12.1.i586.rpm
git-credential-gnome-keyring-2.26.2-lp152.2.12.1.i586.rpm
git-credential-gnome-keyring-debuginfo-2.26.2-lp152.2.12.1.i586.rpm
git-credential-libsecret-2.26.2-lp152.2.12.1.i586.rpm
git-credential-libsecret-debuginfo-2.26.2-lp152.2.12.1.i586.rpm
git-cvs-2.26.2-lp152.2.12.1.i586.rpm
git-daemon-2.26.2-lp152.2.12.1.i586.rpm
git-daemon-debuginfo-2.26.2-lp152.2.12.1.i586.rpm
git-debuginfo-2.26.2-lp152.2.12.1.i586.rpm
git-debugsource-2.26.2-lp152.2.12.1.i586.rpm
git-email-2.26.2-lp152.2.12.1.i586.rpm
git-gui-2.26.2-lp152.2.12.1.i586.rpm
git-p4-2.26.2-lp152.2.12.1.i586.rpm
git-svn-2.26.2-lp152.2.12.1.i586.rpm
git-svn-debuginfo-2.26.2-lp152.2.12.1.i586.rpm
git-web-2.26.2-lp152.2.12.1.i586.rpm
gitk-2.26.2-lp152.2.12.1.i586.rpm
17016
Security update for go1.16
important
openSUSE Leap 15.2 Update
This update for go1.16 fixes the following issues:
- Update to go 1.16.8
- CVE-2021-39293: Fixed a buffer overflow issue in preallocation check that can cause OOM panic. (bas#)
This update was imported from the SUSE:SLE-15:Update update project.
go1.16-1.16.8-lp152.11.1.src.rpm
go1.16-1.16.8-lp152.11.1.x86_64.rpm
go1.16-doc-1.16.8-lp152.11.1.x86_64.rpm
go1.16-race-1.16.8-lp152.11.1.x86_64.rpm
17018
Recommended update for autoyast2
moderate
openSUSE Leap 15.2 Update
This update for autoyast2 fixes the following issues:
- Update elements on rules schema:
Add 'hostname' (bsc#1190696).
Remove wrong spelled 'haspcmica' (bsc#1183352).
Add installed_product and installed_product_version (boo#1176089).
Add dialog section (bsc#1188153).
This update was imported from the SUSE:SLE-15-SP2:Update update project.
autoyast2-4.2.56-lp152.2.18.1.noarch.rpm
autoyast2-4.2.56-lp152.2.18.1.src.rpm
autoyast2-installation-4.2.56-lp152.2.18.1.noarch.rpm
yast2-schema-4.2.15-lp152.2.6.1.src.rpm
yast2-schema-4.2.15-lp152.2.6.1.x86_64.rpm
17020
Recommended update for sudo
moderate
openSUSE Leap 15.2 Update
This update for sudo fixes the following issues:
- Update to sudo 1.8.27 (jsc#SLE-17083).
- Fixed special handling of ipa_hostname (bsc#1181371).
- Restore sudo ldap behavior to ignore expire dates when SUDOERS_TIMED option is not set in /etc/ldap.conf (bsc#1176473).
This update was imported from the SUSE:SLE-15:Update update project.
sudo-1.8.27-lp152.8.12.1.src.rpm
sudo-1.8.27-lp152.8.12.1.x86_64.rpm
sudo-debuginfo-1.8.27-lp152.8.12.1.x86_64.rpm
sudo-debugsource-1.8.27-lp152.8.12.1.x86_64.rpm
sudo-devel-1.8.27-lp152.8.12.1.x86_64.rpm
sudo-test-1.8.27-lp152.8.12.1.x86_64.rpm
sudo-1.8.27-lp152.8.12.1.i586.rpm
sudo-debuginfo-1.8.27-lp152.8.12.1.i586.rpm
sudo-debugsource-1.8.27-lp152.8.12.1.i586.rpm
sudo-devel-1.8.27-lp152.8.12.1.i586.rpm
sudo-test-1.8.27-lp152.8.12.1.i586.rpm
17021
Recommended update for virt-what
moderate
openSUSE Leap 15.2 Update
This update for virt-what fixes the following issues:
- Nutanix Acropolis Hypervisor detection
- podman detection
- Add "which" to requires
This update was imported from the SUSE:SLE-15:Update update project.
virt-what-1.21-lp152.4.3.1.src.rpm
virt-what-1.21-lp152.4.3.1.x86_64.rpm
virt-what-debuginfo-1.21-lp152.4.3.1.x86_64.rpm
virt-what-debugsource-1.21-lp152.4.3.1.x86_64.rpm
17022
Recommended update for kdump
moderate
openSUSE Leap 15.2 Update
This update for kdump fixes the following issues:
- Do not iterate past end of string (bsc#1186037).
- Query systemd network.service to find out if wicked is used (bsc#1182309).
- Add 'bootdev=' to dracut command line (bsc#1182309).
- Fix incorrect exit code checking after "local" with assignment (bsc#1184616).
- Do not add network-related dracut options if ip= is set explicitly (bsc#1182309, bsc#1188090).
- Make sure that initrd.target.wants directory exists (bsc#1172670).
- Install /etc/resolv.conf using its resolved path (bsc#1183070).
- Avoid an endless loop when resolving a hostname fails with EAI_AGAIN (bsc#1183070).
This update was imported from the SUSE:SLE-15-SP2:Update update project.
kdump-0.9.0-lp152.7.6.1.src.rpm
kdump-0.9.0-lp152.7.6.1.x86_64.rpm
kdump-debuginfo-0.9.0-lp152.7.6.1.x86_64.rpm
kdump-debugsource-0.9.0-lp152.7.6.1.x86_64.rpm
kdump-0.9.0-lp152.7.6.1.i586.rpm
kdump-debuginfo-0.9.0-lp152.7.6.1.i586.rpm
kdump-debugsource-0.9.0-lp152.7.6.1.i586.rpm