SUSE 5184 Published by

The following updates have been released for openSUSE Leap and SUSE Linux Enterprise:

SUSE-SU-2024:1900-1: low: Security update for poppler
SUSE-SU-2024:1907-1: important: Security update for ffmpeg-4
SUSE-SU-2024:1906-1: moderate: Security update for 389-ds
SUSE-SU-2024:1922-1: moderate: Security update for mariadb104
SUSE-SU-2024:1908-1: important: Security update for ffmpeg
SUSE-SU-2024:1909-1: important: Security update for ffmpeg-4
SUSE-SU-2024:1910-1: important: Security update for gstreamer-plugins-base
SUSE-SU-2024:1896-1: moderate: Security update for squid
SUSE-SU-2024:1874-1: important: Security update for Java
SUSE-SU-2024:1895-1: important: Security update for glibc
SUSE-SU-2024:1880-1: moderate: Security update for python-requests
SUSE-SU-2024:1882-1: important: Security update for gstreamer-plugins-base
SUSE-SU-2024:1557-2: moderate: Security update for rpm
SUSE-SU-2024:1830-1: low: Security update for glib2
SUSE-SU-2024:1838-1: important: Security update for warewulf4
SUSE-SU-2024:1837-1: low: Security update for nodejs16
SUSE-SU-2024:1813-1: important: Security update for the Linux Kernel
SUSE-SU-2024:1806-1: important: Security update for xdg-desktop-portal
SUSE-SU-2024:1807-1: important: Security update for git
SUSE-SU-2024:1808-1: moderate: Security update for openssl-1_1
SUSE-SU-2024:0461-2: important: Security update for libxml2
SUSE-SU-2024:1803-1: important: Security update for xdg-desktop-portal
SUSE-SU-2024:1793-1: moderate: Security update for java-1_8_0-openj9
SUSE-SU-2024:1789-1: moderate: Security update for openssl-3
SUSE-SU-2024:1777-1: moderate: Security update for postgresql15
SUSE-SU-2024:1770-1: important: Security update for MozillaFirefox
SUSE-SU-2024:1767-1: important: Security update for python-sqlparse
SUSE-SU-2024:1768-1: moderate: Security update for postgresql14
openSUSE-SU-2024:0150-1: moderate: Security update for libhtp




SUSE-SU-2024:1900-1: low: Security update for poppler


# Security update for poppler

Announcement ID: SUSE-SU-2024:1900-1
Rating: low
References:

* bsc#1223375

Cross-References:

* CVE-2024-4141

CVSS scores:

* CVE-2024-4141 ( SUSE ): 2.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected Products:

* openSUSE Leap 15.4
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Linux Enterprise Workstation Extension 15 SP5

An update that solves one vulnerability can now be installed.

## Description:

This update for poppler fixes the following issues:

* CVE-2024-4141: Fixed out-of-bounds array write (bsc#1223375).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.4
zypper in -t patch SUSE-2024-1900=1

* SUSE Linux Enterprise Workstation Extension 15 SP5
zypper in -t patch SUSE-SLE-Product-WE-15-SP5-2024-1900=1

## Package List:

* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* libpoppler-glib8-debuginfo-22.01.0-150400.3.19.1
* poppler-tools-22.01.0-150400.3.19.1
* libpoppler-cpp0-22.01.0-150400.3.19.1
* libpoppler117-22.01.0-150400.3.19.1
* libpoppler-qt6-devel-22.01.0-150400.3.19.1
* poppler-qt6-debugsource-22.01.0-150400.3.19.1
* libpoppler-qt6-3-22.01.0-150400.3.19.1
* poppler-debugsource-22.01.0-150400.3.19.1
* libpoppler-qt5-1-22.01.0-150400.3.19.1
* libpoppler-qt6-3-debuginfo-22.01.0-150400.3.19.1
* typelib-1_0-Poppler-0_18-22.01.0-150400.3.19.1
* libpoppler-glib-devel-22.01.0-150400.3.19.1
* poppler-qt5-debugsource-22.01.0-150400.3.19.1
* libpoppler-glib8-22.01.0-150400.3.19.1
* libpoppler-cpp0-debuginfo-22.01.0-150400.3.19.1
* libpoppler-qt5-devel-22.01.0-150400.3.19.1
* libpoppler-qt5-1-debuginfo-22.01.0-150400.3.19.1
* poppler-tools-debuginfo-22.01.0-150400.3.19.1
* libpoppler117-debuginfo-22.01.0-150400.3.19.1
* libpoppler-devel-22.01.0-150400.3.19.1
* openSUSE Leap 15.4 (x86_64)
* libpoppler-qt5-1-32bit-22.01.0-150400.3.19.1
* libpoppler117-32bit-debuginfo-22.01.0-150400.3.19.1
* libpoppler-cpp0-32bit-22.01.0-150400.3.19.1
* libpoppler117-32bit-22.01.0-150400.3.19.1
* libpoppler-qt5-1-32bit-debuginfo-22.01.0-150400.3.19.1
* libpoppler-glib8-32bit-22.01.0-150400.3.19.1
* libpoppler-cpp0-32bit-debuginfo-22.01.0-150400.3.19.1
* libpoppler-glib8-32bit-debuginfo-22.01.0-150400.3.19.1
* openSUSE Leap 15.4 (aarch64_ilp32)
* libpoppler-qt5-1-64bit-22.01.0-150400.3.19.1
* libpoppler-qt5-1-64bit-debuginfo-22.01.0-150400.3.19.1
* libpoppler-glib8-64bit-22.01.0-150400.3.19.1
* libpoppler117-64bit-debuginfo-22.01.0-150400.3.19.1
* libpoppler-glib8-64bit-debuginfo-22.01.0-150400.3.19.1
* libpoppler117-64bit-22.01.0-150400.3.19.1
* libpoppler-cpp0-64bit-22.01.0-150400.3.19.1
* libpoppler-cpp0-64bit-debuginfo-22.01.0-150400.3.19.1
* SUSE Linux Enterprise Workstation Extension 15 SP5 (x86_64)
* poppler-debugsource-22.01.0-150400.3.19.1
* libpoppler117-22.01.0-150400.3.19.1
* libpoppler117-debuginfo-22.01.0-150400.3.19.1

## References:

* https://www.suse.com/security/cve/CVE-2024-4141.html
* https://bugzilla.suse.com/show_bug.cgi?id=1223375



SUSE-SU-2024:1907-1: important: Security update for ffmpeg-4


# Security update for ffmpeg-4

Announcement ID: SUSE-SU-2024:1907-1
Rating: important
References:

* bsc#1186586
* bsc#1223437

Cross-References:

* CVE-2020-22021
* CVE-2023-51794

CVSS scores:

* CVE-2020-22021 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2020-22021 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2023-51794 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H

Affected Products:

* openSUSE Leap 15.4
* openSUSE Leap 15.5
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Linux Enterprise Workstation Extension 15 SP5
* SUSE Package Hub 15 15-SP5

An update that solves two vulnerabilities can now be installed.

## Description:

This update for ffmpeg-4 fixes the following issues:

* CVE-2020-22021: Fixed a buffer overflow vulnerability in filter_edges()
(bsc#1186586)
* CVE-2023-51794: Fixed a heap buffer overflow in libavfilter. (bsc#1223437)

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.4
zypper in -t patch SUSE-2024-1907=1

* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-1907=1

* SUSE Package Hub 15 15-SP5
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1907=1

* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1907=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1907=1

* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1907=1

* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1907=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1907=1

* SUSE Linux Enterprise Workstation Extension 15 SP5
zypper in -t patch SUSE-SLE-Product-WE-15-SP5-2024-1907=1

## Package List:

* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* libavresample4_0-4.4-150400.3.32.1
* libavcodec58_134-debuginfo-4.4-150400.3.32.1
* libavformat58_76-debuginfo-4.4-150400.3.32.1
* libavutil56_70-4.4-150400.3.32.1
* ffmpeg-4-libswscale-devel-4.4-150400.3.32.1
* ffmpeg-4-debuginfo-4.4-150400.3.32.1
* libswscale5_9-4.4-150400.3.32.1
* libavfilter7_110-4.4-150400.3.32.1
* libpostproc55_9-debuginfo-4.4-150400.3.32.1
* ffmpeg-4-libavfilter-devel-4.4-150400.3.32.1
* libavfilter7_110-debuginfo-4.4-150400.3.32.1
* ffmpeg-4-libavutil-devel-4.4-150400.3.32.1
* libavresample4_0-debuginfo-4.4-150400.3.32.1
* libswresample3_9-4.4-150400.3.32.1
* ffmpeg-4-4.4-150400.3.32.1
* libavdevice58_13-4.4-150400.3.32.1
* ffmpeg-4-libavresample-devel-4.4-150400.3.32.1
* libpostproc55_9-4.4-150400.3.32.1
* ffmpeg-4-private-devel-4.4-150400.3.32.1
* ffmpeg-4-debugsource-4.4-150400.3.32.1
* libavformat58_76-4.4-150400.3.32.1
* ffmpeg-4-libpostproc-devel-4.4-150400.3.32.1
* libavdevice58_13-debuginfo-4.4-150400.3.32.1
* ffmpeg-4-libavdevice-devel-4.4-150400.3.32.1
* libavutil56_70-debuginfo-4.4-150400.3.32.1
* libswscale5_9-debuginfo-4.4-150400.3.32.1
* ffmpeg-4-libswresample-devel-4.4-150400.3.32.1
* ffmpeg-4-libavformat-devel-4.4-150400.3.32.1
* libswresample3_9-debuginfo-4.4-150400.3.32.1
* libavcodec58_134-4.4-150400.3.32.1
* ffmpeg-4-libavcodec-devel-4.4-150400.3.32.1
* openSUSE Leap 15.4 (x86_64)
* libavfilter7_110-32bit-4.4-150400.3.32.1
* libavresample4_0-32bit-debuginfo-4.4-150400.3.32.1
* libswresample3_9-32bit-debuginfo-4.4-150400.3.32.1
* libavdevice58_13-32bit-4.4-150400.3.32.1
* libpostproc55_9-32bit-debuginfo-4.4-150400.3.32.1
* libavcodec58_134-32bit-4.4-150400.3.32.1
* libavdevice58_13-32bit-debuginfo-4.4-150400.3.32.1
* libavutil56_70-32bit-debuginfo-4.4-150400.3.32.1
* libswscale5_9-32bit-4.4-150400.3.32.1
* libavresample4_0-32bit-4.4-150400.3.32.1
* libavutil56_70-32bit-4.4-150400.3.32.1
* libavcodec58_134-32bit-debuginfo-4.4-150400.3.32.1
* libswscale5_9-32bit-debuginfo-4.4-150400.3.32.1
* libavformat58_76-32bit-4.4-150400.3.32.1
* libavfilter7_110-32bit-debuginfo-4.4-150400.3.32.1
* libavformat58_76-32bit-debuginfo-4.4-150400.3.32.1
* libpostproc55_9-32bit-4.4-150400.3.32.1
* libswresample3_9-32bit-4.4-150400.3.32.1
* openSUSE Leap 15.4 (aarch64_ilp32)
* libswresample3_9-64bit-debuginfo-4.4-150400.3.32.1
* libavfilter7_110-64bit-4.4-150400.3.32.1
* libavformat58_76-64bit-4.4-150400.3.32.1
* libavresample4_0-64bit-debuginfo-4.4-150400.3.32.1
* libavdevice58_13-64bit-debuginfo-4.4-150400.3.32.1
* libavdevice58_13-64bit-4.4-150400.3.32.1
* libavcodec58_134-64bit-4.4-150400.3.32.1
* libavformat58_76-64bit-debuginfo-4.4-150400.3.32.1
* libavfilter7_110-64bit-debuginfo-4.4-150400.3.32.1
* libswresample3_9-64bit-4.4-150400.3.32.1
* libavresample4_0-64bit-4.4-150400.3.32.1
* libavcodec58_134-64bit-debuginfo-4.4-150400.3.32.1
* libpostproc55_9-64bit-debuginfo-4.4-150400.3.32.1
* libavutil56_70-64bit-debuginfo-4.4-150400.3.32.1
* libpostproc55_9-64bit-4.4-150400.3.32.1
* libswscale5_9-64bit-4.4-150400.3.32.1
* libswscale5_9-64bit-debuginfo-4.4-150400.3.32.1
* libavutil56_70-64bit-4.4-150400.3.32.1
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* libavresample4_0-4.4-150400.3.32.1
* libavcodec58_134-debuginfo-4.4-150400.3.32.1
* libavformat58_76-debuginfo-4.4-150400.3.32.1
* libavutil56_70-4.4-150400.3.32.1
* ffmpeg-4-libswscale-devel-4.4-150400.3.32.1
* ffmpeg-4-debuginfo-4.4-150400.3.32.1
* libswscale5_9-4.4-150400.3.32.1
* libavfilter7_110-4.4-150400.3.32.1
* libpostproc55_9-debuginfo-4.4-150400.3.32.1
* ffmpeg-4-libavfilter-devel-4.4-150400.3.32.1
* libavfilter7_110-debuginfo-4.4-150400.3.32.1
* ffmpeg-4-libavutil-devel-4.4-150400.3.32.1
* libavresample4_0-debuginfo-4.4-150400.3.32.1
* libswresample3_9-4.4-150400.3.32.1
* ffmpeg-4-4.4-150400.3.32.1
* libavdevice58_13-4.4-150400.3.32.1
* ffmpeg-4-libavresample-devel-4.4-150400.3.32.1
* libpostproc55_9-4.4-150400.3.32.1
* ffmpeg-4-private-devel-4.4-150400.3.32.1
* ffmpeg-4-debugsource-4.4-150400.3.32.1
* libavformat58_76-4.4-150400.3.32.1
* ffmpeg-4-libpostproc-devel-4.4-150400.3.32.1
* libavdevice58_13-debuginfo-4.4-150400.3.32.1
* ffmpeg-4-libavdevice-devel-4.4-150400.3.32.1
* libavutil56_70-debuginfo-4.4-150400.3.32.1
* libswscale5_9-debuginfo-4.4-150400.3.32.1
* ffmpeg-4-libswresample-devel-4.4-150400.3.32.1
* ffmpeg-4-libavformat-devel-4.4-150400.3.32.1
* libswresample3_9-debuginfo-4.4-150400.3.32.1
* libavcodec58_134-4.4-150400.3.32.1
* ffmpeg-4-libavcodec-devel-4.4-150400.3.32.1
* openSUSE Leap 15.5 (x86_64)
* libavfilter7_110-32bit-4.4-150400.3.32.1
* libavresample4_0-32bit-debuginfo-4.4-150400.3.32.1
* libswresample3_9-32bit-debuginfo-4.4-150400.3.32.1
* libavdevice58_13-32bit-4.4-150400.3.32.1
* libpostproc55_9-32bit-debuginfo-4.4-150400.3.32.1
* libavcodec58_134-32bit-4.4-150400.3.32.1
* libavdevice58_13-32bit-debuginfo-4.4-150400.3.32.1
* libavutil56_70-32bit-debuginfo-4.4-150400.3.32.1
* libswscale5_9-32bit-4.4-150400.3.32.1
* libavresample4_0-32bit-4.4-150400.3.32.1
* libavutil56_70-32bit-4.4-150400.3.32.1
* libavcodec58_134-32bit-debuginfo-4.4-150400.3.32.1
* libswscale5_9-32bit-debuginfo-4.4-150400.3.32.1
* libavformat58_76-32bit-4.4-150400.3.32.1
* libavfilter7_110-32bit-debuginfo-4.4-150400.3.32.1
* libavformat58_76-32bit-debuginfo-4.4-150400.3.32.1
* libpostproc55_9-32bit-4.4-150400.3.32.1
* libswresample3_9-32bit-4.4-150400.3.32.1
* SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x x86_64)
* libavresample4_0-4.4-150400.3.32.1
* libavcodec58_134-debuginfo-4.4-150400.3.32.1
* libavformat58_76-debuginfo-4.4-150400.3.32.1
* libavutil56_70-4.4-150400.3.32.1
* ffmpeg-4-libswscale-devel-4.4-150400.3.32.1
* ffmpeg-4-debuginfo-4.4-150400.3.32.1
* libswscale5_9-4.4-150400.3.32.1
* libavfilter7_110-4.4-150400.3.32.1
* libpostproc55_9-debuginfo-4.4-150400.3.32.1
* ffmpeg-4-libavfilter-devel-4.4-150400.3.32.1
* libavfilter7_110-debuginfo-4.4-150400.3.32.1
* ffmpeg-4-libavutil-devel-4.4-150400.3.32.1
* libavresample4_0-debuginfo-4.4-150400.3.32.1
* libswresample3_9-4.4-150400.3.32.1
* ffmpeg-4-4.4-150400.3.32.1
* libavdevice58_13-4.4-150400.3.32.1
* ffmpeg-4-libavresample-devel-4.4-150400.3.32.1
* libpostproc55_9-4.4-150400.3.32.1
* ffmpeg-4-private-devel-4.4-150400.3.32.1
* ffmpeg-4-debugsource-4.4-150400.3.32.1
* libavformat58_76-4.4-150400.3.32.1
* ffmpeg-4-libpostproc-devel-4.4-150400.3.32.1
* libavdevice58_13-debuginfo-4.4-150400.3.32.1
* ffmpeg-4-libavdevice-devel-4.4-150400.3.32.1
* libavutil56_70-debuginfo-4.4-150400.3.32.1
* libswscale5_9-debuginfo-4.4-150400.3.32.1
* ffmpeg-4-libswresample-devel-4.4-150400.3.32.1
* ffmpeg-4-libavformat-devel-4.4-150400.3.32.1
* libswresample3_9-debuginfo-4.4-150400.3.32.1
* libavcodec58_134-4.4-150400.3.32.1
* ffmpeg-4-libavcodec-devel-4.4-150400.3.32.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* libpostproc55_9-4.4-150400.3.32.1
* libavcodec58_134-debuginfo-4.4-150400.3.32.1
* libswresample3_9-debuginfo-4.4-150400.3.32.1
* ffmpeg-4-debugsource-4.4-150400.3.32.1
* libavformat58_76-debuginfo-4.4-150400.3.32.1
* libswresample3_9-4.4-150400.3.32.1
* libavutil56_70-4.4-150400.3.32.1
* libavcodec58_134-4.4-150400.3.32.1
* ffmpeg-4-debuginfo-4.4-150400.3.32.1
* libavformat58_76-4.4-150400.3.32.1
* libpostproc55_9-debuginfo-4.4-150400.3.32.1
* libavutil56_70-debuginfo-4.4-150400.3.32.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* libpostproc55_9-4.4-150400.3.32.1
* libavcodec58_134-debuginfo-4.4-150400.3.32.1
* libswresample3_9-debuginfo-4.4-150400.3.32.1
* ffmpeg-4-debugsource-4.4-150400.3.32.1
* libavformat58_76-debuginfo-4.4-150400.3.32.1
* libswresample3_9-4.4-150400.3.32.1
* libavutil56_70-4.4-150400.3.32.1
* libavcodec58_134-4.4-150400.3.32.1
* ffmpeg-4-debuginfo-4.4-150400.3.32.1
* libavformat58_76-4.4-150400.3.32.1
* libpostproc55_9-debuginfo-4.4-150400.3.32.1
* libavutil56_70-debuginfo-4.4-150400.3.32.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64)
* libswscale5_9-debuginfo-4.4-150400.3.32.1
* libpostproc55_9-4.4-150400.3.32.1
* libavcodec58_134-debuginfo-4.4-150400.3.32.1
* libswresample3_9-debuginfo-4.4-150400.3.32.1
* ffmpeg-4-debugsource-4.4-150400.3.32.1
* libavformat58_76-debuginfo-4.4-150400.3.32.1
* libswresample3_9-4.4-150400.3.32.1
* libavutil56_70-4.4-150400.3.32.1
* libavcodec58_134-4.4-150400.3.32.1
* ffmpeg-4-debuginfo-4.4-150400.3.32.1
* libswscale5_9-4.4-150400.3.32.1
* libavformat58_76-4.4-150400.3.32.1
* libpostproc55_9-debuginfo-4.4-150400.3.32.1
* libavutil56_70-debuginfo-4.4-150400.3.32.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x
x86_64)
* libpostproc55_9-4.4-150400.3.32.1
* libavcodec58_134-debuginfo-4.4-150400.3.32.1
* libswresample3_9-debuginfo-4.4-150400.3.32.1
* ffmpeg-4-debugsource-4.4-150400.3.32.1
* libavformat58_76-debuginfo-4.4-150400.3.32.1
* libswresample3_9-4.4-150400.3.32.1
* libavutil56_70-4.4-150400.3.32.1
* libavcodec58_134-4.4-150400.3.32.1
* ffmpeg-4-debuginfo-4.4-150400.3.32.1
* libavformat58_76-4.4-150400.3.32.1
* libpostproc55_9-debuginfo-4.4-150400.3.32.1
* libavutil56_70-debuginfo-4.4-150400.3.32.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* libpostproc55_9-4.4-150400.3.32.1
* libavcodec58_134-debuginfo-4.4-150400.3.32.1
* libswresample3_9-debuginfo-4.4-150400.3.32.1
* ffmpeg-4-debugsource-4.4-150400.3.32.1
* libavformat58_76-debuginfo-4.4-150400.3.32.1
* libswresample3_9-4.4-150400.3.32.1
* libavutil56_70-4.4-150400.3.32.1
* libavcodec58_134-4.4-150400.3.32.1
* ffmpeg-4-debuginfo-4.4-150400.3.32.1
* libavformat58_76-4.4-150400.3.32.1
* libpostproc55_9-debuginfo-4.4-150400.3.32.1
* libavutil56_70-debuginfo-4.4-150400.3.32.1
* SUSE Linux Enterprise Workstation Extension 15 SP5 (x86_64)
* libswscale5_9-debuginfo-4.4-150400.3.32.1
* libavcodec58_134-debuginfo-4.4-150400.3.32.1
* libswresample3_9-debuginfo-4.4-150400.3.32.1
* ffmpeg-4-debugsource-4.4-150400.3.32.1
* libavformat58_76-debuginfo-4.4-150400.3.32.1
* libswresample3_9-4.4-150400.3.32.1
* libavutil56_70-4.4-150400.3.32.1
* libavcodec58_134-4.4-150400.3.32.1
* ffmpeg-4-debuginfo-4.4-150400.3.32.1
* libswscale5_9-4.4-150400.3.32.1
* libavformat58_76-4.4-150400.3.32.1
* libavutil56_70-debuginfo-4.4-150400.3.32.1

## References:

* https://www.suse.com/security/cve/CVE-2020-22021.html
* https://www.suse.com/security/cve/CVE-2023-51794.html
* https://bugzilla.suse.com/show_bug.cgi?id=1186586
* https://bugzilla.suse.com/show_bug.cgi?id=1223437



SUSE-SU-2024:1906-1: moderate: Security update for 389-ds


# Security update for 389-ds

Announcement ID: SUSE-SU-2024:1906-1
Rating: moderate
References:

* bsc#1219836

Cross-References:

* CVE-2024-1062

CVSS scores:

* CVE-2024-1062 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Products:

* openSUSE Leap 15.6
* Server Applications Module 15-SP6
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP6

An update that solves one vulnerability can now be installed.

## Description:

This update for 389-ds fixes the following issues:

* Update to version 2.2.8~git65.347aae6:
* CVE-2024-1062: Resolved possible denial of service when audit logging is
enabled. (bsc#1219836)

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.6
zypper in -t patch SUSE-2024-1906=1 openSUSE-SLE-15.6-2024-1906=1

* Server Applications Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2024-1906=1

## Package List:

* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
* 389-ds-debuginfo-2.2.8~git65.347aae6-150600.8.3.1
* 389-ds-snmp-debuginfo-2.2.8~git65.347aae6-150600.8.3.1
* 389-ds-snmp-2.2.8~git65.347aae6-150600.8.3.1
* libsvrcore0-debuginfo-2.2.8~git65.347aae6-150600.8.3.1
* 389-ds-devel-2.2.8~git65.347aae6-150600.8.3.1
* 389-ds-debugsource-2.2.8~git65.347aae6-150600.8.3.1
* lib389-2.2.8~git65.347aae6-150600.8.3.1
* libsvrcore0-2.2.8~git65.347aae6-150600.8.3.1
* 389-ds-2.2.8~git65.347aae6-150600.8.3.1
* Server Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* 389-ds-debuginfo-2.2.8~git65.347aae6-150600.8.3.1
* libsvrcore0-debuginfo-2.2.8~git65.347aae6-150600.8.3.1
* 389-ds-devel-2.2.8~git65.347aae6-150600.8.3.1
* 389-ds-debugsource-2.2.8~git65.347aae6-150600.8.3.1
* lib389-2.2.8~git65.347aae6-150600.8.3.1
* libsvrcore0-2.2.8~git65.347aae6-150600.8.3.1
* 389-ds-2.2.8~git65.347aae6-150600.8.3.1

## References:

* https://www.suse.com/security/cve/CVE-2024-1062.html
* https://bugzilla.suse.com/show_bug.cgi?id=1219836



SUSE-SU-2024:1922-1: moderate: Security update for mariadb104


# Security update for mariadb104

Announcement ID: SUSE-SU-2024:1922-1
Rating: moderate
References:

* bsc#1217405

Cross-References:

* CVE-2023-22084

CVSS scores:

* CVE-2023-22084 ( SUSE ): 4.9 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
* CVE-2023-22084 ( NVD ): 4.9 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected Products:

* openSUSE Leap 15.6

An update that solves one vulnerability can now be installed.

## Description:

This update for mariadb104 fixes the following issues:

* Update to 10.4.33:
* CVE-2023-22084: Fixed a bug that allowed high privileged attackers with
network access via multiple protocols to compromise the server.
(bsc#1217405)

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2024-1922=1

## Package List:

* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
* mariadb104-debuginfo-10.4.33-150100.3.8.1
* mariadb104-bench-debuginfo-10.4.33-150100.3.8.1
* mariadb104-10.4.33-150100.3.8.1
* mariadb104-bench-10.4.33-150100.3.8.1
* mariadb104-client-debuginfo-10.4.33-150100.3.8.1
* mariadb104-rpm-macros-10.4.33-150100.3.8.1
* mariadb104-test-10.4.33-150100.3.8.1
* mariadb104-client-10.4.33-150100.3.8.1
* mariadb104-test-debuginfo-10.4.33-150100.3.8.1
* mariadb104-galera-10.4.33-150100.3.8.1
* mariadb104-debugsource-10.4.33-150100.3.8.1
* mariadb104-tools-10.4.33-150100.3.8.1
* mariadb104-tools-debuginfo-10.4.33-150100.3.8.1
* libmariadbd104-devel-10.4.33-150100.3.8.1
* openSUSE Leap 15.6 (noarch)
* mariadb104-errormessages-10.4.33-150100.3.8.1

## References:

* https://www.suse.com/security/cve/CVE-2023-22084.html
* https://bugzilla.suse.com/show_bug.cgi?id=1217405



SUSE-SU-2024:1908-1: important: Security update for ffmpeg


# Security update for ffmpeg

Announcement ID: SUSE-SU-2024:1908-1
Rating: important
References:

* bsc#1223437

Cross-References:

* CVE-2023-51794

CVSS scores:

* CVE-2023-51794 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H

Affected Products:

* Desktop Applications Module 15-SP5
* Desktop Applications Module 15-SP6
* openSUSE Leap 15.5
* openSUSE Leap 15.6
* SUSE Enterprise Storage 7.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise High Performance Computing 15 SP2
* SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2
* SUSE Linux Enterprise High Performance Computing 15 SP3
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Server 15 SP2
* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2
* SUSE Linux Enterprise Server 15 SP3
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP2
* SUSE Linux Enterprise Server for SAP Applications 15 SP3
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Linux Enterprise Workstation Extension 15 SP5
* SUSE Linux Enterprise Workstation Extension 15 SP6
* SUSE Package Hub 15 15-SP5
* SUSE Package Hub 15 15-SP6

An update that solves one vulnerability can now be installed.

## Description:

This update for ffmpeg fixes the following issues:

* CVE-2023-51794: Fixed a heap buffer overflow in libavfilter. (bsc#1223437)

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* Desktop Applications Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP6-2024-1908=1

* SUSE Package Hub 15 15-SP5
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1908=1

* SUSE Package Hub 15 15-SP6
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-1908=1

* SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2
zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-1908=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1908=1

* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1908=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1908=1

* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1908=1

* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2
zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-1908=1

* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1908=1

* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1908=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP2
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-1908=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP3
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1908=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1908=1

* SUSE Linux Enterprise Workstation Extension 15 SP5
zypper in -t patch SUSE-SLE-Product-WE-15-SP5-2024-1908=1

* SUSE Linux Enterprise Workstation Extension 15 SP6
zypper in -t patch SUSE-SLE-Product-WE-15-SP6-2024-1908=1

* SUSE Enterprise Storage 7.1
zypper in -t patch SUSE-Storage-7.1-2024-1908=1

* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-1908=1

* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2024-1908=1

* Desktop Applications Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP5-2024-1908=1

## Package List:

* Desktop Applications Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* libavcodec57-debuginfo-3.4.2-150200.11.47.1
* libavutil55-3.4.2-150200.11.47.1
* ffmpeg-debugsource-3.4.2-150200.11.47.1
* libavutil55-debuginfo-3.4.2-150200.11.47.1
* libswscale4-3.4.2-150200.11.47.1
* libswresample-devel-3.4.2-150200.11.47.1
* libpostproc-devel-3.4.2-150200.11.47.1
* libswscale4-debuginfo-3.4.2-150200.11.47.1
* libswscale-devel-3.4.2-150200.11.47.1
* libpostproc54-debuginfo-3.4.2-150200.11.47.1
* libavcodec57-3.4.2-150200.11.47.1
* libpostproc54-3.4.2-150200.11.47.1
* libavutil-devel-3.4.2-150200.11.47.1
* ffmpeg-debuginfo-3.4.2-150200.11.47.1
* libswresample2-debuginfo-3.4.2-150200.11.47.1
* libswresample2-3.4.2-150200.11.47.1
* SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x x86_64)
* libavfilter6-3.4.2-150200.11.47.1
* ffmpeg-debugsource-3.4.2-150200.11.47.1
* libavfilter6-debuginfo-3.4.2-150200.11.47.1
* libavformat57-debuginfo-3.4.2-150200.11.47.1
* libavdevice57-debuginfo-3.4.2-150200.11.47.1
* libavresample3-3.4.2-150200.11.47.1
* ffmpeg-3.4.2-150200.11.47.1
* libavdevice57-3.4.2-150200.11.47.1
* ffmpeg-debuginfo-3.4.2-150200.11.47.1
* libavformat57-3.4.2-150200.11.47.1
* libavresample3-debuginfo-3.4.2-150200.11.47.1
* SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64)
* libavfilter6-3.4.2-150200.11.47.1
* ffmpeg-debugsource-3.4.2-150200.11.47.1
* libavfilter6-debuginfo-3.4.2-150200.11.47.1
* libavformat57-debuginfo-3.4.2-150200.11.47.1
* libavdevice57-debuginfo-3.4.2-150200.11.47.1
* libavresample3-3.4.2-150200.11.47.1
* ffmpeg-3.4.2-150200.11.47.1
* libavdevice57-3.4.2-150200.11.47.1
* ffmpeg-debuginfo-3.4.2-150200.11.47.1
* libavformat57-3.4.2-150200.11.47.1
* libavresample3-debuginfo-3.4.2-150200.11.47.1
* SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64
x86_64)
* libavcodec57-debuginfo-3.4.2-150200.11.47.1
* libavutil55-debuginfo-3.4.2-150200.11.47.1
* libavformat57-debuginfo-3.4.2-150200.11.47.1
* libswscale-devel-3.4.2-150200.11.47.1
* libavformat57-3.4.2-150200.11.47.1
* libavutil55-3.4.2-150200.11.47.1
* libavresample3-debuginfo-3.4.2-150200.11.47.1
* libavresample-devel-3.4.2-150200.11.47.1
* ffmpeg-debuginfo-3.4.2-150200.11.47.1
* libswresample-devel-3.4.2-150200.11.47.1
* libpostproc-devel-3.4.2-150200.11.47.1
* libavresample3-3.4.2-150200.11.47.1
* libpostproc54-debuginfo-3.4.2-150200.11.47.1
* libpostproc54-3.4.2-150200.11.47.1
* libswresample2-3.4.2-150200.11.47.1
* libswscale4-3.4.2-150200.11.47.1
* libswscale4-debuginfo-3.4.2-150200.11.47.1
* libavcodec57-3.4.2-150200.11.47.1
* libavutil-devel-3.4.2-150200.11.47.1
* ffmpeg-debugsource-3.4.2-150200.11.47.1
* libswresample2-debuginfo-3.4.2-150200.11.47.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64
x86_64)
* libavcodec57-debuginfo-3.4.2-150200.11.47.1
* libavutil55-debuginfo-3.4.2-150200.11.47.1
* libavformat57-debuginfo-3.4.2-150200.11.47.1
* libswscale-devel-3.4.2-150200.11.47.1
* libavformat57-3.4.2-150200.11.47.1
* libavutil55-3.4.2-150200.11.47.1
* libavresample3-debuginfo-3.4.2-150200.11.47.1
* libavresample-devel-3.4.2-150200.11.47.1
* ffmpeg-debuginfo-3.4.2-150200.11.47.1
* libswresample-devel-3.4.2-150200.11.47.1
* libpostproc-devel-3.4.2-150200.11.47.1
* libavresample3-3.4.2-150200.11.47.1
* libpostproc54-debuginfo-3.4.2-150200.11.47.1
* libpostproc54-3.4.2-150200.11.47.1
* libswresample2-3.4.2-150200.11.47.1
* libswscale4-3.4.2-150200.11.47.1
* libswscale4-debuginfo-3.4.2-150200.11.47.1
* libavcodec57-3.4.2-150200.11.47.1
* libavutil-devel-3.4.2-150200.11.47.1
* ffmpeg-debugsource-3.4.2-150200.11.47.1
* libswresample2-debuginfo-3.4.2-150200.11.47.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* libavcodec57-debuginfo-3.4.2-150200.11.47.1
* libavutil55-3.4.2-150200.11.47.1
* ffmpeg-debugsource-3.4.2-150200.11.47.1
* libavutil55-debuginfo-3.4.2-150200.11.47.1
* libswscale4-3.4.2-150200.11.47.1
* libswresample2-debuginfo-3.4.2-150200.11.47.1
* libavformat57-debuginfo-3.4.2-150200.11.47.1
* libpostproc-devel-3.4.2-150200.11.47.1
* libswresample-devel-3.4.2-150200.11.47.1
* libavresample3-3.4.2-150200.11.47.1
* libswscale-devel-3.4.2-150200.11.47.1
* libpostproc54-debuginfo-3.4.2-150200.11.47.1
* libavcodec57-3.4.2-150200.11.47.1
* libpostproc54-3.4.2-150200.11.47.1
* libavutil-devel-3.4.2-150200.11.47.1
* libswscale4-debuginfo-3.4.2-150200.11.47.1
* ffmpeg-debuginfo-3.4.2-150200.11.47.1
* libavformat57-3.4.2-150200.11.47.1
* libavresample3-debuginfo-3.4.2-150200.11.47.1
* libswresample2-3.4.2-150200.11.47.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* libavcodec57-debuginfo-3.4.2-150200.11.47.1
* libavutil55-3.4.2-150200.11.47.1
* ffmpeg-debugsource-3.4.2-150200.11.47.1
* libavutil55-debuginfo-3.4.2-150200.11.47.1
* libswscale4-3.4.2-150200.11.47.1
* libswresample2-debuginfo-3.4.2-150200.11.47.1
* libavformat57-debuginfo-3.4.2-150200.11.47.1
* libpostproc-devel-3.4.2-150200.11.47.1
* libswresample-devel-3.4.2-150200.11.47.1
* libavresample3-3.4.2-150200.11.47.1
* libswscale-devel-3.4.2-150200.11.47.1
* libpostproc54-debuginfo-3.4.2-150200.11.47.1
* libavcodec57-3.4.2-150200.11.47.1
* libpostproc54-3.4.2-150200.11.47.1
* libavutil-devel-3.4.2-150200.11.47.1
* libswscale4-debuginfo-3.4.2-150200.11.47.1
* ffmpeg-debuginfo-3.4.2-150200.11.47.1
* libavformat57-3.4.2-150200.11.47.1
* libavresample3-debuginfo-3.4.2-150200.11.47.1
* libswresample2-3.4.2-150200.11.47.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64)
* libavcodec57-debuginfo-3.4.2-150200.11.47.1
* libavutil55-debuginfo-3.4.2-150200.11.47.1
* libavformat57-debuginfo-3.4.2-150200.11.47.1
* libswscale-devel-3.4.2-150200.11.47.1
* libavformat57-3.4.2-150200.11.47.1
* libavutil55-3.4.2-150200.11.47.1
* libavcodec-devel-3.4.2-150200.11.47.1
* libavresample3-debuginfo-3.4.2-150200.11.47.1
* libavresample-devel-3.4.2-150200.11.47.1
* libavformat-devel-3.4.2-150200.11.47.1
* ffmpeg-debuginfo-3.4.2-150200.11.47.1
* libswresample-devel-3.4.2-150200.11.47.1
* libpostproc-devel-3.4.2-150200.11.47.1
* libavresample3-3.4.2-150200.11.47.1
* libpostproc54-debuginfo-3.4.2-150200.11.47.1
* libpostproc54-3.4.2-150200.11.47.1
* libswresample2-3.4.2-150200.11.47.1
* libswscale4-3.4.2-150200.11.47.1
* libswscale4-debuginfo-3.4.2-150200.11.47.1
* libavcodec57-3.4.2-150200.11.47.1
* libavutil-devel-3.4.2-150200.11.47.1
* ffmpeg-debugsource-3.4.2-150200.11.47.1
* libswresample2-debuginfo-3.4.2-150200.11.47.1
* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x
x86_64)
* libavcodec57-debuginfo-3.4.2-150200.11.47.1
* libavutil55-debuginfo-3.4.2-150200.11.47.1
* libavformat57-debuginfo-3.4.2-150200.11.47.1
* libswscale-devel-3.4.2-150200.11.47.1
* libavformat57-3.4.2-150200.11.47.1
* libavutil55-3.4.2-150200.11.47.1
* libavresample3-debuginfo-3.4.2-150200.11.47.1
* libavresample-devel-3.4.2-150200.11.47.1
* ffmpeg-debuginfo-3.4.2-150200.11.47.1
* libswresample-devel-3.4.2-150200.11.47.1
* libpostproc-devel-3.4.2-150200.11.47.1
* libavresample3-3.4.2-150200.11.47.1
* libpostproc54-debuginfo-3.4.2-150200.11.47.1
* libpostproc54-3.4.2-150200.11.47.1
* libswresample2-3.4.2-150200.11.47.1
* libswscale4-3.4.2-150200.11.47.1
* libswscale4-debuginfo-3.4.2-150200.11.47.1
* libavcodec57-3.4.2-150200.11.47.1
* libavutil-devel-3.4.2-150200.11.47.1
* ffmpeg-debugsource-3.4.2-150200.11.47.1
* libswresample2-debuginfo-3.4.2-150200.11.47.1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x
x86_64)
* libavcodec57-debuginfo-3.4.2-150200.11.47.1
* libavutil55-debuginfo-3.4.2-150200.11.47.1
* libavformat57-debuginfo-3.4.2-150200.11.47.1
* libswscale-devel-3.4.2-150200.11.47.1
* libavformat57-3.4.2-150200.11.47.1
* libavutil55-3.4.2-150200.11.47.1
* libavresample3-debuginfo-3.4.2-150200.11.47.1
* libavresample-devel-3.4.2-150200.11.47.1
* ffmpeg-debuginfo-3.4.2-150200.11.47.1
* libswresample-devel-3.4.2-150200.11.47.1
* libpostproc-devel-3.4.2-150200.11.47.1
* libavresample3-3.4.2-150200.11.47.1
* libpostproc54-debuginfo-3.4.2-150200.11.47.1
* libpostproc54-3.4.2-150200.11.47.1
* libswresample2-3.4.2-150200.11.47.1
* libswscale4-3.4.2-150200.11.47.1
* libswscale4-debuginfo-3.4.2-150200.11.47.1
* libavcodec57-3.4.2-150200.11.47.1
* libavutil-devel-3.4.2-150200.11.47.1
* ffmpeg-debugsource-3.4.2-150200.11.47.1
* libswresample2-debuginfo-3.4.2-150200.11.47.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x
x86_64)
* libavcodec57-debuginfo-3.4.2-150200.11.47.1
* libavutil55-3.4.2-150200.11.47.1
* ffmpeg-debugsource-3.4.2-150200.11.47.1
* libavutil55-debuginfo-3.4.2-150200.11.47.1
* libswscale4-3.4.2-150200.11.47.1
* libswresample2-debuginfo-3.4.2-150200.11.47.1
* libavformat57-debuginfo-3.4.2-150200.11.47.1
* libpostproc-devel-3.4.2-150200.11.47.1
* libswresample-devel-3.4.2-150200.11.47.1
* libavresample3-3.4.2-150200.11.47.1
* libswscale-devel-3.4.2-150200.11.47.1
* libpostproc54-debuginfo-3.4.2-150200.11.47.1
* libavcodec57-3.4.2-150200.11.47.1
* libpostproc54-3.4.2-150200.11.47.1
* libavutil-devel-3.4.2-150200.11.47.1
* libswscale4-debuginfo-3.4.2-150200.11.47.1
* ffmpeg-debuginfo-3.4.2-150200.11.47.1
* libavformat57-3.4.2-150200.11.47.1
* libavresample3-debuginfo-3.4.2-150200.11.47.1
* libswresample2-3.4.2-150200.11.47.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64)
* libavcodec57-debuginfo-3.4.2-150200.11.47.1
* libavutil55-debuginfo-3.4.2-150200.11.47.1
* libavformat57-debuginfo-3.4.2-150200.11.47.1
* libswscale-devel-3.4.2-150200.11.47.1
* libavformat57-3.4.2-150200.11.47.1
* libavutil55-3.4.2-150200.11.47.1
* libavresample3-debuginfo-3.4.2-150200.11.47.1
* libavresample-devel-3.4.2-150200.11.47.1
* ffmpeg-debuginfo-3.4.2-150200.11.47.1
* libswresample-devel-3.4.2-150200.11.47.1
* libpostproc-devel-3.4.2-150200.11.47.1
* libavresample3-3.4.2-150200.11.47.1
* libpostproc54-debuginfo-3.4.2-150200.11.47.1
* libpostproc54-3.4.2-150200.11.47.1
* libswresample2-3.4.2-150200.11.47.1
* libswscale4-3.4.2-150200.11.47.1
* libswscale4-debuginfo-3.4.2-150200.11.47.1
* libavcodec57-3.4.2-150200.11.47.1
* libavutil-devel-3.4.2-150200.11.47.1
* ffmpeg-debugsource-3.4.2-150200.11.47.1
* libswresample2-debuginfo-3.4.2-150200.11.47.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64)
* libavcodec57-debuginfo-3.4.2-150200.11.47.1
* libavutil55-debuginfo-3.4.2-150200.11.47.1
* libavformat57-debuginfo-3.4.2-150200.11.47.1
* libswscale-devel-3.4.2-150200.11.47.1
* libavformat57-3.4.2-150200.11.47.1
* libavutil55-3.4.2-150200.11.47.1
* libavresample3-debuginfo-3.4.2-150200.11.47.1
* libavresample-devel-3.4.2-150200.11.47.1
* ffmpeg-debuginfo-3.4.2-150200.11.47.1
* libswresample-devel-3.4.2-150200.11.47.1
* libpostproc-devel-3.4.2-150200.11.47.1
* libavresample3-3.4.2-150200.11.47.1
* libpostproc54-debuginfo-3.4.2-150200.11.47.1
* libpostproc54-3.4.2-150200.11.47.1
* libswresample2-3.4.2-150200.11.47.1
* libswscale4-3.4.2-150200.11.47.1
* libswscale4-debuginfo-3.4.2-150200.11.47.1
* libavcodec57-3.4.2-150200.11.47.1
* libavutil-devel-3.4.2-150200.11.47.1
* ffmpeg-debugsource-3.4.2-150200.11.47.1
* libswresample2-debuginfo-3.4.2-150200.11.47.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* libavcodec57-debuginfo-3.4.2-150200.11.47.1
* libavutil55-3.4.2-150200.11.47.1
* ffmpeg-debugsource-3.4.2-150200.11.47.1
* libavutil55-debuginfo-3.4.2-150200.11.47.1
* libswscale4-3.4.2-150200.11.47.1
* libswresample2-debuginfo-3.4.2-150200.11.47.1
* libavformat57-debuginfo-3.4.2-150200.11.47.1
* libpostproc-devel-3.4.2-150200.11.47.1
* libswresample-devel-3.4.2-150200.11.47.1
* libavresample3-3.4.2-150200.11.47.1
* libswscale-devel-3.4.2-150200.11.47.1
* libpostproc54-debuginfo-3.4.2-150200.11.47.1
* libavcodec57-3.4.2-150200.11.47.1
* libpostproc54-3.4.2-150200.11.47.1
* libavutil-devel-3.4.2-150200.11.47.1
* libswscale4-debuginfo-3.4.2-150200.11.47.1
* ffmpeg-debuginfo-3.4.2-150200.11.47.1
* libavformat57-3.4.2-150200.11.47.1
* libavresample3-debuginfo-3.4.2-150200.11.47.1
* libswresample2-3.4.2-150200.11.47.1
* SUSE Linux Enterprise Workstation Extension 15 SP5 (x86_64)
* libavformat-devel-3.4.2-150200.11.47.1
* ffmpeg-debugsource-3.4.2-150200.11.47.1
* libavcodec-devel-3.4.2-150200.11.47.1
* libavformat57-debuginfo-3.4.2-150200.11.47.1
* libavresample3-3.4.2-150200.11.47.1
* ffmpeg-debuginfo-3.4.2-150200.11.47.1
* libavformat57-3.4.2-150200.11.47.1
* libavresample3-debuginfo-3.4.2-150200.11.47.1
* libavresample-devel-3.4.2-150200.11.47.1
* SUSE Linux Enterprise Workstation Extension 15 SP6 (x86_64)
* libavformat-devel-3.4.2-150200.11.47.1
* ffmpeg-debugsource-3.4.2-150200.11.47.1
* libavcodec-devel-3.4.2-150200.11.47.1
* libavformat57-debuginfo-3.4.2-150200.11.47.1
* libavresample3-3.4.2-150200.11.47.1
* ffmpeg-debuginfo-3.4.2-150200.11.47.1
* libavformat57-3.4.2-150200.11.47.1
* libavresample3-debuginfo-3.4.2-150200.11.47.1
* libavresample-devel-3.4.2-150200.11.47.1
* SUSE Enterprise Storage 7.1 (aarch64 x86_64)
* libavcodec57-debuginfo-3.4.2-150200.11.47.1
* libavutil55-debuginfo-3.4.2-150200.11.47.1
* libavformat57-debuginfo-3.4.2-150200.11.47.1
* libswscale-devel-3.4.2-150200.11.47.1
* libavformat57-3.4.2-150200.11.47.1
* libavutil55-3.4.2-150200.11.47.1
* libavresample3-debuginfo-3.4.2-150200.11.47.1
* libavresample-devel-3.4.2-150200.11.47.1
* ffmpeg-debuginfo-3.4.2-150200.11.47.1
* libswresample-devel-3.4.2-150200.11.47.1
* libpostproc-devel-3.4.2-150200.11.47.1
* libavresample3-3.4.2-150200.11.47.1
* libpostproc54-debuginfo-3.4.2-150200.11.47.1
* libpostproc54-3.4.2-150200.11.47.1
* libswresample2-3.4.2-150200.11.47.1
* libswscale4-3.4.2-150200.11.47.1
* libswscale4-debuginfo-3.4.2-150200.11.47.1
* libavcodec57-3.4.2-150200.11.47.1
* libavutil-devel-3.4.2-150200.11.47.1
* ffmpeg-debugsource-3.4.2-150200.11.47.1
* libswresample2-debuginfo-3.4.2-150200.11.47.1
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* libavcodec57-debuginfo-3.4.2-150200.11.47.1
* libavfilter6-3.4.2-150200.11.47.1
* libavutil55-debuginfo-3.4.2-150200.11.47.1
* libavfilter6-debuginfo-3.4.2-150200.11.47.1
* libavformat57-debuginfo-3.4.2-150200.11.47.1
* libswscale-devel-3.4.2-150200.11.47.1
* ffmpeg-private-devel-3.4.2-150200.11.47.1
* libavformat57-3.4.2-150200.11.47.1
* libavdevice-devel-3.4.2-150200.11.47.1
* libavutil55-3.4.2-150200.11.47.1
* libavcodec-devel-3.4.2-150200.11.47.1
* libavdevice57-debuginfo-3.4.2-150200.11.47.1
* libavfilter-devel-3.4.2-150200.11.47.1
* ffmpeg-3.4.2-150200.11.47.1
* libavdevice57-3.4.2-150200.11.47.1
* libavresample3-debuginfo-3.4.2-150200.11.47.1
* libavresample-devel-3.4.2-150200.11.47.1
* libavformat-devel-3.4.2-150200.11.47.1
* ffmpeg-debuginfo-3.4.2-150200.11.47.1
* libswresample-devel-3.4.2-150200.11.47.1
* libpostproc-devel-3.4.2-150200.11.47.1
* libavresample3-3.4.2-150200.11.47.1
* libpostproc54-debuginfo-3.4.2-150200.11.47.1
* libpostproc54-3.4.2-150200.11.47.1
* libswresample2-3.4.2-150200.11.47.1
* libswscale4-3.4.2-150200.11.47.1
* libswscale4-debuginfo-3.4.2-150200.11.47.1
* libavcodec57-3.4.2-150200.11.47.1
* libavutil-devel-3.4.2-150200.11.47.1
* ffmpeg-debugsource-3.4.2-150200.11.47.1
* libswresample2-debuginfo-3.4.2-150200.11.47.1
* openSUSE Leap 15.5 (x86_64)
* libavresample3-32bit-3.4.2-150200.11.47.1
* libavcodec57-32bit-3.4.2-150200.11.47.1
* libpostproc54-32bit-3.4.2-150200.11.47.1
* libpostproc54-32bit-debuginfo-3.4.2-150200.11.47.1
* libavfilter6-32bit-3.4.2-150200.11.47.1
* libavutil55-32bit-3.4.2-150200.11.47.1
* libswscale4-32bit-debuginfo-3.4.2-150200.11.47.1
* libavutil55-32bit-debuginfo-3.4.2-150200.11.47.1
* libswresample2-32bit-3.4.2-150200.11.47.1
* libavcodec57-32bit-debuginfo-3.4.2-150200.11.47.1
* libavformat57-32bit-debuginfo-3.4.2-150200.11.47.1
* libavdevice57-32bit-debuginfo-3.4.2-150200.11.47.1
* libswscale4-32bit-3.4.2-150200.11.47.1
* libswresample2-32bit-debuginfo-3.4.2-150200.11.47.1
* libavresample3-32bit-debuginfo-3.4.2-150200.11.47.1
* libavdevice57-32bit-3.4.2-150200.11.47.1
* libavfilter6-32bit-debuginfo-3.4.2-150200.11.47.1
* libavformat57-32bit-3.4.2-150200.11.47.1
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
* libavcodec57-debuginfo-3.4.2-150200.11.47.1
* libavfilter6-3.4.2-150200.11.47.1
* libavutil55-debuginfo-3.4.2-150200.11.47.1
* libavfilter6-debuginfo-3.4.2-150200.11.47.1
* libavformat57-debuginfo-3.4.2-150200.11.47.1
* libswscale-devel-3.4.2-150200.11.47.1
* ffmpeg-private-devel-3.4.2-150200.11.47.1
* libavformat57-3.4.2-150200.11.47.1
* libavdevice-devel-3.4.2-150200.11.47.1
* libavutil55-3.4.2-150200.11.47.1
* libavcodec-devel-3.4.2-150200.11.47.1
* libavdevice57-debuginfo-3.4.2-150200.11.47.1
* libavfilter-devel-3.4.2-150200.11.47.1
* ffmpeg-3.4.2-150200.11.47.1
* libavdevice57-3.4.2-150200.11.47.1
* libavresample3-debuginfo-3.4.2-150200.11.47.1
* libavresample-devel-3.4.2-150200.11.47.1
* libavformat-devel-3.4.2-150200.11.47.1
* ffmpeg-debuginfo-3.4.2-150200.11.47.1
* libswresample-devel-3.4.2-150200.11.47.1
* libpostproc-devel-3.4.2-150200.11.47.1
* libavresample3-3.4.2-150200.11.47.1
* libpostproc54-debuginfo-3.4.2-150200.11.47.1
* libpostproc54-3.4.2-150200.11.47.1
* libswresample2-3.4.2-150200.11.47.1
* libswscale4-3.4.2-150200.11.47.1
* libswscale4-debuginfo-3.4.2-150200.11.47.1
* libavcodec57-3.4.2-150200.11.47.1
* libavutil-devel-3.4.2-150200.11.47.1
* ffmpeg-debugsource-3.4.2-150200.11.47.1
* libswresample2-debuginfo-3.4.2-150200.11.47.1
* openSUSE Leap 15.6 (x86_64)
* libavresample3-32bit-3.4.2-150200.11.47.1
* libavcodec57-32bit-3.4.2-150200.11.47.1
* libpostproc54-32bit-3.4.2-150200.11.47.1
* libpostproc54-32bit-debuginfo-3.4.2-150200.11.47.1
* libavfilter6-32bit-3.4.2-150200.11.47.1
* libavutil55-32bit-3.4.2-150200.11.47.1
* libswscale4-32bit-debuginfo-3.4.2-150200.11.47.1
* libavutil55-32bit-debuginfo-3.4.2-150200.11.47.1
* libswresample2-32bit-3.4.2-150200.11.47.1
* libavcodec57-32bit-debuginfo-3.4.2-150200.11.47.1
* libavformat57-32bit-debuginfo-3.4.2-150200.11.47.1
* libavdevice57-32bit-debuginfo-3.4.2-150200.11.47.1
* libswscale4-32bit-3.4.2-150200.11.47.1
* libswresample2-32bit-debuginfo-3.4.2-150200.11.47.1
* libavresample3-32bit-debuginfo-3.4.2-150200.11.47.1
* libavdevice57-32bit-3.4.2-150200.11.47.1
* libavfilter6-32bit-debuginfo-3.4.2-150200.11.47.1
* libavformat57-32bit-3.4.2-150200.11.47.1
* Desktop Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* libavcodec57-debuginfo-3.4.2-150200.11.47.1
* libavutil55-3.4.2-150200.11.47.1
* ffmpeg-debugsource-3.4.2-150200.11.47.1
* libavutil55-debuginfo-3.4.2-150200.11.47.1
* libswscale4-3.4.2-150200.11.47.1
* libswresample-devel-3.4.2-150200.11.47.1
* libpostproc-devel-3.4.2-150200.11.47.1
* libswscale4-debuginfo-3.4.2-150200.11.47.1
* libswscale-devel-3.4.2-150200.11.47.1
* libpostproc54-debuginfo-3.4.2-150200.11.47.1
* libavcodec57-3.4.2-150200.11.47.1
* libpostproc54-3.4.2-150200.11.47.1
* libavutil-devel-3.4.2-150200.11.47.1
* ffmpeg-debuginfo-3.4.2-150200.11.47.1
* libswresample2-debuginfo-3.4.2-150200.11.47.1
* libswresample2-3.4.2-150200.11.47.1

## References:

* https://www.suse.com/security/cve/CVE-2023-51794.html
* https://bugzilla.suse.com/show_bug.cgi?id=1223437



SUSE-SU-2024:1909-1: important: Security update for ffmpeg-4


# Security update for ffmpeg-4

Announcement ID: SUSE-SU-2024:1909-1
Rating: important
References:

* bsc#1186586
* bsc#1223437

Cross-References:

* CVE-2020-22021
* CVE-2023-51794

CVSS scores:

* CVE-2020-22021 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2020-22021 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
* CVE-2023-51794 ( SUSE ): 7.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H

Affected Products:

* openSUSE Leap 15.6
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Linux Enterprise Workstation Extension 15 SP6
* SUSE Package Hub 15 15-SP6

An update that solves two vulnerabilities can now be installed.

## Description:

This update for ffmpeg-4 fixes the following issues:

* CVE-2020-22021: Fixed buffer overflow vulnerability in filter_edges function
in libavfilter/vf_yadif.c (bsc#1186586).
* CVE-2023-51794: Fixed a heap buffer overflow in libavfilter. (bsc#1223437)

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.6
zypper in -t patch SUSE-2024-1909=1 openSUSE-SLE-15.6-2024-1909=1

* SUSE Package Hub 15 15-SP6
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-1909=1

* SUSE Linux Enterprise Workstation Extension 15 SP6
zypper in -t patch SUSE-SLE-Product-WE-15-SP6-2024-1909=1

## Package List:

* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586)
* ffmpeg-4-4.4-150600.13.5.1
* libswresample3_9-4.4-150600.13.5.1
* ffmpeg-4-private-devel-4.4-150600.13.5.1
* libavfilter7_110-4.4-150600.13.5.1
* libavutil56_70-debuginfo-4.4-150600.13.5.1
* ffmpeg-4-debuginfo-4.4-150600.13.5.1
* libswscale5_9-debuginfo-4.4-150600.13.5.1
* ffmpeg-4-libswresample-devel-4.4-150600.13.5.1
* libavutil56_70-4.4-150600.13.5.1
* ffmpeg-4-debugsource-4.4-150600.13.5.1
* ffmpeg-4-libavformat-devel-4.4-150600.13.5.1
* ffmpeg-4-libavfilter-devel-4.4-150600.13.5.1
* ffmpeg-4-libavdevice-devel-4.4-150600.13.5.1
* libavresample4_0-4.4-150600.13.5.1
* ffmpeg-4-libavcodec-devel-4.4-150600.13.5.1
* libpostproc55_9-debuginfo-4.4-150600.13.5.1
* libavfilter7_110-debuginfo-4.4-150600.13.5.1
* libavdevice58_13-debuginfo-4.4-150600.13.5.1
* libavdevice58_13-4.4-150600.13.5.1
* libavformat58_76-4.4-150600.13.5.1
* ffmpeg-4-libavutil-devel-4.4-150600.13.5.1
* libavformat58_76-debuginfo-4.4-150600.13.5.1
* libswscale5_9-4.4-150600.13.5.1
* libavresample4_0-debuginfo-4.4-150600.13.5.1
* libavcodec58_134-4.4-150600.13.5.1
* ffmpeg-4-libavresample-devel-4.4-150600.13.5.1
* libpostproc55_9-4.4-150600.13.5.1
* libswresample3_9-debuginfo-4.4-150600.13.5.1
* ffmpeg-4-libpostproc-devel-4.4-150600.13.5.1
* libavcodec58_134-debuginfo-4.4-150600.13.5.1
* ffmpeg-4-libswscale-devel-4.4-150600.13.5.1
* openSUSE Leap 15.6 (x86_64)
* libswresample3_9-32bit-4.4-150600.13.5.1
* libavdevice58_13-32bit-debuginfo-4.4-150600.13.5.1
* libswscale5_9-32bit-4.4-150600.13.5.1
* libavcodec58_134-32bit-debuginfo-4.4-150600.13.5.1
* libavresample4_0-32bit-debuginfo-4.4-150600.13.5.1
* libavutil56_70-32bit-4.4-150600.13.5.1
* libavformat58_76-32bit-debuginfo-4.4-150600.13.5.1
* libavutil56_70-32bit-debuginfo-4.4-150600.13.5.1
* libavfilter7_110-32bit-4.4-150600.13.5.1
* libavfilter7_110-32bit-debuginfo-4.4-150600.13.5.1
* libavcodec58_134-32bit-4.4-150600.13.5.1
* libpostproc55_9-32bit-debuginfo-4.4-150600.13.5.1
* libavresample4_0-32bit-4.4-150600.13.5.1
* libpostproc55_9-32bit-4.4-150600.13.5.1
* libavformat58_76-32bit-4.4-150600.13.5.1
* libswscale5_9-32bit-debuginfo-4.4-150600.13.5.1
* libswresample3_9-32bit-debuginfo-4.4-150600.13.5.1
* libavdevice58_13-32bit-4.4-150600.13.5.1
* openSUSE Leap 15.6 (aarch64_ilp32)
* libavdevice58_13-64bit-debuginfo-4.4-150600.13.5.1
* libavformat58_76-64bit-4.4-150600.13.5.1
* libavresample4_0-64bit-4.4-150600.13.5.1
* libpostproc55_9-64bit-4.4-150600.13.5.1
* libavcodec58_134-64bit-4.4-150600.13.5.1
* libswscale5_9-64bit-debuginfo-4.4-150600.13.5.1
* libavformat58_76-64bit-debuginfo-4.4-150600.13.5.1
* libswresample3_9-64bit-debuginfo-4.4-150600.13.5.1
* libavfilter7_110-64bit-debuginfo-4.4-150600.13.5.1
* libavcodec58_134-64bit-debuginfo-4.4-150600.13.5.1
* libavdevice58_13-64bit-4.4-150600.13.5.1
* libswscale5_9-64bit-4.4-150600.13.5.1
* libavutil56_70-64bit-debuginfo-4.4-150600.13.5.1
* libpostproc55_9-64bit-debuginfo-4.4-150600.13.5.1
* libavutil56_70-64bit-4.4-150600.13.5.1
* libavresample4_0-64bit-debuginfo-4.4-150600.13.5.1
* libswresample3_9-64bit-4.4-150600.13.5.1
* libavfilter7_110-64bit-4.4-150600.13.5.1
* SUSE Package Hub 15 15-SP6 (aarch64 ppc64le s390x x86_64)
* ffmpeg-4-4.4-150600.13.5.1
* libswresample3_9-4.4-150600.13.5.1
* ffmpeg-4-private-devel-4.4-150600.13.5.1
* libavfilter7_110-4.4-150600.13.5.1
* libavutil56_70-debuginfo-4.4-150600.13.5.1
* ffmpeg-4-debuginfo-4.4-150600.13.5.1
* libswscale5_9-debuginfo-4.4-150600.13.5.1
* ffmpeg-4-libswresample-devel-4.4-150600.13.5.1
* libavutil56_70-4.4-150600.13.5.1
* ffmpeg-4-debugsource-4.4-150600.13.5.1
* ffmpeg-4-libavformat-devel-4.4-150600.13.5.1
* ffmpeg-4-libavfilter-devel-4.4-150600.13.5.1
* ffmpeg-4-libavdevice-devel-4.4-150600.13.5.1
* libavresample4_0-4.4-150600.13.5.1
* ffmpeg-4-libavcodec-devel-4.4-150600.13.5.1
* libpostproc55_9-debuginfo-4.4-150600.13.5.1
* libavfilter7_110-debuginfo-4.4-150600.13.5.1
* libavdevice58_13-debuginfo-4.4-150600.13.5.1
* libavdevice58_13-4.4-150600.13.5.1
* libavformat58_76-4.4-150600.13.5.1
* ffmpeg-4-libavutil-devel-4.4-150600.13.5.1
* libavformat58_76-debuginfo-4.4-150600.13.5.1
* libswscale5_9-4.4-150600.13.5.1
* libavresample4_0-debuginfo-4.4-150600.13.5.1
* libavcodec58_134-4.4-150600.13.5.1
* ffmpeg-4-libavresample-devel-4.4-150600.13.5.1
* libpostproc55_9-4.4-150600.13.5.1
* libswresample3_9-debuginfo-4.4-150600.13.5.1
* ffmpeg-4-libpostproc-devel-4.4-150600.13.5.1
* libavcodec58_134-debuginfo-4.4-150600.13.5.1
* ffmpeg-4-libswscale-devel-4.4-150600.13.5.1
* SUSE Linux Enterprise Workstation Extension 15 SP6 (x86_64)
* libavutil56_70-debuginfo-4.4-150600.13.5.1
* ffmpeg-4-debuginfo-4.4-150600.13.5.1
* libavcodec58_134-4.4-150600.13.5.1
* libswresample3_9-4.4-150600.13.5.1
* libswscale5_9-debuginfo-4.4-150600.13.5.1
* libavutil56_70-4.4-150600.13.5.1
* ffmpeg-4-debugsource-4.4-150600.13.5.1
* libavformat58_76-4.4-150600.13.5.1
* libswresample3_9-debuginfo-4.4-150600.13.5.1
* libavformat58_76-debuginfo-4.4-150600.13.5.1
* libswscale5_9-4.4-150600.13.5.1
* libavcodec58_134-debuginfo-4.4-150600.13.5.1

## References:

* https://www.suse.com/security/cve/CVE-2020-22021.html
* https://www.suse.com/security/cve/CVE-2023-51794.html
* https://bugzilla.suse.com/show_bug.cgi?id=1186586
* https://bugzilla.suse.com/show_bug.cgi?id=1223437



SUSE-SU-2024:1910-1: important: Security update for gstreamer-plugins-base


# Security update for gstreamer-plugins-base

Announcement ID: SUSE-SU-2024:1910-1
Rating: important
References:

* bsc#1224806

Cross-References:

* CVE-2024-4453

CVSS scores:

* CVE-2024-4453 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products:

* openSUSE Leap 15.4
* openSUSE Leap Micro 5.3
* openSUSE Leap Micro 5.4
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Micro 5.3
* SUSE Linux Enterprise Micro 5.4
* SUSE Linux Enterprise Micro for Rancher 5.3
* SUSE Linux Enterprise Micro for Rancher 5.4
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Manager Proxy 4.3
* SUSE Manager Retail Branch Server 4.3
* SUSE Manager Server 4.3

An update that solves one vulnerability can now be installed.

## Description:

This update for gstreamer-plugins-base fixes the following issues:

* CVE-2024-4453: Fixed lack of proper validation of user-supplied data when
parsing EXIF metadata (bsc#1224806)

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* SUSE Manager Retail Branch Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-
Server-4.3-2024-1910=1

* SUSE Manager Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-1910=1

* openSUSE Leap 15.4
zypper in -t patch SUSE-2024-1910=1

* openSUSE Leap Micro 5.3
zypper in -t patch openSUSE-Leap-Micro-5.3-2024-1910=1

* openSUSE Leap Micro 5.4
zypper in -t patch openSUSE-Leap-Micro-5.4-2024-1910=1

* SUSE Linux Enterprise Micro for Rancher 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2024-1910=1

* SUSE Linux Enterprise Micro 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2024-1910=1

* SUSE Linux Enterprise Micro for Rancher 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2024-1910=1

* SUSE Linux Enterprise Micro 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2024-1910=1

* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1910=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1910=1

* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1910=1

* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1910=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1910=1

* SUSE Manager Proxy 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-1910=1

## Package List:

* SUSE Manager Retail Branch Server 4.3 (x86_64)
* libgstrtp-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstAllocators-1_0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-devel-1.20.1-150400.3.8.2
* typelib-1_0-GstApp-1_0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstGLX11-1_0-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstRtp-1_0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstTag-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstRtsp-1_0-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgsttag-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstGLEGL-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstSdp-1_0-1.20.1-150400.3.8.2
* libgsttag-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstAudio-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstGL-1_0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstfft-1_0-0-1.20.1-150400.3.8.2
* libgstgl-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstGLWayland-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstVideo-1_0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-1.20.1-150400.3.8.2
* libgstrtp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstPbutils-1_0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debugsource-1.20.1-150400.3.8.2
* libgstgl-1_0-0-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-1.20.1-150400.3.8.2
* libgstfft-1_0-0-debuginfo-1.20.1-150400.3.8.2
* SUSE Manager Retail Branch Server 4.3 (noarch)
* gstreamer-plugins-base-lang-1.20.1-150400.3.8.2
* SUSE Manager Server 4.3 (ppc64le s390x x86_64)
* libgstrtp-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstAllocators-1_0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-devel-1.20.1-150400.3.8.2
* typelib-1_0-GstApp-1_0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstGLX11-1_0-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstRtp-1_0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstTag-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstRtsp-1_0-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgsttag-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstGLEGL-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstSdp-1_0-1.20.1-150400.3.8.2
* libgsttag-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstAudio-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstGL-1_0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstfft-1_0-0-1.20.1-150400.3.8.2
* libgstgl-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstGLWayland-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstVideo-1_0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-1.20.1-150400.3.8.2
* libgstrtp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstPbutils-1_0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debugsource-1.20.1-150400.3.8.2
* libgstgl-1_0-0-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-1.20.1-150400.3.8.2
* libgstfft-1_0-0-debuginfo-1.20.1-150400.3.8.2
* SUSE Manager Server 4.3 (noarch)
* gstreamer-plugins-base-lang-1.20.1-150400.3.8.2
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* libgstrtp-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstAllocators-1_0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-devel-1.20.1-150400.3.8.2
* typelib-1_0-GstApp-1_0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstGLX11-1_0-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstRtp-1_0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstTag-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstRtsp-1_0-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgsttag-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstGLEGL-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstSdp-1_0-1.20.1-150400.3.8.2
* libgsttag-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstAudio-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstGL-1_0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstfft-1_0-0-1.20.1-150400.3.8.2
* libgstgl-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstGLWayland-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstVideo-1_0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-1.20.1-150400.3.8.2
* libgstrtp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstPbutils-1_0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debugsource-1.20.1-150400.3.8.2
* libgstgl-1_0-0-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-1.20.1-150400.3.8.2
* libgstfft-1_0-0-debuginfo-1.20.1-150400.3.8.2
* openSUSE Leap 15.4 (x86_64)
* libgstsdp-1_0-0-32bit-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-32bit-1.20.1-150400.3.8.2
* libgstapp-1_0-0-32bit-debuginfo-1.20.1-150400.3.8.2
* libgstrtp-1_0-0-32bit-debuginfo-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-32bit-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-32bit-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-32bit-debuginfo-1.20.1-150400.3.8.2
* libgstgl-1_0-0-32bit-debuginfo-1.20.1-150400.3.8.2
* libgstfft-1_0-0-32bit-debuginfo-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-32bit-debuginfo-1.20.1-150400.3.8.2
* libgstapp-1_0-0-32bit-1.20.1-150400.3.8.2
* gstreamer-plugins-base-devel-32bit-1.20.1-150400.3.8.2
* libgstriff-1_0-0-32bit-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-32bit-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-32bit-debuginfo-1.20.1-150400.3.8.2
* libgsttag-1_0-0-32bit-debuginfo-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-32bit-1.20.1-150400.3.8.2
* gstreamer-plugins-base-32bit-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-32bit-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-32bit-1.20.1-150400.3.8.2
* libgstriff-1_0-0-32bit-debuginfo-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-32bit-debuginfo-1.20.1-150400.3.8.2
* libgstrtp-1_0-0-32bit-1.20.1-150400.3.8.2
* libgstfft-1_0-0-32bit-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-32bit-debuginfo-1.20.1-150400.3.8.2
* libgstgl-1_0-0-32bit-1.20.1-150400.3.8.2
* libgsttag-1_0-0-32bit-1.20.1-150400.3.8.2
* openSUSE Leap 15.4 (noarch)
* gstreamer-plugins-base-lang-1.20.1-150400.3.8.2
* openSUSE Leap 15.4 (aarch64_ilp32)
* libgstaudio-1_0-0-64bit-debuginfo-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-64bit-1.20.1-150400.3.8.2
* libgstgl-1_0-0-64bit-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-64bit-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-64bit-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-devel-64bit-1.20.1-150400.3.8.2
* libgstrtp-1_0-0-64bit-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-64bit-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-64bit-debuginfo-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-64bit-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-64bit-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-64bit-debuginfo-1.20.1-150400.3.8.2
* libgstgl-1_0-0-64bit-debuginfo-1.20.1-150400.3.8.2
* libgstriff-1_0-0-64bit-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-64bit-1.20.1-150400.3.8.2
* libgsttag-1_0-0-64bit-1.20.1-150400.3.8.2
* libgstfft-1_0-0-64bit-debuginfo-1.20.1-150400.3.8.2
* libgsttag-1_0-0-64bit-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-64bit-debuginfo-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-64bit-debuginfo-1.20.1-150400.3.8.2
* libgstrtp-1_0-0-64bit-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-64bit-1.20.1-150400.3.8.2
* libgstriff-1_0-0-64bit-1.20.1-150400.3.8.2
* libgstapp-1_0-0-64bit-1.20.1-150400.3.8.2
* libgstapp-1_0-0-64bit-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-64bit-debuginfo-1.20.1-150400.3.8.2
* libgstfft-1_0-0-64bit-1.20.1-150400.3.8.2
* openSUSE Leap Micro 5.3 (aarch64 x86_64)
* libgsttag-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debugsource-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgsttag-1_0-0-1.20.1-150400.3.8.2
* libgstgl-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstriff-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstgl-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debuginfo-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-1.20.1-150400.3.8.2
* openSUSE Leap Micro 5.4 (aarch64 s390x x86_64)
* libgsttag-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debugsource-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgsttag-1_0-0-1.20.1-150400.3.8.2
* libgstgl-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstriff-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstgl-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debuginfo-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-1.20.1-150400.3.8.2
* SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64)
* libgsttag-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debugsource-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgsttag-1_0-0-1.20.1-150400.3.8.2
* libgstgl-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstriff-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstgl-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debuginfo-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-1.20.1-150400.3.8.2
* SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64)
* libgsttag-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debugsource-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgsttag-1_0-0-1.20.1-150400.3.8.2
* libgstgl-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstriff-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstgl-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debuginfo-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-1.20.1-150400.3.8.2
* SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64)
* libgsttag-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debugsource-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgsttag-1_0-0-1.20.1-150400.3.8.2
* libgstgl-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstriff-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstgl-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debuginfo-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-1.20.1-150400.3.8.2
* SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64)
* libgsttag-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debugsource-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgsttag-1_0-0-1.20.1-150400.3.8.2
* libgstgl-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstriff-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstgl-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debuginfo-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-1.20.1-150400.3.8.2
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* libgstrtp-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstAllocators-1_0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-devel-1.20.1-150400.3.8.2
* typelib-1_0-GstApp-1_0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstGLX11-1_0-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstRtp-1_0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstTag-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstRtsp-1_0-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgsttag-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstGLEGL-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstSdp-1_0-1.20.1-150400.3.8.2
* libgsttag-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstAudio-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstGL-1_0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstfft-1_0-0-1.20.1-150400.3.8.2
* libgstgl-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstGLWayland-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstVideo-1_0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-1.20.1-150400.3.8.2
* libgstrtp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstPbutils-1_0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debugsource-1.20.1-150400.3.8.2
* libgstgl-1_0-0-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-1.20.1-150400.3.8.2
* libgstfft-1_0-0-debuginfo-1.20.1-150400.3.8.2
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch)
* gstreamer-plugins-base-lang-1.20.1-150400.3.8.2
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* libgstrtp-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstAllocators-1_0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-devel-1.20.1-150400.3.8.2
* typelib-1_0-GstApp-1_0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstGLX11-1_0-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstRtp-1_0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstTag-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstRtsp-1_0-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgsttag-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstGLEGL-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstSdp-1_0-1.20.1-150400.3.8.2
* libgsttag-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstAudio-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstGL-1_0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstfft-1_0-0-1.20.1-150400.3.8.2
* libgstgl-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstGLWayland-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstVideo-1_0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-1.20.1-150400.3.8.2
* libgstrtp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstPbutils-1_0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debugsource-1.20.1-150400.3.8.2
* libgstgl-1_0-0-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-1.20.1-150400.3.8.2
* libgstfft-1_0-0-debuginfo-1.20.1-150400.3.8.2
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch)
* gstreamer-plugins-base-lang-1.20.1-150400.3.8.2
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64)
* libgstrtp-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstAllocators-1_0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-devel-1.20.1-150400.3.8.2
* typelib-1_0-GstApp-1_0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstGLX11-1_0-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstRtp-1_0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstTag-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstRtsp-1_0-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgsttag-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstGLEGL-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstSdp-1_0-1.20.1-150400.3.8.2
* libgsttag-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstAudio-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstGL-1_0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstfft-1_0-0-1.20.1-150400.3.8.2
* libgstgl-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstGLWayland-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstVideo-1_0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-1.20.1-150400.3.8.2
* libgstrtp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstPbutils-1_0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debugsource-1.20.1-150400.3.8.2
* libgstgl-1_0-0-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-1.20.1-150400.3.8.2
* libgstfft-1_0-0-debuginfo-1.20.1-150400.3.8.2
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch)
* gstreamer-plugins-base-lang-1.20.1-150400.3.8.2
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x
x86_64)
* libgstrtp-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstAllocators-1_0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-devel-1.20.1-150400.3.8.2
* typelib-1_0-GstApp-1_0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstGLX11-1_0-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstRtp-1_0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstTag-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstRtsp-1_0-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgsttag-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstGLEGL-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstSdp-1_0-1.20.1-150400.3.8.2
* libgsttag-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstAudio-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstGL-1_0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstfft-1_0-0-1.20.1-150400.3.8.2
* libgstgl-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstGLWayland-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstVideo-1_0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-1.20.1-150400.3.8.2
* libgstrtp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstPbutils-1_0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debugsource-1.20.1-150400.3.8.2
* libgstgl-1_0-0-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-1.20.1-150400.3.8.2
* libgstfft-1_0-0-debuginfo-1.20.1-150400.3.8.2
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch)
* gstreamer-plugins-base-lang-1.20.1-150400.3.8.2
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* libgstrtp-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstAllocators-1_0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-devel-1.20.1-150400.3.8.2
* typelib-1_0-GstApp-1_0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstGLX11-1_0-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstRtp-1_0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstTag-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstRtsp-1_0-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgsttag-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstGLEGL-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstSdp-1_0-1.20.1-150400.3.8.2
* libgsttag-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstAudio-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstGL-1_0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstfft-1_0-0-1.20.1-150400.3.8.2
* libgstgl-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstGLWayland-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstVideo-1_0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-1.20.1-150400.3.8.2
* libgstrtp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstPbutils-1_0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debugsource-1.20.1-150400.3.8.2
* libgstgl-1_0-0-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-1.20.1-150400.3.8.2
* libgstfft-1_0-0-debuginfo-1.20.1-150400.3.8.2
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch)
* gstreamer-plugins-base-lang-1.20.1-150400.3.8.2
* SUSE Manager Proxy 4.3 (x86_64)
* libgstrtp-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstAllocators-1_0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-debuginfo-1.20.1-150400.3.8.2
* gstreamer-plugins-base-devel-1.20.1-150400.3.8.2
* typelib-1_0-GstApp-1_0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstGLX11-1_0-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstRtp-1_0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstTag-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstRtsp-1_0-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgsttag-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-1.20.1-150400.3.8.2
* typelib-1_0-GstGLEGL-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstSdp-1_0-1.20.1-150400.3.8.2
* libgsttag-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstpbutils-1_0-0-1.20.1-150400.3.8.2
* libgstallocators-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstAudio-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstGL-1_0-1.20.1-150400.3.8.2
* libgstapp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstfft-1_0-0-1.20.1-150400.3.8.2
* libgstgl-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstGLWayland-1_0-1.20.1-150400.3.8.2
* typelib-1_0-GstVideo-1_0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-1.20.1-150400.3.8.2
* libgstrtp-1_0-0-debuginfo-1.20.1-150400.3.8.2
* typelib-1_0-GstPbutils-1_0-1.20.1-150400.3.8.2
* gstreamer-plugins-base-debugsource-1.20.1-150400.3.8.2
* libgstgl-1_0-0-1.20.1-150400.3.8.2
* libgstsdp-1_0-0-1.20.1-150400.3.8.2
* libgstaudio-1_0-0-1.20.1-150400.3.8.2
* libgstriff-1_0-0-1.20.1-150400.3.8.2
* libgstvideo-1_0-0-debuginfo-1.20.1-150400.3.8.2
* libgstrtsp-1_0-0-1.20.1-150400.3.8.2
* libgstfft-1_0-0-debuginfo-1.20.1-150400.3.8.2
* SUSE Manager Proxy 4.3 (noarch)
* gstreamer-plugins-base-lang-1.20.1-150400.3.8.2

## References:

* https://www.suse.com/security/cve/CVE-2024-4453.html
* https://bugzilla.suse.com/show_bug.cgi?id=1224806



SUSE-SU-2024:1896-1: moderate: Security update for squid


# Security update for squid

Announcement ID: SUSE-SU-2024:1896-1
Rating: moderate
References:

* bsc#1225417

Cross-References:

* CVE-2024-33427

CVSS scores:

* CVE-2024-33427 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products:

* openSUSE Leap 15.4
* openSUSE Leap 15.5
* Server Applications Module 15-SP5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP5

An update that solves one vulnerability can now be installed.

## Description:

This update for squid fixes the following issues:

* CVE-2024-33427: Fixed possible buffer overread that could have led to a
denial-of-service (bsc#1225417).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.4
zypper in -t patch SUSE-2024-1896=1

* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-1896=1

* Server Applications Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP5-2024-1896=1

## Package List:

* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* squid-5.7-150400.3.29.2
* squid-debugsource-5.7-150400.3.29.2
* squid-debuginfo-5.7-150400.3.29.2
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* squid-5.7-150400.3.29.2
* squid-debugsource-5.7-150400.3.29.2
* squid-debuginfo-5.7-150400.3.29.2
* Server Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* squid-5.7-150400.3.29.2
* squid-debugsource-5.7-150400.3.29.2
* squid-debuginfo-5.7-150400.3.29.2

## References:

* https://www.suse.com/security/cve/CVE-2024-33427.html
* https://bugzilla.suse.com/show_bug.cgi?id=1225417



SUSE-SU-2024:1874-1: important: Security update for Java


# Security update for Java

Announcement ID: SUSE-SU-2024:1874-1
Rating: important
References:

* bsc#1187446
* bsc#1224410

Cross-References:

* CVE-2021-33813

CVSS scores:

* CVE-2021-33813 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2021-33813 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products:

* Basesystem Module 15-SP5
* Basesystem Module 15-SP6
* Development Tools Module 15-SP5
* Development Tools Module 15-SP6
* openSUSE Leap 15.5
* openSUSE Leap 15.6
* SUSE Enterprise Storage 7.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise High Performance Computing 15 SP2
* SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2
* SUSE Linux Enterprise High Performance Computing 15 SP3
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Server 15 SP2
* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2
* SUSE Linux Enterprise Server 15 SP3
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP2
* SUSE Linux Enterprise Server for SAP Applications 15 SP3
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Manager Proxy 4.3
* SUSE Manager Retail Branch Server 4.3
* SUSE Manager Server 4.3
* SUSE Manager Server 4.3 Module 4.3
* SUSE Package Hub 15 15-SP6

An update that solves one vulnerability and has one security fix can now be
installed.

## Description:

This update for Java fixes thefollowing issues:

apiguardian was updated to vesion 1.1.2:

* Added LICENSE/NOTICE to the generated jar
* Allow @API to be declared at the package level
* Explain usage of Status.DEPRECATED
* Include OSGi metadata in manifest

assertj-core was implemented at version 3.25.3:

* New package implementation needed by Junit5

byte-buddy was updated to version v1.14.16:

* `byte-buddy` is required by `assertj-core`
* Changes in version v1.14.16:

* Update ASM and introduce support for Java 23.

* Changes in version v1.14.15:

* Allow attaching from root on J9.

* Changes of v1.14.14:

* Adjust type validation to accept additional names that are legal in the
class file format.

* Fix dynamic attach on Windows when a service user is active.
* Avoid failure when using Android's strict mode.

dom4j was updated to version 2.1.4:

* Improvements and potentially breaking changes:

* Added new factory method org.dom4j.io.SAXReader.createDefault(). It has more
secure defaults than new SAXReader(), which uses system
XMLReaderFactory.createXMLReader() or
SAXParserFactory.newInstance().newSAXParser().

* If you use some optional dependency of dom4j (for example Jaxen, xsdlib
etc.), you need to specify an explicit dependency on it in your project.
They are no longer marked as a mandatory transitive dependency by dom4j.
* Following SAX parser features are disabled by default in
DocumentHelper.parse() for security reasons (they were enabled in previous
versions):

* http://xml.org/sax/properties/external-general-entities
* http://xml.org/sax/properties/external-parameter-entities
* Other changes:

* Do not depend on jtidy, since it is not used during build

* Fixed license to Plexus
* JPMS: Add the Automatic-Module-Name attribute to the manifest.
* Make a separate flavour for a minimal `dom4j-bootstrap` package used to
build `jaxen` and full `dom4j`
* Updated pull-parser version
* Reuse the writeAttribute method in writeAttributes
* Support build on OS with non-UTF8 as default charset
* Gradle: add an automatic module name
* Use Correct License Name "Plexus"
* Possible vulnerability of DocumentHelper.parseText() to XML injection
* CVS directories left in the source tree
* XMLWriter does not escape supplementary unicode characters correctly
* writer.writeOpen(x) doesn't write namespaces
* Fixed concurrency problem with QNameCache
* All dependencies are optional
* SAXReader: hardcoded namespace features
* Validate QNames
* StringIndexOutOfBoundsException in XMLWriter.writeElementContent()
* TreeNode has grown some generics
* QName serialization fix
* DocumentException initialize with nested exception
* Accidentally occurring error in a multi-threaded test
* Added compatibility with W3C DOM Level 3
* Use Java generics

hamcrest:

* `hamcrest-core` has been replaced by `hamcrest` (no source changes)

junit had the following change:

* Require hamcrest >= 2.2

junit5 was updated to version 5.10.2:

* Conditional execution based on OS architectures
* Configurable cleanup mode for @TempDir
* Configurable thread mode for @Timeout
* Custom class loader support for class/method selectors, @MethodSource,
@EnabledIf, and @DisabledIf
* Dry-run mode for test execution
* Failure threshold for @RepeatedTest
* Fixed build with the latest open-test-reporting milestone
* Fixed dependencies in module-info.java files
* Fixed unreported exception error that is fatal with JDK 21
* Improved configurability of parallel execution
* New @SelectMethod support in test @Suite classes.
* New ConsoleLauncher subcommand for test discovery without execution
* New convenience base classes for implementing ArgumentsProvider and
ArgumentConverter
* New IterationSelector
* New LauncherInterceptor SPI
* New NamespacedHierarchicalStore for use in third-party test engines
* New TempDirFactory SPI for customizing how temporary directories are created
* New testfeed details mode for ConsoleLauncher
* New TestInstancePreConstructCallback extension API
* Numerous bug fixes and minor improvements
* Parameter injection for @MethodSource methods
* Promotion of various experimental APIs to stable
* Reusable parameter resolution for custom extension methods via
ExecutableInvoker
* Stacktrace pruning to hide internal JUnit calls
* The binaries are compatible with java 1.8
* Various improvements to ConsoleLauncher
* XML reports in new Open Test Reporting format

jdom:

* Security issues fixed:

* CVE-2021-33813: Fixed an XXE issue in SAXBuilder in JDOM through 2.0.6
allows attackers to cause a denial of service via a crafted HTTP request
(bsc#1187446)

* Other changes and bugs fixed:

* Fixed wrong entries in changelog (bsc#1224410)

* The packages `jaxen`, `saxpath` and `xom` are now separate standalone
packages instead of being part of `jdom`

jaxen was implemented at version 2.0.0:

* New standalone RPM package implementation, originally part of `jdom` source
package
* Classpaths are much smaller and less complex, and will suppress a lot of
noise from static analysis tools.
* The Jaxen core code is also a little smaller and has fixed a few minor bugs
in XPath evaluation
* Despite the major version bump, this should be a drop in replacement for
almost every project. The two major possible incompatibilities are:

* The minimum supported Java version is now 1.5, up from 1.4 in 1.2.0 and 1.3
in 1.1.6.

* dom4j, XOM, and JDOM are now optional dependencies so if a project was
depending on them to be loaded transitively it will need to add explicit
dependencies to build.

jopt-simple:

* Included jopt-simple to Package Hub 15 SP5 (no source changes)

objectweb-asm was updated to version 9.7:

* New Opcodes.V23 constant for Java 23
* Bugs fixed
* Fixed unit test regression in dex2jar.
* Fixed 'ClassNode#outerClass' with incorrect JavaDocs.
* asm-bom packaging should be 'pom'.
* The Textifier prints a supplementary space at the end of each method that
throws at least one exception.

open-test-reporting:

* Included `open-test-reporting-events` and `open-test-reporting-schema` to
the channels as they are runtime dependencies of Junit5 (no source changes)

saxpath was implemented at version 1.0 FCS:

* New standalone RPM package implementation, originally part of `jdom` source
package (openSUSE Leap 15.5 package only)

xom was implemented at version 1.3.9:

* New standalone RPM package implementation, originally part of `jdom` source
package
* The Nodes and Elements classes are iterable so you can use the enhanced for
loop syntax on instances of these classes.
* The copy() method is now covariant.
* Adds Automatic-Moduole-Name to jar
* Remove direct dependency on xml-apis:xml-apis artifact since these classes
are now available in the core runtime.
* Eliminate usage of com.sun classes to make XOM compatible with JDK 16.
* Replace remaining usages of StringBuffer with StringBuilder to slightly
improve performance.

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-1874=1

* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2024-1874=1

* Basesystem Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1874=1

* Basesystem Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-1874=1

* Development Tools Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP5-2024-1874=1

* Development Tools Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP6-2024-1874=1

* SUSE Package Hub 15 15-SP6
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-1874=1

* SUSE Manager Server 4.3 Module 4.3
zypper in -t patch SUSE-SLE-Module-SUSE-Manager-Server-4.3-2024-1874=1

* SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2
zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-1874=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1874=1

* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1874=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1874=1

* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1874=1

* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2
zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-1874=1

* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1874=1

* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1874=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP2
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-1874=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP3
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1874=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1874=1

* SUSE Manager Proxy 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-1874=1

* SUSE Manager Retail Branch Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-
Server-4.3-2024-1874=1

* SUSE Manager Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-1874=1

* SUSE Enterprise Storage 7.1
zypper in -t patch SUSE-Storage-7.1-2024-1874=1

## Package List:

* openSUSE Leap 15.5 (noarch)
* junit5-minimal-5.10.2-150200.3.10.2
* jopt-simple-javadoc-5.0.4-150200.3.4.3
* junit5-guide-5.10.2-150200.3.10.3
* apiguardian-javadoc-1.1.2-150200.3.10.2
* junit5-5.10.2-150200.3.10.3
* junit5-javadoc-5.10.2-150200.3.10.3
* jopt-simple-5.0.4-150200.3.4.3
* dom4j-demo-2.1.4-150200.12.10.2
* xom-1.3.9-150200.5.3.3
* junit-manual-4.13.2-150200.3.15.2
* byte-buddy-1.14.16-150200.5.7.1
* jdom-1.1.3-150200.12.8.2
* objectweb-asm-9.7-150200.3.15.2
* objectweb-asm-javadoc-9.7-150200.3.15.2
* saxpath-1.0-150200.5.3.3
* apiguardian-1.1.2-150200.3.10.2
* jaxen-2.0.0-150200.5.3.1
* open-test-reporting-events-0.1.0~M2-150200.5.7.2
* dom4j-2.1.4-150200.12.10.2
* hamcrest-2.2-150200.12.17.2
* assertj-core-3.25.3-150200.5.4.3
* junit5-bom-5.10.2-150200.3.10.3
* junit-4.13.2-150200.3.15.2
* dom4j-javadoc-2.1.4-150200.12.10.2
* open-test-reporting-schema-0.1.0~M2-150200.5.7.2
* junit-javadoc-4.13.2-150200.3.15.2
* hamcrest-javadoc-2.2-150200.12.17.2
* openSUSE Leap 15.6 (noarch)
* junit5-minimal-5.10.2-150200.3.10.2
* jopt-simple-javadoc-5.0.4-150200.3.4.3
* junit5-guide-5.10.2-150200.3.10.3
* apiguardian-javadoc-1.1.2-150200.3.10.2
* junit5-5.10.2-150200.3.10.3
* junit5-javadoc-5.10.2-150200.3.10.3
* jopt-simple-5.0.4-150200.3.4.3
* dom4j-demo-2.1.4-150200.12.10.2
* xom-1.3.9-150200.5.3.3
* junit-manual-4.13.2-150200.3.15.2
* byte-buddy-1.14.16-150200.5.7.1
* jdom-1.1.3-150200.12.8.2
* objectweb-asm-9.7-150200.3.15.2
* objectweb-asm-javadoc-9.7-150200.3.15.2
* saxpath-1.0-150200.5.3.3
* apiguardian-1.1.2-150200.3.10.2
* jaxen-2.0.0-150200.5.3.1
* open-test-reporting-events-0.1.0~M2-150200.5.7.2
* dom4j-2.1.4-150200.12.10.2
* hamcrest-2.2-150200.12.17.2
* assertj-core-3.25.3-150200.5.4.3
* junit5-bom-5.10.2-150200.3.10.3
* junit-4.13.2-150200.3.15.2
* dom4j-javadoc-2.1.4-150200.12.10.2
* open-test-reporting-schema-0.1.0~M2-150200.5.7.2
* junit-javadoc-4.13.2-150200.3.15.2
* hamcrest-javadoc-2.2-150200.12.17.2
* Basesystem Module 15-SP5 (noarch)
* objectweb-asm-9.7-150200.3.15.2
* Basesystem Module 15-SP6 (noarch)
* objectweb-asm-9.7-150200.3.15.2
* Development Tools Module 15-SP5 (noarch)
* jaxen-2.0.0-150200.5.3.1
* hamcrest-2.2-150200.12.17.2
* junit-4.13.2-150200.3.15.2
* jdom-1.1.3-150200.12.8.2
* dom4j-2.1.4-150200.12.10.2
* xom-1.3.9-150200.5.3.3
* Development Tools Module 15-SP6 (noarch)
* jaxen-2.0.0-150200.5.3.1
* hamcrest-2.2-150200.12.17.2
* junit-4.13.2-150200.3.15.2
* jdom-1.1.3-150200.12.8.2
* dom4j-2.1.4-150200.12.10.2
* xom-1.3.9-150200.5.3.3
* SUSE Package Hub 15 15-SP6 (noarch)
* apiguardian-1.1.2-150200.3.10.2
* assertj-core-3.25.3-150200.5.4.3
* open-test-reporting-events-0.1.0~M2-150200.5.7.2
* junit5-minimal-5.10.2-150200.3.10.2
* byte-buddy-1.14.16-150200.5.7.1
* open-test-reporting-schema-0.1.0~M2-150200.5.7.2
* junit5-5.10.2-150200.3.10.3
* jopt-simple-5.0.4-150200.3.4.3
* SUSE Manager Server 4.3 Module 4.3 (noarch)
* jaxen-2.0.0-150200.5.3.1
* jdom-1.1.3-150200.12.8.2
* objectweb-asm-9.7-150200.3.15.2
* dom4j-2.1.4-150200.12.10.2
* xom-1.3.9-150200.5.3.3
* SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (noarch)
* jaxen-2.0.0-150200.5.3.1
* hamcrest-2.2-150200.12.17.2
* junit-4.13.2-150200.3.15.2
* jdom-1.1.3-150200.12.8.2
* objectweb-asm-9.7-150200.3.15.2
* dom4j-2.1.4-150200.12.10.2
* xom-1.3.9-150200.5.3.3
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch)
* jaxen-2.0.0-150200.5.3.1
* hamcrest-2.2-150200.12.17.2
* junit-4.13.2-150200.3.15.2
* jdom-1.1.3-150200.12.8.2
* objectweb-asm-9.7-150200.3.15.2
* dom4j-2.1.4-150200.12.10.2
* xom-1.3.9-150200.5.3.3
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch)
* jaxen-2.0.0-150200.5.3.1
* hamcrest-2.2-150200.12.17.2
* junit-4.13.2-150200.3.15.2
* jdom-1.1.3-150200.12.8.2
* objectweb-asm-9.7-150200.3.15.2
* dom4j-2.1.4-150200.12.10.2
* xom-1.3.9-150200.5.3.3
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch)
* jaxen-2.0.0-150200.5.3.1
* hamcrest-2.2-150200.12.17.2
* junit-4.13.2-150200.3.15.2
* jdom-1.1.3-150200.12.8.2
* objectweb-asm-9.7-150200.3.15.2
* dom4j-2.1.4-150200.12.10.2
* xom-1.3.9-150200.5.3.3
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch)
* jaxen-2.0.0-150200.5.3.1
* hamcrest-2.2-150200.12.17.2
* junit-4.13.2-150200.3.15.2
* jdom-1.1.3-150200.12.8.2
* objectweb-asm-9.7-150200.3.15.2
* dom4j-2.1.4-150200.12.10.2
* xom-1.3.9-150200.5.3.3
* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (noarch)
* jaxen-2.0.0-150200.5.3.1
* hamcrest-2.2-150200.12.17.2
* junit-4.13.2-150200.3.15.2
* jdom-1.1.3-150200.12.8.2
* objectweb-asm-9.7-150200.3.15.2
* dom4j-2.1.4-150200.12.10.2
* xom-1.3.9-150200.5.3.3
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch)
* jaxen-2.0.0-150200.5.3.1
* hamcrest-2.2-150200.12.17.2
* junit-4.13.2-150200.3.15.2
* jdom-1.1.3-150200.12.8.2
* objectweb-asm-9.7-150200.3.15.2
* dom4j-2.1.4-150200.12.10.2
* xom-1.3.9-150200.5.3.3
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch)
* jaxen-2.0.0-150200.5.3.1
* hamcrest-2.2-150200.12.17.2
* junit-4.13.2-150200.3.15.2
* jdom-1.1.3-150200.12.8.2
* objectweb-asm-9.7-150200.3.15.2
* dom4j-2.1.4-150200.12.10.2
* xom-1.3.9-150200.5.3.3
* SUSE Linux Enterprise Server for SAP Applications 15 SP2 (noarch)
* jaxen-2.0.0-150200.5.3.1
* hamcrest-2.2-150200.12.17.2
* junit-4.13.2-150200.3.15.2
* jdom-1.1.3-150200.12.8.2
* objectweb-asm-9.7-150200.3.15.2
* dom4j-2.1.4-150200.12.10.2
* xom-1.3.9-150200.5.3.3
* SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch)
* jaxen-2.0.0-150200.5.3.1
* hamcrest-2.2-150200.12.17.2
* junit-4.13.2-150200.3.15.2
* jdom-1.1.3-150200.12.8.2
* objectweb-asm-9.7-150200.3.15.2
* dom4j-2.1.4-150200.12.10.2
* xom-1.3.9-150200.5.3.3
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch)
* jaxen-2.0.0-150200.5.3.1
* hamcrest-2.2-150200.12.17.2
* junit-4.13.2-150200.3.15.2
* jdom-1.1.3-150200.12.8.2
* objectweb-asm-9.7-150200.3.15.2
* dom4j-2.1.4-150200.12.10.2
* xom-1.3.9-150200.5.3.3
* SUSE Manager Proxy 4.3 (noarch)
* objectweb-asm-9.7-150200.3.15.2
* SUSE Manager Retail Branch Server 4.3 (noarch)
* objectweb-asm-9.7-150200.3.15.2
* SUSE Manager Server 4.3 (noarch)
* objectweb-asm-9.7-150200.3.15.2
* SUSE Enterprise Storage 7.1 (noarch)
* jaxen-2.0.0-150200.5.3.1
* hamcrest-2.2-150200.12.17.2
* junit-4.13.2-150200.3.15.2
* jdom-1.1.3-150200.12.8.2
* objectweb-asm-9.7-150200.3.15.2
* dom4j-2.1.4-150200.12.10.2
* xom-1.3.9-150200.5.3.3

## References:

* https://www.suse.com/security/cve/CVE-2021-33813.html
* https://bugzilla.suse.com/show_bug.cgi?id=1187446
* https://bugzilla.suse.com/show_bug.cgi?id=1224410



SUSE-SU-2024:1895-1: important: Security update for glibc


# Security update for glibc

Announcement ID: SUSE-SU-2024:1895-1
Rating: important
References:

* bsc#1221940
* bsc#1223423
* bsc#1223424
* bsc#1223425

Cross-References:

* CVE-2024-33599
* CVE-2024-33600
* CVE-2024-33601
* CVE-2024-33602

CVSS scores:

* CVE-2024-33599 ( SUSE ): 7.6 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
* CVE-2024-33600 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-33601 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-33602 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected Products:

* Basesystem Module 15-SP5
* Development Tools Module 15-SP5
* openSUSE Leap 15.3
* openSUSE Leap 15.5
* openSUSE Leap Micro 5.3
* openSUSE Leap Micro 5.4
* SUSE Enterprise Storage 7.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise High Performance Computing 15 SP3
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Micro 5.1
* SUSE Linux Enterprise Micro 5.2
* SUSE Linux Enterprise Micro 5.3
* SUSE Linux Enterprise Micro 5.4
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Micro for Rancher 5.2
* SUSE Linux Enterprise Micro for Rancher 5.3
* SUSE Linux Enterprise Micro for Rancher 5.4
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP3
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP3
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Manager Proxy 4.3
* SUSE Manager Retail Branch Server 4.3
* SUSE Manager Server 4.3

An update that solves four vulnerabilities can now be installed.

## Description:

This update for glibc fixes the following issues:

* CVE-2024-33599: Fixed a stack-based buffer overflow in netgroup cache in
nscd (bsc#1223423)
* CVE-2024-33600: Avoid null pointer crashes after notfound response in nscd
(bsc#1223424)
* CVE-2024-33600: Do not send missing not-found response in addgetnetgrentX in
nscd (bsc#1223424)
* CVE-2024-33601, CVE-2024-33602: Fixed use of two buffers in addgetnetgrentX
( bsc#1223425)
* CVE-2024-33602: Use time_t for return type of addgetnetgrentX (bsc#1223425)

* Avoid creating userspace live patching prologue for _start routine
(bsc#1221940)

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.3
zypper in -t patch SUSE-2024-1895=1

* openSUSE Leap Micro 5.3
zypper in -t patch openSUSE-Leap-Micro-5.3-2024-1895=1

* openSUSE Leap Micro 5.4
zypper in -t patch openSUSE-Leap-Micro-5.4-2024-1895=1

* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-1895=1

* SUSE Linux Enterprise Micro for Rancher 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2024-1895=1

* SUSE Linux Enterprise Micro 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2024-1895=1

* SUSE Linux Enterprise Micro for Rancher 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2024-1895=1

* SUSE Linux Enterprise Micro 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2024-1895=1

* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2024-1895=1

* Basesystem Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1895=1

* Development Tools Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP5-2024-1895=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1895=1

* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1895=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1895=1

* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1895=1

* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1895=1

* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1895=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP3
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1895=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1895=1

* SUSE Manager Proxy 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-1895=1

* SUSE Manager Retail Branch Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-
Server-4.3-2024-1895=1

* SUSE Manager Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-1895=1

* SUSE Enterprise Storage 7.1
zypper in -t patch SUSE-Storage-7.1-2024-1895=1

* SUSE Linux Enterprise Micro 5.1
zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-1895=1

* SUSE Linux Enterprise Micro 5.2
zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-1895=1

* SUSE Linux Enterprise Micro for Rancher 5.2
zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-1895=1

## Package List:

* openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586 i686)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-devel-static-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-profile-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586)
* glibc-extra-debuginfo-2.31-150300.83.1
* glibc-utils-src-debugsource-2.31-150300.83.1
* glibc-utils-2.31-150300.83.1
* nscd-2.31-150300.83.1
* glibc-utils-debuginfo-2.31-150300.83.1
* glibc-extra-2.31-150300.83.1
* nscd-debuginfo-2.31-150300.83.1
* openSUSE Leap 15.3 (noarch)
* glibc-info-2.31-150300.83.1
* glibc-html-2.31-150300.83.1
* glibc-lang-2.31-150300.83.1
* glibc-i18ndata-2.31-150300.83.1
* openSUSE Leap 15.3 (x86_64)
* glibc-locale-base-32bit-2.31-150300.83.1
* glibc-utils-32bit-debuginfo-2.31-150300.83.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.83.1
* glibc-utils-32bit-2.31-150300.83.1
* glibc-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-2.31-150300.83.1
* glibc-devel-32bit-2.31-150300.83.1
* glibc-devel-32bit-debuginfo-2.31-150300.83.1
* glibc-devel-static-32bit-2.31-150300.83.1
* glibc-profile-32bit-2.31-150300.83.1
* openSUSE Leap 15.3 (aarch64_ilp32)
* glibc-profile-64bit-2.31-150300.83.1
* glibc-64bit-debuginfo-2.31-150300.83.1
* glibc-utils-64bit-2.31-150300.83.1
* glibc-64bit-2.31-150300.83.1
* glibc-locale-base-64bit-debuginfo-2.31-150300.83.1
* glibc-devel-64bit-debuginfo-2.31-150300.83.1
* glibc-locale-base-64bit-2.31-150300.83.1
* glibc-utils-64bit-debuginfo-2.31-150300.83.1
* glibc-devel-static-64bit-2.31-150300.83.1
* glibc-devel-64bit-2.31-150300.83.1
* openSUSE Leap Micro 5.3 (aarch64 x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* openSUSE Leap Micro 5.4 (aarch64 s390x x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-extra-2.31-150300.83.1
* glibc-extra-debuginfo-2.31-150300.83.1
* glibc-utils-src-debugsource-2.31-150300.83.1
* nscd-debuginfo-2.31-150300.83.1
* glibc-utils-2.31-150300.83.1
* nscd-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-devel-static-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-utils-debuginfo-2.31-150300.83.1
* glibc-profile-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* openSUSE Leap 15.5 (x86_64)
* glibc-locale-base-32bit-2.31-150300.83.1
* glibc-utils-32bit-debuginfo-2.31-150300.83.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.83.1
* glibc-utils-32bit-2.31-150300.83.1
* glibc-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-2.31-150300.83.1
* glibc-devel-32bit-2.31-150300.83.1
* glibc-devel-32bit-debuginfo-2.31-150300.83.1
* glibc-devel-static-32bit-2.31-150300.83.1
* glibc-profile-32bit-2.31-150300.83.1
* openSUSE Leap 15.5 (noarch)
* glibc-info-2.31-150300.83.1
* glibc-html-2.31-150300.83.1
* glibc-lang-2.31-150300.83.1
* glibc-i18ndata-2.31-150300.83.1
* SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* SUSE Linux Enterprise Micro 5.5 (aarch64 s390x x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-extra-debuginfo-2.31-150300.83.1
* nscd-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-extra-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* nscd-debuginfo-2.31-150300.83.1
* glibc-profile-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* Basesystem Module 15-SP5 (noarch)
* glibc-info-2.31-150300.83.1
* glibc-lang-2.31-150300.83.1
* glibc-i18ndata-2.31-150300.83.1
* Basesystem Module 15-SP5 (x86_64)
* glibc-locale-base-32bit-2.31-150300.83.1
* glibc-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-2.31-150300.83.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.83.1
* Development Tools Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* glibc-debugsource-2.31-150300.83.1
* glibc-utils-src-debugsource-2.31-150300.83.1
* glibc-utils-2.31-150300.83.1
* glibc-devel-static-2.31-150300.83.1
* glibc-utils-debuginfo-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* Development Tools Module 15-SP5 (x86_64)
* glibc-devel-32bit-2.31-150300.83.1
* glibc-devel-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-debuginfo-2.31-150300.83.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64
x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-extra-2.31-150300.83.1
* glibc-extra-debuginfo-2.31-150300.83.1
* glibc-utils-src-debugsource-2.31-150300.83.1
* nscd-debuginfo-2.31-150300.83.1
* glibc-utils-2.31-150300.83.1
* nscd-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-devel-static-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-utils-debuginfo-2.31-150300.83.1
* glibc-profile-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch)
* glibc-info-2.31-150300.83.1
* glibc-lang-2.31-150300.83.1
* glibc-i18ndata-2.31-150300.83.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (x86_64)
* glibc-locale-base-32bit-2.31-150300.83.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-2.31-150300.83.1
* glibc-devel-32bit-2.31-150300.83.1
* glibc-devel-32bit-debuginfo-2.31-150300.83.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-extra-2.31-150300.83.1
* glibc-extra-debuginfo-2.31-150300.83.1
* glibc-utils-src-debugsource-2.31-150300.83.1
* nscd-debuginfo-2.31-150300.83.1
* glibc-utils-2.31-150300.83.1
* nscd-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-devel-static-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-utils-debuginfo-2.31-150300.83.1
* glibc-profile-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch)
* glibc-info-2.31-150300.83.1
* glibc-lang-2.31-150300.83.1
* glibc-i18ndata-2.31-150300.83.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (x86_64)
* glibc-locale-base-32bit-2.31-150300.83.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-2.31-150300.83.1
* glibc-devel-32bit-2.31-150300.83.1
* glibc-devel-32bit-debuginfo-2.31-150300.83.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-extra-2.31-150300.83.1
* glibc-extra-debuginfo-2.31-150300.83.1
* glibc-utils-src-debugsource-2.31-150300.83.1
* nscd-debuginfo-2.31-150300.83.1
* glibc-utils-2.31-150300.83.1
* nscd-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-devel-static-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-utils-debuginfo-2.31-150300.83.1
* glibc-profile-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch)
* glibc-info-2.31-150300.83.1
* glibc-lang-2.31-150300.83.1
* glibc-i18ndata-2.31-150300.83.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64)
* glibc-locale-base-32bit-2.31-150300.83.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-2.31-150300.83.1
* glibc-devel-32bit-2.31-150300.83.1
* glibc-devel-32bit-debuginfo-2.31-150300.83.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64)
* glibc-locale-base-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-debuginfo-2.31-150300.83.1
* glibc-extra-debuginfo-2.31-150300.83.1
* glibc-utils-src-debugsource-2.31-150300.83.1
* glibc-devel-static-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-utils-debuginfo-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-utils-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-profile-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* glibc-32bit-2.31-150300.83.1
* nscd-2.31-150300.83.1
* glibc-devel-32bit-debuginfo-2.31-150300.83.1
* glibc-extra-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* nscd-debuginfo-2.31-150300.83.1
* glibc-locale-base-32bit-2.31-150300.83.1
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-devel-32bit-2.31-150300.83.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch)
* glibc-info-2.31-150300.83.1
* glibc-lang-2.31-150300.83.1
* glibc-i18ndata-2.31-150300.83.1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x
x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-extra-2.31-150300.83.1
* glibc-extra-debuginfo-2.31-150300.83.1
* glibc-utils-src-debugsource-2.31-150300.83.1
* nscd-debuginfo-2.31-150300.83.1
* glibc-utils-2.31-150300.83.1
* nscd-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-devel-static-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-utils-debuginfo-2.31-150300.83.1
* glibc-profile-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch)
* glibc-info-2.31-150300.83.1
* glibc-lang-2.31-150300.83.1
* glibc-i18ndata-2.31-150300.83.1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (x86_64)
* glibc-locale-base-32bit-2.31-150300.83.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-2.31-150300.83.1
* glibc-devel-32bit-2.31-150300.83.1
* glibc-devel-32bit-debuginfo-2.31-150300.83.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x
x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-extra-2.31-150300.83.1
* glibc-extra-debuginfo-2.31-150300.83.1
* glibc-utils-src-debugsource-2.31-150300.83.1
* nscd-debuginfo-2.31-150300.83.1
* glibc-utils-2.31-150300.83.1
* nscd-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-devel-static-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-utils-debuginfo-2.31-150300.83.1
* glibc-profile-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch)
* glibc-info-2.31-150300.83.1
* glibc-lang-2.31-150300.83.1
* glibc-i18ndata-2.31-150300.83.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (x86_64)
* glibc-locale-base-32bit-2.31-150300.83.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-2.31-150300.83.1
* glibc-devel-32bit-2.31-150300.83.1
* glibc-devel-32bit-debuginfo-2.31-150300.83.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-extra-2.31-150300.83.1
* glibc-extra-debuginfo-2.31-150300.83.1
* glibc-utils-src-debugsource-2.31-150300.83.1
* nscd-debuginfo-2.31-150300.83.1
* glibc-utils-2.31-150300.83.1
* nscd-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-devel-static-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-utils-debuginfo-2.31-150300.83.1
* glibc-profile-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch)
* glibc-info-2.31-150300.83.1
* glibc-lang-2.31-150300.83.1
* glibc-i18ndata-2.31-150300.83.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP3 (x86_64)
* glibc-locale-base-32bit-2.31-150300.83.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-2.31-150300.83.1
* glibc-devel-32bit-2.31-150300.83.1
* glibc-devel-32bit-debuginfo-2.31-150300.83.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-extra-2.31-150300.83.1
* glibc-extra-debuginfo-2.31-150300.83.1
* glibc-utils-src-debugsource-2.31-150300.83.1
* nscd-debuginfo-2.31-150300.83.1
* glibc-utils-2.31-150300.83.1
* nscd-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-devel-static-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-utils-debuginfo-2.31-150300.83.1
* glibc-profile-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch)
* glibc-info-2.31-150300.83.1
* glibc-lang-2.31-150300.83.1
* glibc-i18ndata-2.31-150300.83.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64)
* glibc-locale-base-32bit-2.31-150300.83.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-2.31-150300.83.1
* glibc-devel-32bit-2.31-150300.83.1
* glibc-devel-32bit-debuginfo-2.31-150300.83.1
* SUSE Manager Proxy 4.3 (x86_64)
* glibc-locale-base-32bit-2.31-150300.83.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.83.1
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-2.31-150300.83.1
* glibc-extra-debuginfo-2.31-150300.83.1
* nscd-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-extra-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* nscd-debuginfo-2.31-150300.83.1
* glibc-profile-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* SUSE Manager Proxy 4.3 (noarch)
* glibc-info-2.31-150300.83.1
* glibc-lang-2.31-150300.83.1
* glibc-i18ndata-2.31-150300.83.1
* SUSE Manager Retail Branch Server 4.3 (x86_64)
* glibc-locale-base-32bit-2.31-150300.83.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.83.1
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-2.31-150300.83.1
* glibc-extra-debuginfo-2.31-150300.83.1
* nscd-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-extra-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* nscd-debuginfo-2.31-150300.83.1
* glibc-profile-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* SUSE Manager Retail Branch Server 4.3 (noarch)
* glibc-info-2.31-150300.83.1
* glibc-lang-2.31-150300.83.1
* glibc-i18ndata-2.31-150300.83.1
* SUSE Manager Server 4.3 (ppc64le s390x x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-extra-debuginfo-2.31-150300.83.1
* nscd-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-extra-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* nscd-debuginfo-2.31-150300.83.1
* glibc-profile-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* SUSE Manager Server 4.3 (noarch)
* glibc-info-2.31-150300.83.1
* glibc-lang-2.31-150300.83.1
* glibc-i18ndata-2.31-150300.83.1
* SUSE Manager Server 4.3 (x86_64)
* glibc-locale-base-32bit-2.31-150300.83.1
* glibc-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-2.31-150300.83.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.83.1
* SUSE Enterprise Storage 7.1 (aarch64 x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-devel-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-extra-2.31-150300.83.1
* glibc-extra-debuginfo-2.31-150300.83.1
* glibc-utils-src-debugsource-2.31-150300.83.1
* nscd-debuginfo-2.31-150300.83.1
* glibc-utils-2.31-150300.83.1
* nscd-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-devel-static-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-utils-debuginfo-2.31-150300.83.1
* glibc-profile-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* SUSE Enterprise Storage 7.1 (noarch)
* glibc-info-2.31-150300.83.1
* glibc-lang-2.31-150300.83.1
* glibc-i18ndata-2.31-150300.83.1
* SUSE Enterprise Storage 7.1 (x86_64)
* glibc-locale-base-32bit-2.31-150300.83.1
* glibc-locale-base-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-debuginfo-2.31-150300.83.1
* glibc-32bit-2.31-150300.83.1
* glibc-devel-32bit-2.31-150300.83.1
* glibc-devel-32bit-debuginfo-2.31-150300.83.1
* SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1
* SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64)
* glibc-locale-base-debuginfo-2.31-150300.83.1
* glibc-debugsource-2.31-150300.83.1
* glibc-devel-2.31-150300.83.1
* glibc-2.31-150300.83.1
* glibc-locale-base-2.31-150300.83.1
* glibc-debuginfo-2.31-150300.83.1
* glibc-locale-2.31-150300.83.1

## References:

* https://www.suse.com/security/cve/CVE-2024-33599.html
* https://www.suse.com/security/cve/CVE-2024-33600.html
* https://www.suse.com/security/cve/CVE-2024-33601.html
* https://www.suse.com/security/cve/CVE-2024-33602.html
* https://bugzilla.suse.com/show_bug.cgi?id=1221940
* https://bugzilla.suse.com/show_bug.cgi?id=1223423
* https://bugzilla.suse.com/show_bug.cgi?id=1223424
* https://bugzilla.suse.com/show_bug.cgi?id=1223425



SUSE-SU-2024:1880-1: moderate: Security update for python-requests


# Security update for python-requests

Announcement ID: SUSE-SU-2024:1880-1
Rating: moderate
References:

* bsc#1224788

Cross-References:

* CVE-2024-35195

CVSS scores:

* CVE-2024-35195 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N

Affected Products:

* Basesystem Module 15-SP5
* Basesystem Module 15-SP6
* openSUSE Leap 15.3
* openSUSE Leap 15.5
* openSUSE Leap Micro 5.3
* openSUSE Leap Micro 5.4
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Micro 5.1
* SUSE Linux Enterprise Micro 5.2
* SUSE Linux Enterprise Micro 5.3
* SUSE Linux Enterprise Micro 5.4
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Micro for Rancher 5.2
* SUSE Linux Enterprise Micro for Rancher 5.3
* SUSE Linux Enterprise Micro for Rancher 5.4
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP6

An update that solves one vulnerability can now be installed.

## Description:

This update for python-requests fixes the following issues:

* CVE-2024-35195: Fixed cert verification regardless of changes to the value
of `verify` (bsc#1224788).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.3
zypper in -t patch SUSE-2024-1880=1

* openSUSE Leap Micro 5.3
zypper in -t patch openSUSE-Leap-Micro-5.3-2024-1880=1

* openSUSE Leap Micro 5.4
zypper in -t patch openSUSE-Leap-Micro-5.4-2024-1880=1

* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-1880=1

* SUSE Linux Enterprise Micro for Rancher 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2024-1880=1

* SUSE Linux Enterprise Micro 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2024-1880=1

* SUSE Linux Enterprise Micro for Rancher 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2024-1880=1

* SUSE Linux Enterprise Micro 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2024-1880=1

* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2024-1880=1

* Basesystem Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1880=1

* Basesystem Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-1880=1

* SUSE Linux Enterprise Micro 5.1
zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-1880=1

* SUSE Linux Enterprise Micro 5.2
zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-1880=1

* SUSE Linux Enterprise Micro for Rancher 5.2
zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-1880=1

## Package List:

* openSUSE Leap 15.3 (noarch)
* python3-requests-2.25.1-150300.3.9.1
* python2-requests-2.25.1-150300.3.9.1
* openSUSE Leap Micro 5.3 (noarch)
* python3-requests-2.25.1-150300.3.9.1
* openSUSE Leap Micro 5.4 (noarch)
* python3-requests-2.25.1-150300.3.9.1
* openSUSE Leap 15.5 (noarch)
* python3-requests-2.25.1-150300.3.9.1
* SUSE Linux Enterprise Micro for Rancher 5.3 (noarch)
* python3-requests-2.25.1-150300.3.9.1
* SUSE Linux Enterprise Micro 5.3 (noarch)
* python3-requests-2.25.1-150300.3.9.1
* SUSE Linux Enterprise Micro for Rancher 5.4 (noarch)
* python3-requests-2.25.1-150300.3.9.1
* SUSE Linux Enterprise Micro 5.4 (noarch)
* python3-requests-2.25.1-150300.3.9.1
* SUSE Linux Enterprise Micro 5.5 (noarch)
* python3-requests-2.25.1-150300.3.9.1
* Basesystem Module 15-SP5 (noarch)
* python3-requests-2.25.1-150300.3.9.1
* Basesystem Module 15-SP6 (noarch)
* python3-requests-2.25.1-150300.3.9.1
* SUSE Linux Enterprise Micro 5.1 (noarch)
* python3-requests-2.25.1-150300.3.9.1
* SUSE Linux Enterprise Micro 5.2 (noarch)
* python3-requests-2.25.1-150300.3.9.1
* SUSE Linux Enterprise Micro for Rancher 5.2 (noarch)
* python3-requests-2.25.1-150300.3.9.1

## References:

* https://www.suse.com/security/cve/CVE-2024-35195.html
* https://bugzilla.suse.com/show_bug.cgi?id=1224788



SUSE-SU-2024:1882-1: important: Security update for gstreamer-plugins-base


# Security update for gstreamer-plugins-base

Announcement ID: SUSE-SU-2024:1882-1
Rating: important
References:

* bsc#1224806

Cross-References:

* CVE-2024-4453

CVSS scores:

* CVE-2024-4453 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products:

* Basesystem Module 15-SP5
* openSUSE Leap 15.5
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Package Hub 15 15-SP5

An update that solves one vulnerability can now be installed.

## Description:

This update for gstreamer-plugins-base fixes the following issues:

* CVE-2024-4453: Fixed lack of proper validation of user-supplied data when
parsing EXIF metadata (bsc#1224806)

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.5
zypper in -t patch SUSE-2024-1882=1 openSUSE-SLE-15.5-2024-1882=1

* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2024-1882=1

* Basesystem Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1882=1

* SUSE Package Hub 15 15-SP5
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1882=1

## Package List:

* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586)
* libgstrtp-1_0-0-debuginfo-1.22.0-150500.3.8.2
* typelib-1_0-GstGLX11-1_0-1.22.0-150500.3.8.2
* libgsttag-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstallocators-1_0-0-1.22.0-150500.3.8.2
* libgstriff-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstrtsp-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstpbutils-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstaudio-1_0-0-1.22.0-150500.3.8.2
* typelib-1_0-GstAllocators-1_0-1.22.0-150500.3.8.2
* libgstvideo-1_0-0-1.22.0-150500.3.8.2
* typelib-1_0-GstTag-1_0-1.22.0-150500.3.8.2
* typelib-1_0-GstRtp-1_0-1.22.0-150500.3.8.2
* typelib-1_0-GstRtsp-1_0-1.22.0-150500.3.8.2
* libgstsdp-1_0-0-1.22.0-150500.3.8.2
* libgstgl-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstsdp-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstvideo-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstfft-1_0-0-1.22.0-150500.3.8.2
* libgstpbutils-1_0-0-1.22.0-150500.3.8.2
* gstreamer-plugins-base-devel-1.22.0-150500.3.8.2
* libgstrtsp-1_0-0-1.22.0-150500.3.8.2
* typelib-1_0-GstPbutils-1_0-1.22.0-150500.3.8.2
* libgstapp-1_0-0-1.22.0-150500.3.8.2
* libgstriff-1_0-0-1.22.0-150500.3.8.2
* libgstfft-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgsttag-1_0-0-1.22.0-150500.3.8.2
* gstreamer-plugins-base-debuginfo-1.22.0-150500.3.8.2
* libgstrtp-1_0-0-1.22.0-150500.3.8.2
* typelib-1_0-GstAudio-1_0-1.22.0-150500.3.8.2
* typelib-1_0-GstSdp-1_0-1.22.0-150500.3.8.2
* libgstapp-1_0-0-debuginfo-1.22.0-150500.3.8.2
* typelib-1_0-GstVideo-1_0-1.22.0-150500.3.8.2
* libgstgl-1_0-0-1.22.0-150500.3.8.2
* gstreamer-plugins-base-debugsource-1.22.0-150500.3.8.2
* typelib-1_0-GstGLWayland-1_0-1.22.0-150500.3.8.2
* typelib-1_0-GstGL-1_0-1.22.0-150500.3.8.2
* libgstallocators-1_0-0-debuginfo-1.22.0-150500.3.8.2
* typelib-1_0-GstApp-1_0-1.22.0-150500.3.8.2
* typelib-1_0-GstGLEGL-1_0-1.22.0-150500.3.8.2
* libgstaudio-1_0-0-debuginfo-1.22.0-150500.3.8.2
* gstreamer-plugins-base-1.22.0-150500.3.8.2
* openSUSE Leap 15.5 (x86_64)
* libgstsdp-1_0-0-32bit-1.22.0-150500.3.8.2
* libgstpbutils-1_0-0-32bit-debuginfo-1.22.0-150500.3.8.2
* libgstsdp-1_0-0-32bit-debuginfo-1.22.0-150500.3.8.2
* libgstpbutils-1_0-0-32bit-1.22.0-150500.3.8.2
* libgstriff-1_0-0-32bit-debuginfo-1.22.0-150500.3.8.2
* libgstaudio-1_0-0-32bit-1.22.0-150500.3.8.2
* libgstapp-1_0-0-32bit-debuginfo-1.22.0-150500.3.8.2
* libgstriff-1_0-0-32bit-1.22.0-150500.3.8.2
* gstreamer-plugins-base-32bit-1.22.0-150500.3.8.2
* libgstrtp-1_0-0-32bit-debuginfo-1.22.0-150500.3.8.2
* libgstfft-1_0-0-32bit-1.22.0-150500.3.8.2
* libgstapp-1_0-0-32bit-1.22.0-150500.3.8.2
* libgstaudio-1_0-0-32bit-debuginfo-1.22.0-150500.3.8.2
* libgstgl-1_0-0-32bit-debuginfo-1.22.0-150500.3.8.2
* libgstrtsp-1_0-0-32bit-debuginfo-1.22.0-150500.3.8.2
* libgstallocators-1_0-0-32bit-debuginfo-1.22.0-150500.3.8.2
* libgsttag-1_0-0-32bit-1.22.0-150500.3.8.2
* libgstrtp-1_0-0-32bit-1.22.0-150500.3.8.2
* libgstallocators-1_0-0-32bit-1.22.0-150500.3.8.2
* libgstvideo-1_0-0-32bit-debuginfo-1.22.0-150500.3.8.2
* libgstvideo-1_0-0-32bit-1.22.0-150500.3.8.2
* gstreamer-plugins-base-devel-32bit-1.22.0-150500.3.8.2
* libgsttag-1_0-0-32bit-debuginfo-1.22.0-150500.3.8.2
* libgstgl-1_0-0-32bit-1.22.0-150500.3.8.2
* libgstfft-1_0-0-32bit-debuginfo-1.22.0-150500.3.8.2
* gstreamer-plugins-base-32bit-debuginfo-1.22.0-150500.3.8.2
* libgstrtsp-1_0-0-32bit-1.22.0-150500.3.8.2
* openSUSE Leap 15.5 (noarch)
* gstreamer-plugins-base-lang-1.22.0-150500.3.8.2
* openSUSE Leap 15.5 (aarch64_ilp32)
* libgstrtsp-1_0-0-64bit-1.22.0-150500.3.8.2
* libgstaudio-1_0-0-64bit-debuginfo-1.22.0-150500.3.8.2
* libgstsdp-1_0-0-64bit-1.22.0-150500.3.8.2
* libgstgl-1_0-0-64bit-1.22.0-150500.3.8.2
* libgstaudio-1_0-0-64bit-1.22.0-150500.3.8.2
* libgstrtsp-1_0-0-64bit-debuginfo-1.22.0-150500.3.8.2
* libgstpbutils-1_0-0-64bit-debuginfo-1.22.0-150500.3.8.2
* libgstfft-1_0-0-64bit-1.22.0-150500.3.8.2
* libgstallocators-1_0-0-64bit-1.22.0-150500.3.8.2
* gstreamer-plugins-base-64bit-debuginfo-1.22.0-150500.3.8.2
* libgstrtp-1_0-0-64bit-debuginfo-1.22.0-150500.3.8.2
* libgstvideo-1_0-0-64bit-1.22.0-150500.3.8.2
* libgstriff-1_0-0-64bit-1.22.0-150500.3.8.2
* libgstfft-1_0-0-64bit-debuginfo-1.22.0-150500.3.8.2
* libgstrtp-1_0-0-64bit-1.22.0-150500.3.8.2
* gstreamer-plugins-base-devel-64bit-1.22.0-150500.3.8.2
* libgstapp-1_0-0-64bit-1.22.0-150500.3.8.2
* libgstallocators-1_0-0-64bit-debuginfo-1.22.0-150500.3.8.2
* libgstvideo-1_0-0-64bit-debuginfo-1.22.0-150500.3.8.2
* gstreamer-plugins-base-64bit-1.22.0-150500.3.8.2
* libgstsdp-1_0-0-64bit-debuginfo-1.22.0-150500.3.8.2
* libgstpbutils-1_0-0-64bit-1.22.0-150500.3.8.2
* libgstgl-1_0-0-64bit-debuginfo-1.22.0-150500.3.8.2
* libgstriff-1_0-0-64bit-debuginfo-1.22.0-150500.3.8.2
* libgstapp-1_0-0-64bit-debuginfo-1.22.0-150500.3.8.2
* libgsttag-1_0-0-64bit-debuginfo-1.22.0-150500.3.8.2
* libgsttag-1_0-0-64bit-1.22.0-150500.3.8.2
* SUSE Linux Enterprise Micro 5.5 (aarch64 s390x x86_64)
* libgstgl-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstapp-1_0-0-1.22.0-150500.3.8.2
* libgsttag-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstvideo-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstallocators-1_0-0-1.22.0-150500.3.8.2
* libgstriff-1_0-0-1.22.0-150500.3.8.2
* libgstallocators-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgsttag-1_0-0-1.22.0-150500.3.8.2
* gstreamer-plugins-base-debuginfo-1.22.0-150500.3.8.2
* libgstgl-1_0-0-1.22.0-150500.3.8.2
* libgstpbutils-1_0-0-1.22.0-150500.3.8.2
* libgstriff-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstaudio-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstapp-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstpbutils-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstaudio-1_0-0-1.22.0-150500.3.8.2
* gstreamer-plugins-base-debugsource-1.22.0-150500.3.8.2
* libgstvideo-1_0-0-1.22.0-150500.3.8.2
* gstreamer-plugins-base-1.22.0-150500.3.8.2
* Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* libgstrtp-1_0-0-debuginfo-1.22.0-150500.3.8.2
* typelib-1_0-GstGLX11-1_0-1.22.0-150500.3.8.2
* libgsttag-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstallocators-1_0-0-1.22.0-150500.3.8.2
* libgstriff-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstrtsp-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstpbutils-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstaudio-1_0-0-1.22.0-150500.3.8.2
* typelib-1_0-GstAllocators-1_0-1.22.0-150500.3.8.2
* libgstvideo-1_0-0-1.22.0-150500.3.8.2
* typelib-1_0-GstTag-1_0-1.22.0-150500.3.8.2
* typelib-1_0-GstRtp-1_0-1.22.0-150500.3.8.2
* typelib-1_0-GstRtsp-1_0-1.22.0-150500.3.8.2
* libgstsdp-1_0-0-1.22.0-150500.3.8.2
* libgstgl-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstsdp-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstvideo-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgstfft-1_0-0-1.22.0-150500.3.8.2
* libgstpbutils-1_0-0-1.22.0-150500.3.8.2
* gstreamer-plugins-base-devel-1.22.0-150500.3.8.2
* libgstrtsp-1_0-0-1.22.0-150500.3.8.2
* typelib-1_0-GstPbutils-1_0-1.22.0-150500.3.8.2
* libgstapp-1_0-0-1.22.0-150500.3.8.2
* libgstriff-1_0-0-1.22.0-150500.3.8.2
* libgstfft-1_0-0-debuginfo-1.22.0-150500.3.8.2
* libgsttag-1_0-0-1.22.0-150500.3.8.2
* gstreamer-plugins-base-debuginfo-1.22.0-150500.3.8.2
* libgstrtp-1_0-0-1.22.0-150500.3.8.2
* typelib-1_0-GstAudio-1_0-1.22.0-150500.3.8.2
* typelib-1_0-GstSdp-1_0-1.22.0-150500.3.8.2
* libgstapp-1_0-0-debuginfo-1.22.0-150500.3.8.2
* typelib-1_0-GstVideo-1_0-1.22.0-150500.3.8.2
* libgstgl-1_0-0-1.22.0-150500.3.8.2
* gstreamer-plugins-base-debugsource-1.22.0-150500.3.8.2
* typelib-1_0-GstGLWayland-1_0-1.22.0-150500.3.8.2
* typelib-1_0-GstGL-1_0-1.22.0-150500.3.8.2
* libgstallocators-1_0-0-debuginfo-1.22.0-150500.3.8.2
* typelib-1_0-GstApp-1_0-1.22.0-150500.3.8.2
* typelib-1_0-GstGLEGL-1_0-1.22.0-150500.3.8.2
* libgstaudio-1_0-0-debuginfo-1.22.0-150500.3.8.2
* gstreamer-plugins-base-1.22.0-150500.3.8.2
* Basesystem Module 15-SP5 (noarch)
* gstreamer-plugins-base-lang-1.22.0-150500.3.8.2
* SUSE Package Hub 15 15-SP5 (x86_64)
* libgsttag-1_0-0-32bit-1.22.0-150500.3.8.2
* libgsttag-1_0-0-32bit-debuginfo-1.22.0-150500.3.8.2
* gstreamer-plugins-base-debuginfo-1.22.0-150500.3.8.2
* gstreamer-plugins-base-32bit-debuginfo-1.22.0-150500.3.8.2
* libgstaudio-1_0-0-32bit-debuginfo-1.22.0-150500.3.8.2
* libgstaudio-1_0-0-32bit-1.22.0-150500.3.8.2
* libgstvideo-1_0-0-32bit-debuginfo-1.22.0-150500.3.8.2
* gstreamer-plugins-base-debugsource-1.22.0-150500.3.8.2
* libgstvideo-1_0-0-32bit-1.22.0-150500.3.8.2

## References:

* https://www.suse.com/security/cve/CVE-2024-4453.html
* https://bugzilla.suse.com/show_bug.cgi?id=1224806



SUSE-SU-2024:1557-2: moderate: Security update for rpm


# Security update for rpm

Announcement ID: SUSE-SU-2024:1557-2
Rating: moderate
References:

* bsc#1189495
* bsc#1191175
* bsc#1218686

Cross-References:

* CVE-2021-3521

CVSS scores:

* CVE-2021-3521 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N
* CVE-2021-3521 ( NVD ): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N

Affected Products:

* Basesystem Module 15-SP6
* Development Tools Module 15-SP6
* openSUSE Leap 15.6
* Public Cloud Module 15-SP6
* Python 3 Module 15-SP6
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP6

An update that solves one vulnerability and has two security fixes can now be
installed.

## Description:

This update for rpm fixes the following issues:

Security fixes: \- CVE-2021-3521: Fixed missing subkey binding signature
checking (bsc#1191175)

Other fixes:

* accept more signature subpackets marked as critical (bsc#1218686)
* backport limit support for the autopatch macro (bsc#1189495)

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2024-1557=1

* Basesystem Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-1557=1

* Development Tools Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP6-2024-1557=1

* Public Cloud Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Public-Cloud-15-SP6-2024-1557=1

* Python 3 Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Python3-15-SP6-2024-1557=1

## Package List:

* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
* rpm-4.14.3-150400.59.16.1
* python311-rpm-debuginfo-4.14.3-150400.59.16.1
* rpm-build-4.14.3-150400.59.16.1
* python311-rpm-4.14.3-150400.59.16.1
* rpm-devel-4.14.3-150400.59.16.1
* rpm-ndb-4.14.3-150400.59.16.1
* rpm-build-debuginfo-4.14.3-150400.59.16.1
* rpm-ndb-debugsource-4.14.3-150400.59.16.1
* rpm-imaevmsign-4.14.3-150400.59.16.1
* rpm-debugsource-4.14.3-150400.59.16.1
* python3-rpm-4.14.3-150400.59.16.1
* rpm-ndb-debuginfo-4.14.3-150400.59.16.1
* rpm-debuginfo-4.14.3-150400.59.16.1
* python-rpm-debugsource-4.14.3-150400.59.16.1
* rpm-imaevmsign-debuginfo-4.14.3-150400.59.16.1
* python3-rpm-debuginfo-4.14.3-150400.59.16.1
* openSUSE Leap 15.6 (x86_64)
* rpm-ndb-32bit-debuginfo-4.14.3-150400.59.16.1
* rpm-32bit-4.14.3-150400.59.16.1
* rpm-ndb-32bit-4.14.3-150400.59.16.1
* rpm-32bit-debuginfo-4.14.3-150400.59.16.1
* Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* rpm-4.14.3-150400.59.16.1
* rpm-devel-4.14.3-150400.59.16.1
* rpm-imaevmsign-4.14.3-150400.59.16.1
* rpm-debugsource-4.14.3-150400.59.16.1
* python3-rpm-4.14.3-150400.59.16.1
* rpm-debuginfo-4.14.3-150400.59.16.1
* python-rpm-debugsource-4.14.3-150400.59.16.1
* rpm-imaevmsign-debuginfo-4.14.3-150400.59.16.1
* python3-rpm-debuginfo-4.14.3-150400.59.16.1
* Basesystem Module 15-SP6 (x86_64)
* rpm-32bit-4.14.3-150400.59.16.1
* rpm-32bit-debuginfo-4.14.3-150400.59.16.1
* Development Tools Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* rpm-build-4.14.3-150400.59.16.1
* rpm-build-debuginfo-4.14.3-150400.59.16.1
* rpm-debugsource-4.14.3-150400.59.16.1
* rpm-debuginfo-4.14.3-150400.59.16.1
* Public Cloud Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* rpm-ndb-debugsource-4.14.3-150400.59.16.1
* rpm-ndb-debuginfo-4.14.3-150400.59.16.1
* rpm-ndb-4.14.3-150400.59.16.1
* Python 3 Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* python-rpm-debugsource-4.14.3-150400.59.16.1
* python311-rpm-debuginfo-4.14.3-150400.59.16.1
* python311-rpm-4.14.3-150400.59.16.1

## References:

* https://www.suse.com/security/cve/CVE-2021-3521.html
* https://bugzilla.suse.com/show_bug.cgi?id=1189495
* https://bugzilla.suse.com/show_bug.cgi?id=1191175
* https://bugzilla.suse.com/show_bug.cgi?id=1218686



SUSE-SU-2024:1830-1: low: Security update for glib2


# Security update for glib2

Announcement ID: SUSE-SU-2024:1830-1
Rating: low
References:

* bsc#1224044

Cross-References:

* CVE-2024-34397

CVSS scores:

* CVE-2024-34397 ( SUSE ): 3.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N

Affected Products:

* Basesystem Module 15-SP5
* openSUSE Leap 15.4
* openSUSE Leap 15.5
* openSUSE Leap Micro 5.3
* openSUSE Leap Micro 5.4
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Micro 5.3
* SUSE Linux Enterprise Micro 5.4
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Micro for Rancher 5.3
* SUSE Linux Enterprise Micro for Rancher 5.4
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP5

An update that solves one vulnerability can now be installed.

## Description:

This update for glib2 fixes the following issues:

* CVE-2024-34397: Fixed signal subscription unicast spoofing vulnerability
(bsc#1224044).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.4
zypper in -t patch SUSE-2024-1830=1

* openSUSE Leap Micro 5.3
zypper in -t patch openSUSE-Leap-Micro-5.3-2024-1830=1

* openSUSE Leap Micro 5.4
zypper in -t patch openSUSE-Leap-Micro-5.4-2024-1830=1

* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-1830=1

* SUSE Linux Enterprise Micro for Rancher 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2024-1830=1

* SUSE Linux Enterprise Micro 5.3
zypper in -t patch SUSE-SLE-Micro-5.3-2024-1830=1

* SUSE Linux Enterprise Micro for Rancher 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2024-1830=1

* SUSE Linux Enterprise Micro 5.4
zypper in -t patch SUSE-SLE-Micro-5.4-2024-1830=1

* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2024-1830=1

* Basesystem Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1830=1

## Package List:

* openSUSE Leap 15.4 (noarch)
* glib2-lang-2.70.5-150400.3.11.1
* gio-branding-upstream-2.70.5-150400.3.11.1
* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* libgio-2_0-0-2.70.5-150400.3.11.1
* libgobject-2_0-0-2.70.5-150400.3.11.1
* libgmodule-2_0-0-2.70.5-150400.3.11.1
* glib2-tests-devel-2.70.5-150400.3.11.1
* glib2-tools-debuginfo-2.70.5-150400.3.11.1
* glib2-tools-2.70.5-150400.3.11.1
* libglib-2_0-0-2.70.5-150400.3.11.1
* libglib-2_0-0-debuginfo-2.70.5-150400.3.11.1
* glib2-devel-debuginfo-2.70.5-150400.3.11.1
* glib2-tests-devel-debuginfo-2.70.5-150400.3.11.1
* libgthread-2_0-0-2.70.5-150400.3.11.1
* libgthread-2_0-0-debuginfo-2.70.5-150400.3.11.1
* glib2-devel-static-2.70.5-150400.3.11.1
* libgobject-2_0-0-debuginfo-2.70.5-150400.3.11.1
* glib2-devel-2.70.5-150400.3.11.1
* glib2-doc-2.70.5-150400.3.11.1
* libgio-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgmodule-2_0-0-debuginfo-2.70.5-150400.3.11.1
* glib2-debugsource-2.70.5-150400.3.11.1
* openSUSE Leap 15.4 (x86_64)
* libglib-2_0-0-32bit-debuginfo-2.70.5-150400.3.11.1
* libgobject-2_0-0-32bit-2.70.5-150400.3.11.1
* glib2-devel-32bit-2.70.5-150400.3.11.1
* libgobject-2_0-0-32bit-debuginfo-2.70.5-150400.3.11.1
* libgio-2_0-0-32bit-debuginfo-2.70.5-150400.3.11.1
* glib2-tools-32bit-2.70.5-150400.3.11.1
* glib2-devel-32bit-debuginfo-2.70.5-150400.3.11.1
* libgio-2_0-0-32bit-2.70.5-150400.3.11.1
* libgthread-2_0-0-32bit-debuginfo-2.70.5-150400.3.11.1
* glib2-tools-32bit-debuginfo-2.70.5-150400.3.11.1
* libgmodule-2_0-0-32bit-debuginfo-2.70.5-150400.3.11.1
* libglib-2_0-0-32bit-2.70.5-150400.3.11.1
* libgthread-2_0-0-32bit-2.70.5-150400.3.11.1
* libgmodule-2_0-0-32bit-2.70.5-150400.3.11.1
* openSUSE Leap 15.4 (aarch64_ilp32)
* glib2-tools-64bit-2.70.5-150400.3.11.1
* libgmodule-2_0-0-64bit-2.70.5-150400.3.11.1
* libgio-2_0-0-64bit-debuginfo-2.70.5-150400.3.11.1
* libgmodule-2_0-0-64bit-debuginfo-2.70.5-150400.3.11.1
* glib2-devel-64bit-debuginfo-2.70.5-150400.3.11.1
* libgobject-2_0-0-64bit-debuginfo-2.70.5-150400.3.11.1
* libgio-2_0-0-64bit-2.70.5-150400.3.11.1
* libglib-2_0-0-64bit-2.70.5-150400.3.11.1
* libgobject-2_0-0-64bit-2.70.5-150400.3.11.1
* libglib-2_0-0-64bit-debuginfo-2.70.5-150400.3.11.1
* libgthread-2_0-0-64bit-debuginfo-2.70.5-150400.3.11.1
* libgthread-2_0-0-64bit-2.70.5-150400.3.11.1
* glib2-devel-64bit-2.70.5-150400.3.11.1
* glib2-tools-64bit-debuginfo-2.70.5-150400.3.11.1
* openSUSE Leap Micro 5.3 (aarch64 x86_64)
* libgio-2_0-0-2.70.5-150400.3.11.1
* libgobject-2_0-0-2.70.5-150400.3.11.1
* libgmodule-2_0-0-2.70.5-150400.3.11.1
* glib2-tools-debuginfo-2.70.5-150400.3.11.1
* libglib-2_0-0-2.70.5-150400.3.11.1
* glib2-tools-2.70.5-150400.3.11.1
* libglib-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgobject-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgio-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgmodule-2_0-0-debuginfo-2.70.5-150400.3.11.1
* glib2-debugsource-2.70.5-150400.3.11.1
* openSUSE Leap Micro 5.4 (aarch64 s390x x86_64)
* libgio-2_0-0-2.70.5-150400.3.11.1
* libgobject-2_0-0-2.70.5-150400.3.11.1
* libgmodule-2_0-0-2.70.5-150400.3.11.1
* glib2-tools-debuginfo-2.70.5-150400.3.11.1
* libglib-2_0-0-2.70.5-150400.3.11.1
* glib2-tools-2.70.5-150400.3.11.1
* libglib-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgobject-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgio-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgmodule-2_0-0-debuginfo-2.70.5-150400.3.11.1
* glib2-debugsource-2.70.5-150400.3.11.1
* openSUSE Leap 15.5 (noarch)
* glib2-lang-2.70.5-150400.3.11.1
* gio-branding-upstream-2.70.5-150400.3.11.1
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* libgio-2_0-0-2.70.5-150400.3.11.1
* libgobject-2_0-0-2.70.5-150400.3.11.1
* libgmodule-2_0-0-2.70.5-150400.3.11.1
* glib2-tests-devel-2.70.5-150400.3.11.1
* glib2-tools-debuginfo-2.70.5-150400.3.11.1
* glib2-tools-2.70.5-150400.3.11.1
* libglib-2_0-0-2.70.5-150400.3.11.1
* libglib-2_0-0-debuginfo-2.70.5-150400.3.11.1
* glib2-devel-debuginfo-2.70.5-150400.3.11.1
* glib2-tests-devel-debuginfo-2.70.5-150400.3.11.1
* libgthread-2_0-0-2.70.5-150400.3.11.1
* libgthread-2_0-0-debuginfo-2.70.5-150400.3.11.1
* glib2-devel-static-2.70.5-150400.3.11.1
* libgobject-2_0-0-debuginfo-2.70.5-150400.3.11.1
* glib2-doc-2.70.5-150400.3.11.1
* glib2-devel-2.70.5-150400.3.11.1
* libgio-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgmodule-2_0-0-debuginfo-2.70.5-150400.3.11.1
* glib2-debugsource-2.70.5-150400.3.11.1
* openSUSE Leap 15.5 (x86_64)
* libglib-2_0-0-32bit-debuginfo-2.70.5-150400.3.11.1
* libgobject-2_0-0-32bit-2.70.5-150400.3.11.1
* glib2-devel-32bit-2.70.5-150400.3.11.1
* libgobject-2_0-0-32bit-debuginfo-2.70.5-150400.3.11.1
* libgio-2_0-0-32bit-debuginfo-2.70.5-150400.3.11.1
* glib2-tools-32bit-2.70.5-150400.3.11.1
* glib2-devel-32bit-debuginfo-2.70.5-150400.3.11.1
* libgio-2_0-0-32bit-2.70.5-150400.3.11.1
* libgthread-2_0-0-32bit-debuginfo-2.70.5-150400.3.11.1
* glib2-tools-32bit-debuginfo-2.70.5-150400.3.11.1
* libgmodule-2_0-0-32bit-debuginfo-2.70.5-150400.3.11.1
* libglib-2_0-0-32bit-2.70.5-150400.3.11.1
* libgthread-2_0-0-32bit-2.70.5-150400.3.11.1
* libgmodule-2_0-0-32bit-2.70.5-150400.3.11.1
* SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64)
* libgio-2_0-0-2.70.5-150400.3.11.1
* libgobject-2_0-0-2.70.5-150400.3.11.1
* libgmodule-2_0-0-2.70.5-150400.3.11.1
* glib2-tools-debuginfo-2.70.5-150400.3.11.1
* libglib-2_0-0-2.70.5-150400.3.11.1
* glib2-tools-2.70.5-150400.3.11.1
* libglib-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgobject-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgio-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgmodule-2_0-0-debuginfo-2.70.5-150400.3.11.1
* glib2-debugsource-2.70.5-150400.3.11.1
* SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64)
* libgio-2_0-0-2.70.5-150400.3.11.1
* libgobject-2_0-0-2.70.5-150400.3.11.1
* libgmodule-2_0-0-2.70.5-150400.3.11.1
* glib2-tools-debuginfo-2.70.5-150400.3.11.1
* libglib-2_0-0-2.70.5-150400.3.11.1
* glib2-tools-2.70.5-150400.3.11.1
* libglib-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgobject-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgio-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgmodule-2_0-0-debuginfo-2.70.5-150400.3.11.1
* glib2-debugsource-2.70.5-150400.3.11.1
* SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64)
* libgio-2_0-0-2.70.5-150400.3.11.1
* libgobject-2_0-0-2.70.5-150400.3.11.1
* libgmodule-2_0-0-2.70.5-150400.3.11.1
* glib2-tools-debuginfo-2.70.5-150400.3.11.1
* libglib-2_0-0-2.70.5-150400.3.11.1
* glib2-tools-2.70.5-150400.3.11.1
* libglib-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgobject-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgio-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgmodule-2_0-0-debuginfo-2.70.5-150400.3.11.1
* glib2-debugsource-2.70.5-150400.3.11.1
* SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64)
* libgio-2_0-0-2.70.5-150400.3.11.1
* libgobject-2_0-0-2.70.5-150400.3.11.1
* libgmodule-2_0-0-2.70.5-150400.3.11.1
* glib2-tools-debuginfo-2.70.5-150400.3.11.1
* libglib-2_0-0-2.70.5-150400.3.11.1
* glib2-tools-2.70.5-150400.3.11.1
* libglib-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgobject-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgio-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgmodule-2_0-0-debuginfo-2.70.5-150400.3.11.1
* glib2-debugsource-2.70.5-150400.3.11.1
* SUSE Linux Enterprise Micro 5.5 (aarch64 s390x x86_64)
* libgio-2_0-0-2.70.5-150400.3.11.1
* libgobject-2_0-0-2.70.5-150400.3.11.1
* libgmodule-2_0-0-2.70.5-150400.3.11.1
* glib2-tools-debuginfo-2.70.5-150400.3.11.1
* libglib-2_0-0-2.70.5-150400.3.11.1
* glib2-tools-2.70.5-150400.3.11.1
* libglib-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgobject-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgio-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgmodule-2_0-0-debuginfo-2.70.5-150400.3.11.1
* glib2-debugsource-2.70.5-150400.3.11.1
* Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* libgio-2_0-0-2.70.5-150400.3.11.1
* libgobject-2_0-0-2.70.5-150400.3.11.1
* libgmodule-2_0-0-2.70.5-150400.3.11.1
* glib2-tools-debuginfo-2.70.5-150400.3.11.1
* libglib-2_0-0-2.70.5-150400.3.11.1
* glib2-tools-2.70.5-150400.3.11.1
* libglib-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgthread-2_0-0-2.70.5-150400.3.11.1
* glib2-devel-debuginfo-2.70.5-150400.3.11.1
* libgthread-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgobject-2_0-0-debuginfo-2.70.5-150400.3.11.1
* glib2-devel-2.70.5-150400.3.11.1
* libgio-2_0-0-debuginfo-2.70.5-150400.3.11.1
* libgmodule-2_0-0-debuginfo-2.70.5-150400.3.11.1
* glib2-debugsource-2.70.5-150400.3.11.1
* Basesystem Module 15-SP5 (noarch)
* glib2-lang-2.70.5-150400.3.11.1
* Basesystem Module 15-SP5 (x86_64)
* libglib-2_0-0-32bit-debuginfo-2.70.5-150400.3.11.1
* libgobject-2_0-0-32bit-2.70.5-150400.3.11.1
* libgobject-2_0-0-32bit-debuginfo-2.70.5-150400.3.11.1
* libgio-2_0-0-32bit-debuginfo-2.70.5-150400.3.11.1
* libgio-2_0-0-32bit-2.70.5-150400.3.11.1
* libgmodule-2_0-0-32bit-debuginfo-2.70.5-150400.3.11.1
* libglib-2_0-0-32bit-2.70.5-150400.3.11.1
* libgmodule-2_0-0-32bit-2.70.5-150400.3.11.1

## References:

* https://www.suse.com/security/cve/CVE-2024-34397.html
* https://bugzilla.suse.com/show_bug.cgi?id=1224044



SUSE-SU-2024:1838-1: important: Security update for warewulf4


# Security update for warewulf4

Announcement ID: SUSE-SU-2024:1838-1
Rating: important
References:

* bsc#1216994
* bsc#1224124
* bsc#1225402

Cross-References:

* CVE-2024-3727

CVSS scores:

* CVE-2024-3727 ( SUSE ): 8.3 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

Affected Products:

* HPC Module 15-SP5
* HPC Module 15-SP6
* openSUSE Leap 15.5
* openSUSE Leap 15.6
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Server 15 SP6

An update that solves one vulnerability and has two security fixes can now be
installed.

## Description:

This update for warewulf4 fixes the following issues:

* fixed wwctl configure --all doesn't configure ssh (bsc#1225402)

* update to 4.5.2 with following changes:

* Reorder dnsmasq config to put iPXE last
* Update go-digest dependency to fix CVE-2024-3727: digest values not always
validated (bsc#1224124)

* updated to version 4.5.1 with following changes

* wwctl [profile|node] list -a handles now slices correclty
* Fix a locking issue with concurrent read/writes for node status

* Remove API package as use of this wasn't documented

* use tftp.socket for activation (bsc#1216994)

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.5
zypper in -t patch SUSE-2024-1838=1 openSUSE-SLE-15.5-2024-1838=1

* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2024-1838=1

* HPC Module 15-SP5
zypper in -t patch SUSE-SLE-Module-HPC-15-SP5-2024-1838=1

* HPC Module 15-SP6
zypper in -t patch SUSE-SLE-Module-HPC-15-SP6-2024-1838=1

## Package List:

* openSUSE Leap 15.5 (aarch64 x86_64)
* warewulf4-4.5.2-150500.6.13.1
* warewulf4-overlay-4.5.2-150500.6.13.1
* openSUSE Leap 15.5 (noarch)
* warewulf4-man-4.5.2-150500.6.13.1
* warewulf4-overlay-slurm-4.5.2-150500.6.13.1
* openSUSE Leap 15.6 (aarch64 x86_64)
* warewulf4-4.5.2-150500.6.13.1
* warewulf4-overlay-4.5.2-150500.6.13.1
* openSUSE Leap 15.6 (noarch)
* warewulf4-man-4.5.2-150500.6.13.1
* warewulf4-overlay-slurm-4.5.2-150500.6.13.1
* HPC Module 15-SP5 (aarch64 x86_64)
* warewulf4-4.5.2-150500.6.13.1
* warewulf4-overlay-4.5.2-150500.6.13.1
* HPC Module 15-SP5 (noarch)
* warewulf4-man-4.5.2-150500.6.13.1
* warewulf4-overlay-slurm-4.5.2-150500.6.13.1
* HPC Module 15-SP6 (aarch64 x86_64)
* warewulf4-4.5.2-150500.6.13.1
* warewulf4-overlay-4.5.2-150500.6.13.1
* HPC Module 15-SP6 (noarch)
* warewulf4-man-4.5.2-150500.6.13.1
* warewulf4-overlay-slurm-4.5.2-150500.6.13.1

## References:

* https://www.suse.com/security/cve/CVE-2024-3727.html
* https://bugzilla.suse.com/show_bug.cgi?id=1216994
* https://bugzilla.suse.com/show_bug.cgi?id=1224124
* https://bugzilla.suse.com/show_bug.cgi?id=1225402



SUSE-SU-2024:1837-1: low: Security update for nodejs16


# Security update for nodejs16

Announcement ID: SUSE-SU-2024:1837-1
Rating: low
References:

* bsc#1222530
* bsc#1222603

Cross-References:

* CVE-2024-30260
* CVE-2024-30261

CVSS scores:

* CVE-2024-30260 ( SUSE ): 3.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N
* CVE-2024-30261 ( SUSE ): 3.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N

Affected Products:

* openSUSE Leap 15.4

An update that solves two vulnerabilities can now be installed.

## Description:

This update for nodejs16 fixes the following issues:

* CVE-2024-30260: undici: proxy-authorization header not cleared on cross-
origin redirect for dispatch, request, stream, pipeline (bsc#1222530)
* CVE-2024-30261: undici: Ensure that integrity cannot be tampered with
(bsc#1222603)

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.4
zypper in -t patch SUSE-2024-1837=1

## Package List:

* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* corepack16-16.20.2-150400.3.36.1
* npm16-16.20.2-150400.3.36.1
* nodejs16-devel-16.20.2-150400.3.36.1
* nodejs16-debuginfo-16.20.2-150400.3.36.1
* nodejs16-debugsource-16.20.2-150400.3.36.1
* nodejs16-16.20.2-150400.3.36.1
* openSUSE Leap 15.4 (noarch)
* nodejs16-docs-16.20.2-150400.3.36.1

## References:

* https://www.suse.com/security/cve/CVE-2024-30260.html
* https://www.suse.com/security/cve/CVE-2024-30261.html
* https://bugzilla.suse.com/show_bug.cgi?id=1222530
* https://bugzilla.suse.com/show_bug.cgi?id=1222603



SUSE-SU-2024:1813-1: important: Security update for the Linux Kernel


# Security update for the Linux Kernel

Announcement ID: SUSE-SU-2024:1813-1
Rating: important
References:

* bsc#1223858
* bsc#1224169
* bsc#1224340

Affected Products:

* openSUSE Leap 15.5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Live Patching 15-SP5
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Real Time Module 15-SP5

An update that has three security fixes can now be installed.

## Description:

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various
security bugfixes.

This update fixes a regression with kerberized nfs4 shares in the previous
update (bsc#1223858).

## Special Instructions and Notes:

* Please reboot the system after installing this update.

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.5
zypper in -t patch SUSE-2024-1813=1 openSUSE-SLE-15.5-2024-1813=1

* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2024-1813=1

* SUSE Linux Enterprise Live Patching 15-SP5
zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2024-1813=1

* SUSE Real Time Module 15-SP5
zypper in -t patch SUSE-SLE-Module-RT-15-SP5-2024-1813=1

## Package List:

* openSUSE Leap 15.5 (noarch)
* kernel-source-rt-5.14.21-150500.13.55.1
* kernel-devel-rt-5.14.21-150500.13.55.1
* openSUSE Leap 15.5 (x86_64)
* kernel-rt-debuginfo-5.14.21-150500.13.55.1
* kernel-rt-livepatch-5.14.21-150500.13.55.1
* dlm-kmp-rt-5.14.21-150500.13.55.1
* kernel-rt-vdso-debuginfo-5.14.21-150500.13.55.1
* kernel-rt_debug-debugsource-5.14.21-150500.13.55.1
* kernel-syms-rt-5.14.21-150500.13.55.1
* kselftests-kmp-rt-5.14.21-150500.13.55.1
* kernel-rt-extra-5.14.21-150500.13.55.1
* kernel-rt-optional-debuginfo-5.14.21-150500.13.55.1
* kernel-rt-vdso-5.14.21-150500.13.55.1
* kernel-livepatch-5_14_21-150500_13_55-rt-1-150500.11.3.1
* kernel-livepatch-SLE15-SP5-RT_Update_15-debugsource-1-150500.11.3.1
* cluster-md-kmp-rt-debuginfo-5.14.21-150500.13.55.1
* kernel-rt-extra-debuginfo-5.14.21-150500.13.55.1
* kernel-rt-devel-debuginfo-5.14.21-150500.13.55.1
* ocfs2-kmp-rt-5.14.21-150500.13.55.1
* reiserfs-kmp-rt-debuginfo-5.14.21-150500.13.55.1
* kernel-rt-devel-5.14.21-150500.13.55.1
* kernel-rt-livepatch-devel-5.14.21-150500.13.55.1
* kernel-rt_debug-devel-debuginfo-5.14.21-150500.13.55.1
* dlm-kmp-rt-debuginfo-5.14.21-150500.13.55.1
* kernel-livepatch-5_14_21-150500_13_55-rt-debuginfo-1-150500.11.3.1
* kernel-rt-debugsource-5.14.21-150500.13.55.1
* kernel-rt_debug-debuginfo-5.14.21-150500.13.55.1
* gfs2-kmp-rt-debuginfo-5.14.21-150500.13.55.1
* kselftests-kmp-rt-debuginfo-5.14.21-150500.13.55.1
* kernel-rt-optional-5.14.21-150500.13.55.1
* reiserfs-kmp-rt-5.14.21-150500.13.55.1
* cluster-md-kmp-rt-5.14.21-150500.13.55.1
* gfs2-kmp-rt-5.14.21-150500.13.55.1
* kernel-rt_debug-devel-5.14.21-150500.13.55.1
* kernel-rt_debug-vdso-5.14.21-150500.13.55.1
* kernel-rt_debug-livepatch-devel-5.14.21-150500.13.55.1
* kernel-rt_debug-vdso-debuginfo-5.14.21-150500.13.55.1
* ocfs2-kmp-rt-debuginfo-5.14.21-150500.13.55.1
* openSUSE Leap 15.5 (nosrc x86_64)
* kernel-rt_debug-5.14.21-150500.13.55.1
* kernel-rt-5.14.21-150500.13.55.1
* SUSE Linux Enterprise Micro 5.5 (nosrc x86_64)
* kernel-rt-5.14.21-150500.13.55.1
* SUSE Linux Enterprise Micro 5.5 (x86_64)
* kernel-rt-debuginfo-5.14.21-150500.13.55.1
* kernel-rt-debugsource-5.14.21-150500.13.55.1
* SUSE Linux Enterprise Micro 5.5 (noarch)
* kernel-source-rt-5.14.21-150500.13.55.1
* SUSE Linux Enterprise Live Patching 15-SP5 (x86_64)
* kernel-livepatch-5_14_21-150500_13_55-rt-1-150500.11.3.1
* kernel-livepatch-5_14_21-150500_13_55-rt-debuginfo-1-150500.11.3.1
* kernel-livepatch-SLE15-SP5-RT_Update_15-debugsource-1-150500.11.3.1
* SUSE Real Time Module 15-SP5 (x86_64)
* kernel-rt-debuginfo-5.14.21-150500.13.55.1
* dlm-kmp-rt-5.14.21-150500.13.55.1
* kernel-rt-vdso-debuginfo-5.14.21-150500.13.55.1
* kernel-rt_debug-debugsource-5.14.21-150500.13.55.1
* kernel-syms-rt-5.14.21-150500.13.55.1
* kernel-rt-vdso-5.14.21-150500.13.55.1
* cluster-md-kmp-rt-debuginfo-5.14.21-150500.13.55.1
* kernel-rt-devel-debuginfo-5.14.21-150500.13.55.1
* ocfs2-kmp-rt-5.14.21-150500.13.55.1
* kernel-rt-devel-5.14.21-150500.13.55.1
* kernel-rt_debug-devel-debuginfo-5.14.21-150500.13.55.1
* dlm-kmp-rt-debuginfo-5.14.21-150500.13.55.1
* kernel-rt_debug-debuginfo-5.14.21-150500.13.55.1
* kernel-rt-debugsource-5.14.21-150500.13.55.1
* gfs2-kmp-rt-debuginfo-5.14.21-150500.13.55.1
* cluster-md-kmp-rt-5.14.21-150500.13.55.1
* gfs2-kmp-rt-5.14.21-150500.13.55.1
* kernel-rt_debug-devel-5.14.21-150500.13.55.1
* kernel-rt_debug-vdso-5.14.21-150500.13.55.1
* kernel-rt_debug-vdso-debuginfo-5.14.21-150500.13.55.1
* ocfs2-kmp-rt-debuginfo-5.14.21-150500.13.55.1
* SUSE Real Time Module 15-SP5 (noarch)
* kernel-source-rt-5.14.21-150500.13.55.1
* kernel-devel-rt-5.14.21-150500.13.55.1
* SUSE Real Time Module 15-SP5 (nosrc x86_64)
* kernel-rt_debug-5.14.21-150500.13.55.1
* kernel-rt-5.14.21-150500.13.55.1

## References:

* https://bugzilla.suse.com/show_bug.cgi?id=1223858
* https://bugzilla.suse.com/show_bug.cgi?id=1224169
* https://bugzilla.suse.com/show_bug.cgi?id=1224340



SUSE-SU-2024:1806-1: important: Security update for xdg-desktop-portal


# Security update for xdg-desktop-portal

Announcement ID: SUSE-SU-2024:1806-1
Rating: important
References:

* bsc#1223110

Cross-References:

* CVE-2024-32462

CVSS scores:

* CVE-2024-32462 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

Affected Products:

* openSUSE Leap 15.4
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP4

An update that solves one vulnerability can now be installed.

## Description:

This update for xdg-desktop-portal fixes the following issues:

* CVE-2024-32462: Fixed sandbox escape via RequestBackground portal
(bsc#1223110).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.4
zypper in -t patch SUSE-2024-1806=1

* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1806=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1806=1

* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1806=1

* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1806=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1806=1

## Package List:

* openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586)
* xdg-desktop-portal-devel-1.10.1-150400.3.6.1
* xdg-desktop-portal-debuginfo-1.10.1-150400.3.6.1
* xdg-desktop-portal-1.10.1-150400.3.6.1
* xdg-desktop-portal-debugsource-1.10.1-150400.3.6.1
* openSUSE Leap 15.4 (noarch)
* xdg-desktop-portal-lang-1.10.1-150400.3.6.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* xdg-desktop-portal-devel-1.10.1-150400.3.6.1
* xdg-desktop-portal-debuginfo-1.10.1-150400.3.6.1
* xdg-desktop-portal-1.10.1-150400.3.6.1
* xdg-desktop-portal-debugsource-1.10.1-150400.3.6.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch)
* xdg-desktop-portal-lang-1.10.1-150400.3.6.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* xdg-desktop-portal-devel-1.10.1-150400.3.6.1
* xdg-desktop-portal-debuginfo-1.10.1-150400.3.6.1
* xdg-desktop-portal-1.10.1-150400.3.6.1
* xdg-desktop-portal-debugsource-1.10.1-150400.3.6.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch)
* xdg-desktop-portal-lang-1.10.1-150400.3.6.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64)
* xdg-desktop-portal-devel-1.10.1-150400.3.6.1
* xdg-desktop-portal-debuginfo-1.10.1-150400.3.6.1
* xdg-desktop-portal-1.10.1-150400.3.6.1
* xdg-desktop-portal-debugsource-1.10.1-150400.3.6.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch)
* xdg-desktop-portal-lang-1.10.1-150400.3.6.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x
x86_64)
* xdg-desktop-portal-devel-1.10.1-150400.3.6.1
* xdg-desktop-portal-debuginfo-1.10.1-150400.3.6.1
* xdg-desktop-portal-1.10.1-150400.3.6.1
* xdg-desktop-portal-debugsource-1.10.1-150400.3.6.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch)
* xdg-desktop-portal-lang-1.10.1-150400.3.6.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* xdg-desktop-portal-devel-1.10.1-150400.3.6.1
* xdg-desktop-portal-debuginfo-1.10.1-150400.3.6.1
* xdg-desktop-portal-1.10.1-150400.3.6.1
* xdg-desktop-portal-debugsource-1.10.1-150400.3.6.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch)
* xdg-desktop-portal-lang-1.10.1-150400.3.6.1

## References:

* https://www.suse.com/security/cve/CVE-2024-32462.html
* https://bugzilla.suse.com/show_bug.cgi?id=1223110



SUSE-SU-2024:1807-1: important: Security update for git


# Security update for git

Announcement ID: SUSE-SU-2024:1807-1
Rating: important
References:

* bsc#1224168
* bsc#1224170
* bsc#1224171
* bsc#1224172
* bsc#1224173

Cross-References:

* CVE-2024-32002
* CVE-2024-32004
* CVE-2024-32020
* CVE-2024-32021
* CVE-2024-32465

CVSS scores:

* CVE-2024-32002 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
* CVE-2024-32002 ( NVD ): 9.0 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
* CVE-2024-32004 ( SUSE ): 8.1 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
* CVE-2024-32020 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L
* CVE-2024-32021 ( SUSE ): 3.9 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L
* CVE-2024-32465 ( SUSE ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products:

* Basesystem Module 15-SP5
* Development Tools Module 15-SP5
* openSUSE Leap 15.3
* openSUSE Leap 15.5
* SUSE Enterprise Storage 7.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise High Performance Computing 15 SP3
* SUSE Linux Enterprise High Performance Computing 15 SP4
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP3
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
* SUSE Linux Enterprise Server 15 SP4
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP3
* SUSE Linux Enterprise Server for SAP Applications 15 SP4
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Manager Proxy 4.3
* SUSE Manager Retail Branch Server 4.3
* SUSE Manager Server 4.3

An update that solves five vulnerabilities can now be installed.

## Description:

This update for git fixes the following issues:

* CVE-2024-32002: Fixed recursive clones on case-insensitive filesystems that
support symbolic links are susceptible to case confusion (bsc#1224168).
* CVE-2024-32004: Fixed arbitrary code execution during local clones
(bsc#1224170).
* CVE-2024-32020: Fixed file overwriting vulnerability during local clones
(bsc#1224171).
* CVE-2024-32021: Fixed git may create hardlinks to arbitrary user-readable
files (bsc#1224172).
* CVE-2024-32465: Fixed arbitrary code execution during clone operations
(bsc#1224173).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-1807=1

* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2024-1807=1

* Basesystem Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1807=1

* Development Tools Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP5-2024-1807=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1807=1

* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1807=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4
zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1807=1

* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1807=1

* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1807=1

* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4
zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1807=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP3
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1807=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP4
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1807=1

* SUSE Manager Proxy 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-1807=1

* SUSE Manager Retail Branch Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch-
Server-4.3-2024-1807=1

* SUSE Manager Server 4.3
zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-1807=1

* SUSE Enterprise Storage 7.1
zypper in -t patch SUSE-Storage-7.1-2024-1807=1

* openSUSE Leap 15.3
zypper in -t patch SUSE-2024-1807=1

## Package List:

* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* git-credential-libsecret-2.35.3-150300.10.39.1
* git-credential-libsecret-debuginfo-2.35.3-150300.10.39.1
* git-daemon-2.35.3-150300.10.39.1
* git-core-debuginfo-2.35.3-150300.10.39.1
* git-core-2.35.3-150300.10.39.1
* git-cvs-2.35.3-150300.10.39.1
* git-daemon-debuginfo-2.35.3-150300.10.39.1
* git-2.35.3-150300.10.39.1
* git-svn-2.35.3-150300.10.39.1
* gitk-2.35.3-150300.10.39.1
* git-credential-gnome-keyring-debuginfo-2.35.3-150300.10.39.1
* perl-Git-2.35.3-150300.10.39.1
* git-credential-gnome-keyring-2.35.3-150300.10.39.1
* git-email-2.35.3-150300.10.39.1
* git-arch-2.35.3-150300.10.39.1
* git-debugsource-2.35.3-150300.10.39.1
* git-gui-2.35.3-150300.10.39.1
* git-p4-2.35.3-150300.10.39.1
* git-debuginfo-2.35.3-150300.10.39.1
* git-web-2.35.3-150300.10.39.1
* openSUSE Leap 15.5 (noarch)
* git-doc-2.35.3-150300.10.39.1
* SUSE Linux Enterprise Micro 5.5 (aarch64 s390x x86_64)
* git-core-debuginfo-2.35.3-150300.10.39.1
* git-core-2.35.3-150300.10.39.1
* git-2.35.3-150300.10.39.1
* perl-Git-2.35.3-150300.10.39.1
* git-debugsource-2.35.3-150300.10.39.1
* git-debuginfo-2.35.3-150300.10.39.1
* Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* git-debuginfo-2.35.3-150300.10.39.1
* git-debugsource-2.35.3-150300.10.39.1
* git-core-debuginfo-2.35.3-150300.10.39.1
* git-core-2.35.3-150300.10.39.1
* Development Tools Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* git-daemon-2.35.3-150300.10.39.1
* gitk-2.35.3-150300.10.39.1
* git-cvs-2.35.3-150300.10.39.1
* git-daemon-debuginfo-2.35.3-150300.10.39.1
* git-2.35.3-150300.10.39.1
* git-svn-2.35.3-150300.10.39.1
* perl-Git-2.35.3-150300.10.39.1
* git-email-2.35.3-150300.10.39.1
* git-arch-2.35.3-150300.10.39.1
* git-debugsource-2.35.3-150300.10.39.1
* git-gui-2.35.3-150300.10.39.1
* git-debuginfo-2.35.3-150300.10.39.1
* git-web-2.35.3-150300.10.39.1
* Development Tools Module 15-SP5 (noarch)
* git-doc-2.35.3-150300.10.39.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64
x86_64)
* git-daemon-2.35.3-150300.10.39.1
* git-core-debuginfo-2.35.3-150300.10.39.1
* git-core-2.35.3-150300.10.39.1
* git-cvs-2.35.3-150300.10.39.1
* git-daemon-debuginfo-2.35.3-150300.10.39.1
* git-2.35.3-150300.10.39.1
* git-svn-2.35.3-150300.10.39.1
* gitk-2.35.3-150300.10.39.1
* perl-Git-2.35.3-150300.10.39.1
* git-email-2.35.3-150300.10.39.1
* git-arch-2.35.3-150300.10.39.1
* git-debugsource-2.35.3-150300.10.39.1
* git-gui-2.35.3-150300.10.39.1
* git-debuginfo-2.35.3-150300.10.39.1
* git-web-2.35.3-150300.10.39.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch)
* git-doc-2.35.3-150300.10.39.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64
x86_64)
* git-daemon-2.35.3-150300.10.39.1
* git-core-debuginfo-2.35.3-150300.10.39.1
* git-core-2.35.3-150300.10.39.1
* git-cvs-2.35.3-150300.10.39.1
* git-daemon-debuginfo-2.35.3-150300.10.39.1
* git-2.35.3-150300.10.39.1
* git-svn-2.35.3-150300.10.39.1
* gitk-2.35.3-150300.10.39.1
* perl-Git-2.35.3-150300.10.39.1
* git-email-2.35.3-150300.10.39.1
* git-arch-2.35.3-150300.10.39.1
* git-debugsource-2.35.3-150300.10.39.1
* git-gui-2.35.3-150300.10.39.1
* git-debuginfo-2.35.3-150300.10.39.1
* git-web-2.35.3-150300.10.39.1
* SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch)
* git-doc-2.35.3-150300.10.39.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64
x86_64)
* git-daemon-2.35.3-150300.10.39.1
* git-core-debuginfo-2.35.3-150300.10.39.1
* git-core-2.35.3-150300.10.39.1
* git-cvs-2.35.3-150300.10.39.1
* git-daemon-debuginfo-2.35.3-150300.10.39.1
* git-2.35.3-150300.10.39.1
* git-svn-2.35.3-150300.10.39.1
* gitk-2.35.3-150300.10.39.1
* perl-Git-2.35.3-150300.10.39.1
* git-email-2.35.3-150300.10.39.1
* git-arch-2.35.3-150300.10.39.1
* git-debugsource-2.35.3-150300.10.39.1
* git-gui-2.35.3-150300.10.39.1
* git-debuginfo-2.35.3-150300.10.39.1
* git-web-2.35.3-150300.10.39.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch)
* git-doc-2.35.3-150300.10.39.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64)
* git-daemon-2.35.3-150300.10.39.1
* git-core-debuginfo-2.35.3-150300.10.39.1
* git-core-2.35.3-150300.10.39.1
* git-cvs-2.35.3-150300.10.39.1
* git-daemon-debuginfo-2.35.3-150300.10.39.1
* git-2.35.3-150300.10.39.1
* git-svn-2.35.3-150300.10.39.1
* gitk-2.35.3-150300.10.39.1
* perl-Git-2.35.3-150300.10.39.1
* git-email-2.35.3-150300.10.39.1
* git-arch-2.35.3-150300.10.39.1
* git-debugsource-2.35.3-150300.10.39.1
* git-gui-2.35.3-150300.10.39.1
* git-debuginfo-2.35.3-150300.10.39.1
* git-web-2.35.3-150300.10.39.1
* SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch)
* git-doc-2.35.3-150300.10.39.1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x
x86_64)
* git-daemon-2.35.3-150300.10.39.1
* git-core-debuginfo-2.35.3-150300.10.39.1
* git-core-2.35.3-150300.10.39.1
* git-cvs-2.35.3-150300.10.39.1
* git-daemon-debuginfo-2.35.3-150300.10.39.1
* git-2.35.3-150300.10.39.1
* git-svn-2.35.3-150300.10.39.1
* gitk-2.35.3-150300.10.39.1
* perl-Git-2.35.3-150300.10.39.1
* git-email-2.35.3-150300.10.39.1
* git-arch-2.35.3-150300.10.39.1
* git-debugsource-2.35.3-150300.10.39.1
* git-gui-2.35.3-150300.10.39.1
* git-debuginfo-2.35.3-150300.10.39.1
* git-web-2.35.3-150300.10.39.1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch)
* git-doc-2.35.3-150300.10.39.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x
x86_64)
* git-daemon-2.35.3-150300.10.39.1
* git-core-debuginfo-2.35.3-150300.10.39.1
* git-core-2.35.3-150300.10.39.1
* git-cvs-2.35.3-150300.10.39.1
* git-daemon-debuginfo-2.35.3-150300.10.39.1
* git-2.35.3-150300.10.39.1
* git-svn-2.35.3-150300.10.39.1
* gitk-2.35.3-150300.10.39.1
* perl-Git-2.35.3-150300.10.39.1
* git-email-2.35.3-150300.10.39.1
* git-arch-2.35.3-150300.10.39.1
* git-debugsource-2.35.3-150300.10.39.1
* git-gui-2.35.3-150300.10.39.1
* git-debuginfo-2.35.3-150300.10.39.1
* git-web-2.35.3-150300.10.39.1
* SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch)
* git-doc-2.35.3-150300.10.39.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64)
* git-daemon-2.35.3-150300.10.39.1
* git-core-debuginfo-2.35.3-150300.10.39.1
* git-core-2.35.3-150300.10.39.1
* git-cvs-2.35.3-150300.10.39.1
* git-daemon-debuginfo-2.35.3-150300.10.39.1
* git-2.35.3-150300.10.39.1
* git-svn-2.35.3-150300.10.39.1
* gitk-2.35.3-150300.10.39.1
* perl-Git-2.35.3-150300.10.39.1
* git-email-2.35.3-150300.10.39.1
* git-arch-2.35.3-150300.10.39.1
* git-debugsource-2.35.3-150300.10.39.1
* git-gui-2.35.3-150300.10.39.1
* git-debuginfo-2.35.3-150300.10.39.1
* git-web-2.35.3-150300.10.39.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch)
* git-doc-2.35.3-150300.10.39.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64)
* git-daemon-2.35.3-150300.10.39.1
* git-core-debuginfo-2.35.3-150300.10.39.1
* git-core-2.35.3-150300.10.39.1
* git-cvs-2.35.3-150300.10.39.1
* git-daemon-debuginfo-2.35.3-150300.10.39.1
* git-2.35.3-150300.10.39.1
* git-svn-2.35.3-150300.10.39.1
* gitk-2.35.3-150300.10.39.1
* perl-Git-2.35.3-150300.10.39.1
* git-email-2.35.3-150300.10.39.1
* git-arch-2.35.3-150300.10.39.1
* git-debugsource-2.35.3-150300.10.39.1
* git-gui-2.35.3-150300.10.39.1
* git-debuginfo-2.35.3-150300.10.39.1
* git-web-2.35.3-150300.10.39.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch)
* git-doc-2.35.3-150300.10.39.1
* SUSE Manager Proxy 4.3 (x86_64)
* git-debuginfo-2.35.3-150300.10.39.1
* git-debugsource-2.35.3-150300.10.39.1
* git-core-debuginfo-2.35.3-150300.10.39.1
* git-core-2.35.3-150300.10.39.1
* SUSE Manager Retail Branch Server 4.3 (x86_64)
* git-debuginfo-2.35.3-150300.10.39.1
* git-debugsource-2.35.3-150300.10.39.1
* git-core-debuginfo-2.35.3-150300.10.39.1
* git-core-2.35.3-150300.10.39.1
* SUSE Manager Server 4.3 (ppc64le s390x x86_64)
* git-debuginfo-2.35.3-150300.10.39.1
* git-debugsource-2.35.3-150300.10.39.1
* git-core-debuginfo-2.35.3-150300.10.39.1
* git-core-2.35.3-150300.10.39.1
* SUSE Enterprise Storage 7.1 (aarch64 x86_64)
* git-daemon-2.35.3-150300.10.39.1
* git-core-debuginfo-2.35.3-150300.10.39.1
* git-core-2.35.3-150300.10.39.1
* git-cvs-2.35.3-150300.10.39.1
* git-daemon-debuginfo-2.35.3-150300.10.39.1
* git-2.35.3-150300.10.39.1
* git-svn-2.35.3-150300.10.39.1
* gitk-2.35.3-150300.10.39.1
* perl-Git-2.35.3-150300.10.39.1
* git-email-2.35.3-150300.10.39.1
* git-arch-2.35.3-150300.10.39.1
* git-debugsource-2.35.3-150300.10.39.1
* git-gui-2.35.3-150300.10.39.1
* git-debuginfo-2.35.3-150300.10.39.1
* git-web-2.35.3-150300.10.39.1
* SUSE Enterprise Storage 7.1 (noarch)
* git-doc-2.35.3-150300.10.39.1
* openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586)
* git-credential-libsecret-2.35.3-150300.10.39.1
* git-credential-libsecret-debuginfo-2.35.3-150300.10.39.1
* git-daemon-2.35.3-150300.10.39.1
* git-core-debuginfo-2.35.3-150300.10.39.1
* git-core-2.35.3-150300.10.39.1
* git-cvs-2.35.3-150300.10.39.1
* git-daemon-debuginfo-2.35.3-150300.10.39.1
* git-2.35.3-150300.10.39.1
* git-svn-2.35.3-150300.10.39.1
* gitk-2.35.3-150300.10.39.1
* git-credential-gnome-keyring-debuginfo-2.35.3-150300.10.39.1
* perl-Git-2.35.3-150300.10.39.1
* git-credential-gnome-keyring-2.35.3-150300.10.39.1
* git-email-2.35.3-150300.10.39.1
* git-arch-2.35.3-150300.10.39.1
* git-debugsource-2.35.3-150300.10.39.1
* git-gui-2.35.3-150300.10.39.1
* git-p4-2.35.3-150300.10.39.1
* git-debuginfo-2.35.3-150300.10.39.1
* git-web-2.35.3-150300.10.39.1
* openSUSE Leap 15.3 (noarch)
* git-doc-2.35.3-150300.10.39.1

## References:

* https://www.suse.com/security/cve/CVE-2024-32002.html
* https://www.suse.com/security/cve/CVE-2024-32004.html
* https://www.suse.com/security/cve/CVE-2024-32020.html
* https://www.suse.com/security/cve/CVE-2024-32021.html
* https://www.suse.com/security/cve/CVE-2024-32465.html
* https://bugzilla.suse.com/show_bug.cgi?id=1224168
* https://bugzilla.suse.com/show_bug.cgi?id=1224170
* https://bugzilla.suse.com/show_bug.cgi?id=1224171
* https://bugzilla.suse.com/show_bug.cgi?id=1224172
* https://bugzilla.suse.com/show_bug.cgi?id=1224173



SUSE-SU-2024:1808-1: moderate: Security update for openssl-1_1


# Security update for openssl-1_1

Announcement ID: SUSE-SU-2024:1808-1
Rating: moderate
References:

* bsc#1222548

Cross-References:

* CVE-2024-2511

CVSS scores:

* CVE-2024-2511 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products:

* Basesystem Module 15-SP5
* openSUSE Leap 15.5
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP5

An update that solves one vulnerability can now be installed.

## Description:

This update for openssl-1_1 fixes the following issues:

* CVE-2024-2511: Fixed unconstrained session cache growth in TLSv1.3
(bsc#1222548).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.5
zypper in -t patch SUSE-2024-1808=1 openSUSE-SLE-15.5-2024-1808=1

* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2024-1808=1

* Basesystem Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1808=1

## Package List:

* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586)
* libopenssl1_1-debuginfo-1.1.1l-150500.17.28.2
* openssl-1_1-debugsource-1.1.1l-150500.17.28.2
* libopenssl1_1-hmac-1.1.1l-150500.17.28.2
* openssl-1_1-1.1.1l-150500.17.28.2
* openssl-1_1-debuginfo-1.1.1l-150500.17.28.2
* libopenssl1_1-1.1.1l-150500.17.28.2
* libopenssl-1_1-devel-1.1.1l-150500.17.28.2
* openSUSE Leap 15.5 (x86_64)
* libopenssl1_1-32bit-1.1.1l-150500.17.28.2
* libopenssl1_1-hmac-32bit-1.1.1l-150500.17.28.2
* libopenssl1_1-32bit-debuginfo-1.1.1l-150500.17.28.2
* libopenssl-1_1-devel-32bit-1.1.1l-150500.17.28.2
* openSUSE Leap 15.5 (noarch)
* openssl-1_1-doc-1.1.1l-150500.17.28.2
* openSUSE Leap 15.5 (aarch64_ilp32)
* libopenssl1_1-64bit-1.1.1l-150500.17.28.2
* libopenssl1_1-64bit-debuginfo-1.1.1l-150500.17.28.2
* libopenssl1_1-hmac-64bit-1.1.1l-150500.17.28.2
* libopenssl-1_1-devel-64bit-1.1.1l-150500.17.28.2
* SUSE Linux Enterprise Micro 5.5 (aarch64 s390x x86_64)
* libopenssl1_1-debuginfo-1.1.1l-150500.17.28.2
* openssl-1_1-debugsource-1.1.1l-150500.17.28.2
* libopenssl1_1-hmac-1.1.1l-150500.17.28.2
* openssl-1_1-1.1.1l-150500.17.28.2
* openssl-1_1-debuginfo-1.1.1l-150500.17.28.2
* libopenssl1_1-1.1.1l-150500.17.28.2
* libopenssl-1_1-devel-1.1.1l-150500.17.28.2
* Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* libopenssl1_1-debuginfo-1.1.1l-150500.17.28.2
* openssl-1_1-debugsource-1.1.1l-150500.17.28.2
* libopenssl1_1-hmac-1.1.1l-150500.17.28.2
* openssl-1_1-1.1.1l-150500.17.28.2
* openssl-1_1-debuginfo-1.1.1l-150500.17.28.2
* libopenssl1_1-1.1.1l-150500.17.28.2
* libopenssl-1_1-devel-1.1.1l-150500.17.28.2
* Basesystem Module 15-SP5 (x86_64)
* libopenssl1_1-32bit-1.1.1l-150500.17.28.2
* libopenssl1_1-hmac-32bit-1.1.1l-150500.17.28.2
* libopenssl1_1-32bit-debuginfo-1.1.1l-150500.17.28.2

## References:

* https://www.suse.com/security/cve/CVE-2024-2511.html
* https://bugzilla.suse.com/show_bug.cgi?id=1222548



SUSE-SU-2024:0461-2: important: Security update for libxml2


# Security update for libxml2

Announcement ID: SUSE-SU-2024:0461-2
Rating: important
References:

* bsc#1219576

Cross-References:

* CVE-2024-25062

CVSS scores:

* CVE-2024-25062 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
* CVE-2024-25062 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected Products:

* openSUSE Leap 15.5
* SUSE Enterprise Storage 7.1
* SUSE Linux Enterprise High Performance Computing 15 SP2
* SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2
* SUSE Linux Enterprise High Performance Computing 15 SP3
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
* SUSE Linux Enterprise Micro 5.1
* SUSE Linux Enterprise Micro 5.2
* SUSE Linux Enterprise Micro for Rancher 5.2
* SUSE Linux Enterprise Server 15 SP2
* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2
* SUSE Linux Enterprise Server 15 SP3
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
* SUSE Linux Enterprise Server for SAP Applications 15 SP2
* SUSE Linux Enterprise Server for SAP Applications 15 SP3

An update that solves one vulnerability can now be installed.

## Description:

This update for libxml2 fixes the following issues:

* CVE-2024-25062: Fixed use-after-free in XMLReader (bsc#1219576).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2
zypper in -t patch SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-461=1

* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-461=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP2
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP2-2024-461=1

* SUSE Linux Enterprise Server for SAP Applications 15 SP3
zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-461=1

* SUSE Enterprise Storage 7.1
zypper in -t patch SUSE-Storage-7.1-2024-461=1

* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-461=1

* SUSE Linux Enterprise Micro 5.1
zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-461=1

* SUSE Linux Enterprise Micro 5.2
zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-461=1

* SUSE Linux Enterprise Micro for Rancher 5.2
zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-461=1

* SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2
zypper in -t patch SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-461=1

* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-461=1

## Package List:

* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (aarch64 ppc64le s390x
x86_64)
* libxml2-tools-debuginfo-2.9.7-150000.3.66.1
* libxml2-2-debuginfo-2.9.7-150000.3.66.1
* python3-libxml2-python-debuginfo-2.9.7-150000.3.66.1
* python3-libxml2-python-2.9.7-150000.3.66.1
* libxml2-devel-2.9.7-150000.3.66.1
* python2-libxml2-python-debuginfo-2.9.7-150000.3.66.1
* libxml2-debugsource-2.9.7-150000.3.66.1
* libxml2-2-2.9.7-150000.3.66.1
* libxml2-tools-2.9.7-150000.3.66.1
* python2-libxml2-python-2.9.7-150000.3.66.1
* python-libxml2-python-debugsource-2.9.7-150000.3.66.1
* SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (x86_64)
* libxml2-2-32bit-2.9.7-150000.3.66.1
* libxml2-2-32bit-debuginfo-2.9.7-150000.3.66.1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x
x86_64)
* libxml2-tools-debuginfo-2.9.7-150000.3.66.1
* libxml2-2-debuginfo-2.9.7-150000.3.66.1
* python3-libxml2-python-debuginfo-2.9.7-150000.3.66.1
* python3-libxml2-python-2.9.7-150000.3.66.1
* libxml2-devel-2.9.7-150000.3.66.1
* libxml2-debugsource-2.9.7-150000.3.66.1
* libxml2-2-2.9.7-150000.3.66.1
* libxml2-tools-2.9.7-150000.3.66.1
* python-libxml2-python-debugsource-2.9.7-150000.3.66.1
* SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (x86_64)
* libxml2-2-32bit-2.9.7-150000.3.66.1
* libxml2-2-32bit-debuginfo-2.9.7-150000.3.66.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP2 (ppc64le x86_64)
* libxml2-tools-debuginfo-2.9.7-150000.3.66.1
* libxml2-2-debuginfo-2.9.7-150000.3.66.1
* python3-libxml2-python-debuginfo-2.9.7-150000.3.66.1
* python3-libxml2-python-2.9.7-150000.3.66.1
* libxml2-devel-2.9.7-150000.3.66.1
* python2-libxml2-python-debuginfo-2.9.7-150000.3.66.1
* libxml2-debugsource-2.9.7-150000.3.66.1
* libxml2-2-2.9.7-150000.3.66.1
* libxml2-tools-2.9.7-150000.3.66.1
* python2-libxml2-python-2.9.7-150000.3.66.1
* python-libxml2-python-debugsource-2.9.7-150000.3.66.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP2 (x86_64)
* libxml2-2-32bit-2.9.7-150000.3.66.1
* libxml2-2-32bit-debuginfo-2.9.7-150000.3.66.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64)
* libxml2-tools-debuginfo-2.9.7-150000.3.66.1
* libxml2-2-debuginfo-2.9.7-150000.3.66.1
* python3-libxml2-python-debuginfo-2.9.7-150000.3.66.1
* python3-libxml2-python-2.9.7-150000.3.66.1
* libxml2-devel-2.9.7-150000.3.66.1
* libxml2-debugsource-2.9.7-150000.3.66.1
* libxml2-2-2.9.7-150000.3.66.1
* libxml2-tools-2.9.7-150000.3.66.1
* python-libxml2-python-debugsource-2.9.7-150000.3.66.1
* SUSE Linux Enterprise Server for SAP Applications 15 SP3 (x86_64)
* libxml2-2-32bit-2.9.7-150000.3.66.1
* libxml2-2-32bit-debuginfo-2.9.7-150000.3.66.1
* SUSE Enterprise Storage 7.1 (aarch64 x86_64)
* libxml2-tools-debuginfo-2.9.7-150000.3.66.1
* libxml2-2-debuginfo-2.9.7-150000.3.66.1
* python3-libxml2-python-debuginfo-2.9.7-150000.3.66.1
* python3-libxml2-python-2.9.7-150000.3.66.1
* libxml2-devel-2.9.7-150000.3.66.1
* libxml2-debugsource-2.9.7-150000.3.66.1
* libxml2-2-2.9.7-150000.3.66.1
* libxml2-tools-2.9.7-150000.3.66.1
* python-libxml2-python-debugsource-2.9.7-150000.3.66.1
* SUSE Enterprise Storage 7.1 (x86_64)
* libxml2-2-32bit-2.9.7-150000.3.66.1
* libxml2-2-32bit-debuginfo-2.9.7-150000.3.66.1
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* python3-libxml2-python-debuginfo-2.9.7-150000.3.66.1
* python3-libxml2-python-2.9.7-150000.3.66.1
* python-libxml2-python-debugsource-2.9.7-150000.3.66.1
* SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64)
* libxml2-tools-debuginfo-2.9.7-150000.3.66.1
* libxml2-2-debuginfo-2.9.7-150000.3.66.1
* libxml2-debugsource-2.9.7-150000.3.66.1
* libxml2-2-2.9.7-150000.3.66.1
* libxml2-tools-2.9.7-150000.3.66.1
* SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64)
* libxml2-tools-debuginfo-2.9.7-150000.3.66.1
* libxml2-2-debuginfo-2.9.7-150000.3.66.1
* python3-libxml2-python-debuginfo-2.9.7-150000.3.66.1
* python3-libxml2-python-2.9.7-150000.3.66.1
* libxml2-debugsource-2.9.7-150000.3.66.1
* libxml2-2-2.9.7-150000.3.66.1
* libxml2-tools-2.9.7-150000.3.66.1
* python-libxml2-python-debugsource-2.9.7-150000.3.66.1
* SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64)
* libxml2-tools-debuginfo-2.9.7-150000.3.66.1
* libxml2-2-debuginfo-2.9.7-150000.3.66.1
* python3-libxml2-python-debuginfo-2.9.7-150000.3.66.1
* python3-libxml2-python-2.9.7-150000.3.66.1
* libxml2-debugsource-2.9.7-150000.3.66.1
* libxml2-2-2.9.7-150000.3.66.1
* libxml2-tools-2.9.7-150000.3.66.1
* python-libxml2-python-debugsource-2.9.7-150000.3.66.1
* SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (aarch64
x86_64)
* libxml2-tools-debuginfo-2.9.7-150000.3.66.1
* libxml2-2-debuginfo-2.9.7-150000.3.66.1
* python3-libxml2-python-debuginfo-2.9.7-150000.3.66.1
* python3-libxml2-python-2.9.7-150000.3.66.1
* libxml2-devel-2.9.7-150000.3.66.1
* python2-libxml2-python-debuginfo-2.9.7-150000.3.66.1
* libxml2-debugsource-2.9.7-150000.3.66.1
* libxml2-2-2.9.7-150000.3.66.1
* libxml2-tools-2.9.7-150000.3.66.1
* python2-libxml2-python-2.9.7-150000.3.66.1
* python-libxml2-python-debugsource-2.9.7-150000.3.66.1
* SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (x86_64)
* libxml2-2-32bit-2.9.7-150000.3.66.1
* libxml2-2-32bit-debuginfo-2.9.7-150000.3.66.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64
x86_64)
* libxml2-tools-debuginfo-2.9.7-150000.3.66.1
* libxml2-2-debuginfo-2.9.7-150000.3.66.1
* python3-libxml2-python-debuginfo-2.9.7-150000.3.66.1
* python3-libxml2-python-2.9.7-150000.3.66.1
* libxml2-devel-2.9.7-150000.3.66.1
* libxml2-debugsource-2.9.7-150000.3.66.1
* libxml2-2-2.9.7-150000.3.66.1
* libxml2-tools-2.9.7-150000.3.66.1
* python-libxml2-python-debugsource-2.9.7-150000.3.66.1
* SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (x86_64)
* libxml2-2-32bit-2.9.7-150000.3.66.1
* libxml2-2-32bit-debuginfo-2.9.7-150000.3.66.1

## References:

* https://www.suse.com/security/cve/CVE-2024-25062.html
* https://bugzilla.suse.com/show_bug.cgi?id=1219576



SUSE-SU-2024:1803-1: important: Security update for xdg-desktop-portal


# Security update for xdg-desktop-portal

Announcement ID: SUSE-SU-2024:1803-1
Rating: important
References:

* bsc#1223110

Cross-References:

* CVE-2024-32462

CVSS scores:

* CVE-2024-32462 ( SUSE ): 8.4 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

Affected Products:

* Desktop Applications Module 15-SP5
* openSUSE Leap 15.5
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP5

An update that solves one vulnerability can now be installed.

## Description:

This update for xdg-desktop-portal fixes the following issues:

* CVE-2024-32462: Fixed sandbox escape via RequestBackground portal
(bsc#1223110).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.5
zypper in -t patch SUSE-2024-1803=1 openSUSE-SLE-15.5-2024-1803=1

* Desktop Applications Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Desktop-Applications-15-SP5-2024-1803=1

## Package List:

* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586)
* xdg-desktop-portal-1.16.0-150500.3.6.1
* xdg-desktop-portal-devel-1.16.0-150500.3.6.1
* xdg-desktop-portal-debugsource-1.16.0-150500.3.6.1
* xdg-desktop-portal-debuginfo-1.16.0-150500.3.6.1
* openSUSE Leap 15.5 (noarch)
* xdg-desktop-portal-lang-1.16.0-150500.3.6.1
* Desktop Applications Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* xdg-desktop-portal-1.16.0-150500.3.6.1
* xdg-desktop-portal-devel-1.16.0-150500.3.6.1
* xdg-desktop-portal-debugsource-1.16.0-150500.3.6.1
* xdg-desktop-portal-debuginfo-1.16.0-150500.3.6.1
* Desktop Applications Module 15-SP5 (noarch)
* xdg-desktop-portal-lang-1.16.0-150500.3.6.1

## References:

* https://www.suse.com/security/cve/CVE-2024-32462.html
* https://bugzilla.suse.com/show_bug.cgi?id=1223110



SUSE-SU-2024:1793-1: moderate: Security update for java-1_8_0-openj9


# Security update for java-1_8_0-openj9

Announcement ID: SUSE-SU-2024:1793-1
Rating: moderate
References:

* bsc#1213470
* bsc#1222979
* bsc#1222983
* bsc#1222984
* bsc#1222986

Cross-References:

* CVE-2024-21011
* CVE-2024-21068
* CVE-2024-21085
* CVE-2024-21094

CVSS scores:

* CVE-2024-21011 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2024-21068 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
* CVE-2024-21085 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
* CVE-2024-21094 ( SUSE ): 3.7 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

Affected Products:

* openSUSE Leap 15.5
* openSUSE Leap 15.6
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Micro 5.5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
* SUSE Package Hub 15 15-SP5
* SUSE Package Hub 15 15-SP6

An update that solves four vulnerabilities and has one security fix can now be
installed.

## Description:

This update for java-1_8_0-openj9 fixes the following issues:

Update to OpenJDK 8u412 build 08 with OpenJ9 0.44.0 virtual machine:

* CVE-2024-21094: Fixed C2 compilation failure with "Exceeded _node_regs
array" (bsc#1222986).
* CVE-2024-21011: Fixed long Exception message leading to crash (bsc#1222979).
* CVE-2024-21085: Fixed Pack200 excessive memory allocation (bsc#1222984).
* CVE-2024-21068: Fixed integer overflow in C1 compiler address generation
(bsc#1222983).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.6
zypper in -t patch openSUSE-SLE-15.6-2024-1793=1

* SUSE Package Hub 15 15-SP5
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1793=1

* SUSE Package Hub 15 15-SP6
zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-1793=1

* openSUSE Leap 15.5
zypper in -t patch openSUSE-SLE-15.5-2024-1793=1

## Package List:

* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64)
* java-1_8_0-openj9-headless-debuginfo-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-debuginfo-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-devel-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-demo-debuginfo-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-demo-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-debugsource-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-src-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-accessibility-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-headless-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-devel-debuginfo-1.8.0.412-150200.3.45.2
* openSUSE Leap 15.6 (noarch)
* java-1_8_0-openj9-javadoc-1.8.0.412-150200.3.45.2
* SUSE Package Hub 15 15-SP5 (ppc64le s390x)
* java-1_8_0-openj9-headless-debuginfo-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-debuginfo-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-devel-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-demo-debuginfo-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-demo-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-debugsource-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-src-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-accessibility-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-headless-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-devel-debuginfo-1.8.0.412-150200.3.45.2
* SUSE Package Hub 15 15-SP6 (ppc64le s390x)
* java-1_8_0-openj9-headless-debuginfo-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-debuginfo-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-devel-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-demo-debuginfo-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-demo-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-debugsource-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-src-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-accessibility-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-headless-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-devel-debuginfo-1.8.0.412-150200.3.45.2
* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64)
* java-1_8_0-openj9-headless-debuginfo-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-debuginfo-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-devel-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-demo-debuginfo-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-demo-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-debugsource-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-src-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-accessibility-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-headless-1.8.0.412-150200.3.45.2
* java-1_8_0-openj9-devel-debuginfo-1.8.0.412-150200.3.45.2
* openSUSE Leap 15.5 (noarch)
* java-1_8_0-openj9-javadoc-1.8.0.412-150200.3.45.2

## References:

* https://www.suse.com/security/cve/CVE-2024-21011.html
* https://www.suse.com/security/cve/CVE-2024-21068.html
* https://www.suse.com/security/cve/CVE-2024-21085.html
* https://www.suse.com/security/cve/CVE-2024-21094.html
* https://bugzilla.suse.com/show_bug.cgi?id=1213470
* https://bugzilla.suse.com/show_bug.cgi?id=1222979
* https://bugzilla.suse.com/show_bug.cgi?id=1222983
* https://bugzilla.suse.com/show_bug.cgi?id=1222984
* https://bugzilla.suse.com/show_bug.cgi?id=1222986



SUSE-SU-2024:1789-1: moderate: Security update for openssl-3


# Security update for openssl-3

Announcement ID: SUSE-SU-2024:1789-1
Rating: moderate
References:

* bsc#1224388

Cross-References:

* CVE-2024-4603

CVSS scores:

* CVE-2024-4603 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected Products:

* Basesystem Module 15-SP5
* openSUSE Leap 15.5
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP5

An update that solves one vulnerability can now be installed.

## Description:

This update for openssl-3 fixes the following issues:

* CVE-2024-4603: Fixed DSA parameter checks for excessive sizes before
validating (bsc#1224388).

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

* openSUSE Leap 15.5
zypper in -t patch SUSE-2024-1789=1 openSUSE-SLE-15.5-2024-1789=1

* Basesystem Module 15-SP5
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1789=1

## Package List:

* openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586)
* libopenssl3-3.0.8-150500.5.33.1
* openssl-3-debugsource-3.0.8-150500.5.33.1
* libopenssl-3-devel-3.0.8-150500.5.33.1
* openssl-3-3.0.8-150500.5.33.1
* libopenssl3-debuginfo-3.0.8-150500.5.33.1
* openssl-3-debuginfo-3.0.8-150500.5.33.1
* openSUSE Leap 15.5 (x86_64)
* libopenssl-3-devel-32bit-3.0.8-150500.5.33.1
* libopenssl3-32bit-3.0.8-150500.5.33.1
* libopenssl3-32bit-debuginfo-3.0.8-150500.5.33.1
* openSUSE Leap 15.5 (noarch)
* openssl-3-doc-3.0.8-150500.5.33.1
* openSUSE Leap 15.5 (aarch64_ilp32)
* libopenssl-3-devel-64bit-3.0.8-150500.5.33.1
* libopenssl3-64bit-3.0.8-150500.5.33.1
* libopenssl3-64bit-debuginfo-3.0.8-150500.5.33.1
* Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64)
* libopenssl3-3.0.8-150500.5.33.1
* openssl-3-debugsource-3.0.8-150500.5.33.1
* libopenssl-3-devel-3.0.8-150500.5.33.1
* openssl-3-3.0.8-150500.5.33.1
* libopenssl3-debuginfo-3.0.8-150500.5.33.1
* openssl-3-debuginfo-3.0.8-150500.5.33.1

## References:

* https://www.suse.com/security/cve/CVE-2024-4603.html
* https://bugzilla.suse.com/show_bug.cgi?id=1224388



SUSE-SU-2024:1777-1: moderate: Security update for postgresql15


# Security update for postgresql15

Announcement ID: SUSE-SU-2024:1777-1
Rating: moderate
References:

* bsc#1224038
* bsc#1224051

Cross-References:

* CVE-2024-4317

CVSS scores:

* CVE-2024-4317 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected Products:

* Basesystem Module 15-SP5
* openSUSE Leap 15.5
* Server Applications Module 15-SP5
* SUSE Linux Enterprise Desktop 15 SP5
* SUSE Linux Enterprise High Performance Computing 15 SP5
* SUSE Linux Enterprise Real Time 15 SP5
* SUSE Linux Enterprise Server 15 SP5
* SUSE Linux Enterprise Server for SAP Applications 15 SP5

An update that solves one vulnerability and has one security fix can now be
installed.

## Description:

This update for postgresql15 fixes the following issues:

PostgreSQL upgrade to version 15.7 (bsc#1224051):

* CVE-2024-4317: Fixed visibility restriction of pg_stats_ext and
pg_stats_ext_exprs entries to the table owner (bsc#1224038).

Bug fixes:

* Fix incompatibility with LLVM 18.
* Prepare for PostgreSQL 17.
* Make sure all compilation and doc generation happens in %build.
* Require LLVM