openSUSE-2019-353 moderate openSUSE Backports SLE-15 Update This update for terminator fixes the following issues: - terminator did not correctly specify run-time dependency on python-cairo (boo#1105830) terminator-1.91-bp150.3.3.1.noarch.rpm terminator-1.91-bp150.3.3.1.src.rpm terminator-lang-1.91-bp150.3.3.1.noarch.rpm openSUSE-2019-354 low openSUSE Backports SLE-15 Update This update for kupfer fixes the following issue: - the kupfer package did not specify some of its run-time dependencies (boo#1102282) kupfer-319-bp150.2.3.1.noarch.rpm kupfer-319-bp150.2.3.1.src.rpm openSUSE-2019-355 moderate openSUSE Backports SLE-15 Update This update for moinmoin-wiki to version 1.9.10 fixes the following security issue: - CVE-2017-5934: Cross-site scripting vulnerability in the GUI editor (boo#1111104) moinmoin-wiki-1.9.10-bp150.3.4.1.noarch.rpm moinmoin-wiki-1.9.10-bp150.3.4.1.src.rpm openSUSE-2019-356 moderate openSUSE Backports SLE-15 Update This update for messagelib fixes the following issues: - The PageUp/PageDown keys to scroll the message in kmail did not work (boo#1105461) messagelib-17.12.3-bp150.3.3.1.src.rpm messagelib-17.12.3-bp150.3.3.1.x86_64.rpm messagelib-debuginfo-17.12.3-bp150.3.3.1.x86_64.rpm messagelib-debugsource-17.12.3-bp150.3.3.1.x86_64.rpm messagelib-devel-17.12.3-bp150.3.3.1.x86_64.rpm messagelib-lang-17.12.3-bp150.3.3.1.noarch.rpm openSUSE-2019-357 moderate openSUSE Backports SLE-15 Update This update for retext fixes the following issues: - ReText could not be launched from the KDE Application launcher (boo#1040433) retext-6.0.0-bp150.3.3.1.noarch.rpm retext-6.0.0-bp150.3.3.1.src.rpm openSUSE-2019-358 moderate openSUSE Backports SLE-15 Update This update for python-matplotlib fixes the following issues: - The cairo backend inverted images and incorrectly handled alpha channel data (boo#1113619) python-matplotlib-2.0.2-bp150.2.3.1.src.rpm python2-matplotlib-2.0.2-bp150.2.3.1.x86_64.rpm python2-matplotlib-cairo-2.0.2-bp150.2.3.1.x86_64.rpm python2-matplotlib-gtk3-2.0.2-bp150.2.3.1.x86_64.rpm python2-matplotlib-latex-2.0.2-bp150.2.3.1.x86_64.rpm python2-matplotlib-qt-shared-2.0.2-bp150.2.3.1.x86_64.rpm python2-matplotlib-qt4-2.0.2-bp150.2.3.1.x86_64.rpm python2-matplotlib-qt5-2.0.2-bp150.2.3.1.x86_64.rpm python2-matplotlib-tk-2.0.2-bp150.2.3.1.x86_64.rpm python2-matplotlib-web-2.0.2-bp150.2.3.1.x86_64.rpm python2-matplotlib-wx-2.0.2-bp150.2.3.1.x86_64.rpm python3-matplotlib-2.0.2-bp150.2.3.1.x86_64.rpm python3-matplotlib-cairo-2.0.2-bp150.2.3.1.x86_64.rpm python3-matplotlib-gtk3-2.0.2-bp150.2.3.1.x86_64.rpm python3-matplotlib-latex-2.0.2-bp150.2.3.1.x86_64.rpm python3-matplotlib-qt-shared-2.0.2-bp150.2.3.1.x86_64.rpm python3-matplotlib-qt4-2.0.2-bp150.2.3.1.x86_64.rpm python3-matplotlib-qt5-2.0.2-bp150.2.3.1.x86_64.rpm python3-matplotlib-tk-2.0.2-bp150.2.3.1.x86_64.rpm python3-matplotlib-web-2.0.2-bp150.2.3.1.x86_64.rpm python2-matplotlib-2.0.2-bp150.2.3.1.aarch64.rpm python2-matplotlib-cairo-2.0.2-bp150.2.3.1.aarch64.rpm python2-matplotlib-gtk3-2.0.2-bp150.2.3.1.aarch64.rpm python2-matplotlib-latex-2.0.2-bp150.2.3.1.aarch64.rpm python2-matplotlib-qt-shared-2.0.2-bp150.2.3.1.aarch64.rpm python2-matplotlib-qt4-2.0.2-bp150.2.3.1.aarch64.rpm python2-matplotlib-qt5-2.0.2-bp150.2.3.1.aarch64.rpm python2-matplotlib-tk-2.0.2-bp150.2.3.1.aarch64.rpm python2-matplotlib-web-2.0.2-bp150.2.3.1.aarch64.rpm python2-matplotlib-wx-2.0.2-bp150.2.3.1.aarch64.rpm python3-matplotlib-2.0.2-bp150.2.3.1.aarch64.rpm python3-matplotlib-cairo-2.0.2-bp150.2.3.1.aarch64.rpm python3-matplotlib-gtk3-2.0.2-bp150.2.3.1.aarch64.rpm python3-matplotlib-latex-2.0.2-bp150.2.3.1.aarch64.rpm python3-matplotlib-qt-shared-2.0.2-bp150.2.3.1.aarch64.rpm python3-matplotlib-qt4-2.0.2-bp150.2.3.1.aarch64.rpm python3-matplotlib-qt5-2.0.2-bp150.2.3.1.aarch64.rpm python3-matplotlib-tk-2.0.2-bp150.2.3.1.aarch64.rpm python3-matplotlib-web-2.0.2-bp150.2.3.1.aarch64.rpm python2-matplotlib-2.0.2-bp150.2.3.1.ppc64le.rpm python2-matplotlib-cairo-2.0.2-bp150.2.3.1.ppc64le.rpm python2-matplotlib-gtk3-2.0.2-bp150.2.3.1.ppc64le.rpm python2-matplotlib-latex-2.0.2-bp150.2.3.1.ppc64le.rpm python2-matplotlib-qt-shared-2.0.2-bp150.2.3.1.ppc64le.rpm python2-matplotlib-qt4-2.0.2-bp150.2.3.1.ppc64le.rpm python2-matplotlib-qt5-2.0.2-bp150.2.3.1.ppc64le.rpm python2-matplotlib-tk-2.0.2-bp150.2.3.1.ppc64le.rpm python2-matplotlib-web-2.0.2-bp150.2.3.1.ppc64le.rpm python2-matplotlib-wx-2.0.2-bp150.2.3.1.ppc64le.rpm python3-matplotlib-2.0.2-bp150.2.3.1.ppc64le.rpm python3-matplotlib-cairo-2.0.2-bp150.2.3.1.ppc64le.rpm python3-matplotlib-gtk3-2.0.2-bp150.2.3.1.ppc64le.rpm python3-matplotlib-latex-2.0.2-bp150.2.3.1.ppc64le.rpm python3-matplotlib-qt-shared-2.0.2-bp150.2.3.1.ppc64le.rpm python3-matplotlib-qt4-2.0.2-bp150.2.3.1.ppc64le.rpm python3-matplotlib-qt5-2.0.2-bp150.2.3.1.ppc64le.rpm python3-matplotlib-tk-2.0.2-bp150.2.3.1.ppc64le.rpm python3-matplotlib-web-2.0.2-bp150.2.3.1.ppc64le.rpm python2-matplotlib-2.0.2-bp150.2.3.1.s390x.rpm python2-matplotlib-cairo-2.0.2-bp150.2.3.1.s390x.rpm python2-matplotlib-gtk3-2.0.2-bp150.2.3.1.s390x.rpm python2-matplotlib-latex-2.0.2-bp150.2.3.1.s390x.rpm python2-matplotlib-qt-shared-2.0.2-bp150.2.3.1.s390x.rpm python2-matplotlib-qt4-2.0.2-bp150.2.3.1.s390x.rpm python2-matplotlib-qt5-2.0.2-bp150.2.3.1.s390x.rpm python2-matplotlib-tk-2.0.2-bp150.2.3.1.s390x.rpm python2-matplotlib-web-2.0.2-bp150.2.3.1.s390x.rpm python2-matplotlib-wx-2.0.2-bp150.2.3.1.s390x.rpm python3-matplotlib-2.0.2-bp150.2.3.1.s390x.rpm python3-matplotlib-cairo-2.0.2-bp150.2.3.1.s390x.rpm python3-matplotlib-gtk3-2.0.2-bp150.2.3.1.s390x.rpm python3-matplotlib-latex-2.0.2-bp150.2.3.1.s390x.rpm python3-matplotlib-qt-shared-2.0.2-bp150.2.3.1.s390x.rpm python3-matplotlib-qt4-2.0.2-bp150.2.3.1.s390x.rpm python3-matplotlib-qt5-2.0.2-bp150.2.3.1.s390x.rpm python3-matplotlib-tk-2.0.2-bp150.2.3.1.s390x.rpm python3-matplotlib-web-2.0.2-bp150.2.3.1.s390x.rpm openSUSE-2019-359 moderate openSUSE Backports SLE-15 Update This update for openQA fixes the following issues: - openQA-worker would fail to run local workers when /var/lib/openqa/share was missing (boo#1111325) openQA-4.5.1526033850.1ad9148d-bp150.3.3.1.noarch.rpm openQA-4.5.1526033850.1ad9148d-bp150.3.3.1.src.rpm openQA-client-4.5.1526033850.1ad9148d-bp150.3.3.1.noarch.rpm openQA-common-4.5.1526033850.1ad9148d-bp150.3.3.1.noarch.rpm openQA-doc-4.5.1526033850.1ad9148d-bp150.3.3.1.noarch.rpm openQA-local-db-4.5.1526033850.1ad9148d-bp150.3.3.1.noarch.rpm openQA-worker-4.5.1526033850.1ad9148d-bp150.3.3.1.noarch.rpm openSUSE-2019-360 important openSUSE Backports SLE-15 Update This update for icecast fixes the following security issues: - CVE-2018-18820: A buffer overflow in url-auth could have potentially allowed remote code execution (boo#1114434) icecast-2.4.3-bp150.3.3.1.src.rpm icecast-2.4.3-bp150.3.3.1.x86_64.rpm icecast-debuginfo-2.4.3-bp150.3.3.1.x86_64.rpm icecast-debugsource-2.4.3-bp150.3.3.1.x86_64.rpm icecast-doc-2.4.3-bp150.3.3.1.noarch.rpm icecast-2.4.3-bp150.3.3.1.aarch64.rpm icecast-debuginfo-2.4.3-bp150.3.3.1.aarch64.rpm icecast-debugsource-2.4.3-bp150.3.3.1.aarch64.rpm icecast-2.4.3-bp150.3.3.1.ppc64le.rpm icecast-debuginfo-2.4.3-bp150.3.3.1.ppc64le.rpm icecast-debugsource-2.4.3-bp150.3.3.1.ppc64le.rpm icecast-2.4.3-bp150.3.3.1.s390x.rpm icecast-debuginfo-2.4.3-bp150.3.3.1.s390x.rpm icecast-debugsource-2.4.3-bp150.3.3.1.s390x.rpm openSUSE-2019-361 moderate openSUSE Backports SLE-15 Update This update for festival fixes the following issues: - festival triggered a segfault when synthesizing speec (boo#1116808) - the SysV init script was converted into a native systemd service (boo#1116010) This update also contains all upstream improvements and fixes in the 2.5.0 release. festival-2.5.0-bp150.3.3.1.src.rpm festival-2.5.0-bp150.3.3.1.x86_64.rpm festival-debuginfo-2.5.0-bp150.3.3.1.x86_64.rpm festival-debugsource-2.5.0-bp150.3.3.1.x86_64.rpm festival-devel-2.5.0-bp150.3.3.1.x86_64.rpm festival-2.5.0-bp150.3.3.1.aarch64.rpm festival-debuginfo-2.5.0-bp150.3.3.1.aarch64.rpm festival-debugsource-2.5.0-bp150.3.3.1.aarch64.rpm festival-devel-2.5.0-bp150.3.3.1.aarch64.rpm festival-2.5.0-bp150.3.3.1.ppc64le.rpm festival-debuginfo-2.5.0-bp150.3.3.1.ppc64le.rpm festival-debugsource-2.5.0-bp150.3.3.1.ppc64le.rpm festival-devel-2.5.0-bp150.3.3.1.ppc64le.rpm festival-2.5.0-bp150.3.3.1.s390x.rpm festival-debuginfo-2.5.0-bp150.3.3.1.s390x.rpm festival-debugsource-2.5.0-bp150.3.3.1.s390x.rpm festival-devel-2.5.0-bp150.3.3.1.s390x.rpm openSUSE-2019-362 moderate openSUSE Backports SLE-15 Update This update for claws-mail fixes the following issues: - When replying to an e-mail, the quoted message and the recipient addresses may unexpectedly mismatch (boo#1116917) claws-mail-3.16.0-bp150.2.3.1.src.rpm claws-mail-3.16.0-bp150.2.3.1.x86_64.rpm claws-mail-debuginfo-3.16.0-bp150.2.3.1.x86_64.rpm claws-mail-debugsource-3.16.0-bp150.2.3.1.x86_64.rpm claws-mail-devel-3.16.0-bp150.2.3.1.x86_64.rpm claws-mail-lang-3.16.0-bp150.2.3.1.noarch.rpm openSUSE-2019-363 moderate openSUSE Backports SLE-15 Update This update for bluez-qt resolves the following issue: - Bluetooth could not be enabled from the KDE Plasma Applet due to a misplaced udev file (boo#1112598) bluez-qt-5.45.0-bp150.3.4.1.src.rpm bluez-qt-debuginfo-5.45.0-bp150.3.4.1.x86_64.rpm bluez-qt-debugsource-5.45.0-bp150.3.4.1.x86_64.rpm bluez-qt-devel-5.45.0-bp150.3.4.1.x86_64.rpm bluez-qt-imports-5.45.0-bp150.3.4.1.x86_64.rpm bluez-qt-imports-debuginfo-5.45.0-bp150.3.4.1.x86_64.rpm bluez-qt-udev-5.45.0-bp150.3.4.1.x86_64.rpm libKF5BluezQt6-5.45.0-bp150.3.4.1.x86_64.rpm libKF5BluezQt6-debuginfo-5.45.0-bp150.3.4.1.x86_64.rpm bluez-qt-debuginfo-5.45.0-bp150.3.4.1.aarch64.rpm bluez-qt-debugsource-5.45.0-bp150.3.4.1.aarch64.rpm bluez-qt-devel-5.45.0-bp150.3.4.1.aarch64.rpm bluez-qt-imports-5.45.0-bp150.3.4.1.aarch64.rpm bluez-qt-imports-debuginfo-5.45.0-bp150.3.4.1.aarch64.rpm bluez-qt-udev-5.45.0-bp150.3.4.1.aarch64.rpm libKF5BluezQt6-5.45.0-bp150.3.4.1.aarch64.rpm libKF5BluezQt6-debuginfo-5.45.0-bp150.3.4.1.aarch64.rpm bluez-qt-debuginfo-5.45.0-bp150.3.4.1.ppc64le.rpm bluez-qt-debugsource-5.45.0-bp150.3.4.1.ppc64le.rpm bluez-qt-devel-5.45.0-bp150.3.4.1.ppc64le.rpm bluez-qt-imports-5.45.0-bp150.3.4.1.ppc64le.rpm bluez-qt-imports-debuginfo-5.45.0-bp150.3.4.1.ppc64le.rpm bluez-qt-udev-5.45.0-bp150.3.4.1.ppc64le.rpm libKF5BluezQt6-5.45.0-bp150.3.4.1.ppc64le.rpm libKF5BluezQt6-debuginfo-5.45.0-bp150.3.4.1.ppc64le.rpm bluez-qt-debuginfo-5.45.0-bp150.3.4.1.s390x.rpm bluez-qt-debugsource-5.45.0-bp150.3.4.1.s390x.rpm bluez-qt-devel-5.45.0-bp150.3.4.1.s390x.rpm bluez-qt-imports-5.45.0-bp150.3.4.1.s390x.rpm bluez-qt-imports-debuginfo-5.45.0-bp150.3.4.1.s390x.rpm bluez-qt-udev-5.45.0-bp150.3.4.1.s390x.rpm libKF5BluezQt6-5.45.0-bp150.3.4.1.s390x.rpm libKF5BluezQt6-debuginfo-5.45.0-bp150.3.4.1.s390x.rpm openSUSE-2019-365 moderate openSUSE Backports SLE-15 Update This update for datovka, libisds provides continued functionality with the Czech e-gov communication system (bsc#1104620) Changes in datovka (updated to 4.10.3): - UI changes and fixes - Improved keyboard-based control of main and other dialogue windows. - Improved handling of ISDS error codes - Improved handling of unknown message types Changes in libisds (updated to 0.10.8): - Various memory leaks fixed - Recognise EV8 datovka-4.10.3-bp150.3.3.1.src.rpm datovka-4.10.3-bp150.3.3.1.x86_64.rpm libisds-0.10.8-bp150.3.3.1.src.rpm libisds-debugsource-0.10.8-bp150.3.3.1.x86_64.rpm libisds-devel-0.10.8-bp150.3.3.1.x86_64.rpm libisds5-0.10.8-bp150.3.3.1.x86_64.rpm libisds5-debuginfo-0.10.8-bp150.3.3.1.x86_64.rpm datovka-4.10.3-bp150.3.3.1.aarch64.rpm libisds-debugsource-0.10.8-bp150.3.3.1.aarch64.rpm libisds-devel-0.10.8-bp150.3.3.1.aarch64.rpm libisds5-0.10.8-bp150.3.3.1.aarch64.rpm libisds5-debuginfo-0.10.8-bp150.3.3.1.aarch64.rpm datovka-4.10.3-bp150.3.3.1.ppc64le.rpm libisds-debugsource-0.10.8-bp150.3.3.1.ppc64le.rpm libisds-devel-0.10.8-bp150.3.3.1.ppc64le.rpm libisds5-0.10.8-bp150.3.3.1.ppc64le.rpm libisds5-debuginfo-0.10.8-bp150.3.3.1.ppc64le.rpm datovka-4.10.3-bp150.3.3.1.s390x.rpm libisds-debugsource-0.10.8-bp150.3.3.1.s390x.rpm libisds-devel-0.10.8-bp150.3.3.1.s390x.rpm libisds5-0.10.8-bp150.3.3.1.s390x.rpm libisds5-debuginfo-0.10.8-bp150.3.3.1.s390x.rpm openSUSE-2019-366 moderate openSUSE Backports SLE-15 Update This update for tor fixes the following issues: - version update to 0.3.4.8, as the 0.3.2 series is reaching EOL (boo#1107847) - improvements for running in low-power and embedded environments - preliminary changes for new bandwidth measurement system - refine anti-denial-of-service code - controller support and other improvements for v3 onion services This update also contains improved protections against DoS on directory authorities, but due to the nature of the TOR network it is assumed that no directory authorities run the distributed package (boo#1094283). tor-0.3.4.8-bp150.3.3.1.src.rpm tor-0.3.4.8-bp150.3.3.1.x86_64.rpm tor-debuginfo-0.3.4.8-bp150.3.3.1.x86_64.rpm tor-debugsource-0.3.4.8-bp150.3.3.1.x86_64.rpm tor-0.3.4.8-bp150.3.3.1.aarch64.rpm tor-debuginfo-0.3.4.8-bp150.3.3.1.aarch64.rpm tor-debugsource-0.3.4.8-bp150.3.3.1.aarch64.rpm tor-0.3.4.8-bp150.3.3.1.ppc64le.rpm tor-debuginfo-0.3.4.8-bp150.3.3.1.ppc64le.rpm tor-debugsource-0.3.4.8-bp150.3.3.1.ppc64le.rpm tor-0.3.4.8-bp150.3.3.1.s390x.rpm tor-debuginfo-0.3.4.8-bp150.3.3.1.s390x.rpm tor-debugsource-0.3.4.8-bp150.3.3.1.s390x.rpm openSUSE-2019-83 moderate openSUSE Backports SLE-15 Update This update provides the latest version of Datovka. Datovka can be used for accessing the Czech eGov system "Datove schranky". Version 4.12.0 contains the following updates: - Bigger attachments allowed (50MB) - HiDPI icons - Other minor updates and feature enhancements datovka-4.12.0-bp150.3.6.1.src.rpm datovka-4.12.0-bp150.3.6.1.x86_64.rpm datovka-debuginfo-4.12.0-bp150.3.6.1.x86_64.rpm datovka-debugsource-4.12.0-bp150.3.6.1.x86_64.rpm datovka-4.12.0-bp150.3.6.1.aarch64.rpm datovka-debuginfo-4.12.0-bp150.3.6.1.aarch64.rpm datovka-debugsource-4.12.0-bp150.3.6.1.aarch64.rpm datovka-4.12.0-bp150.3.6.1.ppc64le.rpm datovka-debuginfo-4.12.0-bp150.3.6.1.ppc64le.rpm datovka-debugsource-4.12.0-bp150.3.6.1.ppc64le.rpm datovka-4.12.0-bp150.3.6.1.s390x.rpm datovka-debuginfo-4.12.0-bp150.3.6.1.s390x.rpm datovka-debugsource-4.12.0-bp150.3.6.1.s390x.rpm openSUSE-2019-401 moderate openSUSE Backports SLE-15 Update This update for patterns-lxqt fixes the following issues: - The LXQt icons may have been missing due to the oxygen icon theme missing from the pattern (boo#1084751) patterns-lxqt-20170319-bp150.4.3.1.src.rpm patterns-lxqt-lxqt-20170319-bp150.4.3.1.x86_64.rpm patterns-lxqt-lxqt-20170319-bp150.4.3.1.aarch64.rpm patterns-lxqt-lxqt-20170319-bp150.4.3.1.ppc64le.rpm patterns-lxqt-lxqt-20170319-bp150.4.3.1.s390x.rpm openSUSE-2019-413 moderate openSUSE Backports SLE-15 Update This update for kglobalaccel fixes the following issues: - Global application shortcuts did not always work depending on keyboard layout (boo#1103682) kglobalaccel-5.45.0-bp150.4.4.1.src.rpm kglobalaccel-debugsource-5.45.0-bp150.4.4.1.x86_64.rpm kglobalaccel-devel-5.45.0-bp150.4.4.1.x86_64.rpm kglobalaccel5-5.45.0-bp150.4.4.1.x86_64.rpm kglobalaccel5-debuginfo-5.45.0-bp150.4.4.1.x86_64.rpm libKF5GlobalAccel5-5.45.0-bp150.4.4.1.x86_64.rpm libKF5GlobalAccel5-debuginfo-5.45.0-bp150.4.4.1.x86_64.rpm libKF5GlobalAccel5-lang-5.45.0-bp150.4.4.1.noarch.rpm libKF5GlobalAccelPrivate5-5.45.0-bp150.4.4.1.x86_64.rpm libKF5GlobalAccelPrivate5-debuginfo-5.45.0-bp150.4.4.1.x86_64.rpm kglobalaccel-debugsource-5.45.0-bp150.4.4.1.aarch64.rpm kglobalaccel-devel-5.45.0-bp150.4.4.1.aarch64.rpm kglobalaccel-devel-64bit-5.45.0-bp150.4.4.1.aarch64_ilp32.rpm kglobalaccel5-5.45.0-bp150.4.4.1.aarch64.rpm kglobalaccel5-debuginfo-5.45.0-bp150.4.4.1.aarch64.rpm libKF5GlobalAccel5-5.45.0-bp150.4.4.1.aarch64.rpm libKF5GlobalAccel5-64bit-5.45.0-bp150.4.4.1.aarch64_ilp32.rpm libKF5GlobalAccel5-64bit-debuginfo-5.45.0-bp150.4.4.1.aarch64_ilp32.rpm libKF5GlobalAccel5-debuginfo-5.45.0-bp150.4.4.1.aarch64.rpm libKF5GlobalAccelPrivate5-5.45.0-bp150.4.4.1.aarch64.rpm libKF5GlobalAccelPrivate5-debuginfo-5.45.0-bp150.4.4.1.aarch64.rpm kglobalaccel-debugsource-5.45.0-bp150.4.4.1.ppc64le.rpm kglobalaccel-devel-5.45.0-bp150.4.4.1.ppc64le.rpm kglobalaccel5-5.45.0-bp150.4.4.1.ppc64le.rpm kglobalaccel5-debuginfo-5.45.0-bp150.4.4.1.ppc64le.rpm libKF5GlobalAccel5-5.45.0-bp150.4.4.1.ppc64le.rpm libKF5GlobalAccel5-debuginfo-5.45.0-bp150.4.4.1.ppc64le.rpm libKF5GlobalAccelPrivate5-5.45.0-bp150.4.4.1.ppc64le.rpm libKF5GlobalAccelPrivate5-debuginfo-5.45.0-bp150.4.4.1.ppc64le.rpm kglobalaccel-debugsource-5.45.0-bp150.4.4.1.s390x.rpm kglobalaccel-devel-5.45.0-bp150.4.4.1.s390x.rpm kglobalaccel5-5.45.0-bp150.4.4.1.s390x.rpm kglobalaccel5-debuginfo-5.45.0-bp150.4.4.1.s390x.rpm libKF5GlobalAccel5-5.45.0-bp150.4.4.1.s390x.rpm libKF5GlobalAccel5-debuginfo-5.45.0-bp150.4.4.1.s390x.rpm libKF5GlobalAccelPrivate5-5.45.0-bp150.4.4.1.s390x.rpm libKF5GlobalAccelPrivate5-debuginfo-5.45.0-bp150.4.4.1.s390x.rpm openSUSE-2019-531 moderate openSUSE Backports SLE-15 Update This update for transactional-update fixes the following issues: The following bugs were fixed in 2.6: - /var/lib/zypp might have been reported as not being a directory, create if not available (boo#1104452) - zypper output was not parsed with sufficient robustness (boo#1105992) The following functionality was added or updated: - --interactive and --non-interactive options to change the default interactivity for zypper calls. - Add kured reboot support - trancactional-update-helper was replaced by zypper options transactional-update-2.6-bp150.2.3.1.src.rpm transactional-update-2.6-bp150.2.3.1.x86_64.rpm transactional-update-debuginfo-2.6-bp150.2.3.1.x86_64.rpm transactional-update-debugsource-2.6-bp150.2.3.1.x86_64.rpm transactional-update-2.6-bp150.2.3.1.aarch64.rpm transactional-update-debuginfo-2.6-bp150.2.3.1.aarch64.rpm transactional-update-debugsource-2.6-bp150.2.3.1.aarch64.rpm transactional-update-2.6-bp150.2.3.1.ppc64le.rpm transactional-update-debuginfo-2.6-bp150.2.3.1.ppc64le.rpm transactional-update-debugsource-2.6-bp150.2.3.1.ppc64le.rpm transactional-update-2.6-bp150.2.3.1.s390x.rpm transactional-update-debuginfo-2.6-bp150.2.3.1.s390x.rpm transactional-update-debugsource-2.6-bp150.2.3.1.s390x.rpm openSUSE-2019-74 moderate openSUSE Backports SLE-15 Update This update for Midnight Commander contains multiple bug fixes and improvements: - fix sftp spurious failure message (boo#1119302) - better support for btrfs This update also contains all upstream fixes and improvements in the 4.8.22 version. mc-4.8.22-bp150.4.3.1.src.rpm mc-4.8.22-bp150.4.3.1.x86_64.rpm mc-lang-4.8.22-bp150.4.3.1.noarch.rpm mc-4.8.22-bp150.4.3.1.aarch64.rpm mc-4.8.22-bp150.4.3.1.ppc64le.rpm mc-4.8.22-bp150.4.3.1.s390x.rpm openSUSE-2019-99 moderate openSUSE Backports SLE-15 Update This update for quassel adds support for quasseldroid - quasseldroid support was added (boo#1122572) This update also contains all other upstream improvements and bug fixes, including: - UI improvements - Support for many IRCv3 features, including the display of modern formatting codes - Optional authentication via LDAP - Database improvements, including support for 64 bit IDs and timestamps, and performance tweaks quassel-0.13.0-bp150.4.3.1.src.rpm quassel-base-0.13.0-bp150.4.3.1.x86_64.rpm quassel-client-0.13.0-bp150.4.3.1.x86_64.rpm quassel-client-debuginfo-0.13.0-bp150.4.3.1.x86_64.rpm quassel-client-qt5-0.13.0-bp150.4.3.1.x86_64.rpm quassel-client-qt5-debuginfo-0.13.0-bp150.4.3.1.x86_64.rpm quassel-core-0.13.0-bp150.4.3.1.x86_64.rpm quassel-core-debuginfo-0.13.0-bp150.4.3.1.x86_64.rpm quassel-debuginfo-0.13.0-bp150.4.3.1.x86_64.rpm quassel-debugsource-0.13.0-bp150.4.3.1.x86_64.rpm quassel-mono-0.13.0-bp150.4.3.1.x86_64.rpm quassel-mono-debuginfo-0.13.0-bp150.4.3.1.x86_64.rpm openSUSE-2019-582 moderate openSUSE Backports SLE-15 Update This update for screenfetch to version 3.8.0 fixes the following issues: - Recommend lsb-release as it is needed for correct detection of distribution (boo#1103527) - Require bc to avoid error on startup - Additional Intel GPU checks - document `-w' command in README.mkdn - document `-w' command in manpage - show CPU temperature screenfetch-3.8.0-bp150.3.5.1.noarch.rpm screenfetch-3.8.0-bp150.3.5.1.src.rpm openSUSE-2019-590 moderate openSUSE Backports SLE-15 Update This update for collectl fixes the following issues: - The collectl daemon did not start reliably (boo#1106366) collectl-4.1.3-bp150.3.3.1.noarch.rpm collectl-4.1.3-bp150.3.3.1.src.rpm openSUSE-2019-600 moderate openSUSE Backports SLE-15 Update This update for linphoneqt fixes the following issues: - some UI elements (buttons, tabs) did not render correctly (boo#1095273) linphone-4.1.1-bp150.2.3.1.x86_64.rpm linphone-debuginfo-4.1.1-bp150.2.3.1.x86_64.rpm linphoneqt-4.1.1-bp150.2.3.1.src.rpm linphoneqt-debugsource-4.1.1-bp150.2.3.1.x86_64.rpm openSUSE-2019-612 low openSUSE Backports SLE-15 Update This update for powerline fixes the following issues: - powerline intitializaton was not working correctly in vim (boo#10101303) - add correct systemd service for powerline powerline-2.6-bp150.3.3.1.src.rpm powerline-2.6-bp150.3.3.1.x86_64.rpm powerline-debuginfo-2.6-bp150.3.3.1.x86_64.rpm powerline-debugsource-2.6-bp150.3.3.1.x86_64.rpm powerline-docs-2.6-bp150.3.3.1.noarch.rpm powerline-fonts-2.6-bp150.3.3.1.noarch.rpm tmux-powerline-2.6-bp150.3.3.1.noarch.rpm vim-plugin-powerline-2.6-bp150.3.3.1.noarch.rpm powerline-2.6-bp150.3.3.1.aarch64.rpm powerline-debuginfo-2.6-bp150.3.3.1.aarch64.rpm powerline-debugsource-2.6-bp150.3.3.1.aarch64.rpm powerline-2.6-bp150.3.3.1.ppc64le.rpm powerline-debuginfo-2.6-bp150.3.3.1.ppc64le.rpm powerline-debugsource-2.6-bp150.3.3.1.ppc64le.rpm powerline-2.6-bp150.3.3.1.s390x.rpm powerline-debuginfo-2.6-bp150.3.3.1.s390x.rpm powerline-debugsource-2.6-bp150.3.3.1.s390x.rpm openSUSE-2019-614 moderate openSUSE Backports SLE-15 Update This update for python-Django to version 2.08 fixes the following issues: The following security vulnerability was fixed: - CVE-2018-14574: Fixed an redirection vulnerability in CommonMiddleware (boo#1102680) The following other bugs were fixed: - Fixed a regression in Django 2.0.7 that broke the regex lookup on MariaDB - Fixed a regression where django.template.Template crashed if the template_string argument is lazy - Fixed __regex and __iregex lookups with MySQL - Fixed admin check crash when using a query expression in ModelAdmin.ordering - Fixed admin changelist crash when using a query expression without asc() or desc() in the page’s ordering - Fixed a regression that broke custom template filters that use decorators - Fixed detection of custom URL converters in included pattern - Fixed a regression that added an unnecessary subquery to the GROUP BY clause on MySQL when using a RawSQL annotation - Fixed WKBWriter.write() and write_hex() for empty polygons on GEOS 3.6.1+ - Fixed a regression in Django 1.10 that could result in large memory usage when making edits using ModelAdmin.list_editable - Corrected the import paths that inspectdb generates for django.contrib.postgres fields - Fixed crashes in django.contrib.admindocs when a view is a callable object, such as django.contrib.syndication.views.Feed - Fixed a regression in Django 1.11.12 where QuerySet.values() or values_list() after combining an annotated and unannotated queryset with union(), difference(), or intersection() crashed due to mismatching columns python-Django-2.0.8-bp150.3.3.1.src.rpm python3-Django-2.0.8-bp150.3.3.1.noarch.rpm openSUSE-2019-616 moderate openSUSE Backports SLE-15 Update This update for libebml fixes the following issues: Updates libebml to version 1.3.6 Fixes boo#1104354 memory leaks and other issues with undefined behaviour libebml-1.3.6-bp150.3.3.1.src.rpm libebml-debugsource-1.3.6-bp150.3.3.1.x86_64.rpm libebml-devel-1.3.6-bp150.3.3.1.x86_64.rpm libebml4-1.3.6-bp150.3.3.1.x86_64.rpm libebml4-debuginfo-1.3.6-bp150.3.3.1.x86_64.rpm libebml-debugsource-1.3.6-bp150.3.3.1.aarch64.rpm libebml-devel-1.3.6-bp150.3.3.1.aarch64.rpm libebml4-1.3.6-bp150.3.3.1.aarch64.rpm libebml4-64bit-1.3.6-bp150.3.3.1.aarch64_ilp32.rpm libebml4-64bit-debuginfo-1.3.6-bp150.3.3.1.aarch64_ilp32.rpm libebml4-debuginfo-1.3.6-bp150.3.3.1.aarch64.rpm libebml-debugsource-1.3.6-bp150.3.3.1.ppc64le.rpm libebml-devel-1.3.6-bp150.3.3.1.ppc64le.rpm libebml4-1.3.6-bp150.3.3.1.ppc64le.rpm libebml4-debuginfo-1.3.6-bp150.3.3.1.ppc64le.rpm libebml-debugsource-1.3.6-bp150.3.3.1.s390x.rpm libebml-devel-1.3.6-bp150.3.3.1.s390x.rpm libebml4-1.3.6-bp150.3.3.1.s390x.rpm libebml4-debuginfo-1.3.6-bp150.3.3.1.s390x.rpm openSUSE-2018-873 important openSUSE Backports SLE-15 Update This update for seamonkey fixes the following issues: Mozilla Seamonkey was updated to 2.49.4: Now uses Gecko 52.9.1esr (boo#1098998). Security issues fixed with MFSA 2018-16 (boo#1098998): * CVE-2018-12359: Buffer overflow using computed size of canvas element * CVE-2018-12360: Use-after-free when using focus() * CVE-2018-12362: Integer overflow in SSSE3 scaler * CVE-2018-5156: Media recorder segmentation fault when track type is changed during capture * CVE-2018-12363: Use-after-free when appending DOM nodes * CVE-2018-12364: CSRF attacks through 307 redirects and NPAPI plugins * CVE-2018-12365: Compromised IPC child process can list local filenames * CVE-2018-12366: Invalid data handling during QCMS transformations * CVE-2018-5188: Memory safety bugs fixed in Firefox 60, Firefox ESR 60.1, and Firefox ESR 52.9 Localizations finally included again (boo#1062195) Updated summary and description to more accurately reflect what SeaMonkey is, giving less prominence to the long- discontinued Mozilla Application Suite that many users may no longer be familiar with Update to Seamonkey 2.49.2 * Gecko 52.6esr (including security relevant fixes) (boo#1077291) * fix issue in Composer * With some themes, the menulist- and history-dropmarker didn't show * Scrollbars didn't show the buttons * WebRTC has been disabled by default. It needs an add-on to enable it per site * The active title bar was not visually emphasized Correct requires and provides handling (boo#1076907) This update was imported from the openSUSE:Leap:15.0:Update update project. seamonkey-2.49.4-bp150.3.3.1.src.rpm seamonkey-2.49.4-bp150.3.3.1.x86_64.rpm seamonkey-debuginfo-2.49.4-bp150.3.3.1.x86_64.rpm seamonkey-debugsource-2.49.4-bp150.3.3.1.x86_64.rpm seamonkey-translations-common-2.49.4-bp150.3.3.1.x86_64.rpm seamonkey-translations-other-2.49.4-bp150.3.3.1.x86_64.rpm seamonkey-2.49.4-bp150.3.3.1.aarch64.rpm seamonkey-debuginfo-2.49.4-bp150.3.3.1.aarch64.rpm seamonkey-debugsource-2.49.4-bp150.3.3.1.aarch64.rpm seamonkey-translations-common-2.49.4-bp150.3.3.1.aarch64.rpm seamonkey-translations-other-2.49.4-bp150.3.3.1.aarch64.rpm openSUSE-2018-883 moderate openSUSE Backports SLE-15 Update This update for aubio fixes the following issues: - CVE-2018-14522: Fixed a crash in aubio_pitch_set_unit (bsc#1102359) - CVE-2018-14523: Fixed a buffer overrread resulting in crash or information leakage in new_aubio_pitchyinfft (bsc#1102364) This update was imported from the openSUSE:Leap:15.0:Update update project. aubio-0.4.6-bp150.3.3.1.src.rpm aubio-tools-0.4.6-bp150.3.3.1.x86_64.rpm libaubio-devel-0.4.6-bp150.3.3.1.x86_64.rpm libaubio5-0.4.6-bp150.3.3.1.x86_64.rpm python-aubio-0.4.6-bp150.3.3.1.src.rpm python-aubio-debugsource-0.4.6-bp150.3.3.1.x86_64.rpm python2-aubio-0.4.6-bp150.3.3.1.x86_64.rpm python2-aubio-debuginfo-0.4.6-bp150.3.3.1.x86_64.rpm python3-aubio-0.4.6-bp150.3.3.1.x86_64.rpm python3-aubio-debuginfo-0.4.6-bp150.3.3.1.x86_64.rpm python-aubio-debugsource-0.4.6-bp150.3.3.1.aarch64.rpm python2-aubio-0.4.6-bp150.3.3.1.aarch64.rpm python2-aubio-debuginfo-0.4.6-bp150.3.3.1.aarch64.rpm python3-aubio-0.4.6-bp150.3.3.1.aarch64.rpm python3-aubio-debuginfo-0.4.6-bp150.3.3.1.aarch64.rpm python-aubio-debugsource-0.4.6-bp150.3.3.1.ppc64le.rpm python2-aubio-0.4.6-bp150.3.3.1.ppc64le.rpm python2-aubio-debuginfo-0.4.6-bp150.3.3.1.ppc64le.rpm python3-aubio-0.4.6-bp150.3.3.1.ppc64le.rpm python3-aubio-debuginfo-0.4.6-bp150.3.3.1.ppc64le.rpm python-aubio-debugsource-0.4.6-bp150.3.3.1.s390x.rpm python2-aubio-0.4.6-bp150.3.3.1.s390x.rpm python2-aubio-debuginfo-0.4.6-bp150.3.3.1.s390x.rpm python3-aubio-0.4.6-bp150.3.3.1.s390x.rpm python3-aubio-debuginfo-0.4.6-bp150.3.3.1.s390x.rpm openSUSE-2018-880 moderate openSUSE Backports SLE-15 Update This update for Photini fixes the following issues: - Add missing runtime dependency on python3-requests (boo#1103804) This update was imported from the openSUSE:Leap:15.0:Update update project. Photini-2018.5.0-bp150.3.3.1.noarch.rpm Photini-2018.5.0-bp150.3.3.1.src.rpm openSUSE-2018-881 moderate openSUSE Backports SLE-15 Update This update for bleachbit fixes the following issues: - Add missing runtime dependency on python-xml (boo#1104093). This update was imported from the openSUSE:Leap:15.0:Update update project. bleachbit-2.0-bp150.3.3.1.noarch.rpm bleachbit-2.0-bp150.3.3.1.src.rpm bleachbit-lang-2.0-bp150.3.3.1.noarch.rpm openSUSE-2018-882 important openSUSE Backports SLE-15 Update This update for nemo-extensions fixes the following issues: The following security vulnerability was fixed: - Prevent unprivileged users from adding other users to sambashare (boo#1084703) This update was imported from the openSUSE:Leap:15.0:Update update project. nemo-extension-audio-tab-3.6.0-bp150.2.3.1.noarch.rpm nemo-extension-compare-3.6.0-bp150.2.3.1.noarch.rpm nemo-extension-dropbox-3.6.0-bp150.2.3.1.x86_64.rpm nemo-extension-emblems-3.6.0-bp150.2.3.1.noarch.rpm nemo-extension-fileroller-3.6.0-bp150.2.3.1.x86_64.rpm nemo-extension-gtkhash-3.6.0-bp150.2.3.1.x86_64.rpm nemo-extension-image-converter-3.6.0-bp150.2.3.1.x86_64.rpm nemo-extension-pastebin-3.6.0-bp150.2.3.1.noarch.rpm nemo-extension-preview-3.6.0-bp150.2.3.1.x86_64.rpm nemo-extension-rabbitvcs-3.6.0-bp150.2.3.1.noarch.rpm nemo-extension-repairer-3.6.0-bp150.2.3.1.x86_64.rpm nemo-extension-seahorse-3.6.0-bp150.2.3.1.x86_64.rpm nemo-extension-share-3.6.0-bp150.2.3.1.x86_64.rpm nemo-extension-terminal-3.6.0-bp150.2.3.1.noarch.rpm nemo-extensions-3.6.0-bp150.2.3.1.src.rpm python-nemo-3.6.0-bp150.2.3.1.x86_64.rpm openSUSE-2018-884 important openSUSE Backports SLE-15 Update This update for python-Django1 to version 1.11.15 fixes the following issues: The following security vulnerability was fixed: - CVE-2018-14574: Fixed an open redirect possibility in CommonMiddleware (boo#1102680) The following other bugs were fixed: - Fixed WKBWriter.write() and write_hex() for empty polygons on GEOS 3.6.1+ - Fixed a regression where altering a field with a unique constraint may drop and rebuild more foreign keys than necessary - Fixed crashes in django.contrib.admindocs when a view is a callable object, such as django.contrib.syndication.views.Feed - Fixed a regression where QuerySet.values() or values_list() after combining an annotated and unannotated queryset with union(), difference(), or intersection() crashed due to mismatching columns This update was imported from the openSUSE:Leap:15.0:Update update project. python-Django1-1.11.15-bp150.3.3.1.src.rpm python2-Django1-1.11.15-bp150.3.3.1.noarch.rpm openSUSE-2019-623 moderate openSUSE Backports SLE-15 Update This update for minetest fixes the following issues: - Update to version 0.4.17.1 (bsc#1103904) Many improvements and bug fixes. Please visit the official Wiki page of minetest to see the full changelog: https://dev.minetest.net/Changelog#0.4.17_.E2.86.92_0.4.17.1 minetest-game-0.4.17-bp150.3.3.1.noarch.rpm minetest-game-0.4.17-bp150.3.3.1.src.rpm minetest-0.4.17.1-bp150.2.3.1.src.rpm minetest-0.4.17.1-bp150.2.3.1.x86_64.rpm minetest-data-0.4.17.1-bp150.2.3.1.noarch.rpm minetest-debuginfo-0.4.17.1-bp150.2.3.1.x86_64.rpm minetest-debugsource-0.4.17.1-bp150.2.3.1.x86_64.rpm minetest-lang-0.4.17.1-bp150.2.3.1.noarch.rpm minetestserver-0.4.17.1-bp150.2.3.1.x86_64.rpm minetestserver-debuginfo-0.4.17.1-bp150.2.3.1.x86_64.rpm minetest-0.4.17.1-bp150.2.3.1.aarch64.rpm minetest-debuginfo-0.4.17.1-bp150.2.3.1.aarch64.rpm minetest-debugsource-0.4.17.1-bp150.2.3.1.aarch64.rpm minetestserver-0.4.17.1-bp150.2.3.1.aarch64.rpm minetestserver-debuginfo-0.4.17.1-bp150.2.3.1.aarch64.rpm openSUSE-2019-624 moderate openSUSE Backports SLE-15 Update This update for python-websocket-client fixes the following issues: - The library did not contain a CA bundle and the system CAs had to be manually specified. Make it use the systems ca bundle file by default (boo#1076519) python-websocket-client-0.44.0-bp150.2.3.1.src.rpm python2-websocket-client-0.44.0-bp150.2.3.1.noarch.rpm python3-websocket-client-0.44.0-bp150.2.3.1.noarch.rpm openSUSE-2019-625 moderate openSUSE Backports SLE-15 Update This optional update for sddm adds the following functionality: * Honor PAM's ambient supplemental groups (boo#1105342) sddm-0.17.0-bp150.4.3.1.src.rpm sddm-0.17.0-bp150.4.3.1.x86_64.rpm sddm-branding-openSUSE-0.17.0-bp150.4.3.1.x86_64.rpm sddm-branding-upstream-0.17.0-bp150.4.3.1.x86_64.rpm sddm-debuginfo-0.17.0-bp150.4.3.1.x86_64.rpm sddm-debugsource-0.17.0-bp150.4.3.1.x86_64.rpm sddm-0.17.0-bp150.4.3.1.aarch64.rpm sddm-branding-openSUSE-0.17.0-bp150.4.3.1.aarch64.rpm sddm-branding-upstream-0.17.0-bp150.4.3.1.aarch64.rpm sddm-debuginfo-0.17.0-bp150.4.3.1.aarch64.rpm sddm-debugsource-0.17.0-bp150.4.3.1.aarch64.rpm sddm-0.17.0-bp150.4.3.1.ppc64le.rpm sddm-branding-openSUSE-0.17.0-bp150.4.3.1.ppc64le.rpm sddm-branding-upstream-0.17.0-bp150.4.3.1.ppc64le.rpm sddm-debuginfo-0.17.0-bp150.4.3.1.ppc64le.rpm sddm-debugsource-0.17.0-bp150.4.3.1.ppc64le.rpm sddm-0.17.0-bp150.4.3.1.s390x.rpm sddm-branding-openSUSE-0.17.0-bp150.4.3.1.s390x.rpm sddm-branding-upstream-0.17.0-bp150.4.3.1.s390x.rpm sddm-debuginfo-0.17.0-bp150.4.3.1.s390x.rpm sddm-debugsource-0.17.0-bp150.4.3.1.s390x.rpm openSUSE-2019-629 moderate openSUSE Backports SLE-15 Update This update for guake fixes the following issues: - guake package did not specify the python3-gobject-Gdk dependency and would fail on start (boo#1102963) guake-3.2.1-bp150.3.4.1.noarch.rpm guake-3.2.1-bp150.3.4.1.src.rpm openSUSE-2019-634 moderate openSUSE Backports SLE-15 Update This update brings spec-cleaner to version 1.1.1, including following fixes and improvements: * Fix help message not working * Make libexecdir opt-in rather than opt-out * Account for LICENCE string not just LICENSE * Warn about direct qmake/meson usage * Use https when mentioning bugzilla in header * Use tuples on some places rather than lists spec-cleaner-1.1.1-bp150.2.3.1.noarch.rpm spec-cleaner-1.1.1-bp150.2.3.1.src.rpm spec-cleaner-format_spec_file-1.1.1-bp150.2.3.1.noarch.rpm openSUSE-2019-640 moderate openSUSE Backports SLE-15 Update This update for nextcloud to version 13.0.5 fixes the following issues: Security issues fixed: - CVE-2018-3780: Fixed a missing sanitization of search results for an autocomplete field that could lead to a stored XSS requiring user-interaction. The missing sanitization only affected user names, hence malicious search results could only be crafted by authenticated users. (boo#1105598) Other bugs fixed: - Fix highlighting of the upload drop zone - Apply ldapUserFilter on members of group - Make the DELETION of groups match greedy on the groupID - Add parent index to share table - Log full exception in cron instead of only the message - Properly lock the target file on dav upload when not using part files - LDAP backup server should not be queried when auth fails - Fix filenames in sharing integration tests - Lower log level for quota manipulation cases - Let user set avatar in nextcloud if LDAP provides invalid image data - Improved logging of smb connection errors - Allow admin to disable fetching of avatars as well as a specific attribute - Allow to disable encryption - Update message shown when unsharing a file - Fixed English grammatical error on Settings page. - Request a valid property for DAV opendir - Allow updating the token on session regeneration - Prevent lock values from going negative with memcache backend - Correctly handle users with numeric user ids - Correctly parse the subject parameters for link (un)shares of calendars - Fix "parsing" of email-addresses in comments and chat messages - Sanitize parameters in createSessionToken() while logging - Also retry rename operation on InvalidArgumentException - Improve url detection in comments - Only bind to ldap if configuration for the first server is set - Use download manager from PDF.js to download the file - Fix trying to load removed scripts - Only pull for new messages if the session is allowed to be kept alive - Always push object data - Add prioritization for Talk nextcloud-13.0.5-bp150.2.3.1.noarch.rpm nextcloud-13.0.5-bp150.2.3.1.src.rpm openSUSE-2019-641 important openSUSE Backports SLE-15 Update This update for GraphicsMagick fixes the following issues: Security issue fixed: - Disable PS, PS2, PS3 and PDF coders by default, remove gs calls from delegates.mgk (boo#1105592) GraphicsMagick-1.3.29-bp150.2.3.1.src.rpm GraphicsMagick-1.3.29-bp150.2.3.1.x86_64.rpm GraphicsMagick-debuginfo-1.3.29-bp150.2.3.1.x86_64.rpm GraphicsMagick-debugsource-1.3.29-bp150.2.3.1.x86_64.rpm GraphicsMagick-devel-1.3.29-bp150.2.3.1.x86_64.rpm libGraphicsMagick++-Q16-12-1.3.29-bp150.2.3.1.x86_64.rpm libGraphicsMagick++-Q16-12-debuginfo-1.3.29-bp150.2.3.1.x86_64.rpm libGraphicsMagick++-devel-1.3.29-bp150.2.3.1.x86_64.rpm libGraphicsMagick-Q16-3-1.3.29-bp150.2.3.1.x86_64.rpm libGraphicsMagick-Q16-3-debuginfo-1.3.29-bp150.2.3.1.x86_64.rpm libGraphicsMagick3-config-1.3.29-bp150.2.3.1.x86_64.rpm libGraphicsMagickWand-Q16-2-1.3.29-bp150.2.3.1.x86_64.rpm libGraphicsMagickWand-Q16-2-debuginfo-1.3.29-bp150.2.3.1.x86_64.rpm perl-GraphicsMagick-1.3.29-bp150.2.3.1.x86_64.rpm perl-GraphicsMagick-debuginfo-1.3.29-bp150.2.3.1.x86_64.rpm openSUSE-2019-643 moderate openSUSE Backports SLE-15 Update This update for phpMyAdmin to version 4.8.3 addresses multiple issues. Security issues fixed: - CVE-2018-15605: vulnerability in the file import feature allowed cross-site scripting via importing a specially-crafted file (PMASA-2018-5, boo#1105726) This update also contains a number of upstream bug fixes in the UI and behavior. phpMyAdmin-4.8.3-bp150.3.3.1.noarch.rpm phpMyAdmin-4.8.3-bp150.3.3.1.src.rpm openSUSE-2019-645 low openSUSE Backports SLE-15 Update This update for kde-l10n fixes the following issue: * boo#1103027: Kopete was missing localization kde-l10n-17.08.3-bp150.3.3.1.src.rpm kde-l10n-ar-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-ast-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-bg-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-bs-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-ca-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-caValencia-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-cs-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-da-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-da-data-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-da-doc-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-de-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-de-data-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-de-doc-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-el-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-en_GB-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-en_GB-data-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-en_GB-doc-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-eo-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-es-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-es-data-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-es-doc-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-et-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-et-data-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-et-doc-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-eu-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-fa-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-fi-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-fr-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-fr-data-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-fr-doc-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-ga-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-gl-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-he-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-hi-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-hr-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-hu-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-ia-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-id-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-is-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-it-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-it-data-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-it-doc-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-ja-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-kk-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-km-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-ko-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-lt-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-lv-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-mr-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-nb-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-nds-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-nl-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-nl-data-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-nl-doc-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-nn-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-pa-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-pl-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-pl-data-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-pl-doc-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-pt-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-pt_BR-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-pt_BR-data-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-pt_BR-doc-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-ro-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-ru-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-ru-data-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-ru-doc-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-sk-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-sl-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-sr-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-sv-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-sv-data-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-sv-doc-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-tr-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-ug-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-uk-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-uk-data-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-uk-doc-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-wa-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-zh_CN-17.08.3-bp150.3.3.1.noarch.rpm kde-l10n-zh_TW-17.08.3-bp150.3.3.1.noarch.rpm openSUSE-2019-655 moderate openSUSE Backports SLE-15 Update This update for nextcloud fixes security issues and bugs. Security issues fixed: - CVE-2018-3780: Stored XSS in autocomplete suggestions for file comments (boo#1114817) This update also contains all bug fixes and improvements in the 13.0.8 version, including: - Password expiration time changed from 12h to 7d - Bug fixes to the OAuth brute force protection - Various other bug fixes and improvements nextcloud-13.0.8-bp150.2.6.1.noarch.rpm nextcloud-13.0.8-bp150.2.6.1.src.rpm openSUSE-2019-656 moderate openSUSE Backports SLE-15 Update This update for KDE Plasma to 5.12.6 contains a number of bug fixes (boo#1105686). Changes in breeze-gtk: - GTK scrollbar behavior to have warp turned off by default Changes in discover: - notifier may have listed more security updates than total updates - make it possible to launch installed applications Changes in kde-user-manager: - Enable anti-aliasing for user avatars Changes in khotkeys5: - Remove verbose debugging statement Changes in kinfocenter5: - Update kinfocenter docbook to 5 Changes in kscreen5: - Desktop scaling was applied twice in Scale Display preview Changes in kscreenlocker: - Minor translation updates Changes in ksysguard5: - Fix leak of pipe FDs in MD RAID code Changes in kwin5: - Do not save kwinrulesrc on every window opening/closing - Update seat's timestamp after waking up screen through double tap Changes in libksysguard5: - Center more column headings Changes in milou5: - Check changed file name before reloading configuration Changes in plasma-nm: - Unquote remote when importing OpenVPN connections breeze-gtk-5.12.6-bp150.3.3.1.src.rpm True gtk2-metatheme-breeze-5.12.6-bp150.3.3.1.noarch.rpm True gtk3-metatheme-breeze-5.12.6-bp150.3.3.1.noarch.rpm True metatheme-breeze-common-5.12.6-bp150.3.3.1.x86_64.rpm True discover-5.12.6-bp150.3.3.1.src.rpm True discover-5.12.6-bp150.3.3.1.x86_64.rpm True discover-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True discover-debugsource-5.12.6-bp150.3.3.1.x86_64.rpm True discover-lang-5.12.6-bp150.3.3.1.noarch.rpm True discover-plasmoid-5.12.6-bp150.3.3.1.x86_64.rpm True discover-plasmoid-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True kde-user-manager-5.12.6-bp150.3.3.1.src.rpm True kde-user-manager-5.12.6-bp150.3.3.1.x86_64.rpm True kde-user-manager-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True kde-user-manager-debugsource-5.12.6-bp150.3.3.1.x86_64.rpm True kde-user-manager-lang-5.12.6-bp150.3.3.1.noarch.rpm True khotkeys5-5.12.6-bp150.3.3.1.src.rpm True khotkeys5-5.12.6-bp150.3.3.1.x86_64.rpm True khotkeys5-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True khotkeys5-debugsource-5.12.6-bp150.3.3.1.x86_64.rpm True khotkeys5-devel-5.12.6-bp150.3.3.1.x86_64.rpm True khotkeys5-lang-5.12.6-bp150.3.3.1.noarch.rpm True kinfocenter5-5.12.6-bp150.3.3.1.src.rpm True kinfocenter5-5.12.6-bp150.3.3.1.x86_64.rpm True kinfocenter5-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True kinfocenter5-debugsource-5.12.6-bp150.3.3.1.x86_64.rpm True kinfocenter5-lang-5.12.6-bp150.3.3.1.noarch.rpm True kscreen5-5.12.6-bp150.3.3.1.src.rpm True kscreen5-5.12.6-bp150.3.3.1.x86_64.rpm True kscreen5-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True kscreen5-debugsource-5.12.6-bp150.3.3.1.x86_64.rpm True kscreen5-lang-5.12.6-bp150.3.3.1.noarch.rpm True kscreenlocker-5.12.6-bp150.3.3.1.src.rpm True kscreenlocker-5.12.6-bp150.3.3.1.x86_64.rpm True kscreenlocker-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True kscreenlocker-debugsource-5.12.6-bp150.3.3.1.x86_64.rpm True kscreenlocker-devel-5.12.6-bp150.3.3.1.x86_64.rpm True kscreenlocker-lang-5.12.6-bp150.3.3.1.noarch.rpm True libKScreenLocker5-5.12.6-bp150.3.3.1.x86_64.rpm True libKScreenLocker5-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True ksysguard5-5.12.6-bp150.3.3.1.src.rpm True ksysguard5-5.12.6-bp150.3.3.1.x86_64.rpm True ksysguard5-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True ksysguard5-debugsource-5.12.6-bp150.3.3.1.x86_64.rpm True ksysguard5-lang-5.12.6-bp150.3.3.1.noarch.rpm True kwin5-5.12.6-bp150.3.3.1.src.rpm True kwin5-5.12.6-bp150.3.3.1.x86_64.rpm True kwin5-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True kwin5-debugsource-5.12.6-bp150.3.3.1.x86_64.rpm True kwin5-devel-5.12.6-bp150.3.3.1.x86_64.rpm True kwin5-lang-5.12.6-bp150.3.3.1.noarch.rpm True libksysguard5-5.12.6-bp150.3.3.1.src.rpm True libksysguard5-5.12.6-bp150.3.3.1.x86_64.rpm True libksysguard5-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True libksysguard5-debugsource-5.12.6-bp150.3.3.1.x86_64.rpm True libksysguard5-devel-5.12.6-bp150.3.3.1.x86_64.rpm True libksysguard5-helper-5.12.6-bp150.3.3.1.x86_64.rpm True libksysguard5-helper-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True libksysguard5-lang-5.12.6-bp150.3.3.1.noarch.rpm True milou5-5.12.6-bp150.3.3.1.src.rpm True milou5-5.12.6-bp150.3.3.1.x86_64.rpm True milou5-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True milou5-debugsource-5.12.6-bp150.3.3.1.x86_64.rpm True milou5-lang-5.12.6-bp150.3.3.1.noarch.rpm True plasma-nm5-5.12.6-bp150.3.3.1.src.rpm True plasma-nm5-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-debugsource-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-fortisslvpn-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-fortisslvpn-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-iodine-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-iodine-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-l2tp-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-l2tp-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-lang-5.12.6-bp150.3.3.1.noarch.rpm True plasma-nm5-openconnect-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-openconnect-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-openswan-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-openswan-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-openvpn-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-openvpn-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-pptp-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-pptp-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-ssh-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-ssh-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-sstp-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-sstp-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-strongswan-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-strongswan-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-vpnc-5.12.6-bp150.3.3.1.x86_64.rpm True plasma-nm5-vpnc-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True plasma5-addons-5.12.6-bp150.3.3.1.src.rpm True plasma5-addons-5.12.6-bp150.3.3.1.x86_64.rpm True plasma5-addons-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True plasma5-addons-debugsource-5.12.6-bp150.3.3.1.x86_64.rpm True plasma5-addons-lang-5.12.6-bp150.3.3.1.noarch.rpm True plasma5-desktop-5.12.6-bp150.3.3.1.src.rpm True plasma5-desktop-5.12.6-bp150.3.3.1.x86_64.rpm True plasma5-desktop-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True plasma5-desktop-debugsource-5.12.6-bp150.3.3.1.x86_64.rpm True plasma5-desktop-lang-5.12.6-bp150.3.3.1.noarch.rpm True plasma5-integration-5.12.6-bp150.3.3.1.src.rpm True plasma5-integration-debugsource-5.12.6-bp150.3.3.1.x86_64.rpm True plasma5-integration-plugin-5.12.6-bp150.3.3.1.x86_64.rpm True plasma5-integration-plugin-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True plasma5-integration-plugin-lang-5.12.6-bp150.3.3.1.noarch.rpm True plasma5-session-5.12.6-bp150.3.3.1.noarch.rpm True plasma5-session-wayland-5.12.6-bp150.3.3.1.noarch.rpm True plasma5-workspace-5.12.6-bp150.3.3.1.src.rpm True plasma5-workspace-5.12.6-bp150.3.3.1.x86_64.rpm True plasma5-workspace-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True plasma5-workspace-debugsource-5.12.6-bp150.3.3.1.x86_64.rpm True plasma5-workspace-devel-5.12.6-bp150.3.3.1.x86_64.rpm True plasma5-workspace-lang-5.12.6-bp150.3.3.1.noarch.rpm True plasma5-workspace-libs-5.12.6-bp150.3.3.1.x86_64.rpm True plasma5-workspace-libs-debuginfo-5.12.6-bp150.3.3.1.x86_64.rpm True metatheme-breeze-common-5.12.6-bp150.3.3.1.aarch64.rpm True discover-5.12.6-bp150.3.3.1.aarch64.rpm True discover-debuginfo-5.12.6-bp150.3.3.1.aarch64.rpm True discover-debugsource-5.12.6-bp150.3.3.1.aarch64.rpm True discover-plasmoid-5.12.6-bp150.3.3.1.aarch64.rpm True discover-plasmoid-debuginfo-5.12.6-bp150.3.3.1.aarch64.rpm True kde-user-manager-5.12.6-bp150.3.3.1.aarch64.rpm True kde-user-manager-debuginfo-5.12.6-bp150.3.3.1.aarch64.rpm True kde-user-manager-debugsource-5.12.6-bp150.3.3.1.aarch64.rpm True khotkeys5-5.12.6-bp150.3.3.1.aarch64.rpm True khotkeys5-debuginfo-5.12.6-bp150.3.3.1.aarch64.rpm True khotkeys5-debugsource-5.12.6-bp150.3.3.1.aarch64.rpm True khotkeys5-devel-5.12.6-bp150.3.3.1.aarch64.rpm True kinfocenter5-5.12.6-bp150.3.3.1.aarch64.rpm True kinfocenter5-debuginfo-5.12.6-bp150.3.3.1.aarch64.rpm True kinfocenter5-debugsource-5.12.6-bp150.3.3.1.aarch64.rpm True kscreen5-5.12.6-bp150.3.3.1.aarch64.rpm True kscreen5-debuginfo-5.12.6-bp150.3.3.1.aarch64.rpm True kscreen5-debugsource-5.12.6-bp150.3.3.1.aarch64.rpm True kscreenlocker-5.12.6-bp150.3.3.1.aarch64.rpm True kscreenlocker-debuginfo-5.12.6-bp150.3.3.1.aarch64.rpm True kscreenlocker-debugsource-5.12.6-bp150.3.3.1.aarch64.rpm True kscreenlocker-devel-5.12.6-bp150.3.3.1.aarch64.rpm True libKScreenLocker5-5.12.6-bp150.3.3.1.aarch64.rpm True libKScreenLocker5-debuginfo-5.12.6-bp150.3.3.1.aarch64.rpm True ksysguard5-5.12.6-bp150.3.3.1.aarch64.rpm True ksysguard5-debuginfo-5.12.6-bp150.3.3.1.aarch64.rpm True ksysguard5-debugsource-5.12.6-bp150.3.3.1.aarch64.rpm True kwin5-5.12.6-bp150.3.3.1.aarch64.rpm True kwin5-debuginfo-5.12.6-bp150.3.3.1.aarch64.rpm True kwin5-debugsource-5.12.6-bp150.3.3.1.aarch64.rpm True kwin5-devel-5.12.6-bp150.3.3.1.aarch64.rpm True libksysguard5-5.12.6-bp150.3.3.1.aarch64.rpm True libksysguard5-64bit-5.12.6-bp150.3.3.1.aarch64_ilp32.rpm True libksysguard5-64bit-debuginfo-5.12.6-bp150.3.3.1.aarch64_ilp32.rpm True libksysguard5-debuginfo-5.12.6-bp150.3.3.1.aarch64.rpm True libksysguard5-debugsource-5.12.6-bp150.3.3.1.aarch64.rpm True libksysguard5-devel-5.12.6-bp150.3.3.1.aarch64.rpm True libksysguard5-devel-64bit-5.12.6-bp150.3.3.1.aarch64_ilp32.rpm True libksysguard5-helper-5.12.6-bp150.3.3.1.aarch64.rpm True libksysguard5-helper-debuginfo-5.12.6-bp150.3.3.1.aarch64.rpm True milou5-5.12.6-bp150.3.3.1.aarch64.rpm True milou5-debuginfo-5.12.6-bp150.3.3.1.aarch64.rpm True milou5-debugsource-5.12.6-bp150.3.3.1.aarch64.rpm True plasma5-desktop-5.12.6-bp150.3.3.1.aarch64.rpm True plasma5-desktop-debuginfo-5.12.6-bp150.3.3.1.aarch64.rpm True plasma5-desktop-debugsource-5.12.6-bp150.3.3.1.aarch64.rpm True plasma5-integration-debugsource-5.12.6-bp150.3.3.1.aarch64.rpm True plasma5-integration-plugin-5.12.6-bp150.3.3.1.aarch64.rpm True plasma5-integration-plugin-debuginfo-5.12.6-bp150.3.3.1.aarch64.rpm True plasma5-workspace-5.12.6-bp150.3.3.1.aarch64.rpm True plasma5-workspace-debuginfo-5.12.6-bp150.3.3.1.aarch64.rpm True plasma5-workspace-debugsource-5.12.6-bp150.3.3.1.aarch64.rpm True plasma5-workspace-devel-5.12.6-bp150.3.3.1.aarch64.rpm True plasma5-workspace-libs-5.12.6-bp150.3.3.1.aarch64.rpm True plasma5-workspace-libs-64bit-5.12.6-bp150.3.3.1.aarch64_ilp32.rpm True plasma5-workspace-libs-64bit-debuginfo-5.12.6-bp150.3.3.1.aarch64_ilp32.rpm True plasma5-workspace-libs-debuginfo-5.12.6-bp150.3.3.1.aarch64.rpm True metatheme-breeze-common-5.12.6-bp150.3.3.1.ppc64le.rpm True discover-5.12.6-bp150.3.3.1.ppc64le.rpm True discover-debuginfo-5.12.6-bp150.3.3.1.ppc64le.rpm True discover-debugsource-5.12.6-bp150.3.3.1.ppc64le.rpm True discover-plasmoid-5.12.6-bp150.3.3.1.ppc64le.rpm True discover-plasmoid-debuginfo-5.12.6-bp150.3.3.1.ppc64le.rpm True kde-user-manager-5.12.6-bp150.3.3.1.ppc64le.rpm True kde-user-manager-debuginfo-5.12.6-bp150.3.3.1.ppc64le.rpm True kde-user-manager-debugsource-5.12.6-bp150.3.3.1.ppc64le.rpm True khotkeys5-5.12.6-bp150.3.3.1.ppc64le.rpm True khotkeys5-debuginfo-5.12.6-bp150.3.3.1.ppc64le.rpm True khotkeys5-debugsource-5.12.6-bp150.3.3.1.ppc64le.rpm True khotkeys5-devel-5.12.6-bp150.3.3.1.ppc64le.rpm True kinfocenter5-5.12.6-bp150.3.3.1.ppc64le.rpm True kinfocenter5-debuginfo-5.12.6-bp150.3.3.1.ppc64le.rpm True kinfocenter5-debugsource-5.12.6-bp150.3.3.1.ppc64le.rpm True kscreen5-5.12.6-bp150.3.3.1.ppc64le.rpm True kscreen5-debuginfo-5.12.6-bp150.3.3.1.ppc64le.rpm True kscreen5-debugsource-5.12.6-bp150.3.3.1.ppc64le.rpm True kscreenlocker-5.12.6-bp150.3.3.1.ppc64le.rpm True kscreenlocker-debuginfo-5.12.6-bp150.3.3.1.ppc64le.rpm True kscreenlocker-debugsource-5.12.6-bp150.3.3.1.ppc64le.rpm True kscreenlocker-devel-5.12.6-bp150.3.3.1.ppc64le.rpm True libKScreenLocker5-5.12.6-bp150.3.3.1.ppc64le.rpm True libKScreenLocker5-debuginfo-5.12.6-bp150.3.3.1.ppc64le.rpm True ksysguard5-5.12.6-bp150.3.3.1.ppc64le.rpm True ksysguard5-debuginfo-5.12.6-bp150.3.3.1.ppc64le.rpm True ksysguard5-debugsource-5.12.6-bp150.3.3.1.ppc64le.rpm True kwin5-5.12.6-bp150.3.3.1.ppc64le.rpm True kwin5-debuginfo-5.12.6-bp150.3.3.1.ppc64le.rpm True kwin5-debugsource-5.12.6-bp150.3.3.1.ppc64le.rpm True kwin5-devel-5.12.6-bp150.3.3.1.ppc64le.rpm True libksysguard5-5.12.6-bp150.3.3.1.ppc64le.rpm True libksysguard5-debuginfo-5.12.6-bp150.3.3.1.ppc64le.rpm True libksysguard5-debugsource-5.12.6-bp150.3.3.1.ppc64le.rpm True libksysguard5-devel-5.12.6-bp150.3.3.1.ppc64le.rpm True libksysguard5-helper-5.12.6-bp150.3.3.1.ppc64le.rpm True libksysguard5-helper-debuginfo-5.12.6-bp150.3.3.1.ppc64le.rpm True milou5-5.12.6-bp150.3.3.1.ppc64le.rpm True milou5-debuginfo-5.12.6-bp150.3.3.1.ppc64le.rpm True milou5-debugsource-5.12.6-bp150.3.3.1.ppc64le.rpm True plasma5-desktop-5.12.6-bp150.3.3.1.ppc64le.rpm True plasma5-desktop-debuginfo-5.12.6-bp150.3.3.1.ppc64le.rpm True plasma5-desktop-debugsource-5.12.6-bp150.3.3.1.ppc64le.rpm True plasma5-integration-debugsource-5.12.6-bp150.3.3.1.ppc64le.rpm True plasma5-integration-plugin-5.12.6-bp150.3.3.1.ppc64le.rpm True plasma5-integration-plugin-debuginfo-5.12.6-bp150.3.3.1.ppc64le.rpm True plasma5-workspace-5.12.6-bp150.3.3.1.ppc64le.rpm True plasma5-workspace-debuginfo-5.12.6-bp150.3.3.1.ppc64le.rpm True plasma5-workspace-debugsource-5.12.6-bp150.3.3.1.ppc64le.rpm True plasma5-workspace-devel-5.12.6-bp150.3.3.1.ppc64le.rpm True plasma5-workspace-libs-5.12.6-bp150.3.3.1.ppc64le.rpm True plasma5-workspace-libs-debuginfo-5.12.6-bp150.3.3.1.ppc64le.rpm True metatheme-breeze-common-5.12.6-bp150.3.3.1.s390x.rpm True discover-5.12.6-bp150.3.3.1.s390x.rpm True discover-debuginfo-5.12.6-bp150.3.3.1.s390x.rpm True discover-debugsource-5.12.6-bp150.3.3.1.s390x.rpm True discover-plasmoid-5.12.6-bp150.3.3.1.s390x.rpm True discover-plasmoid-debuginfo-5.12.6-bp150.3.3.1.s390x.rpm True kde-user-manager-5.12.6-bp150.3.3.1.s390x.rpm True kde-user-manager-debuginfo-5.12.6-bp150.3.3.1.s390x.rpm True kde-user-manager-debugsource-5.12.6-bp150.3.3.1.s390x.rpm True khotkeys5-5.12.6-bp150.3.3.1.s390x.rpm True khotkeys5-debuginfo-5.12.6-bp150.3.3.1.s390x.rpm True khotkeys5-debugsource-5.12.6-bp150.3.3.1.s390x.rpm True khotkeys5-devel-5.12.6-bp150.3.3.1.s390x.rpm True kinfocenter5-5.12.6-bp150.3.3.1.s390x.rpm True kinfocenter5-debuginfo-5.12.6-bp150.3.3.1.s390x.rpm True kinfocenter5-debugsource-5.12.6-bp150.3.3.1.s390x.rpm True kscreen5-5.12.6-bp150.3.3.1.s390x.rpm True kscreen5-debuginfo-5.12.6-bp150.3.3.1.s390x.rpm True kscreen5-debugsource-5.12.6-bp150.3.3.1.s390x.rpm True kscreenlocker-5.12.6-bp150.3.3.1.s390x.rpm True kscreenlocker-debuginfo-5.12.6-bp150.3.3.1.s390x.rpm True kscreenlocker-debugsource-5.12.6-bp150.3.3.1.s390x.rpm True kscreenlocker-devel-5.12.6-bp150.3.3.1.s390x.rpm True libKScreenLocker5-5.12.6-bp150.3.3.1.s390x.rpm True libKScreenLocker5-debuginfo-5.12.6-bp150.3.3.1.s390x.rpm True kwin5-5.12.6-bp150.3.3.1.s390x.rpm True kwin5-debuginfo-5.12.6-bp150.3.3.1.s390x.rpm True kwin5-debugsource-5.12.6-bp150.3.3.1.s390x.rpm True kwin5-devel-5.12.6-bp150.3.3.1.s390x.rpm True libksysguard5-5.12.6-bp150.3.3.1.s390x.rpm True libksysguard5-debuginfo-5.12.6-bp150.3.3.1.s390x.rpm True libksysguard5-debugsource-5.12.6-bp150.3.3.1.s390x.rpm True libksysguard5-devel-5.12.6-bp150.3.3.1.s390x.rpm True libksysguard5-helper-5.12.6-bp150.3.3.1.s390x.rpm True libksysguard5-helper-debuginfo-5.12.6-bp150.3.3.1.s390x.rpm True milou5-5.12.6-bp150.3.3.1.s390x.rpm True milou5-debuginfo-5.12.6-bp150.3.3.1.s390x.rpm True milou5-debugsource-5.12.6-bp150.3.3.1.s390x.rpm True plasma5-integration-debugsource-5.12.6-bp150.3.3.1.s390x.rpm True plasma5-integration-plugin-5.12.6-bp150.3.3.1.s390x.rpm True plasma5-integration-plugin-debuginfo-5.12.6-bp150.3.3.1.s390x.rpm True plasma5-workspace-5.12.6-bp150.3.3.1.s390x.rpm True plasma5-workspace-debuginfo-5.12.6-bp150.3.3.1.s390x.rpm True plasma5-workspace-debugsource-5.12.6-bp150.3.3.1.s390x.rpm True plasma5-workspace-devel-5.12.6-bp150.3.3.1.s390x.rpm True plasma5-workspace-libs-5.12.6-bp150.3.3.1.s390x.rpm True plasma5-workspace-libs-debuginfo-5.12.6-bp150.3.3.1.s390x.rpm True openSUSE-2018-960 low openSUSE Backports SLE-15 Update This update for python-configargparse provides the following changes: - Provide both Python2 and Python3 versions (boo#1106259) This update was imported from the openSUSE:Leap:15.0:Update update project. python-configargparse-0.10.0-bp150.3.3.1.src.rpm python2-configargparse-0.10.0-bp150.3.3.1.noarch.rpm python3-configargparse-0.10.0-bp150.3.3.1.noarch.rpm openSUSE-2019-673 moderate openSUSE Backports SLE-15 Update This update adds gn, a build dependency for an upcoming Chromium update. Gn is a a meta-build system that generates build files for Ninja. gn-0.1463-bp150.2.1.src.rpm gn-0.1463-bp150.2.1.x86_64.rpm gn-0.1463-bp150.2.1.aarch64.rpm gn-0.1463-bp150.2.1.ppc64le.rpm gn-0.1463-bp150.2.1.s390x.rpm openSUSE-2019-674 important openSUSE Backports SLE-15 Update This update for Chromium to version 69.0.3497.81 fixes multiple issues. Security issues fixed (boo#1107235): - CVE-2018-16065: Out of bounds write in V8 - CVE-2018-16066:Out of bounds read in Blink - CVE-2018-16067: Out of bounds read in WebAudio - CVE-2018-16068: Out of bounds write in Mojo - CVE-2018-16069:Out of bounds read in SwiftShader - CVE-2018-16070: Integer overflow in Skia - CVE-2018-16071: Use after free in WebRTC - CVE-2018-16073: Site Isolation bypass after tab restore - CVE-2018-16074: Site Isolation bypass using Blob URLS - Out of bounds read in Little-CMS - CVE-2018-16075: Local file access in Blink - CVE-2018-16076: Out of bounds read in PDFium - CVE-2018-16077: Content security policy bypass in Blink - CVE-2018-16078: Credit card information leak in Autofill - CVE-2018-16079: URL spoof in permission dialogs - CVE-2018-16080: URL spoof in full screen mode - CVE-2018-16081: Local file access in DevTools - CVE-2018-16082: Stack buffer overflow in SwiftShader - CVE-2018-16083: Out of bounds read in WebRTC - CVE-2018-16084: User confirmation bypass in external protocol handling - CVE-2018-16085: Use after free in Memory Instrumentation - CVE-2017-15430: Unsafe navigation in Chromecast (boo#1106341) - CVE-2018-16086: Script injection in New Tab Page - CVE-2018-16087: Multiple download restriction bypass - CVE-2018-16088: User gesture requirement bypass The re2 regular expression library was updated to the current version 2018-09-01. chromedriver-69.0.3497.81-bp150.2.4.1.x86_64.rpm chromedriver-debuginfo-69.0.3497.81-bp150.2.4.1.x86_64.rpm chromium-69.0.3497.81-bp150.2.4.1.src.rpm chromium-69.0.3497.81-bp150.2.4.1.x86_64.rpm chromium-debuginfo-69.0.3497.81-bp150.2.4.1.x86_64.rpm chromium-debugsource-69.0.3497.81-bp150.2.4.1.x86_64.rpm libre2-0-20180901-bp150.3.3.1.x86_64.rpm libre2-0-debuginfo-20180901-bp150.3.3.1.x86_64.rpm re2-20180901-bp150.3.3.1.src.rpm re2-debugsource-20180901-bp150.3.3.1.x86_64.rpm re2-devel-20180901-bp150.3.3.1.x86_64.rpm chromedriver-69.0.3497.81-bp150.2.4.1.aarch64.rpm chromedriver-debuginfo-69.0.3497.81-bp150.2.4.1.aarch64.rpm chromium-69.0.3497.81-bp150.2.4.1.aarch64.rpm chromium-debuginfo-69.0.3497.81-bp150.2.4.1.aarch64.rpm chromium-debugsource-69.0.3497.81-bp150.2.4.1.aarch64.rpm libre2-0-20180901-bp150.3.3.1.aarch64.rpm libre2-0-64bit-20180901-bp150.3.3.1.aarch64_ilp32.rpm libre2-0-64bit-debuginfo-20180901-bp150.3.3.1.aarch64_ilp32.rpm libre2-0-debuginfo-20180901-bp150.3.3.1.aarch64.rpm re2-debugsource-20180901-bp150.3.3.1.aarch64.rpm re2-devel-20180901-bp150.3.3.1.aarch64.rpm libre2-0-20180901-bp150.3.3.1.ppc64le.rpm libre2-0-debuginfo-20180901-bp150.3.3.1.ppc64le.rpm re2-debugsource-20180901-bp150.3.3.1.ppc64le.rpm re2-devel-20180901-bp150.3.3.1.ppc64le.rpm libre2-0-20180901-bp150.3.3.1.s390x.rpm libre2-0-debuginfo-20180901-bp150.3.3.1.s390x.rpm re2-debugsource-20180901-bp150.3.3.1.s390x.rpm re2-devel-20180901-bp150.3.3.1.s390x.rpm openSUSE-2019-675 moderate openSUSE Backports SLE-15 Update This update for lastpass-cli fixes the following issues: - lastpass-cli was unable to verify the peer certificate due to a server-side change (boo#1107384) lastpass-cli-1.3.1-bp150.3.3.1.src.rpm lastpass-cli-1.3.1-bp150.3.3.1.x86_64.rpm lastpass-cli-1.3.1-bp150.3.3.1.aarch64.rpm lastpass-cli-1.3.1-bp150.3.3.1.ppc64le.rpm lastpass-cli-1.3.1-bp150.3.3.1.s390x.rpm openSUSE-2019-681 moderate openSUSE Backports SLE-15 Update This update for gnuhealth, proteus, tryton, trytond, trytond_purchase, trytond_stock_supply fixes the following issues (boo#1107771): Package: gnuhealth - Adding a dummy executable called 'gnuhealth' with some help text Package: proteus - Update to version 4.2.4 - this update provides fixes for several bugs Package: tryton - Update to version 4.2.17 - this update provides fixes for several bugs Package: trytond - Update to version 4.2.15 - this update provides fixes for several bugs Package: trytond_purchase - Update to version 4.2.6 - this update provides fixes for several bugs Package: trytond_stock_supply - Update to version 4.2.2 - this update provides fixes for several bugs gnuhealth-3.2.10-bp150.3.3.1.noarch.rpm gnuhealth-3.2.10-bp150.3.3.1.src.rpm proteus-4.2.4-bp150.2.3.1.noarch.rpm proteus-4.2.4-bp150.2.3.1.src.rpm tryton-4.2.17-bp150.2.3.1.noarch.rpm tryton-4.2.17-bp150.2.3.1.src.rpm trytond-4.2.15-bp150.2.3.1.noarch.rpm trytond-4.2.15-bp150.2.3.1.src.rpm trytond_purchase-4.2.6-bp150.3.3.1.noarch.rpm trytond_purchase-4.2.6-bp150.3.3.1.src.rpm trytond_stock_supply-4.2.2-bp150.3.3.1.noarch.rpm trytond_stock_supply-4.2.2-bp150.3.3.1.src.rpm openSUSE-2019-684 moderate openSUSE Backports SLE-15 Update This update for okular fixes the following security issue: - CVE-2018-1000801: Prevent directory traversal vulnerability in function unpackDocumentArchive could have resulted in arbitrary file creation via a specially crafted Okular archive (bsc#1107591). okular-17.12.3-bp150.3.3.1.src.rpm okular-17.12.3-bp150.3.3.1.x86_64.rpm okular-debuginfo-17.12.3-bp150.3.3.1.x86_64.rpm okular-debugsource-17.12.3-bp150.3.3.1.x86_64.rpm okular-devel-17.12.3-bp150.3.3.1.x86_64.rpm okular-lang-17.12.3-bp150.3.3.1.noarch.rpm okular-17.12.3-bp150.3.3.1.aarch64.rpm okular-debuginfo-17.12.3-bp150.3.3.1.aarch64.rpm okular-debugsource-17.12.3-bp150.3.3.1.aarch64.rpm okular-devel-17.12.3-bp150.3.3.1.aarch64.rpm okular-17.12.3-bp150.3.3.1.ppc64le.rpm okular-debuginfo-17.12.3-bp150.3.3.1.ppc64le.rpm okular-debugsource-17.12.3-bp150.3.3.1.ppc64le.rpm okular-devel-17.12.3-bp150.3.3.1.ppc64le.rpm okular-17.12.3-bp150.3.3.1.s390x.rpm okular-debuginfo-17.12.3-bp150.3.3.1.s390x.rpm okular-debugsource-17.12.3-bp150.3.3.1.s390x.rpm okular-devel-17.12.3-bp150.3.3.1.s390x.rpm openSUSE-2019-688 low openSUSE Backports SLE-15 Update This update for GraphicsMagick fixes the following issues: - CVE-2018-16644: Added missing check for length in the functions ReadDCMImage and ReadPICTImage, which allowed remote attackers to cause a denial of service via a crafted image (bsc#1107609) - CVE-2018-16645: Prevent excessive memory allocation issue in the functions ReadBMPImage and ReadDIBImage, which allowed remote attackers to cause a denial of service via a crafted image file (bsc#1107604) GraphicsMagick-1.3.29-bp150.2.6.1.src.rpm GraphicsMagick-1.3.29-bp150.2.6.1.x86_64.rpm GraphicsMagick-debuginfo-1.3.29-bp150.2.6.1.x86_64.rpm GraphicsMagick-debugsource-1.3.29-bp150.2.6.1.x86_64.rpm GraphicsMagick-devel-1.3.29-bp150.2.6.1.x86_64.rpm libGraphicsMagick++-Q16-12-1.3.29-bp150.2.6.1.x86_64.rpm libGraphicsMagick++-Q16-12-debuginfo-1.3.29-bp150.2.6.1.x86_64.rpm libGraphicsMagick++-devel-1.3.29-bp150.2.6.1.x86_64.rpm libGraphicsMagick-Q16-3-1.3.29-bp150.2.6.1.x86_64.rpm libGraphicsMagick-Q16-3-debuginfo-1.3.29-bp150.2.6.1.x86_64.rpm libGraphicsMagick3-config-1.3.29-bp150.2.6.1.x86_64.rpm libGraphicsMagickWand-Q16-2-1.3.29-bp150.2.6.1.x86_64.rpm libGraphicsMagickWand-Q16-2-debuginfo-1.3.29-bp150.2.6.1.x86_64.rpm perl-GraphicsMagick-1.3.29-bp150.2.6.1.x86_64.rpm perl-GraphicsMagick-debuginfo-1.3.29-bp150.2.6.1.x86_64.rpm openSUSE-2019-689 moderate openSUSE Backports SLE-15 Update This update for Chromium to version 69.0.3497.92 fixes the following issues: Security issues fixed ((boo#1108114): - Function signature mismatch in WebAssembly - URL Spoofing in Omnibox The following tracked packaging issues were fixed: - the chromium package incorrectly provied swiftshader resolvables (boo#1108175) chromedriver-69.0.3497.92-bp150.2.7.1.x86_64.rpm chromedriver-debuginfo-69.0.3497.92-bp150.2.7.1.x86_64.rpm chromium-69.0.3497.92-bp150.2.7.1.src.rpm chromium-69.0.3497.92-bp150.2.7.1.x86_64.rpm chromium-debuginfo-69.0.3497.92-bp150.2.7.1.x86_64.rpm chromium-debugsource-69.0.3497.92-bp150.2.7.1.x86_64.rpm chromedriver-69.0.3497.92-bp150.2.7.1.aarch64.rpm chromedriver-debuginfo-69.0.3497.92-bp150.2.7.1.aarch64.rpm chromium-69.0.3497.92-bp150.2.7.1.aarch64.rpm chromium-debuginfo-69.0.3497.92-bp150.2.7.1.aarch64.rpm chromium-debugsource-69.0.3497.92-bp150.2.7.1.aarch64.rpm openSUSE-2019-691 low openSUSE Backports SLE-15 Update This update for ffmpeg-4 to version 4.0.2 fixes the following issues: These security issues were fixed: - CVE-2018-15822: The flv_write_packet function did not check for an empty audio packet, leading to an assertion failure and DoS (bsc#1105869). - CVE-2018-13300: An improper argument passed to the avpriv_request_sample function may have triggered an out-of-array read while converting a crafted AVI file to MPEG4, leading to a denial of service and possibly an information disclosure (bsc#1100348). These non-security issues were fixed: - Enable webvtt encoders and decoders (boo#1092241). - Build codec2 encoder and decoder, add libcodec2 to enable_decoders and enable_encoders. - Enable mpeg 1 and 2 encoders. ffmpeg-4-4.0.2-bp150.3.3.1.src.rpm ffmpeg-4-debugsource-4.0.2-bp150.3.3.1.x86_64.rpm ffmpeg-4-libavcodec-devel-4.0.2-bp150.3.3.1.x86_64.rpm ffmpeg-4-libavdevice-devel-4.0.2-bp150.3.3.1.x86_64.rpm ffmpeg-4-libavfilter-devel-4.0.2-bp150.3.3.1.x86_64.rpm ffmpeg-4-libavformat-devel-4.0.2-bp150.3.3.1.x86_64.rpm ffmpeg-4-libavresample-devel-4.0.2-bp150.3.3.1.x86_64.rpm ffmpeg-4-libavutil-devel-4.0.2-bp150.3.3.1.x86_64.rpm ffmpeg-4-libpostproc-devel-4.0.2-bp150.3.3.1.x86_64.rpm ffmpeg-4-libswresample-devel-4.0.2-bp150.3.3.1.x86_64.rpm ffmpeg-4-libswscale-devel-4.0.2-bp150.3.3.1.x86_64.rpm ffmpeg-4-private-devel-4.0.2-bp150.3.3.1.x86_64.rpm libavcodec58-4.0.2-bp150.3.3.1.x86_64.rpm libavcodec58-debuginfo-4.0.2-bp150.3.3.1.x86_64.rpm libavdevice58-4.0.2-bp150.3.3.1.x86_64.rpm libavdevice58-debuginfo-4.0.2-bp150.3.3.1.x86_64.rpm libavfilter7-4.0.2-bp150.3.3.1.x86_64.rpm libavfilter7-debuginfo-4.0.2-bp150.3.3.1.x86_64.rpm libavformat58-4.0.2-bp150.3.3.1.x86_64.rpm libavformat58-debuginfo-4.0.2-bp150.3.3.1.x86_64.rpm libavresample4-4.0.2-bp150.3.3.1.x86_64.rpm libavresample4-debuginfo-4.0.2-bp150.3.3.1.x86_64.rpm libavutil56-4.0.2-bp150.3.3.1.x86_64.rpm libavutil56-debuginfo-4.0.2-bp150.3.3.1.x86_64.rpm libpostproc55-4.0.2-bp150.3.3.1.x86_64.rpm libpostproc55-debuginfo-4.0.2-bp150.3.3.1.x86_64.rpm libswresample3-4.0.2-bp150.3.3.1.x86_64.rpm libswresample3-debuginfo-4.0.2-bp150.3.3.1.x86_64.rpm libswscale5-4.0.2-bp150.3.3.1.x86_64.rpm libswscale5-debuginfo-4.0.2-bp150.3.3.1.x86_64.rpm ffmpeg-4-debugsource-4.0.2-bp150.3.3.1.aarch64.rpm ffmpeg-4-libavcodec-devel-4.0.2-bp150.3.3.1.aarch64.rpm ffmpeg-4-libavdevice-devel-4.0.2-bp150.3.3.1.aarch64.rpm ffmpeg-4-libavfilter-devel-4.0.2-bp150.3.3.1.aarch64.rpm ffmpeg-4-libavformat-devel-4.0.2-bp150.3.3.1.aarch64.rpm ffmpeg-4-libavresample-devel-4.0.2-bp150.3.3.1.aarch64.rpm ffmpeg-4-libavutil-devel-4.0.2-bp150.3.3.1.aarch64.rpm ffmpeg-4-libpostproc-devel-4.0.2-bp150.3.3.1.aarch64.rpm ffmpeg-4-libswresample-devel-4.0.2-bp150.3.3.1.aarch64.rpm ffmpeg-4-libswscale-devel-4.0.2-bp150.3.3.1.aarch64.rpm ffmpeg-4-private-devel-4.0.2-bp150.3.3.1.aarch64.rpm libavcodec58-4.0.2-bp150.3.3.1.aarch64.rpm libavcodec58-64bit-4.0.2-bp150.3.3.1.aarch64_ilp32.rpm libavcodec58-64bit-debuginfo-4.0.2-bp150.3.3.1.aarch64_ilp32.rpm libavcodec58-debuginfo-4.0.2-bp150.3.3.1.aarch64.rpm libavdevice58-4.0.2-bp150.3.3.1.aarch64.rpm libavdevice58-64bit-4.0.2-bp150.3.3.1.aarch64_ilp32.rpm libavdevice58-64bit-debuginfo-4.0.2-bp150.3.3.1.aarch64_ilp32.rpm libavdevice58-debuginfo-4.0.2-bp150.3.3.1.aarch64.rpm libavfilter7-4.0.2-bp150.3.3.1.aarch64.rpm libavfilter7-64bit-4.0.2-bp150.3.3.1.aarch64_ilp32.rpm libavfilter7-64bit-debuginfo-4.0.2-bp150.3.3.1.aarch64_ilp32.rpm libavfilter7-debuginfo-4.0.2-bp150.3.3.1.aarch64.rpm libavformat58-4.0.2-bp150.3.3.1.aarch64.rpm libavformat58-64bit-4.0.2-bp150.3.3.1.aarch64_ilp32.rpm libavformat58-64bit-debuginfo-4.0.2-bp150.3.3.1.aarch64_ilp32.rpm libavformat58-debuginfo-4.0.2-bp150.3.3.1.aarch64.rpm libavresample4-4.0.2-bp150.3.3.1.aarch64.rpm libavresample4-64bit-4.0.2-bp150.3.3.1.aarch64_ilp32.rpm libavresample4-64bit-debuginfo-4.0.2-bp150.3.3.1.aarch64_ilp32.rpm libavresample4-debuginfo-4.0.2-bp150.3.3.1.aarch64.rpm libavutil56-4.0.2-bp150.3.3.1.aarch64.rpm libavutil56-64bit-4.0.2-bp150.3.3.1.aarch64_ilp32.rpm libavutil56-64bit-debuginfo-4.0.2-bp150.3.3.1.aarch64_ilp32.rpm libavutil56-debuginfo-4.0.2-bp150.3.3.1.aarch64.rpm libpostproc55-4.0.2-bp150.3.3.1.aarch64.rpm libpostproc55-64bit-4.0.2-bp150.3.3.1.aarch64_ilp32.rpm libpostproc55-64bit-debuginfo-4.0.2-bp150.3.3.1.aarch64_ilp32.rpm libpostproc55-debuginfo-4.0.2-bp150.3.3.1.aarch64.rpm libswresample3-4.0.2-bp150.3.3.1.aarch64.rpm libswresample3-64bit-4.0.2-bp150.3.3.1.aarch64_ilp32.rpm libswresample3-64bit-debuginfo-4.0.2-bp150.3.3.1.aarch64_ilp32.rpm libswresample3-debuginfo-4.0.2-bp150.3.3.1.aarch64.rpm libswscale5-4.0.2-bp150.3.3.1.aarch64.rpm libswscale5-64bit-4.0.2-bp150.3.3.1.aarch64_ilp32.rpm libswscale5-64bit-debuginfo-4.0.2-bp150.3.3.1.aarch64_ilp32.rpm libswscale5-debuginfo-4.0.2-bp150.3.3.1.aarch64.rpm ffmpeg-4-debugsource-4.0.2-bp150.3.3.1.ppc64le.rpm ffmpeg-4-libavcodec-devel-4.0.2-bp150.3.3.1.ppc64le.rpm ffmpeg-4-libavdevice-devel-4.0.2-bp150.3.3.1.ppc64le.rpm ffmpeg-4-libavfilter-devel-4.0.2-bp150.3.3.1.ppc64le.rpm ffmpeg-4-libavformat-devel-4.0.2-bp150.3.3.1.ppc64le.rpm ffmpeg-4-libavresample-devel-4.0.2-bp150.3.3.1.ppc64le.rpm ffmpeg-4-libavutil-devel-4.0.2-bp150.3.3.1.ppc64le.rpm ffmpeg-4-libpostproc-devel-4.0.2-bp150.3.3.1.ppc64le.rpm ffmpeg-4-libswresample-devel-4.0.2-bp150.3.3.1.ppc64le.rpm ffmpeg-4-libswscale-devel-4.0.2-bp150.3.3.1.ppc64le.rpm ffmpeg-4-private-devel-4.0.2-bp150.3.3.1.ppc64le.rpm libavcodec58-4.0.2-bp150.3.3.1.ppc64le.rpm libavcodec58-debuginfo-4.0.2-bp150.3.3.1.ppc64le.rpm libavdevice58-4.0.2-bp150.3.3.1.ppc64le.rpm libavdevice58-debuginfo-4.0.2-bp150.3.3.1.ppc64le.rpm libavfilter7-4.0.2-bp150.3.3.1.ppc64le.rpm libavfilter7-debuginfo-4.0.2-bp150.3.3.1.ppc64le.rpm libavformat58-4.0.2-bp150.3.3.1.ppc64le.rpm libavformat58-debuginfo-4.0.2-bp150.3.3.1.ppc64le.rpm libavresample4-4.0.2-bp150.3.3.1.ppc64le.rpm libavresample4-debuginfo-4.0.2-bp150.3.3.1.ppc64le.rpm libavutil56-4.0.2-bp150.3.3.1.ppc64le.rpm libavutil56-debuginfo-4.0.2-bp150.3.3.1.ppc64le.rpm libpostproc55-4.0.2-bp150.3.3.1.ppc64le.rpm libpostproc55-debuginfo-4.0.2-bp150.3.3.1.ppc64le.rpm libswresample3-4.0.2-bp150.3.3.1.ppc64le.rpm libswresample3-debuginfo-4.0.2-bp150.3.3.1.ppc64le.rpm libswscale5-4.0.2-bp150.3.3.1.ppc64le.rpm libswscale5-debuginfo-4.0.2-bp150.3.3.1.ppc64le.rpm ffmpeg-4-debugsource-4.0.2-bp150.3.3.1.s390x.rpm ffmpeg-4-libavcodec-devel-4.0.2-bp150.3.3.1.s390x.rpm ffmpeg-4-libavdevice-devel-4.0.2-bp150.3.3.1.s390x.rpm ffmpeg-4-libavfilter-devel-4.0.2-bp150.3.3.1.s390x.rpm ffmpeg-4-libavformat-devel-4.0.2-bp150.3.3.1.s390x.rpm ffmpeg-4-libavresample-devel-4.0.2-bp150.3.3.1.s390x.rpm ffmpeg-4-libavutil-devel-4.0.2-bp150.3.3.1.s390x.rpm ffmpeg-4-libpostproc-devel-4.0.2-bp150.3.3.1.s390x.rpm ffmpeg-4-libswresample-devel-4.0.2-bp150.3.3.1.s390x.rpm ffmpeg-4-libswscale-devel-4.0.2-bp150.3.3.1.s390x.rpm ffmpeg-4-private-devel-4.0.2-bp150.3.3.1.s390x.rpm libavcodec58-4.0.2-bp150.3.3.1.s390x.rpm libavcodec58-debuginfo-4.0.2-bp150.3.3.1.s390x.rpm libavdevice58-4.0.2-bp150.3.3.1.s390x.rpm libavdevice58-debuginfo-4.0.2-bp150.3.3.1.s390x.rpm libavfilter7-4.0.2-bp150.3.3.1.s390x.rpm libavfilter7-debuginfo-4.0.2-bp150.3.3.1.s390x.rpm libavformat58-4.0.2-bp150.3.3.1.s390x.rpm libavformat58-debuginfo-4.0.2-bp150.3.3.1.s390x.rpm libavresample4-4.0.2-bp150.3.3.1.s390x.rpm libavresample4-debuginfo-4.0.2-bp150.3.3.1.s390x.rpm libavutil56-4.0.2-bp150.3.3.1.s390x.rpm libavutil56-debuginfo-4.0.2-bp150.3.3.1.s390x.rpm libpostproc55-4.0.2-bp150.3.3.1.s390x.rpm libpostproc55-debuginfo-4.0.2-bp150.3.3.1.s390x.rpm libswresample3-4.0.2-bp150.3.3.1.s390x.rpm libswresample3-debuginfo-4.0.2-bp150.3.3.1.s390x.rpm libswscale5-4.0.2-bp150.3.3.1.s390x.rpm libswscale5-debuginfo-4.0.2-bp150.3.3.1.s390x.rpm openSUSE-2019-697 moderate openSUSE Backports SLE-15 Update This update for spec-cleaner to version 1.1.2 contains the following fixes and improvements (boo#1099674): - Fixed qmake macro recommendation - More licenses recognised - Do not curlify sysuser_create spec-cleaner-1.1.2-bp150.2.6.1.noarch.rpm spec-cleaner-1.1.2-bp150.2.6.1.src.rpm spec-cleaner-format_spec_file-1.1.2-bp150.2.6.1.noarch.rpm openSUSE-2019-698 moderate openSUSE Backports SLE-15 Update This update for jhead fixes the following security issues: - CVE-2016-3822: jhead remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds access) via crafted EXIF data (bsc#1108480). - CVE-2018-16554: The ProcessGpsInfo function may have allowed a remote attacker to cause a denial-of-service attack or unspecified other impact via a malicious JPEG file, because of inconsistency between float and double in a sprintf format string during TAG_GPS_ALT handling (bsc#1108480). jhead-3.00-bp150.3.3.1.src.rpm jhead-3.00-bp150.3.3.1.x86_64.rpm jhead-3.00-bp150.3.3.1.aarch64.rpm jhead-3.00-bp150.3.3.1.ppc64le.rpm jhead-3.00-bp150.3.3.1.s390x.rpm openSUSE-2019-701 moderate openSUSE Backports SLE-15 Update This update for Chromium to version 69.0.3497.100 fixes the following issues: - Security relevant fixes from internal audits, fuzzing and other initiatives (boo#boo#1108774) chromedriver-69.0.3497.100-bp150.2.10.1.x86_64.rpm chromedriver-debuginfo-69.0.3497.100-bp150.2.10.1.x86_64.rpm chromium-69.0.3497.100-bp150.2.10.1.src.rpm chromium-69.0.3497.100-bp150.2.10.1.x86_64.rpm chromium-debuginfo-69.0.3497.100-bp150.2.10.1.x86_64.rpm chromium-debugsource-69.0.3497.100-bp150.2.10.1.x86_64.rpm chromedriver-69.0.3497.100-bp150.2.10.1.aarch64.rpm chromedriver-debuginfo-69.0.3497.100-bp150.2.10.1.aarch64.rpm chromium-69.0.3497.100-bp150.2.10.1.aarch64.rpm chromium-debuginfo-69.0.3497.100-bp150.2.10.1.aarch64.rpm chromium-debugsource-69.0.3497.100-bp150.2.10.1.aarch64.rpm openSUSE-2019-702 moderate openSUSE Backports SLE-15 Update This update for obs-service-refresh_patches fixes the following security issue: - An attacker creating a specially formated archive could have tricked the service in deleting directories that shouldn't be deleted (boo#1108189) obs-service-refresh_patches-0.3.9+git.1537184752.d624424-bp150.3.3.1.noarch.rpm obs-service-refresh_patches-0.3.9+git.1537184752.d624424-bp150.3.3.1.src.rpm openSUSE-2019-703 moderate openSUSE Backports SLE-15 Update This update for mate-screensaver fixes the following issues: - Fixes more GdkScreen related deprecations (boo#1098985) - lock-plug: Only scale lock-screen widgets on older versions of GTK+ - Update translations. mate-screensaver-1.20.2-bp150.2.3.1.src.rpm mate-screensaver-1.20.2-bp150.2.3.1.x86_64.rpm mate-screensaver-debuginfo-1.20.2-bp150.2.3.1.x86_64.rpm mate-screensaver-debugsource-1.20.2-bp150.2.3.1.x86_64.rpm mate-screensaver-devel-1.20.2-bp150.2.3.1.x86_64.rpm mate-screensaver-lang-1.20.2-bp150.2.3.1.noarch.rpm mate-screensaver-1.20.2-bp150.2.3.1.aarch64.rpm mate-screensaver-debuginfo-1.20.2-bp150.2.3.1.aarch64.rpm mate-screensaver-debugsource-1.20.2-bp150.2.3.1.aarch64.rpm mate-screensaver-devel-1.20.2-bp150.2.3.1.aarch64.rpm mate-screensaver-1.20.2-bp150.2.3.1.ppc64le.rpm mate-screensaver-debuginfo-1.20.2-bp150.2.3.1.ppc64le.rpm mate-screensaver-debugsource-1.20.2-bp150.2.3.1.ppc64le.rpm mate-screensaver-devel-1.20.2-bp150.2.3.1.ppc64le.rpm mate-screensaver-1.20.2-bp150.2.3.1.s390x.rpm mate-screensaver-debuginfo-1.20.2-bp150.2.3.1.s390x.rpm mate-screensaver-debugsource-1.20.2-bp150.2.3.1.s390x.rpm mate-screensaver-devel-1.20.2-bp150.2.3.1.s390x.rpm openSUSE-2019-704 moderate openSUSE Backports SLE-15 Update This update for youtube-dl fixes the following issues: - fixes for a number of video sites, including: ARD Mediathek Beta, chrunchyroll, YouTube, IMDB and others (boo#1108712) python-youtube-dl-2018.09.08-bp150.3.3.1.src.rpm python2-youtube-dl-2018.09.08-bp150.3.3.1.noarch.rpm python3-youtube-dl-2018.09.08-bp150.3.3.1.noarch.rpm youtube-dl-2018.09.08-bp150.3.3.1.noarch.rpm youtube-dl-2018.09.08-bp150.3.3.1.src.rpm openSUSE-2019-711 critical openSUSE Backports SLE-15 Update This update for hylafax+ fixes the following issues: Security issues fixed in 5.6.1: - CVE-2018-17141: multiple vulnerabilities affecting fax page reception in JPEG format Specially crafted input may have allowed remote execution of arbitrary code (boo#1109084) Additionally, this update also contains all upstream corrections and bugfixes in the 5.6.1 version, including: - fix RFC2047 encoding by notify - add jobcontrol PageSize feature - don't wait forever after +FRH:3 - fix faxmail transition between a message and external types - avoid pagehandling from introducing some unnecessary EOM signals - improve proxy connection error handling and logging - add initial ModemGroup limits feature - pass the user's uid onto the session log file for sent faxes - improve job waits to minimize triggers - add ProxyTaglineFormat and ProxyTSI features hylafax+-5.6.1-bp150.4.3.1.src.rpm hylafax+-5.6.1-bp150.4.3.1.x86_64.rpm hylafax+-client-5.6.1-bp150.4.3.1.x86_64.rpm hylafax+-client-debuginfo-5.6.1-bp150.4.3.1.x86_64.rpm hylafax+-debuginfo-5.6.1-bp150.4.3.1.x86_64.rpm hylafax+-debugsource-5.6.1-bp150.4.3.1.x86_64.rpm libfaxutil5_6_1-5.6.1-bp150.4.3.1.x86_64.rpm libfaxutil5_6_1-debuginfo-5.6.1-bp150.4.3.1.x86_64.rpm hylafax+-5.6.1-bp150.4.3.1.aarch64.rpm hylafax+-client-5.6.1-bp150.4.3.1.aarch64.rpm hylafax+-client-debuginfo-5.6.1-bp150.4.3.1.aarch64.rpm hylafax+-debuginfo-5.6.1-bp150.4.3.1.aarch64.rpm hylafax+-debugsource-5.6.1-bp150.4.3.1.aarch64.rpm libfaxutil5_6_1-5.6.1-bp150.4.3.1.aarch64.rpm libfaxutil5_6_1-debuginfo-5.6.1-bp150.4.3.1.aarch64.rpm hylafax+-5.6.1-bp150.4.3.1.ppc64le.rpm hylafax+-client-5.6.1-bp150.4.3.1.ppc64le.rpm hylafax+-client-debuginfo-5.6.1-bp150.4.3.1.ppc64le.rpm hylafax+-debuginfo-5.6.1-bp150.4.3.1.ppc64le.rpm hylafax+-debugsource-5.6.1-bp150.4.3.1.ppc64le.rpm libfaxutil5_6_1-5.6.1-bp150.4.3.1.ppc64le.rpm libfaxutil5_6_1-debuginfo-5.6.1-bp150.4.3.1.ppc64le.rpm hylafax+-5.6.1-bp150.4.3.1.s390x.rpm hylafax+-client-5.6.1-bp150.4.3.1.s390x.rpm hylafax+-client-debuginfo-5.6.1-bp150.4.3.1.s390x.rpm hylafax+-debuginfo-5.6.1-bp150.4.3.1.s390x.rpm hylafax+-debugsource-5.6.1-bp150.4.3.1.s390x.rpm libfaxutil5_6_1-5.6.1-bp150.4.3.1.s390x.rpm libfaxutil5_6_1-debuginfo-5.6.1-bp150.4.3.1.s390x.rpm openSUSE-2019-712 important openSUSE Backports SLE-15 Update This update for Chromium to version 70.0.3538.67 fixes multiple issues. Security issues fixed (bsc#1112111): - CVE-2018-17462: Sandbox escape in AppCache - CVE-2018-17463: Remote code execution in V8 - Heap buffer overflow in Little CMS in PDFium - CVE-2018-17464: URL spoof in Omnibox - CVE-2018-17465: Use after free in V8 - CVE-2018-17466: Memory corruption in Angle - CVE-2018-17467: URL spoof in Omnibox - CVE-2018-17468: Cross-origin URL disclosure in Blink - CVE-2018-17469: Heap buffer overflow in PDFium - CVE-2018-17470: Memory corruption in GPU Internals - CVE-2018-17471: Security UI occlusion in full screen mode - CVE-2018-17473: URL spoof in Omnibox - CVE-2018-17474: Use after free in Blink - CVE-2018-17475: URL spoof in Omnibox - CVE-2018-17476: Security UI occlusion in full screen mode - CVE-2018-5179: Lack of limits on update() in ServiceWorker - CVE-2018-17477: UI spoof in Extensions VAAPI hardware accelerated rendering is now enabled by default. This update contains the following packaging changes: - Use the system libusb-1.0 library - Use bundled harfbuzz library - Disable gnome-keyring to avoid crashes chromedriver-70.0.3538.67-bp150.2.14.1.x86_64.rpm chromedriver-debuginfo-70.0.3538.67-bp150.2.14.1.x86_64.rpm chromium-70.0.3538.67-bp150.2.14.1.src.rpm chromium-70.0.3538.67-bp150.2.14.1.x86_64.rpm chromium-debuginfo-70.0.3538.67-bp150.2.14.1.x86_64.rpm chromium-debugsource-70.0.3538.67-bp150.2.14.1.x86_64.rpm openSUSE-2019-714 moderate openSUSE Backports SLE-15 Update This update for hylafax+ fixes the following issues: - hylafax+ did not support JBIG-in-TIFF conversion (boo#1115532) hylafax+-5.6.1-bp150.4.6.1.src.rpm hylafax+-5.6.1-bp150.4.6.1.x86_64.rpm hylafax+-client-5.6.1-bp150.4.6.1.x86_64.rpm hylafax+-client-debuginfo-5.6.1-bp150.4.6.1.x86_64.rpm hylafax+-debuginfo-5.6.1-bp150.4.6.1.x86_64.rpm hylafax+-debugsource-5.6.1-bp150.4.6.1.x86_64.rpm libfaxutil5_6_1-5.6.1-bp150.4.6.1.x86_64.rpm libfaxutil5_6_1-debuginfo-5.6.1-bp150.4.6.1.x86_64.rpm hylafax+-5.6.1-bp150.4.6.1.aarch64.rpm hylafax+-client-5.6.1-bp150.4.6.1.aarch64.rpm hylafax+-client-debuginfo-5.6.1-bp150.4.6.1.aarch64.rpm hylafax+-debuginfo-5.6.1-bp150.4.6.1.aarch64.rpm hylafax+-debugsource-5.6.1-bp150.4.6.1.aarch64.rpm libfaxutil5_6_1-5.6.1-bp150.4.6.1.aarch64.rpm libfaxutil5_6_1-debuginfo-5.6.1-bp150.4.6.1.aarch64.rpm hylafax+-5.6.1-bp150.4.6.1.ppc64le.rpm hylafax+-client-5.6.1-bp150.4.6.1.ppc64le.rpm hylafax+-client-debuginfo-5.6.1-bp150.4.6.1.ppc64le.rpm hylafax+-debuginfo-5.6.1-bp150.4.6.1.ppc64le.rpm hylafax+-debugsource-5.6.1-bp150.4.6.1.ppc64le.rpm libfaxutil5_6_1-5.6.1-bp150.4.6.1.ppc64le.rpm libfaxutil5_6_1-debuginfo-5.6.1-bp150.4.6.1.ppc64le.rpm hylafax+-5.6.1-bp150.4.6.1.s390x.rpm hylafax+-client-5.6.1-bp150.4.6.1.s390x.rpm hylafax+-client-debuginfo-5.6.1-bp150.4.6.1.s390x.rpm hylafax+-debuginfo-5.6.1-bp150.4.6.1.s390x.rpm hylafax+-debugsource-5.6.1-bp150.4.6.1.s390x.rpm libfaxutil5_6_1-5.6.1-bp150.4.6.1.s390x.rpm libfaxutil5_6_1-debuginfo-5.6.1-bp150.4.6.1.s390x.rpm openSUSE-2019-731 important openSUSE Backports SLE-15 Update This update for bitcoin to version 0.16.3 fixes the following issues: - CVE-2018-17144: Prevent remote denial of service (application crash) exploitable by miners via duplicate input (bsc#1108992). For additional changes please check the changelog. bitcoin-0.16.3-bp150.3.3.1.src.rpm bitcoin-qt5-0.16.3-bp150.3.3.1.x86_64.rpm bitcoin-test-0.16.3-bp150.3.3.1.x86_64.rpm bitcoin-utils-0.16.3-bp150.3.3.1.x86_64.rpm bitcoind-0.16.3-bp150.3.3.1.x86_64.rpm libbitcoinconsensus-devel-0.16.3-bp150.3.3.1.x86_64.rpm libbitcoinconsensus0-0.16.3-bp150.3.3.1.x86_64.rpm bitcoin-qt5-0.16.3-bp150.3.3.1.aarch64.rpm bitcoin-test-0.16.3-bp150.3.3.1.aarch64.rpm bitcoin-utils-0.16.3-bp150.3.3.1.aarch64.rpm bitcoind-0.16.3-bp150.3.3.1.aarch64.rpm libbitcoinconsensus-devel-0.16.3-bp150.3.3.1.aarch64.rpm libbitcoinconsensus0-0.16.3-bp150.3.3.1.aarch64.rpm bitcoin-qt5-0.16.3-bp150.3.3.1.ppc64le.rpm bitcoin-test-0.16.3-bp150.3.3.1.ppc64le.rpm bitcoin-utils-0.16.3-bp150.3.3.1.ppc64le.rpm bitcoind-0.16.3-bp150.3.3.1.ppc64le.rpm libbitcoinconsensus-devel-0.16.3-bp150.3.3.1.ppc64le.rpm libbitcoinconsensus0-0.16.3-bp150.3.3.1.ppc64le.rpm bitcoin-qt5-0.16.3-bp150.3.3.1.s390x.rpm bitcoin-test-0.16.3-bp150.3.3.1.s390x.rpm bitcoin-utils-0.16.3-bp150.3.3.1.s390x.rpm bitcoind-0.16.3-bp150.3.3.1.s390x.rpm libbitcoinconsensus-devel-0.16.3-bp150.3.3.1.s390x.rpm libbitcoinconsensus0-0.16.3-bp150.3.3.1.s390x.rpm openSUSE-2019-738 important openSUSE Backports SLE-15 Update This update for gajim fixes the following issues: - Add missing python dependencies (boo#1109355). gajim-1.0.3-bp150.2.3.1.noarch.rpm gajim-1.0.3-bp150.2.3.1.src.rpm gajim-lang-1.0.3-bp150.2.3.1.noarch.rpm openSUSE-2019-739 moderate openSUSE Backports SLE-15 Update This update for shadowsocks-libev fixes the following issues: - Update version to 3.2.0 * Add MinGW support by @linusyang * Refine c-ares integration by @xnoreq. * Fix building issues with GCC8 by @FlyingheartCN. * Minor bug fixes (boo#1109556, boo#1109550, boo#1109548). libshadowsocks-libev2-3.2.0-bp150.2.3.1.x86_64.rpm libshadowsocks-libev2-debuginfo-3.2.0-bp150.2.3.1.x86_64.rpm shadowsocks-libev-3.2.0-bp150.2.3.1.src.rpm shadowsocks-libev-3.2.0-bp150.2.3.1.x86_64.rpm shadowsocks-libev-debuginfo-3.2.0-bp150.2.3.1.x86_64.rpm shadowsocks-libev-debugsource-3.2.0-bp150.2.3.1.x86_64.rpm shadowsocks-libev-devel-3.2.0-bp150.2.3.1.x86_64.rpm shadowsocks-libev-doc-3.2.0-bp150.2.3.1.noarch.rpm libshadowsocks-libev2-3.2.0-bp150.2.3.1.aarch64.rpm libshadowsocks-libev2-debuginfo-3.2.0-bp150.2.3.1.aarch64.rpm shadowsocks-libev-3.2.0-bp150.2.3.1.aarch64.rpm shadowsocks-libev-debuginfo-3.2.0-bp150.2.3.1.aarch64.rpm shadowsocks-libev-debugsource-3.2.0-bp150.2.3.1.aarch64.rpm shadowsocks-libev-devel-3.2.0-bp150.2.3.1.aarch64.rpm libshadowsocks-libev2-3.2.0-bp150.2.3.1.ppc64le.rpm libshadowsocks-libev2-debuginfo-3.2.0-bp150.2.3.1.ppc64le.rpm shadowsocks-libev-3.2.0-bp150.2.3.1.ppc64le.rpm shadowsocks-libev-debuginfo-3.2.0-bp150.2.3.1.ppc64le.rpm shadowsocks-libev-debugsource-3.2.0-bp150.2.3.1.ppc64le.rpm shadowsocks-libev-devel-3.2.0-bp150.2.3.1.ppc64le.rpm libshadowsocks-libev2-3.2.0-bp150.2.3.1.s390x.rpm libshadowsocks-libev2-debuginfo-3.2.0-bp150.2.3.1.s390x.rpm shadowsocks-libev-3.2.0-bp150.2.3.1.s390x.rpm shadowsocks-libev-debuginfo-3.2.0-bp150.2.3.1.s390x.rpm shadowsocks-libev-debugsource-3.2.0-bp150.2.3.1.s390x.rpm shadowsocks-libev-devel-3.2.0-bp150.2.3.1.s390x.rpm openSUSE-2019-740 important openSUSE Backports SLE-15 Update This update for mypaint fixes the following issues: - mypaint did not work correctly due to the wrong python binary being used (boo#1081099) mypaint-1.1.0-bp150.2.3.1.src.rpm mypaint-1.1.0-bp150.2.3.1.x86_64.rpm mypaint-debuginfo-1.1.0-bp150.2.3.1.x86_64.rpm mypaint-debugsource-1.1.0-bp150.2.3.1.x86_64.rpm mypaint-lang-1.1.0-bp150.2.3.1.noarch.rpm openSUSE-2019-741 important openSUSE Backports SLE-15 Update This update for osdlyrics fixes the following issues: - osdlyrics did not start up correctly when some required dependencies were not installed (boo#1109453) osdlyrics-0.4.3+git20170817.8661927-bp150.2.3.1.src.rpm osdlyrics-0.4.3+git20170817.8661927-bp150.2.3.1.x86_64.rpm osdlyrics-debuginfo-0.4.3+git20170817.8661927-bp150.2.3.1.x86_64.rpm osdlyrics-debugsource-0.4.3+git20170817.8661927-bp150.2.3.1.x86_64.rpm osdlyrics-lang-0.4.3+git20170817.8661927-bp150.2.3.1.noarch.rpm python-osdlyrics-0.4.3+git20170817.8661927-bp150.2.3.1.x86_64.rpm openSUSE-2019-742 low openSUSE Backports SLE-15 Update This update makes available python-llfuse. The package is required when using the mount subcommand of borg, part of Borg backup. (boo#1095725) python-llfuse-1.3.5-bp150.2.1.src.rpm python-llfuse-docs-1.3.5-bp150.2.1.noarch.rpm python2-llfuse-1.3.5-bp150.2.1.x86_64.rpm python3-llfuse-1.3.5-bp150.2.1.x86_64.rpm python2-llfuse-1.3.5-bp150.2.1.aarch64.rpm python3-llfuse-1.3.5-bp150.2.1.aarch64.rpm python2-llfuse-1.3.5-bp150.2.1.ppc64le.rpm python3-llfuse-1.3.5-bp150.2.1.ppc64le.rpm python2-llfuse-1.3.5-bp150.2.1.s390x.rpm python3-llfuse-1.3.5-bp150.2.1.s390x.rpm openSUSE-2019-748 moderate openSUSE Backports SLE-15 Update This update for otrs to version 4.0.32 fixes the following issues: These security issues were fixed: - CVE-2018-16586: An attacker could have sent a malicious email to an OTRS system. If a logged in user opens it, the email could have caused the browser to load external image or CSS resources (bsc#1109822). - CVE-2018-16587: An attacker could have sent a malicious email to an OTRS system. If a user with admin permissions opens it, it caused deletions of arbitrary files that the OTRS web server user has write access to (bsc#1109823). - CVE-2018-14593: An attacker who is logged into OTRS as an agent may have escalated their privileges by accessing a specially crafted URL (bsc#1103800). These non-security issues were fixed: - fixed permissions file @OTRS_ROOT@/var/tmp -> @OTRS_ROOT@/var/tmp/ - ACL for Action AgentTicketBulk were inconsistent. otrs-4.0.32-bp150.3.3.1.noarch.rpm otrs-4.0.32-bp150.3.3.1.src.rpm otrs-doc-4.0.32-bp150.3.3.1.noarch.rpm otrs-itsm-4.0.32-bp150.3.3.1.noarch.rpm openSUSE-2019-754 moderate openSUSE Backports SLE-15 Update This update for gitolite fixes the following issues: Gitolite was updated to 3.6.9: - CVE-2018-16976: prevent racy access to repos in process of migration to gitolite (boo#1108272) - 'info' learns new '-p' option to show only physical repos (as opposed to wild repos) The update to 3.6.8 contains: - fix bug when deleting *all* hooks for a repo - allow trailing slashes in repo names - make pre-receive hook driver bail on non-zero exit of a pre-receive hook - allow templates in gitolite.conf (new feature) - various optimiations The update to 3.6.7 contains: - allow repo-specific hooks to be organised into subdirectories, and allow the multi-hook driver to be placed in some other location of your choice - allow simple test code to be embedded within the gitolite.conf file; see contrib/utils/testconf for how. (This goes on the client side, not on the server) - allow syslog "facility" to be changed, from the default of 'local0' - allow syslog "facility" to be changed, from the default of replaced with a space separated list of members The update to 3.6.6 contains: - simple but important fix for a future perl deprecation (perl will be removing "." from @INC in 5.24) - 'perms' now requires a '-c' to activate batch mode (should not affect interactive use but check your scripts perhaps?) - gitolite setup now accepts a '-m' option to supply a custom message (useful when it is used by a script) gitolite-3.6.9-bp150.3.3.1.noarch.rpm gitolite-3.6.9-bp150.3.3.1.src.rpm openSUSE-2019-755 moderate openSUSE Backports SLE-15 Update This update for gri fixes issues rebuilding gri following a maintenance update for ImageMagick (boo#1109976). gri-2.12.23-bp150.2.3.1.src.rpm gri-2.12.23-bp150.2.3.1.x86_64.rpm gri-debuginfo-2.12.23-bp150.2.3.1.x86_64.rpm gri-debugsource-2.12.23-bp150.2.3.1.x86_64.rpm gri-2.12.23-bp150.2.3.1.aarch64.rpm gri-debuginfo-2.12.23-bp150.2.3.1.aarch64.rpm gri-debugsource-2.12.23-bp150.2.3.1.aarch64.rpm gri-2.12.23-bp150.2.3.1.ppc64le.rpm gri-debuginfo-2.12.23-bp150.2.3.1.ppc64le.rpm gri-debugsource-2.12.23-bp150.2.3.1.ppc64le.rpm gri-2.12.23-bp150.2.3.1.s390x.rpm gri-debuginfo-2.12.23-bp150.2.3.1.s390x.rpm gri-debugsource-2.12.23-bp150.2.3.1.s390x.rpm openSUSE-2019-756 moderate openSUSE Backports SLE-15 Update This update for ddd fixes issues rebuilding ddd following a ImageMagick update (boo#1109976). ddd-3.3.12-bp150.3.3.1.src.rpm ddd-3.3.12-bp150.3.3.1.x86_64.rpm ddd-debuginfo-3.3.12-bp150.3.3.1.x86_64.rpm ddd-debugsource-3.3.12-bp150.3.3.1.x86_64.rpm ddd-doc-3.3.12-bp150.3.3.1.noarch.rpm openSUSE-2019-778 moderate openSUSE Backports SLE-15 Update This update for dolphin fixes the following issues: - Prevent accidentally triggering inline rename by just dragging a file (boo#1108797) dolphin-17.12.3-bp150.3.3.1.src.rpm dolphin-17.12.3-bp150.3.3.1.x86_64.rpm dolphin-devel-17.12.3-bp150.3.3.1.x86_64.rpm dolphin-part-17.12.3-bp150.3.3.1.x86_64.rpm dolphin-part-lang-17.12.3-bp150.3.3.1.noarch.rpm libdolphinvcs5-17.12.3-bp150.3.3.1.x86_64.rpm dolphin-17.12.3-bp150.3.3.1.aarch64.rpm dolphin-devel-17.12.3-bp150.3.3.1.aarch64.rpm dolphin-part-17.12.3-bp150.3.3.1.aarch64.rpm libdolphinvcs5-17.12.3-bp150.3.3.1.aarch64.rpm dolphin-17.12.3-bp150.3.3.1.ppc64le.rpm dolphin-devel-17.12.3-bp150.3.3.1.ppc64le.rpm dolphin-part-17.12.3-bp150.3.3.1.ppc64le.rpm libdolphinvcs5-17.12.3-bp150.3.3.1.ppc64le.rpm dolphin-17.12.3-bp150.3.3.1.s390x.rpm dolphin-devel-17.12.3-bp150.3.3.1.s390x.rpm dolphin-part-17.12.3-bp150.3.3.1.s390x.rpm libdolphinvcs5-17.12.3-bp150.3.3.1.s390x.rpm openSUSE-2019-783 important openSUSE Backports SLE-15 Update This update for tinyca2 fixes the following issues: - Make the tool work on Tumbleweed by fixing a deprecated perl code (boo#1072060) - Cleaned specfile tinyca2-0.7.5-bp150.3.3.1.noarch.rpm tinyca2-0.7.5-bp150.3.3.1.src.rpm openSUSE-2019-54 moderate openSUSE Backports SLE-15 Update This update for gitolite fixes the following security issue: - CVE-2018-20683: The rsync command line was not handled correctly, allow malicious rsync options (boo#1121570) The version update to 3.6.11 also contains a number of upstream bug fixes. gitolite-3.6.11-bp150.3.6.1.noarch.rpm gitolite-3.6.11-bp150.3.6.1.src.rpm openSUSE-2019-804 moderate openSUSE Backports SLE-15 Update This update for obs-service-replace_using_package_version adds following additional functionality: - bumpversion support - New --parse-version flag (fixes bsc#1111089) This update was imported from the SUSE:SLE-15:Update update project. obs-service-replace_using_package_version-0.0.2-bp150.3.3.1.noarch.rpm obs-service-replace_using_package_version-0.0.2-bp150.3.3.1.src.rpm openSUSE-2019-805 low openSUSE Backports SLE-15 Update This update for Regina-REXX, THE, ooRexx fixes the following issues: * Allow alternative Rexx (ooRexx and Regina-REXX) implementations to be installed in parallel (boo#1083875) * Do not ship any preset file in ooRexx (boo#1012847) * Leftower process running at end of build of ooRexx (boo#1017668) * Fix building of ooRexx gcc6 and later (boo#985384) Regina-REXX-3.9.1-bp150.3.3.1.src.rpm Regina-REXX-3.9.1-bp150.3.3.1.x86_64.rpm Regina-REXX-devel-3.9.1-bp150.3.3.1.x86_64.rpm Regina-REXX-doc-3.9.1-bp150.3.3.1.x86_64.rpm libregina3-3.9.1-bp150.3.3.1.x86_64.rpm ooRexx-4.2.0-bp150.3.3.1.src.rpm ooRexx-4.2.0-bp150.3.3.1.x86_64.rpm ooRexx-debuginfo-4.2.0-bp150.3.3.1.x86_64.rpm ooRexx-debugsource-4.2.0-bp150.3.3.1.x86_64.rpm ooRexx-devel-4.2.0-bp150.3.3.1.x86_64.rpm Regina-REXX-3.9.1-bp150.3.3.1.aarch64.rpm Regina-REXX-devel-3.9.1-bp150.3.3.1.aarch64.rpm Regina-REXX-doc-3.9.1-bp150.3.3.1.aarch64.rpm libregina3-3.9.1-bp150.3.3.1.aarch64.rpm ooRexx-4.2.0-bp150.3.3.1.aarch64.rpm ooRexx-debuginfo-4.2.0-bp150.3.3.1.aarch64.rpm ooRexx-debugsource-4.2.0-bp150.3.3.1.aarch64.rpm ooRexx-devel-4.2.0-bp150.3.3.1.aarch64.rpm Regina-REXX-3.9.1-bp150.3.3.1.ppc64le.rpm Regina-REXX-devel-3.9.1-bp150.3.3.1.ppc64le.rpm Regina-REXX-doc-3.9.1-bp150.3.3.1.ppc64le.rpm libregina3-3.9.1-bp150.3.3.1.ppc64le.rpm ooRexx-4.2.0-bp150.3.3.1.ppc64le.rpm ooRexx-debuginfo-4.2.0-bp150.3.3.1.ppc64le.rpm ooRexx-debugsource-4.2.0-bp150.3.3.1.ppc64le.rpm ooRexx-devel-4.2.0-bp150.3.3.1.ppc64le.rpm Regina-REXX-3.9.1-bp150.3.3.1.s390x.rpm Regina-REXX-devel-3.9.1-bp150.3.3.1.s390x.rpm Regina-REXX-doc-3.9.1-bp150.3.3.1.s390x.rpm libregina3-3.9.1-bp150.3.3.1.s390x.rpm ooRexx-4.2.0-bp150.3.3.1.s390x.rpm ooRexx-debuginfo-4.2.0-bp150.3.3.1.s390x.rpm ooRexx-debugsource-4.2.0-bp150.3.3.1.s390x.rpm ooRexx-devel-4.2.0-bp150.3.3.1.s390x.rpm openSUSE-2018-1185 low openSUSE Backports SLE-15 Update This update for sdcc fixes issues rebuilding the package with a recent update of ImageMagick (boo#1109976) This update was imported from the openSUSE:Leap:15.0:Update update project. sdcc-3.6.0-bp150.3.3.2.src.rpm sdcc-3.6.0-bp150.3.3.2.x86_64.rpm sdcc-doc-3.6.0-bp150.3.3.2.noarch.rpm sdcc-libc-sources-3.6.0-bp150.3.3.2.x86_64.rpm sdcc-3.6.0-bp150.3.3.2.aarch64.rpm sdcc-libc-sources-3.6.0-bp150.3.3.2.aarch64.rpm sdcc-3.6.0-bp150.3.3.2.s390x.rpm sdcc-libc-sources-3.6.0-bp150.3.3.2.s390x.rpm openSUSE-2019-811 moderate openSUSE Backports SLE-15 Update Singularity was updated to version 2.6.0, bringing features, bugfixes and security fixes. Security issues fixed: - CVE-2018-12021: Fixed access control on systems supporting overlay file system (boo#1100333). Highlights of 2.6.0: - Allow admin to specify a non-standard location for mksquashfs binary at build time with '--with-mksquashfs' option #1662 - '--nv' option will use [nvidia-container-cli](https://github.com/NVIDIA/libnvidia-container) if installed #1681 - [nvliblist.conf] (https://github.com/singularityware/singularity/blob/master/etc/nvliblist.conf) now has a section for binaries #1681 - '--nv' can be made default with all action commands in singularity.conf #1681 - '--nv' can be controlled by env vars '$SINGULARITY_NV' and '$SINGULARITY_NV_OFF' #1681 - Restore shim init process for proper signal handling and child reaping when container is initiated in its own PID namespace #1221 - Add '-i' option to image.create to specify the inode ratio. #1759 - Bind '/dev/nvidia*' into the container when the '--nv' flag is used in conjuction with the '--contain' flag #1358 - Add '--no-home' option to not mount user $HOME if it is not the $CWD and 'mount home = yes' is set. #1761 - Added support for OAUTH2 Docker registries like Azure Container Registry #1622 Highlights of 2.5.2: - a new `build` command was added to replace `create` + `bootstrap` - default image format is squashfs, eliminating the need to specify a size - a `localimage` can be used as a build base, including ext3, sandbox, and other squashfs images - singularity hub can now be used as a base with the uri - Restore docker-extract aufs whiteout handling that implements correct extraction of docker container layers. Bug fixes: - Fix 404 when using Arch Linux bootstrap #1731 - Fix environment variables clearing while starting instances #1766 - several more bug fixes, see CHANGELOG.md for details libsingularity1-2.6.0-bp150.3.3.1.x86_64.rpm singularity-2.6.0-bp150.3.3.1.src.rpm singularity-2.6.0-bp150.3.3.1.x86_64.rpm singularity-devel-2.6.0-bp150.3.3.1.x86_64.rpm libsingularity1-2.6.0-bp150.3.3.1.aarch64.rpm singularity-2.6.0-bp150.3.3.1.aarch64.rpm singularity-devel-2.6.0-bp150.3.3.1.aarch64.rpm libsingularity1-2.6.0-bp150.3.3.1.ppc64le.rpm singularity-2.6.0-bp150.3.3.1.ppc64le.rpm singularity-devel-2.6.0-bp150.3.3.1.ppc64le.rpm libsingularity1-2.6.0-bp150.3.3.1.s390x.rpm singularity-2.6.0-bp150.3.3.1.s390x.rpm singularity-devel-2.6.0-bp150.3.3.1.s390x.rpm openSUSE-2019-812 moderate openSUSE Backports SLE-15 Update This update for transmission fixes the following issues: - Transmission was unable to correctly load translation files due to an installation path issue (boo#1111323) transmission-2.94-bp150.3.3.1.src.rpm transmission-2.94-bp150.3.3.1.x86_64.rpm transmission-common-2.94-bp150.3.3.1.noarch.rpm transmission-daemon-2.94-bp150.3.3.1.x86_64.rpm transmission-gtk-2.94-bp150.3.3.1.x86_64.rpm transmission-gtk-lang-2.94-bp150.3.3.1.noarch.rpm transmission-qt-2.94-bp150.3.3.1.x86_64.rpm transmission-qt-lang-2.94-bp150.3.3.1.noarch.rpm transmission-2.94-bp150.3.3.1.aarch64.rpm transmission-daemon-2.94-bp150.3.3.1.aarch64.rpm transmission-gtk-2.94-bp150.3.3.1.aarch64.rpm transmission-qt-2.94-bp150.3.3.1.aarch64.rpm transmission-2.94-bp150.3.3.1.ppc64le.rpm transmission-daemon-2.94-bp150.3.3.1.ppc64le.rpm transmission-gtk-2.94-bp150.3.3.1.ppc64le.rpm transmission-qt-2.94-bp150.3.3.1.ppc64le.rpm transmission-2.94-bp150.3.3.1.s390x.rpm transmission-daemon-2.94-bp150.3.3.1.s390x.rpm transmission-gtk-2.94-bp150.3.3.1.s390x.rpm transmission-qt-2.94-bp150.3.3.1.s390x.rpm openSUSE-2019-839 low openSUSE Backports SLE-15 Update hostapd was updated to fix following security issue: - CVE-2018-14526: Ignore unauthenticated encrypted EAPOL-Key data (bsc#1104205) hostapd-2.6-bp150.3.3.1.src.rpm hostapd-2.6-bp150.3.3.1.x86_64.rpm hostapd-2.6-bp150.3.3.1.aarch64.rpm hostapd-2.6-bp150.3.3.1.ppc64le.rpm hostapd-2.6-bp150.3.3.1.s390x.rpm openSUSE-2019-844 moderate openSUSE Backports SLE-15 Update This update for vpp fixes the following issues: - Do not install 80-vpp.conf; it modifies system-wide settings and it is not needed since VPP 17.08 (boo#1112540) libvpp0-18.01-bp150.2.3.1.x86_64.rpm libvpp0-debuginfo-18.01-bp150.2.3.1.x86_64.rpm vpp-18.01-bp150.2.3.1.src.rpm vpp-18.01-bp150.2.3.1.x86_64.rpm vpp-api-java-18.01-bp150.2.3.1.x86_64.rpm vpp-api-lua-18.01-bp150.2.3.1.x86_64.rpm vpp-api-python-18.01-bp150.2.3.1.x86_64.rpm vpp-debuginfo-18.01-bp150.2.3.1.x86_64.rpm vpp-debugsource-18.01-bp150.2.3.1.x86_64.rpm vpp-devel-18.01-bp150.2.3.1.x86_64.rpm vpp-plugins-18.01-bp150.2.3.1.x86_64.rpm vpp-plugins-debuginfo-18.01-bp150.2.3.1.x86_64.rpm openSUSE-2019-845 moderate openSUSE Backports SLE-15 Update This update for rkhunter fixes the following issues: - Upgrade to the latest available version 1.4.6 rkhunter-1.4.6-bp150.3.3.1.src.rpm rkhunter-1.4.6-bp150.3.3.1.x86_64.rpm rkhunter-1.4.6-bp150.3.3.1.aarch64.rpm rkhunter-1.4.6-bp150.3.3.1.ppc64le.rpm rkhunter-1.4.6-bp150.3.3.1.s390x.rpm openSUSE-2019-858 moderate openSUSE Backports SLE-15 Update This update for jhead fixes the following issues: Security issues fixed: - CVE-2018-17088: The ProcessGpsInfo function may have allowed a remote attacker to cause a denial-of-service attack or unspecified other impact via a malicious JPEG file, because there is an integer overflow during a check for whether a location exceeds the EXIF data length. This is analogous to the CVE-2016-3822 integer overflow in exif.c. (boo#1108672) - CVE-2018-16554: The ProcessGpsInfo function may have allowed a remote attacker to cause a denial-of-service attack or unspecified other impact via a malicious JPEG file, because of inconsistency between float and double in a sprintf format string during TAG_GPS_ALT handling. (boo#1108480) jhead-3.00-bp150.3.7.1.src.rpm jhead-3.00-bp150.3.7.1.x86_64.rpm jhead-3.00-bp150.3.7.1.aarch64.rpm jhead-3.00-bp150.3.7.1.ppc64le.rpm jhead-3.00-bp150.3.7.1.s390x.rpm openSUSE-2018-1289 moderate openSUSE Backports SLE-15 Update This update for gettext-runtime provides the following fix: - Reset the length of message string after a line has been removed to fix a crash in msgfmt when writing java source code and the .po file has a POT-Creation-Date header. (bsc#1106843) This update was imported from the SUSE:SLE-15:Update update project. gettext-csharp-0.19.8.1-bp150.2.3.1.src.rpm gettext-csharp-0.19.8.1-bp150.2.3.1.x86_64.rpm gettext-csharp-0.19.8.1-bp150.2.3.1.aarch64.rpm gettext-csharp-0.19.8.1-bp150.2.3.1.ppc64le.rpm openSUSE-2019-18 low openSUSE Backports SLE-15 Update This update for gnucash-docs fixes the following issue: - gnucash-docs did not recommend gnome-help and may have been unable to retrieve and open guide files (boo#1099804) gnucash-docs-3.0-bp150.3.3.1.noarch.rpm gnucash-docs-3.0-bp150.3.3.1.src.rpm openSUSE-2018-1394 moderate openSUSE Backports SLE-15 Update This update for fence-agents fixes the following issues: - Enable GCE fence agent for all targets. (fate#325539, bsc#1088358) - Enable fence_openstack agent (bsc#1097803) The following packages were updated to the versions used in SLE 15: python-google-api-python-client: - update to 1.6.7 This update was imported from the SUSE:SLE-15:Update update project. This update was imported from the openSUSE:Leap:15.0:Update update project. fence-agents-4.2.1+git.1529316875.1a39345b-bp150.2.1.src.rpm fence-agents-4.2.1+git.1529316875.1a39345b-bp150.2.1.x86_64.rpm fence-agents-debuginfo-4.2.1+git.1529316875.1a39345b-bp150.2.1.x86_64.rpm fence-agents-debugsource-4.2.1+git.1529316875.1a39345b-bp150.2.1.x86_64.rpm fence-agents-devel-4.2.1+git.1529316875.1a39345b-bp150.2.1.x86_64.rpm python-google-api-python-client-1.6.7-bp150.2.3.1.src.rpm python2-google-api-python-client-1.6.7-bp150.2.3.1.noarch.rpm python3-google-api-python-client-1.6.7-bp150.2.3.1.noarch.rpm openSUSE-2019-926 moderate openSUSE Backports SLE-15 Update This update contains restic 0.9.3 and includes all upstream bug fixes and improvements in this version (boo#1115498): - Fixes for various issues affecting backup and restore - Various improvements to output and option handling - Improvements and corrections to the scanner - The ls command can not be filtered by directories - Allow saving files/directories on different filesystem with --one-file-system - The rclone backend now respects --limit-upload and --limit-download - Uploading of large files to MS Azure is now allowed - When reading backups from stdin (via restic backup --stdin), restic now uses the time stamp for the new backup passed in --time. - restic check now has improved handling of cache - Improvements to the s3 backend - restic forget now has the --keep-within option to keep a range - Add subpackages for command line completions for bash and zsh shells restic-0.9.3-bp150.4.3.1.src.rpm restic-0.9.3-bp150.4.3.1.x86_64.rpm restic-bash-completion-0.9.3-bp150.4.3.1.noarch.rpm restic-zsh-completion-0.9.3-bp150.4.3.1.noarch.rpm restic-0.9.3-bp150.4.3.1.aarch64.rpm restic-0.9.3-bp150.4.3.1.ppc64le.rpm restic-0.9.3-bp150.4.3.1.s390x.rpm openSUSE-2019-928 moderate openSUSE Backports SLE-15 Update This update contains Chromium 70.0.3538.102 and fixes security issues and bugs. Vulnerabilities fixed: - CVE-2018-17478: Out of bounds memory access in V8 (boo#1115537) - Various fixes from internal audits, fuzzing and other initiatives Packaging changes: - noto-emoji-fonts is no longer a recommended dependency chromedriver-70.0.3538.102-bp150.2.17.1.x86_64.rpm chromedriver-debuginfo-70.0.3538.102-bp150.2.17.1.x86_64.rpm chromium-70.0.3538.102-bp150.2.17.1.src.rpm chromium-70.0.3538.102-bp150.2.17.1.x86_64.rpm chromium-debuginfo-70.0.3538.102-bp150.2.17.1.x86_64.rpm chromium-debugsource-70.0.3538.102-bp150.2.17.1.x86_64.rpm chromedriver-70.0.3538.102-bp150.2.17.1.aarch64.rpm chromedriver-debuginfo-70.0.3538.102-bp150.2.17.1.aarch64.rpm chromium-70.0.3538.102-bp150.2.17.1.aarch64.rpm chromium-debuginfo-70.0.3538.102-bp150.2.17.1.aarch64.rpm chromium-debugsource-70.0.3538.102-bp150.2.17.1.aarch64.rpm openSUSE-2019-931 low openSUSE Backports SLE-15 Update This update for libmatroska, mkvtoolnix fixes the following issues: Security issue fixed: - CVE-2018-4022: Fixed use-after-free vulnerability that existed in the way MKV (matroska) file format was handled (bsc#1113709). mkvtoolnix-28.2.0-bp150.2.3.1.src.rpm mkvtoolnix-28.2.0-bp150.2.3.1.x86_64.rpm mkvtoolnix-debuginfo-28.2.0-bp150.2.3.1.x86_64.rpm mkvtoolnix-debugsource-28.2.0-bp150.2.3.1.x86_64.rpm mkvtoolnix-gui-28.2.0-bp150.2.3.1.x86_64.rpm mkvtoolnix-gui-debuginfo-28.2.0-bp150.2.3.1.x86_64.rpm mkvtoolnix-28.2.0-bp150.2.3.1.aarch64.rpm mkvtoolnix-debuginfo-28.2.0-bp150.2.3.1.aarch64.rpm mkvtoolnix-debugsource-28.2.0-bp150.2.3.1.aarch64.rpm mkvtoolnix-gui-28.2.0-bp150.2.3.1.aarch64.rpm mkvtoolnix-gui-debuginfo-28.2.0-bp150.2.3.1.aarch64.rpm mkvtoolnix-28.2.0-bp150.2.3.1.ppc64le.rpm mkvtoolnix-debuginfo-28.2.0-bp150.2.3.1.ppc64le.rpm mkvtoolnix-debugsource-28.2.0-bp150.2.3.1.ppc64le.rpm mkvtoolnix-gui-28.2.0-bp150.2.3.1.ppc64le.rpm mkvtoolnix-gui-debuginfo-28.2.0-bp150.2.3.1.ppc64le.rpm mkvtoolnix-28.2.0-bp150.2.3.1.s390x.rpm mkvtoolnix-debuginfo-28.2.0-bp150.2.3.1.s390x.rpm mkvtoolnix-debugsource-28.2.0-bp150.2.3.1.s390x.rpm mkvtoolnix-gui-28.2.0-bp150.2.3.1.s390x.rpm mkvtoolnix-gui-debuginfo-28.2.0-bp150.2.3.1.s390x.rpm openSUSE-2019-934 low openSUSE Backports SLE-15 Update This update for pgn-extract fixes a crash when called with -h (boo#1116207) pgn-extract-17.55-bp150.3.3.1.src.rpm pgn-extract-17.55-bp150.3.3.1.x86_64.rpm pgn-extract-17.55-bp150.3.3.1.aarch64.rpm pgn-extract-17.55-bp150.3.3.1.ppc64le.rpm pgn-extract-17.55-bp150.3.3.1.s390x.rpm openSUSE-2019-935 low openSUSE Backports SLE-15 Update This optional update for fwts (firmware testsuite) contains a number of improvements in the 18.11.00 version (boo#1116172): - dmicheck: checks (Extended) Maximum Capacity for type 16 - snapcraft: add libbsd-dev to build-packages - efi_runtime: re-enable the resetsystem runtime interface - olog:olog.json: Update OPAL skiboot errors to check on olog scan - acpi: button: check fixed hardware & control method power buttons - kernelscan: add -k option to specify klog json filename - src/lib: add module probing helper functions - lib: fwts_efi_module: use the new module loading helper functions - lib/fwts_cpu: use new use the new module loading helper functions fwts-18.11.00-bp150.3.3.1.src.rpm fwts-18.11.00-bp150.3.3.1.x86_64.rpm fwts-debuginfo-18.11.00-bp150.3.3.1.x86_64.rpm fwts-debugsource-18.11.00-bp150.3.3.1.x86_64.rpm fwts-18.11.00-bp150.3.3.1.aarch64.rpm fwts-debuginfo-18.11.00-bp150.3.3.1.aarch64.rpm fwts-debugsource-18.11.00-bp150.3.3.1.aarch64.rpm fwts-18.11.00-bp150.3.3.1.ppc64le.rpm fwts-debuginfo-18.11.00-bp150.3.3.1.ppc64le.rpm fwts-debugsource-18.11.00-bp150.3.3.1.ppc64le.rpm fwts-18.11.00-bp150.3.3.1.s390x.rpm fwts-debuginfo-18.11.00-bp150.3.3.1.s390x.rpm fwts-debugsource-18.11.00-bp150.3.3.1.s390x.rpm openSUSE-2019-937 moderate openSUSE Backports SLE-15 Update This update for kdeconnect-kde fixes the following issue: - Compatibility issue with the latest version of the KDE Connect Android app (boo#1116123) This update also contains all upstream bug fixes and improvements in the 1.3.3 version, including: - minor UI updates - Fix a number of hands when copying or reconnecting kdeconnect-kde-1.3.3-bp150.3.3.1.src.rpm kdeconnect-kde-1.3.3-bp150.3.3.1.x86_64.rpm kdeconnect-kde-lang-1.3.3-bp150.3.3.1.noarch.rpm kdeconnect-kde-1.3.3-bp150.3.3.1.aarch64.rpm kdeconnect-kde-1.3.3-bp150.3.3.1.ppc64le.rpm kdeconnect-kde-1.3.3-bp150.3.3.1.s390x.rpm openSUSE-2018-1441 moderate openSUSE Backports SLE-15 Update This update for GraphicsMagick fixes the following issues: Security issue fixed: - CVE-2018-18544: Fixed memory leak in the function WriteMSLImage of coders/msl.c (bsc#1113064). Non-security issues fixed: - asan_build: build ASAN included - debug_build: build more suitable for debugging This update was imported from the openSUSE:Leap:15.0:Update update project. GraphicsMagick-1.3.29-bp150.2.9.1.src.rpm GraphicsMagick-1.3.29-bp150.2.9.1.x86_64.rpm GraphicsMagick-devel-1.3.29-bp150.2.9.1.x86_64.rpm libGraphicsMagick++-Q16-12-1.3.29-bp150.2.9.1.x86_64.rpm libGraphicsMagick++-devel-1.3.29-bp150.2.9.1.x86_64.rpm libGraphicsMagick-Q16-3-1.3.29-bp150.2.9.1.x86_64.rpm libGraphicsMagick3-config-1.3.29-bp150.2.9.1.x86_64.rpm libGraphicsMagickWand-Q16-2-1.3.29-bp150.2.9.1.x86_64.rpm perl-GraphicsMagick-1.3.29-bp150.2.9.1.x86_64.rpm openSUSE-2019-944 important openSUSE Backports SLE-15 Update This update for breeze-gtk fixes the following issues: - scroll bars in LibreOffice did not work correctly on KDE (boo#1116859) breeze-gtk-5.12.7-bp150.3.6.1.src.rpm breeze-gtk-debugsource-5.12.7-bp150.3.6.1.x86_64.rpm gtk2-metatheme-breeze-5.12.7-bp150.3.6.1.noarch.rpm gtk3-metatheme-breeze-5.12.7-bp150.3.6.1.noarch.rpm metatheme-breeze-common-5.12.7-bp150.3.6.1.x86_64.rpm metatheme-breeze-common-debuginfo-5.12.7-bp150.3.6.1.x86_64.rpm breeze-gtk-debugsource-5.12.7-bp150.3.6.1.aarch64.rpm metatheme-breeze-common-5.12.7-bp150.3.6.1.aarch64.rpm metatheme-breeze-common-debuginfo-5.12.7-bp150.3.6.1.aarch64.rpm breeze-gtk-debugsource-5.12.7-bp150.3.6.1.ppc64le.rpm metatheme-breeze-common-5.12.7-bp150.3.6.1.ppc64le.rpm metatheme-breeze-common-debuginfo-5.12.7-bp150.3.6.1.ppc64le.rpm breeze-gtk-debugsource-5.12.7-bp150.3.6.1.s390x.rpm metatheme-breeze-common-5.12.7-bp150.3.6.1.s390x.rpm metatheme-breeze-common-debuginfo-5.12.7-bp150.3.6.1.s390x.rpm openSUSE-2019-945 important openSUSE Backports SLE-15 Update This update for Chromium to version 70.0.3538.110 fixes the following security issue: - CVE-2018-17479: Use-after-free in GPU (boo#1116608) chromedriver-70.0.3538.110-bp150.2.20.1.x86_64.rpm chromedriver-debuginfo-70.0.3538.110-bp150.2.20.1.x86_64.rpm chromium-70.0.3538.110-bp150.2.20.1.src.rpm chromium-70.0.3538.110-bp150.2.20.1.x86_64.rpm chromium-debuginfo-70.0.3538.110-bp150.2.20.1.x86_64.rpm chromium-debugsource-70.0.3538.110-bp150.2.20.1.x86_64.rpm chromedriver-70.0.3538.110-bp150.2.20.1.aarch64.rpm chromedriver-debuginfo-70.0.3538.110-bp150.2.20.1.aarch64.rpm chromium-70.0.3538.110-bp150.2.20.1.aarch64.rpm chromium-debuginfo-70.0.3538.110-bp150.2.20.1.aarch64.rpm chromium-debugsource-70.0.3538.110-bp150.2.20.1.aarch64.rpm openSUSE-2019-953 low openSUSE Backports SLE-15 Update This update for python-mutt-ics introduces pakage to distribution: - python-mutt-ics can be used to read ics invitations in mutt python-mutt-ics-0.8-bp150.2.1.src.rpm python2-mutt-ics-0.8-bp150.2.1.noarch.rpm python3-mutt-ics-0.8-bp150.2.1.noarch.rpm openSUSE-2019-957 moderate openSUSE Backports SLE-15 Update This update for transactional-update fixes the following issues: - Update to version 2.11 - Update man page to explain new /etc overlay handling - Add special handling for migrating away from old overlay directory - Read default update method for systemd service from config file - Add package "transactional-update-zypp-config" to prevent accidental transactional-update uninstallation on transactional systems (boo#1111319) - Use "up" for systemd service on non-rolling release distributions (boo#1111321) - Introduce /etc overlays - Add compatibility with snapper >= 0.7.0 - Correctly detect BTRFS ID when using multiple snapper configurations - Fix disappearing prompt in "shell" command when application was updated - Prevent accidental rollback on fast reboots (boo#1111786) - Use zypper attribute packages-to-change if available (boo#1105992 and boo#1097619) - Add kexec as reboot alternative - Added explicit --with-doc / --without-doc build configure opttions for enforcing or excluding documentation build - Removed precompiled documentation (boo#1088676) - Added more dependency checks to configure script - Small improvements to documentation - Restored compatibility with older rsync versions not supporting the -x filter - Small bugfixes for cleanup in error situations - Fix possible incorrect detection of snapshots numbers during cleanup - Mention parent in snapshot description - Add dependencies for documentation build (boo#1088676) transactional-update-2.11-bp150.2.6.1.src.rpm transactional-update-2.11-bp150.2.6.1.x86_64.rpm transactional-update-debuginfo-2.11-bp150.2.6.1.x86_64.rpm transactional-update-debugsource-2.11-bp150.2.6.1.x86_64.rpm transactional-update-zypp-config-2.11-bp150.2.6.1.noarch.rpm transactional-update-2.11-bp150.2.6.1.aarch64.rpm transactional-update-debuginfo-2.11-bp150.2.6.1.aarch64.rpm transactional-update-debugsource-2.11-bp150.2.6.1.aarch64.rpm transactional-update-2.11-bp150.2.6.1.ppc64le.rpm transactional-update-debuginfo-2.11-bp150.2.6.1.ppc64le.rpm transactional-update-debugsource-2.11-bp150.2.6.1.ppc64le.rpm transactional-update-2.11-bp150.2.6.1.s390x.rpm transactional-update-debuginfo-2.11-bp150.2.6.1.s390x.rpm transactional-update-debugsource-2.11-bp150.2.6.1.s390x.rpm openSUSE-2018-1467 moderate openSUSE Backports SLE-15 Update This update for SDL2_image fixes the following issues: Security issues fixed: - CVE-2018-3839: Fixed an exploitable code execution vulnerability that existed in the XCF image rendering functionality of the Simple DirectMedia Layer (bsc#1089087). - CVE-2018-3977: Fixed a possible code execution via creafted XCF image that could have caused a heap overflow (bsc#1114519). This update was imported from the openSUSE:Leap:15.0:Update update project. SDL2_image-2.0.4-bp150.3.3.1.src.rpm libSDL2_image-2_0-0-2.0.4-bp150.3.3.1.x86_64.rpm libSDL2_image-devel-2.0.4-bp150.3.3.1.x86_64.rpm libSDL2_image-2_0-0-2.0.4-bp150.3.3.1.aarch64.rpm libSDL2_image-2_0-0-64bit-2.0.4-bp150.3.3.1.aarch64_ilp32.rpm libSDL2_image-devel-2.0.4-bp150.3.3.1.aarch64.rpm libSDL2_image-devel-64bit-2.0.4-bp150.3.3.1.aarch64_ilp32.rpm libSDL2_image-2_0-0-2.0.4-bp150.3.3.1.ppc64le.rpm libSDL2_image-devel-2.0.4-bp150.3.3.1.ppc64le.rpm libSDL2_image-2_0-0-2.0.4-bp150.3.3.1.s390x.rpm libSDL2_image-devel-2.0.4-bp150.3.3.1.s390x.rpm openSUSE-2019-968 low openSUSE Backports SLE-15 Update This update for prosody fixes the following issues: Security issue fixed: - Fixed information disclosure list of members of members-only and password-protected rooms (boo#1117774). prosody-0.10.3-bp150.2.3.1.src.rpm prosody-0.10.3-bp150.2.3.1.x86_64.rpm prosody-debuginfo-0.10.3-bp150.2.3.1.x86_64.rpm prosody-debugsource-0.10.3-bp150.2.3.1.x86_64.rpm prosody-0.10.3-bp150.2.3.1.aarch64.rpm prosody-debuginfo-0.10.3-bp150.2.3.1.aarch64.rpm prosody-debugsource-0.10.3-bp150.2.3.1.aarch64.rpm prosody-0.10.3-bp150.2.3.1.ppc64le.rpm prosody-debuginfo-0.10.3-bp150.2.3.1.ppc64le.rpm prosody-debugsource-0.10.3-bp150.2.3.1.ppc64le.rpm prosody-0.10.3-bp150.2.3.1.s390x.rpm prosody-debuginfo-0.10.3-bp150.2.3.1.s390x.rpm prosody-debugsource-0.10.3-bp150.2.3.1.s390x.rpm openSUSE-2019-973 moderate openSUSE Backports SLE-15 Update This update for otrs fixes the following issues: Update to version 4.0.33. Security issues fixed: - CVE-2018-19141: Fixed privilege escalation, that an attacker who is logged into OTRS as an admin user cannot manipulate the URL to cause execution of JavaScript in the context of OTRS. - CVE-2018-19143: Fixed remote file deletion, that an attacker who is logged into OTRS as a user cannot manipulate the submission form to cause deletion of arbitrary files that the OTRS web server user has write access to. Non-security issues fixed: - Full release notes can be found at: * https://community.otrs.com/release-notes-otrs-4-patch-level-33/ otrs-4.0.33-bp150.3.6.1.noarch.rpm otrs-4.0.33-bp150.3.6.1.src.rpm otrs-doc-4.0.33-bp150.3.6.1.noarch.rpm otrs-itsm-4.0.33-bp150.3.6.1.noarch.rpm openSUSE-2019-977 important openSUSE Backports SLE-15 Update This update to Chromium version 71.0.3578.80 fixes security issues and bugs. Security issues fixed (boo#1118529): - CVE-2018-17480: Out of bounds write in V8 - CVE-2018-17481: Use after frees in PDFium - CVE-2018-18335: Heap buffer overflow in Skia - CVE-2018-18336: Use after free in PDFium - CVE-2018-18337: Use after free in Blink - CVE-2018-18338: Heap buffer overflow in Canvas - CVE-2018-18339: Use after free in WebAudio - CVE-2018-18340: Use after free in MediaRecorder - CVE-2018-18341: Heap buffer overflow in Blink - CVE-2018-18342: Out of bounds write in V8 - CVE-2018-18343: Use after free in Skia - CVE-2018-18344: Inappropriate implementation in Extensions - Multiple issues in SQLite via WebSQL - CVE-2018-18345: Inappropriate implementation in Site Isolation - CVE-2018-18346: Incorrect security UI in Blink - CVE-2018-18347: Inappropriate implementation in Navigation - CVE-2018-18348: Inappropriate implementation in Omnibox - CVE-2018-18349: Insufficient policy enforcement in Blink - CVE-2018-18350: Insufficient policy enforcement in Blink - CVE-2018-18351: Insufficient policy enforcement in Navigation - CVE-2018-18352: Inappropriate implementation in Media - CVE-2018-18353: Inappropriate implementation in Network Authentication - CVE-2018-18354: Insufficient data validation in Shell Integration - CVE-2018-18355: Insufficient policy enforcement in URL Formatter - CVE-2018-18356: Use after free in Skia - CVE-2018-18357: Insufficient policy enforcement in URL Formatter - CVE-2018-18358: Insufficient policy enforcement in Proxy - CVE-2018-18359: Out of bounds read in V8 - Inappropriate implementation in PDFium - Use after free in Extensions - Inappropriate implementation in Navigation - Insufficient policy enforcement in Navigation - Insufficient policy enforcement in URL Formatter - Various fixes from internal audits, fuzzing and other initiatives The following changes are included: - advertisements posing as error messages are now blocked - Automatic playing of content at page load mostly disabled - New JavaScript API for relative time display chromedriver-71.0.3578.80-bp150.2.23.1.x86_64.rpm chromedriver-debuginfo-71.0.3578.80-bp150.2.23.1.x86_64.rpm chromium-71.0.3578.80-bp150.2.23.1.src.rpm chromium-71.0.3578.80-bp150.2.23.1.x86_64.rpm chromium-debuginfo-71.0.3578.80-bp150.2.23.1.x86_64.rpm chromium-debugsource-71.0.3578.80-bp150.2.23.1.x86_64.rpm chromedriver-71.0.3578.80-bp150.2.23.1.aarch64.rpm chromedriver-debuginfo-71.0.3578.80-bp150.2.23.1.aarch64.rpm chromium-71.0.3578.80-bp150.2.23.1.aarch64.rpm chromium-debuginfo-71.0.3578.80-bp150.2.23.1.aarch64.rpm chromium-debugsource-71.0.3578.80-bp150.2.23.1.aarch64.rpm openSUSE-2019-981 low openSUSE Backports SLE-15 Update This update for messagelib fixes the following issues: The following security vulnerability was addressed: - CVE-2018-19516: Fix a potential issue with opening messages in a new browser window when displaying mails as HTML (boo#1117958). messagelib-17.12.3-bp150.3.6.1.src.rpm messagelib-17.12.3-bp150.3.6.1.x86_64.rpm messagelib-devel-17.12.3-bp150.3.6.1.x86_64.rpm messagelib-lang-17.12.3-bp150.3.6.1.noarch.rpm openSUSE-2018-1492 moderate openSUSE Backports SLE-15 Update This update for dom4j fixes the following issues: - CVE-2018-1000632: Prevent XML injection that could have resulted in an attacker tampering with XML documents (bsc#1105443). This update was imported from the SUSE:SLE-15:Update update project. This update was imported from the openSUSE:Leap:15.0:Update update project. dom4j-1.6.1-bp150.2.3.1.noarch.rpm dom4j-1.6.1-bp150.2.3.1.src.rpm dom4j-demo-1.6.1-bp150.2.3.1.noarch.rpm dom4j-javadoc-1.6.1-bp150.2.3.1.noarch.rpm dom4j-manual-1.6.1-bp150.2.3.1.noarch.rpm openSUSE-2019-992 moderate openSUSE Backports SLE-15 Update This update for zynaddsubfx fixes the following issues: - Require zynaddsubfx-common subpackage which is needed to run and fixes boo#1116460. - README.adoc states license is GPL 2+, updated %License field. zynaddsubfx-3.0.3-bp150.3.3.1.src.rpm zynaddsubfx-3.0.3-bp150.3.3.1.x86_64.rpm zynaddsubfx-common-3.0.3-bp150.3.3.1.noarch.rpm zynaddsubfx-dssi-3.0.3-bp150.3.3.1.x86_64.rpm zynaddsubfx-lv2-3.0.3-bp150.3.3.1.x86_64.rpm zynaddsubfx-vst-3.0.3-bp150.3.3.1.x86_64.rpm zynaddsubfx-3.0.3-bp150.3.3.1.aarch64.rpm zynaddsubfx-dssi-3.0.3-bp150.3.3.1.aarch64.rpm zynaddsubfx-lv2-3.0.3-bp150.3.3.1.aarch64.rpm zynaddsubfx-vst-3.0.3-bp150.3.3.1.aarch64.rpm zynaddsubfx-3.0.3-bp150.3.3.1.ppc64le.rpm zynaddsubfx-dssi-3.0.3-bp150.3.3.1.ppc64le.rpm zynaddsubfx-lv2-3.0.3-bp150.3.3.1.ppc64le.rpm zynaddsubfx-vst-3.0.3-bp150.3.3.1.ppc64le.rpm zynaddsubfx-3.0.3-bp150.3.3.1.s390x.rpm zynaddsubfx-dssi-3.0.3-bp150.3.3.1.s390x.rpm zynaddsubfx-lv2-3.0.3-bp150.3.3.1.s390x.rpm zynaddsubfx-vst-3.0.3-bp150.3.3.1.s390x.rpm openSUSE-2019-995 moderate openSUSE Backports SLE-15 Update This update for erlang fixes the following issues: Erlang was updated to 18.3.4.11 (boo#1118867) or to 20.3.8.15 (boo#1118869) Changes for 18.3.4.11: * stdlib: List subtraction (The -- operator) will now yield properly on large inputs. * erts: List subtraction (The -- operator) will now yield properly on large inputs. * erts: Fixed small memory leak that could occur when sending to a terminating port. * ssh: Fix rare spurios shutdowns of ssh servers when receiveing {'EXIT',_,normal} messages. * ssh: Default exec is disabled when a user-defined shell is enabled Changes for 20.3.8.15: * asn1: Handle erroneous length during decode (BER only) without crashing. * ssh: Incompatibility with newer OpenSSH fixed. Previously versions 7.8 and later could cause Erlang SSH to exit. * ssl: Add engine support for RSA key exchange * erts: List subtraction (The -- operator) will now yield properly on large inputs. * stdlib: List subtraction (The -- operator) will now yield properly on large inputs. * ssl: Extend check for undelivered data at closing, could under some circumstances fail to deliverd all data that was acctualy recivied. * erts: ERTS internal trees of monitor structures could get into an inconsistent state. This could cause 'DOWN' messages not to be delivered when they should, as well as delivery of 'DOWN' messages that should not be delivered. * erts: Fixed bug in ets:select_replace when called with a fully bound key could cause a following call to ets:next or ets:prev to crash the emulator or return invalid result. * eldap: A race condition at close could cause the eldap client to exit with a badarg message as cause. - http://erlang.org/download/OTP-20.3.8.9.README * Fix a regression in OTP-15204 that removed .beam file metadata - http://erlang.org/download/OTP-20.3.8.8.README * inets: Do not use chunked-encoding with 1xx, 204 and 304 responses when using mod_esi * inets: Add robust handling of chunked-encoded HTTP responses with an empty body (1xx, 204, 304) - Changes for 20.3.8.7: - http://erlang.org/download/OTP-20.3.8.7.README * crypto: Update the crypto engine functions to handle multiple loads of an engine * mnesia: Fixed a bug where the bag table index data was not deleted when objects were deleted. * inets: Change status code for no mod found to handle request to 501 * erts: Fixed a bug causing some Erlang references to be inconsistently ordered. This could for example cause failure to look up certain elements with references as keys in search data structures. This bug was introduced in R13B02. Thanks to Simon Cornish for finding the bug and supplying a fix. * compiler: Fixed an issue where files compiled with the +deterministic option differed if they were compiled in a different directory but were otherwise identical. * crypto: Fixed a node crash in crypto:compute_key(ecdh, ...) when passing a wrongly typed Others argument. * erts: Fixed a bug which caused an emulator crash when enif_send() was called by a NIF that executed on a dirty scheduler. The bug was either triggered when the NIF called enif_send() without a message environment, or when the process executing the NIF was send traced. * erts: Fixed a bug causing some Erlang references to be inconsistently ordered. This could for example cause failure to look up certain elements with references as keys in search data structures. This bug was introduced in R13B02. Thanks to Simon Cornish for finding the bug and supplying a fix. * mnesia: When master node is set do not force a load from ram_copies replica when there are no available disc_copies, since that would load an empty table. Wait until a disk replica is available or until user explicitly force_loads the table. * mnesia: Allow to add replicas even if all other replicas are down when the other replicase are not stored on disk. * ssl: Correct handling of empty server SNI extension * ssl: Correct cipher suite handling for ECDHE_*, the incorrect handling could cause an incorrrect suite to be selected and most likly fail the handshake. * asn1: A bug in ASN.1 BER decoding has been fixed. When decoding a recursively enclosed term the length was not propagated to that term decoding, so if the length of the enclosed term was longer than the enclosing that error was not dectected. A hard coded C stack limitation for decoding recursive ASN.1 terms has been introduced. This is currently set to 8 kWords giving a nesting depth of about 1000 levels. Deeper terms can not be decoded, which should not be much of a real world limitation. * erts: Fixed a race condition in the inet driver that could cause receive to hang when the emulator was compiled with gcc8. * erts: Fix bug in generation of erl_crash.dump, which could cause VM to crash. Bug exist since erts-9.2 (OTP-20.2). * ic: Fixed potential buffer overflow bugs in oe_ei_encode_long/ulong/longlong/ulonglong functions on 64-bit architectures. These functions expect 32 bit integers as the IDL type "long" is defined as 32 bits. But there is nothing preventing user code from "breaking" the interface and pass larger values on 64-bit architectures where the C type "long" is 64 bits. * inets: Enhance error handling, that is mod_get will return 403 if a path is a directory and not a file. * kernel: Non semantic change in dist_util.erl to silence dialyzer warning. * ssl: Improve cipher suite handling correcting ECC and TLS-1.2 requierments. Backport of solution for ERL-641 * ssl: Option keyfile defaults to certfile and should be trumped with key. This failed for engine keys. * erl_interface: Make ei_connect and friends also accept state ok_simultaneous during handshake, which means the other node has initiated a connection setup that will be cancelled in favor of this connection. * erts: Fixed a rare bug that could cause processes to be scheduled after they had been freed. * ic: Fixed bug in ic causing potential buffer overrun in funtion oe_ei_encode_atom. Bug exists since ic-4.4.4 (OTP-20.3.4). * kernel: Fix some potential buggy behavior in how ticks are sent on inter node distribution connections. Tick is now sent to c-node even if there are unsent buffered data, as c-nodes need ticks in order to send reply ticks. The amount of sent data was also calculated wrongly when ticks were suppressed due to unsent buffered data. * inets: Options added for setting low-level properties on the underlying TCP connections. The options are: sock_ctrl, sock_data_act and sock_data_pass. See the manual for details. * ssh: SFTP clients reported the error reason "" if a non-OTP sftp server was killed during a long file transmission. Now the signal name (for example "KILL") will be the error reason if the server's reason is empty. The documentation also lacked type information about this class of errors. * ssh: Fix ssh_sftp decode error for sftp protocol version 4 * syntax_tools: Fix a bug regarding reverting map types. erlang-20.3.8.15-bp150.3.3.1.src.rpm erlang-20.3.8.15-bp150.3.3.1.x86_64.rpm erlang-debugger-20.3.8.15-bp150.3.3.1.x86_64.rpm erlang-debugger-src-20.3.8.15-bp150.3.3.1.x86_64.rpm erlang-dialyzer-20.3.8.15-bp150.3.3.1.x86_64.rpm erlang-dialyzer-src-20.3.8.15-bp150.3.3.1.x86_64.rpm erlang-diameter-20.3.8.15-bp150.3.3.1.x86_64.rpm erlang-diameter-src-20.3.8.15-bp150.3.3.1.x86_64.rpm erlang-doc-20.3.8.15-bp150.3.3.1.x86_64.rpm erlang-epmd-20.3.8.15-bp150.3.3.1.x86_64.rpm erlang-et-20.3.8.15-bp150.3.3.1.x86_64.rpm erlang-et-src-20.3.8.15-bp150.3.3.1.x86_64.rpm erlang-jinterface-20.3.8.15-bp150.3.3.1.x86_64.rpm erlang-jinterface-src-20.3.8.15-bp150.3.3.1.x86_64.rpm erlang-observer-20.3.8.15-bp150.3.3.1.x86_64.rpm erlang-observer-src-20.3.8.15-bp150.3.3.1.x86_64.rpm erlang-reltool-20.3.8.15-bp150.3.3.1.x86_64.rpm erlang-reltool-src-20.3.8.15-bp150.3.3.1.x86_64.rpm erlang-src-20.3.8.15-bp150.3.3.1.x86_64.rpm erlang-wx-20.3.8.15-bp150.3.3.1.x86_64.rpm erlang-wx-src-20.3.8.15-bp150.3.3.1.x86_64.rpm openSUSE-2019-996 moderate openSUSE Backports SLE-15 Update This update for trustedgrub2 fixes the following issues: - Fix "no symbol table" error on new binutil, backport patches (boo#1100984) - Fix packed-not-aligned error on GCC 8 (boo#1084632) - Allow to execute menuentry unrestricted as default (fate#318574) (boo#1052420) trustedgrub2-1.4.0-bp150.3.3.1.src.rpm trustedgrub2-1.4.0-bp150.3.3.1.x86_64.rpm trustedgrub2-i386-pc-1.4.0-bp150.3.3.1.noarch.rpm openSUSE-2019-997 important openSUSE Backports SLE-15 Update This update for exfat-utils, fuse-exfat fixes the following issues: - exfat file systems generated on Linux may have been corrupted when opening them on Windows (boo#1118871) exfat-utils-1.2.8-bp150.3.3.1.src.rpm exfat-utils-1.2.8-bp150.3.3.1.x86_64.rpm exfat-utils-debuginfo-1.2.8-bp150.3.3.1.x86_64.rpm exfat-utils-debugsource-1.2.8-bp150.3.3.1.x86_64.rpm fuse-exfat-1.2.8-bp150.3.3.1.src.rpm fuse-exfat-1.2.8-bp150.3.3.1.x86_64.rpm fuse-exfat-debuginfo-1.2.8-bp150.3.3.1.x86_64.rpm fuse-exfat-debugsource-1.2.8-bp150.3.3.1.x86_64.rpm exfat-utils-1.2.8-bp150.3.3.1.aarch64.rpm exfat-utils-debuginfo-1.2.8-bp150.3.3.1.aarch64.rpm exfat-utils-debugsource-1.2.8-bp150.3.3.1.aarch64.rpm fuse-exfat-1.2.8-bp150.3.3.1.aarch64.rpm fuse-exfat-debuginfo-1.2.8-bp150.3.3.1.aarch64.rpm fuse-exfat-debugsource-1.2.8-bp150.3.3.1.aarch64.rpm exfat-utils-1.2.8-bp150.3.3.1.ppc64le.rpm exfat-utils-debuginfo-1.2.8-bp150.3.3.1.ppc64le.rpm exfat-utils-debugsource-1.2.8-bp150.3.3.1.ppc64le.rpm fuse-exfat-1.2.8-bp150.3.3.1.ppc64le.rpm fuse-exfat-debuginfo-1.2.8-bp150.3.3.1.ppc64le.rpm fuse-exfat-debugsource-1.2.8-bp150.3.3.1.ppc64le.rpm exfat-utils-1.2.8-bp150.3.3.1.s390x.rpm exfat-utils-debuginfo-1.2.8-bp150.3.3.1.s390x.rpm exfat-utils-debugsource-1.2.8-bp150.3.3.1.s390x.rpm fuse-exfat-1.2.8-bp150.3.3.1.s390x.rpm fuse-exfat-debuginfo-1.2.8-bp150.3.3.1.s390x.rpm fuse-exfat-debugsource-1.2.8-bp150.3.3.1.s390x.rpm openSUSE-2019-1006 important openSUSE Backports SLE-15 Update This update to Chromium 71.0.3578.98 fixes on security issue. - CVE-2018-17481: Use after free in PDFium - a follow-up fix to Chromiun 70 (boo#1119364) chromedriver-71.0.3578.98-bp150.2.26.1.x86_64.rpm chromedriver-debuginfo-71.0.3578.98-bp150.2.26.1.x86_64.rpm chromium-71.0.3578.98-bp150.2.26.1.src.rpm chromium-71.0.3578.98-bp150.2.26.1.x86_64.rpm chromium-debuginfo-71.0.3578.98-bp150.2.26.1.x86_64.rpm chromium-debugsource-71.0.3578.98-bp150.2.26.1.x86_64.rpm chromedriver-71.0.3578.98-bp150.2.26.1.aarch64.rpm chromedriver-debuginfo-71.0.3578.98-bp150.2.26.1.aarch64.rpm chromium-71.0.3578.98-bp150.2.26.1.aarch64.rpm chromium-debuginfo-71.0.3578.98-bp150.2.26.1.aarch64.rpm chromium-debugsource-71.0.3578.98-bp150.2.26.1.aarch64.rpm openSUSE-2019-1008 moderate openSUSE Backports SLE-15 Update This update for keepalived to version 2.0.10 fixes the following issues: Security issues fixed (bsc#1015141): - CVE-2018-19044: Fixed a check for pathnames with symlinks when writing data to a temporary file upon a call to PrintData or PrintStats - CVE-2018-19045: Fixed mode when creating new temporary files upon a call to PrintData or PrintStats - CVE-2018-19046: Fixed a check for existing plain files when writing data to a temporary file upon a call to PrintData or PrintStats Non-security issues fixed: - Replace references to /var/adm/fillup-templates with new %_fillupdir macro (boo#1069468) - Use getaddrinfo instead of gethostbyname to workaround glibc gethostbyname function buffer overflow (bsc#949238) For the full list of changes refer to: http://www.keepalived.org/changelog.html keepalived-2.0.10-bp150.3.4.1.src.rpm keepalived-2.0.10-bp150.3.4.1.x86_64.rpm keepalived-2.0.10-bp150.3.4.1.aarch64.rpm keepalived-2.0.10-bp150.3.4.1.ppc64le.rpm keepalived-2.0.10-bp150.3.4.1.s390x.rpm openSUSE-2019-1009 moderate openSUSE Backports SLE-15 Update This update for phpMyAdmin fixes security issues and bugs. Security issues addressed in the 4.8.4 release (bsc#1119245): - CVE-2018-19968: Local file inclusion through transformation feature - CVE-2018-19969: XSRF/CSRF vulnerability - CVE-2018-19970: XSS vulnerability in navigation tree This update also contains the following upstream bug fixes and improvements: - Ensure that database names with a dot ('.') are handled properly when DisableIS is true - Fix for message "Error while copying database (pma__column_info)" - Move operation causes "SELECT * FROM `undefined`" error - When logging with $cfg['AuthLog'] to syslog, successful login messages were not logged when $cfg['AuthLogSuccess'] was true - Multiple errors and regressions with Designer phpMyAdmin-4.8.4-bp150.3.6.1.noarch.rpm phpMyAdmin-4.8.4-bp150.3.6.1.src.rpm openSUSE-2019-17 moderate openSUSE Backports SLE-15 Update This update for sxiv contains the following bug fix: - sxiv may have failed to load images due to a missing dependency on imlib2-loaders (boo#1104541) sxiv-24-bp150.3.3.1.src.rpm sxiv-24-bp150.3.3.1.x86_64.rpm sxiv-debuginfo-24-bp150.3.3.1.x86_64.rpm sxiv-debugsource-24-bp150.3.3.1.x86_64.rpm sxiv-24-bp150.3.3.1.aarch64.rpm sxiv-debuginfo-24-bp150.3.3.1.aarch64.rpm sxiv-debugsource-24-bp150.3.3.1.aarch64.rpm sxiv-24-bp150.3.3.1.ppc64le.rpm sxiv-debuginfo-24-bp150.3.3.1.ppc64le.rpm sxiv-debugsource-24-bp150.3.3.1.ppc64le.rpm sxiv-24-bp150.3.3.1.s390x.rpm sxiv-debuginfo-24-bp150.3.3.1.s390x.rpm sxiv-debugsource-24-bp150.3.3.1.s390x.rpm openSUSE-2019-1013 moderate openSUSE Backports SLE-15 Update This update for tryton to version 4.2.19 fixes the following issues: Security issue fixed: - CVE-2018-19443: Fixed an information leakage by attemping to initiate an unencrypted connection, which would fail eventually, but might leak session information of the user (boo#1117105) This update also contains newer versions of tryton related packages with general bug fixes and updates: - trytond 4.2.17 - trytond_account 4.2.10 - trytond_account_invoice 4.2.7 - trytond_purchase_request 4.2.4 - trytond_stock 4.2.8 - trytond_stock_supply 4.2.3 tryton-4.2.19-bp150.2.6.1.noarch.rpm tryton-4.2.19-bp150.2.6.1.src.rpm trytond-4.2.17-bp150.2.6.1.noarch.rpm trytond-4.2.17-bp150.2.6.1.src.rpm trytond_account-4.2.10-bp150.3.3.1.noarch.rpm trytond_account-4.2.10-bp150.3.3.1.src.rpm trytond_account_invoice-4.2.7-bp150.3.3.1.noarch.rpm trytond_account_invoice-4.2.7-bp150.3.3.1.src.rpm trytond_purchase_request-4.2.4-bp150.3.3.1.noarch.rpm trytond_purchase_request-4.2.4-bp150.3.3.1.src.rpm trytond_stock-4.2.8-bp150.3.3.1.noarch.rpm trytond_stock-4.2.8-bp150.3.3.1.src.rpm trytond_stock_supply-4.2.3-bp150.3.6.1.noarch.rpm trytond_stock_supply-4.2.3-bp150.3.6.1.src.rpm openSUSE-2019-7 moderate openSUSE Backports SLE-15 Update This update fixes issues with playing Nexflix on Chromium 71 with Widevine (boo#1120429). chromedriver-71.0.3578.98-bp150.2.29.1.x86_64.rpm chromedriver-debuginfo-71.0.3578.98-bp150.2.29.1.x86_64.rpm chromium-71.0.3578.98-bp150.2.29.1.src.rpm chromium-71.0.3578.98-bp150.2.29.1.x86_64.rpm chromium-debuginfo-71.0.3578.98-bp150.2.29.1.x86_64.rpm chromium-debugsource-71.0.3578.98-bp150.2.29.1.x86_64.rpm chromedriver-71.0.3578.98-bp150.2.29.1.aarch64.rpm chromedriver-debuginfo-71.0.3578.98-bp150.2.29.1.aarch64.rpm chromium-71.0.3578.98-bp150.2.29.1.aarch64.rpm chromium-debuginfo-71.0.3578.98-bp150.2.29.1.aarch64.rpm chromium-debugsource-71.0.3578.98-bp150.2.29.1.aarch64.rpm openSUSE-2018-1571 moderate openSUSE Backports SLE-15 Update This update for pdns fixes the following issues: Security issues fixed: - CVE-2018-10851: Fixed denial of service via crafted zone record or crafted answer (bsc#1114157). - CVE-2018-14626: Fixed packet cache pollution via crafted query (bsc#1114169). This update was imported from the openSUSE:Leap:15.0:Update update project. pdns-4.1.2-bp150.2.3.1.src.rpm pdns-4.1.2-bp150.2.3.1.x86_64.rpm pdns-backend-geoip-4.1.2-bp150.2.3.1.x86_64.rpm pdns-backend-godbc-4.1.2-bp150.2.3.1.x86_64.rpm pdns-backend-ldap-4.1.2-bp150.2.3.1.x86_64.rpm pdns-backend-lua-4.1.2-bp150.2.3.1.x86_64.rpm pdns-backend-mydns-4.1.2-bp150.2.3.1.x86_64.rpm pdns-backend-mysql-4.1.2-bp150.2.3.1.x86_64.rpm pdns-backend-postgresql-4.1.2-bp150.2.3.1.x86_64.rpm pdns-backend-remote-4.1.2-bp150.2.3.1.x86_64.rpm pdns-backend-sqlite3-4.1.2-bp150.2.3.1.x86_64.rpm pdns-4.1.2-bp150.2.3.1.aarch64.rpm pdns-backend-geoip-4.1.2-bp150.2.3.1.aarch64.rpm pdns-backend-godbc-4.1.2-bp150.2.3.1.aarch64.rpm pdns-backend-ldap-4.1.2-bp150.2.3.1.aarch64.rpm pdns-backend-lua-4.1.2-bp150.2.3.1.aarch64.rpm pdns-backend-mydns-4.1.2-bp150.2.3.1.aarch64.rpm pdns-backend-mysql-4.1.2-bp150.2.3.1.aarch64.rpm pdns-backend-postgresql-4.1.2-bp150.2.3.1.aarch64.rpm pdns-backend-remote-4.1.2-bp150.2.3.1.aarch64.rpm pdns-backend-sqlite3-4.1.2-bp150.2.3.1.aarch64.rpm pdns-4.1.2-bp150.2.3.1.ppc64le.rpm pdns-backend-geoip-4.1.2-bp150.2.3.1.ppc64le.rpm pdns-backend-godbc-4.1.2-bp150.2.3.1.ppc64le.rpm pdns-backend-ldap-4.1.2-bp150.2.3.1.ppc64le.rpm pdns-backend-lua-4.1.2-bp150.2.3.1.ppc64le.rpm pdns-backend-mydns-4.1.2-bp150.2.3.1.ppc64le.rpm pdns-backend-mysql-4.1.2-bp150.2.3.1.ppc64le.rpm pdns-backend-postgresql-4.1.2-bp150.2.3.1.ppc64le.rpm pdns-backend-remote-4.1.2-bp150.2.3.1.ppc64le.rpm pdns-backend-sqlite3-4.1.2-bp150.2.3.1.ppc64le.rpm pdns-4.1.2-bp150.2.3.1.s390x.rpm pdns-backend-geoip-4.1.2-bp150.2.3.1.s390x.rpm pdns-backend-godbc-4.1.2-bp150.2.3.1.s390x.rpm pdns-backend-ldap-4.1.2-bp150.2.3.1.s390x.rpm pdns-backend-lua-4.1.2-bp150.2.3.1.s390x.rpm pdns-backend-mydns-4.1.2-bp150.2.3.1.s390x.rpm pdns-backend-mysql-4.1.2-bp150.2.3.1.s390x.rpm pdns-backend-postgresql-4.1.2-bp150.2.3.1.s390x.rpm pdns-backend-remote-4.1.2-bp150.2.3.1.s390x.rpm pdns-backend-sqlite3-4.1.2-bp150.2.3.1.s390x.rpm openSUSE-2018-1570 moderate openSUSE Backports SLE-15 Update This update for pdns-recursor fixes the following issues: Security issues fixed: - CVE-2018-10851: Fixed denial of service via crafted zone record or crafted answer (bsc#1114157). - CVE-2018-14644: Fixed denial of service via crafted query for meta-types (bsc#1114170). - CVE-2018-14626: Fixed packet cache pollution via crafted query (bsc#1114169). - CVE-2018-16855: Fixed case where a crafted query could cause a denial of service (bsc#1116592) This update was imported from the openSUSE:Leap:15.0:Update update project. pdns-recursor-4.1.2-bp150.2.3.1.src.rpm pdns-recursor-4.1.2-bp150.2.3.1.x86_64.rpm pdns-recursor-4.1.2-bp150.2.3.1.aarch64.rpm pdns-recursor-4.1.2-bp150.2.3.1.ppc64le.rpm pdns-recursor-4.1.2-bp150.2.3.1.s390x.rpm openSUSE-2019-1034 moderate openSUSE Backports SLE-15 Update This update for endless-sky fixes the following issues: - Prevent that the game blocks the main menu buttons due to broken symlinks in the data directory caused by brp-25-symlink not handling spaces in paths properly (boo#1119628, boo#1119674) endless-sky-0.9.6-bp150.3.3.1.src.rpm endless-sky-0.9.6-bp150.3.3.1.x86_64.rpm endless-sky-debuginfo-0.9.6-bp150.3.3.1.x86_64.rpm openSUSE-2019-2 low openSUSE Backports SLE-15 Update This update for plasma5-pk-updates fixes the following issues: Various fixes were done to improve the french translations (boo#1086068) plasma5-pk-updates-0.3.2-bp150.2.3.1.src.rpm plasma5-pk-updates-0.3.2-bp150.2.3.1.x86_64.rpm plasma5-pk-updates-lang-0.3.2-bp150.2.3.1.noarch.rpm plasma5-pk-updates-0.3.2-bp150.2.3.1.aarch64.rpm plasma5-pk-updates-0.3.2-bp150.2.3.1.ppc64le.rpm plasma5-pk-updates-0.3.2-bp150.2.3.1.s390x.rpm openSUSE-2019-1042 moderate openSUSE Backports SLE-15 Update This update for python-jira fixes the following issues: - add missing run-time dependency on python-pbr boo#1120127 python-jira-1.0.15-bp150.3.3.1.src.rpm python2-jira-1.0.15-bp150.3.3.1.noarch.rpm python3-jira-1.0.15-bp150.3.3.1.noarch.rpm openSUSE-2019-1043 moderate openSUSE Backports SLE-15 Update This update for libetpan fixes the following issues: libetpan was updated to version 1.9.1 to include the following bug fix: - claws-mail could crash when changing folders in ProtonMail with ProtomMail bridge (boo#1109660) libetpan-1.9.1-bp150.3.3.1.src.rpm libetpan-debugsource-1.9.1-bp150.3.3.1.x86_64.rpm libetpan-devel-1.9.1-bp150.3.3.1.x86_64.rpm libetpan20-1.9.1-bp150.3.3.1.x86_64.rpm libetpan20-debuginfo-1.9.1-bp150.3.3.1.x86_64.rpm libetpan-debugsource-1.9.1-bp150.3.3.1.aarch64.rpm libetpan-devel-1.9.1-bp150.3.3.1.aarch64.rpm libetpan20-1.9.1-bp150.3.3.1.aarch64.rpm libetpan20-debuginfo-1.9.1-bp150.3.3.1.aarch64.rpm libetpan-debugsource-1.9.1-bp150.3.3.1.ppc64le.rpm libetpan-devel-1.9.1-bp150.3.3.1.ppc64le.rpm libetpan20-1.9.1-bp150.3.3.1.ppc64le.rpm libetpan20-debuginfo-1.9.1-bp150.3.3.1.ppc64le.rpm libetpan-debugsource-1.9.1-bp150.3.3.1.s390x.rpm libetpan-devel-1.9.1-bp150.3.3.1.s390x.rpm libetpan20-1.9.1-bp150.3.3.1.s390x.rpm libetpan20-debuginfo-1.9.1-bp150.3.3.1.s390x.rpm openSUSE-2018-1625 important openSUSE Backports SLE-15 Update This update for go fixes the following issues: - golang: arbitrary command execution via VCS path (bsc#1081495, CVE-2018-7187) - Make profile.d/go.sh no longer set GOROOT=, in order to make switching between versions no longer break. This ends up removing the need for go.sh entirely (because GOPATH is also set automatically) (boo#1119634) - Fix a regression that broke go get for import path patterns containing "..." (bsc#1119706) Additionally, the package go1.10 has been added. This update was imported from the SUSE:SLE-15:Update update project. go-1.10.4-bp150.2.3.1.src.rpm go-1.10.4-bp150.2.3.1.x86_64.rpm go-doc-1.10.4-bp150.2.3.1.x86_64.rpm go-race-1.10.4-bp150.2.3.1.x86_64.rpm go1.10-1.10.7-bp150.2.1.src.rpm go1.10-1.10.7-bp150.2.1.x86_64.rpm go1.10-doc-1.10.7-bp150.2.1.x86_64.rpm go1.10-race-1.10.7-bp150.2.1.x86_64.rpm golang-packaging-15.0.11-bp150.3.3.1.noarch.rpm golang-packaging-15.0.11-bp150.3.3.1.src.rpm go-1.10.4-bp150.2.3.1.aarch64.rpm go-doc-1.10.4-bp150.2.3.1.aarch64.rpm go1.10-1.10.7-bp150.2.1.aarch64.rpm go1.10-doc-1.10.7-bp150.2.1.aarch64.rpm go-1.10.4-bp150.2.3.1.ppc64le.rpm go-doc-1.10.4-bp150.2.3.1.ppc64le.rpm go1.10-1.10.7-bp150.2.1.ppc64le.rpm go1.10-doc-1.10.7-bp150.2.1.ppc64le.rpm go-1.10.4-bp150.2.3.1.s390x.rpm go-doc-1.10.4-bp150.2.3.1.s390x.rpm go1.10-1.10.7-bp150.2.1.s390x.rpm go1.10-doc-1.10.7-bp150.2.1.s390x.rpm openSUSE-2019-3 moderate openSUSE Backports SLE-15 Update This update for GraphicsMagick fixes the following issues: Security vulnerabilities fixed: - CVE-2018-20184: Fixed heap-based buffer overflow in the WriteTGAImage function of tga.c (bsc#1119822) - CVE-2018-20189: Fixed denial of service vulnerability in ReadDIBImage function of coders/dib.c (bsc#1119790) This update was imported from the openSUSE:Leap:15.0:Update update project. GraphicsMagick-1.3.29-bp150.2.12.1.src.rpm GraphicsMagick-1.3.29-bp150.2.12.1.x86_64.rpm GraphicsMagick-devel-1.3.29-bp150.2.12.1.x86_64.rpm libGraphicsMagick++-Q16-12-1.3.29-bp150.2.12.1.x86_64.rpm libGraphicsMagick++-devel-1.3.29-bp150.2.12.1.x86_64.rpm libGraphicsMagick-Q16-3-1.3.29-bp150.2.12.1.x86_64.rpm libGraphicsMagick3-config-1.3.29-bp150.2.12.1.x86_64.rpm libGraphicsMagickWand-Q16-2-1.3.29-bp150.2.12.1.x86_64.rpm perl-GraphicsMagick-1.3.29-bp150.2.12.1.x86_64.rpm openSUSE-2019-9 important openSUSE Backports SLE-15 Update This update for singularity to version 2.6.1 fixes the following issues: Security issues fixed: - CVE-2018-19295: Fixed a local root exploit, related to joining arbitrary mount namespaces (boo#1111411). libsingularity1-2.6.1-bp150.3.6.1.x86_64.rpm singularity-2.6.1-bp150.3.6.1.src.rpm singularity-2.6.1-bp150.3.6.1.x86_64.rpm singularity-devel-2.6.1-bp150.3.6.1.x86_64.rpm libsingularity1-2.6.1-bp150.3.6.1.aarch64.rpm singularity-2.6.1-bp150.3.6.1.aarch64.rpm singularity-devel-2.6.1-bp150.3.6.1.aarch64.rpm libsingularity1-2.6.1-bp150.3.6.1.ppc64le.rpm singularity-2.6.1-bp150.3.6.1.ppc64le.rpm singularity-devel-2.6.1-bp150.3.6.1.ppc64le.rpm libsingularity1-2.6.1-bp150.3.6.1.s390x.rpm singularity-2.6.1-bp150.3.6.1.s390x.rpm singularity-devel-2.6.1-bp150.3.6.1.s390x.rpm openSUSE-2019-19 moderate openSUSE Backports SLE-15 Update This update for discount to version 2.2.4 fixes the following issues: Security issues fixed: - CVE-2018-11468: Fixed a heap-based buffer over-read in the __mkd_trim_line function from mkdio.c (boo#1094809) - CVE-2018-12495: Fixed a heap-based buffer over-read via a crafted file (boo#1098252) discount-2.2.4-bp150.3.3.1.src.rpm discount-2.2.4-bp150.3.3.1.x86_64.rpm libmarkdown-devel-2.2.4-bp150.3.3.1.x86_64.rpm libmarkdown2-2.2.4-bp150.3.3.1.x86_64.rpm discount-2.2.4-bp150.3.3.1.aarch64.rpm libmarkdown-devel-2.2.4-bp150.3.3.1.aarch64.rpm libmarkdown2-2.2.4-bp150.3.3.1.aarch64.rpm discount-2.2.4-bp150.3.3.1.ppc64le.rpm libmarkdown-devel-2.2.4-bp150.3.3.1.ppc64le.rpm libmarkdown2-2.2.4-bp150.3.3.1.ppc64le.rpm discount-2.2.4-bp150.3.3.1.s390x.rpm libmarkdown-devel-2.2.4-bp150.3.3.1.s390x.rpm libmarkdown2-2.2.4-bp150.3.3.1.s390x.rpm openSUSE-2019-22 important openSUSE Backports SLE-15 Update This update for gthumb fixes the following issues: Security issue fixed: - CVE-2018-18718: Fixed a double-free in add_themes_from_dir function from dlg-contact-sheet.c (boo#1113749) gthumb-3.6.1-bp150.2.3.1.src.rpm gthumb-3.6.1-bp150.2.3.1.x86_64.rpm gthumb-devel-3.6.1-bp150.2.3.1.x86_64.rpm gthumb-lang-3.6.1-bp150.2.3.1.noarch.rpm openSUSE-2019-48 important openSUSE Backports SLE-15 Update This update for irssi fixes the following issues: - CVE-2019-5882: Use after free when hidden lines were expired from the scroll buffer (boo#1121396) This update to the 1.1.2 version also fixes a number of stability issues and bugs. irssi-1.1.2-bp150.3.4.1.src.rpm irssi-1.1.2-bp150.3.4.1.x86_64.rpm irssi-devel-1.1.2-bp150.3.4.1.x86_64.rpm irssi-1.1.2-bp150.3.4.1.aarch64.rpm irssi-devel-1.1.2-bp150.3.4.1.aarch64.rpm irssi-1.1.2-bp150.3.4.1.ppc64le.rpm irssi-devel-1.1.2-bp150.3.4.1.ppc64le.rpm irssi-1.1.2-bp150.3.4.1.s390x.rpm irssi-devel-1.1.2-bp150.3.4.1.s390x.rpm openSUSE-2019-50 moderate openSUSE Backports SLE-15 Update This update for aria2 fixes the following security issue: - CVE-2019-3500: Metadata and potential password leaks via --log= (boo#1120488) aria2-1.33.1-bp150.3.7.1.src.rpm aria2-1.33.1-bp150.3.7.1.x86_64.rpm aria2-devel-1.33.1-bp150.3.7.1.x86_64.rpm aria2-lang-1.33.1-bp150.3.7.1.noarch.rpm libaria2-0-1.33.1-bp150.3.7.1.x86_64.rpm aria2-1.33.1-bp150.3.7.1.aarch64.rpm aria2-devel-1.33.1-bp150.3.7.1.aarch64.rpm libaria2-0-1.33.1-bp150.3.7.1.aarch64.rpm aria2-1.33.1-bp150.3.7.1.ppc64le.rpm aria2-devel-1.33.1-bp150.3.7.1.ppc64le.rpm libaria2-0-1.33.1-bp150.3.7.1.ppc64le.rpm aria2-1.33.1-bp150.3.7.1.s390x.rpm aria2-devel-1.33.1-bp150.3.7.1.s390x.rpm libaria2-0-1.33.1-bp150.3.7.1.s390x.rpm openSUSE-2019-67 moderate openSUSE Backports SLE-15 Update This update for podofo fixes the following issues: Update to 0.9.6 - Drop multiple patches, now included upstream (like boo#1084894) libpodofo-devel-0.9.6-bp150.3.3.1.x86_64.rpm libpodofo0_9_6-0.9.6-bp150.3.3.1.x86_64.rpm libpodofo0_9_6-debuginfo-0.9.6-bp150.3.3.1.x86_64.rpm podofo-0.9.6-bp150.3.3.1.src.rpm podofo-0.9.6-bp150.3.3.1.x86_64.rpm podofo-debuginfo-0.9.6-bp150.3.3.1.x86_64.rpm podofo-debugsource-0.9.6-bp150.3.3.1.x86_64.rpm libpodofo-devel-0.9.6-bp150.3.3.1.aarch64.rpm libpodofo0_9_6-0.9.6-bp150.3.3.1.aarch64.rpm libpodofo0_9_6-debuginfo-0.9.6-bp150.3.3.1.aarch64.rpm podofo-0.9.6-bp150.3.3.1.aarch64.rpm podofo-debuginfo-0.9.6-bp150.3.3.1.aarch64.rpm podofo-debugsource-0.9.6-bp150.3.3.1.aarch64.rpm libpodofo-devel-0.9.6-bp150.3.3.1.ppc64le.rpm libpodofo0_9_6-0.9.6-bp150.3.3.1.ppc64le.rpm libpodofo0_9_6-debuginfo-0.9.6-bp150.3.3.1.ppc64le.rpm podofo-0.9.6-bp150.3.3.1.ppc64le.rpm podofo-debuginfo-0.9.6-bp150.3.3.1.ppc64le.rpm podofo-debugsource-0.9.6-bp150.3.3.1.ppc64le.rpm libpodofo-devel-0.9.6-bp150.3.3.1.s390x.rpm libpodofo0_9_6-0.9.6-bp150.3.3.1.s390x.rpm libpodofo0_9_6-debuginfo-0.9.6-bp150.3.3.1.s390x.rpm podofo-0.9.6-bp150.3.3.1.s390x.rpm podofo-debuginfo-0.9.6-bp150.3.3.1.s390x.rpm podofo-debugsource-0.9.6-bp150.3.3.1.s390x.rpm openSUSE-2019-58 moderate openSUSE Backports SLE-15 Update This update fixes two security issues in live555: - CVE-2018-4013: Remote code execution vulnerability (bsc#1114779) - CVE-2019-6256: Denial of Service issue with RTSP-over-HTTP tunneling via x-sessioncookie HTTP headers (boo#1121892) This library is statically linked into VLC. However VLC is not affected because it only uses the live555 library to implement the RTSP client. live555-2018.12.14-bp150.3.3.1.src.rpm live555-devel-2018.12.14-bp150.3.3.1.x86_64.rpm live555-devel-2018.12.14-bp150.3.3.1.aarch64.rpm live555-devel-2018.12.14-bp150.3.3.1.ppc64le.rpm live555-devel-2018.12.14-bp150.3.3.1.s390x.rpm openSUSE-2019-107 important openSUSE Backports SLE-15 Update This update for pdns-recursor fixes the following issues: - CVE-2019-3807: Fixed insufficient validation of DNSSEC signatures (boo#1121889) This update was imported from the openSUSE:Leap:15.0:Update update project. pdns-recursor-4.1.2-bp150.2.6.1.src.rpm pdns-recursor-4.1.2-bp150.2.6.1.x86_64.rpm pdns-recursor-4.1.2-bp150.2.6.1.aarch64.rpm pdns-recursor-4.1.2-bp150.2.6.1.ppc64le.rpm pdns-recursor-4.1.2-bp150.2.6.1.s390x.rpm openSUSE-2019-126 moderate openSUSE Backports SLE-15 Update This update for pin fixes the following issues: - read the correct column of /etc/os-release to really fix boo#1095723 - display the correct expected filename if ARCHIVES_*.gz doesn't exist This update was imported from the openSUSE:Leap:15.0:Update update project. pin-0.38-bp150.3.3.1.noarch.rpm pin-0.38-bp150.3.3.1.src.rpm openSUSE-2019-188 moderate openSUSE Backports SLE-15 Update This update for kimageformats fixes the following issues: - Add patch to fix buffer overflows (boo#1123281): kimageformats-5.45.0-bp150.3.3.1.src.rpm kimageformats-5.45.0-bp150.3.3.1.x86_64.rpm kimageformats-debuginfo-5.45.0-bp150.3.3.1.x86_64.rpm kimageformats-debugsource-5.45.0-bp150.3.3.1.x86_64.rpm kimageformats-5.45.0-bp150.3.3.1.aarch64.rpm kimageformats-64bit-5.45.0-bp150.3.3.1.aarch64_ilp32.rpm kimageformats-64bit-debuginfo-5.45.0-bp150.3.3.1.aarch64_ilp32.rpm kimageformats-debuginfo-5.45.0-bp150.3.3.1.aarch64.rpm kimageformats-debugsource-5.45.0-bp150.3.3.1.aarch64.rpm kimageformats-5.45.0-bp150.3.3.1.ppc64le.rpm kimageformats-debuginfo-5.45.0-bp150.3.3.1.ppc64le.rpm kimageformats-debugsource-5.45.0-bp150.3.3.1.ppc64le.rpm kimageformats-5.45.0-bp150.3.3.1.s390x.rpm kimageformats-debuginfo-5.45.0-bp150.3.3.1.s390x.rpm kimageformats-debugsource-5.45.0-bp150.3.3.1.s390x.rpm openSUSE-2019-194 important openSUSE Backports SLE-15 Update This update for phpMyAdmin to version 4.8.5 fixes the following issues: Security issues fixed: - CVE-2019-6799: Fixed an arbitrary file read vulnerability (boo#1123272) - CVE-2019-6798: Fixed a SQL injection in the designer interface (boo#1123271) Other changes: * Fix rxport to SQL format not available * Fix QR code not shown when adding two-factor authentication to a user account * Fix issue with adding a new user in MySQL 8.0.11 and newer * Fix frozen interface relating to Text_Plain_Sql plugin * Fix missing table level operations tab phpMyAdmin-4.8.5-bp150.3.9.1.noarch.rpm phpMyAdmin-4.8.5-bp150.3.9.1.src.rpm openSUSE-2019-239 important openSUSE Backports SLE-15 Update This update for python-python-gnupg to version 0.4.4 fixes the following issues: Security issue fixed: - CVE-2019-6690: Added a check to disallow certain control characters ('\r', '\n', NUL) in passphrases (boo#1123498). This update was imported from the openSUSE:Leap:15.0:Update update project. python-python-gnupg-0.4.4-bp150.2.3.1.src.rpm python2-python-gnupg-0.4.4-bp150.2.3.1.noarch.rpm python3-python-gnupg-0.4.4-bp150.2.3.1.noarch.rpm openSUSE-2019-146 moderate openSUSE Backports SLE-15 Update This update for skiboot fixes the following issues: - skiboot.lid conflicts with qemu which is not allowed in backports so build opal-firmware on OpenSUSE only (boo#1123072). This update was imported from the openSUSE:Leap:15.0:Update update project. opal-prd-5.10-bp150.2.3.1.ppc64le.rpm opal-utils-5.10-bp150.2.3.1.ppc64le.rpm skiboot-5.10-bp150.2.3.1.src.rpm openSUSE-2019-157 moderate openSUSE Backports SLE-15 Update This update provides fixes and improvements for several packages: Package: libtermkey - Version bump to 0.20: * Adds parsing of DCS and OSC control strings * Fixed handling of Ctrl-Space, bugfix for keypad mode switching, endian fix for unicode keys (thanks jamessan) Package: neovim - Puts the system-wide config now in /etc (boo#1098800) - Several other minor changes (see rpm .changes file for more details) - Version bump to 0.3.1 introduced several features, bug fixes, and other changes Package: python-neovim - Version bump to 0.3.1 introduced several smaller changes to work with neovim (see rpm .changes file for more details) This update was imported from the openSUSE:Leap:15.0:Update update project. libtermkey-0.20-bp150.3.3.1.src.rpm libtermkey-debugsource-0.20-bp150.3.3.1.x86_64.rpm libtermkey-devel-0.20-bp150.3.3.1.x86_64.rpm libtermkey1-0.20-bp150.3.3.1.x86_64.rpm libtermkey1-debuginfo-0.20-bp150.3.3.1.x86_64.rpm lua51-bit32-5.3.0-bp150.2.1.src.rpm lua51-bit32-5.3.0-bp150.2.1.x86_64.rpm lua51-bit32-debuginfo-5.3.0-bp150.2.1.x86_64.rpm lua51-bit32-debugsource-5.3.0-bp150.2.1.x86_64.rpm neovim-0.3.1-bp150.2.3.1.src.rpm neovim-0.3.1-bp150.2.3.1.x86_64.rpm neovim-debuginfo-0.3.1-bp150.2.3.1.x86_64.rpm neovim-debugsource-0.3.1-bp150.2.3.1.x86_64.rpm neovim-lang-0.3.1-bp150.2.3.1.noarch.rpm python-neovim-0.3.1-bp150.3.3.1.src.rpm python2-neovim-0.3.1-bp150.3.3.1.noarch.rpm python3-neovim-0.3.1-bp150.3.3.1.noarch.rpm libtermkey-debugsource-0.20-bp150.3.3.1.aarch64.rpm libtermkey-devel-0.20-bp150.3.3.1.aarch64.rpm libtermkey1-0.20-bp150.3.3.1.aarch64.rpm libtermkey1-debuginfo-0.20-bp150.3.3.1.aarch64.rpm lua51-bit32-5.3.0-bp150.2.1.aarch64.rpm lua51-bit32-debuginfo-5.3.0-bp150.2.1.aarch64.rpm lua51-bit32-debugsource-5.3.0-bp150.2.1.aarch64.rpm libtermkey-debugsource-0.20-bp150.3.3.1.ppc64le.rpm libtermkey-devel-0.20-bp150.3.3.1.ppc64le.rpm libtermkey1-0.20-bp150.3.3.1.ppc64le.rpm libtermkey1-debuginfo-0.20-bp150.3.3.1.ppc64le.rpm lua51-bit32-5.3.0-bp150.2.1.ppc64le.rpm lua51-bit32-debuginfo-5.3.0-bp150.2.1.ppc64le.rpm lua51-bit32-debugsource-5.3.0-bp150.2.1.ppc64le.rpm libtermkey-debugsource-0.20-bp150.3.3.1.s390x.rpm libtermkey-devel-0.20-bp150.3.3.1.s390x.rpm libtermkey1-0.20-bp150.3.3.1.s390x.rpm libtermkey1-debuginfo-0.20-bp150.3.3.1.s390x.rpm lua51-bit32-5.3.0-bp150.2.1.s390x.rpm lua51-bit32-debuginfo-5.3.0-bp150.2.1.s390x.rpm lua51-bit32-debugsource-5.3.0-bp150.2.1.s390x.rpm openSUSE-2019-172 moderate openSUSE Backports SLE-15 Update This update for various CertBot modules fixes the following issues: python-acme was updated to 0.30.2: * Remove josepy helpers that are no longer needed * WIP External Account Binding (#6059) * Implement POST-as-GET requests (#6522) * ignore erroneously no-member lint error * Revert acme/acme/client.py * Bump version to 0.29.0 * remove unused six imports * Remove module-level ignore::ResourceWarnings * bring requests back down to 2.4.1 in setup and oldest constraints * Requests no longer vendorizes urllib3 * Use a newer version of requests because of the upcoming Callable import Deprecation in Python 3.8 that warns in Python 3.7 * Cover is run on 2.7, so mark 3-only lines as no cover * Ignore ResourceWarnings in various modules in a 2-compatible way. * ignore ResourceWarnings in acme tests * s/assertEquals/assertEqual * Use the ACMEv2 newNonce endpoint when a new nonce is needed, and newNonce is available in the directory. * Warn when using deprecated acme.challenges.TLSSNI01 * acme client now raises an error when you try to create an ACME account with a key that has already been used * you can now call query_registration without having to first call new_account python-certbot was updated to 0.30.2: * Update the version of setuptools pinned in certbot-auto to 40.6.3 to solve installation problems on newer OSes. * Always download the pinned version of pip in pipstrap to address breakages * Rename old,default.conf to old-and-default.conf to address commas in filenames breaking recent versions of pip. * Add VIRTUALENV_NO_DOWNLOAD=1 to all calls to virtualenv to address breakages from venv downloading the latest pip * Added the `update_account` subcommand for account management commands. * The default work and log directories have been changed back to /var/lib/letsencrypt and /var/log/letsencrypt respectively. * Noninteractive renewals with `certbot renew` (those not started from a terminal) now randomly sleep 1-480 seconds before beginning work in order to spread out load spikes on the server side. * Added External Account Binding support in cli and acme library. Command line arguments --eab-kid and --eab-hmac-key added. * Private key permissioning changes: Renewal preserves existing group mode & gid of previous private key material. Private keys for new lineages (i.e. new certs, not renewed) default to 0o600. * Update code and dependencies to clean up Resource and Deprecation Warnings. * Only depend on imgconverter extension for Sphinx >= 1.6 * revoke accepts --cert-name, and doesn't accept both --cert-name and --cert-path * Do not conflict with Certbot as now we provide/obsolete it * Provide and obsolete certbot main package too to ensure we can migrate to the new split setup directly * Conflict with certbot package to allow easy migration * the documentation can be built using Sphinx 1.6+ python-certbot-apache was updated to 0.30.2: * Various small fixes * Stop preferring TLS-SNI. * The grammar used by Augeas parser in Apache plugin was updated to fix various parsing errors. * parameter name in OpenSUSE overrides for default parameters * several other fixes python-certbot-dns-cloudflare was updated to 0.30.2. python-certbot-dns-cloudxns was updated to 0.30.2: * Lockstep with main certbot package * The CloudXNS plugin is now compatible with Lexicon 3.0+. * Add runtime requirements. python-certbot-dns-digitalocean was updated to 0.30.2: * lockstep with main certbot pkg python-certbot-dns-dnsimple was updated to 0.30.2: * lockstep with main certbot package * The DNSimple plugin is now compatible with Lexicon 3.0+. python-certbot-dns-dnsmadeeasy was updated to 0.30.2: * The DNS Made Easy plugin is now compatible with Lexicon 3.0+. python-certbot-dns-google was updated to 0.30.2: * Minor logging fixes python-certbot-dns-luadns was updated to 0.30.2: * The LuaDNS plugin is now compatible with Lexicon 3.0+. python-certbot-dns-nsone was updated to 0.30.2: * The NS1 plugin is now compatible with Lexicon 3.0+. python-certbot-dns-rfc2136 was updated to 0.30.2. python-certbot-dns-route53 was updated to 0.30.2: * Test fix for Route53 plugin to prevent boto3 making outgoing connections. python-cloudflare: * Add the package cloudflare needed by python-certbot subpackage python-digitalocean: * Added python-digitalocean version 1.13.2 needed by python-certbot-dns-digitalocean python-certbot-nginx was updated to version 0.30.2: * Stop preferring TLS-SNI. * Match Nginx parser update in allowing variable names to start with ${. * Fix ranking of vhosts in Nginx so that all port-matching vhosts come first. python-jsonlines was added as version 1.2.0. python-jsonpickle was added as version 0.9.6. This update was imported from the openSUSE:Leap:15.0:Update update project. python-acme-0.30.2-bp150.2.3.1.src.rpm python2-acme-0.30.2-bp150.2.3.1.noarch.rpm python3-acme-0.30.2-bp150.2.3.1.noarch.rpm openSUSE-2019-242 moderate openSUSE Backports SLE-15 Update This update for kauth fixes the following issues: Security issue fixed: - CVE-2019-7443: Fixed an insecure handling of arguments in helpers by removing the support of passing gui variants (bsc#1124863). kauth-5.45.0-bp150.3.3.1.src.rpm kauth-debugsource-5.45.0-bp150.3.3.1.x86_64.rpm kauth-devel-5.45.0-bp150.3.3.1.x86_64.rpm libKF5Auth5-5.45.0-bp150.3.3.1.x86_64.rpm libKF5Auth5-debuginfo-5.45.0-bp150.3.3.1.x86_64.rpm libKF5Auth5-lang-5.45.0-bp150.3.3.1.noarch.rpm kauth-debugsource-5.45.0-bp150.3.3.1.aarch64.rpm kauth-devel-5.45.0-bp150.3.3.1.aarch64.rpm kauth-devel-64bit-5.45.0-bp150.3.3.1.aarch64_ilp32.rpm libKF5Auth5-5.45.0-bp150.3.3.1.aarch64.rpm libKF5Auth5-64bit-5.45.0-bp150.3.3.1.aarch64_ilp32.rpm libKF5Auth5-64bit-debuginfo-5.45.0-bp150.3.3.1.aarch64_ilp32.rpm libKF5Auth5-debuginfo-5.45.0-bp150.3.3.1.aarch64.rpm kauth-debugsource-5.45.0-bp150.3.3.1.ppc64le.rpm kauth-devel-5.45.0-bp150.3.3.1.ppc64le.rpm libKF5Auth5-5.45.0-bp150.3.3.1.ppc64le.rpm libKF5Auth5-debuginfo-5.45.0-bp150.3.3.1.ppc64le.rpm kauth-debugsource-5.45.0-bp150.3.3.1.s390x.rpm kauth-devel-5.45.0-bp150.3.3.1.s390x.rpm libKF5Auth5-5.45.0-bp150.3.3.1.s390x.rpm libKF5Auth5-debuginfo-5.45.0-bp150.3.3.1.s390x.rpm openSUSE-2019-169 low openSUSE Backports SLE-15 Update This update for python-slixmpp fixes the following issue: Security issue fixed: - CVE-2019-1000021: Fixed incorrect Access Control vulnerability in XEP-0223 plugin (bsc#1124322) This update was imported from the openSUSE:Leap:15.0:Update update project. python-slixmpp-1.3.0-bp150.3.3.1.src.rpm python3-slixmpp-1.3.0-bp150.3.3.1.x86_64.rpm python3-slixmpp-1.3.0-bp150.3.3.1.aarch64.rpm python3-slixmpp-1.3.0-bp150.3.3.1.ppc64le.rpm python3-slixmpp-1.3.0-bp150.3.3.1.s390x.rpm openSUSE-2019-168 moderate openSUSE Backports SLE-15 Update This update for skiboot fixes the following issues: - Fix opal-prd crash when buildt with -pie (boo#1124931). This update was imported from the openSUSE:Leap:15.0:Update update project. opal-prd-5.10-bp150.2.6.1.ppc64le.rpm opal-utils-5.10-bp150.2.6.1.ppc64le.rpm skiboot-5.10-bp150.2.6.1.src.rpm openSUSE-2019-170 important openSUSE Backports SLE-15 Update This update for runc fixes the following issues: Security vulnerabilities addressed: - CVE-2019-5736: Effectively copying /proc/self/exe during re-exec to avoid write attacks to the host runc binary, which could lead to a container breakout (bsc#1121967) - CVE-2018-16873: Fix a remote command execution during "go get -u" (boo#1118897) - CVE-2018-16874: Fix a directory traversal in "go get" via curly braces in import paths (boo#1118898) - CVE-2018-16875: Fix a CPU denial of service issue (boo#1118899) Other changes and bug fixes: - Update go requirements to >= go1.10 - Create a symlink in /usr/bin/runc to enable rootless Podman and Buildah. - Make use of %license macro - Remove 'go test' from %check section, as it has only ever caused us problems and hasn't (as far as I remember) ever caught a release-blocking issue. Smoke testing has been far more useful. (boo#1095817) - Upgrade to runc v1.0.0~rc6. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.0.0-rc6 runc-1.0.0~rc6-bp150.2.3.1.src.rpm runc-1.0.0~rc6-bp150.2.3.1.x86_64.rpm runc-test-1.0.0~rc6-bp150.2.3.1.noarch.rpm runc-1.0.0~rc6-bp150.2.3.1.aarch64.rpm runc-1.0.0~rc6-bp150.2.3.1.ppc64le.rpm runc-1.0.0~rc6-bp150.2.3.1.s390x.rpm openSUSE-2019-171 low openSUSE Backports SLE-15 Update This update for uriparser fixes the following issues: Security issues fixed: - CVE-2018-20721: Fixed an out-of-bounds read for incomplete URIs with IPv6 addresses with embedded IPv4 address (bsc#1122193). - CVE-2018-19198: Fixed an out-of-bounds write that was possible via the uriComposeQuery* or uriComposeQueryEx* function (bsc#1115722). - CVE-2018-19199: Fixed an integer overflow caused by an unchecked multiplication via the uriComposeQuery* or uriComposeQueryEx* function (bsc#1115723). - CVE-2018-19200: Fixed a operation attempted on NULL input via a uriResetUri* function (bsc#1115724). This update was imported from the SUSE:SLE-15:Update update project. This update was imported from the openSUSE:Leap:15.0:Update update project. liburiparser1-0.8.5-bp150.2.3.1.x86_64.rpm uriparser-0.8.5-bp150.2.3.1.src.rpm uriparser-0.8.5-bp150.2.3.1.x86_64.rpm uriparser-devel-0.8.5-bp150.2.3.1.x86_64.rpm liburiparser1-0.8.5-bp150.2.3.1.aarch64.rpm liburiparser1-64bit-0.8.5-bp150.2.3.1.aarch64_ilp32.rpm uriparser-0.8.5-bp150.2.3.1.aarch64.rpm uriparser-devel-0.8.5-bp150.2.3.1.aarch64.rpm liburiparser1-0.8.5-bp150.2.3.1.ppc64le.rpm uriparser-0.8.5-bp150.2.3.1.ppc64le.rpm uriparser-devel-0.8.5-bp150.2.3.1.ppc64le.rpm liburiparser1-0.8.5-bp150.2.3.1.s390x.rpm uriparser-0.8.5-bp150.2.3.1.s390x.rpm uriparser-devel-0.8.5-bp150.2.3.1.s390x.rpm openSUSE-2019-192 moderate openSUSE Backports SLE-15 Update This update for dom4j fixes the following issues: - Fix disabled STAX and datatypes. (bsc#1123158) This update was imported from the SUSE:SLE-15:Update update project. This update was imported from the openSUSE:Leap:15.0:Update update project. dom4j-1.6.1-bp150.2.6.1.noarch.rpm dom4j-1.6.1-bp150.2.6.1.src.rpm dom4j-demo-1.6.1-bp150.2.6.1.noarch.rpm dom4j-javadoc-1.6.1-bp150.2.6.1.noarch.rpm dom4j-manual-1.6.1-bp150.2.6.1.noarch.rpm openSUSE-2019-240 moderate openSUSE Backports SLE-15 Update This update for pspp to version 1.2.0 fixes the following issues: Security issue fixed: - CVE-2018-20230: Fixed a heap-based buffer overflow in read_bytes_internal function that could lead to denial-of-service (bsc#1120061). Other bug fixes and changes: - Add upstream patch to avoid compiling with old Texinfo 4.13. - New experimental command SAVE DATA COLLECTION to save MDD files. - MTIME and YMDHMS variable formats now supported. - Spread sheet rendering now done via spread-sheet-widget. This update introduces a new package called spread-sheet-widget as dependency. This update was imported from the openSUSE:Leap:15.0:Update update project. pspp-1.2.0-bp150.3.3.1.src.rpm pspp-1.2.0-bp150.3.3.1.x86_64.rpm pspp-devel-1.2.0-bp150.3.3.1.x86_64.rpm libspread-sheet-widget0-0.3-bp150.2.1.x86_64.rpm libspread-sheet-widget0-debuginfo-0.3-bp150.2.1.x86_64.rpm spread-sheet-widget-0.3-bp150.2.1.src.rpm spread-sheet-widget-debugsource-0.3-bp150.2.1.x86_64.rpm spread-sheet-widget-devel-0.3-bp150.2.1.x86_64.rpm pspp-1.2.0-bp150.3.3.1.aarch64.rpm pspp-devel-1.2.0-bp150.3.3.1.aarch64.rpm libspread-sheet-widget0-0.3-bp150.2.1.aarch64.rpm libspread-sheet-widget0-debuginfo-0.3-bp150.2.1.aarch64.rpm spread-sheet-widget-debugsource-0.3-bp150.2.1.aarch64.rpm spread-sheet-widget-devel-0.3-bp150.2.1.aarch64.rpm pspp-1.2.0-bp150.3.3.1.ppc64le.rpm pspp-devel-1.2.0-bp150.3.3.1.ppc64le.rpm libspread-sheet-widget0-0.3-bp150.2.1.ppc64le.rpm libspread-sheet-widget0-debuginfo-0.3-bp150.2.1.ppc64le.rpm spread-sheet-widget-debugsource-0.3-bp150.2.1.ppc64le.rpm spread-sheet-widget-devel-0.3-bp150.2.1.ppc64le.rpm pspp-1.2.0-bp150.3.3.1.s390x.rpm pspp-devel-1.2.0-bp150.3.3.1.s390x.rpm libspread-sheet-widget0-0.3-bp150.2.1.s390x.rpm libspread-sheet-widget0-debuginfo-0.3-bp150.2.1.s390x.rpm spread-sheet-widget-debugsource-0.3-bp150.2.1.s390x.rpm spread-sheet-widget-devel-0.3-bp150.2.1.s390x.rpm openSUSE-2019-216 important openSUSE Backports SLE-15 Update This update for Chromium to version 72.0.3626.96 fixes the following issues: Security issues fixed (bsc#1123641 and bsc#1124936): - CVE-2019-5784: Inappropriate implementation in V8 - CVE-2019-5754: Inappropriate implementation in QUIC Networking. - CVE-2019-5782: Inappropriate implementation in V8. - CVE-2019-5755: Inappropriate implementation in V8. - CVE-2019-5756: Use after free in PDFium. - CVE-2019-5757: Type Confusion in SVG. - CVE-2019-5758: Use after free in Blink. - CVE-2019-5759: Use after free in HTML select elements. - CVE-2019-5760: Use after free in WebRTC. - CVE-2019-5761: Use after free in SwiftShader. - CVE-2019-5762: Use after free in PDFium. - CVE-2019-5763: Insufficient validation of untrusted input in V8. - CVE-2019-5764: Use after free in WebRTC. - CVE-2019-5765: Insufficient policy enforcement in the browser. - CVE-2019-5766: Insufficient policy enforcement in Canvas. - CVE-2019-5767: Incorrect security UI in WebAPKs. - CVE-2019-5768: Insufficient policy enforcement in DevTools. - CVE-2019-5769: Insufficient validation of untrusted input in Blink. - CVE-2019-5770: Heap buffer overflow in WebGL. - CVE-2019-5771: Heap buffer overflow in SwiftShader. - CVE-2019-5772: Use after free in PDFium. - CVE-2019-5773: Insufficient data validation in IndexedDB. - CVE-2019-5774: Insufficient validation of untrusted input in SafeBrowsing. - CVE-2019-5775: Insufficient policy enforcement in Omnibox. - CVE-2019-5776: Insufficient policy enforcement in Omnibox. - CVE-2019-5777: Insufficient policy enforcement in Omnibox. - CVE-2019-5778: Insufficient policy enforcement in Extensions. - CVE-2019-5779: Insufficient policy enforcement in ServiceWorker. - CVE-2019-5780: Insufficient policy enforcement. - CVE-2019-5781: Insufficient policy enforcement in Omnibox. For a full list of changes refer to https://chromereleases.googleblog.com/2019/02/stable-channel-update-for-desktop.html This update was imported from the openSUSE:Leap:15.0:Update update project. chromedriver-72.0.3626.96-bp150.2.32.1.x86_64.rpm chromium-72.0.3626.96-bp150.2.32.1.src.rpm chromium-72.0.3626.96-bp150.2.32.1.x86_64.rpm chromedriver-72.0.3626.96-bp150.2.32.1.aarch64.rpm chromium-72.0.3626.96-bp150.2.32.1.aarch64.rpm openSUSE-2019-238 moderate openSUSE Backports SLE-15 Update This update for ansible fixes the following issues: Security vulnerabilities fixed: - CVE-2018-16876: Respect no_log on retry and high verbosity (bsc#1118896) - CVE-2018-16859: Windows - prevent sensitive content from appearing in scriptblock logging (bsc#1116587) - CVE-2018-10855: Fixed the honouration of the no_log option with failed task iterations (boo#1097775) - CVE-2017-7466: Fixed an input validation vulnerability in Ansible's handling of data sent from client systems - CVE-2017-7481: Fixed a security issue with lookup return not tainting the jinja2 environment (bsc#1038785) Other bug fixes and changes: - Update to version 2.7.6 * Added log message at -vvvv when using netconf connection listing connection details. * Changes how ansible-connection names socket lock files. They now use the same name as the socket itself, and as such do not lock other attempts on connections to the same host, or cause issues with overly-long hostnames. * Fix mandatory statement error for junos modules (https://github.com/ansible/ansible/pull/50138) * Moved error in netconf connection plugin from at import to on connection. * This reverts some changes from commit 723daf3. If a line is found in the file, exactly or via regexp matching, it must not be added again. insertafter/insertbefore options are used only when a line is to be inserted, to specify where it must be added. * allow using openstack inventory plugin w/o a cache * callbacks - Do not filter out exception, warnings, deprecations on failure when using debug (https://github.com/ansible/ansible/issues/47576) * certificate_complete_chain - fix behavior when invalid file is parsed while reading intermediate or root certificates. * copy - Ensure that the src file contents is converted to unicode in diff information so that it is properly wrapped by AnsibleUnsafeText to prevent unexpected templating of diff data in Python3 (https://github.com/ansible/ansible/issues/45717) * correct behaviour of verify_file for vmware inventory plugin, it was always returning True * dnf - fix issue where conf_file was not being loaded properly * dnf - fix update_cache combined with install operation to not cause dnf transaction failure * docker_container - fix network_mode idempotency if the container:<container-name> form is used (as opposed to container:<container-id>) (https://github.com/ansible/ansible/issues/49794) * docker_container - warning when non-string env values are found, avoiding YAML parsing issues. Will be made an error in Ansible 2.8. (https://github.com/ansible/ansible/issues/49802) * docker_swarm_service - Document labels and container_labels with correct type. * docker_swarm_service - Document limit_memory and reserve_memory correctly on how to specify sizes. * docker_swarm_service - Document minimal API version for configs and secrets. * docker_swarm_service - fix use of Docker API so that services are not detected as present if there is an existing service whose name is a substring of the desired service * docker_swarm_service - fixing falsely reporting update_order as changed when option is not used. * document old option that was initally missed * ec2_instance now respects check mode https://github.com/ansible/ansible/pull/46774 * fix for network_cli - ansible_command_timeout not working as expected (#49466) * fix handling of firewalld port if protocol is missing * fix lastpass lookup failure on python 3 (https://github.com/ansible/ansible/issues/42062) * flatpak - Fixed Python 2/3 compatibility * flatpak - Fixed issue where newer versions of flatpak failed on flatpak removal * flatpak_remote - Fixed Python 2/3 compatibility * gcp_compute_instance - fix crash when the instance metadata is not set * grafana_dashboard - Fix a pair of unicode string handling issues with version checking (https://github.com/ansible/ansible/pull/49194) * host execution order - Fix reverse_inventory not to change the order of the items before reversing on python2 and to not backtrace on python3 * icinga2_host - fixed the issue with not working use_proxy option of the module. * influxdb_user - An unspecified password now sets the password to blank, except on existing users. This previously caused an unhandled exception. * influxdb_user - Fixed unhandled exception when using invalid login credentials (https://github.com/ansible/ansible/issues/50131) * openssl_* - fix error when path contains a file name without path. * openssl_csr - fix problem with idempotency of keyUsage option. * openssl_pkcs12 - now does proper path expansion for ca_certificates. * os_security_group_rule - os_security_group_rule doesn't exit properly when secgroup doesn't exist and state=absent (https://github.com/ansible/ansible/issues/50057) * paramiko_ssh - add auth_timeout parameter to ssh.connect when supported by installed paramiko version. This will prevent "Authentication timeout" errors when a slow authentication step (>30s) happens with a host (https://github.com/ansible/ansible/issues/42596) * purefa_facts and purefb_facts now correctly adds facts into main ansible_fact dictionary (https://github.com/ansible/ansible/pull/50349) * reboot - add appropriate commands to make the plugin work with VMware ESXi (https://github.com/ansible/ansible/issues/48425) * reboot - add support for rebooting AIX (https://github.com/ansible/ansible/issues/49712) * reboot - gather distribution information in order to support Alpine and other distributions (https://github.com/ansible/ansible/issues/46723) * reboot - search common paths for the shutdown command and use the full path to the binary rather than depending on the PATH of the remote system (https://github.com/ansible/ansible/issues/47131) * reboot - use a common set of commands for older and newer Solaris and SunOS variants (https://github.com/ansible/ansible/pull/48986) * redfish_utils - fix reference to local variable 'systems_service' * setup - fix the rounding of the ansible_memtotal_mb value on VMWare vm's (https://github.com/ansible/ansible/issues/49608) * vultr_server - fixed multiple ssh keys were not handled. * win_copy - Fix copy of a dir that contains an empty directory - https://github.com/ansible/ansible/issues/50077 * win_firewall_rule - Remove invalid 'bypass' action * win_lineinfile - Fix issue where a malformed json block was returned causing an error * win_updates - Correctly report changes on success - update to version 2.7.5 * ACME modules: improve error messages in some cases (include error returned by server). * Added unit test for VMware module_utils. * Also check stdout for interpreter errors for more intelligent messages to user * Backported support for Devuan-based distribution * Convert hostvars data in OpenShift inventory plugin to be serializable by ansible-inventory * Fix AttributeError (Python 3 only) when an exception occurs while rendering a template * Fix N3K power supply facts (https://github.com/ansible/ansible/pull/49150). * Fix NameError nxos_facts (https://github.com/ansible/ansible/pull/48981). * Fix VMware module utils for self usage. * Fix error in OpenShift inventory plugin when a pod has errored and is empty * Fix if the route table changed to none (https://github.com/ansible/ansible/pull/49533) * Fix iosxr netconf plugin response namespace (https://github.com/ansible/ansible/pull/49300) * Fix issues with nxos_install_os module for nxapi (https://github.com/ansible/ansible/pull/48811). * Fix lldp and cdp neighbors information (https://github.com/ansible/ansible/pull/48318)(https://github.com/ansible/ansible/pull/48087)(https://github.com/ansible/ansible/pull/49024). * Fix nxos_interface and nxos_linkagg Idempotence issue (https://github.com/ansible/ansible/pull/46437). * Fix traceback when updating facts and the fact cache plugin was nonfunctional * Fix using vault encrypted data with jinja2_native (https://github.com/ansible/ansible/issues/48950) * Fixed: Make sure that the files excluded when extracting the archive are not checked. https://github.com/ansible/ansible/pull/45122 * Fixes issue where a password parameter was not set to no_log * aci_rest - Fix issue ignoring custom port * acme_account, acme_account_facts - in some cases, it could happen that the modules return information on disabled accounts accidentally returned by the ACME server. * docker_swarm - decreased minimal required API version from 1.35 to 1.25; some features require API version 1.30 though. * docker_swarm_service: fails because of default "user: root" (https://github.com/ansible/ansible/issues/49199) * ec2_metadata_facts - Parse IAM role name from the security credential field since the instance profile name is different * fix azure_rm_image module use positional parameter (https://github.com/ansible/ansible/pull/49394) * fixes an issue with dict_merge in network utils (https://github.com/ansible/ansible/pull/49474) * gcp_utils - fix google auth scoping issue with application default credentials or google cloud engine credentials. Only scope credentials that can be scoped. * mail - fix python 2.7 regression * openstack - fix parameter handling when cloud provided as dict https://github.com/ansible/ansible/issues/42858 * os_user - Include domain parameter in user deletion https://github.com/ansible/ansible/issues/42901 * os_user - Include domain parameter in user lookup https://github.com/ansible/ansible/issues/42901 * ovirt_storage_connection - comparing passwords breaks idempotency in update_check (https://github.com/ansible/ansible/issues/48933) * paramiko_ssh - improve log message to state the connection type * reboot - use IndexError instead of TypeError in exception * redis cache - Support version 3 of the redis python library (https://github.com/ansible/ansible/issues/49341) * sensu_silence - Cast int for expire field to avoid call failure to sensu API. * vmware_host_service_facts - handle exception when service package does not have package name. * win_nssm - Switched to Argv-ToString for escaping NSSM credentials (https://github.com/ansible/ansible/issues/48728) * zabbix_hostmacro - Added missing validate_certs logic for running module against Zabbix servers with untrused SSL certificates (https://github.com/ansible/ansible/issues/47611) * zabbix_hostmacro - Fixed support for user macros with context (https://github.com/ansible/ansible/issues/46953) - update to version 2.7.4 * powershell - add lib/ansible/executor/powershell to the packaging data - update to version 2.7.3 * Fix the issue that FTD HTTP API retries authentication-related HTTP requests * Fix the issue that module fails when the Swagger model does not have required fields * Fix the issue with comparing string-like objects * Fix using omit on play keywords * apt_key - Disable TTY requirement in GnuPG for the module to work correctly when SSH pipelining is enabled * better error message when bad type in config, deal with EVNAR= more gracefully * configuration retrieval would fail on non primed plugins * cs_template - Fixed a KeyError on state=extracted * docker_container - fix idempotency problems with docker-py caused by previous init idempotency fix * docker_container - fix interplay of docker-py version check with argument_spec validation improvements * docker_network - driver_options containing Python booleans would cause Docker to throw exceptions * ec2_group - Fix comparison of determining which rules to purge by ignoring descriptions * pip module - fix setuptools/distutils replacement * sysvinit - enabling a service should use "defaults" if no runlevels are specified - update to version 2.7.2 * Minor changes - update to 2.7.1 * Minor changes - update to 2.7.0 * Allow config to enable native jinja types * Remove support for simplejson * yum and dnf modules now at feature parity * Security Fix - avoid loading host/group vars from cwd when not specifying a playbook or playbook base dir * Security Fix - avoid using ansible.cfg in a world writable dir * Some connection exception would cause no_log specified on a task to be ignored (stdout info disclosure) * Fix glob path of rc.d (SUSE-specific) * Fix lambda_policy updates * Fix alt linux detection/matching - update to 2.6.4 * Add md5sum check in nxos_file_copy module * Allow arbitrary log_driver for docker_container * Fix Python2.6 regex bug terminal plugin nxos, iosxr * Fix check_mode in nxos_static_route module * Fix glob path of rc.d Some distribtuions like SUSE has the rc%.d directories under /etc/init.d * Fix network config diff issue for lines * Fixed an issue where ansible_facts.pkg_mgr would incorrectly set to zypper on Debian/Ubuntu systems that happened to have the command installed * The docker_* modules respect the DOCKER_* environment variables again * The fix for CVE-2018-10875 prints out a warning message about skipping a config file from a world writable current working directory. However, if the user is in a world writable current working directory which does not contain a config file, it should not print a warning message. This release fixes that extaneous warning. * To resolve nios_network issue where vendor-encapsulated-options can not have a use_option flag. * To resolve the issue of handling exception for Nios lookup gracefully. * always correctly template no log for tasks * ansible-galaxy - properly list all roles in roles_path * basic.py - catch ValueError in case a FIPS enabled platform raises this exception * docker_container: fixing working_dir idempotency problem * docker_container: makes unit parsing for memory sizes more consistent, and fixes idempotency problem when kernel_memory is set * fix example code for AWS lightsail documentation * fix the enable_snat parameter that is only supposed to be used by an user with the right policies. * fixes docker_container check and debug mode * improves docker_container idempotency * ios_l2_interface - fix bug when list of vlans ends with comma * ios_l2_interface - fix issue with certain interface types * ios_user - fix unable to delete user admin issue * ios_vlan - fix unable to work on certain interface types issue * nxos_facts test lldp feature and fix nxapi check_rc * nxos_interface port-channel idempotence fix for mode * nxos_linkagg mode fix * nxos_system idempotence fix * nxos_vlan refactor to support non structured output * one_host - fixes settings via environment variables * use retry_json nxos_banner * user - Strip trailing comments in /etc/default/passwd * user - when creating a new user without an expiration date, properly set no expiration rather that expirining the account * win_domain_computer - fixed deletion of computer active directory object that have dependent objects * win_domain_computer - fixed error in diff_support * win_domain_computer - fixed error when description parameter is empty * win_psexec - changed code to not escape the command option when building the args * win_uri -- Fix support for JSON output when charset is set * win_wait_for - fix issue where timeout doesn't wait unless state=drained - update to 2.6.3 * Fix lxd module to be idempotent when the given configuration for the lxd container has not changed * Fix setting value type to str to avoid conversion during template read. Fix Idempotency in case of 'no key'. * Fix the mount module's handling of swap entries in fstab * The fix for (CVE-2018-10875) prints out a warning message about skipping a config file from a world writable current working directory. However, if the user explicitly specifies that the config file should be used via the ANSIBLE_CONFIG environment variable then Ansible would honor that but still print out the warning message. This has been fixed so that Ansible honors the user's explicit wishes and does not print a warning message in that circumstance. * To fix the bug where existing host_record was deleted when existing record name is used with different IP. * VMware handle pnic in proxyswitch * fix azure security group cannot add rules when purge_rule set to false. * fix azure_rm_deployment collect tags from existing Resource Group. * fix azure_rm_loadbalancer_facts list takes at least 2 arguments. * fix for the bundled selectors module (used in the ssh and local connection plugins) when a syscall is restarted after being interrupted by a signal * get_url - fix the bug that get_url does not change mode when checksum matches * nicer error when multiprocessing breaks * openssl_certificate - Convert valid_date to bytes for conversion * openstack_inventory.py dynamic inventory file fixed the plugin to the script so that it will work with current ansible-inventory. Also redirect stdout before dumping the ouptput, because not doing so will cause JSON parse errors in some cases. * slack callback - Fix invocation by looking up data from cli.options * sysvinit module: handle values of optional parameters. Don't disable service when enabled parameter isn't set. Fix command when arguments parameter isn't set. * vars_prompt - properly template play level variables in vars_prompt * win_domain - ensure the Netlogon service is up and running after promoting host to controller * win_domain_controller - ensure the Netlogon service is up and running after promoting host to controller - update to 2.6.2 + Add text output along with structured output in nxos_facts + Allow more than one page of results by using the right pagination indicator ('NextMarker' instead of 'NextToken'). + Fix an atomic_move error that is 'true', but misleading. Now we show all 3 files involved and clarify what happened. + Fix eos_l2_interface eapi. + Fix fetching old style facts in junos_facts module + Fix get_device_info nxos zero or more whitespace regex + Fix nxos CI failures + Fix nxos_nxapi default http behavior + Fix nxos_vxlan_vtep_vni + Fix regex network_os_platform nxos + Refactor nxos cliconf get_device_info for non structured output supported devices + To fix the NoneType error raised in ios_l2_interface when Access Mode VLAN is unassigned + emtpy host/group name is an error + fix default SSL version for docker modules + fix mail module when using starttls + fix nmap config example + fix ps detection of service + fix the remote tmp folder permissions issue when becoming a non admin user + fix typoe in sysvinit that breaks update.rc-d detection + fixes docker_container compatibilty with docker-py < 2.2 + get_capabilities in nxapi module_utils should not return empty dictionary + inventory - When using an inventory directory, ensure extension comparison uses text types + ios_vlan - fix unable to identify correct vlans issue + nxos_facts warning message improved + openvswitch_db - make 'key' argument optional + pause - do not set stdout to raw mode when redirecting to a file + pause - nest try except when importing curses to gracefully fail if curses is not present + plugins/inventory/openstack.py - Do not create group with empty name if region is not set + preseve delegation info on nolog + remove ambiguity when it comes to 'the source' + remove dupes from var precedence + restores filtering out conflicting facts + user - fix bug that resulted in module always reporting a change when specifiying the home directory on FreeBSD + user - use correct attribute name in FreeBSD for creat_home + vultr - Do not fail trying to load configuration from ini files if required variables have been set as environment variables. + vyos_command correcting conditionals looping + win_chocolatey - enable TLSv1.2 support when downloading the Chocolatey installer + win_reboot - fix for handling an already scheduled reboot and other minor log formatting issues + win_reboot - fix issue when overridding connection timeout hung the post reboot uptime check + win_reboot - handle post reboots when running test_command + win_security_policy - allows an empty string to reset a policy value + win_share - discard any cmdlet output we don't use to ensure only the return json is received by Ansible + win_unzip - discard any cmdlet output we don't use to ensure only the return json is received by Ansible + win_updates - fixed module return value is lost in error in some cases + win_user - Use LogonUser to validate the password as it does not rely on SMB/RPC to be available + Security Fix - avoid loading host/group vars from cwd when not specifying a playbook or playbook base dir + Security Fix - avoid using ansible.cfg in a world writable dir. + Fix junos_config confirm commit timeout issue (https://github.com/ansible/ansible/pull/41527) + file module - The touch subcommand had its diff output broken during the 2.6.x development cycle. This is now fixed. + inventory manager - This fixes required options being populated before the inventory config file is read, so the required options may be set in the config file. + nsupdate - allow hmac-sha384 https://github.com/ansible/ansible/pull/42209 + win_domain - fixes typo in one of the AD cmdlets https://github.com/ansible/ansible/issues/41536 + win_group_membership - uses the internal Ansible SID conversion logic and uses that when comparing group membership instead of the name - use fdupes to save some space in python_sitelib - define BuildRoot on older distributions like SLE-11 - be a bit more flexible with the ending of manpage files to allow Fedora builds to succeed - updated to latest release 2.6.0 - New Plugins: + Callback: - cgroup_memory_recap - grafana_annotations - sumologic + Connection: - httpapi + Inventory: - foreman - gcp_compute - generator - nmap + Lookup: - onepassword - onepassword_raw - Modules updates too many to mention here please look at package documentation directory (/usr/share/doc/packages/.../changelogs) - bug fixes: - **Security Fix** - Some connection exceptions would cause no_log specified on a task to be ignored. If this happened, the task information, including any private information coul d have been displayed to stdout and (if enabled, not the default) logged to a log file specified in ansible.cfg's log_path. Additionally, sites which redirected stdout from ansible runs to a log file may have stored that private information onto disk that way as well. (https://github.com/ansible/ansible/pull/41414) - Changed the admin_users config option to not include "admin" by default as admin is frequently used for a non-privileged account (https://github.com/ansible/ansible/pull/41164) - Changed the output to "text" for "show vrf" command as default "json" output format with respect to "eapi" transport was failing (https://github.com/ansible/ansible/pull/41470) - Document mode=preserve for both the copy and template module - Fix added for Digital Ocean Volumes API change causing Ansible to recieve an unexpected value in the response. (https://github.com/ansible/ansible/pull/41431) - Fix an encoding issue when parsing the examples from a plugins' documentation - Fix iosxr_config module to handle route-policy, community-set, prefix-set, as-path-set and rd-set blocks. All these blocks are part of route-policy language of iosxr. - Fix mode=preserve with remote_src=True for the copy module - Implement mode=preserve for the template module - The yaml callback plugin now allows non-ascii characters to be displayed. - Various grafana_* modules - Port away from the deprecated b64encodestring function to the b64encode function instead. https://github.com/ansible/ansible/pull/38388 - added missing 'raise' to exception definition https://github.com/ansible/ansible/pull/41690 - allow custom endpoints to be used in the aws_s3 module (https://github.com/ansible/ansible/pull/36832) - allow set_options to be called multiple times https://github.com/ansible/ansible/pull/41913 - ansible-doc - fixed traceback on missing plugins (https://github.com/ansible/ansible/pull/41167) - cast the device_mapping volume size to an int in the ec2_ami module (https://github.com/ansible/ansible/pull/40938) - copy - fixed copy to only follow symlinks for files in the non-recursive case - copy module - The copy module was attempting to change the mode of files for remote_src=True even if mode was not set as a parameter. This failed on filesystems which do not have permission bits (https://github.com/ansible/ansible/pull/40099) - copy module - fixed recursive copy with relative paths (https://github.com/ansible/ansible/pull/40166) - correct debug display for all cases https://github.com/ansible/ansible/pull/41331 - correctly check hostvars for vars term https://github.com/ansible/ansible/pull/41819 - correctly handle yaml inventory files when entries are null dicts https://github.com/ansible/ansible/issues/41692 - dynamic includes - Allow inheriting attributes from static parents (https://github.com/ansible/ansible/pull/38827) - dynamic includes - Don't treat undefined vars for conditional includes as truthy (https://github.com/ansible/ansible/pull/39377) - dynamic includes - Fix IncludedFile comparison for free strategy (https://github.com/ansible/ansible/pull/37083) - dynamic includes - Improved performance by fixing re-parenting on copy (https://github.com/ansible/ansible/pull/38747) - dynamic includes - Use the copied and merged task for calculating task vars (https://github.com/ansible/ansible/pull/39762) - file - fixed the default follow behaviour of file to be true - file module - Eliminate an error if we're asked to remove a file but something removes it while we are processing the request (https://github.com/ansible/ansible/pull/39466) - file module - Fix error when recursively assigning permissions and a symlink to a nonexistent file is present in the directory tree (https://github.com/ansible/ansible/issues/39456) - file module - Fix error when running a task which assures a symlink to a nonexistent file exists for the second and subsequent times (https://github.com/ansible/ansible/issues/39558) - file module - The file module allowed the user to specify src as a parameter when state was not link or hard. This is documented as only applying to state=link or state=hard but in previous Ansible, this could have an effect in rare cornercases. For instance, "ansible -m file -a 'state=directory path=/tmp src=/var/lib'" would create /tmp/lib. This has been disabled and a warning emitted (will change to an error in Ansible-2.10). - file module - The touch subcommand had its diff output broken during the 2.6.x development cycle. This is now fixed (https://github.com/ansible/ansible/issues/41755) - fix BotoCoreError exception handling - fix apt-mark on debian6 (https://github.com/ansible/ansible/pull/41530) - fix async for the aws_s3 module by adding async support to the action plugin (https://github.com/ansible/ansible/pull/40826) - fix decrypting vault files for the aws_s3 module (https://github.com/ansible/ansible/pull/39634) - fix errors with S3-compatible APIs if they cannot use ACLs for buckets or objects - fix permission handling to try to download a file even if the user does not have permission to list all objects in the bucket - fixed config required handling, specifically for _terms in lookups https://github.com/ansible/ansible/pull/41740 - gce_net - Fix sorting of allowed ports (https://github.com/ansible/ansible/pull/41567) - group_by - support implicit localhost (https://github.com/ansible/ansible/pull/41860) - import/include - Ensure role handlers have the proper parent, allowing for correct attribute inheritance (https://github.com/ansible/ansible/pull/39426) - import_playbook - Pass vars applied to import_playbook into parsing of the playbook as they may be needed to parse the imported plays (https://github.com/ansible/ansible/pull/39521) - include_role/import_role - Don't overwrite included role handlers with play handlers on parse (https://github.com/ansible/ansible/pull/39563) - include_role/import_role - Fix parameter templating (https://github.com/ansible/ansible/pull/36372) - include_role/import_role - Use the computed role name for include_role/import_role so to diffentiate between names computed from host vars (https://github.com/ansible/ansible/pull/39516)- include_role/import_role - improved performance and recursion depth (https://github.com/ansible/ansible/pull/36470) - lineinfile - fix insertbefore when used with BOF to not insert duplicate lines (https://github.com/ansible/ansible/issues/38219) - password lookup - Do not load password lookup in network filters, allowing the password lookup to be overriden (https://github.com/ansible/ansible/pull/41907) - pause - ensure ctrl+c interrupt works in all cases (https://github.com/ansible/ansible/issues/35372) - powershell - use the tmpdir set by `remote_tmp` for become/async tasks instead of the generic $env:TEMP - https://github.com/ansible/ansible/pull/40210 - selinux - correct check mode behavior to report same changes as normal mode (https://github.com/ansible/ansible/pull/40721) - spwd - With python 3.6 spwd.getspnam returns PermissionError instead of KeyError if user does not have privileges (https://github.com/ansible/ansible/issues/39472) - synchronize - Ensure the local connection created by synchronize uses _remote_is_local=True, which causes ActionBase to build a local tmpdir (https://github.com/ansible/ansible/pull/40833) - template - Fix for encoding issues when a template path contains non-ascii characters and using the template path in ansible_managed (https://github.com/ansible/ansible/issues/27262) - template action plugin - fix the encoding of filenames to avoid tracebacks on Python2 when characters that are not present in the user's locale are present. (https://github.com/ansible/ansible/pull/39424) - user - only change the expiration time when necessary (https://github.com/ansible/ansible/issues/13235) - uses correct conn info for reset_connection https://github.com/ansible/ansible/issues/27520 - win_environment - Fix for issue where the environment value was deleted when a null value or empty string was set - https://github.com/ansible/ansible/issues/40450 - win_file - fix issue where special chars like [ and ] were not being handled correctly https://github.com/ansible/ansible/pull/37901 - win_get_url - fixed a few bugs around authentication and force no when using an FTP URL - win_iis_webapppool - redirect some module output to null so Ansible can read the output JSON https://github.com/ansible/ansible/issues/40874 - win_template - fix when specifying the dest option as a directory with and without the trailing slash https://github.com/ansible/ansible/issues/39886 - win_updates - Added the ability to run on a scheduled task for older hosts so async starts working again - https://github.com/ansible/ansible/issues/38364 - win_updates - Fix logic when using a whitelist for multiple updates - win_updates - Fix typo that hid the download error when a download failed - win_updates - Fixed issue where running win_updates on async fails without any error - windows become - Show better error messages when the become process fails - winrm - Add better error handling when the kinit process fails - winrm - allow `ansible_user` or `ansible_winrm_user` to override `ansible_ssh_user` when both are defined in an inventory - https://github.com/ansible/ansible/issues/39844 - winrm - ensure pexpect is set to not echo the input on a failure and have a manual sanity check afterwards https://github.com/ansible/ansible/issues/41865 - winrm connection plugin - Fix exception messages sometimes raising a traceback when the winrm connection plugin encounters an unrecoverable error. https://github.com/ansible/ansible/pull/39333 - xenserver_facts - ensure module works with newer versions of XenServer (https://github.com/ansible/ansible/pull/35821) - use python3 on (open)SUSE 15 or newer - Update to 2.5.5 - Changed the admin_users config option to not include "admin" by default as admin is frequently used for a non-privileged account - aws_s3 - add async support to the action plugin - aws_s3 - fix decrypting vault files - ec2_ami - cast the device_mapping volume size to an int - eos_logging - fix idempotency issues - cache plugins - A cache timeout of 0 means the cache will not expire. - ios_logging - fix idempotency issues - ios/nxos/eos_config - don't retrieve config in running_config when config is provided for diff - nxos_banner - fix multiline banner issue - nxos terminal plugin - fix output truncation - nxos_l3_interface - fix no switchport issue with loopback and svi interfaces - nxos_snapshot - fix compare_option - update to 2.2.3.0 (boo#1056094) * Various minor bug fixes ansible-2.7.6-bp150.3.3.1.noarch.rpm ansible-2.7.6-bp150.3.3.1.src.rpm openSUSE-2019-235 low openSUSE Backports SLE-15 Update This update for GraphicsMagick fixes the following issues: Security issue fixed: - CVE-2019-7397: Fixed a Memory leak in function WritePDFImage in pdf.c (bsc#1124366) This update was imported from the openSUSE:Leap:15.0:Update update project. GraphicsMagick-1.3.29-bp150.2.15.1.src.rpm GraphicsMagick-1.3.29-bp150.2.15.1.x86_64.rpm GraphicsMagick-devel-1.3.29-bp150.2.15.1.x86_64.rpm libGraphicsMagick++-Q16-12-1.3.29-bp150.2.15.1.x86_64.rpm libGraphicsMagick++-devel-1.3.29-bp150.2.15.1.x86_64.rpm libGraphicsMagick-Q16-3-1.3.29-bp150.2.15.1.x86_64.rpm libGraphicsMagick3-config-1.3.29-bp150.2.15.1.x86_64.rpm libGraphicsMagickWand-Q16-2-1.3.29-bp150.2.15.1.x86_64.rpm perl-GraphicsMagick-1.3.29-bp150.2.15.1.x86_64.rpm openSUSE-2019-217 moderate openSUSE Backports SLE-15 Update This update for pcmanfm-qt fixes the following issues: - Add missing libfm dependency (boo#1113767) This update was imported from the openSUSE:Leap:15.0:Update update project. pcmanfm-qt-0.12.0-bp150.3.3.1.src.rpm pcmanfm-qt-0.12.0-bp150.3.3.1.x86_64.rpm pcmanfm-qt-0.12.0-bp150.3.3.1.aarch64.rpm pcmanfm-qt-0.12.0-bp150.3.3.1.ppc64le.rpm pcmanfm-qt-0.12.0-bp150.3.3.1.s390x.rpm openSUSE-2019-236 moderate openSUSE Backports SLE-15 Update This update for calamares fixes the following issues: - Reflect the changed path to LiveOS read-only filesystem in KIWI-ng (KIWI 9) (boo#1124451). - BuildRequires libboost_python3-devel for Leap 15.0 and newer instead of boost-devel (boo#1124423, upstream issue 817). - Fix building for openSUSE Leap 42.3 by switching to GCC7. - Update to Calamares 3.1.11: - fix bug then some poorly-configured systems cannot reliably set the hardware clock (RTC). Previously this was an error which would abort the entire installation. Calamares now ignores the error. This update was imported from the openSUSE:Leap:15.0:Update update project. calamares-3.1.11-bp150.2.3.3.src.rpm calamares-3.1.11-bp150.2.3.3.x86_64.rpm calamares-branding-upstream-3.1.11-bp150.2.3.3.noarch.rpm calamares-webview-3.1.11-bp150.2.3.3.x86_64.rpm openSUSE-2019-237 low openSUSE Backports SLE-15 Update This update for mosquitto fixes the following issues: Security issues fixed: - CVE-2018-12546: Fixed an issue with revoked access to topics (bsc#1125019). - CVE-2018-12551: Fixed an issue which allowed malformed data in the password file to be treated as valid (bsc#1125020). - CVE-2018-12550: Fixed an an issue which treats an empty ACL file wrongly (bsc#1125021). This update was imported from the openSUSE:Leap:15.0:Update update project. libmosquitto1-1.4.15-bp150.3.3.1.x86_64.rpm libmosquittopp1-1.4.15-bp150.3.3.1.x86_64.rpm mosquitto-1.4.15-bp150.3.3.1.src.rpm mosquitto-1.4.15-bp150.3.3.1.x86_64.rpm mosquitto-clients-1.4.15-bp150.3.3.1.x86_64.rpm mosquitto-devel-1.4.15-bp150.3.3.1.x86_64.rpm libmosquitto1-1.4.15-bp150.3.3.1.aarch64.rpm libmosquittopp1-1.4.15-bp150.3.3.1.aarch64.rpm mosquitto-1.4.15-bp150.3.3.1.aarch64.rpm mosquitto-clients-1.4.15-bp150.3.3.1.aarch64.rpm mosquitto-devel-1.4.15-bp150.3.3.1.aarch64.rpm libmosquitto1-1.4.15-bp150.3.3.1.ppc64le.rpm libmosquittopp1-1.4.15-bp150.3.3.1.ppc64le.rpm mosquitto-1.4.15-bp150.3.3.1.ppc64le.rpm mosquitto-clients-1.4.15-bp150.3.3.1.ppc64le.rpm mosquitto-devel-1.4.15-bp150.3.3.1.ppc64le.rpm libmosquitto1-1.4.15-bp150.3.3.1.s390x.rpm libmosquittopp1-1.4.15-bp150.3.3.1.s390x.rpm mosquitto-1.4.15-bp150.3.3.1.s390x.rpm mosquitto-clients-1.4.15-bp150.3.3.1.s390x.rpm mosquitto-devel-1.4.15-bp150.3.3.1.s390x.rpm openSUSE-2019-246 moderate openSUSE Backports SLE-15 Update This update for monitoring-plugins-zypper fixes the following issues: - add suggested changes in sudoers file (boo#1103590) - cleanup the help output of the plugin - as newer zypper versions always require root rights to refresh the repositories, add a working sudoers file right from the beginning that allows to execute the needed zypper commands - Update to 1.96 + SLE-12-SP2 is deprecated + add SLE-15-SP1 and SLE-12-SP4 as supported This update was imported from the openSUSE:Leap:15.0:Update update project. monitoring-plugins-zypper-1.96-bp150.2.3.1.noarch.rpm monitoring-plugins-zypper-1.96-bp150.2.3.1.src.rpm openSUSE-2019-247 moderate openSUSE Backports SLE-15 Update This update for kauth fixes the following issues: Security issue fixed: - CVE-2019-7443: Fixed an insecure handling of arguments in helpers by removing the support of passing gui variants (bsc#1124863). This update was imported from the openSUSE:Leap:15.0:Update update project. kauth-5.45.0-bp150.3.6.1.src.rpm kauth-devel-5.45.0-bp150.3.6.1.x86_64.rpm libKF5Auth5-5.45.0-bp150.3.6.1.x86_64.rpm libKF5Auth5-lang-5.45.0-bp150.3.6.1.noarch.rpm kauth-devel-5.45.0-bp150.3.6.1.aarch64.rpm kauth-devel-64bit-5.45.0-bp150.3.6.1.aarch64_ilp32.rpm libKF5Auth5-5.45.0-bp150.3.6.1.aarch64.rpm libKF5Auth5-64bit-5.45.0-bp150.3.6.1.aarch64_ilp32.rpm kauth-devel-5.45.0-bp150.3.6.1.ppc64le.rpm libKF5Auth5-5.45.0-bp150.3.6.1.ppc64le.rpm kauth-devel-5.45.0-bp150.3.6.1.s390x.rpm libKF5Auth5-5.45.0-bp150.3.6.1.s390x.rpm openSUSE-2019-290 moderate openSUSE Backports SLE-15 Update This update for vlc fixes the following issues: - fix building with the latest libx264 with 10bit color depth support - fix a memory leak on error - fix the encoder to really drain the remaining frames This update was imported from the openSUSE:Leap:15.0:Update update project. libvlc5-3.0.2-bp150.2.3.1.x86_64.rpm libvlccore9-3.0.2-bp150.2.3.1.x86_64.rpm vlc-3.0.2-bp150.2.3.1.src.rpm vlc-3.0.2-bp150.2.3.1.x86_64.rpm vlc-codec-gstreamer-3.0.2-bp150.2.3.1.x86_64.rpm vlc-devel-3.0.2-bp150.2.3.1.x86_64.rpm vlc-jack-3.0.2-bp150.2.3.1.x86_64.rpm vlc-lang-3.0.2-bp150.2.3.1.noarch.rpm vlc-noX-3.0.2-bp150.2.3.1.x86_64.rpm vlc-qt-3.0.2-bp150.2.3.1.x86_64.rpm openSUSE-2019-298 important openSUSE Backports SLE-15 Update This update for chromium fixes the following issues: Chromium was updated: to 72.0.3626.121: * CVE-2019-5786: Use-after-free in FileReader fixed (boo#1127602) * Feature fixes update only chromedriver-72.0.3626.121-bp150.2.37.1.x86_64.rpm chromedriver-debuginfo-72.0.3626.121-bp150.2.37.1.x86_64.rpm chromium-72.0.3626.121-bp150.2.37.1.src.rpm chromium-72.0.3626.121-bp150.2.37.1.x86_64.rpm chromium-debuginfo-72.0.3626.121-bp150.2.37.1.x86_64.rpm chromium-debugsource-72.0.3626.121-bp150.2.37.1.x86_64.rpm chromedriver-72.0.3626.121-bp150.2.37.1.aarch64.rpm chromedriver-debuginfo-72.0.3626.121-bp150.2.37.1.aarch64.rpm chromium-72.0.3626.121-bp150.2.37.1.aarch64.rpm chromium-debuginfo-72.0.3626.121-bp150.2.37.1.aarch64.rpm chromium-debugsource-72.0.3626.121-bp150.2.37.1.aarch64.rpm openSUSE-2019-322 important openSUSE Backports SLE-15 Update This update for hiawatha to version 10.8.4 fixes the following issue: Security issue fixed: - CVE-2019-8358: Fixed a vulnerability which allowed a remote atacker to perform directory traversal when AllowDotFiles was enabled (bsc#1125751). This update was imported from the openSUSE:Leap:15.0:Update update project. hiawatha-10.8.4-bp150.3.3.1.src.rpm hiawatha-10.8.4-bp150.3.3.1.x86_64.rpm hiawatha-letsencrypt-10.8.4-bp150.3.3.1.x86_64.rpm hiawatha-10.8.4-bp150.3.3.1.aarch64.rpm hiawatha-letsencrypt-10.8.4-bp150.3.3.1.aarch64.rpm hiawatha-10.8.4-bp150.3.3.1.ppc64le.rpm hiawatha-letsencrypt-10.8.4-bp150.3.3.1.ppc64le.rpm hiawatha-10.8.4-bp150.3.3.1.s390x.rpm hiawatha-letsencrypt-10.8.4-bp150.3.3.1.s390x.rpm openSUSE-2019-311 moderate openSUSE Backports SLE-15 Update This update for console-setup and kbd provides the following fix: - Fix Shift-Tab mapping. (bsc#1122361) This update was imported from the SUSE:SLE-15:Update update project. This update was imported from the openSUSE:Leap:15.0:Update update project. console-setup-1.134-bp150.2.3.1.noarch.rpm console-setup-1.134-bp150.2.3.1.src.rpm openSUSE-2019-312 moderate openSUSE Backports SLE-15 Update This update for mailman fixes the following issues: - Add /etc/mailman/mailman.cgi-gid and fix user rights (boo#1095112) This update was imported from the openSUSE:Leap:15.0:Update update project. mailman-2.1.29-bp150.2.3.1.src.rpm mailman-2.1.29-bp150.2.3.1.x86_64.rpm mailman-2.1.29-bp150.2.3.1.aarch64.rpm mailman-2.1.29-bp150.2.3.1.ppc64le.rpm mailman-2.1.29-bp150.2.3.1.s390x.rpm openSUSE-2019-341 moderate openSUSE Backports SLE-15 Update This update for konsole fixes the following issues: - Fixed problems with rendering text in bold (boo#1095022) konsole-17.12.3-bp150.3.3.1.src.rpm konsole-17.12.3-bp150.3.3.1.x86_64.rpm konsole-part-17.12.3-bp150.3.3.1.x86_64.rpm konsole-part-lang-17.12.3-bp150.3.3.1.noarch.rpm konsole-17.12.3-bp150.3.3.1.aarch64.rpm konsole-part-17.12.3-bp150.3.3.1.aarch64.rpm konsole-17.12.3-bp150.3.3.1.ppc64le.rpm konsole-part-17.12.3-bp150.3.3.1.ppc64le.rpm konsole-17.12.3-bp150.3.3.1.s390x.rpm konsole-part-17.12.3-bp150.3.3.1.s390x.rpm openSUSE-2019-328 moderate openSUSE Backports SLE-15 Update This update for libcomps fixes the following issue: Security issue fixed: - CVE-2019-3817: Fixed a use-after-free vulnerability in comps_objmradix.c:comps_objmrtree_unite() function where could allow to application crash or code execution (bsc#1122841). This update was imported from the openSUSE:Leap:15.0:Update update project. libcomps-0.1.8-bp150.3.3.1.src.rpm libcomps-devel-0.1.8-bp150.3.3.1.x86_64.rpm libcomps-doc-0.1.8-bp150.3.3.1.noarch.rpm libcomps0_1_6-0.1.8-bp150.3.3.1.x86_64.rpm python-libcomps-doc-0.1.8-bp150.3.3.1.noarch.rpm python2-libcomps-0.1.8-bp150.3.3.1.x86_64.rpm python3-libcomps-0.1.8-bp150.3.3.1.x86_64.rpm libcomps-devel-0.1.8-bp150.3.3.1.aarch64.rpm libcomps0_1_6-0.1.8-bp150.3.3.1.aarch64.rpm python2-libcomps-0.1.8-bp150.3.3.1.aarch64.rpm python3-libcomps-0.1.8-bp150.3.3.1.aarch64.rpm libcomps-devel-0.1.8-bp150.3.3.1.ppc64le.rpm libcomps0_1_6-0.1.8-bp150.3.3.1.ppc64le.rpm python2-libcomps-0.1.8-bp150.3.3.1.ppc64le.rpm python3-libcomps-0.1.8-bp150.3.3.1.ppc64le.rpm libcomps-devel-0.1.8-bp150.3.3.1.s390x.rpm libcomps0_1_6-0.1.8-bp150.3.3.1.s390x.rpm python2-libcomps-0.1.8-bp150.3.3.1.s390x.rpm python3-libcomps-0.1.8-bp150.3.3.1.s390x.rpm openSUSE-2019-329 important openSUSE Backports SLE-15 Update This update for obs-service-tar_scm fixes the following issues: Security vulnerabilities addressed: - CVE-2018-12473: Fixed a path traversal issue, which allowed users to access files outside of the repository using relative paths (bsc#1105361) - CVE-2018-12474: Fixed an issue whereby crafted service parameters allowed for unexpected behaviour (bsc#1107507) - CVE-2018-12476: Fixed an issue whereby the outfilename parameter allowed to write files outside of package directory (bsc#1107944) Other bug fixes and changes made: - Prefer UTF-8 locale as output format for changes - added KankuFile - fix problems with unicode source files - added python-six to Requires in specfile - better encoding handling - fixes bsc#1082696 and bsc#1076410 - fix unicode in containers - move to python3 - added logging for better debugging changesgenerate - raise exception if no changesauthor given - Stop using @opensuse.org addresses to indicate a missing address - move argparse dep to -common package - allow submodule and ssl options in appimage - sync spec file as used in openSUSE:Tools project - check encoding problems for svn and print proper error msg - added new param '--locale' - separate service file installation in GNUmakefile - added glibc as Recommends in spec file - cleanup for broken svn caches - another fix for unicode problem in obs_scm - Final fix for unicode in filenames - Another attempt to fix unicode filenames in prep_tree_for_archive - Another attempt to fix unicode filenames in prep_tree_for_archive - fix bug with unicode filenames in prep_tree_for_archive - reuse _service*_servicedata/changes files from previous service runs - fix problems with unicode characters in commit messages for changeloggenerate - fix encoding issues if commit message contains utf8 char - revert encoding for old changes file - remove hardcoded utf-8 encodings - Add support for extract globbing - split pylint2 in GNUmakefile - fix check for "--reproducible" - create reproducible obscpio archives - fix regression from 44b3bee - Support also SSH urls for Git - check name/version option in obsinfo for slashes - check url for remote url - check symlinks in subdir parameter - check filename for slashes - disable follow_symlinks in extract feature - switch to obs_scm for this package - run download_files in appimage and snapcraft case - check --extract file path for parent dir - Fix parameter descriptions - changed os.removedirs -> shutil.rmtree - Adding information regarding the *package-metadata* option for the *tar* service The tar service is highly useful in combination with the *obscpio* service. After the fix for the metadata for the latter one, it is important to inform the users of the *tar* service that metadata is kept only if the flag *package-metadata* is enabled. Add the flag to the .service file for mentioning that. - Allow metadata packing for CPIO archives when desired As of now, metadata are always excluded from *obscpio* packages. This is because the *package-metadata* flag is ignored; this change (should) make *obscpio* aware of it. - improve handling of corrupt git cache directories - only do git stash save/pop if we have a non-empty working tree (#228) - don't allow DEBUG_TAR_SCM to change behaviour (#240) - add stub user docs in lieu of something proper (#238) - Remove clone_dir if clone fails - python-unittest2 is only required for the optional make check - move python-unittest2 dep to test suite only part (submission by olh) - Removing redundant pass statement - missing import for logging functions. - [backend] Adding http proxy support - python-unittest2 is only required for the optional make check - make installation of scm's optional - add a lot more detail to README - Git clone with --no-checkout in prepare_working_copy - Refactor and simplify git prepare_working_copy - Only use current dir if it actually looks like git (Fixes #202) - reactivate test_obscpio_extract_d - fix broken test create_archive - fix broken tests for broken-links - changed PREFIX in Gnumakefile to /usr - new cli option --skip-cleanup - fix for broken links - fix reference to snapcraft YAML file - fix docstring typo in TarSCM.scm.tar.fetch_upstream - acknowledge deficiencies in dev docs - wrap long lines in README This update was imported from the SUSE:SLE-15:Update update project. This update was imported from the openSUSE:Leap:15.0:Update update project. obs-service-appimage-0.10.5.1551309990.79898c7-bp150.3.3.1.noarch.rpm obs-service-obs_scm-0.10.5.1551309990.79898c7-bp150.3.3.1.noarch.rpm obs-service-obs_scm-common-0.10.5.1551309990.79898c7-bp150.3.3.1.noarch.rpm obs-service-snapcraft-0.10.5.1551309990.79898c7-bp150.3.3.1.noarch.rpm obs-service-tar-0.10.5.1551309990.79898c7-bp150.3.3.1.noarch.rpm obs-service-tar_scm-0.10.5.1551309990.79898c7-bp150.3.3.1.noarch.rpm obs-service-tar_scm-0.10.5.1551309990.79898c7-bp150.3.3.1.src.rpm openSUSE-2019-1049 moderate openSUSE Backports SLE-15 Update This update for aubio fixes the following issues: - CVE-2018-14522: Fixed a crash in aubio_pitch_set_unit (bsc#1102359) - CVE-2018-14523: Fixed a buffer overrread resulting in crash or information leakage in new_aubio_pitchyinfft (bsc#1102364) This update was imported from the openSUSE:Leap:15.0:Update update project. aubio-0.4.1-bp150.3.6.1.src.rpm aubio-tools-0.4.1-bp150.3.6.1.x86_64.rpm libaubio-devel-0.4.1-bp150.3.6.1.x86_64.rpm libaubio4-0.4.1-bp150.3.6.1.x86_64.rpm aubio-debugsource-0.4.1-bp150.3.6.1.x86_64.rpm aubio-tools-debuginfo-0.4.1-bp150.3.6.1.x86_64.rpm libaubio4-debuginfo-0.4.1-bp150.3.6.1.x86_64.rpm aubio-tools-0.4.1-bp150.3.6.1.aarch64.rpm libaubio-devel-0.4.1-bp150.3.6.1.aarch64.rpm libaubio4-0.4.1-bp150.3.6.1.aarch64.rpm libaubio4-64bit-0.4.1-bp150.3.6.1.aarch64_ilp32.rpm aubio-debugsource-0.4.1-bp150.3.6.1.aarch64.rpm aubio-tools-debuginfo-0.4.1-bp150.3.6.1.aarch64.rpm libaubio4-64bit-debuginfo-0.4.1-bp150.3.6.1.aarch64_ilp32.rpm libaubio4-debuginfo-0.4.1-bp150.3.6.1.aarch64.rpm aubio-tools-0.4.1-bp150.3.6.1.ppc64le.rpm libaubio-devel-0.4.1-bp150.3.6.1.ppc64le.rpm libaubio4-0.4.1-bp150.3.6.1.ppc64le.rpm aubio-debugsource-0.4.1-bp150.3.6.1.ppc64le.rpm aubio-tools-debuginfo-0.4.1-bp150.3.6.1.ppc64le.rpm libaubio4-debuginfo-0.4.1-bp150.3.6.1.ppc64le.rpm aubio-tools-0.4.1-bp150.3.6.1.s390x.rpm libaubio-devel-0.4.1-bp150.3.6.1.s390x.rpm libaubio4-0.4.1-bp150.3.6.1.s390x.rpm aubio-debugsource-0.4.1-bp150.3.6.1.s390x.rpm aubio-tools-debuginfo-0.4.1-bp150.3.6.1.s390x.rpm libaubio4-debuginfo-0.4.1-bp150.3.6.1.s390x.rpm openSUSE-2019-1050 moderate openSUSE Backports SLE-15 Update This update for blueman fixes the following issues: The following security issue was addressed: - Fixed the polkit authorization checks in blueman, which previously allowed any user with access to the D-Bus system bus to trigger certain network configuration logic in blueman without authentication (boo#1083066). This update was imported from the openSUSE:Leap:15.0:Update update project. blueman-2.0.6-bp150.2.3.1.src.rpm blueman-2.0.6-bp150.2.3.1.x86_64.rpm blueman-lang-2.0.6-bp150.2.3.1.noarch.rpm thunar-sendto-blueman-2.0.6-bp150.2.3.1.noarch.rpm blueman-2.0.6-bp150.2.3.1.aarch64.rpm blueman-2.0.6-bp150.2.3.1.ppc64le.rpm blueman-2.0.6-bp150.2.3.1.s390x.rpm openSUSE-2019-1057 moderate openSUSE Backports SLE-15 Update This update contains a number of updated dependencies for Chromium, including ffmpeg 4. New package ffmpeg-4: - Builds ffmpeg 4 libraries New package ffmpeg-3: - Builds ffmpeg 3 libraries and command line utilities Changes in zeromq, codec2, libsodium: - baselibs.conf changes required for ffmpeg 4 This update was imported from the openSUSE:Leap:15.0:Update update project. codec2-0.6-bp150.4.3.1.src.rpm codec2-0.6-bp150.4.3.1.x86_64.rpm codec2-debuginfo-0.6-bp150.4.3.1.x86_64.rpm codec2-debugsource-0.6-bp150.4.3.1.x86_64.rpm codec2-devel-0.6-bp150.4.3.1.x86_64.rpm codec2-examples-0.6-bp150.4.3.1.noarch.rpm libcodec2-0_6-0.6-bp150.4.3.1.x86_64.rpm libcodec2-0_6-debuginfo-0.6-bp150.4.3.1.x86_64.rpm ffmpeg-4-4.0.1-bp150.18.1.src.rpm ffmpeg-4-libavcodec-devel-4.0.1-bp150.18.1.x86_64.rpm ffmpeg-4-libavdevice-devel-4.0.1-bp150.18.1.x86_64.rpm ffmpeg-4-libavfilter-devel-4.0.1-bp150.18.1.x86_64.rpm ffmpeg-4-libavformat-devel-4.0.1-bp150.18.1.x86_64.rpm ffmpeg-4-libavresample-devel-4.0.1-bp150.18.1.x86_64.rpm ffmpeg-4-libavutil-devel-4.0.1-bp150.18.1.x86_64.rpm ffmpeg-4-libpostproc-devel-4.0.1-bp150.18.1.x86_64.rpm ffmpeg-4-libswresample-devel-4.0.1-bp150.18.1.x86_64.rpm ffmpeg-4-libswscale-devel-4.0.1-bp150.18.1.x86_64.rpm ffmpeg-4-private-devel-4.0.1-bp150.18.1.x86_64.rpm libavcodec58-4.0.1-bp150.18.1.x86_64.rpm libavdevice58-4.0.1-bp150.18.1.x86_64.rpm libavfilter7-4.0.1-bp150.18.1.x86_64.rpm libavformat58-4.0.1-bp150.18.1.x86_64.rpm libavresample4-4.0.1-bp150.18.1.x86_64.rpm libavutil56-4.0.1-bp150.18.1.x86_64.rpm libpostproc55-4.0.1-bp150.18.1.x86_64.rpm libswresample3-4.0.1-bp150.18.1.x86_64.rpm libswscale5-4.0.1-bp150.18.1.x86_64.rpm codec2-0.6-bp150.4.3.1.aarch64.rpm codec2-debuginfo-0.6-bp150.4.3.1.aarch64.rpm codec2-debugsource-0.6-bp150.4.3.1.aarch64.rpm codec2-devel-0.6-bp150.4.3.1.aarch64.rpm libcodec2-0_6-0.6-bp150.4.3.1.aarch64.rpm libcodec2-0_6-64bit-0.6-bp150.4.3.1.aarch64_ilp32.rpm libcodec2-0_6-64bit-debuginfo-0.6-bp150.4.3.1.aarch64_ilp32.rpm libcodec2-0_6-debuginfo-0.6-bp150.4.3.1.aarch64.rpm ffmpeg-4-libavcodec-devel-4.0.1-bp150.18.1.aarch64.rpm ffmpeg-4-libavdevice-devel-4.0.1-bp150.18.1.aarch64.rpm ffmpeg-4-libavfilter-devel-4.0.1-bp150.18.1.aarch64.rpm ffmpeg-4-libavformat-devel-4.0.1-bp150.18.1.aarch64.rpm ffmpeg-4-libavresample-devel-4.0.1-bp150.18.1.aarch64.rpm ffmpeg-4-libavutil-devel-4.0.1-bp150.18.1.aarch64.rpm ffmpeg-4-libpostproc-devel-4.0.1-bp150.18.1.aarch64.rpm ffmpeg-4-libswresample-devel-4.0.1-bp150.18.1.aarch64.rpm ffmpeg-4-libswscale-devel-4.0.1-bp150.18.1.aarch64.rpm ffmpeg-4-private-devel-4.0.1-bp150.18.1.aarch64.rpm libavcodec58-4.0.1-bp150.18.1.aarch64.rpm libavcodec58-64bit-4.0.1-bp150.18.1.aarch64_ilp32.rpm libavdevice58-4.0.1-bp150.18.1.aarch64.rpm libavdevice58-64bit-4.0.1-bp150.18.1.aarch64_ilp32.rpm libavfilter7-4.0.1-bp150.18.1.aarch64.rpm libavfilter7-64bit-4.0.1-bp150.18.1.aarch64_ilp32.rpm libavformat58-4.0.1-bp150.18.1.aarch64.rpm libavformat58-64bit-4.0.1-bp150.18.1.aarch64_ilp32.rpm libavresample4-4.0.1-bp150.18.1.aarch64.rpm libavresample4-64bit-4.0.1-bp150.18.1.aarch64_ilp32.rpm libavutil56-4.0.1-bp150.18.1.aarch64.rpm libavutil56-64bit-4.0.1-bp150.18.1.aarch64_ilp32.rpm libpostproc55-4.0.1-bp150.18.1.aarch64.rpm libpostproc55-64bit-4.0.1-bp150.18.1.aarch64_ilp32.rpm libswresample3-4.0.1-bp150.18.1.aarch64.rpm libswresample3-64bit-4.0.1-bp150.18.1.aarch64_ilp32.rpm libswscale5-4.0.1-bp150.18.1.aarch64.rpm libswscale5-64bit-4.0.1-bp150.18.1.aarch64_ilp32.rpm codec2-0.6-bp150.4.3.1.ppc64le.rpm codec2-debuginfo-0.6-bp150.4.3.1.ppc64le.rpm codec2-debugsource-0.6-bp150.4.3.1.ppc64le.rpm codec2-devel-0.6-bp150.4.3.1.ppc64le.rpm libcodec2-0_6-0.6-bp150.4.3.1.ppc64le.rpm libcodec2-0_6-debuginfo-0.6-bp150.4.3.1.ppc64le.rpm ffmpeg-4-libavcodec-devel-4.0.1-bp150.18.1.ppc64le.rpm ffmpeg-4-libavdevice-devel-4.0.1-bp150.18.1.ppc64le.rpm ffmpeg-4-libavfilter-devel-4.0.1-bp150.18.1.ppc64le.rpm ffmpeg-4-libavformat-devel-4.0.1-bp150.18.1.ppc64le.rpm ffmpeg-4-libavresample-devel-4.0.1-bp150.18.1.ppc64le.rpm ffmpeg-4-libavutil-devel-4.0.1-bp150.18.1.ppc64le.rpm ffmpeg-4-libpostproc-devel-4.0.1-bp150.18.1.ppc64le.rpm ffmpeg-4-libswresample-devel-4.0.1-bp150.18.1.ppc64le.rpm ffmpeg-4-libswscale-devel-4.0.1-bp150.18.1.ppc64le.rpm ffmpeg-4-private-devel-4.0.1-bp150.18.1.ppc64le.rpm libavcodec58-4.0.1-bp150.18.1.ppc64le.rpm libavdevice58-4.0.1-bp150.18.1.ppc64le.rpm libavfilter7-4.0.1-bp150.18.1.ppc64le.rpm libavformat58-4.0.1-bp150.18.1.ppc64le.rpm libavresample4-4.0.1-bp150.18.1.ppc64le.rpm libavutil56-4.0.1-bp150.18.1.ppc64le.rpm libpostproc55-4.0.1-bp150.18.1.ppc64le.rpm libswresample3-4.0.1-bp150.18.1.ppc64le.rpm libswscale5-4.0.1-bp150.18.1.ppc64le.rpm codec2-0.6-bp150.4.3.1.s390x.rpm codec2-debuginfo-0.6-bp150.4.3.1.s390x.rpm codec2-debugsource-0.6-bp150.4.3.1.s390x.rpm codec2-devel-0.6-bp150.4.3.1.s390x.rpm libcodec2-0_6-0.6-bp150.4.3.1.s390x.rpm libcodec2-0_6-debuginfo-0.6-bp150.4.3.1.s390x.rpm ffmpeg-4-libavcodec-devel-4.0.1-bp150.18.1.s390x.rpm ffmpeg-4-libavdevice-devel-4.0.1-bp150.18.1.s390x.rpm ffmpeg-4-libavfilter-devel-4.0.1-bp150.18.1.s390x.rpm ffmpeg-4-libavformat-devel-4.0.1-bp150.18.1.s390x.rpm ffmpeg-4-libavresample-devel-4.0.1-bp150.18.1.s390x.rpm ffmpeg-4-libavutil-devel-4.0.1-bp150.18.1.s390x.rpm ffmpeg-4-libpostproc-devel-4.0.1-bp150.18.1.s390x.rpm ffmpeg-4-libswresample-devel-4.0.1-bp150.18.1.s390x.rpm ffmpeg-4-libswscale-devel-4.0.1-bp150.18.1.s390x.rpm ffmpeg-4-private-devel-4.0.1-bp150.18.1.s390x.rpm libavcodec58-4.0.1-bp150.18.1.s390x.rpm libavdevice58-4.0.1-bp150.18.1.s390x.rpm libavfilter7-4.0.1-bp150.18.1.s390x.rpm libavformat58-4.0.1-bp150.18.1.s390x.rpm libavresample4-4.0.1-bp150.18.1.s390x.rpm libavutil56-4.0.1-bp150.18.1.s390x.rpm libpostproc55-4.0.1-bp150.18.1.s390x.rpm libswresample3-4.0.1-bp150.18.1.s390x.rpm libswscale5-4.0.1-bp150.18.1.s390x.rpm openSUSE-2019-1060 low openSUSE Backports SLE-15 Update This update for feh fixes the following issue: - feh crashed on right-click when user tried to open menu (boo#1101466) This update also contains a number of upstream bug fixes in the 2.27.1 release. This update was imported from the openSUSE:Leap:15.0:Update update project. feh-2.27.1-bp150.2.3.1.src.rpm feh-2.27.1-bp150.2.3.1.x86_64.rpm feh-2.27.1-bp150.2.3.1.aarch64.rpm feh-2.27.1-bp150.2.3.1.ppc64le.rpm feh-2.27.1-bp150.2.3.1.s390x.rpm openSUSE-2019-1061 low openSUSE Backports SLE-15 Update This recommended update for gcompris-qt fixes the following issue (boo#1093988): - text corrections and translation updates - UI position and element interaction corrections - fixes to audio in several activities - corrections and improvements to multiple activities gcompris-qt-voices was updated to match. This update was imported from the openSUSE:Leap:15.0:Update update project. gcompris-qt-voices-0~20180517-bp150.2.3.1.noarch.rpm gcompris-qt-voices-0~20180517-bp150.2.3.1.src.rpm gcompris-qt-0.91-bp150.2.3.1.src.rpm gcompris-qt-0.91-bp150.2.3.1.x86_64.rpm gcompris-qt-activities-0.91-bp150.2.3.1.noarch.rpm gcompris-qt-debuginfo-0.91-bp150.2.3.1.x86_64.rpm gcompris-qt-debugsource-0.91-bp150.2.3.1.x86_64.rpm gcompris-qt-lang-0.91-bp150.2.3.1.noarch.rpm gcompris-qt-0.91-bp150.2.3.1.aarch64.rpm gcompris-qt-debuginfo-0.91-bp150.2.3.1.aarch64.rpm gcompris-qt-debugsource-0.91-bp150.2.3.1.aarch64.rpm gcompris-qt-0.91-bp150.2.3.1.ppc64le.rpm gcompris-qt-debuginfo-0.91-bp150.2.3.1.ppc64le.rpm gcompris-qt-debugsource-0.91-bp150.2.3.1.ppc64le.rpm gcompris-qt-0.91-bp150.2.3.1.s390x.rpm gcompris-qt-debuginfo-0.91-bp150.2.3.1.s390x.rpm gcompris-qt-debugsource-0.91-bp150.2.3.1.s390x.rpm openSUSE-2019-1048 moderate openSUSE Backports SLE-15 Update This update for owncloud-client fixes the following issues: - Update to upstream version 2.4.2 (boo#1057832) * Coming with some bugfixes, Changelog: https://owncloud.org/changelog/desktop-client/ * Fix a problem with older Qt versions (https://github.com/owncloud/client/issues/5968) This update was imported from the openSUSE:Leap:15.0:Update update project. libowncloudsync-devel-2.4.2-bp150.2.3.1.x86_64.rpm libowncloudsync0-2.4.2-bp150.2.3.1.x86_64.rpm owncloud-client-2.4.2-bp150.2.3.1.src.rpm owncloud-client-2.4.2-bp150.2.3.1.x86_64.rpm owncloud-client-caja-2.4.2-bp150.2.3.1.x86_64.rpm owncloud-client-doc-2.4.2-bp150.2.3.1.x86_64.rpm owncloud-client-dolphin-2.4.2-bp150.2.3.1.x86_64.rpm owncloud-client-l10n-2.4.2-bp150.2.3.1.x86_64.rpm owncloud-client-nautilus-2.4.2-bp150.2.3.1.x86_64.rpm owncloud-client-nemo-2.4.2-bp150.2.3.1.x86_64.rpm libowncloudsync-devel-2.4.2-bp150.2.3.1.aarch64.rpm libowncloudsync0-2.4.2-bp150.2.3.1.aarch64.rpm owncloud-client-2.4.2-bp150.2.3.1.aarch64.rpm owncloud-client-caja-2.4.2-bp150.2.3.1.aarch64.rpm owncloud-client-doc-2.4.2-bp150.2.3.1.aarch64.rpm owncloud-client-dolphin-2.4.2-bp150.2.3.1.aarch64.rpm owncloud-client-l10n-2.4.2-bp150.2.3.1.aarch64.rpm owncloud-client-nautilus-2.4.2-bp150.2.3.1.aarch64.rpm owncloud-client-nemo-2.4.2-bp150.2.3.1.aarch64.rpm libowncloudsync-devel-2.4.2-bp150.2.3.1.ppc64le.rpm libowncloudsync0-2.4.2-bp150.2.3.1.ppc64le.rpm owncloud-client-2.4.2-bp150.2.3.1.ppc64le.rpm owncloud-client-caja-2.4.2-bp150.2.3.1.ppc64le.rpm owncloud-client-doc-2.4.2-bp150.2.3.1.ppc64le.rpm owncloud-client-dolphin-2.4.2-bp150.2.3.1.ppc64le.rpm owncloud-client-l10n-2.4.2-bp150.2.3.1.ppc64le.rpm owncloud-client-nautilus-2.4.2-bp150.2.3.1.ppc64le.rpm owncloud-client-nemo-2.4.2-bp150.2.3.1.ppc64le.rpm libowncloudsync-devel-2.4.2-bp150.2.3.1.s390x.rpm libowncloudsync0-2.4.2-bp150.2.3.1.s390x.rpm owncloud-client-2.4.2-bp150.2.3.1.s390x.rpm owncloud-client-caja-2.4.2-bp150.2.3.1.s390x.rpm owncloud-client-doc-2.4.2-bp150.2.3.1.s390x.rpm owncloud-client-dolphin-2.4.2-bp150.2.3.1.s390x.rpm owncloud-client-l10n-2.4.2-bp150.2.3.1.s390x.rpm owncloud-client-nautilus-2.4.2-bp150.2.3.1.s390x.rpm owncloud-client-nemo-2.4.2-bp150.2.3.1.s390x.rpm openSUSE-2019-1052 low openSUSE Backports SLE-15 Update This update for perl-Finance-Quote fixes the following issues: - GnuCash was unable to retrieve price information if the Perl CGI module was not installed (boo#1077300). This update was imported from the openSUSE:Leap:15.0:Update update project. perl-Finance-Quote-1.47-bp150.3.3.1.noarch.rpm perl-Finance-Quote-1.47-bp150.3.3.1.src.rpm openSUSE-2019-1051 moderate openSUSE Backports SLE-15 Update This update for kauth fixes the following issues: Security issue fixed: - CVE-2019-7443: Fixed an insecure handling of arguments in helpers by removing the support of passing gui variants (bsc#1124863). This update was imported from the openSUSE:Leap:15.0:Update update project. kauth-5.32.0-bp150.3.10.1.src.rpm kauth-debugsource-5.32.0-bp150.3.10.1.x86_64.rpm kauth-devel-5.32.0-bp150.3.10.1.x86_64.rpm libKF5Auth5-5.32.0-bp150.3.10.1.x86_64.rpm libKF5Auth5-debuginfo-5.32.0-bp150.3.10.1.x86_64.rpm libKF5Auth5-lang-5.32.0-bp150.3.10.1.noarch.rpm kcoreaddons-5.32.0-bp150.3.3.1.src.rpm kcoreaddons-5.32.0-bp150.3.3.1.x86_64.rpm kcoreaddons-debugsource-5.32.0-bp150.3.3.1.x86_64.rpm kcoreaddons-devel-5.32.0-bp150.3.3.1.x86_64.rpm kcoreaddons-devel-debuginfo-5.32.0-bp150.3.3.1.x86_64.rpm kcoreaddons-lang-5.32.0-bp150.3.3.1.noarch.rpm libKF5CoreAddons5-5.32.0-bp150.3.3.1.x86_64.rpm libKF5CoreAddons5-debuginfo-5.32.0-bp150.3.3.1.x86_64.rpm libpolkit-qt5-1-1-0.112.0-bp150.3.3.1.x86_64.rpm libpolkit-qt5-1-devel-0.112.0-bp150.3.3.1.x86_64.rpm polkit-qt5-1-0.112.0-bp150.3.3.1.src.rpm kauth-debugsource-5.32.0-bp150.3.10.1.aarch64.rpm kauth-devel-5.32.0-bp150.3.10.1.aarch64.rpm kauth-devel-64bit-5.32.0-bp150.3.10.1.aarch64_ilp32.rpm libKF5Auth5-5.32.0-bp150.3.10.1.aarch64.rpm libKF5Auth5-64bit-5.32.0-bp150.3.10.1.aarch64_ilp32.rpm libKF5Auth5-64bit-debuginfo-5.32.0-bp150.3.10.1.aarch64_ilp32.rpm libKF5Auth5-debuginfo-5.32.0-bp150.3.10.1.aarch64.rpm kcoreaddons-5.32.0-bp150.3.3.1.aarch64.rpm kcoreaddons-debugsource-5.32.0-bp150.3.3.1.aarch64.rpm kcoreaddons-devel-5.32.0-bp150.3.3.1.aarch64.rpm kcoreaddons-devel-64bit-5.32.0-bp150.3.3.1.aarch64_ilp32.rpm kcoreaddons-devel-64bit-debuginfo-5.32.0-bp150.3.3.1.aarch64_ilp32.rpm kcoreaddons-devel-debuginfo-5.32.0-bp150.3.3.1.aarch64.rpm libKF5CoreAddons5-5.32.0-bp150.3.3.1.aarch64.rpm libKF5CoreAddons5-64bit-5.32.0-bp150.3.3.1.aarch64_ilp32.rpm libKF5CoreAddons5-64bit-debuginfo-5.32.0-bp150.3.3.1.aarch64_ilp32.rpm libKF5CoreAddons5-debuginfo-5.32.0-bp150.3.3.1.aarch64.rpm libpolkit-qt5-1-1-0.112.0-bp150.3.3.1.aarch64.rpm libpolkit-qt5-1-1-64bit-0.112.0-bp150.3.3.1.aarch64_ilp32.rpm libpolkit-qt5-1-devel-0.112.0-bp150.3.3.1.aarch64.rpm libpolkit-qt5-1-devel-64bit-0.112.0-bp150.3.3.1.aarch64_ilp32.rpm kauth-debugsource-5.32.0-bp150.3.10.1.ppc64le.rpm kauth-devel-5.32.0-bp150.3.10.1.ppc64le.rpm libKF5Auth5-5.32.0-bp150.3.10.1.ppc64le.rpm libKF5Auth5-debuginfo-5.32.0-bp150.3.10.1.ppc64le.rpm kcoreaddons-5.32.0-bp150.3.3.1.ppc64le.rpm kcoreaddons-debugsource-5.32.0-bp150.3.3.1.ppc64le.rpm kcoreaddons-devel-5.32.0-bp150.3.3.1.ppc64le.rpm kcoreaddons-devel-debuginfo-5.32.0-bp150.3.3.1.ppc64le.rpm libKF5CoreAddons5-5.32.0-bp150.3.3.1.ppc64le.rpm libKF5CoreAddons5-debuginfo-5.32.0-bp150.3.3.1.ppc64le.rpm libpolkit-qt5-1-1-0.112.0-bp150.3.3.1.ppc64le.rpm libpolkit-qt5-1-devel-0.112.0-bp150.3.3.1.ppc64le.rpm kauth-debugsource-5.32.0-bp150.3.10.1.s390x.rpm kauth-devel-5.32.0-bp150.3.10.1.s390x.rpm libKF5Auth5-5.32.0-bp150.3.10.1.s390x.rpm libKF5Auth5-debuginfo-5.32.0-bp150.3.10.1.s390x.rpm kcoreaddons-5.32.0-bp150.3.3.1.s390x.rpm kcoreaddons-debugsource-5.32.0-bp150.3.3.1.s390x.rpm kcoreaddons-devel-5.32.0-bp150.3.3.1.s390x.rpm kcoreaddons-devel-debuginfo-5.32.0-bp150.3.3.1.s390x.rpm libKF5CoreAddons5-5.32.0-bp150.3.3.1.s390x.rpm libKF5CoreAddons5-debuginfo-5.32.0-bp150.3.3.1.s390x.rpm libpolkit-qt5-1-1-0.112.0-bp150.3.3.1.s390x.rpm libpolkit-qt5-1-devel-0.112.0-bp150.3.3.1.s390x.rpm openSUSE-2019-1066 low openSUSE Backports SLE-15 Update This update for ffmpeg-4 to version 4.0.2 fixes the following issues: These security issues were fixed: - CVE-2018-15822: The flv_write_packet function did not check for an empty audio packet, leading to an assertion failure and DoS (bsc#1105869). - CVE-2018-13300: An improper argument passed to the avpriv_request_sample function may have triggered an out-of-array read while converting a crafted AVI file to MPEG4, leading to a denial of service and possibly an information disclosure (bsc#1100348). These non-security issues were fixed: - Enable webvtt encoders and decoders (boo#1092241). - Build codec2 encoder and decoder, add libcodec2 to enable_decoders and enable_encoders. - Enable mpeg 1 and 2 encoders. This update was imported from the openSUSE:Leap:15.0:Update update project. ffmpeg-4-4.0.2-bp150.21.1.src.rpm ffmpeg-4-libavcodec-devel-4.0.2-bp150.21.1.x86_64.rpm ffmpeg-4-libavdevice-devel-4.0.2-bp150.21.1.x86_64.rpm ffmpeg-4-libavfilter-devel-4.0.2-bp150.21.1.x86_64.rpm ffmpeg-4-libavformat-devel-4.0.2-bp150.21.1.x86_64.rpm ffmpeg-4-libavresample-devel-4.0.2-bp150.21.1.x86_64.rpm ffmpeg-4-libavutil-devel-4.0.2-bp150.21.1.x86_64.rpm ffmpeg-4-libpostproc-devel-4.0.2-bp150.21.1.x86_64.rpm ffmpeg-4-libswresample-devel-4.0.2-bp150.21.1.x86_64.rpm ffmpeg-4-libswscale-devel-4.0.2-bp150.21.1.x86_64.rpm ffmpeg-4-private-devel-4.0.2-bp150.21.1.x86_64.rpm libavcodec58-4.0.2-bp150.21.1.x86_64.rpm libavdevice58-4.0.2-bp150.21.1.x86_64.rpm libavfilter7-4.0.2-bp150.21.1.x86_64.rpm libavformat58-4.0.2-bp150.21.1.x86_64.rpm libavresample4-4.0.2-bp150.21.1.x86_64.rpm libavutil56-4.0.2-bp150.21.1.x86_64.rpm libpostproc55-4.0.2-bp150.21.1.x86_64.rpm libswresample3-4.0.2-bp150.21.1.x86_64.rpm libswscale5-4.0.2-bp150.21.1.x86_64.rpm ffmpeg-4-libavcodec-devel-4.0.2-bp150.21.1.aarch64.rpm ffmpeg-4-libavdevice-devel-4.0.2-bp150.21.1.aarch64.rpm ffmpeg-4-libavfilter-devel-4.0.2-bp150.21.1.aarch64.rpm ffmpeg-4-libavformat-devel-4.0.2-bp150.21.1.aarch64.rpm ffmpeg-4-libavresample-devel-4.0.2-bp150.21.1.aarch64.rpm ffmpeg-4-libavutil-devel-4.0.2-bp150.21.1.aarch64.rpm ffmpeg-4-libpostproc-devel-4.0.2-bp150.21.1.aarch64.rpm ffmpeg-4-libswresample-devel-4.0.2-bp150.21.1.aarch64.rpm ffmpeg-4-libswscale-devel-4.0.2-bp150.21.1.aarch64.rpm ffmpeg-4-private-devel-4.0.2-bp150.21.1.aarch64.rpm libavcodec58-4.0.2-bp150.21.1.aarch64.rpm libavcodec58-64bit-4.0.2-bp150.21.1.aarch64_ilp32.rpm libavdevice58-4.0.2-bp150.21.1.aarch64.rpm libavdevice58-64bit-4.0.2-bp150.21.1.aarch64_ilp32.rpm libavfilter7-4.0.2-bp150.21.1.aarch64.rpm libavfilter7-64bit-4.0.2-bp150.21.1.aarch64_ilp32.rpm libavformat58-4.0.2-bp150.21.1.aarch64.rpm libavformat58-64bit-4.0.2-bp150.21.1.aarch64_ilp32.rpm libavresample4-4.0.2-bp150.21.1.aarch64.rpm libavresample4-64bit-4.0.2-bp150.21.1.aarch64_ilp32.rpm libavutil56-4.0.2-bp150.21.1.aarch64.rpm libavutil56-64bit-4.0.2-bp150.21.1.aarch64_ilp32.rpm libpostproc55-4.0.2-bp150.21.1.aarch64.rpm libpostproc55-64bit-4.0.2-bp150.21.1.aarch64_ilp32.rpm libswresample3-4.0.2-bp150.21.1.aarch64.rpm libswresample3-64bit-4.0.2-bp150.21.1.aarch64_ilp32.rpm libswscale5-4.0.2-bp150.21.1.aarch64.rpm libswscale5-64bit-4.0.2-bp150.21.1.aarch64_ilp32.rpm ffmpeg-4-libavcodec-devel-4.0.2-bp150.21.1.ppc64le.rpm ffmpeg-4-libavdevice-devel-4.0.2-bp150.21.1.ppc64le.rpm ffmpeg-4-libavfilter-devel-4.0.2-bp150.21.1.ppc64le.rpm ffmpeg-4-libavformat-devel-4.0.2-bp150.21.1.ppc64le.rpm ffmpeg-4-libavresample-devel-4.0.2-bp150.21.1.ppc64le.rpm ffmpeg-4-libavutil-devel-4.0.2-bp150.21.1.ppc64le.rpm ffmpeg-4-libpostproc-devel-4.0.2-bp150.21.1.ppc64le.rpm ffmpeg-4-libswresample-devel-4.0.2-bp150.21.1.ppc64le.rpm ffmpeg-4-libswscale-devel-4.0.2-bp150.21.1.ppc64le.rpm ffmpeg-4-private-devel-4.0.2-bp150.21.1.ppc64le.rpm libavcodec58-4.0.2-bp150.21.1.ppc64le.rpm libavdevice58-4.0.2-bp150.21.1.ppc64le.rpm libavfilter7-4.0.2-bp150.21.1.ppc64le.rpm libavformat58-4.0.2-bp150.21.1.ppc64le.rpm libavresample4-4.0.2-bp150.21.1.ppc64le.rpm libavutil56-4.0.2-bp150.21.1.ppc64le.rpm libpostproc55-4.0.2-bp150.21.1.ppc64le.rpm libswresample3-4.0.2-bp150.21.1.ppc64le.rpm libswscale5-4.0.2-bp150.21.1.ppc64le.rpm ffmpeg-4-libavcodec-devel-4.0.2-bp150.21.1.s390x.rpm ffmpeg-4-libavdevice-devel-4.0.2-bp150.21.1.s390x.rpm ffmpeg-4-libavfilter-devel-4.0.2-bp150.21.1.s390x.rpm ffmpeg-4-libavformat-devel-4.0.2-bp150.21.1.s390x.rpm ffmpeg-4-libavresample-devel-4.0.2-bp150.21.1.s390x.rpm ffmpeg-4-libavutil-devel-4.0.2-bp150.21.1.s390x.rpm ffmpeg-4-libpostproc-devel-4.0.2-bp150.21.1.s390x.rpm ffmpeg-4-libswresample-devel-4.0.2-bp150.21.1.s390x.rpm ffmpeg-4-libswscale-devel-4.0.2-bp150.21.1.s390x.rpm ffmpeg-4-private-devel-4.0.2-bp150.21.1.s390x.rpm libavcodec58-4.0.2-bp150.21.1.s390x.rpm libavdevice58-4.0.2-bp150.21.1.s390x.rpm libavfilter7-4.0.2-bp150.21.1.s390x.rpm libavformat58-4.0.2-bp150.21.1.s390x.rpm libavresample4-4.0.2-bp150.21.1.s390x.rpm libavutil56-4.0.2-bp150.21.1.s390x.rpm libpostproc55-4.0.2-bp150.21.1.s390x.rpm libswresample3-4.0.2-bp150.21.1.s390x.rpm libswscale5-4.0.2-bp150.21.1.s390x.rpm