SUSE Security Advisories — April 2018 — SUSE Security Advisories

OPENSUSE-SU-2021:0153-1

openSUSEHIGH2018-04-29

Security update for wavpack

CVEs:CVE-2018-10536

Affected products

Product	Status	Vendor	Package	Ecosystem
libwavpack1-32bit-5.4.0-lp151.5.6.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libwavpack1-32bit-5.4.0-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—
libwavpack1-5.4.0-lp151.5.6.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libwavpack1-5.4.0-lp151.5.6.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libwavpack1-5.4.0-lp152.7.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
libwavpack1-5.4.0-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—
wavpack-5.4.0-lp151.5.6.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
wavpack-5.4.0-lp151.5.6.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
wavpack-5.4.0-lp152.7.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
wavpack-5.4.0-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—
wavpack-devel-5.4.0-lp151.5.6.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
wavpack-devel-5.4.0-lp151.5.6.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
wavpack-devel-5.4.0-lp152.7.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
wavpack-devel-5.4.0-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2021:0153-1

openSUSEHIGH2018-04-29

Security update for wavpack

CVEs:CVE-2018-10537

Affected products

Product	Status	Vendor	Package	Ecosystem
libwavpack1-32bit-5.4.0-lp151.5.6.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libwavpack1-32bit-5.4.0-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—
libwavpack1-5.4.0-lp151.5.6.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libwavpack1-5.4.0-lp151.5.6.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libwavpack1-5.4.0-lp152.7.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
libwavpack1-5.4.0-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—
wavpack-5.4.0-lp151.5.6.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
wavpack-5.4.0-lp151.5.6.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
wavpack-5.4.0-lp152.7.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
wavpack-5.4.0-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—
wavpack-devel-5.4.0-lp151.5.6.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
wavpack-devel-5.4.0-lp151.5.6.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
wavpack-devel-5.4.0-lp152.7.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
wavpack-devel-5.4.0-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2021:0153-1

openSUSECRITICAL2018-04-29

Security update for wavpack

CVEs:CVE-2018-10538

Affected products

Product	Status	Vendor	Package	Ecosystem
libwavpack1-32bit-5.4.0-lp151.5.6.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libwavpack1-32bit-5.4.0-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—
libwavpack1-5.4.0-lp151.5.6.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libwavpack1-5.4.0-lp151.5.6.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libwavpack1-5.4.0-lp152.7.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
libwavpack1-5.4.0-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—
wavpack-5.4.0-lp151.5.6.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
wavpack-5.4.0-lp151.5.6.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
wavpack-5.4.0-lp152.7.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
wavpack-5.4.0-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—
wavpack-devel-5.4.0-lp151.5.6.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
wavpack-devel-5.4.0-lp151.5.6.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
wavpack-devel-5.4.0-lp152.7.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
wavpack-devel-5.4.0-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2021:0153-1

openSUSECRITICAL2018-04-29

Security update for wavpack

CVEs:CVE-2018-10539

Affected products

Product	Status	Vendor	Package	Ecosystem
libwavpack1-32bit-5.4.0-lp151.5.6.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libwavpack1-32bit-5.4.0-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—
libwavpack1-5.4.0-lp151.5.6.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libwavpack1-5.4.0-lp151.5.6.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libwavpack1-5.4.0-lp152.7.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
libwavpack1-5.4.0-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—
wavpack-5.4.0-lp151.5.6.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
wavpack-5.4.0-lp151.5.6.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
wavpack-5.4.0-lp152.7.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
wavpack-5.4.0-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—
wavpack-devel-5.4.0-lp151.5.6.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
wavpack-devel-5.4.0-lp151.5.6.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
wavpack-devel-5.4.0-lp152.7.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
wavpack-devel-5.4.0-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2021:0153-1

openSUSECRITICAL2018-04-29

Security update for wavpack

CVEs:CVE-2018-10540

Affected products

Product	Status	Vendor	Package	Ecosystem
libwavpack1-32bit-5.4.0-lp151.5.6.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libwavpack1-32bit-5.4.0-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—
libwavpack1-5.4.0-lp151.5.6.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libwavpack1-5.4.0-lp151.5.6.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libwavpack1-5.4.0-lp152.7.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
libwavpack1-5.4.0-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—
wavpack-5.4.0-lp151.5.6.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
wavpack-5.4.0-lp151.5.6.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
wavpack-5.4.0-lp152.7.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
wavpack-5.4.0-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—
wavpack-devel-5.4.0-lp151.5.6.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
wavpack-devel-5.4.0-lp151.5.6.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
wavpack-devel-5.4.0-lp152.7.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
wavpack-devel-5.4.0-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2020:0086-1

openSUSELOW2018-04-26

Security update for python3

CVEs:CVE-2018-1060

Affected products

Product	Status	Vendor	Package	Ecosystem
libpython3_6m1_0-32bit-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libpython3_6m1_0-3.6.10-lp151.6.7.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libpython3_6m1_0-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-32bit-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-3.6.10-lp151.6.7.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-base-32bit-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-base-3.6.10-lp151.6.7.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-base-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-curses-3.6.10-lp151.6.7.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-curses-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-dbm-3.6.10-lp151.6.7.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-dbm-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-devel-3.6.10-lp151.6.7.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-devel-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-idle-3.6.10-lp151.6.7.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-idle-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-testsuite-3.6.10-lp151.6.7.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-testsuite-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-tk-3.6.10-lp151.6.7.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-tk-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-tools-3.6.10-lp151.6.7.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-tools-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2020:0086-1

openSUSEMEDIUM2018-04-26

Security update for python3

CVEs:CVE-2018-1061

Affected products

Product	Status	Vendor	Package	Ecosystem
libpython3_6m1_0-32bit-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libpython3_6m1_0-3.6.10-lp151.6.7.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libpython3_6m1_0-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-32bit-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-3.6.10-lp151.6.7.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-base-32bit-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-base-3.6.10-lp151.6.7.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-base-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-curses-3.6.10-lp151.6.7.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-curses-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-dbm-3.6.10-lp151.6.7.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-dbm-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-devel-3.6.10-lp151.6.7.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-devel-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-idle-3.6.10-lp151.6.7.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-idle-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-testsuite-3.6.10-lp151.6.7.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-testsuite-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-tk-3.6.10-lp151.6.7.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-tk-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-tools-3.6.10-lp151.6.7.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python3-tools-3.6.10-lp151.6.7.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2019:1225-1

openSUSEMEDIUM2018-04-25

Security update for flac

CVEs:CVE-2017-6888

Affected products

Product	Status	Vendor	Package	Ecosystem
flac-1.3.2-lp150.2.3.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
flac-1.3.2-lp150.2.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
flac-devel-1.3.2-lp150.2.3.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
flac-devel-1.3.2-lp150.2.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
flac-devel-32bit-1.3.2-lp150.2.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
flac-doc-1.3.2-lp150.2.3.1.noarch as component of openSUSE Leap 15.0	affected	SUSE	—	—
libFLAC++6-1.3.2-lp150.2.3.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libFLAC++6-1.3.2-lp150.2.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libFLAC++6-32bit-1.3.2-lp150.2.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libFLAC8-1.3.2-lp150.2.3.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libFLAC8-1.3.2-lp150.2.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libFLAC8-32bit-1.3.2-lp150.2.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2020:0079-1

openSUSEHIGH2018-04-25

Security update for glusterfs

CVEs:CVE-2018-1112

Affected products

Product	Status	Vendor	Package	Ecosystem
glusterfs-3.12.15-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
glusterfs-3.12.15-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
glusterfs-devel-3.12.15-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
glusterfs-devel-3.12.15-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libgfapi0-3.12.15-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libgfapi0-3.12.15-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libgfchangelog0-3.12.15-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libgfchangelog0-3.12.15-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libgfdb0-3.12.15-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libgfdb0-3.12.15-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libgfrpc0-3.12.15-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libgfrpc0-3.12.15-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libgfxdr0-3.12.15-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libgfxdr0-3.12.15-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libglusterfs0-3.12.15-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libglusterfs0-3.12.15-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python-gluster-3.12.15-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python-gluster-3.12.15-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2020:0954-1

openSUSECRITICAL2018-04-24

Security update for nasm

CVEs:CVE-2018-10316

Affected products

Product	Status	Vendor	Package	Ecosystem
nasm-2.14.02-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
nasm-2.14.02-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
nasm-2.14.02-lp152.4.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
nasm-2.14.02-lp152.4.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2020:0954-1

openSUSEHIGH2018-04-21

Security update for nasm

CVEs:CVE-2018-10254

Affected products

Product	Status	Vendor	Package	Ecosystem
nasm-2.14.02-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
nasm-2.14.02-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
nasm-2.14.02-lp152.4.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
nasm-2.14.02-lp152.4.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2018:1058-1

openSUSEHIGH2018-04-19

Security update for phpMyAdmin

CVEs:CVE-2018-10188

Affected products

Product	Status	Vendor	Package	Ecosystem
phpMyAdmin-4.8.0.1-20.1.noarch as component of SUSE Package Hub 12	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2020:0079-1

openSUSEHIGH2018-04-18

Security update for glusterfs

CVEs:CVE-2018-1088

Affected products

Product	Status	Vendor	Package	Ecosystem
glusterfs-3.12.15-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
glusterfs-3.12.15-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
glusterfs-devel-3.12.15-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
glusterfs-devel-3.12.15-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libgfapi0-3.12.15-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libgfapi0-3.12.15-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libgfchangelog0-3.12.15-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libgfchangelog0-3.12.15-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libgfdb0-3.12.15-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libgfdb0-3.12.15-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libgfrpc0-3.12.15-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libgfrpc0-3.12.15-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libgfxdr0-3.12.15-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libgfxdr0-3.12.15-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libglusterfs0-3.12.15-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libglusterfs0-3.12.15-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python-gluster-3.12.15-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
python-gluster-3.12.15-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2019:0152-1

openSUSEMEDIUM2018-04-16

Security update for openssl-1_1

CVEs:CVE-2018-0737

Affected products

Product	Status	Vendor	Package	Ecosystem
libopenssl1_1-1.1.0i-lp150.3.18.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libopenssl1_1-1.1.0i-lp150.3.18.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libopenssl1_1-32bit-1.1.0i-lp150.3.18.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libopenssl-1_1-devel-1.1.0i-lp150.3.18.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libopenssl-1_1-devel-1.1.0i-lp150.3.18.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libopenssl-1_1-devel-32bit-1.1.0i-lp150.3.18.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libopenssl1_1-hmac-1.1.0i-lp150.3.18.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libopenssl1_1-hmac-1.1.0i-lp150.3.18.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libopenssl1_1-hmac-32bit-1.1.0i-lp150.3.18.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
openssl-1_1-1.1.0i-lp150.3.18.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
openssl-1_1-1.1.0i-lp150.3.18.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
openssl-1_1-doc-1.1.0i-lp150.3.18.1.noarch as component of openSUSE Leap 15.0	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2020:0954-1

openSUSELOW2018-04-11

Security update for nasm

CVEs:CVE-2018-10016

Affected products

Product	Status	Vendor	Package	Ecosystem
nasm-2.14.02-lp151.3.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
nasm-2.14.02-lp151.3.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
nasm-2.14.02-lp152.4.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
nasm-2.14.02-lp152.4.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2018:3906-1

openSUSEMEDIUM2018-04-10

Security update for SDL2_image

CVEs:CVE-2018-3839

Affected products

Product	Status	Vendor	Package	Ecosystem
libSDL2_image-2_0-0-2.0.4-bp150.3.3.1.aarch64 as component of SUSE Package Hub 15	affected	SUSE	—	—
libSDL2_image-2_0-0-2.0.4-bp150.3.3.1.ppc64le as component of SUSE Package Hub 15	affected	SUSE	—	—
libSDL2_image-2_0-0-2.0.4-bp150.3.3.1.s390x as component of SUSE Package Hub 15	affected	SUSE	—	—
libSDL2_image-2_0-0-2.0.4-bp150.3.3.1.x86_64 as component of SUSE Package Hub 15	affected	SUSE	—	—
libSDL2_image-2_0-0-64bit-2.0.4-bp150.3.3.1.aarch64_ilp32 as component of SUSE Package Hub 15	affected	SUSE	—	—
libSDL2_image-devel-2.0.4-bp150.3.3.1.aarch64 as component of SUSE Package Hub 15	affected	SUSE	—	—
libSDL2_image-devel-2.0.4-bp150.3.3.1.ppc64le as component of SUSE Package Hub 15	affected	SUSE	—	—
libSDL2_image-devel-2.0.4-bp150.3.3.1.s390x as component of SUSE Package Hub 15	affected	SUSE	—	—
libSDL2_image-devel-2.0.4-bp150.3.3.1.x86_64 as component of SUSE Package Hub 15	affected	SUSE	—	—
libSDL2_image-devel-64bit-2.0.4-bp150.3.3.1.aarch64_ilp32 as component of SUSE Package Hub 15	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2018:1039-1

openSUSEHIGH2018-04-10

Security update for mbedtls

CVEs:CVE-2018-9988

Affected products

Product	Status	Vendor	Package	Ecosystem
libmbedtls9-1.3.19-14.1.aarch64 as component of SUSE Package Hub 12	affected	SUSE	—	—
libmbedtls9-1.3.19-14.1.ppc64le as component of SUSE Package Hub 12	affected	SUSE	—	—
libmbedtls9-1.3.19-14.1.s390x as component of SUSE Package Hub 12	affected	SUSE	—	—
libmbedtls9-1.3.19-14.1.x86_64 as component of SUSE Package Hub 12	affected	SUSE	—	—
mbedtls-devel-1.3.19-14.1.aarch64 as component of SUSE Package Hub 12	affected	SUSE	—	—
mbedtls-devel-1.3.19-14.1.ppc64le as component of SUSE Package Hub 12	affected	SUSE	—	—
mbedtls-devel-1.3.19-14.1.s390x as component of SUSE Package Hub 12	affected	SUSE	—	—
mbedtls-devel-1.3.19-14.1.x86_64 as component of SUSE Package Hub 12	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2018:1039-1

openSUSEHIGH2018-04-10

Security update for mbedtls

CVEs:CVE-2018-9989

Affected products

Product	Status	Vendor	Package	Ecosystem
libmbedtls9-1.3.19-14.1.aarch64 as component of SUSE Package Hub 12	affected	SUSE	—	—
libmbedtls9-1.3.19-14.1.ppc64le as component of SUSE Package Hub 12	affected	SUSE	—	—
libmbedtls9-1.3.19-14.1.s390x as component of SUSE Package Hub 12	affected	SUSE	—	—
libmbedtls9-1.3.19-14.1.x86_64 as component of SUSE Package Hub 12	affected	SUSE	—	—
mbedtls-devel-1.3.19-14.1.aarch64 as component of SUSE Package Hub 12	affected	SUSE	—	—
mbedtls-devel-1.3.19-14.1.ppc64le as component of SUSE Package Hub 12	affected	SUSE	—	—
mbedtls-devel-1.3.19-14.1.s390x as component of SUSE Package Hub 12	affected	SUSE	—	—
mbedtls-devel-1.3.19-14.1.x86_64 as component of SUSE Package Hub 12	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2024:10052-1

openSUSECRITICAL2018-04-06

python-rope-0.10.2-2.2 on GA media

CVEs:CVE-2014-3539

Affected products

Product	Status	Vendor	Package	Ecosystem
python-rope-0.10.2-2.2.aarch64 as component of openSUSE Tumbleweed	affected	SUSE	—	—
python-rope-0.10.2-2.2.ppc64le as component of openSUSE Tumbleweed	affected	SUSE	—	—
python-rope-0.10.2-2.2.s390x as component of openSUSE Tumbleweed	affected	SUSE	—	—
python-rope-0.10.2-2.2.x86_64 as component of openSUSE Tumbleweed	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2020:0482-1

openSUSEMEDIUM2018-04-04

Security update for exiv2

CVEs:CVE-2018-9305

Affected products

Product	Status	Vendor	Package	Ecosystem
exiv2-0.26-lp151.7.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
exiv2-0.26-lp151.7.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
exiv2-lang-0.26-lp151.7.3.1.noarch as component of openSUSE Leap 15.1	affected	SUSE	—	—
libexiv2-26-0.26-lp151.7.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libexiv2-26-0.26-lp151.7.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libexiv2-26-32bit-0.26-lp151.7.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libexiv2-devel-0.26-lp151.7.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libexiv2-devel-0.26-lp151.7.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libexiv2-doc-0.26-lp151.7.3.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libexiv2-doc-0.26-lp151.7.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2020:1517-1

openSUSEHIGH2018-04-04

Security update for jasper

CVEs:CVE-2018-9252

Affected products

Product	Status	Vendor	Package	Ecosystem
jasper-2.0.14-lp151.4.9.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
jasper-2.0.14-lp151.4.9.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
jasper-2.0.14-lp152.7.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
jasper-2.0.14-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—
libjasper4-2.0.14-lp151.4.9.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libjasper4-2.0.14-lp151.4.9.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libjasper4-2.0.14-lp152.7.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
libjasper4-2.0.14-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—
libjasper4-32bit-2.0.14-lp151.4.9.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libjasper4-32bit-2.0.14-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—
libjasper-devel-2.0.14-lp151.4.9.1.i586 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libjasper-devel-2.0.14-lp151.4.9.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
libjasper-devel-2.0.14-lp152.7.3.1.i586 as component of openSUSE Leap 15.2	affected	SUSE	—	—
libjasper-devel-2.0.14-lp152.7.3.1.x86_64 as component of openSUSE Leap 15.2	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2019:1771-1

openSUSELOW2018-04-03

Security update for ruby-bundled-gems-rpmhelper, ruby2.5

CVEs:CVE-2018-6914

Affected products

Product	Status	Vendor	Package	Ecosystem
libruby2_5-2_5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libruby2_5-2_5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-devel-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-devel-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-devel-extra-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-devel-extra-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-doc-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-doc-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-doc-ri-2.5.5-lp151.4.3.1.noarch as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-doc-ri-2.5.5-lp151.4.3.1.noarch as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-stdlib-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-stdlib-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby-bundled-gems-rpmhelper-0.0.2-lp151.2.1.noarch as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby-bundled-gems-rpmhelper-0.0.2-lp151.2.1.noarch as component of openSUSE Leap 15.1	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2019:1771-1

openSUSEHIGH2018-04-03

Security update for ruby-bundled-gems-rpmhelper, ruby2.5

CVEs:CVE-2018-8777

Affected products

Product	Status	Vendor	Package	Ecosystem
libruby2_5-2_5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libruby2_5-2_5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-devel-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-devel-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-devel-extra-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-devel-extra-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-doc-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-doc-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-doc-ri-2.5.5-lp151.4.3.1.noarch as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-doc-ri-2.5.5-lp151.4.3.1.noarch as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-stdlib-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-stdlib-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby-bundled-gems-rpmhelper-0.0.2-lp151.2.1.noarch as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby-bundled-gems-rpmhelper-0.0.2-lp151.2.1.noarch as component of openSUSE Leap 15.1	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2019:1771-1

openSUSEMEDIUM2018-04-03

Security update for ruby-bundled-gems-rpmhelper, ruby2.5

CVEs:CVE-2018-8778

Affected products

Product	Status	Vendor	Package	Ecosystem
libruby2_5-2_5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libruby2_5-2_5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-devel-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-devel-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-devel-extra-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-devel-extra-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-doc-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-doc-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-doc-ri-2.5.5-lp151.4.3.1.noarch as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-doc-ri-2.5.5-lp151.4.3.1.noarch as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-stdlib-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-stdlib-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby-bundled-gems-rpmhelper-0.0.2-lp151.2.1.noarch as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby-bundled-gems-rpmhelper-0.0.2-lp151.2.1.noarch as component of openSUSE Leap 15.1	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2019:1771-1

openSUSELOW2018-04-03

Security update for ruby-bundled-gems-rpmhelper, ruby2.5

CVEs:CVE-2018-8779

Affected products

Product	Status	Vendor	Package	Ecosystem
libruby2_5-2_5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libruby2_5-2_5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-devel-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-devel-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-devel-extra-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-devel-extra-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-doc-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-doc-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-doc-ri-2.5.5-lp151.4.3.1.noarch as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-doc-ri-2.5.5-lp151.4.3.1.noarch as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-stdlib-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-stdlib-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby-bundled-gems-rpmhelper-0.0.2-lp151.2.1.noarch as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby-bundled-gems-rpmhelper-0.0.2-lp151.2.1.noarch as component of openSUSE Leap 15.1	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2019:1771-1

openSUSELOW2018-04-03

Security update for ruby-bundled-gems-rpmhelper, ruby2.5

CVEs:CVE-2018-8780

Affected products

Product	Status	Vendor	Package	Ecosystem
libruby2_5-2_5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libruby2_5-2_5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-devel-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-devel-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-devel-extra-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-devel-extra-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-doc-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-doc-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-doc-ri-2.5.5-lp151.4.3.1.noarch as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-doc-ri-2.5.5-lp151.4.3.1.noarch as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-stdlib-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-stdlib-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby-bundled-gems-rpmhelper-0.0.2-lp151.2.1.noarch as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby-bundled-gems-rpmhelper-0.0.2-lp151.2.1.noarch as component of openSUSE Leap 15.1	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2019:0081-1

openSUSEHIGH2018-04-03

Security update for webkit2gtk3

CVEs:CVE-2018-4162

Affected products

Product	Status	Vendor	Package	Ecosystem
libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch as component of openSUSE Leap 15.0	affected	SUSE	—	—
libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit-jsc-4-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2019:0081-1

openSUSEHIGH2018-04-03

Security update for webkit2gtk3

CVEs:CVE-2018-4163

Affected products

Product	Status	Vendor	Package	Ecosystem
libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch as component of openSUSE Leap 15.0	affected	SUSE	—	—
libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit-jsc-4-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2019:0081-1

openSUSEHIGH2018-04-03

Security update for webkit2gtk3

CVEs:CVE-2018-4165

Affected products

Product	Status	Vendor	Package	Ecosystem
libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libjavascriptcoregtk-4_0-18-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libjavascriptcoregtk-4_0-18-32bit-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libwebkit2gtk3-lang-2.22.5-lp150.2.9.1.noarch as component of openSUSE Leap 15.0	affected	SUSE	—	—
libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libwebkit2gtk-4_0-37-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libwebkit2gtk-4_0-37-32bit-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
typelib-1_0-JavaScriptCore-4_0-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
typelib-1_0-WebKit2-4_0-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
typelib-1_0-WebKit2WebExtension-4_0-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk3-devel-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk3-devel-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk3-minibrowser-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk3-plugin-process-gtk2-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit2gtk-4_0-injected-bundles-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit-jsc-4-2.22.5-lp150.2.9.1.i586 as component of openSUSE Leap 15.0	affected	SUSE	—	—
webkit-jsc-4-2.22.5-lp150.2.9.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—

Upstream advisory

OPENSUSE-SU-2019:1771-1

openSUSEMEDIUM2018-04-03

Security update for ruby-bundled-gems-rpmhelper, ruby2.5

CVEs:CVE-2017-17742

Affected products

Product	Status	Vendor	Package	Ecosystem
libruby2_5-2_5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
libruby2_5-2_5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-devel-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-devel-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-devel-extra-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-devel-extra-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-doc-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-doc-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-doc-ri-2.5.5-lp151.4.3.1.noarch as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-doc-ri-2.5.5-lp151.4.3.1.noarch as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby2.5-stdlib-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby2.5-stdlib-2.5.5-lp151.4.3.1.x86_64 as component of openSUSE Leap 15.1	affected	SUSE	—	—
ruby-bundled-gems-rpmhelper-0.0.2-lp151.2.1.noarch as component of openSUSE Leap 15.0	affected	SUSE	—	—
ruby-bundled-gems-rpmhelper-0.0.2-lp151.2.1.noarch as component of openSUSE Leap 15.1	affected	SUSE	—	—

Upstream advisory

Advisories

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Need live exploit intelligence?