SUSE Package Hub - SUSE Package Hub Updates

Update ID	Severity	Type	Issued	Description	Packages
SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1868	important	security	2024-05-30	This update for apache2 fixes the following issues: - CVE-2023-38709: Fixed faulty input validation inside the HTTP response splitting code (bsc#1222330). - CVE-2024-24795: Fixed handling of maliciou ...	apache2-2.4.51-150400.6.17.1
SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1862	moderate	security	2024-05-30	This update for python fixes the following issues: - CVE-2023-52425: Fixed using the system libexpat (bsc#1219559). - CVE-2023-27043: Modifed fix for unicode string handling in email.utils.parseaddr( ...	python-2.7.18-150000.65.1 python-base-2.7.18-150000.65.1
SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1860	important	security	2024-05-30	This update for uriparser fixes the following issues: - CVE-2024-34402: Fixed integer overflow protection in ComposeQueryEngine (bsc#1223887). - CVE-2024-34403: Fixed integer overflow protection in C ...	uriparser-0.8.5-150000.3.8.1
SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1855	important	security	2024-05-30	This update for python-PyMySQL fixes the following issues: - CVE-2024-36039: Fixed SQL injection if used with untrusted JSON input (bsc#1225070).	python-PyMySQL-0.7.11-150000.3.3.1
openSUSE-2024-147	important	security	2024-05-29	This update for libredwg fixes the following issues: Update to tag 0.12.5.6924: - CVE-2023-26157: Fixed out-of-bound read involving section->num_pages in decode_r2007.c (boo#1218473)	libredwg-0.12.5.6924-bp155.3.6.1
openSUSE-2024-146	important	security	2024-05-29	This update for gifsicle fixes the following issues: Update to version 1.95: - CVE-2023-46009: Fixed floating point exception vulnerability via resize_stream at src/xform.c (boo#1216403)	gifsicle-1.95-bp155.3.6.1
SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1794	low	recommended	2024-05-28	This update for python-threadpoolctl fixes the following issues: - Add python-threadpoolctl to Package Hub Subpackages in SLE-15-SP5 (bsc#1223995, jsc#MSC-796)	python-threadpoolctl-2.1.0-150300.3.2.1
openSUSE-2024-145	moderate	recommended	2024-05-28	This update for lyx fixes the following issues: Update to version 2.3.8: - This is the last maintenance of the 2.3.x series with a couple of bug fixes (see included ANOUNCE file), but the most i ...	lyx-2.3.8-bp155.2.3.1
SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1786	moderate	recommended	2024-05-27	This update for lasso fixes the following issues: - Fix segmentation fault causing the test suite to fail, build was failing for SLE 15 SP5 (bsc#1205335) - Patch written by Petr Gajdos, reviewed, a ...	lasso-2.6.1-150200.19.4
openSUSE-2024-144	moderate	recommended	2024-05-27	This update for ksh fixes the following issues: - remove no longer needed qemu workaround - do not use posix_spawn as it lacks proper job handling [boo#1224057]	ksh-93vu-bp155.3.3.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1868

important

security

2024-05-30

This update for apache2 fixes the following issues: - CVE-2023-38709: Fixed faulty input validation inside the HTTP response splitting code (bsc#1222330). - CVE-2024-24795: Fixed handling of maliciou ...

apache2-2.4.51-150400.6.17.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1862

moderate

security

2024-05-30

This update for python fixes the following issues: - CVE-2023-52425: Fixed using the system libexpat (bsc#1219559). - CVE-2023-27043: Modifed fix for unicode string handling in email.utils.parseaddr( ...

python-2.7.18-150000.65.1
python-base-2.7.18-150000.65.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1860

important

security

2024-05-30

This update for uriparser fixes the following issues: - CVE-2024-34402: Fixed integer overflow protection in ComposeQueryEngine (bsc#1223887). - CVE-2024-34403: Fixed integer overflow protection in C ...

uriparser-0.8.5-150000.3.8.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1855

important

security

2024-05-30

This update for python-PyMySQL fixes the following issues: - CVE-2024-36039: Fixed SQL injection if used with untrusted JSON input (bsc#1225070).

python-PyMySQL-0.7.11-150000.3.3.1

openSUSE-2024-147

important

security

2024-05-29

This update for libredwg fixes the following issues: Update to tag 0.12.5.6924: - CVE-2023-26157: Fixed out-of-bound read involving section->num_pages in decode_r2007.c (boo#1218473)

libredwg-0.12.5.6924-bp155.3.6.1

openSUSE-2024-146

important

security

2024-05-29

This update for gifsicle fixes the following issues: Update to version 1.95: - CVE-2023-46009: Fixed floating point exception vulnerability via resize_stream at src/xform.c (boo#1216403)

gifsicle-1.95-bp155.3.6.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1794

low

recommended

2024-05-28

This update for python-threadpoolctl fixes the following issues: - Add python-threadpoolctl to Package Hub Subpackages in SLE-15-SP5 (bsc#1223995, jsc#MSC-796)

python-threadpoolctl-2.1.0-150300.3.2.1

openSUSE-2024-145

moderate

recommended

2024-05-28

This update for lyx fixes the following issues: Update to version 2.3.8: - This is the last maintenance of the 2.3.x series with a couple of bug fixes (see included ANOUNCE file), but the most i ...

lyx-2.3.8-bp155.2.3.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1786

moderate

recommended

2024-05-27

This update for lasso fixes the following issues: - Fix segmentation fault causing the test suite to fail, build was failing for SLE 15 SP5 (bsc#1205335) - Patch written by Petr Gajdos, reviewed, a ...

lasso-2.6.1-150200.19.4

openSUSE-2024-144

moderate

recommended

2024-05-27

This update for ksh fixes the following issues: - remove no longer needed qemu workaround - do not use posix_spawn as it lacks proper job handling [boo#1224057]

ksh-93vu-bp155.3.3.1