SUSE Package Hub - SUSE Package Hub Updates

Update ID	Severity	Type	Issued	Description	Packages
SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-3960	important	security	2024-11-08	This update for libheif fixes the following issues: - CVE-2024-41311: Fixed out-of-bounds read and write in ImageOverlay:parse() due to decoding a heif file containing an overlay image with forged of ...	libheif-1.12.0-150400.3.14.1
SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-3950	moderate	security	2024-11-08	This update for govulncheck-vulndb fixes the following issues: - Update to version 0.0.20241104T154416 2024-11-04T15:44:16Z. Refs jsc#PED-11136 Go CVE Numbering Authority IDs added or updated wit ...	govulncheck-vulndb-0.0.20241104T154416-150000.1.12.1
SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-3948	important	security	2024-11-08	This update for qemu fixes the following issues: - CVE-2024-8354: Fixed assertion failure in usb_ep_get() (bsc#1230834). - CVE-2024-8612: Fixed nformation leak in virtio devices (bsc#1230915). - CVE- ...	qemu-7.1.0-150500.49.24.1
openSUSE-2024-358	moderate	security	2024-11-08	This update for qbittorrent fixes the following issues: - Update to version 5.0.1 (fixes boo#1232731 CVE-2024-51774) Added features: * Add "Simple pread/pwrite" disk IO type Bug fixes: * ...	qbittorrent-5.0.1-bp156.3.6.1
openSUSE-2024-357	important	security	2024-11-08	This update for chromium fixes the following issues: Chromium 130.0.6723.116 (boo#1232843) - CVE-2024-10826: Use after free in Family Experiences - CVE-2024-10827: Use after free in Serial	chromium-130.0.6723.116-bp156.2.50.1
openSUSE-2024-356	important	security	2024-11-08	This update for chromium fixes the following issues: Chromium 130.0.6723.116 (boo#1232843) - CVE-2024-10826: Use after free in Family Experiences - CVE-2024-10827: Use after free in Serial	chromium-130.0.6723.116-bp155.2.138.1
SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-3919	moderate	recommended	2024-11-06	This update for pipewire fixes the following issues: - Make sure the pipewire-libjack package doesn't completely replace the original jack libraries unless the pipewire-jack package which install ...	pipewire-1.0.5+git36.60deeb2-150600.3.3.5
openSUSE-2024-355	important	security	2024-11-06	This update for python-mysql-connector-python fixes the following issues: - Update to 9.1.0 (boo#1231740, CVE-2024-21272) - WL#16452: Bundle all installable authentication plugins when building the ...	python-mysql-connector-python-9.1.0-bp156.4.3.1
openSUSE-2024-354	moderate	recommended	2024-11-06	This update for orthanc-wsi fixes the following issues: Version 2.1 * Support of sparse encoding of tiles in OpenSlide (notably for MIRAX format) * OrthancWSIDicomizer supports plain TIFF, besi ...	orthanc-wsi-2.1-bp156.2.3.1
openSUSE-2024-353	moderate	security	2024-11-06	This update for kmail-account-wizard fixes the following issues: - CVE-2024-50624: Fixed that plaintext HTTP was used for URLs when retrieving configuration files (boo#1232454, kde#487882)	kmail-account-wizard-23.08.5-bp156.2.3.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-3960

important

security

2024-11-08

This update for libheif fixes the following issues: - CVE-2024-41311: Fixed out-of-bounds read and write in ImageOverlay:parse() due to decoding a heif file containing an overlay image with forged of ...

libheif-1.12.0-150400.3.14.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-3950

moderate

security

2024-11-08

This update for govulncheck-vulndb fixes the following issues: - Update to version 0.0.20241104T154416 2024-11-04T15:44:16Z. Refs jsc#PED-11136 Go CVE Numbering Authority IDs added or updated wit ...

govulncheck-vulndb-0.0.20241104T154416-150000.1.12.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-3948

important

security

2024-11-08

This update for qemu fixes the following issues: - CVE-2024-8354: Fixed assertion failure in usb_ep_get() (bsc#1230834). - CVE-2024-8612: Fixed nformation leak in virtio devices (bsc#1230915). - CVE- ...

qemu-7.1.0-150500.49.24.1

openSUSE-2024-358

moderate

security

2024-11-08

This update for qbittorrent fixes the following issues: - Update to version 5.0.1 (fixes boo#1232731 CVE-2024-51774) Added features: * Add "Simple pread/pwrite" disk IO type Bug fixes: * ...

qbittorrent-5.0.1-bp156.3.6.1

openSUSE-2024-357

important

security

2024-11-08

This update for chromium fixes the following issues: Chromium 130.0.6723.116 (boo#1232843) - CVE-2024-10826: Use after free in Family Experiences - CVE-2024-10827: Use after free in Serial

chromium-130.0.6723.116-bp156.2.50.1

openSUSE-2024-356

important

security

2024-11-08

This update for chromium fixes the following issues: Chromium 130.0.6723.116 (boo#1232843) - CVE-2024-10826: Use after free in Family Experiences - CVE-2024-10827: Use after free in Serial

chromium-130.0.6723.116-bp155.2.138.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-3919

moderate

recommended

2024-11-06

This update for pipewire fixes the following issues: - Make sure the pipewire-libjack package doesn't completely replace the original jack libraries unless the pipewire-jack package which install ...

pipewire-1.0.5+git36.60deeb2-150600.3.3.5

openSUSE-2024-355

important

security

2024-11-06

This update for python-mysql-connector-python fixes the following issues: - Update to 9.1.0 (boo#1231740, CVE-2024-21272) - WL#16452: Bundle all installable authentication plugins when building the ...

python-mysql-connector-python-9.1.0-bp156.4.3.1

openSUSE-2024-354

moderate

recommended

2024-11-06

This update for orthanc-wsi fixes the following issues: Version 2.1 * Support of sparse encoding of tiles in OpenSlide (notably for MIRAX format) * OrthancWSIDicomizer supports plain TIFF, besi ...

orthanc-wsi-2.1-bp156.2.3.1

openSUSE-2024-353

moderate

security

2024-11-06

This update for kmail-account-wizard fixes the following issues: - CVE-2024-50624: Fixed that plaintext HTTP was used for URLs when retrieving configuration files (boo#1232454, kde#487882)

kmail-account-wizard-23.08.5-bp156.2.3.1