SUSE Package Hub - SUSE Package Hub Updates

Update ID	Severity	Type	Issued	Description	Packages
SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1855	important	security	2024-05-30	This update for python-PyMySQL fixes the following issues: - CVE-2024-36039: Fixed SQL injection if used with untrusted JSON input (bsc#1225070).	python-PyMySQL-0.7.11-150000.3.3.1
openSUSE-2024-147	important	security	2024-05-29	This update for libredwg fixes the following issues: Update to tag 0.12.5.6924: - CVE-2023-26157: Fixed out-of-bound read involving section->num_pages in decode_r2007.c (boo#1218473)	libredwg-0.12.5.6924-bp155.3.6.1
openSUSE-2024-146	important	security	2024-05-29	This update for gifsicle fixes the following issues: Update to version 1.95: - CVE-2023-46009: Fixed floating point exception vulnerability via resize_stream at src/xform.c (boo#1216403)	gifsicle-1.95-bp155.3.6.1
SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1794	low	recommended	2024-05-28	This update for python-threadpoolctl fixes the following issues: - Add python-threadpoolctl to Package Hub Subpackages in SLE-15-SP5 (bsc#1223995, jsc#MSC-796)	python-threadpoolctl-2.1.0-150300.3.2.1
openSUSE-2024-145	moderate	recommended	2024-05-28	This update for lyx fixes the following issues: Update to version 2.3.8: - This is the last maintenance of the 2.3.x series with a couple of bug fixes (see included ANOUNCE file), but the most i ...	lyx-2.3.8-bp155.2.3.1
SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1786	moderate	recommended	2024-05-27	This update for lasso fixes the following issues: - Fix segmentation fault causing the test suite to fail, build was failing for SLE 15 SP5 (bsc#1205335) - Patch written by Petr Gajdos, reviewed, a ...	lasso-2.6.1-150200.19.4
openSUSE-2024-144	moderate	recommended	2024-05-27	This update for ksh fixes the following issues: - remove no longer needed qemu workaround - do not use posix_spawn as it lacks proper job handling [boo#1224057]	ksh-93vu-bp155.3.3.1
openSUSE-2024-143	moderate	security	2024-05-27	This update for libqt5-qtnetworkauth fixes the following issues: - CVE-2024-36048: Fixed data race and poor seeding in generateRandomString() (boo#1224782).	libqt5-qtnetworkauth-5.15.2+kde2-bp155.3.3.1
openSUSE-2024-141	critical	security	2024-05-26	This update for chromium fixes the following issues: - Chromium 125.0.6422.112 * CVE-2024-5274: Type Confusion in V8 (boo#1225199)	chromium-125.0.6422.112-bp155.2.88.1
openSUSE-2024-140	moderate	recommended	2024-05-25	This update for timescaledb and orafce is a rebuild against the current postgresql release.	postgresql12-orafce-4.1.1+git0.519b5b5-bp155.3.7.1 postgresql13-orafce-4.1.1+git0.519b5b5-bp155.3.7.1 postgresql13-timescaledb-2.14.0-bp155.2.8.1 postgresql14-orafce-4.1.1+git0.519b5b5-bp155.3.7.1 postgresql14-timescaledb-2.14.0-bp155.2.8.1 postgresql15-orafce-4.1.1+git0.519b5b5-bp155.3.7.1 postgresql15-timescaledb-2.14.0-bp155.2.8.1 postgresql16-orafce-4.1.1+git0.519b5b5-bp155.3.7.1 postgresql16-timescaledb-2.14.0-bp155.2.8.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1855

important

security

2024-05-30

This update for python-PyMySQL fixes the following issues: - CVE-2024-36039: Fixed SQL injection if used with untrusted JSON input (bsc#1225070).

python-PyMySQL-0.7.11-150000.3.3.1

openSUSE-2024-147

important

security

2024-05-29

This update for libredwg fixes the following issues: Update to tag 0.12.5.6924: - CVE-2023-26157: Fixed out-of-bound read involving section->num_pages in decode_r2007.c (boo#1218473)

libredwg-0.12.5.6924-bp155.3.6.1

openSUSE-2024-146

important

security

2024-05-29

This update for gifsicle fixes the following issues: Update to version 1.95: - CVE-2023-46009: Fixed floating point exception vulnerability via resize_stream at src/xform.c (boo#1216403)

gifsicle-1.95-bp155.3.6.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1794

low

recommended

2024-05-28

This update for python-threadpoolctl fixes the following issues: - Add python-threadpoolctl to Package Hub Subpackages in SLE-15-SP5 (bsc#1223995, jsc#MSC-796)

python-threadpoolctl-2.1.0-150300.3.2.1

openSUSE-2024-145

moderate

recommended

2024-05-28

This update for lyx fixes the following issues: Update to version 2.3.8: - This is the last maintenance of the 2.3.x series with a couple of bug fixes (see included ANOUNCE file), but the most i ...

lyx-2.3.8-bp155.2.3.1

SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1786

moderate

recommended

2024-05-27

This update for lasso fixes the following issues: - Fix segmentation fault causing the test suite to fail, build was failing for SLE 15 SP5 (bsc#1205335) - Patch written by Petr Gajdos, reviewed, a ...

lasso-2.6.1-150200.19.4

openSUSE-2024-144

moderate

recommended

2024-05-27

This update for ksh fixes the following issues: - remove no longer needed qemu workaround - do not use posix_spawn as it lacks proper job handling [boo#1224057]

ksh-93vu-bp155.3.3.1

openSUSE-2024-143

moderate

security

2024-05-27

This update for libqt5-qtnetworkauth fixes the following issues: - CVE-2024-36048: Fixed data race and poor seeding in generateRandomString() (boo#1224782).

libqt5-qtnetworkauth-5.15.2+kde2-bp155.3.3.1

openSUSE-2024-141

critical

security

2024-05-26

This update for chromium fixes the following issues: - Chromium 125.0.6422.112 * CVE-2024-5274: Type Confusion in V8 (boo#1225199)

chromium-125.0.6422.112-bp155.2.88.1

openSUSE-2024-140

moderate

recommended

2024-05-25

This update for timescaledb and orafce is a rebuild against the current postgresql release.

postgresql12-orafce-4.1.1+git0.519b5b5-bp155.3.7.1
postgresql13-orafce-4.1.1+git0.519b5b5-bp155.3.7.1
postgresql13-timescaledb-2.14.0-bp155.2.8.1
postgresql14-orafce-4.1.1+git0.519b5b5-bp155.3.7.1
postgresql14-timescaledb-2.14.0-bp155.2.8.1
postgresql15-orafce-4.1.1+git0.519b5b5-bp155.3.7.1
postgresql15-timescaledb-2.14.0-bp155.2.8.1
postgresql16-orafce-4.1.1+git0.519b5b5-bp155.3.7.1
postgresql16-timescaledb-2.14.0-bp155.2.8.1