Security update for deepin-reader

18241 Security update for deepin-reader important openSUSE Backports SLE-15-SP5 Update This update for deepin-reader fixes the following issues: - CVE-2023-50254: Fixed RCE via file overwrite via crafted docx document (boo#1218382). deepin-reader-5.10.23-bp155.2.3.1.src.rpm deepin-reader-5.10.23-bp155.2.3.1.x86_64.rpm deepin-reader-lang-5.10.23-bp155.2.3.1.noarch.rpm libdeepin-pdfium1-5.10.23-bp155.2.3.1.x86_64.rpm deepin-reader-5.10.23-bp155.2.3.1.aarch64.rpm libdeepin-pdfium1-5.10.23-bp155.2.3.1.aarch64.rpm 18459 Security update for rubygem-json-jwt moderate openSUSE Backports SLE-15-SP5 Update This update for rubygem-json-jwt fixes the following issues: - New upstream release 1.16.6, see bundled CHANGELOG.md - Remove padding oracle by @btoews in https://github.com/nov/json-jwt/pull/109 - Fixes CVE-2023-51774 boo#1220727 - updated to version 1.11.0 - no changelog found - Fixes CVE-2019-18848 boo#1156649 ruby2.5-rubygem-aes_key_wrap-1.1.0-bp155.2.1.x86_64.rpm ruby2.5-rubygem-aes_key_wrap-doc-1.1.0-bp155.2.1.x86_64.rpm rubygem-aes_key_wrap-1.1.0-bp155.2.1.src.rpm ruby2.5-rubygem-json-jwt-1.16.6-bp155.3.3.1.x86_64.rpm ruby2.5-rubygem-json-jwt-doc-1.16.6-bp155.3.3.1.x86_64.rpm rubygem-json-jwt-1.16.6-bp155.3.3.1.src.rpm ruby2.5-rubygem-aes_key_wrap-1.1.0-bp155.2.1.i586.rpm ruby2.5-rubygem-aes_key_wrap-doc-1.1.0-bp155.2.1.i586.rpm ruby2.5-rubygem-json-jwt-1.16.6-bp155.3.3.1.i586.rpm ruby2.5-rubygem-json-jwt-doc-1.16.6-bp155.3.3.1.i586.rpm ruby2.5-rubygem-aes_key_wrap-1.1.0-bp155.2.1.aarch64.rpm ruby2.5-rubygem-aes_key_wrap-doc-1.1.0-bp155.2.1.aarch64.rpm ruby2.5-rubygem-json-jwt-1.16.6-bp155.3.3.1.aarch64.rpm ruby2.5-rubygem-json-jwt-doc-1.16.6-bp155.3.3.1.aarch64.rpm ruby2.5-rubygem-aes_key_wrap-1.1.0-bp155.2.1.ppc64le.rpm ruby2.5-rubygem-aes_key_wrap-doc-1.1.0-bp155.2.1.ppc64le.rpm ruby2.5-rubygem-json-jwt-1.16.6-bp155.3.3.1.ppc64le.rpm ruby2.5-rubygem-json-jwt-doc-1.16.6-bp155.3.3.1.ppc64le.rpm ruby2.5-rubygem-aes_key_wrap-1.1.0-bp155.2.1.s390x.rpm ruby2.5-rubygem-aes_key_wrap-doc-1.1.0-bp155.2.1.s390x.rpm ruby2.5-rubygem-json-jwt-1.16.6-bp155.3.3.1.s390x.rpm ruby2.5-rubygem-json-jwt-doc-1.16.6-bp155.3.3.1.s390x.rpm 18666 Recommended update for webcamoid moderate openSUSE Backports SLE-15-SP5 Update This update for webcamoid fixes the following issues: - Disable autoupdate (fixes boo#1196225) - Update to version 9.2.3 * Misc non-linux changes version 9.2.0: * Webcamoid ported to Qt6. * Added PipeWire video capture support. * Added Xlib screen capture plugin. * Added desktop capture using FFmpeg. * Added option to show or hide the mouse cursor on screen capture. * Qt screen capture plugin is now using QScreenCapture. * Added ColorKey plugin. * Added support for extended controls in V4L2. * Attend to screen orientation. * Fixed ARM 64 packages. * Fixed saving the selected camera format. * Added a debug log to the preferences dialog. * Added options for enabling/disabling interprocess optimizations. * Do not show the video outputs if the virtual camera is not supported. webcamoid-9.2.3-bp155.4.3.1.src.rpm webcamoid-9.2.3-bp155.4.3.1.x86_64.rpm webcamoid-9.2.3-bp155.4.3.1.aarch64.rpm webcamoid-9.2.3-bp155.4.3.1.ppc64le.rpm 18676 Recommended update for llvm17 moderate openSUSE Backports SLE-15-SP5 Update This update for llvm17 fixes the following issues: - Add symbol versions to libclang-cpp.so similar to libLLVM.so. This is required when multiple versions of the library are loaded into the same process. (boo#1219405, boo#1221183, boo#1233220) - Require libffi when we build openmp for offloading. - Correct target name for libomptarget in file list (backport from llvm18) - Enable lldb on s390x and ppc64le (boo#1232906). - Fix build with GCC 14 on aarch64. (boo#1229868, gh#llvm/llvm-project#78691) - Use old conflicts/provides for python3-clang on Leap. clang17-17.0.6-bp155.5.1.x86_64.rpm clang17-devel-17.0.6-bp155.5.1.x86_64.rpm clang17-doc-17.0.6-bp155.5.1.noarch.rpm libLLVM17-17.0.6-bp155.5.1.x86_64.rpm libLTO17-17.0.6-bp155.5.1.x86_64.rpm libclang-cpp17-17.0.6-bp155.5.1.x86_64.rpm liblldb17-17.0.6-bp155.5.1.x86_64.rpm libomp17-devel-17.0.6-bp155.5.1.x86_64.rpm lld17-17.0.6-bp155.5.1.x86_64.rpm lldb17-17.0.6-bp155.5.1.x86_64.rpm lldb17-devel-17.0.6-bp155.5.1.x86_64.rpm llvm17-17.0.6-bp155.5.1.src.rpm llvm17-17.0.6-bp155.5.1.x86_64.rpm llvm17-devel-17.0.6-bp155.5.1.x86_64.rpm llvm17-doc-17.0.6-bp155.5.1.noarch.rpm llvm17-gold-17.0.6-bp155.5.1.x86_64.rpm llvm17-libc++-devel-17.0.6-bp155.5.1.x86_64.rpm llvm17-libc++1-17.0.6-bp155.5.1.x86_64.rpm llvm17-libc++abi-devel-17.0.6-bp155.5.1.x86_64.rpm llvm17-libc++abi1-17.0.6-bp155.5.1.x86_64.rpm llvm17-libclang13-17.0.6-bp155.5.1.x86_64.rpm llvm17-opt-viewer-17.0.6-bp155.5.1.noarch.rpm llvm17-polly-17.0.6-bp155.5.1.x86_64.rpm llvm17-polly-devel-17.0.6-bp155.5.1.x86_64.rpm llvm17-vim-plugins-17.0.6-bp155.5.1.noarch.rpm python3-clang17-17.0.6-bp155.5.1.noarch.rpm python3-lldb17-17.0.6-bp155.5.1.x86_64.rpm clang17-17.0.6-bp155.5.1.i586.rpm clang17-devel-17.0.6-bp155.5.1.i586.rpm libLLVM17-17.0.6-bp155.5.1.i586.rpm libLLVM17-32bit-17.0.6-bp155.5.1.x86_64.rpm libLTO17-17.0.6-bp155.5.1.i586.rpm libclang-cpp17-17.0.6-bp155.5.1.i586.rpm libclang-cpp17-32bit-17.0.6-bp155.5.1.x86_64.rpm libomp17-devel-17.0.6-bp155.5.1.i586.rpm lld17-17.0.6-bp155.5.1.i586.rpm llvm17-17.0.6-bp155.5.1.i586.rpm llvm17-devel-17.0.6-bp155.5.1.i586.rpm llvm17-gold-17.0.6-bp155.5.1.i586.rpm llvm17-libclang13-17.0.6-bp155.5.1.i586.rpm llvm17-polly-17.0.6-bp155.5.1.i586.rpm llvm17-polly-devel-17.0.6-bp155.5.1.i586.rpm clang17-17.0.6-bp155.5.1.aarch64.rpm clang17-devel-17.0.6-bp155.5.1.aarch64.rpm libLLVM17-17.0.6-bp155.5.1.aarch64.rpm libLLVM17-64bit-17.0.6-bp155.5.1.aarch64_ilp32.rpm libLTO17-17.0.6-bp155.5.1.aarch64.rpm libclang-cpp17-17.0.6-bp155.5.1.aarch64.rpm libclang-cpp17-64bit-17.0.6-bp155.5.1.aarch64_ilp32.rpm liblldb17-17.0.6-bp155.5.1.aarch64.rpm libomp17-devel-17.0.6-bp155.5.1.aarch64.rpm lld17-17.0.6-bp155.5.1.aarch64.rpm lldb17-17.0.6-bp155.5.1.aarch64.rpm lldb17-devel-17.0.6-bp155.5.1.aarch64.rpm llvm17-17.0.6-bp155.5.1.aarch64.rpm llvm17-devel-17.0.6-bp155.5.1.aarch64.rpm llvm17-gold-17.0.6-bp155.5.1.aarch64.rpm llvm17-libc++-devel-17.0.6-bp155.5.1.aarch64.rpm llvm17-libc++1-17.0.6-bp155.5.1.aarch64.rpm llvm17-libc++abi-devel-17.0.6-bp155.5.1.aarch64.rpm llvm17-libc++abi1-17.0.6-bp155.5.1.aarch64.rpm llvm17-libclang13-17.0.6-bp155.5.1.aarch64.rpm llvm17-polly-17.0.6-bp155.5.1.aarch64.rpm llvm17-polly-devel-17.0.6-bp155.5.1.aarch64.rpm python3-lldb17-17.0.6-bp155.5.1.aarch64.rpm clang17-17.0.6-bp155.5.1.ppc64le.rpm clang17-devel-17.0.6-bp155.5.1.ppc64le.rpm libLLVM17-17.0.6-bp155.5.1.ppc64le.rpm libLTO17-17.0.6-bp155.5.1.ppc64le.rpm libclang-cpp17-17.0.6-bp155.5.1.ppc64le.rpm liblldb17-17.0.6-bp155.5.1.ppc64le.rpm libomp17-devel-17.0.6-bp155.5.1.ppc64le.rpm lld17-17.0.6-bp155.5.1.ppc64le.rpm lldb17-17.0.6-bp155.5.1.ppc64le.rpm lldb17-devel-17.0.6-bp155.5.1.ppc64le.rpm llvm17-17.0.6-bp155.5.1.ppc64le.rpm llvm17-devel-17.0.6-bp155.5.1.ppc64le.rpm llvm17-gold-17.0.6-bp155.5.1.ppc64le.rpm llvm17-libclang13-17.0.6-bp155.5.1.ppc64le.rpm llvm17-polly-17.0.6-bp155.5.1.ppc64le.rpm llvm17-polly-devel-17.0.6-bp155.5.1.ppc64le.rpm python3-lldb17-17.0.6-bp155.5.1.ppc64le.rpm clang17-17.0.6-bp155.5.1.s390x.rpm clang17-devel-17.0.6-bp155.5.1.s390x.rpm libLLVM17-17.0.6-bp155.5.1.s390x.rpm libLTO17-17.0.6-bp155.5.1.s390x.rpm libclang-cpp17-17.0.6-bp155.5.1.s390x.rpm liblldb17-17.0.6-bp155.5.1.s390x.rpm lld17-17.0.6-bp155.5.1.s390x.rpm lldb17-17.0.6-bp155.5.1.s390x.rpm lldb17-devel-17.0.6-bp155.5.1.s390x.rpm llvm17-17.0.6-bp155.5.1.s390x.rpm llvm17-devel-17.0.6-bp155.5.1.s390x.rpm llvm17-gold-17.0.6-bp155.5.1.s390x.rpm llvm17-libclang13-17.0.6-bp155.5.1.s390x.rpm llvm17-polly-17.0.6-bp155.5.1.s390x.rpm llvm17-polly-devel-17.0.6-bp155.5.1.s390x.rpm python3-lldb17-17.0.6-bp155.5.1.s390x.rpm 18699 Security update for nanopb low openSUSE Backports SLE-15-SP5 Update This update for nanopb fixes the following issues: - CVE-2024-53984: Fix memory not released on error return (boo#1234088) libprotobuf-nanopb0-0.4.6-bp155.3.3.1.x86_64.rpm nanopb-0.4.6-bp155.3.3.1.src.rpm nanopb-devel-0.4.6-bp155.3.3.1.x86_64.rpm nanopb-source-0.4.6-bp155.3.3.1.noarch.rpm libprotobuf-nanopb0-0.4.6-bp155.3.3.1.i586.rpm nanopb-devel-0.4.6-bp155.3.3.1.i586.rpm libprotobuf-nanopb0-0.4.6-bp155.3.3.1.aarch64.rpm nanopb-devel-0.4.6-bp155.3.3.1.aarch64.rpm libprotobuf-nanopb0-0.4.6-bp155.3.3.1.ppc64le.rpm nanopb-devel-0.4.6-bp155.3.3.1.ppc64le.rpm libprotobuf-nanopb0-0.4.6-bp155.3.3.1.s390x.rpm nanopb-devel-0.4.6-bp155.3.3.1.s390x.rpm 18701 Security update for python-django-ckeditor moderate openSUSE Backports SLE-15-SP5 Update This update for python-django-ckeditor fixes the following issues: - Update to 6.7.2 * Deprecated the package. * Added a new ckeditor/fixups.js script which disables the version check again (if something slips through by accident) and which disables the behavior where CKEditor 4 would automatically attach itself to unrelated HTML elements with a contenteditable attribute (see CKEDITOR.disableAutoInline in the CKEditor 4 docs). - CVE-2024-24815: Fixed bypass of Advanced Content Filtering mechanism (boo#1219720) - update to 6.7.1: * Add Python 3.12, Django 5.0 * Silence the CKEditor version check/nag but include a system check warning - update to 6.7.0: * Dark mode fixes. * Added support for Pillow 10. - update to 6.6.1: * Required a newer version of django-js-asset which actually works with Django 4.1. * CKEditor 4.21.0 * Fixed the CKEditor styles when used with the dark Django admin theme. - update to 6.5.1: * Avoided calling ``static()`` if ``CKEDITOR_BASEPATH`` is defined. * Fixed ``./manage.py generateckeditorthumbnails`` to work again after the image uploader backend rework. * CKEditor 4.19.1 * Stopped calling ``static()`` during application startup. * Added Django 4.1 * Changed the context for the widget to deviate less from Django. Removed a * few template variables which are not used in the bundled * ``ckeditor/widget.html`` template. This only affects you if you are using a * customized widget or widget template. * Dropped support for Python < 3.8, Django < 3.2. * Added a pre-commit configuration. * Added a GitHub action for running tests. * Made selenium tests require opt in using a ``SELENIUM=firefox`` or ``SELENIUM=chromium`` environment variable. * Made it possible to override the CKEditor template in the widget class. * Changed ``CKEDITOR_IMAGE_BACKEND`` to require dotted module paths (the old identifiers are still supported for now). python-django-ckeditor-6.7.2-bp155.3.3.1.src.rpm python311-django-ckeditor-6.7.2-bp155.3.3.1.noarch.rpm 18719 Security update for libjxl moderate openSUSE Backports SLE-15-SP5 Update This update for libjxl fixes the following issues: - CVE-2024-11498: Fixed denial of service by checking height limit in modular trees (boo#1233785). libjxl-0.8.2-bp155.2.6.1.src.rpm libjxl-devel-0.8.2-bp155.2.6.1.x86_64.rpm libjxl-tools-0.8.2-bp155.2.6.1.x86_64.rpm libjxl0_8-0.8.2-bp155.2.6.1.x86_64.rpm libjxl-devel-0.8.2-bp155.2.6.1.aarch64.rpm libjxl-tools-0.8.2-bp155.2.6.1.aarch64.rpm libjxl0_8-0.8.2-bp155.2.6.1.aarch64.rpm libjxl0_8-64bit-0.8.2-bp155.2.6.1.aarch64_ilp32.rpm libjxl-devel-0.8.2-bp155.2.6.1.s390x.rpm libjxl-tools-0.8.2-bp155.2.6.1.s390x.rpm libjxl0_8-0.8.2-bp155.2.6.1.s390x.rpm