Security update for flex, at, bogofilter, cyrus-imapd, kdelibs4, libQtWebKit4, libbonobo, mdbtools, netpbm, openslp, sgmltool, virtuoso, libqt5-qtwebkit SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2016:2397-1 Final 1 1 2016-09-27T13:11:45Z current 2016-09-27T13:11:45Z 2016-09-27T13:11:45Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for flex, at, bogofilter, cyrus-imapd, kdelibs4, libQtWebKit4, libbonobo, mdbtools, netpbm, openslp, sgmltool, virtuoso, libqt5-qtwebkit Various packages included vulnerable parsers generated by 'flex'. This update provides a fixed 'flex' package and also rebuilds of packages that might have security issues caused by the auto generated code. Flex itself was updated to fix a buffer overflow in the generated scanner (bsc#990856, CVE-2016-6354) Packages that were rebuilt with the fixed flex: - at - bogofilter - cyrus-imapd - kdelibs4 - libQtWebKit4 - libbonobo - mdbtools - netpbm - openslp - sgmltool - virtuoso Also libqt5-qtwebkit received an additional security fix: - CVE-2015-8079: QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode (bsc#954210). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-SLE-DESKTOP-12-SP1-2016-1390,SUSE-SLE-SDK-12-SP1-2016-1390,SUSE-SLE-SERVER-12-SP1-2016-1390,SUSE-SLE-WE-12-SP1-2016-1390 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2016/suse-su-20162397-1/ Link for SUSE-SU-2016:2397-1 https://lists.suse.com/pipermail/sle-security-updates/2016-September/002293.html E-Mail link for SUSE-SU-2016:2397-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/954210 SUSE Bug 954210 https://bugzilla.suse.com/990856 SUSE Bug 990856 https://www.suse.com/security/cve/CVE-2015-8079/ SUSE CVE CVE-2015-8079 page https://www.suse.com/security/cve/CVE-2016-6354/ SUSE CVE CVE-2016-6354 page SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP1 at-3.1.14-7.3 bogofilter-1.2.4-5.3 libQtWebKit4-4.8.6+2.3.3-3.1 libQtWebKit4-32bit-4.8.6+2.3.3-3.1 libbonobo-2.32.1-16.1 libbonobo-32bit-2.32.1-16.1 libbonobo-lang-2.32.1-16.1 libkde4-4.12.0-7.3 libkde4-32bit-4.12.0-7.3 libkdecore4-4.12.0-7.3 libkdecore4-32bit-4.12.0-7.3 libksuseinstall1-4.12.0-7.3 libksuseinstall1-32bit-4.12.0-7.3 libnetpbm11-10.66.3-4.1 libnetpbm11-32bit-10.66.3-4.1 netpbm-10.66.3-4.1 openslp-2.0.0-11.1 openslp-32bit-2.0.0-11.1 flex-2.5.37-8.1 libQtWebKit-devel-4.8.6+2.3.3-3.1 libbonobo-devel-2.32.1-16.1 libnetpbm-devel-10.66.3-4.1 mdbtools-0.7-5.1 openslp-devel-2.0.0-11.1 sgmltool-1.0.9-1075.1 flex-32bit-2.5.37-8.1 libbonobo-doc-2.32.1-16.1 openslp-server-2.0.0-11.1 perl-Cyrus-IMAP-2.3.18-40.1 perl-Cyrus-SIEVE-managesieve-2.3.18-40.1 at-3.1.14-7.3 as a component of SUSE Linux Enterprise Desktop 12 SP1 bogofilter-1.2.4-5.3 as a component of SUSE Linux Enterprise Desktop 12 SP1 libQtWebKit4-4.8.6+2.3.3-3.1 as a component of SUSE Linux Enterprise Desktop 12 SP1 libQtWebKit4-32bit-4.8.6+2.3.3-3.1 as a component of SUSE Linux Enterprise Desktop 12 SP1 libbonobo-2.32.1-16.1 as a component of SUSE Linux Enterprise Desktop 12 SP1 libbonobo-32bit-2.32.1-16.1 as a component of SUSE Linux Enterprise Desktop 12 SP1 libbonobo-lang-2.32.1-16.1 as a component of SUSE Linux Enterprise Desktop 12 SP1 libkde4-4.12.0-7.3 as a component of SUSE Linux Enterprise Desktop 12 SP1 libkde4-32bit-4.12.0-7.3 as a component of SUSE Linux Enterprise Desktop 12 SP1 libkdecore4-4.12.0-7.3 as a component of SUSE Linux Enterprise Desktop 12 SP1 libkdecore4-32bit-4.12.0-7.3 as a component of SUSE Linux Enterprise Desktop 12 SP1 libksuseinstall1-4.12.0-7.3 as a component of SUSE Linux Enterprise Desktop 12 SP1 libksuseinstall1-32bit-4.12.0-7.3 as a component of SUSE Linux Enterprise Desktop 12 SP1 libnetpbm11-10.66.3-4.1 as a component of SUSE Linux Enterprise Desktop 12 SP1 libnetpbm11-32bit-10.66.3-4.1 as a component of SUSE Linux Enterprise Desktop 12 SP1 netpbm-10.66.3-4.1 as a component of SUSE Linux Enterprise Desktop 12 SP1 openslp-2.0.0-11.1 as a component of SUSE Linux Enterprise Desktop 12 SP1 openslp-32bit-2.0.0-11.1 as a component of SUSE Linux Enterprise Desktop 12 SP1 at-3.1.14-7.3 as a component of SUSE Linux Enterprise Server 12 SP1 flex-2.5.37-8.1 as a component of SUSE Linux Enterprise Server 12 SP1 flex-32bit-2.5.37-8.1 as a component of SUSE Linux Enterprise Server 12 SP1 libQtWebKit4-4.8.6+2.3.3-3.1 as a component of SUSE Linux Enterprise Server 12 SP1 libQtWebKit4-32bit-4.8.6+2.3.3-3.1 as a component of SUSE Linux Enterprise Server 12 SP1 libbonobo-2.32.1-16.1 as a component of SUSE Linux Enterprise Server 12 SP1 libbonobo-32bit-2.32.1-16.1 as a component of SUSE Linux Enterprise Server 12 SP1 libbonobo-doc-2.32.1-16.1 as a component of SUSE Linux Enterprise Server 12 SP1 libbonobo-lang-2.32.1-16.1 as a component of SUSE Linux Enterprise Server 12 SP1 libkde4-4.12.0-7.3 as a component of SUSE Linux Enterprise Server 12 SP1 libkde4-32bit-4.12.0-7.3 as a component of SUSE Linux Enterprise Server 12 SP1 libkdecore4-4.12.0-7.3 as a component of SUSE Linux Enterprise Server 12 SP1 libkdecore4-32bit-4.12.0-7.3 as a component of SUSE Linux Enterprise Server 12 SP1 libksuseinstall1-4.12.0-7.3 as a component of SUSE Linux Enterprise Server 12 SP1 libksuseinstall1-32bit-4.12.0-7.3 as a component of SUSE Linux Enterprise Server 12 SP1 libnetpbm11-10.66.3-4.1 as a component of SUSE Linux Enterprise Server 12 SP1 libnetpbm11-32bit-10.66.3-4.1 as a component of SUSE Linux Enterprise Server 12 SP1 netpbm-10.66.3-4.1 as a component of SUSE Linux Enterprise Server 12 SP1 openslp-2.0.0-11.1 as a component of SUSE Linux Enterprise Server 12 SP1 openslp-32bit-2.0.0-11.1 as a component of SUSE Linux Enterprise Server 12 SP1 openslp-server-2.0.0-11.1 as a component of SUSE Linux Enterprise Server 12 SP1 perl-Cyrus-IMAP-2.3.18-40.1 as a component of SUSE Linux Enterprise Server 12 SP1 perl-Cyrus-SIEVE-managesieve-2.3.18-40.1 as a component of SUSE Linux Enterprise Server 12 SP1 at-3.1.14-7.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 flex-2.5.37-8.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 flex-32bit-2.5.37-8.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libQtWebKit4-4.8.6+2.3.3-3.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libQtWebKit4-32bit-4.8.6+2.3.3-3.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libbonobo-2.32.1-16.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libbonobo-32bit-2.32.1-16.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libbonobo-doc-2.32.1-16.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libbonobo-lang-2.32.1-16.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libkde4-4.12.0-7.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libkde4-32bit-4.12.0-7.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libkdecore4-4.12.0-7.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libkdecore4-32bit-4.12.0-7.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libksuseinstall1-4.12.0-7.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libksuseinstall1-32bit-4.12.0-7.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libnetpbm11-10.66.3-4.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libnetpbm11-32bit-10.66.3-4.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 netpbm-10.66.3-4.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 openslp-2.0.0-11.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 openslp-32bit-2.0.0-11.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 openslp-server-2.0.0-11.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 perl-Cyrus-IMAP-2.3.18-40.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 perl-Cyrus-SIEVE-managesieve-2.3.18-40.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 flex-2.5.37-8.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 libQtWebKit-devel-4.8.6+2.3.3-3.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 libbonobo-devel-2.32.1-16.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 libnetpbm-devel-10.66.3-4.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 mdbtools-0.7-5.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 openslp-devel-2.0.0-11.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 sgmltool-1.0.9-1075.1 as a component of SUSE Linux Enterprise Software Development Kit 12 SP1 bogofilter-1.2.4-5.3 as a component of SUSE Linux Enterprise Workstation Extension 12 SP1 qt5-qtwebkit before 5.4 records private browsing URLs to its favicon database, WebpageIcons.db. CVE-2015-8079 SUSE Linux Enterprise Desktop 12 SP1:at-3.1.14-7.3 SUSE Linux Enterprise Desktop 12 SP1:bogofilter-1.2.4-5.3 SUSE Linux Enterprise Desktop 12 SP1:libQtWebKit4-32bit-4.8.6+2.3.3-3.1 SUSE Linux Enterprise Desktop 12 SP1:libQtWebKit4-4.8.6+2.3.3-3.1 SUSE Linux Enterprise Desktop 12 SP1:libbonobo-2.32.1-16.1 SUSE Linux Enterprise Desktop 12 SP1:libbonobo-32bit-2.32.1-16.1 SUSE Linux Enterprise Desktop 12 SP1:libbonobo-lang-2.32.1-16.1 SUSE Linux Enterprise Desktop 12 SP1:libkde4-32bit-4.12.0-7.3 SUSE Linux Enterprise Desktop 12 SP1:libkde4-4.12.0-7.3 SUSE Linux Enterprise Desktop 12 SP1:libkdecore4-32bit-4.12.0-7.3 SUSE Linux Enterprise Desktop 12 SP1:libkdecore4-4.12.0-7.3 SUSE Linux Enterprise Desktop 12 SP1:libksuseinstall1-32bit-4.12.0-7.3 SUSE Linux Enterprise Desktop 12 SP1:libksuseinstall1-4.12.0-7.3 SUSE Linux Enterprise Desktop 12 SP1:libnetpbm11-10.66.3-4.1 SUSE Linux Enterprise Desktop 12 SP1:libnetpbm11-32bit-10.66.3-4.1 SUSE Linux Enterprise Desktop 12 SP1:netpbm-10.66.3-4.1 SUSE Linux Enterprise Desktop 12 SP1:openslp-2.0.0-11.1 SUSE Linux Enterprise Desktop 12 SP1:openslp-32bit-2.0.0-11.1 SUSE Linux Enterprise Server 12 SP1:at-3.1.14-7.3 SUSE Linux Enterprise Server 12 SP1:flex-2.5.37-8.1 SUSE Linux Enterprise Server 12 SP1:flex-32bit-2.5.37-8.1 SUSE Linux Enterprise Server 12 SP1:libQtWebKit4-32bit-4.8.6+2.3.3-3.1 SUSE Linux Enterprise Server 12 SP1:libQtWebKit4-4.8.6+2.3.3-3.1 SUSE Linux Enterprise Server 12 SP1:libbonobo-2.32.1-16.1 SUSE Linux Enterprise Server 12 SP1:libbonobo-32bit-2.32.1-16.1 SUSE Linux Enterprise Server 12 SP1:libbonobo-doc-2.32.1-16.1 SUSE Linux Enterprise Server 12 SP1:libbonobo-lang-2.32.1-16.1 SUSE Linux Enterprise Server 12 SP1:libkde4-32bit-4.12.0-7.3 SUSE Linux Enterprise Server 12 SP1:libkde4-4.12.0-7.3 SUSE Linux Enterprise Server 12 SP1:libkdecore4-32bit-4.12.0-7.3 SUSE Linux Enterprise Server 12 SP1:libkdecore4-4.12.0-7.3 SUSE Linux Enterprise Server 12 SP1:libksuseinstall1-32bit-4.12.0-7.3 SUSE Linux Enterprise Server 12 SP1:libksuseinstall1-4.12.0-7.3 SUSE Linux Enterprise Server 12 SP1:libnetpbm11-10.66.3-4.1 SUSE Linux Enterprise Server 12 SP1:libnetpbm11-32bit-10.66.3-4.1 SUSE Linux Enterprise Server 12 SP1:netpbm-10.66.3-4.1 SUSE Linux Enterprise Server 12 SP1:openslp-2.0.0-11.1 SUSE Linux Enterprise Server 12 SP1:openslp-32bit-2.0.0-11.1 SUSE Linux Enterprise Server 12 SP1:openslp-server-2.0.0-11.1 SUSE Linux Enterprise Server 12 SP1:perl-Cyrus-IMAP-2.3.18-40.1 SUSE Linux Enterprise Server 12 SP1:perl-Cyrus-SIEVE-managesieve-2.3.18-40.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:at-3.1.14-7.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:flex-2.5.37-8.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:flex-32bit-2.5.37-8.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libQtWebKit4-32bit-4.8.6+2.3.3-3.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libQtWebKit4-4.8.6+2.3.3-3.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbonobo-2.32.1-16.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbonobo-32bit-2.32.1-16.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbonobo-doc-2.32.1-16.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbonobo-lang-2.32.1-16.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libkde4-32bit-4.12.0-7.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libkde4-4.12.0-7.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libkdecore4-32bit-4.12.0-7.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libkdecore4-4.12.0-7.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libksuseinstall1-32bit-4.12.0-7.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libksuseinstall1-4.12.0-7.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libnetpbm11-10.66.3-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libnetpbm11-32bit-10.66.3-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:netpbm-10.66.3-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:openslp-2.0.0-11.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:openslp-32bit-2.0.0-11.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:openslp-server-2.0.0-11.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:perl-Cyrus-IMAP-2.3.18-40.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:perl-Cyrus-SIEVE-managesieve-2.3.18-40.1 SUSE Linux Enterprise Software Development Kit 12 SP1:flex-2.5.37-8.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libQtWebKit-devel-4.8.6+2.3.3-3.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libbonobo-devel-2.32.1-16.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libnetpbm-devel-10.66.3-4.1 SUSE Linux Enterprise Software Development Kit 12 SP1:mdbtools-0.7-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:openslp-devel-2.0.0-11.1 SUSE Linux Enterprise Software Development Kit 12 SP1:sgmltool-1.0.9-1075.1 SUSE Linux Enterprise Workstation Extension 12 SP1:bogofilter-1.2.4-5.3 moderate 2.1 AV:L/AC:L/Au:N/C:P/I:N/A:N To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162397-1/ https://www.suse.com/security/cve/CVE-2015-8079.html CVE-2015-8079 https://bugzilla.suse.com/954210 SUSE Bug 954210 Heap-based buffer overflow in the yy_get_next_buffer function in Flex before 2.6.1 might allow context-dependent attackers to cause a denial of service or possibly execute arbitrary code via vectors involving num_to_read. CVE-2016-6354 SUSE Linux Enterprise Desktop 12 SP1:at-3.1.14-7.3 SUSE Linux Enterprise Desktop 12 SP1:bogofilter-1.2.4-5.3 SUSE Linux Enterprise Desktop 12 SP1:libQtWebKit4-32bit-4.8.6+2.3.3-3.1 SUSE Linux Enterprise Desktop 12 SP1:libQtWebKit4-4.8.6+2.3.3-3.1 SUSE Linux Enterprise Desktop 12 SP1:libbonobo-2.32.1-16.1 SUSE Linux Enterprise Desktop 12 SP1:libbonobo-32bit-2.32.1-16.1 SUSE Linux Enterprise Desktop 12 SP1:libbonobo-lang-2.32.1-16.1 SUSE Linux Enterprise Desktop 12 SP1:libkde4-32bit-4.12.0-7.3 SUSE Linux Enterprise Desktop 12 SP1:libkde4-4.12.0-7.3 SUSE Linux Enterprise Desktop 12 SP1:libkdecore4-32bit-4.12.0-7.3 SUSE Linux Enterprise Desktop 12 SP1:libkdecore4-4.12.0-7.3 SUSE Linux Enterprise Desktop 12 SP1:libksuseinstall1-32bit-4.12.0-7.3 SUSE Linux Enterprise Desktop 12 SP1:libksuseinstall1-4.12.0-7.3 SUSE Linux Enterprise Desktop 12 SP1:libnetpbm11-10.66.3-4.1 SUSE Linux Enterprise Desktop 12 SP1:libnetpbm11-32bit-10.66.3-4.1 SUSE Linux Enterprise Desktop 12 SP1:netpbm-10.66.3-4.1 SUSE Linux Enterprise Desktop 12 SP1:openslp-2.0.0-11.1 SUSE Linux Enterprise Desktop 12 SP1:openslp-32bit-2.0.0-11.1 SUSE Linux Enterprise Server 12 SP1:at-3.1.14-7.3 SUSE Linux Enterprise Server 12 SP1:flex-2.5.37-8.1 SUSE Linux Enterprise Server 12 SP1:flex-32bit-2.5.37-8.1 SUSE Linux Enterprise Server 12 SP1:libQtWebKit4-32bit-4.8.6+2.3.3-3.1 SUSE Linux Enterprise Server 12 SP1:libQtWebKit4-4.8.6+2.3.3-3.1 SUSE Linux Enterprise Server 12 SP1:libbonobo-2.32.1-16.1 SUSE Linux Enterprise Server 12 SP1:libbonobo-32bit-2.32.1-16.1 SUSE Linux Enterprise Server 12 SP1:libbonobo-doc-2.32.1-16.1 SUSE Linux Enterprise Server 12 SP1:libbonobo-lang-2.32.1-16.1 SUSE Linux Enterprise Server 12 SP1:libkde4-32bit-4.12.0-7.3 SUSE Linux Enterprise Server 12 SP1:libkde4-4.12.0-7.3 SUSE Linux Enterprise Server 12 SP1:libkdecore4-32bit-4.12.0-7.3 SUSE Linux Enterprise Server 12 SP1:libkdecore4-4.12.0-7.3 SUSE Linux Enterprise Server 12 SP1:libksuseinstall1-32bit-4.12.0-7.3 SUSE Linux Enterprise Server 12 SP1:libksuseinstall1-4.12.0-7.3 SUSE Linux Enterprise Server 12 SP1:libnetpbm11-10.66.3-4.1 SUSE Linux Enterprise Server 12 SP1:libnetpbm11-32bit-10.66.3-4.1 SUSE Linux Enterprise Server 12 SP1:netpbm-10.66.3-4.1 SUSE Linux Enterprise Server 12 SP1:openslp-2.0.0-11.1 SUSE Linux Enterprise Server 12 SP1:openslp-32bit-2.0.0-11.1 SUSE Linux Enterprise Server 12 SP1:openslp-server-2.0.0-11.1 SUSE Linux Enterprise Server 12 SP1:perl-Cyrus-IMAP-2.3.18-40.1 SUSE Linux Enterprise Server 12 SP1:perl-Cyrus-SIEVE-managesieve-2.3.18-40.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:at-3.1.14-7.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:flex-2.5.37-8.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:flex-32bit-2.5.37-8.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libQtWebKit4-32bit-4.8.6+2.3.3-3.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libQtWebKit4-4.8.6+2.3.3-3.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbonobo-2.32.1-16.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbonobo-32bit-2.32.1-16.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbonobo-doc-2.32.1-16.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libbonobo-lang-2.32.1-16.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libkde4-32bit-4.12.0-7.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libkde4-4.12.0-7.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libkdecore4-32bit-4.12.0-7.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libkdecore4-4.12.0-7.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libksuseinstall1-32bit-4.12.0-7.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libksuseinstall1-4.12.0-7.3 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libnetpbm11-10.66.3-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libnetpbm11-32bit-10.66.3-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:netpbm-10.66.3-4.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:openslp-2.0.0-11.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:openslp-32bit-2.0.0-11.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:openslp-server-2.0.0-11.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:perl-Cyrus-IMAP-2.3.18-40.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:perl-Cyrus-SIEVE-managesieve-2.3.18-40.1 SUSE Linux Enterprise Software Development Kit 12 SP1:flex-2.5.37-8.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libQtWebKit-devel-4.8.6+2.3.3-3.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libbonobo-devel-2.32.1-16.1 SUSE Linux Enterprise Software Development Kit 12 SP1:libnetpbm-devel-10.66.3-4.1 SUSE Linux Enterprise Software Development Kit 12 SP1:mdbtools-0.7-5.1 SUSE Linux Enterprise Software Development Kit 12 SP1:openslp-devel-2.0.0-11.1 SUSE Linux Enterprise Software Development Kit 12 SP1:sgmltool-1.0.9-1075.1 SUSE Linux Enterprise Workstation Extension 12 SP1:bogofilter-1.2.4-5.3 low 1.9 AV:L/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2016/suse-su-20162397-1/ https://www.suse.com/security/cve/CVE-2016-6354.html CVE-2016-6354 https://bugzilla.suse.com/1026047 SUSE Bug 1026047 https://bugzilla.suse.com/1035082 SUSE Bug 1035082 https://bugzilla.suse.com/1035209 SUSE Bug 1035209 https://bugzilla.suse.com/990856 SUSE Bug 990856