php8-8.3.12-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:14376-1 Final 1 1 2024-09-29T00:00:00Z current 2024-09-29T00:00:00Z 2024-09-29T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z php8-8.3.12-1.1 on GA media These are all security issues fixed in the php8-8.3.12-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-14376 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/RM3WP4ENMVRYGM7IU7L7DTX3KTTN5UHE/ E-Mail link for openSUSE-SU-2024:14376-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2024-4577/ SUSE CVE CVE-2024-4577 page https://www.suse.com/security/cve/CVE-2024-8925/ SUSE CVE CVE-2024-8925 page https://www.suse.com/security/cve/CVE-2024-8927/ SUSE CVE CVE-2024-8927 page https://www.suse.com/security/cve/CVE-2024-9026/ SUSE CVE CVE-2024-9026 page openSUSE Tumbleweed php8-8.3.12-1.1 php8-bcmath-8.3.12-1.1 php8-bz2-8.3.12-1.1 php8-calendar-8.3.12-1.1 php8-cli-8.3.12-1.1 php8-ctype-8.3.12-1.1 php8-curl-8.3.12-1.1 php8-dba-8.3.12-1.1 php8-devel-8.3.12-1.1 php8-dom-8.3.12-1.1 php8-enchant-8.3.12-1.1 php8-exif-8.3.12-1.1 php8-ffi-8.3.12-1.1 php8-fileinfo-8.3.12-1.1 php8-ftp-8.3.12-1.1 php8-gd-8.3.12-1.1 php8-gettext-8.3.12-1.1 php8-gmp-8.3.12-1.1 php8-iconv-8.3.12-1.1 php8-intl-8.3.12-1.1 php8-ldap-8.3.12-1.1 php8-mbstring-8.3.12-1.1 php8-mysql-8.3.12-1.1 php8-odbc-8.3.12-1.1 php8-opcache-8.3.12-1.1 php8-openssl-8.3.12-1.1 php8-pcntl-8.3.12-1.1 php8-pdo-8.3.12-1.1 php8-pgsql-8.3.12-1.1 php8-phar-8.3.12-1.1 php8-posix-8.3.12-1.1 php8-readline-8.3.12-1.1 php8-shmop-8.3.12-1.1 php8-snmp-8.3.12-1.1 php8-soap-8.3.12-1.1 php8-sockets-8.3.12-1.1 php8-sodium-8.3.12-1.1 php8-sqlite-8.3.12-1.1 php8-sysvmsg-8.3.12-1.1 php8-sysvsem-8.3.12-1.1 php8-sysvshm-8.3.12-1.1 php8-tidy-8.3.12-1.1 php8-tokenizer-8.3.12-1.1 php8-xmlreader-8.3.12-1.1 php8-xmlwriter-8.3.12-1.1 php8-xsl-8.3.12-1.1 php8-zip-8.3.12-1.1 php8-zlib-8.3.12-1.1 php8-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-bcmath-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-bz2-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-calendar-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-cli-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-ctype-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-curl-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-dba-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-devel-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-dom-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-enchant-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-exif-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-ffi-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-fileinfo-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-ftp-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-gd-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-gettext-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-gmp-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-iconv-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-intl-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-ldap-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-mbstring-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-mysql-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-odbc-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-opcache-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-openssl-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-pcntl-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-pdo-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-pgsql-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-phar-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-posix-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-readline-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-shmop-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-snmp-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-soap-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-sockets-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-sodium-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-sqlite-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-sysvmsg-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-sysvsem-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-sysvshm-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-tidy-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-tokenizer-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-xmlreader-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-xmlwriter-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-xsl-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-zip-8.3.12-1.1 as a component of openSUSE Tumbleweed php8-zlib-8.3.12-1.1 as a component of openSUSE Tumbleweed In PHP versions 8.1.* before 8.1.29, 8.2.* before 8.2.20, 8.3.* before 8.3.8, when using Apache and PHP-CGI on Windows, if the system is set up to use certain code pages, Windows may use "Best-Fit" behavior to replace characters in command line given to Win32 API functions. PHP CGI module may misinterpret those characters as PHP options, which may allow a malicious user to pass options to PHP binary being run, and thus reveal the source code of scripts, run arbitrary PHP code on the server, etc. CVE-2024-4577 openSUSE Tumbleweed:php8-8.3.12-1.1 openSUSE Tumbleweed:php8-bcmath-8.3.12-1.1 openSUSE Tumbleweed:php8-bz2-8.3.12-1.1 openSUSE Tumbleweed:php8-calendar-8.3.12-1.1 openSUSE Tumbleweed:php8-cli-8.3.12-1.1 openSUSE Tumbleweed:php8-ctype-8.3.12-1.1 openSUSE Tumbleweed:php8-curl-8.3.12-1.1 openSUSE Tumbleweed:php8-dba-8.3.12-1.1 openSUSE Tumbleweed:php8-devel-8.3.12-1.1 openSUSE Tumbleweed:php8-dom-8.3.12-1.1 openSUSE Tumbleweed:php8-enchant-8.3.12-1.1 openSUSE Tumbleweed:php8-exif-8.3.12-1.1 openSUSE Tumbleweed:php8-ffi-8.3.12-1.1 openSUSE Tumbleweed:php8-fileinfo-8.3.12-1.1 openSUSE Tumbleweed:php8-ftp-8.3.12-1.1 openSUSE Tumbleweed:php8-gd-8.3.12-1.1 openSUSE Tumbleweed:php8-gettext-8.3.12-1.1 openSUSE Tumbleweed:php8-gmp-8.3.12-1.1 openSUSE Tumbleweed:php8-iconv-8.3.12-1.1 openSUSE Tumbleweed:php8-intl-8.3.12-1.1 openSUSE Tumbleweed:php8-ldap-8.3.12-1.1 openSUSE Tumbleweed:php8-mbstring-8.3.12-1.1 openSUSE Tumbleweed:php8-mysql-8.3.12-1.1 openSUSE Tumbleweed:php8-odbc-8.3.12-1.1 openSUSE Tumbleweed:php8-opcache-8.3.12-1.1 openSUSE Tumbleweed:php8-openssl-8.3.12-1.1 openSUSE Tumbleweed:php8-pcntl-8.3.12-1.1 openSUSE Tumbleweed:php8-pdo-8.3.12-1.1 openSUSE Tumbleweed:php8-pgsql-8.3.12-1.1 openSUSE Tumbleweed:php8-phar-8.3.12-1.1 openSUSE Tumbleweed:php8-posix-8.3.12-1.1 openSUSE Tumbleweed:php8-readline-8.3.12-1.1 openSUSE Tumbleweed:php8-shmop-8.3.12-1.1 openSUSE Tumbleweed:php8-snmp-8.3.12-1.1 openSUSE Tumbleweed:php8-soap-8.3.12-1.1 openSUSE Tumbleweed:php8-sockets-8.3.12-1.1 openSUSE Tumbleweed:php8-sodium-8.3.12-1.1 openSUSE Tumbleweed:php8-sqlite-8.3.12-1.1 openSUSE Tumbleweed:php8-sysvmsg-8.3.12-1.1 openSUSE Tumbleweed:php8-sysvsem-8.3.12-1.1 openSUSE Tumbleweed:php8-sysvshm-8.3.12-1.1 openSUSE Tumbleweed:php8-tidy-8.3.12-1.1 openSUSE Tumbleweed:php8-tokenizer-8.3.12-1.1 openSUSE Tumbleweed:php8-xmlreader-8.3.12-1.1 openSUSE Tumbleweed:php8-xmlwriter-8.3.12-1.1 openSUSE Tumbleweed:php8-xsl-8.3.12-1.1 openSUSE Tumbleweed:php8-zip-8.3.12-1.1 openSUSE Tumbleweed:php8-zlib-8.3.12-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/RM3WP4ENMVRYGM7IU7L7DTX3KTTN5UHE/ https://www.suse.com/security/cve/CVE-2024-4577.html CVE-2024-4577 https://bugzilla.suse.com/1226072 SUSE Bug 1226072 https://bugzilla.suse.com/1226073 SUSE Bug 1226073 https://bugzilla.suse.com/1226074 SUSE Bug 1226074 In PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before 8.3.12, erroneous parsing of multipart form data contained in an HTTP POST request could lead to legitimate data not being processed. This could lead to malicious attacker able to control part of the submitted data being able to exclude portion of other data, potentially leading to erroneous application behavior. CVE-2024-8925 openSUSE Tumbleweed:php8-8.3.12-1.1 openSUSE Tumbleweed:php8-bcmath-8.3.12-1.1 openSUSE Tumbleweed:php8-bz2-8.3.12-1.1 openSUSE Tumbleweed:php8-calendar-8.3.12-1.1 openSUSE Tumbleweed:php8-cli-8.3.12-1.1 openSUSE Tumbleweed:php8-ctype-8.3.12-1.1 openSUSE Tumbleweed:php8-curl-8.3.12-1.1 openSUSE Tumbleweed:php8-dba-8.3.12-1.1 openSUSE Tumbleweed:php8-devel-8.3.12-1.1 openSUSE Tumbleweed:php8-dom-8.3.12-1.1 openSUSE Tumbleweed:php8-enchant-8.3.12-1.1 openSUSE Tumbleweed:php8-exif-8.3.12-1.1 openSUSE Tumbleweed:php8-ffi-8.3.12-1.1 openSUSE Tumbleweed:php8-fileinfo-8.3.12-1.1 openSUSE Tumbleweed:php8-ftp-8.3.12-1.1 openSUSE Tumbleweed:php8-gd-8.3.12-1.1 openSUSE Tumbleweed:php8-gettext-8.3.12-1.1 openSUSE Tumbleweed:php8-gmp-8.3.12-1.1 openSUSE Tumbleweed:php8-iconv-8.3.12-1.1 openSUSE Tumbleweed:php8-intl-8.3.12-1.1 openSUSE Tumbleweed:php8-ldap-8.3.12-1.1 openSUSE Tumbleweed:php8-mbstring-8.3.12-1.1 openSUSE Tumbleweed:php8-mysql-8.3.12-1.1 openSUSE Tumbleweed:php8-odbc-8.3.12-1.1 openSUSE Tumbleweed:php8-opcache-8.3.12-1.1 openSUSE Tumbleweed:php8-openssl-8.3.12-1.1 openSUSE Tumbleweed:php8-pcntl-8.3.12-1.1 openSUSE Tumbleweed:php8-pdo-8.3.12-1.1 openSUSE Tumbleweed:php8-pgsql-8.3.12-1.1 openSUSE Tumbleweed:php8-phar-8.3.12-1.1 openSUSE Tumbleweed:php8-posix-8.3.12-1.1 openSUSE Tumbleweed:php8-readline-8.3.12-1.1 openSUSE Tumbleweed:php8-shmop-8.3.12-1.1 openSUSE Tumbleweed:php8-snmp-8.3.12-1.1 openSUSE Tumbleweed:php8-soap-8.3.12-1.1 openSUSE Tumbleweed:php8-sockets-8.3.12-1.1 openSUSE Tumbleweed:php8-sodium-8.3.12-1.1 openSUSE Tumbleweed:php8-sqlite-8.3.12-1.1 openSUSE Tumbleweed:php8-sysvmsg-8.3.12-1.1 openSUSE Tumbleweed:php8-sysvsem-8.3.12-1.1 openSUSE Tumbleweed:php8-sysvshm-8.3.12-1.1 openSUSE Tumbleweed:php8-tidy-8.3.12-1.1 openSUSE Tumbleweed:php8-tokenizer-8.3.12-1.1 openSUSE Tumbleweed:php8-xmlreader-8.3.12-1.1 openSUSE Tumbleweed:php8-xmlwriter-8.3.12-1.1 openSUSE Tumbleweed:php8-xsl-8.3.12-1.1 openSUSE Tumbleweed:php8-zip-8.3.12-1.1 openSUSE Tumbleweed:php8-zlib-8.3.12-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/RM3WP4ENMVRYGM7IU7L7DTX3KTTN5UHE/ https://www.suse.com/security/cve/CVE-2024-8925.html CVE-2024-8925 https://bugzilla.suse.com/1231360 SUSE Bug 1231360 In PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before 8.3.12, HTTP_REDIRECT_STATUS variable is used to check whether or not CGI binary is being run by the HTTP server. However, in certain scenarios, the content of this variable can be controlled by the request submitter via HTTP headers, which can lead to cgi.force_redirect option not being correctly applied. In certain configurations this may lead to arbitrary file inclusion in PHP. CVE-2024-8927 openSUSE Tumbleweed:php8-8.3.12-1.1 openSUSE Tumbleweed:php8-bcmath-8.3.12-1.1 openSUSE Tumbleweed:php8-bz2-8.3.12-1.1 openSUSE Tumbleweed:php8-calendar-8.3.12-1.1 openSUSE Tumbleweed:php8-cli-8.3.12-1.1 openSUSE Tumbleweed:php8-ctype-8.3.12-1.1 openSUSE Tumbleweed:php8-curl-8.3.12-1.1 openSUSE Tumbleweed:php8-dba-8.3.12-1.1 openSUSE Tumbleweed:php8-devel-8.3.12-1.1 openSUSE Tumbleweed:php8-dom-8.3.12-1.1 openSUSE Tumbleweed:php8-enchant-8.3.12-1.1 openSUSE Tumbleweed:php8-exif-8.3.12-1.1 openSUSE Tumbleweed:php8-ffi-8.3.12-1.1 openSUSE Tumbleweed:php8-fileinfo-8.3.12-1.1 openSUSE Tumbleweed:php8-ftp-8.3.12-1.1 openSUSE Tumbleweed:php8-gd-8.3.12-1.1 openSUSE Tumbleweed:php8-gettext-8.3.12-1.1 openSUSE Tumbleweed:php8-gmp-8.3.12-1.1 openSUSE Tumbleweed:php8-iconv-8.3.12-1.1 openSUSE Tumbleweed:php8-intl-8.3.12-1.1 openSUSE Tumbleweed:php8-ldap-8.3.12-1.1 openSUSE Tumbleweed:php8-mbstring-8.3.12-1.1 openSUSE Tumbleweed:php8-mysql-8.3.12-1.1 openSUSE Tumbleweed:php8-odbc-8.3.12-1.1 openSUSE Tumbleweed:php8-opcache-8.3.12-1.1 openSUSE Tumbleweed:php8-openssl-8.3.12-1.1 openSUSE Tumbleweed:php8-pcntl-8.3.12-1.1 openSUSE Tumbleweed:php8-pdo-8.3.12-1.1 openSUSE Tumbleweed:php8-pgsql-8.3.12-1.1 openSUSE Tumbleweed:php8-phar-8.3.12-1.1 openSUSE Tumbleweed:php8-posix-8.3.12-1.1 openSUSE Tumbleweed:php8-readline-8.3.12-1.1 openSUSE Tumbleweed:php8-shmop-8.3.12-1.1 openSUSE Tumbleweed:php8-snmp-8.3.12-1.1 openSUSE Tumbleweed:php8-soap-8.3.12-1.1 openSUSE Tumbleweed:php8-sockets-8.3.12-1.1 openSUSE Tumbleweed:php8-sodium-8.3.12-1.1 openSUSE Tumbleweed:php8-sqlite-8.3.12-1.1 openSUSE Tumbleweed:php8-sysvmsg-8.3.12-1.1 openSUSE Tumbleweed:php8-sysvsem-8.3.12-1.1 openSUSE Tumbleweed:php8-sysvshm-8.3.12-1.1 openSUSE Tumbleweed:php8-tidy-8.3.12-1.1 openSUSE Tumbleweed:php8-tokenizer-8.3.12-1.1 openSUSE Tumbleweed:php8-xmlreader-8.3.12-1.1 openSUSE Tumbleweed:php8-xmlwriter-8.3.12-1.1 openSUSE Tumbleweed:php8-xsl-8.3.12-1.1 openSUSE Tumbleweed:php8-zip-8.3.12-1.1 openSUSE Tumbleweed:php8-zlib-8.3.12-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/RM3WP4ENMVRYGM7IU7L7DTX3KTTN5UHE/ https://www.suse.com/security/cve/CVE-2024-8927.html CVE-2024-8927 https://bugzilla.suse.com/1231358 SUSE Bug 1231358 In PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before 8.3.12, when using PHP-FPM SAPI and it is configured to catch workers output through catch_workers_output = yes, it may be possible to pollute the final log or remove up to 4 characters from the log messages by manipulating log message content. Additionally, if PHP-FPM is configured to use syslog output, it may be possible to further remove log data using the same vulnerability. CVE-2024-9026 openSUSE Tumbleweed:php8-8.3.12-1.1 openSUSE Tumbleweed:php8-bcmath-8.3.12-1.1 openSUSE Tumbleweed:php8-bz2-8.3.12-1.1 openSUSE Tumbleweed:php8-calendar-8.3.12-1.1 openSUSE Tumbleweed:php8-cli-8.3.12-1.1 openSUSE Tumbleweed:php8-ctype-8.3.12-1.1 openSUSE Tumbleweed:php8-curl-8.3.12-1.1 openSUSE Tumbleweed:php8-dba-8.3.12-1.1 openSUSE Tumbleweed:php8-devel-8.3.12-1.1 openSUSE Tumbleweed:php8-dom-8.3.12-1.1 openSUSE Tumbleweed:php8-enchant-8.3.12-1.1 openSUSE Tumbleweed:php8-exif-8.3.12-1.1 openSUSE Tumbleweed:php8-ffi-8.3.12-1.1 openSUSE Tumbleweed:php8-fileinfo-8.3.12-1.1 openSUSE Tumbleweed:php8-ftp-8.3.12-1.1 openSUSE Tumbleweed:php8-gd-8.3.12-1.1 openSUSE Tumbleweed:php8-gettext-8.3.12-1.1 openSUSE Tumbleweed:php8-gmp-8.3.12-1.1 openSUSE Tumbleweed:php8-iconv-8.3.12-1.1 openSUSE Tumbleweed:php8-intl-8.3.12-1.1 openSUSE Tumbleweed:php8-ldap-8.3.12-1.1 openSUSE Tumbleweed:php8-mbstring-8.3.12-1.1 openSUSE Tumbleweed:php8-mysql-8.3.12-1.1 openSUSE Tumbleweed:php8-odbc-8.3.12-1.1 openSUSE Tumbleweed:php8-opcache-8.3.12-1.1 openSUSE Tumbleweed:php8-openssl-8.3.12-1.1 openSUSE Tumbleweed:php8-pcntl-8.3.12-1.1 openSUSE Tumbleweed:php8-pdo-8.3.12-1.1 openSUSE Tumbleweed:php8-pgsql-8.3.12-1.1 openSUSE Tumbleweed:php8-phar-8.3.12-1.1 openSUSE Tumbleweed:php8-posix-8.3.12-1.1 openSUSE Tumbleweed:php8-readline-8.3.12-1.1 openSUSE Tumbleweed:php8-shmop-8.3.12-1.1 openSUSE Tumbleweed:php8-snmp-8.3.12-1.1 openSUSE Tumbleweed:php8-soap-8.3.12-1.1 openSUSE Tumbleweed:php8-sockets-8.3.12-1.1 openSUSE Tumbleweed:php8-sodium-8.3.12-1.1 openSUSE Tumbleweed:php8-sqlite-8.3.12-1.1 openSUSE Tumbleweed:php8-sysvmsg-8.3.12-1.1 openSUSE Tumbleweed:php8-sysvsem-8.3.12-1.1 openSUSE Tumbleweed:php8-sysvshm-8.3.12-1.1 openSUSE Tumbleweed:php8-tidy-8.3.12-1.1 openSUSE Tumbleweed:php8-tokenizer-8.3.12-1.1 openSUSE Tumbleweed:php8-xmlreader-8.3.12-1.1 openSUSE Tumbleweed:php8-xmlwriter-8.3.12-1.1 openSUSE Tumbleweed:php8-xsl-8.3.12-1.1 openSUSE Tumbleweed:php8-zip-8.3.12-1.1 openSUSE Tumbleweed:php8-zlib-8.3.12-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/RM3WP4ENMVRYGM7IU7L7DTX3KTTN5UHE/ https://www.suse.com/security/cve/CVE-2024-9026.html CVE-2024-9026 https://bugzilla.suse.com/1231382 SUSE Bug 1231382