12 Dec 2016 security update for Leap 42.1

I just received a desktop notice of a Kernel security update - openSUSE-2016-1439(1).

https://paste.opensuse.org/81715222

First, there was an update last week, which I installed [openSuSE-SU-2016-3058-1 - Leap 42.1 kernel updated to 4.1.36 (kernel 4.1.36-38.1)].

Second, in the mailing list archive, 2016:1439-1 refers to a 30 May 2016 update to 13.2 for libxslt. Since recent notices are in the 3000-range, the numbering (-1439) seems off.

I am reluctant to accept this update without more.

Has anyone else received the notice? Any advice would be most welcome.

Please note that I also sent a message to the mailing list admin inquiring about this.

There was a kernel update for 42.2 this morning. I’ve applied to one system, without problems.

Last week it update to kernel 4.4.36-5.1, and today’s update is to kernel 4.4.36-8.1.

Based only on the numbering, I would assume that they discovered some issues that they forgot to fix in last week’s update, so they are fixing them now.

The notes for the update indicated that this was for opensuse 14.2. There’s no such beast. Someone got confused. But apparently there was a recent kernel update to 13.2, and today’s update for 42.2 might be fixing some of the same problems.

I do still have 42.1 installed somewhere, but I have not updated it for a while, because I am not booting into 42.1

Hi
I see kernel 4.1.36-41 is out on the mirrors for 42.1 I will get it tomorrow since my sync happens over night…

Thank you both for your replies. The mailing list archive just updated to include messages from today (2016:3086-1), and I also received the same via email:

 https://lists.opensuse.org/opensuse-security-announce/2016-12/msg00041.html

The command for installing the patch is the source of the number “1439” that initially concerned me: zypper in -t patch openSUSE-2016-1439=1

The list also shows the update for 42.2 (Announcement ID: openSUSE-SU-2016:3085-1).