OVAL Reference oval:org.opensuse.security:def:201820184

Oval Definition:

oval:org.opensuse.security:def:201820184

Revision Date:	2022-09-02	Version:	1
Title:	CVE-2018-20184
Description:	In GraphicsMagick 1.4 snapshot-20181209 Q8, there is a heap-based buffer overflow in the WriteTGAImage function of tga.c, which allows attackers to cause a denial of service via a crafted image file, because the number of rows or columns can exceed the pixel-dimension restrictions of the TGA specification.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2018-20184 SUSE-SU-2019:13923-1 openSUSE-SU-2018:4313-1 openSUSE-SU-2019:0003-1 openSUSE-SU-2019:1-1 Mitre CVE-2018-20184 SUSE CVE-2018-20184 SUSE-SU-2019:13923-1 openSUSE-SU-2018:4313-1 openSUSE-SU-2019:0003-1 openSUSE-SU-2019:1-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 42.3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Package Hub for SUSE Linux Enterprise 15	Product(s):
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information GraphicsMagick-1.2.5-78.78 is installed OR libGraphicsMagick2-1.2.5-78.78 is installed OR perl-GraphicsMagick-1.2.5-78.78 is installed
Definition Synopsis
openSUSE Leap 42.3 is installed AND Package Information GraphicsMagick-1.3.25-120 is installed AND GraphicsMagick is signed with openSUSE key OR GraphicsMagick-devel-1.3.25-120 is installed AND GraphicsMagick-devel is signed with openSUSE key OR libGraphicsMagick++-Q16-12-1.3.25-120 is installed AND libGraphicsMagick++-Q16-12 is signed with openSUSE key OR libGraphicsMagick++-devel-1.3.25-120 is installed AND libGraphicsMagick++-devel is signed with openSUSE key OR libGraphicsMagick-Q16-3-1.3.25-120 is installed AND libGraphicsMagick-Q16-3 is signed with openSUSE key OR libGraphicsMagick3-config-1.3.25-120 is installed AND libGraphicsMagick3-config is signed with openSUSE key OR libGraphicsMagickWand-Q16-2-1.3.25-120 is installed AND libGraphicsMagickWand-Q16-2 is signed with openSUSE key OR perl-GraphicsMagick-1.3.25-120 is installed AND perl-GraphicsMagick is signed with openSUSE key
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information GraphicsMagick-1.3.29-lp150.3.18 is installed AND GraphicsMagick is signed with openSUSE key OR GraphicsMagick-devel-1.3.29-lp150.3.18 is installed AND GraphicsMagick-devel is signed with openSUSE key OR libGraphicsMagick++-Q16-12-1.3.29-lp150.3.18 is installed AND libGraphicsMagick++-Q16-12 is signed with openSUSE key OR libGraphicsMagick++-devel-1.3.29-lp150.3.18 is installed AND libGraphicsMagick++-devel is signed with openSUSE key OR libGraphicsMagick-Q16-3-1.3.29-lp150.3.18 is installed AND libGraphicsMagick-Q16-3 is signed with openSUSE key OR libGraphicsMagick3-config-1.3.29-lp150.3.18 is installed AND libGraphicsMagick3-config is signed with openSUSE key OR libGraphicsMagickWand-Q16-2-1.3.29-lp150.3.18 is installed AND libGraphicsMagickWand-Q16-2 is signed with openSUSE key OR perl-GraphicsMagick-1.3.29-lp150.3.18 is installed AND perl-GraphicsMagick is signed with openSUSE key
Definition Synopsis
SUSE Package Hub for SUSE Linux Enterprise 15 is installed AND Package Information GraphicsMagick-1.3.29-bp150.2.12 is installed OR GraphicsMagick-devel-1.3.29-bp150.2.12 is installed OR libGraphicsMagick++-Q16-12-1.3.29-bp150.2.12 is installed OR libGraphicsMagick++-devel-1.3.29-bp150.2.12 is installed OR libGraphicsMagick-Q16-3-1.3.29-bp150.2.12 is installed OR libGraphicsMagick3-config-1.3.29-bp150.2.12 is installed OR libGraphicsMagickWand-Q16-2-1.3.29-bp150.2.12 is installed OR perl-GraphicsMagick-1.3.29-bp150.2.12 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Desktop 12 SP4 is installed AND ImageMagick is not affected
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND ImageMagick is not affected
Definition Synopsis
Release Information SUSE Linux Enterprise Server 11 SP4 is installed AND ImageMagick is not affected OR Package Information SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND GraphicsMagick-1.2.5-78.78.1 is installed OR libGraphicsMagick2-1.2.5-78.78.1 is installed OR perl-GraphicsMagick-1.2.5-78.78.1 is installed OR ImageMagick is not affected
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP3 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP3 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND ImageMagick is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND ImageMagick-config-6-SUSE is not affected OR ImageMagick-config-6-upstream is not affected OR libMagickCore-6_Q16-1 is not affected OR libMagickWand-6_Q16-1 is not affected
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 15 is installed OR SUSE Linux Enterprise High Performance Computing 15 is installed OR SUSE Linux Enterprise Module for Desktop Applications 15 is installed OR SUSE Linux Enterprise Module for Development Tools 15 is installed OR SUSE Linux Enterprise Server 15 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 is installed AND ImageMagick is not affected
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND ImageMagick is not affected
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND ImageMagick is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND ImageMagick-config-6-SUSE is not affected OR ImageMagick-config-6-upstream is not affected OR libMagickCore-6_Q16-1 is not affected OR libMagickWand-6_Q16-1 is not affected

BACK