Oval Definition:	oval:org.opensuse.security:def:201820189
Revision Date: 2022-09-02 Version: 1 Title: CVE-2018-20189 Description: In GraphicsMagick 1.3.31, the ReadDIBImage function of coders/dib.c has a vulnerability allowing a crash and denial of service via a dib file that is crafted to appear with direct pixel values and also colormapping (which is not available beyond 8-bits/sample), and therefore lacks indexes initialization. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-20189 Mitre CVE-2018-20189 SUSE CVE-2018-20189 openSUSE-SU-2018:4313-1 openSUSE-SU-2019:0003-1 openSUSE-SU-2019:1-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 42.3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Package Hub for SUSE Linux Enterprise 15 Product(s): Definition Synopsis openSUSE Leap 42.3 is installed AND Package Information GraphicsMagick-1.3.25-120 is installed AND GraphicsMagick is signed with openSUSE key OR GraphicsMagick-devel-1.3.25-120 is installed AND GraphicsMagick-devel is signed with openSUSE key OR libGraphicsMagick++-Q16-12-1.3.25-120 is installed AND libGraphicsMagick++-Q16-12 is signed with openSUSE key OR libGraphicsMagick++-devel-1.3.25-120 is installed AND libGraphicsMagick++-devel is signed with openSUSE key OR libGraphicsMagick-Q16-3-1.3.25-120 is installed AND libGraphicsMagick-Q16-3 is signed with openSUSE key OR libGraphicsMagick3-config-1.3.25-120 is installed AND libGraphicsMagick3-config is signed with openSUSE key OR libGraphicsMagickWand-Q16-2-1.3.25-120 is installed AND libGraphicsMagickWand-Q16-2 is signed with openSUSE key OR perl-GraphicsMagick-1.3.25-120 is installed AND perl-GraphicsMagick is signed with openSUSE key Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information GraphicsMagick-1.3.29-lp150.3.18 is installed AND GraphicsMagick is signed with openSUSE key OR GraphicsMagick-devel-1.3.29-lp150.3.18 is installed AND GraphicsMagick-devel is signed with openSUSE key OR libGraphicsMagick++-Q16-12-1.3.29-lp150.3.18 is installed AND libGraphicsMagick++-Q16-12 is signed with openSUSE key OR libGraphicsMagick++-devel-1.3.29-lp150.3.18 is installed AND libGraphicsMagick++-devel is signed with openSUSE key OR libGraphicsMagick-Q16-3-1.3.29-lp150.3.18 is installed AND libGraphicsMagick-Q16-3 is signed with openSUSE key OR libGraphicsMagick3-config-1.3.29-lp150.3.18 is installed AND libGraphicsMagick3-config is signed with openSUSE key OR libGraphicsMagickWand-Q16-2-1.3.29-lp150.3.18 is installed AND libGraphicsMagickWand-Q16-2 is signed with openSUSE key OR perl-GraphicsMagick-1.3.29-lp150.3.18 is installed AND perl-GraphicsMagick is signed with openSUSE key Definition Synopsis SUSE Package Hub for SUSE Linux Enterprise 15 is installed AND Package Information GraphicsMagick-1.3.29-bp150.2.12 is installed OR GraphicsMagick-devel-1.3.29-bp150.2.12 is installed OR libGraphicsMagick++-Q16-12-1.3.29-bp150.2.12 is installed OR libGraphicsMagick++-devel-1.3.29-bp150.2.12 is installed OR libGraphicsMagick-Q16-3-1.3.29-bp150.2.12 is installed OR libGraphicsMagick3-config-1.3.29-bp150.2.12 is installed OR libGraphicsMagickWand-Q16-2-1.3.29-bp150.2.12 is installed OR perl-GraphicsMagick-1.3.29-bp150.2.12 is installed Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Desktop 12 SP4 is installed AND ImageMagick is not affected Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND ImageMagick is not affected Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP4 is installed AND ImageMagick is not affected OR Package Information SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND GraphicsMagick is not affected OR ImageMagick is not affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP3 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP3 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND ImageMagick is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND ImageMagick-config-6-SUSE is not affected OR ImageMagick-config-6-upstream is not affected OR libMagickCore-6_Q16-1 is not affected OR libMagickWand-6_Q16-1 is not affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 is installed OR SUSE Linux Enterprise High Performance Computing 15 is installed OR SUSE Linux Enterprise Module for Desktop Applications 15 is installed OR SUSE Linux Enterprise Module for Development Tools 15 is installed OR SUSE Linux Enterprise Server 15 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 is installed AND ImageMagick is not affected Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND ImageMagick is not affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND ImageMagick is not affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND ImageMagick-config-6-SUSE is not affected OR ImageMagick-config-6-upstream is not affected OR libMagickCore-6_Q16-1 is not affected OR libMagickWand-6_Q16-1 is not affected
BACK