OVAL Reference oval:org.opensuse.security:def:20185808

Oval Definition:

oval:org.opensuse.security:def:20185808

Revision Date:	2022-09-02	Version:	1
Title:	CVE-2018-5808
Description:	An error within the "find_green()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to cause a stack-based buffer overflow and subsequently execute arbitrary code.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2018-5808 SUSE-SU-2019:0002-1 openSUSE-SU-2018:4299-1 Mitre CVE-2018-5808 SUSE CVE-2018-5808 openSUSE-SU-2018:4299-1
Platform(s):	openSUSE Leap 42.3 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Desktop 12 SP5 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Software Development Kit 12 SP5 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SP5 SUSE Linux Enterprise Workstation Extension 15	Product(s):
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Desktop 12 SP4 is installed AND libraw9-0.15.4-27.1 is installed
Definition Synopsis
openSUSE Leap 42.3 is installed AND Package Information libraw-0.17.1-26 is installed AND libraw is signed with openSUSE key OR libraw-devel-0.17.1-26 is installed AND libraw-devel is signed with openSUSE key OR libraw-devel-static-0.17.1-26 is installed AND libraw-devel-static is signed with openSUSE key OR libraw-tools-0.17.1-26 is installed AND libraw-tools is signed with openSUSE key OR libraw15-0.17.1-26 is installed AND libraw15 is signed with openSUSE key
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP3 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND libraw-0.15.4-27 is installed OR libraw9-0.15.4-27 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP3 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND libraw-0.15.4-27 is installed OR libraw-devel-0.15.4-27 is installed OR libraw-devel-static-0.15.4-27 is installed OR libraw9-0.15.4-27 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Workstation Extension 12 SP3 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND Package Information libraw-0.15.4-27 is installed OR libraw9-0.15.4-27 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND libraw9-0.15.4-30 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP3 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND libraw-0.15.4-27 is installed OR libraw9-0.15.4-27 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP3 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND libraw-0.15.4-27 is installed OR libraw-devel-0.15.4-27 is installed OR libraw-devel-static-0.15.4-27 is installed OR libraw9-0.15.4-27 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND libraw-devel-0.15.4-30 is installed OR libraw-devel-static-0.15.4-30 is installed OR libraw9-0.15.4-30 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND libraw9-0.15.4-30 is installed OR Package Information SUSE Linux Enterprise Workstation Extension 12 SP3 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND libraw-0.15.4-27 is installed OR libraw9-0.15.4-27 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND libraw is not affected
Definition Synopsis
Release Information SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND libraw9-0.15.4-30.1 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP3 is installed OR SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP3 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND libraw9-0.15.4-27.1 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND libraw-devel-0.15.4-30.1 is installed OR libraw-devel-static-0.15.4-30.1 is installed OR libraw9-0.15.4-30.1 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 12 SP3 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND libraw-devel-0.15.4-27.1 is installed OR libraw-devel-static-0.15.4-27.1 is installed OR libraw9-0.15.4-27.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP5 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND libraw9-0.15.4-30.1 is installed OR Package Information SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND libraw-devel-0.15.4-30.1 is installed OR libraw-devel-static-0.15.4-30.1 is installed OR libraw9-0.15.4-30.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND libraw9-0.15.4-27.1 is installed OR Package Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND libraw-devel-0.15.4-27.1 is installed OR libraw-devel-static-0.15.4-27.1 is installed OR libraw9-0.15.4-27.1 is installed

BACK