Oval Definition:	oval:org.opensuse.security:def:20189154
Revision Date: 2023-06-22 Version: 1 Title: CVE-2018-9154 Description: There is a reachable abort in the function jpc_dec_process_sot in libjasper/jpc/jpc_dec.c of JasPer 2.0.14 that will lead to a remote denial of service attack by triggering an unexpected jas_alloc2 return value, a different vulnerability than CVE-2017-13745. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-9154 SUSE-SU-2020:1420-1 SUSE-SU-2020:1420-2 SUSE-SU-2020:2690-1 openSUSE-SU-2020:0734-1 Mitre CVE-2018-9154 SUSE CVE-2018-9154 SUSE-SU-2020:1420-1 SUSE-SU-2020:1420-2 SUSE-SU-2020:2690-1 openSUSE-SU-2020:0734-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.3 openSUSE Leap 15.4 openSUSE Tumbleweed SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Desktop 15 SP1 SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise Desktop 15 SP3 SUSE Linux Enterprise Desktop 15 SP4 SUSE Linux Enterprise Desktop 15 SP5 SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise High Performance Computing 15 SP4 SUSE Linux Enterprise High Performance Computing 15 SP5 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP5 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SP2 SUSE Linux Enterprise Module for Desktop Applications 15 SP3 SUSE Linux Enterprise Module for Desktop Applications 15 SP4 SUSE Linux Enterprise Module for Desktop Applications 15 SP5 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Package Hub 15 SP1 SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Server 11 SP3-TERADATA SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server 15 SP4 SUSE Linux Enterprise Server 15 SP5 SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA SUSE Linux Enterprise Server for SAP Applications 11 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SP5 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Software Development Kit 12 SP5 SUSE Linux Enterprise Storage 6 SUSE Linux Enterprise Storage 7 SUSE Linux Enterprise Storage 7.1 SUSE Manager Proxy 4.0 SUSE Manager Proxy 4.1 SUSE Manager Proxy 4.2 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.0 SUSE Manager Retail Branch Server 4.1 SUSE Manager Retail Branch Server 4.2 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.0 SUSE Manager Server 4.1 SUSE Manager Server 4.2 SUSE Manager Server 4.3 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP2 is installed OR SUSE Linux Enterprise Desktop 12 SP3 is installed AND jasper is affected Definition Synopsis Release Information SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND jasper-2.0.14-3.11 is installed OR libjasper4-2.0.14-3.11 is installed OR Package Information SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND jasper-2.0.14-3.11 is installed OR libjasper-devel-2.0.14-3.11 is installed OR Package Information SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND jasper-2.0.14-3.11 is installed OR libjasper4-32bit-2.0.14-3.11 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information jasper-2.0.14-lp151.4.6 is installed AND jasper is signed with openSUSE key OR libjasper-devel-2.0.14-lp151.4.6 is installed AND libjasper-devel is signed with openSUSE key OR libjasper4-2.0.14-lp151.4.6 is installed AND libjasper4 is signed with openSUSE key OR libjasper4-32bit-2.0.14-lp151.4.6 is installed AND libjasper4-32bit is signed with openSUSE key Definition Synopsis Release Information SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND jasper-2.0.14-3.11 is installed OR Package Information SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND jasper-2.0.14-3.11 is installed OR libjasper4-2.0.14-3.11 is installed OR Package Information SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed OR SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed AND jasper-2.0.14-3.11 is installed OR libjasper-devel-2.0.14-3.11 is installed OR Package Information SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed OR SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND jasper-2.0.14-3.11 is installed OR libjasper4-32bit-2.0.14-3.11 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP1-TERADATA is installed OR SUSE Linux Enterprise Server 11 SP3-TERADATA is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP1-TERADATA is installed OR SUSE Linux Enterprise Server for SAP Applications 11 SP3-TERADATA is installed AND Package Information jasper-1.900.14-134.33.17 is installed OR libjasper-1.900.14-134.33.17 is installed OR libjasper-32bit-1.900.14-134.33.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information jasper-1.900.14-195.22 is installed OR libjasper1-1.900.14-195.22 is installed OR libjasper1-32bit-1.900.14-195.22 is installed Definition Synopsis Release Information SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND jasper-1.900.14-195.22 is installed OR libjasper-devel-1.900.14-195.22 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3-TERADATA is installed OR SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND jasper-1.900.14-195.22 is installed OR libjasper1-1.900.14-195.22 is installed OR libjasper1-32bit-1.900.14-195.22 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP3-TERADATA is installed OR SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND Package Information jasper-1.900.14-195.22 is installed OR libjasper1-1.900.14-195.22 is installed OR libjasper1-32bit-1.900.14-195.22 is installed Definition Synopsis Release Information SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND jasper-2.0.14-3.11 is installed OR Package Information SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND jasper-2.0.14-3.11 is installed OR libjasper4-2.0.14-3.11 is installed OR Package Information SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND jasper-2.0.14-3.11 is installed OR libjasper-devel-2.0.14-3.11 is installed OR Package Information SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND jasper-2.0.14-3.11 is installed OR libjasper4-32bit-2.0.14-3.11 is installed Definition Synopsis Release Information SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND jasper-2.0.14-3.11 is installed OR libjasper4-2.0.14-3.11 is installed OR Package Information SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed AND jasper-2.0.14-3.11 is installed OR libjasper-devel-2.0.14-3.11 is installed OR Package Information SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND jasper-2.0.14-3.11 is installed OR libjasper4-32bit-2.0.14-3.11 is installed Definition Synopsis openSUSE Tumbleweed is installed AND Package Information jasper-2.0.33-1.2 is installed OR libjasper-devel-2.0.33-1.2 is installed OR libjasper4-2.0.33-1.2 is installed OR libjasper4-32bit-2.0.33-1.2 is installed Definition Synopsis Release Information SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND libjasper4-2.0.14-3.11.8 is installed OR Package Information SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND libjasper-devel-2.0.14-3.11.8 is installed OR Package Information SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND jasper-2.0.14-3.11.8 is installed Definition Synopsis Release Information SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND libjasper4-2.0.14-3.11.8 is installed OR Package Information SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed AND libjasper-devel-2.0.14-3.11.8 is installed Definition Synopsis Release Information SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND libjasper4-2.0.14-3.11.8 is installed OR Package Information SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed AND libjasper-devel-2.0.14-3.11.8 is installed OR Package Information SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND libjasper4-2.0.14-3.11.8 is installed OR Package Information SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND libjasper-devel-2.0.14-3.11.8 is installed OR Package Information SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND jasper-2.0.14-3.11.8 is installed OR Package Information SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed AND libjasper4-2.0.14-3.19.1 is installed OR Package Information SUSE Linux Enterprise Module for Desktop Applications 15 SP3 is installed AND libjasper-devel-2.0.14-3.19.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP3 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Linux Enterprise Storage 7.1 is installed OR SUSE Manager Proxy 4.2 is installed OR SUSE Manager Retail Branch Server 4.2 is installed OR SUSE Manager Server 4.2 is installed AND libjasper4-2.0.14-3.19.1 is installed OR Package Information SUSE Linux Enterprise Desktop 15 SP3 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Module for Desktop Applications 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Linux Enterprise Storage 7.1 is installed OR SUSE Manager Proxy 4.2 is installed OR SUSE Manager Retail Branch Server 4.2 is installed OR SUSE Manager Server 4.2 is installed AND libjasper-devel-2.0.14-3.19.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP1-TERADATA is installed OR SUSE Linux Enterprise Server 11 SP3-TERADATA is installed AND Package Information libjasper-1.900.14-134.33.17.1 is installed OR libjasper-32bit-1.900.14-134.33.17.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND jasper is affected Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP2 is installed OR SUSE Linux Enterprise Server 12 SP3 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed AND jasper is affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND libjasper1 is affected OR libjasper1-32bit is affected OR Package Information SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND libjasper1-1.900.14-195.22.1 is installed OR libjasper1-32bit-1.900.14-195.22.1 is installed OR Package Information SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND libjasper1-1.900.14-195.22.1 is installed OR libjasper1-32bit-1.900.14-195.22.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP1 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP1 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed OR SUSE Linux Enterprise Server 15 SP1 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed OR SUSE Linux Enterprise Storage 6 is installed OR SUSE Manager Proxy 4.0 is installed OR SUSE Manager Retail Branch Server 4.0 is installed OR SUSE Manager Server 4.0 is installed AND libjasper4-2.0.14-3.11.8 is installed OR Package Information SUSE Linux Enterprise Desktop 15 SP1 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP1 is installed OR SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed OR SUSE Linux Enterprise Server 15 SP1 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed OR SUSE Linux Enterprise Storage 6 is installed OR SUSE Manager Proxy 4.0 is installed OR SUSE Manager Retail Branch Server 4.0 is installed OR SUSE Manager Server 4.0 is installed AND libjasper-devel-2.0.14-3.11.8 is installed OR Package Information SUSE Linux Enterprise Module for Package Hub 15 SP1 is installed AND jasper-2.0.14-3.11.8 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND jasper is affected OR Package Information SUSE OpenStack Cloud 8 is installed OR SUSE OpenStack Cloud Crowbar 8 is installed AND libjasper1 is affected OR libjasper1-32bit is affected OR Package Information SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND libjasper1-1.900.14-195.22.1 is installed OR libjasper1-32bit-1.900.14-195.22.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND jasper is affected OR Package Information SUSE OpenStack Cloud 9 is installed OR SUSE OpenStack Cloud Crowbar 9 is installed AND libjasper1 is affected OR libjasper1-32bit is affected Definition Synopsis openSUSE Leap 15.3 is installed AND Package Information libjasper4-2.0.14-3.19.1 is installed AND libjasper4 is signed with openSUSE key Definition Synopsis openSUSE Leap 15.4 is installed AND Package Information libjasper4-2.0.14-150000.3.25.1 is installed AND libjasper4 is signed with openSUSE key Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP2 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP2 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed OR SUSE Linux Enterprise Server 15 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed OR SUSE Linux Enterprise Storage 7 is installed OR SUSE Manager Proxy 4.1 is installed OR SUSE Manager Retail Branch Server 4.1 is installed OR SUSE Manager Server 4.1 is installed AND libjasper4-2.0.14-3.11.8 is installed OR Package Information SUSE Linux Enterprise Desktop 15 SP2 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP2 is installed OR SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed OR SUSE Linux Enterprise Server 15 SP2 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed OR SUSE Linux Enterprise Storage 7 is installed OR SUSE Manager Proxy 4.1 is installed OR SUSE Manager Retail Branch Server 4.1 is installed OR SUSE Manager Server 4.1 is installed AND libjasper-devel-2.0.14-3.11.8 is installed OR Package Information SUSE Linux Enterprise Desktop 15 SP3 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Linux Enterprise Storage 7.1 is installed OR SUSE Manager Proxy 4.2 is installed OR SUSE Manager Retail Branch Server 4.2 is installed OR SUSE Manager Server 4.2 is installed AND libjasper4-2.0.14-3.19.1 is installed OR Package Information SUSE Linux Enterprise Desktop 15 SP3 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Module for Desktop Applications 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Linux Enterprise Storage 7.1 is installed OR SUSE Manager Proxy 4.2 is installed OR SUSE Manager Retail Branch Server 4.2 is installed OR SUSE Manager Server 4.2 is installed AND libjasper-devel-2.0.14-3.19.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP4 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP4 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP4 is installed OR SUSE Linux Enterprise Server 15 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed OR SUSE Manager Proxy 4.3 is installed OR SUSE Manager Retail Branch Server 4.3 is installed OR SUSE Manager Server 4.3 is installed AND libjasper4-2.0.14-150000.3.25.1 is installed OR Package Information SUSE Linux Enterprise Desktop 15 SP4 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP4 is installed OR SUSE Linux Enterprise Module for Desktop Applications 15 SP4 is installed OR SUSE Linux Enterprise Server 15 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed OR SUSE Manager Proxy 4.3 is installed OR SUSE Manager Retail Branch Server 4.3 is installed OR SUSE Manager Server 4.3 is installed AND libjasper-devel-2.0.14-150000.3.25.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND libjasper-devel-1.900.14-195.22.1 is installed OR Package Information SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND libjasper1-1.900.14-195.22.1 is installed OR libjasper1-32bit-1.900.14-195.22.1 is installed Definition Synopsis Release Information SUSE Linux Enterprise Desktop 12 SP4 is installed OR SUSE Linux Enterprise Server 12 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND jasper is affected OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND libjasper1 is affected OR libjasper1-32bit is affected Definition Synopsis Release Information SUSE Linux Enterprise Desktop 15 SP5 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP5 is installed OR SUSE Linux Enterprise Server 15 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed AND libjasper4-2.0.14-150000.3.28.1 is installed OR Package Information SUSE Linux Enterprise Desktop 15 SP5 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed OR SUSE Linux Enterprise Module for Desktop Applications 15 SP5 is installed OR SUSE Linux Enterprise Server 15 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed AND libjasper-devel-2.0.14-150000.3.28.1 is installed
BACK