OVAL Reference oval:org.opensuse.security:def:202233068

Oval Definition:

oval:org.opensuse.security:def:202233068

Revision Date:	2023-06-22	Version:	1
Title:	CVE-2022-33068
Description:	An integer overflow in the component hb-ot-shape-fallback.cc of Harfbuzz v4.3.0 allows attackers to cause a Denial of Service (DoS) via unspecified vectors.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	Mitre CVE-2022-33068 SUSE CVE-2022-33068 SUSE-CU-2022:1768-1 SUSE-CU-2022:1769-1 SUSE-SU-2022:2663-1 SUSE-SU-2022:2664-1 openSUSE-SU-2022:2663-1
Platform(s):	openSUSE Leap Micro 5.2 SUSE Linux Enterprise Desktop 12 SP5 SUSE Linux Enterprise Desktop 15 SP3 SUSE Linux Enterprise Desktop 15 SP4 SUSE Linux Enterprise Desktop 15 SP5 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise High Performance Computing 15 SP4 SUSE Linux Enterprise High Performance Computing 15 SP5 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP5 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 15 SP2-BCL SUSE Linux Enterprise Server 15 SP2-LTSS SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server 15 SP4 SUSE Linux Enterprise Server 15 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SP5 SUSE Linux Enterprise Storage 7.1 SUSE Linux Enterprise Workstation Extension 12 SP5 SUSE Manager Proxy 4.2 SUSE Manager Proxy 4.3 SUSE Manager Retail Branch Server 4.2 SUSE Manager Retail Branch Server 4.3 SUSE Manager Server 4.2 SUSE Manager Server 4.3	Product(s):
Definition Synopsis
openSUSE Leap Micro 5.2 is installed AND Package Information libharfbuzz0-2.6.4-150200.3.3.1 is installed AND libharfbuzz0 is signed with openSUSE key
Definition Synopsis
SUSE Linux Enterprise Micro 5.2 is installed AND libharfbuzz0-2.6.4-150200.3.3.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 15 SP3 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Linux Enterprise Storage 7.1 is installed OR SUSE Manager Proxy 4.2 is installed OR SUSE Manager Retail Branch Server 4.2 is installed OR SUSE Manager Server 4.2 is installed AND Package Information harfbuzz-devel is affected OR libharfbuzz-gobject0 is affected OR libharfbuzz-icu0 is affected OR libharfbuzz-subset0 is affected OR libharfbuzz0 is affected OR libharfbuzz0-32bit is affected OR typelib-1_0-HarfBuzz-0_0 is affected
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 15 SP4 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP4 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP4 is installed OR SUSE Linux Enterprise Server 15 SP4 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP4 is installed OR SUSE Manager Proxy 4.3 is installed OR SUSE Manager Retail Branch Server 4.3 is installed OR SUSE Manager Server 4.3 is installed AND Package Information harfbuzz-devel-3.4.0-150400.3.3.1 is installed OR libharfbuzz-gobject0-3.4.0-150400.3.3.1 is installed OR libharfbuzz-icu0-3.4.0-150400.3.3.1 is installed OR libharfbuzz-subset0-3.4.0-150400.3.3.1 is installed OR libharfbuzz0-3.4.0-150400.3.3.1 is installed OR libharfbuzz0-32bit-3.4.0-150400.3.3.1 is installed OR typelib-1_0-HarfBuzz-0_0-3.4.0-150400.3.3.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND Package Information libharfbuzz-icu0 is not affected OR libharfbuzz0 is not affected OR libharfbuzz0-32bit is not affected
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND harfbuzz is not affected OR Package Information SUSE Linux Enterprise Desktop 12 SP5 is installed OR SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND libharfbuzz-icu0-32bit is not affected OR Package Information SUSE Linux Enterprise Server 12 SP5 is installed AND libharfbuzz-icu0 is not affected OR libharfbuzz0 is not affected OR libharfbuzz0-32bit is not affected
Definition Synopsis
Release Information SUSE Linux Enterprise Server 15 SP2-LTSS is installed AND harfbuzz-devel-2.6.4-150200.3.3.1 is installed OR libharfbuzz-gobject0-2.6.4-150200.3.3.1 is installed OR libharfbuzz-icu0-2.6.4-150200.3.3.1 is installed OR libharfbuzz-subset0-2.6.4-150200.3.3.1 is installed OR libharfbuzz0-2.6.4-150200.3.3.1 is installed OR libharfbuzz0-32bit-2.6.4-150200.3.3.1 is installed OR typelib-1_0-HarfBuzz-0_0-2.6.4-150200.3.3.1 is installed OR Package Information SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS is installed OR SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS is installed AND harfbuzz-devel-2.6.4-150200.3.3.1 is installed OR libharfbuzz-gobject0-2.6.4-150200.3.3.1 is installed OR libharfbuzz-icu0-2.6.4-150200.3.3.1 is installed OR libharfbuzz-subset0-2.6.4-150200.3.3.1 is installed OR libharfbuzz0-2.6.4-150200.3.3.1 is installed OR libharfbuzz0-32bit-2.6.4-150200.3.3.1 is installed OR typelib-1_0-HarfBuzz-0_0-2.6.4-150200.3.3.1 is installed OR Package Information SUSE Linux Enterprise Server 15 SP2-BCL is installed AND harfbuzz-devel-2.6.4-150200.3.3.1 is installed OR libharfbuzz-gobject0-2.6.4-150200.3.3.1 is installed OR libharfbuzz-icu0-2.6.4-150200.3.3.1 is installed OR libharfbuzz-subset0-2.6.4-150200.3.3.1 is installed OR libharfbuzz0-2.6.4-150200.3.3.1 is installed OR libharfbuzz0-32bit-2.6.4-150200.3.3.1 is installed OR typelib-1_0-HarfBuzz-0_0-2.6.4-150200.3.3.1 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 15 SP2 is installed AND harfbuzz-devel-2.6.4-150200.3.3.1 is installed OR libharfbuzz-gobject0-2.6.4-150200.3.3.1 is installed OR libharfbuzz-icu0-2.6.4-150200.3.3.1 is installed OR libharfbuzz-subset0-2.6.4-150200.3.3.1 is installed OR libharfbuzz0-2.6.4-150200.3.3.1 is installed OR libharfbuzz0-32bit-2.6.4-150200.3.3.1 is installed OR typelib-1_0-HarfBuzz-0_0-2.6.4-150200.3.3.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 15 SP5 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP5 is installed OR SUSE Linux Enterprise Server 15 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed AND Package Information harfbuzz-devel-3.4.0-150400.3.6.1 is installed OR libharfbuzz-gobject0-3.4.0-150400.3.6.1 is installed OR libharfbuzz-icu0-3.4.0-150400.3.6.1 is installed OR libharfbuzz-subset0-3.4.0-150400.3.6.1 is installed OR libharfbuzz0-3.4.0-150400.3.6.1 is installed OR libharfbuzz0-32bit-3.4.0-150400.3.6.1 is installed OR typelib-1_0-HarfBuzz-0_0-3.4.0-150400.3.6.1 is installed

BACK