OVAL Reference oval:org.opensuse.security:def:2632

Oval Definition:

oval:org.opensuse.security:def:2632

Revision Date:	2020-12-02	Version:	1
Title:	Security update for cairo (Moderate)
Description:	This update for cairo fixes the following issues: The following security vulnerability was addressed: - CVE-2017-9814: Fixed and out-of-bounds read in cairo-truetype-subset.c by replacing the malloc implementation with _cairo_malloc and checking the size before memory allocation (bsc#1049092)
Family:	unix	Class:	patch
Status:		Reference(s):	1046303 1048942 1049092 1051510 1065600 1071995 1078248 1082635 1083647 1089644 1090888 1091041 1101776 1101777 1101786 1101788 1101791 1101794 1101800 1101802 1101804 1101810 1104427 1108043 1112142 1112143 1112144 1112146 1112147 1112148 1112152 1112153 1112294 1112578 1113245 1113700 1113722 1114279 1115026 1117169 1118367 1118368 1120307 1120853 1123371 1123377 1123378 1124628 1125410 1127371 1131107 1135350 1138039 1138687 1140948 1142095 1143706 1143959 1144333 1146065 1146068 1146211 1146212 1146213 1146519 1146544 1148742 1149448 1150003 1150250 1150466 1151548 1151781 1151782 1151783 1151784 1151785 1151786 1151900 1152631 1152782 1152856 1153163 1153164 1153628 1153681 1153811 1154043 1154058 1154124 1154212 1154355 1154526 1154956 1155021 1155331 1155334 1155689 1155692 1155836 1155897 1155921 1156187 1156258 1156259 1156429 1156462 1156466 1156471 1156494 1156609 1156700 1156729 1156882 1157038 1157042 1157070 1157143 1157145 1157158 1157162 1157169 1157171 1157173 1157178 1157180 1157182 1157183 1157184 1157191 1157193 1157197 1157298 1157303 1157307 1157324 1157333 1157424 1157463 1157499 1157678 1157698 1157778 1157853 1157908 1158049 1158063 1158064 1158065 1158066 1158067 1158068 1158082 1158094 1158132 1158381 1158394 1158398 1158407 1158410 1158413 1158417 1158427 1158445 1158533 1158637 1158638 1158639 1158640 1158641 1158643 1158644 1158645 1158646 1158647 1158649 1158651 1158652 1158823 1158824 1158827 1158834 1158893 1158900 1158903 1158904 1158954 1159024 1159297 CVE-2017-18594 CVE-2017-9814 CVE-2018-13785 CVE-2018-14339 CVE-2018-14340 CVE-2018-14341 CVE-2018-14342 CVE-2018-14343 CVE-2018-14344 CVE-2018-14367 CVE-2018-14368 CVE-2018-14369 CVE-2018-14370 CVE-2018-15173 CVE-2018-16435 CVE-2018-16890 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3183 CVE-2018-3214 CVE-2019-14895 CVE-2019-14901 CVE-2019-14980 CVE-2019-14981 CVE-2019-15139 CVE-2019-15140 CVE-2019-15141 CVE-2019-15213 CVE-2019-1547 CVE-2019-1563 CVE-2019-15916 CVE-2019-16231 CVE-2019-16708 CVE-2019-16709 CVE-2019-16710 CVE-2019-16711 CVE-2019-16712 CVE-2019-16713 CVE-2019-17055 CVE-2019-17177 CVE-2019-17178 CVE-2019-18660 CVE-2019-18683 CVE-2019-18805 CVE-2019-18808 CVE-2019-18809 CVE-2019-19049 CVE-2019-19051 CVE-2019-19052 CVE-2019-19056 CVE-2019-19057 CVE-2019-19058 CVE-2019-19060 CVE-2019-19062 CVE-2019-19063 CVE-2019-19065 CVE-2019-19066 CVE-2019-19067 CVE-2019-19068 CVE-2019-19073 CVE-2019-19074 CVE-2019-19075 CVE-2019-19077 CVE-2019-19227 CVE-2019-19332 CVE-2019-19338 CVE-2019-19523 CVE-2019-19524 CVE-2019-19525 CVE-2019-19526 CVE-2019-19527 CVE-2019-19528 CVE-2019-19529 CVE-2019-19530 CVE-2019-19531 CVE-2019-19532 CVE-2019-19533 CVE-2019-19534 CVE-2019-19535 CVE-2019-19536 CVE-2019-19537 CVE-2019-19543 CVE-2019-19767 CVE-2019-2894 CVE-2019-2933 CVE-2019-2945 CVE-2019-2949 CVE-2019-2958 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2975 CVE-2019-2977 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2987 CVE-2019-2988 CVE-2019-2989 CVE-2019-2992 CVE-2019-2999 CVE-2019-3822 CVE-2019-3823 CVE-2019-3824 CVE-2019-3825 CVE-2019-6471 SUSE-SU-2018:1873-1 SUSE-SU-2018:2301-1 SUSE-SU-2019:0058-1 SUSE-SU-2019:0248-1 SUSE-SU-2019:0527-1 SUSE-SU-2019:0639-1 SUSE-SU-2019:2410-1 SUSE-SU-2019:2425-1 SUSE-SU-2019:2550-1 SUSE-SU-2019:2896-1 SUSE-SU-2019:2998-1 SUSE-SU-2019:3078-1 SUSE-SU-2019:3381-1
Platform(s):	SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise High Availability 15 SP1 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND python-requests-2.3.0-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information ImageMagick-6.8.8.1-5 is installed OR libMagick++-6_Q16-3-6.8.8.1-5 is installed OR libMagickCore-6_Q16-1-6.8.8.1-5 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-5 is installed OR libMagickWand-6_Q16-1-6.8.8.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information MozillaFirefox-45.9.0esr-105 is installed OR MozillaFirefox-translations-45.9.0esr-105 is installed OR java-1_8_0-openjdk-1.8.0.121-23 is installed OR java-1_8_0-openjdk-headless-1.8.0.121-23 is installed OR libfreebl3-3.29.5-57 is installed OR libfreebl3-32bit-3.29.5-57 is installed OR libsoftokn3-3.29.5-57 is installed OR libsoftokn3-32bit-3.29.5-57 is installed OR mozilla-nspr-4.13.1-18 is installed OR mozilla-nspr-32bit-4.13.1-18 is installed OR mozilla-nss-3.29.5-57 is installed OR mozilla-nss-32bit-3.29.5-57 is installed OR mozilla-nss-certs-3.29.5-57 is installed OR mozilla-nss-certs-32bit-3.29.5-57 is installed OR mozilla-nss-sysinit-3.29.5-57 is installed OR mozilla-nss-sysinit-32bit-3.29.5-57 is installed OR mozilla-nss-tools-3.29.5-57 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information gc-7.2d-5 is installed OR libgc1-7.2d-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND libmms0-0.6.2-15 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 is installed AND Package Information MozillaFirefox-45.4.0esr-81.1 is installed OR MozillaFirefox-translations-45.4.0esr-81.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND conntrack-tools-1.4.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND conntrack-tools-1.4.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP4 is installed AND lighttpd-1.4.35-3 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 is installed AND Package Information libqb-1.0.3+20171226.6d62b64-3.3 is installed OR libqb-devel-1.0.3+20171226.6d62b64-3.3 is installed OR libqb0-1.0.3+20171226.6d62b64-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP1 is installed AND Package Information graphviz-addons-2.40.1-6.3 is installed OR graphviz-gd-2.40.1-6.3 is installed OR graphviz-python-2.40.1-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information postgresql10-10.9-4.13 is installed OR postgresql10-test-10.9-4.13 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND Package Information puppet-3.6.2-3 is installed OR puppet-server-3.6.2-3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND python-PyYAML-3.10-15 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information cairo-1.15.10-4.5 is installed OR libcairo2-32bit-1.15.10-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information libpmi0-17.11.13-6.15 is installed OR libslurm32-17.11.13-6.15 is installed OR perl-slurm-17.11.13-6.15 is installed OR slurm-17.11.13-6.15 is installed OR slurm-auth-none-17.11.13-6.15 is installed OR slurm-config-17.11.13-6.15 is installed OR slurm-devel-17.11.13-6.15 is installed OR slurm-doc-17.11.13-6.15 is installed OR slurm-lua-17.11.13-6.15 is installed OR slurm-munge-17.11.13-6.15 is installed OR slurm-node-17.11.13-6.15 is installed OR slurm-pam_slurm-17.11.13-6.15 is installed OR slurm-plugins-17.11.13-6.15 is installed OR slurm-slurmdbd-17.11.13-6.15 is installed OR slurm-sql-17.11.13-6.15 is installed OR slurm-torque-17.11.13-6.15 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information libslurm32-17.11.13-6.18 is installed OR slurm-17.11.13-6.18 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information java-1_6_0-ibm-1.6.0_sr16.1-5 is installed OR java-1_6_0-ibm-fonts-1.6.0_sr16.1-5 is installed OR java-1_6_0-ibm-jdbc-1.6.0_sr16.1-5 is installed OR java-1_6_0-ibm-plugin-1.6.0_sr16.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information kernel-default-4.12.14-25.13 is installed OR reiserfs-kmp-default-4.12.14-25.13 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information java-1_8_0-openjdk-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.212-3.19 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_3-default-3-2 is installed OR kernel-livepatch-SLE15_Update_1-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_7-default-4-2 is installed OR kernel-livepatch-SLE15-SP1_Update_2-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information libopenssl-1_1-devel-32bit-1.1.0i-4.24 is installed OR openssl-1_1-1.1.0i-4.24 is installed OR openssl-1_1-doc-1.1.0i-4.24 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-32bit-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-demo-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-devel-32bit-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-src-1.8.0_sr5.35-3.20 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information MozillaFirefox-68.6.1-3.81 is installed OR MozillaFirefox-branding-upstream-68.6.1-3.81 is installed OR MozillaFirefox-buildsymbols-68.6.1-3.81 is installed OR MozillaFirefox-devel-68.6.1-3.81 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libmysqld-devel-10.2.22-3.14 is installed OR libmysqld19-10.2.22-3.14 is installed OR mariadb-10.2.22-3.14 is installed OR mariadb-client-10.2.22-3.14 is installed OR mariadb-errormessages-10.2.22-3.14 is installed OR mariadb-tools-10.2.22-3.14 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information util-linux-systemd-2.33.1-4.5 is installed OR uuidd-2.33.1-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND apache2-mod_wsgi-4.4.13-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND jakarta-commons-fileupload-1.1.1-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND apache-commons-beanutils-1.9.2-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information MozillaFirefox-31.1.0esr-1 is installed OR MozillaFirefox-translations-31.1.0esr-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information alsa-1.0.27.2-11 is installed OR alsa-docs-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libXv1-1.0.10-3 is installed OR libXv1-32bit-1.0.10-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-36 is installed OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information vino-3.20.2-5 is installed OR vino-lang-3.20.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information bind-9.9.5P1-8.1 is installed OR bind-devel-9.9.5P1-8.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information rhythmbox-3.0.2-1.92 is installed OR rhythmbox-devel-3.0.2-1.92 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information finch-2.11.0-12.5 is installed OR libpurple-2.11.0-12.5 is installed OR libpurple-lang-2.11.0-12.5 is installed OR libpurple-meanwhile-2.11.0-12.5 is installed OR libpurple-tcl-2.11.0-12.5 is installed OR pidgin-2.11.0-12.5 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information ffmpeg-3.4.2-4.5 is installed OR libavcodec-devel-3.4.2-4.5 is installed OR libavformat-devel-3.4.2-4.5 is installed OR libavformat57-3.4.2-4.5 is installed OR libavresample-devel-3.4.2-4.5 is installed OR libavresample3-3.4.2-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information gnome-shell-3.26.2+20180130.0d9c74212-4.19 is installed OR gnome-shell-calendar-3.26.2+20180130.0d9c74212-4.19 is installed

BACK