OVAL Reference oval:org.opensuse.security:def:2637

Oval Definition:

oval:org.opensuse.security:def:2637

Revision Date:	2020-12-02	Version:	1
Title:	Security update for ImageMagick (Moderate)
Description:	This update for ImageMagick fixes the following issues: The following security vulnerabilities were fixed: - CVE-2018-11625: Fixed heap-based buffer over-read in SetGrayscaleImage in the quantize.c file, which allowed remote attackers to cause buffer over-read via a crafted file. (bsc#1096200) - CVE-2018-11624: Fixed a use-after-free issue in the ReadMATImage function in coders/mat.c. (bsc#1096203) - CVE-2018-10805: Fixed several memory leaks in bgr.c, rgb.c, cmyk.c, gray.c, and ycbcr.c (bsc#1095812) - CVE-2018-12600: The ReadDIBImage and WriteDIBImage functions allowed attackers to cause an out of bounds write via a crafted file (bsc#1098545). - CVE-2018-12599: The ReadBMPImage and WriteBMPImage fucntions allowed attackers to cause an out of bounds write via a crafted file (bsc#1098546). The following other changes were made: - Fix -gamma issues in special cases. (bsc#1094745, bsc#1094742)
Family:	unix	Class:	patch
Status:		Reference(s):	1076958 1089524 1094742 1094745 1095812 1096200 1096203 1096945 1098545 1098546 1100691 1103877 1109465 1114592 1117025 1117473 1118599 1119991 1121563 1122000 1122293 1122299 1123013 1123333 1123482 1123727 1123892 1124153 1124525 1125352 1129180 1129186 1133283 1133810 1134078 1134156 1134978 1135254 1136572 1138688 1138743 1140359 1140868 1141322 1141897 1142649 1142654 1145665 1146873 1146882 1146884 1148517 1149145 1149292 1149293 1149294 1149295 1149296 1149297 1149298 1149299 1149302 1149303 1149304 1149323 1152506 1152539 1154849 1155812 1156543 CVE-2017-15107 CVE-2018-1000622 CVE-2018-10805 CVE-2018-11212 CVE-2018-11624 CVE-2018-11625 CVE-2018-12207 CVE-2018-12599 CVE-2018-12600 CVE-2018-15120 CVE-2018-19869 CVE-2018-20126 CVE-2019-11135 CVE-2019-11710 CVE-2019-11714 CVE-2019-11716 CVE-2019-11718 CVE-2019-11720 CVE-2019-11721 CVE-2019-11723 CVE-2019-11724 CVE-2019-11725 CVE-2019-11727 CVE-2019-11728 CVE-2019-11733 CVE-2019-11735 CVE-2019-11736 CVE-2019-11738 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11747 CVE-2019-11748 CVE-2019-11749 CVE-2019-11750 CVE-2019-11751 CVE-2019-11752 CVE-2019-11753 CVE-2019-12068 CVE-2019-12083 CVE-2019-12973 CVE-2019-14250 CVE-2019-14811 CVE-2019-14812 CVE-2019-14813 CVE-2019-14817 CVE-2019-14834 CVE-2019-15847 CVE-2019-2422 CVE-2019-3835 CVE-2019-3839 CVE-2019-6454 CVE-2019-6470 CVE-2019-6486 CVE-2019-9811 CVE-2019-9812 SUSE-SU-2018:2043-1 SUSE-SU-2018:2763-1 SUSE-SU-2019:0426-1 SUSE-SU-2019:0574-1 SUSE-SU-2019:0651-1 SUSE-SU-2019:0706-1 SUSE-SU-2019:2439-1 SUSE-SU-2019:2460-1 SUSE-SU-2019:2545-1 SUSE-SU-2019:2657-1 SUSE-SU-2019:2954-1 SUSE-SU-2019:3061-1 SUSE-SU-2019:3188-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise High Availability 15 SP1 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Toolchain 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-CLIENT-TOOLS SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Package Hub for SUSE Linux Enterprise 12	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information accountsservice-0.6.35-1 is installed OR accountsservice-lang-0.6.35-1 is installed OR libaccountsservice0-0.6.35-1 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information kdelibs4-4.12.0-10 is installed OR libkde4-4.12.0-10 is installed OR libkde4-32bit-4.12.0-10 is installed OR libkdecore4-4.12.0-10 is installed OR libkdecore4-32bit-4.12.0-10 is installed OR libksuseinstall1-4.12.0-10 is installed OR libksuseinstall1-32bit-4.12.0-10 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information ntp-4.2.8p9-55 is installed OR ntp-doc-4.2.8p9-55 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND libmwaw-0_3-3-0.3.13-7.9 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 is installed AND Package Information kgraft-patch-3_12_51-52_39-default-5-2.1 is installed OR kgraft-patch-3_12_51-52_39-xen-5-2.1 is installed OR kgraft-patch-SLE12_Update_11-5-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND ctdb-4.4.2-29 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND conntrack-tools-1.4.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 is installed AND Package Information drbd-9.0.13+git.b83ade31-3.2 is installed OR drbd-kmp-default-9.0.13+git.b83ade31_k4.12.14_23-3.2 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP1 is installed AND Package Information cluster-md-kmp-default-4.12.14-197.7 is installed OR dlm-kmp-default-4.12.14-197.7 is installed OR gfs2-kmp-default-4.12.14-197.7 is installed OR kernel-default-4.12.14-197.7 is installed OR ocfs2-kmp-default-4.12.14-197.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information python-Werkzeug-0.12.2-3.3 is installed OR python2-Werkzeug-0.12.2-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND docker-1.6.2-31 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information ImageMagick-7.0.7.34-3.9 is installed OR ImageMagick-devel-7.0.7.34-3.9 is installed OR libMagick++-7_Q16HDRI4-7.0.7.34-3.9 is installed OR libMagick++-devel-7.0.7.34-3.9 is installed OR libMagickCore-7_Q16HDRI6-7.0.7.34-3.9 is installed OR libMagickWand-7_Q16HDRI6-7.0.7.34-3.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information libpmi0-17.11.13-6.18 is installed OR libslurm32-17.11.13-6.18 is installed OR perl-slurm-17.11.13-6.18 is installed OR slurm-17.11.13-6.18 is installed OR slurm-auth-none-17.11.13-6.18 is installed OR slurm-config-17.11.13-6.18 is installed OR slurm-devel-17.11.13-6.18 is installed OR slurm-doc-17.11.13-6.18 is installed OR slurm-lua-17.11.13-6.18 is installed OR slurm-munge-17.11.13-6.18 is installed OR slurm-node-17.11.13-6.18 is installed OR slurm-pam_slurm-17.11.13-6.18 is installed OR slurm-plugins-17.11.13-6.18 is installed OR slurm-slurmdbd-17.11.13-6.18 is installed OR slurm-sql-17.11.13-6.18 is installed OR slurm-torque-17.11.13-6.18 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information libslurm32-17.11.13-6.18 is installed OR slurm-17.11.13-6.18 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information java-1_6_0-ibm-1.6.0_sr16.1-5 is installed OR java-1_6_0-ibm-fonts-1.6.0_sr16.1-5 is installed OR java-1_6_0-ibm-jdbc-1.6.0_sr16.1-5 is installed OR java-1_6_0-ibm-plugin-1.6.0_sr16.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-3.3 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-3.3 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-3.3 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information java-1_8_0-openjdk-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.212-3.19 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_3-default-4-2 is installed OR kernel-livepatch-SLE15_Update_1-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.7 is installed OR kernel-default-livepatch-4.12.14-197.7 is installed OR kernel-default-livepatch-devel-4.12.14-197.7 is installed OR kernel-livepatch-4_12_14-197_7-default-1-3.3 is installed OR kernel-livepatch-SLE15-SP1_Update_2-1-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information rust-1.36.0-3.21 is installed OR rust-cbindgen-0.8.7-1.3 is installed OR rust-doc-1.36.0-3.21 is installed OR rust-gdb-1.36.0-3.21 is installed OR rust-src-1.36.0-3.21 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information bzip2-1.0.6-5.3 is installed OR bzip2-doc-1.0.6-5.3 is installed OR libbz2-devel-32bit-1.0.6-5.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information ovmf-2017+git1510945757.b2662641d5-5.19 is installed OR ovmf-tools-2017+git1510945757.b2662641d5-5.19 is installed OR qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-5.19 is installed OR qemu-uefi-aarch64-2017+git1510945757.b2662641d5-5.19 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information dhcp-4.3.5-6.3 is installed OR dhcp-relay-4.3.5-6.3 is installed OR dhcp-server-4.3.5-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Toolchain 12 is installed AND Package Information cpp5-5.3.1+r233831-9 is installed OR gcc5-5.3.1+r233831-9 is installed OR gcc5-c++-5.3.1+r233831-9 is installed OR gcc5-fortran-5.3.1+r233831-9 is installed OR gcc5-info-5.3.1+r233831-9 is installed OR gcc5-locale-5.3.1+r233831-9 is installed OR libffi-devel-gcc5-5.3.1+r233831-9 is installed OR libstdc++6-devel-gcc5-5.3.1+r233831-9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php7-7.0.7-15 is installed OR php7-7.0.7-15 is installed OR php7-bcmath-7.0.7-15 is installed OR php7-bz2-7.0.7-15 is installed OR php7-calendar-7.0.7-15 is installed OR php7-ctype-7.0.7-15 is installed OR php7-curl-7.0.7-15 is installed OR php7-dba-7.0.7-15 is installed OR php7-dom-7.0.7-15 is installed OR php7-enchant-7.0.7-15 is installed OR php7-exif-7.0.7-15 is installed OR php7-fastcgi-7.0.7-15 is installed OR php7-fileinfo-7.0.7-15 is installed OR php7-fpm-7.0.7-15 is installed OR php7-ftp-7.0.7-15 is installed OR php7-gd-7.0.7-15 is installed OR php7-gettext-7.0.7-15 is installed OR php7-gmp-7.0.7-15 is installed OR php7-iconv-7.0.7-15 is installed OR php7-imap-7.0.7-15 is installed OR php7-intl-7.0.7-15 is installed OR php7-json-7.0.7-15 is installed OR php7-ldap-7.0.7-15 is installed OR php7-mbstring-7.0.7-15 is installed OR php7-mcrypt-7.0.7-15 is installed OR php7-mysql-7.0.7-15 is installed OR php7-odbc-7.0.7-15 is installed OR php7-opcache-7.0.7-15 is installed OR php7-openssl-7.0.7-15 is installed OR php7-pcntl-7.0.7-15 is installed OR php7-pdo-7.0.7-15 is installed OR php7-pear-7.0.7-15 is installed OR php7-pear-Archive_Tar-7.0.7-15 is installed OR php7-pgsql-7.0.7-15 is installed OR php7-phar-7.0.7-15 is installed OR php7-posix-7.0.7-15 is installed OR php7-pspell-7.0.7-15 is installed OR php7-shmop-7.0.7-15 is installed OR php7-snmp-7.0.7-15 is installed OR php7-soap-7.0.7-15 is installed OR php7-sockets-7.0.7-15 is installed OR php7-sqlite-7.0.7-15 is installed OR php7-sysvmsg-7.0.7-15 is installed OR php7-sysvsem-7.0.7-15 is installed OR php7-sysvshm-7.0.7-15 is installed OR php7-tokenizer-7.0.7-15 is installed OR php7-wddx-7.0.7-15 is installed OR php7-xmlreader-7.0.7-15 is installed OR php7-xmlrpc-7.0.7-15 is installed OR php7-xmlwriter-7.0.7-15 is installed OR php7-xsl-7.0.7-15 is installed OR php7-zip-7.0.7-15 is installed OR php7-zlib-7.0.7-15 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs8-8.11.4-3.8 is installed OR nodejs8-devel-8.11.4-3.8 is installed OR nodejs8-docs-8.11.4-3.8 is installed OR npm8-8.11.4-3.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information apache2-mod_php7-7.2.5-4.35 is installed OR php7-7.2.5-4.35 is installed OR php7-bcmath-7.2.5-4.35 is installed OR php7-bz2-7.2.5-4.35 is installed OR php7-calendar-7.2.5-4.35 is installed OR php7-ctype-7.2.5-4.35 is installed OR php7-curl-7.2.5-4.35 is installed OR php7-dba-7.2.5-4.35 is installed OR php7-devel-7.2.5-4.35 is installed OR php7-dom-7.2.5-4.35 is installed OR php7-enchant-7.2.5-4.35 is installed OR php7-exif-7.2.5-4.35 is installed OR php7-fastcgi-7.2.5-4.35 is installed OR php7-fileinfo-7.2.5-4.35 is installed OR php7-fpm-7.2.5-4.35 is installed OR php7-ftp-7.2.5-4.35 is installed OR php7-gd-7.2.5-4.35 is installed OR php7-gettext-7.2.5-4.35 is installed OR php7-gmp-7.2.5-4.35 is installed OR php7-iconv-7.2.5-4.35 is installed OR php7-intl-7.2.5-4.35 is installed OR php7-json-7.2.5-4.35 is installed OR php7-ldap-7.2.5-4.35 is installed OR php7-mbstring-7.2.5-4.35 is installed OR php7-mysql-7.2.5-4.35 is installed OR php7-odbc-7.2.5-4.35 is installed OR php7-opcache-7.2.5-4.35 is installed OR php7-openssl-7.2.5-4.35 is installed OR php7-pcntl-7.2.5-4.35 is installed OR php7-pdo-7.2.5-4.35 is installed OR php7-pear-7.2.5-4.35 is installed OR php7-pear-Archive_Tar-7.2.5-4.35 is installed OR php7-pgsql-7.2.5-4.35 is installed OR php7-phar-7.2.5-4.35 is installed OR php7-posix-7.2.5-4.35 is installed OR php7-shmop-7.2.5-4.35 is installed OR php7-snmp-7.2.5-4.35 is installed OR php7-soap-7.2.5-4.35 is installed OR php7-sockets-7.2.5-4.35 is installed OR php7-sqlite-7.2.5-4.35 is installed OR php7-sysvmsg-7.2.5-4.35 is installed OR php7-sysvsem-7.2.5-4.35 is installed OR php7-sysvshm-7.2.5-4.35 is installed OR php7-tokenizer-7.2.5-4.35 is installed OR php7-wddx-7.2.5-4.35 is installed OR php7-xmlreader-7.2.5-4.35 is installed OR php7-xmlrpc-7.2.5-4.35 is installed OR php7-xmlwriter-7.2.5-4.35 is installed OR php7-xsl-7.2.5-4.35 is installed OR php7-zip-7.2.5-4.35 is installed OR php7-zlib-7.2.5-4.35 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information MozillaFirefox-31.1.0esr-1 is installed OR MozillaFirefox-translations-31.1.0esr-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information MozillaFirefox-38.4.0esr-51 is installed OR MozillaFirefox-translations-38.4.0esr-51 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libapr-util1-1.5.3-1 is installed OR libapr-util1-dbd-sqlite3-1.5.3-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND wireshark-1.12.13-31 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information evolution-data-server-3.10.4-5.11 is installed OR evolution-data-server-devel-3.10.4-5.11 is installed OR typelib-1_0-EBook-1_2-3.10.4-5.11 is installed OR typelib-1_0-EBookContacts-1_2-3.10.4-5.11 is installed OR typelib-1_0-EDataServer-1_2-3.10.4-5.11 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information spice-gtk-devel-0.29-1.4 is installed OR typelib-1_0-SpiceClientGtk-2_0-0.29-1.4 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information gnome-online-accounts-3.20.4-7.2 is installed OR gnome-online-accounts-lang-3.20.4-7.2 is installed OR libgoa-1_0-0-32bit-3.20.4-7.2 is installed OR typelib-1_0-Goa-1_0-3.20.4-7.2 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information ffmpeg-3.4.2-4.5 is installed OR libavcodec-devel-3.4.2-4.5 is installed OR libavformat-devel-3.4.2-4.5 is installed OR libavformat57-3.4.2-4.5 is installed OR libavresample-devel-3.4.2-4.5 is installed OR libavresample3-3.4.2-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information gnome-shell-3.26.2+20180130.0d9c74212-4.19 is installed OR gnome-shell-calendar-3.26.2+20180130.0d9c74212-4.19 is installed
Definition Synopsis
SUSE Package Hub for SUSE Linux Enterprise 12 is installed AND Package Information chromedriver-53.0.2785.89-96 is installed OR chromium-53.0.2785.89-96 is installed OR chromium-desktop-gnome-53.0.2785.89-96 is installed OR chromium-desktop-kde-53.0.2785.89-96 is installed OR chromium-ffmpegsumo-53.0.2785.89-96 is installed

BACK