Oval Definition:oval:org.opensuse.security:def:2649
Revision Date:2020-12-02Version:1
Title:Security update for gd (Moderate)
Description:

This update for gd fixes the following issues:

Security issue fixed:

- CVE-2018-1000222: Fixed a double free vulnerability in gdImageBmpPtr() that could result in remote code execution. This could have been exploited via a specially crafted JPEG image files. (bsc#1105434)
Family:unixClass:patch
Status:Reference(s):1069904
1094685
1095189
1095825
1095826
1095827
1095945
1096209
1097103
1098155
1105434
1109319
1111647
1122293
1122299
1122895
1123919
1128525
1128712
1145579
1145580
1145582
1151178
1153102
1154999
1158108
1158109
CVE-2017-14804
CVE-2018-1000222
CVE-2018-11212
CVE-2018-11410
CVE-2018-11440
CVE-2018-1152
CVE-2018-11577
CVE-2018-11683
CVE-2018-11684
CVE-2018-11685
CVE-2018-11813
CVE-2018-12085
CVE-2018-12086
CVE-2018-14498
CVE-2018-17294
CVE-2018-18227
CVE-2019-11043
CVE-2019-14861
CVE-2019-14870
CVE-2019-16239
CVE-2019-17113
CVE-2019-2422
CVE-2019-8936
CVE-2019-9511
CVE-2019-9513
CVE-2019-9516
SUSE-SU-2018:2888-1
SUSE-SU-2018:3282-1
SUSE-SU-2019:0387-1
SUSE-SU-2019:0574-1
SUSE-SU-2019:0711-1
SUSE-SU-2019:0777-1
SUSE-SU-2019:0795-1
SUSE-SU-2019:2559-1
SUSE-SU-2019:2622-1
SUSE-SU-2019:2737-1
SUSE-SU-2019:2819-1
SUSE-SU-2019:3087-1
SUSE-SU-2019:3318-1
Platform(s):SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 15
SUSE Linux Enterprise High Availability 15 SP1
SUSE Linux Enterprise Module for additional PackageHub packages 15
SUSE Linux Enterprise Module for Desktop Applications 15
SUSE Linux Enterprise Module for High Performance Computing 15
SUSE Linux Enterprise Module for High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Legacy Software 15 SP1
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Module for Web Scripting 15 SP1
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP1-CLIENT-TOOLS
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE Package Hub for SUSE Linux Enterprise 12
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-5 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-5 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-5 is installed
  • OR libMagickCore-6_Q16-1-32bit-6.8.8.1-5 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND autofs-5.0.9-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • bind-9.9.9P1-49 is installed
  • OR bind-libs-9.9.9P1-49 is installed
  • OR bind-libs-32bit-9.9.9P1-49 is installed
  • OR bind-utils-9.9.9P1-49 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • libopenssl0_9_8-0.9.8j-106.6 is installed
  • OR libopenssl0_9_8-32bit-0.9.8j-106.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr3.60-31.2 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr3.60-31.2 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr3.60-31.2 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr3.60-31.2 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr3.60-31.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.4.21-69 is installed
  • OR cluster-network-kmp-default-4.4.21-69 is installed
  • OR dlm-kmp-default-4.4.21-69 is installed
  • OR gfs2-kmp-default-4.4.21-69 is installed
  • OR ocfs2-kmp-default-4.4.21-69 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND haproxy-1.6.11-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND conntrack-tools-1.4.2-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-25.6 is installed
  • OR dlm-kmp-default-4.12.14-25.6 is installed
  • OR gfs2-kmp-default-4.12.14-25.6 is installed
  • OR kernel-default-4.12.14-25.6 is installed
  • OR ocfs2-kmp-default-4.12.14-25.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 SP1 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-197.10 is installed
  • OR dlm-kmp-default-4.12.14-197.10 is installed
  • OR gfs2-kmp-default-4.12.14-197.10 is installed
  • OR kernel-default-4.12.14-197.10 is installed
  • OR ocfs2-kmp-default-4.12.14-197.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed
  • AND Package Information
  • avahi-0.6.32-5.5 is installed
  • OR python-avahi-0.6.32-5.5 is installed
  • OR samba-4.7.11+git.153.b36ceaf2235-4.27 is installed
  • OR samba-python-4.7.11+git.153.b36ceaf2235-4.27 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND Package Information
  • gd-2.2.5-4.3 is installed
  • OR gd-devel-2.2.5-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 is installed
  • AND Package Information
  • python-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed
  • OR python2-numpy-gnu-hpc-1.14.0-4.5 is installed
  • OR python2-numpy-gnu-hpc-devel-1.14.0-4.5 is installed
  • OR python2-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed
  • OR python2-numpy_1_14_0-gnu-hpc-devel-1.14.0-4.5 is installed
  • OR python3-numpy-gnu-hpc-1.14.0-4.5 is installed
  • OR python3-numpy-gnu-hpc-devel-1.14.0-4.5 is installed
  • OR python3-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed
  • OR python3-numpy_1_14_0-gnu-hpc-devel-1.14.0-4.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed
  • AND Package Information
  • pdsh-2.33-7.6 is installed
  • OR pdsh-dshgroup-2.33-7.6 is installed
  • OR pdsh-genders-2.33-7.6 is installed
  • OR pdsh-machines-2.33-7.6 is installed
  • OR pdsh-netgroup-2.33-7.6 is installed
  • OR pdsh-slurm-2.33-7.6 is installed
  • OR pdsh-slurm_18_08-2.33-7.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 is installed
  • AND Package Information
  • libopenssl-1_0_0-devel-1.0.2n-3.3 is installed
  • OR libopenssl1_0_0-1.0.2n-3.3 is installed
  • OR openssl-1_0_0-1.0.2n-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed
  • AND Package Information
  • openldap2-2.4.46-9.19 is installed
  • OR openldap2-back-meta-2.4.46-9.19 is installed
  • OR openldap2-back-perl-2.4.46-9.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.6 is installed
  • OR kernel-default-livepatch-4.12.14-25.6 is installed
  • OR kernel-livepatch-4_12_14-25_6-default-1-1.3 is installed
  • OR kernel-livepatch-SLE15_Update_2-1-1.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-195-default-2-4 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_0-2-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • nginx-1.14.2-3.6 is installed
  • OR vim-plugin-nginx-1.14.2-3.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • bzip2-1.0.6-5.3 is installed
  • OR bzip2-doc-1.0.6-5.3 is installed
  • OR libbz2-devel-32bit-1.0.6-5.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • gnutls-3.6.7-6.14 is installed
  • OR gnutls-guile-3.6.7-6.14 is installed
  • OR libgnutls-devel-32bit-3.6.7-6.14 is installed
  • OR libnettle-3.4.1-4.12 is installed
  • OR libnettle-devel-32bit-3.4.1-4.12 is installed
  • OR nettle-3.4.1-4.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • bind-9.11.2-12.11 is installed
  • OR bind-chrootenv-9.11.2-12.11 is installed
  • OR bind-doc-9.11.2-12.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND apache2-mod_wsgi-4.4.13-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND Package Information
  • apache2-mod_php7-7.2.5-4.9 is installed
  • OR php7-7.2.5-4.9 is installed
  • OR php7-bcmath-7.2.5-4.9 is installed
  • OR php7-bz2-7.2.5-4.9 is installed
  • OR php7-calendar-7.2.5-4.9 is installed
  • OR php7-ctype-7.2.5-4.9 is installed
  • OR php7-curl-7.2.5-4.9 is installed
  • OR php7-dba-7.2.5-4.9 is installed
  • OR php7-devel-7.2.5-4.9 is installed
  • OR php7-dom-7.2.5-4.9 is installed
  • OR php7-enchant-7.2.5-4.9 is installed
  • OR php7-exif-7.2.5-4.9 is installed
  • OR php7-fastcgi-7.2.5-4.9 is installed
  • OR php7-fileinfo-7.2.5-4.9 is installed
  • OR php7-fpm-7.2.5-4.9 is installed
  • OR php7-ftp-7.2.5-4.9 is installed
  • OR php7-gd-7.2.5-4.9 is installed
  • OR php7-gettext-7.2.5-4.9 is installed
  • OR php7-gmp-7.2.5-4.9 is installed
  • OR php7-iconv-7.2.5-4.9 is installed
  • OR php7-intl-7.2.5-4.9 is installed
  • OR php7-json-7.2.5-4.9 is installed
  • OR php7-ldap-7.2.5-4.9 is installed
  • OR php7-mbstring-7.2.5-4.9 is installed
  • OR php7-mysql-7.2.5-4.9 is installed
  • OR php7-odbc-7.2.5-4.9 is installed
  • OR php7-opcache-7.2.5-4.9 is installed
  • OR php7-openssl-7.2.5-4.9 is installed
  • OR php7-pcntl-7.2.5-4.9 is installed
  • OR php7-pdo-7.2.5-4.9 is installed
  • OR php7-pear-7.2.5-4.9 is installed
  • OR php7-pear-Archive_Tar-7.2.5-4.9 is installed
  • OR php7-pgsql-7.2.5-4.9 is installed
  • OR php7-phar-7.2.5-4.9 is installed
  • OR php7-posix-7.2.5-4.9 is installed
  • OR php7-shmop-7.2.5-4.9 is installed
  • OR php7-snmp-7.2.5-4.9 is installed
  • OR php7-soap-7.2.5-4.9 is installed
  • OR php7-sockets-7.2.5-4.9 is installed
  • OR php7-sqlite-7.2.5-4.9 is installed
  • OR php7-sysvmsg-7.2.5-4.9 is installed
  • OR php7-sysvsem-7.2.5-4.9 is installed
  • OR php7-sysvshm-7.2.5-4.9 is installed
  • OR php7-tokenizer-7.2.5-4.9 is installed
  • OR php7-wddx-7.2.5-4.9 is installed
  • OR php7-xmlreader-7.2.5-4.9 is installed
  • OR php7-xmlrpc-7.2.5-4.9 is installed
  • OR php7-xmlwriter-7.2.5-4.9 is installed
  • OR php7-xsl-7.2.5-4.9 is installed
  • OR php7-zip-7.2.5-4.9 is installed
  • OR php7-zlib-7.2.5-4.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed
  • AND Package Information
  • nodejs8-8.15.1-3.17 is installed
  • OR nodejs8-devel-8.15.1-3.17 is installed
  • OR nodejs8-docs-8.15.1-3.17 is installed
  • OR npm8-8.15.1-3.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-1 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • DirectFB-1.7.1-4 is installed
  • OR lib++dfb-1_7-1-1.7.1-4 is installed
  • OR libdirectfb-1_7-1-1.7.1-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libfreebl3-3.21.1-46 is installed
  • OR libfreebl3-32bit-3.21.1-46 is installed
  • OR libfreebl3-hmac-3.21.1-46 is installed
  • OR libfreebl3-hmac-32bit-3.21.1-46 is installed
  • OR libsoftokn3-3.21.1-46 is installed
  • OR libsoftokn3-32bit-3.21.1-46 is installed
  • OR libsoftokn3-hmac-3.21.1-46 is installed
  • OR libsoftokn3-hmac-32bit-3.21.1-46 is installed
  • OR mozilla-nss-3.21.1-46 is installed
  • OR mozilla-nss-32bit-3.21.1-46 is installed
  • OR mozilla-nss-certs-3.21.1-46 is installed
  • OR mozilla-nss-certs-32bit-3.21.1-46 is installed
  • OR mozilla-nss-sysinit-3.21.1-46 is installed
  • OR mozilla-nss-sysinit-32bit-3.21.1-46 is installed
  • OR mozilla-nss-tools-3.21.1-46 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-36 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND yast2-core-3.1.23-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND MozillaFirefox-devel-31.1.0esr-1.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND yast2-core-devel-3.1.18-1.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND libfbembed2_5-2.5.2.26539-13.42 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND enigmail-2.0.7-3.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • MozillaThunderbird-60.7.2-3.43 is installed
  • OR MozillaThunderbird-translations-common-60.7.2-3.43 is installed
  • OR MozillaThunderbird-translations-other-60.7.2-3.43 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 is installed
  • AND Package Information
  • chromedriver-53.0.2785.89-96 is installed
  • OR chromium-53.0.2785.89-96 is installed
  • OR chromium-desktop-gnome-53.0.2785.89-96 is installed
  • OR chromium-desktop-kde-53.0.2785.89-96 is installed
  • OR chromium-ffmpegsumo-53.0.2785.89-96 is installed
    • BACK