OVAL Reference oval:org.opensuse.security:def:2670

Oval Definition:

oval:org.opensuse.security:def:2670

Revision Date:	2020-12-02	Version:	1
Title:	Security update for tiff (Moderate)
Description:	This update for tiff fixes the following issues: Security issues fixed: - CVE-2018-19210: Fixed NULL pointer dereference in the TIFFWriteDirectorySec function (bsc#1115717). - CVE-2017-12944: Fixed denial of service issue in the TIFFReadDirEntryArray function (bsc#1054594). - CVE-2016-10094: Fixed heap-based buffer overflow in the _tiffWriteProc function (bsc#1017693). - CVE-2016-10093: Fixed heap-based buffer overflow in the _TIFFmemcpy function (bsc#1017693). - CVE-2016-10092: Fixed heap-based buffer overflow in the TIFFReverseBits function (bsc#1017693). - CVE-2016-6223: Fixed out-of-bounds read on memory-mapped files in TIFFReadRawStrip1() and TIFFReadRawTile1() (bsc#990460).
Family:	unix	Class:	patch
Status:		Reference(s):	1017693 1027282 1029377 1029902 1040164 1042670 1054594 1070853 1079761 1081516 1081750 1083507 1086001 1088004 1088009 1088573 1092206 1094814 1102604 1104662 1104841 1106420 1107030 1108086 1108395 1109663 1109847 1112142 1112143 1112144 1112146 1112147 1112148 1112152 1112153 1112182 1114407 1114592 1115717 1117058 1118952 1119553 1119554 1119555 1119556 1119557 1119558 1119687 1120644 1120813 1122191 1122623 1123642 1124223 1124667 1125410 1125665 1126325 1126377 1127458 1129346 1129528 1130129 1130840 1130847 1131060 1131686 1133452 1135254 1137942 1137990 1138459 1140709 1141853 1141897 1142649 1142654 1146065 1146068 1146211 1146212 1146213 1148517 1149121 1149145 1149429 1149792 1149955 1151186 1151490 1151781 1151782 1151783 1151784 1151785 1151786 1153095 1153238 1153245 1153423 1153869 1154738 1159035 1159622 637176 658604 673071 709442 743787 747125 751718 754447 754677 787526 809831 831629 834601 871152 885662 885882 917607 942751 951166 983582 984751 985177 985348 989523 990460 CVE-2011-3389 CVE-2011-4944 CVE-2012-0845 CVE-2012-1150 CVE-2013-1752 CVE-2013-4238 CVE-2014-2667 CVE-2014-4650 CVE-2016-0772 CVE-2016-1000110 CVE-2016-10092 CVE-2016-10093 CVE-2016-10094 CVE-2016-5636 CVE-2016-5699 CVE-2016-6223 CVE-2017-12944 CVE-2017-18207 CVE-2018-1000802 CVE-2018-1060 CVE-2018-1061 CVE-2018-13785 CVE-2018-14647 CVE-2018-16435 CVE-2018-19210 CVE-2018-20346 CVE-2018-20406 CVE-2018-20852 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3183 CVE-2018-3214 CVE-2018-4437 CVE-2018-4438 CVE-2018-4441 CVE-2018-4442 CVE-2018-4443 CVE-2018-4464 CVE-2019-10160 CVE-2019-11757 CVE-2019-11758 CVE-2019-11759 CVE-2019-11760 CVE-2019-11761 CVE-2019-11762 CVE-2019-11763 CVE-2019-11764 CVE-2019-12838 CVE-2019-14250 CVE-2019-14980 CVE-2019-14981 CVE-2019-15139 CVE-2019-15140 CVE-2019-15141 CVE-2019-15847 CVE-2019-15903 CVE-2019-15903 CVE-2019-16056 CVE-2019-16708 CVE-2019-16709 CVE-2019-16710 CVE-2019-16711 CVE-2019-16712 CVE-2019-16713 CVE-2019-16935 CVE-2019-3816 CVE-2019-3833 CVE-2019-3840 CVE-2019-3880 CVE-2019-5010 CVE-2019-6212 CVE-2019-6215 CVE-2019-6216 CVE-2019-6217 CVE-2019-6226 CVE-2019-6227 CVE-2019-6229 CVE-2019-6233 CVE-2019-6234 CVE-2019-9636 CVE-2019-9947 CVE-2019-9948 SUSE-SU-2018:4008-1 SUSE-SU-2019:0058-1 SUSE-SU-2019:0497-1 SUSE-SU-2019:0654-1 SUSE-SU-2019:0788-1 SUSE-SU-2019:0936-1 SUSE-SU-2019:0972-1 SUSE-SU-2019:1040-1 SUSE-SU-2019:2871-1 SUSE-SU-2019:2896-1 SUSE-SU-2019:2989-1 SUSE-SU-2019:3061-1 SUSE-SU-2020:0114-1
Platform(s):	SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise High Availability 15 SP1 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for High Performance Computing 12 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Toolchain 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 15	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND python-pycrypto-2.6.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information alsa-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information ImageMagick-6.8.8.1-8 is installed OR libMagick++-6_Q16-3-6.8.8.1-8 is installed OR libMagickCore-6_Q16-1-6.8.8.1-8 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-8 is installed OR libMagickWand-6_Q16-1-6.8.8.1-8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information kernel-default-4.4.21-84 is installed OR kernel-default-devel-4.4.21-84 is installed OR kernel-default-extra-4.4.21-84 is installed OR kernel-devel-4.4.21-84 is installed OR kernel-macros-4.4.21-84 is installed OR kernel-source-4.4.21-84 is installed OR kernel-syms-4.4.21-84 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libqt4-4.8.7-8.8 is installed OR libqt4-32bit-4.8.7-8.8 is installed OR libqt4-qt3support-4.8.7-8.8 is installed OR libqt4-qt3support-32bit-4.8.7-8.8 is installed OR libqt4-sql-4.8.7-8.8 is installed OR libqt4-sql-32bit-4.8.7-8.8 is installed OR libqt4-sql-mysql-4.8.7-8.8 is installed OR libqt4-sql-mysql-32bit-4.8.7-8.8 is installed OR libqt4-sql-postgresql-4.8.7-8.8 is installed OR libqt4-sql-postgresql-32bit-4.8.7-8.8 is installed OR libqt4-sql-sqlite-4.8.7-8.8 is installed OR libqt4-sql-sqlite-32bit-4.8.7-8.8 is installed OR libqt4-sql-unixODBC-4.8.7-8.8 is installed OR libqt4-sql-unixODBC-32bit-4.8.7-8.8 is installed OR libqt4-x11-4.8.7-8.8 is installed OR libqt4-x11-32bit-4.8.7-8.8 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND python-requests-2.8.1-6.11 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information cluster-md-kmp-default-4.4.73-5 is installed OR dlm-kmp-default-4.4.73-5 is installed OR gfs2-kmp-default-4.4.73-5 is installed OR ocfs2-kmp-default-4.4.73-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP4 is installed AND conntrack-tools-1.4.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 is installed AND Package Information cluster-md-kmp-default-4.12.14-25.6 is installed OR dlm-kmp-default-4.12.14-25.6 is installed OR gfs2-kmp-default-4.12.14-25.6 is installed OR kernel-default-4.12.14-25.6 is installed OR ocfs2-kmp-default-4.12.14-25.6 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP1 is installed AND Package Information cluster-md-kmp-default-4.12.14-197.4 is installed OR dlm-kmp-default-4.12.14-197.4 is installed OR gfs2-kmp-default-4.12.14-197.4 is installed OR kernel-default-4.12.14-197.4 is installed OR ocfs2-kmp-default-4.12.14-197.4 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information ffmpeg-3.4.2-4.12 is installed OR libavdevice57-3.4.2-4.12 is installed OR libavfilter6-3.4.2-4.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information libtiff5-32bit-4.0.9-5.20 is installed OR tiff-4.0.9-5.20 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 12 is installed AND Package Information libslurm29-16.05.8.1-5 is installed OR perl-slurm-16.05.8.1-5 is installed OR slurm-16.05.8.1-5 is installed OR slurm-auth-none-16.05.8.1-5 is installed OR slurm-devel-16.05.8.1-5 is installed OR slurm-doc-16.05.8.1-5 is installed OR slurm-lua-16.05.8.1-5 is installed OR slurm-munge-16.05.8.1-5 is installed OR slurm-pam_slurm-16.05.8.1-5 is installed OR slurm-plugins-16.05.8.1-5 is installed OR slurm-sched-wiki-16.05.8.1-5 is installed OR slurm-slurmdbd-16.05.8.1-5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information libmunge2-0.5.13-4.3 is installed OR munge-0.5.13-4.3 is installed OR munge-devel-0.5.13-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information libpmi0-18.08.9-3.10 is installed OR libslurm33-18.08.9-3.10 is installed OR perl-slurm-18.08.9-3.10 is installed OR slurm-18.08.9-3.10 is installed OR slurm-auth-none-18.08.9-3.10 is installed OR slurm-config-18.08.9-3.10 is installed OR slurm-config-man-18.08.9-3.10 is installed OR slurm-devel-18.08.9-3.10 is installed OR slurm-doc-18.08.9-3.10 is installed OR slurm-lua-18.08.9-3.10 is installed OR slurm-munge-18.08.9-3.10 is installed OR slurm-node-18.08.9-3.10 is installed OR slurm-pam_slurm-18.08.9-3.10 is installed OR slurm-plugins-18.08.9-3.10 is installed OR slurm-slurmdbd-18.08.9-3.10 is installed OR slurm-sql-18.08.9-3.10 is installed OR slurm-sview-18.08.9-3.10 is installed OR slurm-torque-18.08.9-3.10 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information cups154-1.5.4-2 is installed OR cups154-client-1.5.4-2 is installed OR cups154-filters-1.5.4-2 is installed OR cups154-libs-1.5.4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-3.3 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-3.3 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-3.3 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.35-3.20 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_3-default-3-2 is installed OR kernel-livepatch-SLE15_Update_1-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_4-default-2-2 is installed OR kernel-livepatch-SLE15-SP1_Update_1-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information MozillaFirefox-68.2.0-3.59 is installed OR MozillaFirefox-branding-upstream-68.2.0-3.59 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information bzip2-1.0.6-5.3 is installed OR bzip2-doc-1.0.6-5.3 is installed OR libbz2-devel-32bit-1.0.6-5.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.30 is installed OR kernel-azure-base-4.12.14-5.30 is installed OR kernel-azure-devel-4.12.14-5.30 is installed OR kernel-devel-azure-4.12.14-5.30 is installed OR kernel-source-azure-4.12.14-5.30 is installed OR kernel-syms-azure-4.12.14-5.30 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information rsyslog-8.33.1-3.22 is installed OR rsyslog-module-gssapi-8.33.1-3.22 is installed OR rsyslog-module-gtls-8.33.1-3.22 is installed OR rsyslog-module-mmnormalize-8.33.1-3.22 is installed OR rsyslog-module-mysql-8.33.1-3.22 is installed OR rsyslog-module-pgsql-8.33.1-3.22 is installed OR rsyslog-module-relp-8.33.1-3.22 is installed OR rsyslog-module-snmp-8.33.1-3.22 is installed OR rsyslog-module-udpspoof-8.33.1-3.22 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Toolchain 12 is installed AND Package Information cpp5-5.3.1+r233831-9 is installed OR gcc5-5.3.1+r233831-9 is installed OR gcc5-c++-5.3.1+r233831-9 is installed OR gcc5-fortran-5.3.1+r233831-9 is installed OR gcc5-info-5.3.1+r233831-9 is installed OR gcc5-locale-5.3.1+r233831-9 is installed OR libffi-devel-gcc5-5.3.1+r233831-9 is installed OR libstdc++6-devel-gcc5-5.3.1+r233831-9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php7-7.0.7-15 is installed OR php7-7.0.7-15 is installed OR php7-bcmath-7.0.7-15 is installed OR php7-bz2-7.0.7-15 is installed OR php7-calendar-7.0.7-15 is installed OR php7-ctype-7.0.7-15 is installed OR php7-curl-7.0.7-15 is installed OR php7-dba-7.0.7-15 is installed OR php7-dom-7.0.7-15 is installed OR php7-enchant-7.0.7-15 is installed OR php7-exif-7.0.7-15 is installed OR php7-fastcgi-7.0.7-15 is installed OR php7-fileinfo-7.0.7-15 is installed OR php7-fpm-7.0.7-15 is installed OR php7-ftp-7.0.7-15 is installed OR php7-gd-7.0.7-15 is installed OR php7-gettext-7.0.7-15 is installed OR php7-gmp-7.0.7-15 is installed OR php7-iconv-7.0.7-15 is installed OR php7-imap-7.0.7-15 is installed OR php7-intl-7.0.7-15 is installed OR php7-json-7.0.7-15 is installed OR php7-ldap-7.0.7-15 is installed OR php7-mbstring-7.0.7-15 is installed OR php7-mcrypt-7.0.7-15 is installed OR php7-mysql-7.0.7-15 is installed OR php7-odbc-7.0.7-15 is installed OR php7-opcache-7.0.7-15 is installed OR php7-openssl-7.0.7-15 is installed OR php7-pcntl-7.0.7-15 is installed OR php7-pdo-7.0.7-15 is installed OR php7-pear-7.0.7-15 is installed OR php7-pear-Archive_Tar-7.0.7-15 is installed OR php7-pgsql-7.0.7-15 is installed OR php7-phar-7.0.7-15 is installed OR php7-posix-7.0.7-15 is installed OR php7-pspell-7.0.7-15 is installed OR php7-shmop-7.0.7-15 is installed OR php7-snmp-7.0.7-15 is installed OR php7-soap-7.0.7-15 is installed OR php7-sockets-7.0.7-15 is installed OR php7-sqlite-7.0.7-15 is installed OR php7-sysvmsg-7.0.7-15 is installed OR php7-sysvsem-7.0.7-15 is installed OR php7-sysvshm-7.0.7-15 is installed OR php7-tokenizer-7.0.7-15 is installed OR php7-wddx-7.0.7-15 is installed OR php7-xmlreader-7.0.7-15 is installed OR php7-xmlrpc-7.0.7-15 is installed OR php7-xmlwriter-7.0.7-15 is installed OR php7-xsl-7.0.7-15 is installed OR php7-zip-7.0.7-15 is installed OR php7-zlib-7.0.7-15 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information tomcat-9.0.21-4.5 is installed OR tomcat-admin-webapps-9.0.21-4.5 is installed OR tomcat-el-3_0-api-9.0.21-4.5 is installed OR tomcat-jsp-2_3-api-9.0.21-4.5 is installed OR tomcat-lib-9.0.21-4.5 is installed OR tomcat-servlet-4_0-api-9.0.21-4.5 is installed OR tomcat-webapps-9.0.21-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-1 is installed OR aaa_base-extras-13.2+git20140911.61c1681-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information accountsservice-0.6.35-3 is installed OR accountsservice-lang-0.6.35-3 is installed OR libaccountsservice0-0.6.35-3 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libjson-c2-0.11-2 is installed OR libjson-c2-32bit-0.11-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND cyrus-sasl-devel-2.1.26-7 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND cifs-utils-devel-6.5-8.9 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND libwebkit2gtk-3_0-25-2.4.8-16.2 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information xorg-x11-server-1.19.6-8.3 is installed OR xorg-x11-server-wayland-1.19.6-8.3 is installed

BACK