Oval Definition:oval:org.opensuse.security:def:2672
Revision Date:2020-12-02Version:1
Title:Security update for ghostscript (Important)
Description:

This update for ghostscript to version 9.26 fixes the following issues:

Security issues fixed:

- CVE-2018-19475: Fixed bypass of an intended access restriction in psi/zdevice2.c (bsc#1117327) - CVE-2018-19476: Fixed bypass of an intended access restriction in psi/zicc.c (bsc#1117313) - CVE-2018-19477: Fixed bypass of an intended access restriction in psi/zfjbig2.c (bsc#1117274) - CVE-2018-19409: Check if another device is used correctly in LockSafetyParams (bsc#1117022) - CVE-2018-18284: Fixed potential sandbox escape through 1Policy operator (bsc#1112229) - CVE-2018-18073: Fixed leaks through operator in saved execution stacks (bsc#1111480) - CVE-2018-17961: Fixed a -dSAFER sandbox escape by bypassing executeonly (bsc#1111479) - CVE-2018-17183: Fixed a potential code injection by specially crafted PostScript files (bsc#1109105)

Version update to 9.26 (bsc#1117331):

- Security issues have been the primary focus - Minor bug fixes and improvements - For release summary see: http://www.ghostscript.com/doc/9.26/News.htm
Family:unixClass:patch
Status:Reference(s):1100523
1109105
1111479
1111480
1112229
1116833
1117022
1117274
1117313
1117327
1117331
1117951
1118087
1120114
1120115
1120116
1120117
1120118
1120119
1120120
1120121
1120122
1121086
1122838
1122839
1125494
1127080
1128189
1130681
1130682
1141063
1146065
1146068
1146211
1146212
1146213
1151781
1151782
1151783
1151784
1151785
1151786
1153451
1153459
1154401
1154884
1154887
1156015
1156188
1159922
1159923
1159924
1159927
CVE-2018-13440
CVE-2018-15126
CVE-2018-15127
CVE-2018-16868
CVE-2018-17183
CVE-2018-17189
CVE-2018-17199
CVE-2018-17961
CVE-2018-18073
CVE-2018-18284
CVE-2018-19409
CVE-2018-19475
CVE-2018-19476
CVE-2018-19477
CVE-2018-20019
CVE-2018-20020
CVE-2018-20021
CVE-2018-20022
CVE-2018-20023
CVE-2018-20024
CVE-2018-6307
CVE-2019-11045
CVE-2019-11046
CVE-2019-11047
CVE-2019-11050
CVE-2019-12290
CVE-2019-14980
CVE-2019-14981
CVE-2019-15139
CVE-2019-15140
CVE-2019-15141
CVE-2019-1543
CVE-2019-1559
CVE-2019-16708
CVE-2019-16709
CVE-2019-16710
CVE-2019-16711
CVE-2019-16712
CVE-2019-16713
CVE-2019-17041
CVE-2019-17042
CVE-2019-18224
CVE-2019-18804
CVE-2019-3829
CVE-2019-3836
CVE-2019-5068
SUSE-SU-2018:4087-1
SUSE-SU-2019:0080-1
SUSE-SU-2019:0504-1
SUSE-SU-2019:0600-1
SUSE-SU-2019:0678-1
SUSE-SU-2019:0940-1
SUSE-SU-2019:1121-1
SUSE-SU-2019:2896-1
SUSE-SU-2019:2937-1
SUSE-SU-2019:3033-1
SUSE-SU-2019:3086-1
SUSE-SU-2020:0101-1
SUSE-SU-2020:0132-1
Platform(s):SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 15
SUSE Linux Enterprise High Availability 15 SP1
SUSE Linux Enterprise Module for additional PackageHub packages 15
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Linux Enterprise Module for Desktop Applications 15
SUSE Linux Enterprise Module for High Performance Computing 15
SUSE Linux Enterprise Module for High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Legacy Software 15 SP1
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Public Cloud 15
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Module for Web Scripting 15 SP1
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP1-CLIENT-TOOLS
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 11-SECURITY
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE Linux Enterprise Workstation Extension 15
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND python-requests-2.3.0-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • avahi-0.6.31-20 is installed
  • OR avahi-lang-0.6.31-20 is installed
  • OR libavahi-client3-0.6.31-20 is installed
  • OR libavahi-client3-32bit-0.6.31-20 is installed
  • OR libavahi-common3-0.6.31-20 is installed
  • OR libavahi-common3-32bit-0.6.31-20 is installed
  • OR libavahi-core7-0.6.31-20 is installed
  • OR libdns_sd-0.6.31-20 is installed
  • OR libdns_sd-32bit-0.6.31-20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-9 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • gc-7.2d-5 is installed
  • OR libgc1-7.2d-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • libraptor2-0-2.0.10-3 is installed
  • OR raptor-2.0.10-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.4.73-5 is installed
  • OR dlm-kmp-default-4.4.73-5 is installed
  • OR gfs2-kmp-default-4.4.73-5 is installed
  • OR ocfs2-kmp-default-4.4.73-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND ctdb-4.6.16+git.124.aee309c5c18-3.32 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-25.13 is installed
  • OR dlm-kmp-default-4.12.14-25.13 is installed
  • OR gfs2-kmp-default-4.12.14-25.13 is installed
  • OR kernel-default-4.12.14-25.13 is installed
  • OR ocfs2-kmp-default-4.12.14-25.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 SP1 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-197.7 is installed
  • OR dlm-kmp-default-4.12.14-197.7 is installed
  • OR gfs2-kmp-default-4.12.14-197.7 is installed
  • OR kernel-default-4.12.14-197.7 is installed
  • OR ocfs2-kmp-default-4.12.14-197.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed
  • AND Package Information
  • libxmlsec1-gcrypt1-1.2.26-3.3 is installed
  • OR libxmlsec1-gnutls1-1.2.26-3.3 is installed
  • OR libxmlsec1-openssl1-1.2.26-3.3 is installed
  • OR xmlsec1-1.2.26-3.3 is installed
  • OR xmlsec1-gnutls-devel-1.2.26-3.3 is installed
  • OR xmlsec1-openssl-devel-1.2.26-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
  • AND facter-2.0.2-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND Package Information
  • libspectre-0.2.8-3.4 is installed
  • OR libspectre-devel-0.2.8-3.4 is installed
  • OR libspectre1-0.2.8-3.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 is installed
  • AND Package Information
  • libpmi0-17.11.13-6.15 is installed
  • OR libslurm32-17.11.13-6.15 is installed
  • OR perl-slurm-17.11.13-6.15 is installed
  • OR slurm-17.11.13-6.15 is installed
  • OR slurm-auth-none-17.11.13-6.15 is installed
  • OR slurm-config-17.11.13-6.15 is installed
  • OR slurm-devel-17.11.13-6.15 is installed
  • OR slurm-doc-17.11.13-6.15 is installed
  • OR slurm-lua-17.11.13-6.15 is installed
  • OR slurm-munge-17.11.13-6.15 is installed
  • OR slurm-node-17.11.13-6.15 is installed
  • OR slurm-pam_slurm-17.11.13-6.15 is installed
  • OR slurm-plugins-17.11.13-6.15 is installed
  • OR slurm-slurmdbd-17.11.13-6.15 is installed
  • OR slurm-sql-17.11.13-6.15 is installed
  • OR slurm-torque-17.11.13-6.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed
  • AND Package Information
  • libpmi0-18.08.8-3.4 is installed
  • OR libslurm33-18.08.8-3.4 is installed
  • OR perl-Switch-2.17-3.2 is installed
  • OR perl-slurm-18.08.8-3.4 is installed
  • OR slurm-18.08.8-3.4 is installed
  • OR slurm-auth-none-18.08.8-3.4 is installed
  • OR slurm-config-18.08.8-3.4 is installed
  • OR slurm-config-man-18.08.8-3.4 is installed
  • OR slurm-devel-18.08.8-3.4 is installed
  • OR slurm-doc-18.08.8-3.4 is installed
  • OR slurm-lua-18.08.8-3.4 is installed
  • OR slurm-munge-18.08.8-3.4 is installed
  • OR slurm-node-18.08.8-3.4 is installed
  • OR slurm-pam_slurm-18.08.8-3.4 is installed
  • OR slurm-plugins-18.08.8-3.4 is installed
  • OR slurm-slurmdbd-18.08.8-3.4 is installed
  • OR slurm-sql-18.08.8-3.4 is installed
  • OR slurm-sview-18.08.8-3.4 is installed
  • OR slurm-torque-18.08.8-3.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 12 is installed
  • AND Package Information
  • java-1_6_0-ibm-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-fonts-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-jdbc-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-plugin-1.6.0_sr16.1-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 is installed
  • AND Package Information
  • libopenssl-1_0_0-devel-1.0.2n-3.3 is installed
  • OR libopenssl1_0_0-1.0.2n-3.3 is installed
  • OR openssl-1_0_0-1.0.2n-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.35-3.20 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.35-3.20 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.35-3.20 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.35-3.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-23-default-3-7 is installed
  • OR kernel-livepatch-SLE15_Update_0-3-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-195-default-4-10 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_0-4-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • ImageMagick-7.0.7.34-3.72 is installed
  • OR ImageMagick-doc-7.0.7.34-3.72 is installed
  • OR ImageMagick-extra-7.0.7.34-3.72 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.212-3.19 is installed
  • OR java-1_8_0-openjdk-accessibility-1.8.0.212-3.19 is installed
  • OR java-1_8_0-openjdk-javadoc-1.8.0.212-3.19 is installed
  • OR java-1_8_0-openjdk-src-1.8.0.212-3.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • cups-2.2.7-3.17 is installed
  • OR cups-devel-32bit-2.2.7-3.17 is installed
  • OR libcupscgi1-32bit-2.2.7-3.17 is installed
  • OR libcupsimage2-32bit-2.2.7-3.17 is installed
  • OR libcupsmime1-32bit-2.2.7-3.17 is installed
  • OR libcupsppdc1-32bit-2.2.7-3.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 12 is installed
  • AND python-requests-2.3.0-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 is installed
  • AND Package Information
  • kernel-azure-4.12.14-5.33 is installed
  • OR kernel-azure-base-4.12.14-5.33 is installed
  • OR kernel-azure-devel-4.12.14-5.33 is installed
  • OR kernel-devel-azure-4.12.14-5.33 is installed
  • OR kernel-source-azure-4.12.14-5.33 is installed
  • OR kernel-syms-azure-4.12.14-5.33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • xen-4.12.1_04-3.6 is installed
  • OR xen-devel-4.12.1_04-3.6 is installed
  • OR xen-tools-4.12.1_04-3.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND Package Information
  • apache2-mod_php7-7.0.7-15 is installed
  • OR php7-7.0.7-15 is installed
  • OR php7-bcmath-7.0.7-15 is installed
  • OR php7-bz2-7.0.7-15 is installed
  • OR php7-calendar-7.0.7-15 is installed
  • OR php7-ctype-7.0.7-15 is installed
  • OR php7-curl-7.0.7-15 is installed
  • OR php7-dba-7.0.7-15 is installed
  • OR php7-dom-7.0.7-15 is installed
  • OR php7-enchant-7.0.7-15 is installed
  • OR php7-exif-7.0.7-15 is installed
  • OR php7-fastcgi-7.0.7-15 is installed
  • OR php7-fileinfo-7.0.7-15 is installed
  • OR php7-fpm-7.0.7-15 is installed
  • OR php7-ftp-7.0.7-15 is installed
  • OR php7-gd-7.0.7-15 is installed
  • OR php7-gettext-7.0.7-15 is installed
  • OR php7-gmp-7.0.7-15 is installed
  • OR php7-iconv-7.0.7-15 is installed
  • OR php7-imap-7.0.7-15 is installed
  • OR php7-intl-7.0.7-15 is installed
  • OR php7-json-7.0.7-15 is installed
  • OR php7-ldap-7.0.7-15 is installed
  • OR php7-mbstring-7.0.7-15 is installed
  • OR php7-mcrypt-7.0.7-15 is installed
  • OR php7-mysql-7.0.7-15 is installed
  • OR php7-odbc-7.0.7-15 is installed
  • OR php7-opcache-7.0.7-15 is installed
  • OR php7-openssl-7.0.7-15 is installed
  • OR php7-pcntl-7.0.7-15 is installed
  • OR php7-pdo-7.0.7-15 is installed
  • OR php7-pear-7.0.7-15 is installed
  • OR php7-pear-Archive_Tar-7.0.7-15 is installed
  • OR php7-pgsql-7.0.7-15 is installed
  • OR php7-phar-7.0.7-15 is installed
  • OR php7-posix-7.0.7-15 is installed
  • OR php7-pspell-7.0.7-15 is installed
  • OR php7-shmop-7.0.7-15 is installed
  • OR php7-snmp-7.0.7-15 is installed
  • OR php7-soap-7.0.7-15 is installed
  • OR php7-sockets-7.0.7-15 is installed
  • OR php7-sqlite-7.0.7-15 is installed
  • OR php7-sysvmsg-7.0.7-15 is installed
  • OR php7-sysvsem-7.0.7-15 is installed
  • OR php7-sysvshm-7.0.7-15 is installed
  • OR php7-tokenizer-7.0.7-15 is installed
  • OR php7-wddx-7.0.7-15 is installed
  • OR php7-xmlreader-7.0.7-15 is installed
  • OR php7-xmlrpc-7.0.7-15 is installed
  • OR php7-xmlwriter-7.0.7-15 is installed
  • OR php7-xsl-7.0.7-15 is installed
  • OR php7-zip-7.0.7-15 is installed
  • OR php7-zlib-7.0.7-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND Package Information
  • nodejs8-8.11.3-3.5 is installed
  • OR nodejs8-devel-8.11.3-3.5 is installed
  • OR nodejs8-docs-8.11.3-3.5 is installed
  • OR npm8-8.11.3-3.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed
  • AND Package Information
  • nodejs10-10.16.0-1.9 is installed
  • OR nodejs10-devel-10.16.0-1.9 is installed
  • OR nodejs10-docs-10.16.0-1.9 is installed
  • OR npm10-10.16.0-1.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-1 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • DirectFB-1.7.1-4 is installed
  • OR lib++dfb-1_7-1-1.7.1-4 is installed
  • OR libdirectfb-1_7-1-1.7.1-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • liblcms1-1.19-17 is installed
  • OR liblcms1-32bit-1.19-17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-36 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND dbus-1-glib-devel-0.100.2-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND cracklib-devel-2.9.0-7.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND libwmf-0_2-7-0.2.8.4-242.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • libwpd-0.10.2-3.3 is installed
  • OR libwpd-0_10-10-0.10.2-3.3 is installed
  • OR libwpd-devel-0.10.2-3.3 is installed
    • BACK