Oval Definition:oval:org.opensuse.security:def:2678
Revision Date:2020-12-02Version:1
Title:Security update for ImageMagick (Moderate)
Description:

This update for ImageMagick fixes the following issues:

Security issues fixed:

- CVE-2019-9956: Fixed a stack-based buffer overflow in PopHexPixel() (bsc#1130330). - CVE-2019-10650: Fixed a heap-based buffer over-read in WriteTIFFImage() (bsc#1131317). - CVE-2019-11007: Fixed a heap-based buffer overflow in ReadMNGImage() (bsc#1132060). - CVE-2019-11008: Fixed a heap-based buffer overflow in WriteXWDImage() (bsc#1132054).

- Added extra -config- packages with Postscript/EPS/PDF readers still enabled.

Removing the PS decoders is used to harden ImageMagick against security issues within ghostscript. Enabling them might impact security. (bsc#1122033)

These are two packages that can be selected:

- ImageMagick-config-7-SUSE: This has the PS decoders disabled. - ImageMagick-config-7-upstream: This has the PS decoders enabled.

Depending on your local needs install either one of them. The default is the -SUSE configuration.

Family:unixClass:patch
Status:Reference(s):1013708
1013712
1013893
1015171
1100397
1106415
1106996
1110279
1113064
1116833
1116998
1119558
1120381
1122033
1122293
1122299
1123886
1124365
1124366
1124367
1124368
1125494
1128189
1128649
1130330
1131317
1132054
1132060
1139924
1140709
1153095
1153245
1154884
1154887
1156402
1159478
1159479
1159482
1159486
1159723
1159729
1159922
1159923
1159924
1159927
1161025
CVE-2016-9797
CVE-2016-9798
CVE-2016-9802
CVE-2016-9917
CVE-2018-11212
CVE-2018-11713
CVE-2018-16412
CVE-2018-18544
CVE-2018-20467
CVE-2018-4162
CVE-2018-4163
CVE-2018-4165
CVE-2018-4191
CVE-2018-4197
CVE-2018-4207
CVE-2018-4208
CVE-2018-4209
CVE-2018-4210
CVE-2018-4212
CVE-2018-4213
CVE-2018-4299
CVE-2018-4306
CVE-2018-4309
CVE-2018-4312
CVE-2018-4314
CVE-2018-4315
CVE-2018-4316
CVE-2018-4317
CVE-2018-4318
CVE-2018-4319
CVE-2018-4323
CVE-2018-4328
CVE-2018-4345
CVE-2018-4358
CVE-2018-4359
CVE-2018-4361
CVE-2018-4372
CVE-2018-4373
CVE-2018-4375
CVE-2018-4376
CVE-2018-4378
CVE-2018-4382
CVE-2018-4386
CVE-2018-4392
CVE-2018-4416
CVE-2018-4437
CVE-2018-4438
CVE-2018-4441
CVE-2018-4442
CVE-2018-4443
CVE-2018-4464
CVE-2019-10072
CVE-2019-10650
CVE-2019-11007
CVE-2019-11008
CVE-2019-11045
CVE-2019-11046
CVE-2019-11047
CVE-2019-11050
CVE-2019-12290
CVE-2019-12418
CVE-2019-12838
CVE-2019-1543
CVE-2019-17563
CVE-2019-18224
CVE-2019-18388
CVE-2019-18389
CVE-2019-18390
CVE-2019-18391
CVE-2019-2201
CVE-2019-2422
CVE-2019-7175
CVE-2019-7395
CVE-2019-7396
CVE-2019-7397
CVE-2019-7398
CVE-2019-9956
SUSE-SU-2019:0092-1
SUSE-SU-2019:0574-1
SUSE-SU-2019:0678-1
SUSE-SU-2019:0739-1
SUSE-SU-2019:1019-1
SUSE-SU-2019:1353-1
SUSE-SU-2019:2971-1
SUSE-SU-2019:2989-1
SUSE-SU-2019:3086-1
SUSE-SU-2019:3212-1
SUSE-SU-2020:0017-1
SUSE-SU-2020:0101-1
SUSE-SU-2020:0226-1
Platform(s):SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 15
SUSE Linux Enterprise High Availability 15 SP1
SUSE Linux Enterprise Module for additional PackageHub packages 15
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Linux Enterprise Module for Desktop Applications 15
SUSE Linux Enterprise Module for High Performance Computing 12
SUSE Linux Enterprise Module for High Performance Computing 15
SUSE Linux Enterprise Module for High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Legacy Software 15 SP1
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Public Cloud 15
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE Linux Enterprise Workstation Extension 15
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • alsa-1.0.27.2-11 is installed
  • OR libasound2-1.0.27.2-11 is installed
  • OR libasound2-32bit-1.0.27.2-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • bash-4.2-75 is installed
  • OR bash-doc-4.2-75 is installed
  • OR bash-lang-4.2-75 is installed
  • OR libreadline6-6.2-75 is installed
  • OR libreadline6-32bit-6.2-75 is installed
  • OR readline-doc-6.2-75 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • xen-4.7.1_04-28 is installed
  • OR xen-libs-4.7.1_04-28 is installed
  • OR xen-libs-32bit-4.7.1_04-28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • libsndfile1-1.0.25-36.16 is installed
  • OR libsndfile1-32bit-1.0.25-36.16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND conntrack-tools-1.4.2-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND libpcreposix0-8.39-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND python-requests-2.11.1-6.28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 is installed
  • AND Package Information
  • drbd-9.0.13+git.b83ade31-3.2 is installed
  • OR drbd-kmp-default-9.0.13+git.b83ade31_k4.12.14_23-3.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 SP1 is installed
  • AND Package Information
  • graphviz-addons-2.40.1-6.3 is installed
  • OR graphviz-gd-2.40.1-6.3 is installed
  • OR graphviz-python-2.40.1-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed
  • AND Package Information
  • avahi-0.6.32-5.5 is installed
  • OR python-avahi-0.6.32-5.5 is installed
  • OR samba-4.7.11+git.153.b36ceaf2235-4.27 is installed
  • OR samba-python-4.7.11+git.153.b36ceaf2235-4.27 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
  • AND facter-2.0.2-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND Package Information
  • ImageMagick-7.0.7.34-3.54 is installed
  • OR ImageMagick-config-7-SUSE-7.0.7.34-3.54 is installed
  • OR ImageMagick-config-7-upstream-7.0.7.34-3.54 is installed
  • OR ImageMagick-devel-7.0.7.34-3.54 is installed
  • OR libMagick++-7_Q16HDRI4-7.0.7.34-3.54 is installed
  • OR libMagick++-devel-7.0.7.34-3.54 is installed
  • OR libMagickCore-7_Q16HDRI6-7.0.7.34-3.54 is installed
  • OR libMagickWand-7_Q16HDRI6-7.0.7.34-3.54 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 12 is installed
  • AND Package Information
  • libslurm29-16.05.8.1-5 is installed
  • OR perl-slurm-16.05.8.1-5 is installed
  • OR slurm-16.05.8.1-5 is installed
  • OR slurm-auth-none-16.05.8.1-5 is installed
  • OR slurm-devel-16.05.8.1-5 is installed
  • OR slurm-doc-16.05.8.1-5 is installed
  • OR slurm-lua-16.05.8.1-5 is installed
  • OR slurm-munge-16.05.8.1-5 is installed
  • OR slurm-pam_slurm-16.05.8.1-5 is installed
  • OR slurm-plugins-16.05.8.1-5 is installed
  • OR slurm-sched-wiki-16.05.8.1-5 is installed
  • OR slurm-slurmdbd-16.05.8.1-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 is installed
  • AND Package Information
  • libpmi0-17.11.13-6.18 is installed
  • OR libslurm32-17.11.13-6.18 is installed
  • OR perl-slurm-17.11.13-6.18 is installed
  • OR slurm-17.11.13-6.18 is installed
  • OR slurm-auth-none-17.11.13-6.18 is installed
  • OR slurm-config-17.11.13-6.18 is installed
  • OR slurm-devel-17.11.13-6.18 is installed
  • OR slurm-doc-17.11.13-6.18 is installed
  • OR slurm-lua-17.11.13-6.18 is installed
  • OR slurm-munge-17.11.13-6.18 is installed
  • OR slurm-node-17.11.13-6.18 is installed
  • OR slurm-pam_slurm-17.11.13-6.18 is installed
  • OR slurm-plugins-17.11.13-6.18 is installed
  • OR slurm-slurmdbd-17.11.13-6.18 is installed
  • OR slurm-sql-17.11.13-6.18 is installed
  • OR slurm-torque-17.11.13-6.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed
  • AND Package Information
  • libmunge2-0.5.13-4.3 is installed
  • OR munge-0.5.13-4.3 is installed
  • OR munge-devel-0.5.13-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 12 is installed
  • AND Package Information
  • java-1_6_0-ibm-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-fonts-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-jdbc-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-plugin-1.6.0_sr16.1-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.13 is installed
  • OR reiserfs-kmp-default-4.12.14-25.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.40-3.24 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-3.24 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.40-3.24 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-3.24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.3 is installed
  • OR kernel-default-livepatch-4.12.14-25.3 is installed
  • OR kernel-livepatch-4_12_14-25_3-default-1-1.3 is installed
  • OR kernel-livepatch-SLE15_Update_1-1-1.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-195-default-5-13 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_0-5-13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • libjpeg-turbo-1.5.3-5.12 is installed
  • OR libjpeg62-turbo-1.5.3-5.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • jakarta-commons-fileupload-1.1.1-4.3 is installed
  • OR jakarta-commons-fileupload-javadoc-1.1.1-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • LibVNCServer-0.9.10-4.14 is installed
  • OR LibVNCServer-devel-0.9.10-4.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 is installed
  • AND Package Information
  • kernel-azure-4.12.14-5.47 is installed
  • OR kernel-azure-base-4.12.14-5.47 is installed
  • OR kernel-azure-devel-4.12.14-5.47 is installed
  • OR kernel-devel-azure-4.12.14-5.47 is installed
  • OR kernel-source-azure-4.12.14-5.47 is installed
  • OR kernel-syms-azure-4.12.14-5.47 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND Package Information
  • apache2-mod_php5-5.5.14-4 is installed
  • OR php5-5.5.14-4 is installed
  • OR php5-bcmath-5.5.14-4 is installed
  • OR php5-bz2-5.5.14-4 is installed
  • OR php5-calendar-5.5.14-4 is installed
  • OR php5-ctype-5.5.14-4 is installed
  • OR php5-curl-5.5.14-4 is installed
  • OR php5-dba-5.5.14-4 is installed
  • OR php5-dom-5.5.14-4 is installed
  • OR php5-enchant-5.5.14-4 is installed
  • OR php5-exif-5.5.14-4 is installed
  • OR php5-fastcgi-5.5.14-4 is installed
  • OR php5-fileinfo-5.5.14-4 is installed
  • OR php5-fpm-5.5.14-4 is installed
  • OR php5-ftp-5.5.14-4 is installed
  • OR php5-gd-5.5.14-4 is installed
  • OR php5-gettext-5.5.14-4 is installed
  • OR php5-gmp-5.5.14-4 is installed
  • OR php5-iconv-5.5.14-4 is installed
  • OR php5-intl-5.5.14-4 is installed
  • OR php5-json-5.5.14-4 is installed
  • OR php5-ldap-5.5.14-4 is installed
  • OR php5-mbstring-5.5.14-4 is installed
  • OR php5-mcrypt-5.5.14-4 is installed
  • OR php5-mysql-5.5.14-4 is installed
  • OR php5-odbc-5.5.14-4 is installed
  • OR php5-openssl-5.5.14-4 is installed
  • OR php5-pcntl-5.5.14-4 is installed
  • OR php5-pdo-5.5.14-4 is installed
  • OR php5-pear-5.5.14-4 is installed
  • OR php5-pgsql-5.5.14-4 is installed
  • OR php5-pspell-5.5.14-4 is installed
  • OR php5-shmop-5.5.14-4 is installed
  • OR php5-snmp-5.5.14-4 is installed
  • OR php5-soap-5.5.14-4 is installed
  • OR php5-sockets-5.5.14-4 is installed
  • OR php5-sqlite-5.5.14-4 is installed
  • OR php5-suhosin-5.5.14-4 is installed
  • OR php5-sysvmsg-5.5.14-4 is installed
  • OR php5-sysvsem-5.5.14-4 is installed
  • OR php5-sysvshm-5.5.14-4 is installed
  • OR php5-tokenizer-5.5.14-4 is installed
  • OR php5-wddx-5.5.14-4 is installed
  • OR php5-xmlreader-5.5.14-4 is installed
  • OR php5-xmlrpc-5.5.14-4 is installed
  • OR php5-xmlwriter-5.5.14-4 is installed
  • OR php5-xsl-5.5.14-4 is installed
  • OR php5-zip-5.5.14-4 is installed
  • OR php5-zlib-5.5.14-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND Package Information
  • apache2-mod_php7-7.2.5-4.9 is installed
  • OR php7-7.2.5-4.9 is installed
  • OR php7-bcmath-7.2.5-4.9 is installed
  • OR php7-bz2-7.2.5-4.9 is installed
  • OR php7-calendar-7.2.5-4.9 is installed
  • OR php7-ctype-7.2.5-4.9 is installed
  • OR php7-curl-7.2.5-4.9 is installed
  • OR php7-dba-7.2.5-4.9 is installed
  • OR php7-devel-7.2.5-4.9 is installed
  • OR php7-dom-7.2.5-4.9 is installed
  • OR php7-enchant-7.2.5-4.9 is installed
  • OR php7-exif-7.2.5-4.9 is installed
  • OR php7-fastcgi-7.2.5-4.9 is installed
  • OR php7-fileinfo-7.2.5-4.9 is installed
  • OR php7-fpm-7.2.5-4.9 is installed
  • OR php7-ftp-7.2.5-4.9 is installed
  • OR php7-gd-7.2.5-4.9 is installed
  • OR php7-gettext-7.2.5-4.9 is installed
  • OR php7-gmp-7.2.5-4.9 is installed
  • OR php7-iconv-7.2.5-4.9 is installed
  • OR php7-intl-7.2.5-4.9 is installed
  • OR php7-json-7.2.5-4.9 is installed
  • OR php7-ldap-7.2.5-4.9 is installed
  • OR php7-mbstring-7.2.5-4.9 is installed
  • OR php7-mysql-7.2.5-4.9 is installed
  • OR php7-odbc-7.2.5-4.9 is installed
  • OR php7-opcache-7.2.5-4.9 is installed
  • OR php7-openssl-7.2.5-4.9 is installed
  • OR php7-pcntl-7.2.5-4.9 is installed
  • OR php7-pdo-7.2.5-4.9 is installed
  • OR php7-pear-7.2.5-4.9 is installed
  • OR php7-pear-Archive_Tar-7.2.5-4.9 is installed
  • OR php7-pgsql-7.2.5-4.9 is installed
  • OR php7-phar-7.2.5-4.9 is installed
  • OR php7-posix-7.2.5-4.9 is installed
  • OR php7-shmop-7.2.5-4.9 is installed
  • OR php7-snmp-7.2.5-4.9 is installed
  • OR php7-soap-7.2.5-4.9 is installed
  • OR php7-sockets-7.2.5-4.9 is installed
  • OR php7-sqlite-7.2.5-4.9 is installed
  • OR php7-sysvmsg-7.2.5-4.9 is installed
  • OR php7-sysvsem-7.2.5-4.9 is installed
  • OR php7-sysvshm-7.2.5-4.9 is installed
  • OR php7-tokenizer-7.2.5-4.9 is installed
  • OR php7-wddx-7.2.5-4.9 is installed
  • OR php7-xmlreader-7.2.5-4.9 is installed
  • OR php7-xmlrpc-7.2.5-4.9 is installed
  • OR php7-xmlwriter-7.2.5-4.9 is installed
  • OR php7-xsl-7.2.5-4.9 is installed
  • OR php7-zip-7.2.5-4.9 is installed
  • OR php7-zlib-7.2.5-4.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • MozillaFirefox-31.1.0esr-1 is installed
  • OR MozillaFirefox-translations-31.1.0esr-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • apache-commons-beanutils-1.9.2-1 is installed
  • OR apache-commons-beanutils-javadoc-1.9.2-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND libmms0-0.6.2-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • MozillaFirefox-52.2.0esr-108 is installed
  • OR MozillaFirefox-translations-52.2.0esr-108 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND Package Information
  • finch-devel-2.10.9-5 is installed
  • OR libpurple-2.10.9-5 is installed
  • OR libpurple-devel-2.10.9-5 is installed
  • OR libpurple-lang-2.10.9-5 is installed
  • OR pidgin-devel-2.10.9-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND dia-0.97.3-15.63 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND Package Information
  • rhythmbox-3.4-6.14 is installed
  • OR rhythmbox-lang-3.4-6.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND transfig-3.2.6a-4.3 is installed
    • BACK