Oval Definition:oval:org.opensuse.security:def:2751
Revision Date:2020-12-02Version:1
Title:Security update for gd (Moderate)
Description:

This update for gd fixes the following issues:

Security issues fixed:

- CVE-2019-6977: Fixed a heap-based buffer overflow the GD Graphics Library used in the imagecolormatch function (bsc#1123361). - CVE-2019-6978: Fixed a double free in the gdImage*Ptr() functions (bsc#1123522).
Family:unixClass:patch
Status:Reference(s):1027282
1029377
1029902
1040164
1042670
1070853
1079761
1081516
1081750
1082007
1082008
1082009
1082010
1082011
1082014
1082058
1083507
1086001
1087433
1087434
1087436
1087437
1087440
1087441
1088004
1088009
1088573
1094814
1100523
1102604
1104139
1104662
1106420
1107030
1108086
1108395
1108889
1109663
1109847
1112182
1112530
1112532
1117058
1118597
1118952
1120644
1120813
1122191
1122794
1123361
1123522
1123642
1124667
1125665
1126325
1127458
1129346
1129662
1130028
1130129
1130246
1130611
1130617
1130620
1130622
1130623
1130627
1130840
1133037
1133204
1133205
1133291
1133452
1133498
1133501
1133512
1133790
1135114
1135170
1135715
1136183
1136732
1137942
1138459
1141853
1149121
1149792
1149955
1151490
1153238
1154804
1154805
1155198
1155205
1155298
1155678
1155819
1156158
1157377
1158763
1159035
1159622
1160968
637176
658604
673071
709442
743787
747125
751718
754447
754677
787526
809831
831629
834601
871152
885662
885882
917607
942751
951166
983582
984751
985177
985348
989523
CVE-2011-3389
CVE-2011-4944
CVE-2012-0845
CVE-2012-1150
CVE-2013-1752
CVE-2013-4238
CVE-2014-2667
CVE-2014-4650
CVE-2016-0772
CVE-2016-1000110
CVE-2016-5636
CVE-2016-5699
CVE-2017-17742
CVE-2017-18207
CVE-2018-1000073
CVE-2018-1000074
CVE-2018-1000075
CVE-2018-1000076
CVE-2018-1000077
CVE-2018-1000078
CVE-2018-1000079
CVE-2018-1000802
CVE-2018-1060
CVE-2018-1061
CVE-2018-13440
CVE-2018-14647
CVE-2018-15173
CVE-2018-16395
CVE-2018-16396
CVE-2018-19870
CVE-2018-19872
CVE-2018-20406
CVE-2018-20852
CVE-2018-6914
CVE-2018-8777
CVE-2018-8778
CVE-2018-8779
CVE-2018-8780
CVE-2019-10160
CVE-2019-11459
CVE-2019-11470
CVE-2019-11472
CVE-2019-11505
CVE-2019-11506
CVE-2019-11598
CVE-2019-15903
CVE-2019-16056
CVE-2019-16935
CVE-2019-18900
CVE-2019-3840
CVE-2019-5010
CVE-2019-5436
CVE-2019-6237
CVE-2019-6977
CVE-2019-6978
CVE-2019-8320
CVE-2019-8321
CVE-2019-8322
CVE-2019-8323
CVE-2019-8324
CVE-2019-8325
CVE-2019-8571
CVE-2019-8583
CVE-2019-8584
CVE-2019-8586
CVE-2019-8587
CVE-2019-8594
CVE-2019-8595
CVE-2019-8596
CVE-2019-8597
CVE-2019-8601
CVE-2019-8607
CVE-2019-8608
CVE-2019-8609
CVE-2019-8610
CVE-2019-8611
CVE-2019-8615
CVE-2019-8619
CVE-2019-8622
CVE-2019-8623
CVE-2019-9636
CVE-2019-9947
CVE-2020-2583
CVE-2020-2590
CVE-2020-2593
CVE-2020-2601
CVE-2020-2604
CVE-2020-2654
CVE-2020-2655
SUSE-SU-2019:0771-1
SUSE-SU-2019:0927-1
SUSE-SU-2019:0936-1
SUSE-SU-2019:0940-1
SUSE-SU-2019:1290-2
SUSE-SU-2019:1357-2
SUSE-SU-2019:1523-1
SUSE-SU-2019:1648-1
SUSE-SU-2019:1804-1
SUSE-SU-2020:0087-1
SUSE-SU-2020:0114-1
SUSE-SU-2020:0213-1
Platform(s):SUSE Linux Enterprise Build System Kit 12 SP1
SUSE Linux Enterprise Build System Kit 12 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 15 SP1
SUSE Linux Enterprise Module for additional PackageHub packages 15
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for Desktop Applications 15
SUSE Linux Enterprise Module for High Performance Computing 15
SUSE Linux Enterprise Module for High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Legacy Software 15 SP1
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Public Cloud 15 SP1
SUSE Linux Enterprise Module for Python2 packages 15 SP1
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP1 is installed
  • AND kernel-zfcpdump-3.12.69-60.64.32.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 SP2 is installed
  • AND Package Information
  • ghostscript-mini-9.15-17.1 is installed
  • OR ghostscript-mini-devel-9.15-17.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND argyllcms-1.6.3-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • MozillaFirefox-38.4.0esr-51 is installed
  • OR MozillaFirefox-translations-38.4.0esr-51 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • freerdp-2.0.0~git.1463131968.4e66df7-12.3 is installed
  • OR libfreerdp2-2.0.0~git.1463131968.4e66df7-12.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • audiofile-0.3.6-10 is installed
  • OR libaudiofile1-0.3.6-10 is installed
  • OR libaudiofile1-32bit-0.3.6-10 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND ppp-2.4.7-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.4.21-69 is installed
  • OR cluster-network-kmp-default-4.4.21-69 is installed
  • OR dlm-kmp-default-4.4.21-69 is installed
  • OR gfs2-kmp-default-4.4.21-69 is installed
  • OR ocfs2-kmp-default-4.4.21-69 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND haproxy-1.6.11-10 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND Package Information
  • cluster-md-kmp-default-4.12.14-94.41 is installed
  • OR dlm-kmp-default-4.12.14-94.41 is installed
  • OR gfs2-kmp-default-4.12.14-94.41 is installed
  • OR ocfs2-kmp-default-4.12.14-94.41 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 SP1 is installed
  • AND Package Information
  • ctdb-4.9.5+git.210.ab0549acb05-3.14 is installed
  • OR samba-4.9.5+git.210.ab0549acb05-3.14 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed
  • AND Package Information
  • postgresql10-10.6-4.8 is installed
  • OR postgresql10-test-10.6-4.8 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
  • AND facter-2.0.2-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 12 is installed
  • AND python-PyYAML-3.10-15 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND Package Information
  • gd-2.2.5-4.6 is installed
  • OR gd-devel-2.2.5-4.6 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 is installed
  • AND Package Information
  • python-numpy_1_16_1-gnu-hpc-1.16.1-4.8 is installed
  • OR python2-numpy-gnu-hpc-1.16.1-4.8 is installed
  • OR python2-numpy-gnu-hpc-devel-1.16.1-4.8 is installed
  • OR python3-numpy-gnu-hpc-1.16.1-4.8 is installed
  • OR python3-numpy-gnu-hpc-devel-1.16.1-4.8 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed
  • AND Package Information
  • python-numpy_1_16_1-gnu-hpc-1.16.1-4.8 is installed
  • OR python2-numpy-gnu-hpc-1.16.1-4.8 is installed
  • OR python2-numpy-gnu-hpc-devel-1.16.1-4.8 is installed
  • OR python3-numpy-gnu-hpc-1.16.1-4.8 is installed
  • OR python3-numpy-gnu-hpc-devel-1.16.1-4.8 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.3 is installed
  • OR reiserfs-kmp-default-4.12.14-25.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.40-3.24 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-3.24 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.40-3.24 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-3.24 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND kernel-livepatch-tools-1.1-5.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-197_4-default-4-2 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_1-4-2 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • libvirt-4.0.0-9.16 is installed
  • OR wireshark-plugin-libvirt-4.0.0-9.16 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • ncat-7.70-3.5 is installed
  • OR ndiff-7.70-3.5 is installed
  • OR nmap-7.70-3.5 is installed
  • OR nping-7.70-3.5 is installed
  • OR zenmap-7.70-3.5 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • MozillaFirefox-68.6.0-3.75 is installed
  • OR MozillaFirefox-branding-upstream-68.6.0-3.75 is installed
  • OR MozillaFirefox-devel-68.6.0-3.75 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed
  • AND Package Information
  • rmt-server-2.3.1-3.3 is installed
  • OR rmt-server-pubcloud-2.3.1-3.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed
  • AND Package Information
  • libsamba-policy0-4.9.5+git.210.ab0549acb05-3.14 is installed
  • OR samba-4.9.5+git.210.ab0549acb05-3.14 is installed
  • OR samba-ad-dc-4.9.5+git.210.ab0549acb05-3.14 is installed
  • OR samba-dsdb-modules-4.9.5+git.210.ab0549acb05-3.14 is installed
  • OR samba-libs-python-4.9.5+git.210.ab0549acb05-3.14 is installed
  • OR samba-python-4.9.5+git.210.ab0549acb05-3.14 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • spice-gtk-0.34-3.3 is installed
  • OR spice-gtk-devel-0.34-3.3 is installed
  • OR typelib-1_0-SpiceClientGlib-2_0-0.34-3.3 is installed
  • OR typelib-1_0-SpiceClientGtk-3_0-0.34-3.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-1 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • dbus-1-glib-0.100.2-3 is installed
  • OR dbus-1-glib-32bit-0.100.2-3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND patch-2.7.5-7 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND ant-1.9.4-1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_51-52_39-default-6-2.1 is installed
  • OR kgraft-patch-3_12_51-52_39-xen-6-2.1 is installed
  • OR kgraft-patch-SLE12_Update_11-6-2.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND libmusicbrainz-devel-2.1.5-27 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND libexpat-devel-2.1.0-17.1 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • bluez-5.48-5.16 is installed
  • OR bluez-cups-5.48-5.16 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • bluez-5.48-5.16 is installed
  • OR bluez-cups-5.48-5.16 is installed
  • BACK