Oval Definition:	oval:org.opensuse.security:def:2759
Revision Date: 2020-12-02 Version: 1 Title: Security update for SDL (Moderate) Description: This update for SDL fixes the following issues: Security issues fixed: - CVE-2019-7572: Fixed a buffer over-read in IMA_ADPCM_nibble in audio/SDL_wave.c.(bsc#1124806). - CVE-2019-7578: Fixed a heap-based buffer over-read in InitIMA_ADPCM in audio/SDL_wave.c (bsc#1125099). - CVE-2019-7576: Fixed heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (bsc#1124799). - CVE-2019-7573: Fixed a heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (bsc#1124805). - CVE-2019-7635: Fixed a heap-based buffer over-read in Blit1to4 in video/SDL_blit_1.c. (bsc#1124827). - CVE-2019-7636: Fixed a heap-based buffer over-read in SDL_GetRGB in video/SDL_pixels.c (bsc#1124826). - CVE-2019-7638: Fixed a heap-based buffer over-read in Map1toN in video/SDL_pixels.c (bsc#1124824). - CVE-2019-7574: Fixed a heap-based buffer over-read in IMA_ADPCM_decode in audio/SDL_wave.c (bsc#1124803). - CVE-2019-7575: Fixed a heap-based buffer overflow in MS_ADPCM_decode in audio/SDL_wave.c (bsc#1124802). - CVE-2019-7637: Fixed a heap-based buffer overflow in SDL_FillRect function in SDL_surface.c (bsc#1124825). - CVE-2019-7577: Fixed a buffer over read in SDL_LoadWAV_RW in audio/SDL_wave.c (bsc#1124800). Family: unix Class: patch Status: Reference(s): 1027282 1029377 1029902 1040164 1041090 1042670 1068664 1070853 1073269 1073748 1078326 1078485 1079300 1079761 1081750 1082318 1083507 1084650 1086001 1088004 1088009 1088573 1094814 1098946 1104129 1105435 1107030 1109663 1109847 1111793 1113755 1120644 1122191 1124799 1124800 1124802 1124803 1124805 1124806 1124824 1124825 1124826 1124827 1125099 1126068 1126069 1129346 1130840 1130847 1132091 1133185 1133452 1137942 1138459 1139924 1139959 1140255 1140868 1141853 1149121 1149792 1149955 1151490 1153238 1153830 1159035 1159622 1159723 1159729 1159861 1159922 1159923 1159924 1159927 1160369 1161025 1161194 214983 298378 346490 367853 379534 380942 399190 406051 425138 426563 430761 432677 436966 437293 441088 462375 525295 534721 551715 572673 577032 581765 603255 617751 637176 638233 658604 673071 682554 697251 707667 709442 718009 743787 747125 747794 751718 754447 754677 766778 787526 794139 804978 809831 827982 831442 831629 834601 836739 856835 856836 857470 863741 871152 885662 885882 898572 901715 917607 935856 942751 945401 951166 964182 983582 984751 985177 985348 989523 997436 CVE-2007-2052 CVE-2008-1721 CVE-2008-2315 CVE-2008-2316 CVE-2008-3142 CVE-2008-3143 CVE-2008-3144 CVE-2011-1521 CVE-2011-3389 CVE-2011-4944 CVE-2012-0845 CVE-2012-1150 CVE-2013-1752 CVE-2013-1753 CVE-2013-4238 CVE-2014-1912 CVE-2014-2667 CVE-2014-4650 CVE-2014-7185 CVE-2016-0772 CVE-2016-1000110 CVE-2016-5636 CVE-2016-5699 CVE-2017-1000158 CVE-2017-18207 CVE-2018-1000030 CVE-2018-1000654 CVE-2018-1000802 CVE-2018-1060 CVE-2018-1061 CVE-2018-12648 CVE-2018-14647 CVE-2018-20406 CVE-2018-20852 CVE-2018-5740 CVE-2018-5743 CVE-2018-5745 CVE-2019-10072 CVE-2019-10160 CVE-2019-11023 CVE-2019-11045 CVE-2019-11046 CVE-2019-11047 CVE-2019-11050 CVE-2019-11709 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11719 CVE-2019-11729 CVE-2019-11730 CVE-2019-12418 CVE-2019-13012 CVE-2019-13132 CVE-2019-15903 CVE-2019-16056 CVE-2019-16935 CVE-2019-17563 CVE-2019-19948 CVE-2019-19949 CVE-2019-5010 CVE-2019-6465 CVE-2019-7572 CVE-2019-7573 CVE-2019-7574 CVE-2019-7575 CVE-2019-7576 CVE-2019-7577 CVE-2019-7578 CVE-2019-7635 CVE-2019-7636 CVE-2019-7637 CVE-2019-7638 CVE-2019-9636 CVE-2019-9811 CVE-2019-9947 CVE-2019-9948 SUSE-SU-2019:0917-1 SUSE-SU-2019:1267-2 SUSE-SU-2019:1372-2 SUSE-SU-2019:1407-1 SUSE-SU-2019:1603-1 SUSE-SU-2019:1776-1 SUSE-SU-2019:1833-1 SUSE-SU-2019:1869-1 SUSE-SU-2020:0101-1 SUSE-SU-2020:0114-1 SUSE-SU-2020:0226-1 SUSE-SU-2020:0234-1 SUSE-SU-2020:0275-1 Platform(s): SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Toolchain 12 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 Product(s): Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND kernel-zfcpdump-3.12.74-60.64.40.1 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND Package Information ghostscript-mini-9.15-17.1 is installed OR ghostscript-mini-devel-9.15-17.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information colord-1.1.7-2 is installed OR colord-gtk-lang-0.1.25-3 is installed OR colord-lang-1.1.7-2 is installed OR libcolord-gtk1-0.1.25-3 is installed OR libcolord2-1.1.7-2 is installed OR libcolord2-32bit-1.1.7-2 is installed OR libcolorhug2-1.1.7-2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information bind-libs-9.9.6P1-30 is installed OR bind-libs-32bit-9.9.6P1-30 is installed OR bind-utils-9.9.6P1-30 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information gdk-pixbuf-2.34.0-19.5 is installed OR gdk-pixbuf-lang-2.34.0-19.5 is installed OR gdk-pixbuf-query-loaders-2.34.0-19.5 is installed OR gdk-pixbuf-query-loaders-32bit-2.34.0-19.5 is installed OR libgdk_pixbuf-2_0-0-2.34.0-19.5 is installed OR libgdk_pixbuf-2_0-0-32bit-2.34.0-19.5 is installed OR typelib-1_0-GdkPixbuf-2_0-2.34.0-19.5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND busybox-1.21.1-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND python-pywbem-0.7.0-4 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND python-requests-2.8.1-6.11 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information libpacemaker3-1.1.16-4 is installed OR pacemaker-1.1.16-4 is installed OR pacemaker-cli-1.1.16-4 is installed OR pacemaker-cts-1.1.16-4 is installed OR pacemaker-remote-1.1.16-4 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND Package Information corosync-2.3.6-9.13 is installed OR libcorosync4-2.3.6-9.13 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information ffmpeg-3.4.2-4.12 is installed OR libavdevice57-3.4.2-4.12 is installed OR libavfilter6-3.4.2-4.12 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information python-Werkzeug-0.14.1-6.3 is installed OR python2-Werkzeug-0.14.1-6.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information SDL-1.2.15-3.9 is installed OR libSDL-1_2-0-1.2.15-3.9 is installed OR libSDL-devel-1.2.15-3.9 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information libpmi0-17.11.13-6.15 is installed OR libslurm32-17.11.13-6.15 is installed OR perl-slurm-17.11.13-6.15 is installed OR slurm-17.11.13-6.15 is installed OR slurm-auth-none-17.11.13-6.15 is installed OR slurm-config-17.11.13-6.15 is installed OR slurm-devel-17.11.13-6.15 is installed OR slurm-doc-17.11.13-6.15 is installed OR slurm-lua-17.11.13-6.15 is installed OR slurm-munge-17.11.13-6.15 is installed OR slurm-node-17.11.13-6.15 is installed OR slurm-pam_slurm-17.11.13-6.15 is installed OR slurm-plugins-17.11.13-6.15 is installed OR slurm-slurmdbd-17.11.13-6.15 is installed OR slurm-sql-17.11.13-6.15 is installed OR slurm-torque-17.11.13-6.15 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information python-numpy_1_16_1-gnu-hpc-1.16.1-4.8 is installed OR python2-numpy-gnu-hpc-1.16.1-4.8 is installed OR python2-numpy-gnu-hpc-devel-1.16.1-4.8 is installed OR python3-numpy-gnu-hpc-1.16.1-4.8 is installed OR python3-numpy-gnu-hpc-devel-1.16.1-4.8 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information java-1_6_0-ibm-1.6.0_sr16.1-5 is installed OR java-1_6_0-ibm-fonts-1.6.0_sr16.1-5 is installed OR java-1_6_0-ibm-jdbc-1.6.0_sr16.1-5 is installed OR java-1_6_0-ibm-plugin-1.6.0_sr16.1-5 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-3.3 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-3.3 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-3.3 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-3.24 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-3.24 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.40-3.24 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-3.24 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-25.13 is installed OR kernel-default-livepatch-4.12.14-25.13 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.4 is installed OR kernel-default-livepatch-4.12.14-197.4 is installed OR kernel-default-livepatch-devel-4.12.14-197.4 is installed OR kernel-livepatch-4_12_14-197_4-default-1-3.3 is installed OR kernel-livepatch-SLE15-SP1_Update_1-1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information php7-7.2.5-4.49 is installed OR php7-embed-7.2.5-4.49 is installed OR php7-readline-7.2.5-4.49 is installed OR php7-sodium-7.2.5-4.49 is installed OR php7-tidy-7.2.5-4.49 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information graphviz-addons-2.40.1-6.3 is installed OR graphviz-doc-2.40.1-6.3 is installed OR graphviz-gnome-2.40.1-6.3 is installed OR graphviz-guile-2.40.1-6.3 is installed OR graphviz-gvedit-2.40.1-6.3 is installed OR graphviz-java-2.40.1-6.3 is installed OR graphviz-lua-2.40.1-6.3 is installed OR graphviz-php-2.40.1-6.3 is installed OR graphviz-ruby-2.40.1-6.3 is installed OR graphviz-smyrna-2.40.1-6.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information libmariadb3-32bit-3.1.8-3.18 is installed OR mariadb-connector-c-3.1.8-3.18 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.16 is installed OR kernel-azure-base-4.12.14-5.16 is installed OR kernel-azure-devel-4.12.14-5.16 is installed OR kernel-devel-azure-4.12.14-5.16 is installed OR kernel-source-azure-4.12.14-5.16 is installed OR kernel-syms-azure-4.12.14-5.16 is installed Definition Synopsis SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python-2.7.14-7.14 is installed OR python-base-2.7.14-7.14 is installed OR python-curses-2.7.14-7.14 is installed OR python-devel-2.7.14-7.14 is installed OR python-gdbm-2.7.14-7.14 is installed OR python-xml-2.7.14-7.14 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information dpdk-17.11.2-3.2 is installed OR dpdk-devel-17.11.2-3.2 is installed OR dpdk-kmp-default-17.11.2_k4.12.14_23-3.2 is installed OR dpdk-thunderx-17.11.2-3.2 is installed OR dpdk-thunderx-devel-17.11.2-3.2 is installed OR dpdk-thunderx-kmp-default-17.11.2_k4.12.14_23-3.2 is installed OR dpdk-tools-17.11.2-3.2 is installed OR libdpdk-17_11-0-17.11.2-3.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Toolchain 12 is installed AND Package Information cpp5-5.3.1+r233831-9 is installed OR gcc5-5.3.1+r233831-9 is installed OR gcc5-c++-5.3.1+r233831-9 is installed OR gcc5-fortran-5.3.1+r233831-9 is installed OR gcc5-info-5.3.1+r233831-9 is installed OR gcc5-locale-5.3.1+r233831-9 is installed OR libffi-devel-gcc5-5.3.1+r233831-9 is installed OR libstdc++6-devel-gcc5-5.3.1+r233831-9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND apache2-mod_jk-1.2.40-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information DirectFB-1.7.1-4 is installed OR lib++dfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-1.7.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND perl-YAML-LibYAML-0.38-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information alsa-1.0.27.2-15 is installed OR alsa-docs-1.0.27.2-15 is installed OR libasound2-1.0.27.2-15 is installed OR libasound2-32bit-1.0.27.2-15 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information libpng16-compat-devel-1.6.8-2 is installed OR libpng16-devel-1.6.8-2 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information libguestfs-devel-1.32.4-14.18 is installed OR ocaml-libguestfs-devel-1.32.4-14.18 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.13 is installed OR kernel-default-extra-4.12.14-25.13 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.10 is installed OR kernel-default-extra-4.12.14-197.10 is installed
BACK