OVAL Reference oval:org.opensuse.security:def:2767

Oval Definition:

oval:org.opensuse.security:def:2767

Revision Date:	2020-12-02	Version:	1
Title:	Security update for tigervnc (Important)
Description:	This update for tigervnc fixes the following issues: - CVE-2019-15691: Fixed a use-after-return due to incorrect usage of stack memory in ZRLEDecoder (bsc#1159856). - CVE-2019-15692: Fixed a heap-based buffer overflow in CopyRectDecode (bsc#1160250). - CVE-2019-15693: Fixed a heap-based buffer overflow in TightDecoder::FilterGradient (bsc#1159858). - CVE-2019-15694: Fixed a heap-based buffer overflow, caused by improper error handling in processing MemOutStream (bsc#1160251). - CVE-2019-15695: Fixed a stack-based buffer overflow, which could be triggered from CMsgReader::readSetCursor (bsc#1159860).
Family:	unix	Class:	patch
Status:		Reference(s):	1012382 1036463 1040109 1040113 1040115 1050242 1051510 1053043 1055186 1056787 1058115 1061840 1063638 1064802 1065600 1065729 1066129 1068546 1071995 1075020 1082387 1083647 1085535 1094555 1099658 1103992 1104353 1104427 1106011 1106284 1108193 1108838 1108937 1110946 1111666 1111696 1112063 1112374 1113722 1114279 1114427 1115688 1117158 1117561 1118139 1119843 1120091 1120423 1120566 1120843 1120902 1121563 1122776 1123454 1123663 1124122 1124194 1124503 1124839 1125352 1125604 1126056 1126356 1127557 1127616 1128052 1128432 1128904 1128979 1129138 1129273 1129497 1129693 1129770 1130230 1130579 1130699 1130972 1131326 1131451 1131488 1131565 1131673 1132044 1132348 1132400 1132657 1132721 1132879 1133176 1133188 1133190 1133320 1133506 1133509 1133612 1133616 1134160 1134162 1134199 1134200 1134201 1134202 1134203 1134204 1134205 1134354 1134393 1134459 1134460 1134461 1134537 1134597 1134651 1134671 1134730 1134738 1134760 1134806 1134810 1134813 1134848 1134936 1135006 1135007 1135008 1135056 1135100 1135120 1135153 1135247 1135278 1135281 1135296 1135309 1135312 1135314 1135315 1135316 1135320 1135323 1135330 1135492 1135542 1135556 1135603 1135642 1135661 1135758 1136156 1136157 1136206 1136271 1136333 1136424 1136428 1136430 1136432 1136434 1136435 1136438 1136439 1136477 1136478 1136573 1136586 1136881 1136935 1136990 1137103 1137151 1137152 1137153 1137162 1137194 1137366 1137372 1137444 1137586 1137739 1137752 1137884 1137985 1138263 1138336 1138374 1138375 1138589 1138681 1138719 1138732 1139083 1139924 1159329 1159723 1159729 1159856 1159858 1159860 1160250 1160251 1160305 1160498 1160968 1161025 1161167 1161719 1163809 CVE-2017-9111 CVE-2017-9113 CVE-2017-9115 CVE-2018-16838 CVE-2018-16871 CVE-2018-7191 CVE-2019-10072 CVE-2019-10124 CVE-2019-11085 CVE-2019-11477 CVE-2019-11478 CVE-2019-11479 CVE-2019-11486 CVE-2019-11487 CVE-2019-11815 CVE-2019-11833 CVE-2019-11884 CVE-2019-12382 CVE-2019-12418 CVE-2019-12614 CVE-2019-12817 CVE-2019-12900 CVE-2019-15691 CVE-2019-15692 CVE-2019-15693 CVE-2019-15694 CVE-2019-15695 CVE-2019-17015 CVE-2019-17016 CVE-2019-17017 CVE-2019-17021 CVE-2019-17022 CVE-2019-17024 CVE-2019-17026 CVE-2019-17563 CVE-2019-3842 CVE-2019-3843 CVE-2019-3844 CVE-2019-3846 CVE-2019-5489 CVE-2019-6454 CVE-2019-8835 CVE-2019-8844 CVE-2019-8846 CVE-2020-0569 CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2654 CVE-2020-2655 CVE-2020-3862 CVE-2020-3864 CVE-2020-3865 CVE-2020-3867 CVE-2020-3868 SUSE-SU-2019:1364-2 SUSE-SU-2019:1476-1 SUSE-SU-2019:1535-1 SUSE-SU-2019:1744-1 SUSE-SU-2019:1846-1 SUSE-SU-2019:1963-1 SUSE-SU-2019:2004-1 SUSE-SU-2020:0078-1 SUSE-SU-2020:0112-1 SUSE-SU-2020:0213-1 SUSE-SU-2020:0226-1 SUSE-SU-2020:0349-1 SUSE-SU-2020:0468-1
Platform(s):	SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND Package Information openstack-cinder-2014.2.3.dev13-1 is installed OR openstack-cinder-volume-2014.2.3.dev13-1 is installed OR python-cinder-2014.2.3.dev13-1 is installed
Definition Synopsis
SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND kernel-zfcpdump-4.4.74-92.29.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information cups-pk-helper-0.2.5-3 is installed OR cups-pk-helper-lang-0.2.5-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information accountsservice-0.6.35-3 is installed OR accountsservice-lang-0.6.35-3 is installed OR libaccountsservice0-0.6.35-3 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information cpp48-4.8.5-31.3 is installed OR gcc48-4.8.5-31.3 is installed OR gcc48-32bit-4.8.5-31.3 is installed OR gcc48-c++-4.8.5-31.3 is installed OR gcc48-gij-4.8.5-31.3 is installed OR gcc48-gij-32bit-4.8.5-31.3 is installed OR gcc48-info-4.8.5-31.3 is installed OR libasan0-4.8.5-31.3 is installed OR libasan0-32bit-4.8.5-31.3 is installed OR libgcj48-4.8.5-31.3 is installed OR libgcj48-32bit-4.8.5-31.3 is installed OR libgcj48-jar-4.8.5-31.3 is installed OR libgcj_bc1-4.8.5-31.3 is installed OR libstdc++48-devel-4.8.5-31.3 is installed OR libstdc++48-devel-32bit-4.8.5-31.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information cpp48-4.8.5-30 is installed OR gcc48-4.8.5-30 is installed OR gcc48-32bit-4.8.5-30 is installed OR gcc48-c++-4.8.5-30 is installed OR gcc48-gij-4.8.5-30 is installed OR gcc48-gij-32bit-4.8.5-30 is installed OR gcc48-info-4.8.5-30 is installed OR libasan0-4.8.5-30 is installed OR libasan0-32bit-4.8.5-30 is installed OR libgcj48-4.8.5-30 is installed OR libgcj48-32bit-4.8.5-30 is installed OR libgcj48-jar-4.8.5-30 is installed OR libgcj_bc1-4.8.5-30 is installed OR libstdc++48-devel-4.8.5-30 is installed OR libstdc++48-devel-32bit-4.8.5-30 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND rpcbind-0.2.3-23 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND haproxy-1.6.5-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND libpcreposix0-8.39-7 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP4 is installed AND ctdb-4.6.16+git.124.aee309c5c18-3.32 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information java-1_8_0-openjdk-1.8.0.212-3.19 is installed OR java-1_8_0-openjdk-javadoc-1.8.0.212-3.19 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information libXvnc-devel-1.8.0-13.11 is installed OR tigervnc-1.8.0-13.11 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information libpmi0-17.11.13-6.18 is installed OR libslurm32-17.11.13-6.18 is installed OR perl-slurm-17.11.13-6.18 is installed OR slurm-17.11.13-6.18 is installed OR slurm-auth-none-17.11.13-6.18 is installed OR slurm-config-17.11.13-6.18 is installed OR slurm-devel-17.11.13-6.18 is installed OR slurm-doc-17.11.13-6.18 is installed OR slurm-lua-17.11.13-6.18 is installed OR slurm-munge-17.11.13-6.18 is installed OR slurm-node-17.11.13-6.18 is installed OR slurm-pam_slurm-17.11.13-6.18 is installed OR slurm-plugins-17.11.13-6.18 is installed OR slurm-slurmdbd-17.11.13-6.18 is installed OR slurm-sql-17.11.13-6.18 is installed OR slurm-torque-17.11.13-6.18 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information libslurm32-17.11.13-6.23 is installed OR slurm-17.11.13-6.23 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information cups154-1.5.4-2 is installed OR cups154-client-1.5.4-2 is installed OR cups154-filters-1.5.4-2 is installed OR cups154-libs-1.5.4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.15-3.3 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-3.3 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.15-3.3 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.15 is installed OR reiserfs-kmp-default-4.12.14-197.15 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-25.3 is installed OR kernel-default-livepatch-4.12.14-25.3 is installed OR kernel-livepatch-4_12_14-25_3-default-1-1.3 is installed OR kernel-livepatch-SLE15_Update_1-1-1.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-195-default-3-7 is installed OR kernel-livepatch-SLE15-SP1_Update_0-3-7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information java-11-openjdk-11.0.6.0-3.39 is installed OR java-11-openjdk-accessibility-11.0.6.0-3.39 is installed OR java-11-openjdk-demo-11.0.6.0-3.39 is installed OR java-11-openjdk-devel-11.0.6.0-3.39 is installed OR java-11-openjdk-headless-11.0.6.0-3.39 is installed OR java-11-openjdk-javadoc-11.0.6.0-3.39 is installed OR java-11-openjdk-jmods-11.0.6.0-3.39 is installed OR java-11-openjdk-src-11.0.6.0-3.39 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libsystemd0-mini-234-24.30 is installed OR libudev-devel-32bit-234-24.30 is installed OR libudev-mini-devel-234-24.30 is installed OR libudev-mini1-234-24.30 is installed OR nss-myhostname-234-24.30 is installed OR nss-myhostname-32bit-234-24.30 is installed OR nss-mymachines-234-24.30 is installed OR nss-mymachines-32bit-234-24.30 is installed OR nss-systemd-234-24.30 is installed OR systemd-234-24.30 is installed OR systemd-logger-234-24.30 is installed OR systemd-mini-234-24.30 is installed OR systemd-mini-bash-completion-234-24.30 is installed OR systemd-mini-container-mini-234-24.30 is installed OR systemd-mini-coredump-mini-234-24.30 is installed OR systemd-mini-devel-234-24.30 is installed OR systemd-mini-sysvinit-234-24.30 is installed OR udev-mini-234-24.30 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information java-11-openjdk-11.0.7.0-3.42 is installed OR java-11-openjdk-accessibility-11.0.7.0-3.42 is installed OR java-11-openjdk-javadoc-11.0.7.0-3.42 is installed OR java-11-openjdk-jmods-11.0.7.0-3.42 is installed OR java-11-openjdk-src-11.0.7.0-3.42 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.30 is installed OR kernel-azure-base-4.12.14-5.30 is installed OR kernel-azure-devel-4.12.14-5.30 is installed OR kernel-devel-azure-4.12.14-5.30 is installed OR kernel-source-azure-4.12.14-5.30 is installed OR kernel-syms-azure-4.12.14-5.30 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information libsamba-policy0-4.9.5+git.224.86a8e66adea-3.18 is installed OR samba-4.9.5+git.224.86a8e66adea-3.18 is installed OR samba-ad-dc-4.9.5+git.224.86a8e66adea-3.18 is installed OR samba-dsdb-modules-4.9.5+git.224.86a8e66adea-3.18 is installed OR samba-libs-python-4.9.5+git.224.86a8e66adea-3.18 is installed OR samba-python-4.9.5+git.224.86a8e66adea-3.18 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libspice-server-devel-0.14.0-4.3 is installed OR libspice-server1-0.14.0-4.3 is installed OR spice-0.14.0-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND apache2-mod_wsgi-4.4.13-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information MozillaFirefox-31.1.0esr-1 is installed OR MozillaFirefox-translations-31.1.0esr-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information MozillaFirefox-38.4.0esr-51 is installed OR MozillaFirefox-translations-38.4.0esr-51 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND python-imaging-1.1.7-21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache-commons-daemon-1.0.15-6 is installed OR apache-commons-daemon-javadoc-1.0.15-6 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information librsvg-devel-2.40.2-1 is installed OR typelib-1_0-Rsvg-2_0-2.40.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information libjavascriptcoregtk-1_0-0-2.4.11-23.20 is installed OR libwebkitgtk-1_0-0-2.4.11-23.20 is installed OR libwebkitgtk-devel-2.4.11-23.20 is installed OR libwebkitgtk3-devel-2.4.11-23.20 is installed OR typelib-1_0-JavaScriptCore-1_0-2.4.11-23.20 is installed OR typelib-1_0-JavaScriptCore-3_0-2.4.11-23.20 is installed OR typelib-1_0-WebKit-1_0-2.4.11-23.20 is installed OR typelib-1_0-WebKit-3_0-2.4.11-23.20 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information ffmpeg-3.4.2-4.12 is installed OR libavcodec-devel-3.4.2-4.12 is installed OR libavformat-devel-3.4.2-4.12 is installed OR libavformat57-3.4.2-4.12 is installed OR libavresample-devel-3.4.2-4.12 is installed OR libavresample3-3.4.2-4.12 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND enigmail-2.0.11-3.16 is installed

BACK