Oval Definition:	oval:org.opensuse.security:def:2773
Revision Date: 2020-12-02 Version: 1 Title: Security update for libexif (Moderate) Description: This update for libexif fixes the following issues: - CVE-2019-9278: Fixed an integer overflow (bsc#1160770). - CVE-2018-20030: Fixed a denial of service by endless recursion (bsc#1120943). Family: unix Class: patch Status: Reference(s): 1012382 1040109 1040113 1040115 1050242 1051510 1053043 1055186 1056787 1058115 1061840 1063638 1064802 1065600 1065729 1066129 1068546 1071995 1075020 1082007 1082008 1082009 1082010 1082011 1082014 1082058 1082387 1083647 1085535 1087433 1087434 1087436 1087437 1087440 1087441 1098946 1099658 1103992 1104353 1104427 1106011 1106284 1108193 1108838 1108937 1110946 1111696 1112063 1112530 1112532 1113722 1114427 1115688 1117158 1117561 1118139 1119843 1120091 1120423 1120566 1120843 1120902 1120943 1121826 1122776 1123454 1123663 1124493 1124503 1124839 1126356 1127616 1128052 1128904 1128979 1129138 1129273 1129497 1129693 1129770 1130028 1130579 1130611 1130617 1130620 1130622 1130623 1130627 1130699 1130972 1131326 1131451 1131488 1131565 1131673 1132044 1133176 1133188 1133190 1133320 1133612 1133616 1133790 1134160 1134162 1134199 1134200 1134201 1134202 1134203 1134204 1134205 1134354 1134393 1134459 1134460 1134461 1134537 1134597 1134651 1134671 1134760 1134806 1134810 1134813 1134848 1134936 1135006 1135007 1135008 1135056 1135100 1135120 1135278 1135281 1135309 1135312 1135314 1135315 1135316 1135320 1135323 1135330 1135492 1135542 1135556 1135603 1135642 1135661 1135758 1135824 1136206 1136424 1136428 1136430 1136432 1136434 1136435 1136438 1136439 1136477 1136478 1136573 1136586 1136881 1136935 1136990 1137151 1137152 1137153 1137162 1137372 1137444 1137586 1137739 1137752 1142721 1142743 1154370 1158809 1159329 1159861 1160369 1160770 1161194 1161719 1163809 CVE-2017-17742 CVE-2017-9111 CVE-2017-9113 CVE-2017-9115 CVE-2018-1000073 CVE-2018-1000074 CVE-2018-1000075 CVE-2018-1000076 CVE-2018-1000077 CVE-2018-1000078 CVE-2018-1000079 CVE-2018-11782 CVE-2018-12648 CVE-2018-16395 CVE-2018-16396 CVE-2018-20030 CVE-2018-6914 CVE-2018-7191 CVE-2018-8777 CVE-2018-8778 CVE-2018-8779 CVE-2018-8780 CVE-2019-0203 CVE-2019-10124 CVE-2019-11085 CVE-2019-11477 CVE-2019-11478 CVE-2019-11479 CVE-2019-11486 CVE-2019-11487 CVE-2019-11691 CVE-2019-11692 CVE-2019-11693 CVE-2019-11694 CVE-2019-11698 CVE-2019-11815 CVE-2019-11833 CVE-2019-11884 CVE-2019-12382 CVE-2019-1551 CVE-2019-17626 CVE-2019-19948 CVE-2019-19949 CVE-2019-3820 CVE-2019-3846 CVE-2019-5489 CVE-2019-6133 CVE-2019-7317 CVE-2019-8320 CVE-2019-8321 CVE-2019-8322 CVE-2019-8323 CVE-2019-8324 CVE-2019-8325 CVE-2019-8835 CVE-2019-8844 CVE-2019-8846 CVE-2019-9278 CVE-2019-9800 CVE-2019-9815 CVE-2019-9816 CVE-2019-9817 CVE-2019-9818 CVE-2019-9819 CVE-2019-9820 CVE-2020-3862 CVE-2020-3864 CVE-2020-3865 CVE-2020-3867 CVE-2020-3868 SUSE-SU-2019:1405-1 SUSE-SU-2019:1459-1 SUSE-SU-2019:1535-1 SUSE-SU-2019:1603-1 SUSE-SU-2019:1804-1 SUSE-SU-2019:1963-1 SUSE-SU-2019:2018-1 SUSE-SU-2019:2031-1 SUSE-SU-2020:0064-1 SUSE-SU-2020:0255-1 SUSE-SU-2020:0275-1 SUSE-SU-2020:0458-1 SUSE-SU-2020:0468-1 Platform(s): SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Toolchain 12 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Package Hub for SUSE Linux Enterprise 12 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND python-requests-2.3.0-1 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND python-Twisted-15.2.1-8.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information dhcp-4.2.6-7 is installed OR dhcp-client-4.2.6-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information MozillaFirefox-38.4.0esr-51 is installed OR MozillaFirefox-translations-38.4.0esr-51 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information MozillaFirefox-52.3.0esr-109.3 is installed OR MozillaFirefox-translations-52.3.0esr-109.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information cups-pk-helper-0.2.5-5 is installed OR cups-pk-helper-lang-0.2.5-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND ruby-2.1-1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND fence-agents-4.0.22+git.1455008135.15c5e92-8 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information cluster-md-kmp-default-4.4.73-5 is installed OR dlm-kmp-default-4.4.73-5 is installed OR gfs2-kmp-default-4.4.73-5 is installed OR ocfs2-kmp-default-4.4.73-5 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND Package Information corosync-2.3.6-9.13 is installed OR libcorosync4-2.3.6-9.13 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information libxmlsec1-gcrypt1-1.2.26-3.3 is installed OR libxmlsec1-gnutls1-1.2.26-3.3 is installed OR libxmlsec1-openssl1-1.2.26-3.3 is installed OR xmlsec1-1.2.26-3.3 is installed OR xmlsec1-gnutls-devel-1.2.26-3.3 is installed OR xmlsec1-openssl-devel-1.2.26-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information libexif-0.6.21-5.3 is installed OR libexif-devel-0.6.21-5.3 is installed OR libexif12-0.6.21-5.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information gnome-shell-3.26.2+20180130.0d9c74212-4.19 is installed OR gnome-shell-devel-3.26.2+20180130.0d9c74212-4.19 is installed OR gnome-shell-lang-3.26.2+20180130.0d9c74212-4.19 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information libpmi0-17.11.7-6.3 is installed OR libslurm32-17.11.7-6.3 is installed OR perl-slurm-17.11.7-6.3 is installed OR slurm-17.11.7-6.3 is installed OR slurm-auth-none-17.11.7-6.3 is installed OR slurm-config-17.11.7-6.3 is installed OR slurm-devel-17.11.7-6.3 is installed OR slurm-doc-17.11.7-6.3 is installed OR slurm-lua-17.11.7-6.3 is installed OR slurm-munge-17.11.7-6.3 is installed OR slurm-node-17.11.7-6.3 is installed OR slurm-pam_slurm-17.11.7-6.3 is installed OR slurm-plugins-17.11.7-6.3 is installed OR slurm-slurmdbd-17.11.7-6.3 is installed OR slurm-sql-17.11.7-6.3 is installed OR slurm-torque-17.11.7-6.3 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information libpmi0-18.08.8-3.4 is installed OR libslurm33-18.08.8-3.4 is installed OR perl-Switch-2.17-3.2 is installed OR perl-slurm-18.08.8-3.4 is installed OR slurm-18.08.8-3.4 is installed OR slurm-auth-none-18.08.8-3.4 is installed OR slurm-config-18.08.8-3.4 is installed OR slurm-config-man-18.08.8-3.4 is installed OR slurm-devel-18.08.8-3.4 is installed OR slurm-doc-18.08.8-3.4 is installed OR slurm-lua-18.08.8-3.4 is installed OR slurm-munge-18.08.8-3.4 is installed OR slurm-node-18.08.8-3.4 is installed OR slurm-pam_slurm-18.08.8-3.4 is installed OR slurm-plugins-18.08.8-3.4 is installed OR slurm-slurmdbd-18.08.8-3.4 is installed OR slurm-sql-18.08.8-3.4 is installed OR slurm-sview-18.08.8-3.4 is installed OR slurm-torque-18.08.8-3.4 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information cups154-1.5.4-2 is installed OR cups154-client-1.5.4-2 is installed OR cups154-filters-1.5.4-2 is installed OR cups154-libs-1.5.4-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information kernel-default-4.12.14-25.6 is installed OR reiserfs-kmp-default-4.12.14-25.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.26 is installed OR reiserfs-kmp-default-4.12.14-197.26 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-23-default-2-4 is installed OR kernel-livepatch-SLE15_Update_0-2-4 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.4 is installed OR kernel-default-livepatch-4.12.14-197.4 is installed OR kernel-default-livepatch-devel-4.12.14-197.4 is installed OR kernel-livepatch-4_12_14-197_4-default-1-3.3 is installed OR kernel-livepatch-SLE15-SP1_Update_1-1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information python-reportlab-3.4.0-3.3 is installed OR python2-reportlab-3.4.0-3.3 is installed OR python3-reportlab-3.4.0-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information MozillaFirefox-60.7.0-3.40 is installed OR MozillaFirefox-branding-upstream-60.7.0-3.40 is installed OR MozillaFirefox-buildsymbols-60.7.0-3.40 is installed OR MozillaFirefox-devel-60.7.0-3.40 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information gstreamer-plugins-base-1.12.5-3.3 is installed OR typelib-1_0-GstFft-1_0-1.12.5-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.44 is installed OR kernel-azure-base-4.12.14-5.44 is installed OR kernel-azure-devel-4.12.14-5.44 is installed OR kernel-devel-azure-4.12.14-5.44 is installed OR kernel-source-azure-4.12.14-5.44 is installed OR kernel-syms-azure-4.12.14-5.44 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information dpdk-17.11.2-3.2 is installed OR dpdk-devel-17.11.2-3.2 is installed OR dpdk-kmp-default-17.11.2_k4.12.14_23-3.2 is installed OR dpdk-thunderx-17.11.2-3.2 is installed OR dpdk-thunderx-devel-17.11.2-3.2 is installed OR dpdk-thunderx-kmp-default-17.11.2_k4.12.14_23-3.2 is installed OR dpdk-tools-17.11.2-3.2 is installed OR libdpdk-17_11-0-17.11.2-3.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Toolchain 12 is installed AND Package Information cpp5-5.3.1+r233831-9 is installed OR gcc5-5.3.1+r233831-9 is installed OR gcc5-c++-5.3.1+r233831-9 is installed OR gcc5-fortran-5.3.1+r233831-9 is installed OR gcc5-info-5.3.1+r233831-9 is installed OR gcc5-locale-5.3.1+r233831-9 is installed OR libffi-devel-gcc5-5.3.1+r233831-9 is installed OR libstdc++6-devel-gcc5-5.3.1+r233831-9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-1 is installed OR aaa_base-extras-13.2+git20140911.61c1681-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information DirectFB-1.7.1-4 is installed OR lib++dfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-1.7.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND quagga-0.99.22.1-12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information alsa-1.0.27.2-15 is installed OR alsa-docs-1.0.27.2-15 is installed OR libasound2-1.0.27.2-15 is installed OR libasound2-32bit-1.0.27.2-15 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information libssh-devel-0.6.3-1 is installed OR libssh-devel-doc-0.6.3-1 is installed OR libssh4-0.6.3-1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information libldb-devel-1.1.26-10.4 is installed OR pyldb-1.1.26-10.4 is installed OR pyldb-devel-1.1.26-10.4 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND enigmail-2.0.9-3.13 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information evolution-3.26.6-4.3 is installed OR evolution-devel-3.26.6-4.3 is installed OR evolution-lang-3.26.6-4.3 is installed OR evolution-plugin-bogofilter-3.26.6-4.3 is installed OR evolution-plugin-pst-import-3.26.6-4.3 is installed OR evolution-plugin-spamassassin-3.26.6-4.3 is installed Definition Synopsis SUSE Package Hub for SUSE Linux Enterprise 12 is installed AND Package Information irssi-0.8.20-9 is installed OR irssi-devel-0.8.20-9 is installed
BACK