Oval Definition:	oval:org.opensuse.security:def:2785
Revision Date: 2020-12-02 Version: 1 Title: Security update for netpbm (Moderate) Description: This update for netpbm fixes the following issues: Security issues fixed: - CVE-2017-2579: Fixed out-of-bounds read in expandCodeOntoStack() (bsc#1024288). - CVE-2017-2580: Fixed out-of-bounds write of heap data in addPixelToRaster() function (bsc#1024291). - create netpbm-vulnerable subpackage and move pstopnm there, as ghostscript is used to convert (bsc#1136936) Family: unix Class: patch Status: Reference(s): 1024288 1024291 1040109 1040113 1040115 1082318 1101888 1101889 1121567 1123360 1124957 1125080 1125433 1125601 1125899 1128829 1128963 1130245 1131984 1132396 1133139 1133384 1133461 1134452 1134697 1135030 1135219 1135221 1135388 1136110 1136936 1136981 1136986 1136992 1137815 1137930 1139884 1139885 1139886 1140100 1140102 1140103 1140104 1140105 1140106 1140110 1140111 1140255 1140501 1140513 1140520 1140534 1140538 1140543 1140545 1140547 1140549 1140552 1140554 1140664 1140665 1140666 1140667 1140668 1140669 1140673 1140868 1141171 1141334 1159646 1162936 1162937 1163178 CVE-2016-1000031 CVE-2017-2579 CVE-2017-2580 CVE-2017-9111 CVE-2017-9113 CVE-2017-9115 CVE-2018-14394 CVE-2018-14395 CVE-2018-16889 CVE-2019-1010319 CVE-2019-11498 CVE-2019-11709 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11719 CVE-2019-11729 CVE-2019-11730 CVE-2019-12435 CVE-2019-12447 CVE-2019-12448 CVE-2019-12449 CVE-2019-12795 CVE-2019-12974 CVE-2019-12975 CVE-2019-12976 CVE-2019-12977 CVE-2019-12978 CVE-2019-12979 CVE-2019-13132 CVE-2019-13133 CVE-2019-13134 CVE-2019-13135 CVE-2019-13136 CVE-2019-13137 CVE-2019-13295 CVE-2019-13296 CVE-2019-13297 CVE-2019-13298 CVE-2019-13299 CVE-2019-13300 CVE-2019-13301 CVE-2019-13302 CVE-2019-13303 CVE-2019-13304 CVE-2019-13305 CVE-2019-13306 CVE-2019-13307 CVE-2019-13308 CVE-2019-13309 CVE-2019-13310 CVE-2019-13311 CVE-2019-13391 CVE-2019-13454 CVE-2019-17571 CVE-2019-3821 CVE-2019-9811 CVE-2020-8631 CVE-2020-8632 SUSE-SU-2019:1212-2 SUSE-SU-2019:1299-2 SUSE-SU-2019:1525-1 SUSE-SU-2019:1574-1 SUSE-SU-2019:1717-1 SUSE-SU-2019:1776-1 SUSE-SU-2019:1869-1 SUSE-SU-2019:1963-1 SUSE-SU-2019:2049-1 SUSE-SU-2019:2106-1 SUSE-SU-2019:2191-1 SUSE-SU-2020:0053-1 SUSE-SU-2020:0585-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Package Hub for SUSE Linux Enterprise 12 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information MozillaFirefox-31.1.0esr-1 is installed OR MozillaFirefox-translations-31.1.0esr-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information MozillaFirefox-38.4.0esr-51 is installed OR MozillaFirefox-translations-38.4.0esr-51 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND openvpn-2.3.8-16.20 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND supportutils-3.0-95.18 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND Package Information cluster-md-kmp-default-4.4.21-69 is installed OR cluster-network-kmp-default-4.4.21-69 is installed OR dlm-kmp-default-4.4.21-69 is installed OR gfs2-kmp-default-4.4.21-69 is installed OR ocfs2-kmp-default-4.4.21-69 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information libpacemaker3-1.1.16-4 is installed OR pacemaker-1.1.16-4 is installed OR pacemaker-cli-1.1.16-4 is installed OR pacemaker-cts-1.1.16-4 is installed OR pacemaker-remote-1.1.16-4 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND Package Information corosync-2.3.6-9.13 is installed OR libcorosync4-2.3.6-9.13 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information ffmpeg-3.4.2-4.12 is installed OR libavdevice57-3.4.2-4.12 is installed OR libavfilter6-3.4.2-4.12 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 12 is installed AND python-PyYAML-3.10-15 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information libnetpbm-devel-10.80.1-3.8 is installed OR netpbm-10.80.1-3.8 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information libmunge2-0.5.13-4.3 is installed OR munge-0.5.13-4.3 is installed OR munge-devel-0.5.13-4.3 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information libpmi0-18.08.9-3.10 is installed OR libslurm33-18.08.9-3.10 is installed OR perl-slurm-18.08.9-3.10 is installed OR slurm-18.08.9-3.10 is installed OR slurm-auth-none-18.08.9-3.10 is installed OR slurm-config-18.08.9-3.10 is installed OR slurm-config-man-18.08.9-3.10 is installed OR slurm-devel-18.08.9-3.10 is installed OR slurm-doc-18.08.9-3.10 is installed OR slurm-lua-18.08.9-3.10 is installed OR slurm-munge-18.08.9-3.10 is installed OR slurm-node-18.08.9-3.10 is installed OR slurm-pam_slurm-18.08.9-3.10 is installed OR slurm-plugins-18.08.9-3.10 is installed OR slurm-slurmdbd-18.08.9-3.10 is installed OR slurm-sql-18.08.9-3.10 is installed OR slurm-sview-18.08.9-3.10 is installed OR slurm-torque-18.08.9-3.10 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information kernel-default-4.12.14-25.6 is installed OR reiserfs-kmp-default-4.12.14-25.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.4 is installed OR reiserfs-kmp-default-4.12.14-197.4 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-25.3 is installed OR kernel-default-livepatch-4.12.14-25.3 is installed OR kernel-livepatch-4_12_14-25_3-default-1-1.3 is installed OR kernel-livepatch-SLE15_Update_1-1-1.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_4-default-3-2 is installed OR kernel-livepatch-SLE15-SP1_Update_1-3-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information log4j-1.2.17-5.3 is installed OR log4j-javadoc-1.2.17-5.3 is installed OR log4j-mini-1.2.17-5.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information jakarta-commons-fileupload-1.1.1-4.3 is installed OR jakarta-commons-fileupload-javadoc-1.1.1-4.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 12 is installed AND python-requests-2.3.0-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.30 is installed OR kernel-azure-base-4.12.14-5.30 is installed OR kernel-azure-devel-4.12.14-5.30 is installed OR kernel-devel-azure-4.12.14-5.30 is installed OR kernel-source-azure-4.12.14-5.30 is installed OR kernel-syms-azure-4.12.14-5.30 is installed Definition Synopsis SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python-requests-2.20.1-6.3 is installed OR python2-requests-2.20.1-6.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information openssh-7.6p1-9.3 is installed OR openssh-fips-7.6p1-9.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information nodejs6-6.9.5-7 is installed OR nodejs6-devel-6.9.5-7 is installed OR nodejs6-docs-6.9.5-7 is installed OR npm6-6.9.5-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND ant-1.9.4-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND ant-1.9.4-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND squashfs-4.3-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information libzmq3-4.0.4-2 is installed OR zeromq-devel-4.0.4-2 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information git-1.8.5.6-15.1 is installed OR git-arch-1.8.5.6-15.1 is installed OR git-core-1.8.5.6-15.1 is installed OR git-cvs-1.8.5.6-15.1 is installed OR git-daemon-1.8.5.6-15.1 is installed OR git-email-1.8.5.6-15.1 is installed OR git-gui-1.8.5.6-15.1 is installed OR git-svn-1.8.5.6-15.1 is installed OR git-web-1.8.5.6-15.1 is installed OR gitk-1.8.5.6-15.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information libpcp-devel-3.6.10-4.97 is installed OR libpcp3-3.6.10-4.97 is installed OR pcp-3.6.10-4.97 is installed OR pcp-import-iostat2pcp-3.6.10-4.97 is installed OR pcp-import-mrtg2pcp-3.6.10-4.97 is installed OR pcp-import-sar2pcp-3.6.10-4.97 is installed OR pcp-import-sheet2pcp-3.6.10-4.97 is installed OR perl-PCP-LogImport-3.6.10-4.97 is installed OR perl-PCP-LogSummary-3.6.10-4.97 is installed OR perl-PCP-MMV-3.6.10-4.97 is installed OR perl-PCP-PMDA-3.6.10-4.97 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-150.22 is installed OR kernel-default-extra-4.12.14-150.22 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information ffmpeg-3.4.2-4.17 is installed OR libavcodec-devel-3.4.2-4.17 is installed OR libavformat-devel-3.4.2-4.17 is installed OR libavformat57-3.4.2-4.17 is installed OR libavresample-devel-3.4.2-4.17 is installed OR libavresample3-3.4.2-4.17 is installed Definition Synopsis SUSE Package Hub for SUSE Linux Enterprise 12 is installed AND Package Information irssi-0.8.20-9 is installed OR irssi-devel-0.8.20-9 is installed
BACK