Oval Definition:	oval:org.opensuse.security:def:2826
Revision Date: 2020-12-02 Version: 1 Title: Security update for openexr (Moderate) Description: This update for openexr provides the following fix: Security issues fixed: - CVE-2020-11765: Fixed an off-by-one error in use of the ImfXdr.h read function by DwaCompressor:Classifier:Classifier (bsc#1169575). - CVE-2020-11764: Fixed an out-of-bounds write in copyIntoFrameBuffer in ImfMisc.cpp (bsc#1169574). - CVE-2020-11763: Fixed an out-of-bounds read and write, as demonstrated by ImfTileOffsets.cpp (bsc#1169576). - CVE-2020-11762: Fixed an out-of-bounds read and write in DwaCompressor:uncompress in ImfDwaCompressor.cpp when handling the UNKNOWN compression case (bsc#1169549). - CVE-2020-11761: Fixed an out-of-bounds read during Huffman uncompression, as demonstrated by FastHufDecoder:refill in ImfFastHuf.cpp (bsc#1169578). - CVE-2020-11760: Fixed an out-of-bounds read during RLE uncompression in rleUncompress in ImfRle.cpp (bsc#1169580). - CVE-2020-11758: Fixed an out-of-bounds read in ImfOptimizedPixelReading.h (bsc#1169573). Non-security issue fixed: - Enable tests when building the package on x86_64. (bsc#1146648) Family: unix Class: patch Status: Reference(s): 1051510 1071995 1081947 1082007 1082008 1082009 1082010 1082011 1082014 1082058 1082293 1083689 1085196 1087433 1087434 1087436 1087437 1087440 1087441 1092187 1094555 1098946 1099465 1103678 1105606 1106214 1108674 1109609 1111666 1112374 1112530 1112532 1114279 1117507 1117508 1118367 1118368 1120189 1121197 1121567 1122417 1123360 1124957 1125080 1125886 1125899 1128432 1129180 1129186 1130028 1130611 1130617 1130620 1130622 1130623 1130627 1131984 1132385 1132396 1133139 1133461 1133790 1134156 1134730 1134738 1135030 1135153 1135219 1135221 1135296 1135388 1135534 1135642 1135708 1136110 1136156 1136157 1136271 1136333 1137001 1137103 1137194 1137366 1137884 1137985 1138263 1138336 1138374 1138375 1138589 1138681 1138687 1138719 1138732 1140359 1140709 1144797 1146648 1146882 1146884 1158910 1159740 1169549 1169573 1169574 1169575 1169576 1169578 1169580 353876 991201 CVE-2016-5416 CVE-2017-17742 CVE-2018-1000073 CVE-2018-1000074 CVE-2018-1000075 CVE-2018-1000076 CVE-2018-1000077 CVE-2018-1000078 CVE-2018-1000079 CVE-2018-1054 CVE-2018-10871 CVE-2018-1089 CVE-2018-10935 CVE-2018-12648 CVE-2018-14638 CVE-2018-14648 CVE-2018-16395 CVE-2018-16396 CVE-2018-16871 CVE-2018-16889 CVE-2018-19540 CVE-2018-19541 CVE-2018-6914 CVE-2018-8777 CVE-2018-8778 CVE-2018-8779 CVE-2018-8780 CVE-2019-12450 CVE-2019-12614 CVE-2019-12817 CVE-2019-12838 CVE-2019-12973 CVE-2019-14811 CVE-2019-14812 CVE-2019-14813 CVE-2019-14817 CVE-2019-3821 CVE-2019-3835 CVE-2019-3839 CVE-2019-3883 CVE-2019-6471 CVE-2019-8320 CVE-2019-8321 CVE-2019-8322 CVE-2019-8323 CVE-2019-8324 CVE-2019-8325 CVE-2020-11758 CVE-2020-11760 CVE-2020-11761 CVE-2020-11762 CVE-2020-11763 CVE-2020-11764 CVE-2020-11765 CVE-2020-8016 CVE-2020-8017 SUSE-SU-2019:1594-1 SUSE-SU-2019:1603-1 SUSE-SU-2019:1744-1 SUSE-SU-2019:1804-1 SUSE-SU-2019:2049-1 SUSE-SU-2019:2155-1 SUSE-SU-2019:2229-1 SUSE-SU-2019:2392-1 SUSE-SU-2019:2460-1 SUSE-SU-2019:2512-1 SUSE-SU-2019:2550-1 SUSE-SU-2020:1293-1 SUSE-SU-2020:1580-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for High Performance Computing 12 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Toolchain 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP1-CLIENT-TOOLS SUSE Linux Enterprise Server 11 SP1-LTSS SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP2-LTSS SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server for VMWare 11 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SP1 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information avahi-0.6.31-20 is installed OR avahi-lang-0.6.31-20 is installed OR libavahi-client3-0.6.31-20 is installed OR libavahi-client3-32bit-0.6.31-20 is installed OR libavahi-common3-0.6.31-20 is installed OR libavahi-common3-32bit-0.6.31-20 is installed OR libavahi-core7-0.6.31-20 is installed OR libdns_sd-0.6.31-20 is installed OR libdns_sd-32bit-0.6.31-20 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information accountsservice-0.6.35-3 is installed OR accountsservice-lang-0.6.35-3 is installed OR libaccountsservice0-0.6.35-3 is installed OR typelib-1_0-AccountsService-1_0-0.6.35-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information ImageMagick-6.8.8.1-71.17 is installed OR libMagick++-6_Q16-3-6.8.8.1-71.17 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.17 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-71.17 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.17 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information colord-1.3.3-12 is installed OR colord-gtk-lang-0.1.26-6 is installed OR colord-lang-1.3.3-12 is installed OR libcolord-gtk1-0.1.26-6 is installed OR libcolord2-1.3.3-12 is installed OR libcolord2-32bit-1.3.3-12 is installed OR libcolorhug2-1.3.3-12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information zypper-1.13.45-21.23 is installed OR zypper-log-1.13.45-21.23 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND ctdb-4.4.2-29 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND python-requests-2.8.1-6.16 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND ctdb-4.6.16+git.124.aee309c5c18-3.32 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information glib2-2.54.3-4.7 is installed OR glib2-devel-32bit-2.54.3-4.7 is installed OR glib2-tools-32bit-2.54.3-4.7 is installed OR libgthread-2_0-0-32bit-2.54.3-4.7 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information python-Werkzeug-0.14.1-6.3 is installed OR python2-Werkzeug-0.14.1-6.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information libIlmImf-2_2-23-2.2.1-3.14 is installed OR libIlmImfUtil-2_2-23-2.2.1-3.14 is installed OR openexr-2.2.1-3.14 is installed OR openexr-devel-2.2.1-3.14 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 12 is installed AND Package Information libslurm29-16.05.8.1-5 is installed OR perl-slurm-16.05.8.1-5 is installed OR slurm-16.05.8.1-5 is installed OR slurm-auth-none-16.05.8.1-5 is installed OR slurm-devel-16.05.8.1-5 is installed OR slurm-doc-16.05.8.1-5 is installed OR slurm-lua-16.05.8.1-5 is installed OR slurm-munge-16.05.8.1-5 is installed OR slurm-pam_slurm-16.05.8.1-5 is installed OR slurm-plugins-16.05.8.1-5 is installed OR slurm-sched-wiki-16.05.8.1-5 is installed OR slurm-slurmdbd-16.05.8.1-5 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information pdsh-2.33-7.6 is installed OR pdsh-dshgroup-2.33-7.6 is installed OR pdsh-genders-2.33-7.6 is installed OR pdsh-machines-2.33-7.6 is installed OR pdsh-netgroup-2.33-7.6 is installed OR pdsh-slurm-2.33-7.6 is installed OR pdsh-slurm_18_08-2.33-7.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information cups154-1.5.4-2 is installed OR cups154-client-1.5.4-2 is installed OR cups154-filters-1.5.4-2 is installed OR cups154-libs-1.5.4-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND ntp-4.2.8p12-4.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.35-3.20 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-25.6 is installed OR kernel-default-livepatch-4.12.14-25.6 is installed OR kernel-livepatch-4_12_14-25_6-default-1-1.3 is installed OR kernel-livepatch-SLE15_Update_2-1-1.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_4-default-3-2 is installed OR kernel-livepatch-SLE15-SP1_Update_1-3-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information gio-branding-upstream-2.54.3-4.15 is installed OR glib2-2.54.3-4.15 is installed OR glib2-devel-32bit-2.54.3-4.15 is installed OR glib2-devel-static-2.54.3-4.15 is installed OR glib2-tools-32bit-2.54.3-4.15 is installed OR libgio-fam-2.54.3-4.15 is installed OR libgio-fam-32bit-2.54.3-4.15 is installed OR libgthread-2_0-0-32bit-2.54.3-4.15 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information libEMF-1.0.7-3.3 is installed OR libEMF-devel-1.0.7-3.3 is installed OR libEMF-utils-1.0.7-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 12 is installed AND python-requests-2.3.0-1 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.16 is installed OR kernel-azure-base-4.12.14-5.16 is installed OR kernel-azure-devel-4.12.14-5.16 is installed OR kernel-devel-azure-4.12.14-5.16 is installed OR kernel-source-azure-4.12.14-5.16 is installed OR kernel-syms-azure-4.12.14-5.16 is installed Definition Synopsis SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python-2.7.14-7.14 is installed OR python-base-2.7.14-7.14 is installed OR python-curses-2.7.14-7.14 is installed OR python-devel-2.7.14-7.14 is installed OR python-gdbm-2.7.14-7.14 is installed OR python-xml-2.7.14-7.14 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information xen-4.10.1_08-3.6 is installed OR xen-devel-4.10.1_08-3.6 is installed OR xen-tools-4.10.1_08-3.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information bind-9.11.2-12.11 is installed OR bind-chrootenv-9.11.2-12.11 is installed OR bind-doc-9.11.2-12.11 is installed Definition Synopsis SUSE Linux Enterprise Module for Toolchain 12 is installed AND Package Information cpp5-5.3.1+r233831-9 is installed OR gcc5-5.3.1+r233831-9 is installed OR gcc5-c++-5.3.1+r233831-9 is installed OR gcc5-fortran-5.3.1+r233831-9 is installed OR gcc5-info-5.3.1+r233831-9 is installed OR gcc5-locale-5.3.1+r233831-9 is installed OR libffi-devel-gcc5-5.3.1+r233831-9 is installed OR libstdc++6-devel-gcc5-5.3.1+r233831-9 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND apache2-mod_wsgi-4.4.13-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs8-8.15.0-3.11 is installed OR nodejs8-devel-8.15.0-3.11 is installed OR nodejs8-docs-8.15.0-3.11 is installed OR npm8-8.15.0-3.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information apache-commons-daemon-1.0.15-4 is installed OR apache-commons-daemon-javadoc-1.0.15-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information MozillaFirefox-38.4.0esr-51 is installed OR MozillaFirefox-translations-38.4.0esr-51 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information MozillaFirefox-52.2.0esr-108 is installed OR MozillaFirefox-translations-52.2.0esr-108 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND Package Information libopenssl-devel-1.0.1i-27.6.1 is installed OR openssl-1.0.1i-27.6.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND aaa_base-malloccheck-13.2+git20140911.61c1681-9 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND lua-devel-5.2.2-4.2 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information libixion-0.14.1-4.3 is installed OR libixion-0_14-0-0.14.1-4.3 is installed OR liborcus-0.14.1-3.3 is installed OR liborcus-0_14-0-0.14.1-3.3 is installed OR liborcus-devel-0.14.1-3.3 is installed OR myspell-af_ZA-20190423-3.9 is installed OR myspell-ar-20190423-3.9 is installed OR myspell-bg_BG-20190423-3.9 is installed OR myspell-bn_BD-20190423-3.9 is installed OR myspell-br_FR-20190423-3.9 is installed OR myspell-ca-20190423-3.9 is installed OR myspell-cs_CZ-20190423-3.9 is installed OR myspell-da_DK-20190423-3.9 is installed OR myspell-dictionaries-20190423-3.9 is installed OR myspell-el_GR-20190423-3.9 is installed OR myspell-et_EE-20190423-3.9 is installed OR myspell-fr_FR-20190423-3.9 is installed OR myspell-gl-20190423-3.9 is installed OR myspell-gu_IN-20190423-3.9 is installed OR myspell-he_IL-20190423-3.9 is installed OR myspell-hi_IN-20190423-3.9 is installed OR myspell-hr_HR-20190423-3.9 is installed OR myspell-it_IT-20190423-3.9 is installed OR myspell-lt_LT-20190423-3.9 is installed OR myspell-lv_LV-20190423-3.9 is installed OR myspell-nl_NL-20190423-3.9 is installed OR myspell-nn_NO-20190423-3.9 is installed OR myspell-pl_PL-20190423-3.9 is installed OR myspell-pt_PT-20190423-3.9 is installed OR myspell-si_LK-20190423-3.9 is installed OR myspell-sk_SK-20190423-3.9 is installed OR myspell-sl_SI-20190423-3.9 is installed OR myspell-sr-20190423-3.9 is installed OR myspell-sv_SE-20190423-3.9 is installed OR myspell-te_IN-20190423-3.9 is installed OR myspell-th_TH-20190423-3.9 is installed OR myspell-tr_TR-20190423-3.9 is installed OR myspell-uk_UA-20190423-3.9 is installed OR myspell-zu_ZA-20190423-3.9 is installed
BACK