OVAL Reference oval:org.opensuse.security:def:45147

Oval Definition:

oval:org.opensuse.security:def:45147

Revision Date:	2020-12-01	Version:	1
Title:	Security update for ImageMagick (Important)
Description:	This update for ImageMagick fixes the following issues: Security issues fixed: - CVE-2017-9439: A memory leak was found in the function ReadPDBImage incoders/pdb.c (bsc#1042826) - CVE-2017-9440: A memory leak was found in the function ReadPSDChannelin coders/psd.c (bsc#1042812) - CVE-2017-9501: An assertion failure could cause a denial of service via a crafted file (bsc#1043289) - CVE-2017-11403: ReadMNGImage function in coders/png.c has an out-of-order CloseBlob call, resulting in a use-after-free via acrafted file (bsc#1049072)
Family:	unix	Class:	patch
Status:		Reference(s):	1020950 1024749 1042812 1042826 1043289 1045460 1049072 1050469 1061305 1077330 1094290 1094291 1106383 1111647 1133495 1135715 1139459 1148931 1151377 1151506 1153072 1154043 1155574 1156482 1159478 1159479 1159482 1159486 1159814 1160467 1160468 1162108 1162610 1163019 1163927 1163959 1163969 1165787 1170446 1173594 1174543 1176410 1177143 CVE-2016-7586 CVE-2016-7589 CVE-2016-7592 CVE-2016-7599 CVE-2016-7623 CVE-2016-7632 CVE-2016-7635 CVE-2016-7639 CVE-2016-7641 CVE-2016-7645 CVE-2016-7652 CVE-2016-7654 CVE-2016-7656 CVE-2017-11403 CVE-2017-14988 CVE-2017-2350 CVE-2017-2354 CVE-2017-2355 CVE-2017-2356 CVE-2017-2362 CVE-2017-2363 CVE-2017-2364 CVE-2017-2365 CVE-2017-2366 CVE-2017-2369 CVE-2017-2371 CVE-2017-2373 CVE-2017-2496 CVE-2017-2510 CVE-2017-2538 CVE-2017-2539 CVE-2017-7018 CVE-2017-7030 CVE-2017-7034 CVE-2017-7037 CVE-2017-7039 CVE-2017-7046 CVE-2017-7048 CVE-2017-7055 CVE-2017-7056 CVE-2017-7061 CVE-2017-7064 CVE-2017-9439 CVE-2017-9440 CVE-2017-9501 CVE-2018-0739 CVE-2018-12086 CVE-2018-18227 CVE-2019-14553 CVE-2019-14559 CVE-2019-14563 CVE-2019-14575 CVE-2019-14896 CVE-2019-14897 CVE-2019-18388 CVE-2019-18389 CVE-2019-18390 CVE-2019-18391 CVE-2019-8595 CVE-2019-8607 CVE-2019-8615 CVE-2019-8644 CVE-2019-8649 CVE-2019-8658 CVE-2019-8666 CVE-2019-8669 CVE-2019-8671 CVE-2019-8672 CVE-2019-8673 CVE-2019-8676 CVE-2019-8677 CVE-2019-8678 CVE-2019-8679 CVE-2019-8680 CVE-2019-8681 CVE-2019-8683 CVE-2019-8684 CVE-2019-8686 CVE-2019-8687 CVE-2019-8688 CVE-2019-8689 CVE-2019-8690 CVE-2020-10188 CVE-2020-1712 CVE-2020-25219 CVE-2020-26154 CVE-2020-8597 CVE-2020-8597 CVE-2020-8608 CVE-2020-8695 CVE-2020-8698 SUSE-SU-2017:2199-1 SUSE-SU-2017:2933-1 SUSE-SU-2019:2345-2 SUSE-SU-2020:0490-1 SUSE-SU-2020:1533-1 SUSE-SU-2020:2171-1 SUSE-SU-2020:2900-1 SUSE-SU-2020:3279-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 42.3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP3-BCL SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP3-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP4-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP4-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information aaa_base-84.87+git20180409.04c9dae-lp150.1 is installed OR aaa_base-extras-84.87+git20180409.04c9dae-lp150.1 is installed
Definition Synopsis
openSUSE Leap 42.3 is installed AND Package Information git-2.13.1-1 is installed OR git-core-2.13.1-1 is installed OR git-cvs-2.13.1-1 is installed OR git-daemon-2.13.1-1 is installed OR git-email-2.13.1-1 is installed OR git-gui-2.13.1-1 is installed OR git-svn-2.13.1-1 is installed OR git-web-2.13.1-1 is installed OR gitk-2.13.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-1 is installed OR aaa_base-extras-13.2+git20140911.61c1681-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND busybox-1.21.1-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND clamav-0.99.2-32 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information ffmpeg-3.4.2-4.17 is installed OR libavdevice57-3.4.2-4.17 is installed OR libavfilter6-3.4.2-4.17 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information dhcp-4.3.5-4 is installed OR dhcp-client-4.3.5-4 is installed OR dhcp-devel-4.3.5-4 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information amavisd-new-2.11.1-6.3 is installed OR amavisd-new-docs-2.11.1-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information MozillaFirefox-52.9.0esr-3.7 is installed OR MozillaFirefox-devel-52.9.0esr-3.7 is installed OR MozillaFirefox-translations-common-52.9.0esr-3.7 is installed OR MozillaFirefox-translations-other-52.9.0esr-3.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information libcdio++0-0.94-6.6 is installed OR libcdio-devel-0.94-6.6 is installed OR libcdio16-0.94-6.6 is installed OR libiso9660-10-0.94-6.6 is installed OR libudf0-0.94-6.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 is installed AND Package Information ant-1.9.10-3.3 is installed OR ant-antlr-1.9.10-3.3 is installed OR ant-apache-bcel-1.9.10-3.3 is installed OR ant-apache-bsf-1.9.10-3.3 is installed OR ant-apache-log4j-1.9.10-3.3 is installed OR ant-apache-oro-1.9.10-3.3 is installed OR ant-apache-regexp-1.9.10-3.3 is installed OR ant-apache-resolver-1.9.10-3.3 is installed OR ant-commons-logging-1.9.10-3.3 is installed OR ant-javamail-1.9.10-3.3 is installed OR ant-jdepend-1.9.10-3.3 is installed OR ant-jmf-1.9.10-3.3 is installed OR ant-junit-1.9.10-3.3 is installed OR ant-manual-1.9.10-3.3 is installed OR ant-scripts-1.9.10-3.3 is installed OR ant-swing-1.9.10-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information python-numpy_1_16_1-gnu-hpc-1.16.1-4.8 is installed OR python2-numpy-gnu-hpc-1.16.1-4.8 is installed OR python2-numpy-gnu-hpc-devel-1.16.1-4.8 is installed OR python3-numpy-gnu-hpc-1.16.1-4.8 is installed OR python3-numpy-gnu-hpc-devel-1.16.1-4.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.35-3.20 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_27-default-6-2 is installed OR kernel-livepatch-SLE15_Update_12-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-195-default-3-7 is installed OR kernel-livepatch-SLE15-SP1_Update_0-3-7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information glibc-2.26-13.24 is installed OR glibc-html-2.26-13.24 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libIlmImf-2_2-23-32bit-2.2.1-3.6 is installed OR libIlmImfUtil-2_2-23-32bit-2.2.1-3.6 is installed OR openexr-2.2.1-3.6 is installed OR openexr-doc-2.2.1-3.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND rarpd-s20161105-6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information subversion-1.10.6-3.6 is installed OR subversion-server-1.10.6-3.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information apache2-2.4.23-29.6 is installed OR apache2-doc-2.4.23-29.6 is installed OR apache2-example-pages-2.4.23-29.6 is installed OR apache2-prefork-2.4.23-29.6 is installed OR apache2-utils-2.4.23-29.6 is installed OR apache2-worker-2.4.23-29.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information res-signingkeys-3.0.38-52.26 is installed OR smt-3.0.38-52.26 is installed OR smt-support-3.0.38-52.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information ghostscript-9.26-23.16 is installed OR ghostscript-x11-9.26-23.16 is installed OR libspectre-0.2.7-12.4 is installed OR libspectre1-0.2.7-12.4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_35-default-10-2 is installed OR kgraft-patch-SLE12-SP2_Update_12-10-2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND ImageMagick-6.8.8.1-71.5 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.5 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.5 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND ImageMagick-6.8.8.1-71.5 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.5 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information augeas-1.2.0-15 is installed OR augeas-lenses-1.2.0-15 is installed OR libaugeas0-1.2.0-15 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-BCL is installed AND libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed OR webkit2gtk3-2.24.4-2.47 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-BCL is installed AND libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed OR webkit2gtk3-2.24.4-2.47 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND kgraft-patch-4_4_175-94_79-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-8-2 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS is installed AND kgraft-patch-4_4_175-94_79-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_23-8-2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND xen-4.9.4_10-3.71 is installed OR xen-doc-html-4.9.4_10-3.71 is installed OR xen-libs-4.9.4_10-3.71 is installed OR xen-libs-32bit-4.9.4_10-3.71 is installed OR xen-tools-4.9.4_10-3.71 is installed OR xen-tools-domU-4.9.4_10-3.71 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-LTSS is installed AND xen-4.9.4_10-3.71 is installed OR xen-doc-html-4.9.4_10-3.71 is installed OR xen-libs-4.9.4_10-3.71 is installed OR xen-libs-32bit-4.9.4_10-3.71 is installed OR xen-tools-4.9.4_10-3.71 is installed OR xen-tools-domU-4.9.4_10-3.71 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND ovmf-2017+git1492060560.b6d11d7c46-4.12 is installed OR ovmf-tools-2017+git1492060560.b6d11d7c46-4.12 is installed OR qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-4.12 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA is installed AND ovmf-2017+git1492060560.b6d11d7c46-4.12 is installed OR ovmf-tools-2017+git1492060560.b6d11d7c46-4.12 is installed OR qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-4.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ovmf-2017+git1492060560.b6d11d7c46-4.12 is installed OR ovmf-tools-2017+git1492060560.b6d11d7c46-4.12 is installed OR qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-4.12 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND ghostscript-9.26a-23.19 is installed OR ghostscript-x11-9.26a-23.19 is installed OR libspectre-0.2.7-12.6 is installed OR libspectre1-0.2.7-12.6 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND ghostscript-9.26a-23.19 is installed OR ghostscript-x11-9.26a-23.19 is installed OR libspectre-0.2.7-12.6 is installed OR libspectre1-0.2.7-12.6 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND libpython3_4m1_0-3.4.10-25.52 is installed OR python3-3.4.10-25.52 is installed OR python3-base-3.4.10-25.52 is installed OR python3-curses-3.4.10-25.52 is installed OR python3-devel-3.4.10-25.52 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4-ESPOS is installed AND libpython3_4m1_0-3.4.10-25.52 is installed OR python3-3.4.10-25.52 is installed OR python3-base-3.4.10-25.52 is installed OR python3-curses-3.4.10-25.52 is installed OR python3-devel-3.4.10-25.52 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND libX11-1.6.2-12.12 is installed OR libX11-6-1.6.2-12.12 is installed OR libX11-6-32bit-1.6.2-12.12 is installed OR libX11-data-1.6.2-12.12 is installed OR libX11-xcb1-1.6.2-12.12 is installed OR libX11-xcb1-32bit-1.6.2-12.12 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4-LTSS is installed AND libX11-1.6.2-12.12 is installed OR libX11-6-1.6.2-12.12 is installed OR libX11-6-32bit-1.6.2-12.12 is installed OR libX11-data-1.6.2-12.12 is installed OR libX11-xcb1-1.6.2-12.12 is installed OR libX11-xcb1-32bit-1.6.2-12.12 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND ovmf-2017+git1510945757.b2662641d5-3.26 is installed OR ovmf-tools-2017+git1510945757.b2662641d5-3.26 is installed OR qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-3.26 is installed OR qemu-uefi-aarch64-2017+git1510945757.b2662641d5-3.26 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND ovmf-2017+git1510945757.b2662641d5-3.26 is installed OR ovmf-tools-2017+git1510945757.b2662641d5-3.26 is installed OR qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-3.26 is installed OR qemu-uefi-aarch64-2017+git1510945757.b2662641d5-3.26 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information kernel-default-4.4.103-6.33 is installed OR kernel-default-extra-4.4.103-6.33 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND Package Information libntfs-3g84-2013.1.13-5.3 is installed OR ntfs-3g-2013.1.13-5.3 is installed OR ntfs-3g_ntfsprogs-2013.1.13-5.3 is installed OR ntfsprogs-2013.1.13-5.3 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information colord-1.4.2-1 is installed OR colord-gtk-lang-0.1.26-1 is installed OR colord-lang-1.4.2-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information MozillaFirefox-60.7.0-109.72 is installed OR MozillaFirefox-devel-60.7.0-109.72 is installed OR MozillaFirefox-translations-common-60.7.0-109.72 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed

BACK