OVAL Reference oval:org.opensuse.security:def:45365

Oval Definition:

oval:org.opensuse.security:def:45365

Revision Date:	2020-12-01	Version:	1
Title:	Security update for jasper (Moderate)
Description:	This update for jasper fixes the following issues: Security issues fixed: - CVE-2016-9262: Multiple integer overflows in the jas_realloc function in base/jas_malloc.c and mem_resize function in base/jas_stream.c allow remote attackers to cause a denial of service via a crafted image, which triggers use after free vulnerabilities. (bsc#1009994) - CVE-2016-9388: The ras_getcmap function in ras_dec.c allows remote attackers to cause a denial of service (assertion failure) via a crafted image file. (bsc#1010975) - CVE-2016-9389: The jpc_irct and jpc_iict functions in jpc_mct.c allow remote attackers to cause a denial of service (assertion failure). (bsc#1010968) - CVE-2016-9390: The jas_seq2d_create function in jas_seq.c allows remote attackers to cause a denial of service (assertion failure) via a crafted image file. (bsc#1010774) - CVE-2016-9391: The jpc_bitstream_getbits function in jpc_bs.c allows remote attackers to cause a denial of service (assertion failure) via a very large integer. (bsc#1010782) - CVE-2017-1000050: The jp2_encode function in jp2_enc.c allows remote attackers to cause a denial of service. (bsc#1047958) CVEs already fixed with previous update: - CVE-2016-9392: The calcstepsizes function in jpc_dec.c allows remote attackers to cause a denial of service (assertion failure) via a crafted file. (bsc#1010757) - CVE-2016-9393: The jpc_pi_nextrpcl function in jpc_t2cod.c allows remote attackers to cause a denial of service (assertion failure) via a crafted file. (bsc#1010766) - CVE-2016-9394: The jas_seq2d_create function in jas_seq.c allows remote attackers to cause a denial of service (assertion failure) via a crafted file. (bsc#1010756)
Family:	unix	Class:	patch
Status:		Reference(s):	1009994 1010756 1010757 1010766 1010774 1010782 1010968 1010975 1047958 1054413 1073879 1087200 1109465 1111622 1114837 1116574 1117473 1120374 1122668 1122983 1123482 1124525 1133719 1133810 1133925 1135350 1138301 1138303 1138734 1140868 1145604 1145665 1149323 1150137 1151021 1154162 1156146 1170771 1171477 1171930 1173948 1174538 1174543 1174955 1177155 761500 922448 929736 935252 945455 947357 961596 967128 CVE-2015-2296 CVE-2016-9262 CVE-2016-9388 CVE-2016-9389 CVE-2016-9390 CVE-2016-9391 CVE-2016-9392 CVE-2016-9393 CVE-2016-9394 CVE-2017-1000050 CVE-2017-18379 CVE-2018-13785 CVE-2018-15173 CVE-2018-16850 CVE-2018-18074 CVE-2018-18500 CVE-2018-18501 CVE-2018-18505 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3183 CVE-2018-3214 CVE-2019-10161 CVE-2019-10167 CVE-2019-11709 CVE-2019-11710 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11714 CVE-2019-11715 CVE-2019-11716 CVE-2019-11717 CVE-2019-11718 CVE-2019-11719 CVE-2019-11720 CVE-2019-11721 CVE-2019-11723 CVE-2019-11724 CVE-2019-11725 CVE-2019-11727 CVE-2019-11728 CVE-2019-11729 CVE-2019-11730 CVE-2019-11733 CVE-2019-11735 CVE-2019-11736 CVE-2019-11738 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11747 CVE-2019-11748 CVE-2019-11749 CVE-2019-11750 CVE-2019-11751 CVE-2019-11752 CVE-2019-11753 CVE-2019-14818 CVE-2019-14835 CVE-2019-16168 CVE-2019-2974 CVE-2019-9811 CVE-2019-9812 CVE-2020-10722 CVE-2020-12243 CVE-2020-15652 CVE-2020-15653 CVE-2020-15654 CVE-2020-15655 CVE-2020-15656 CVE-2020-15657 CVE-2020-15658 CVE-2020-15659 CVE-2020-15708 CVE-2020-25637 CVE-2020-6463 CVE-2020-6514 SUSE-SU-2018:0339-1 SUSE-SU-2018:4064-1 SUSE-SU-2019:1141-1 SUSE-SU-2019:2426-1 SUSE-SU-2019:2536-1 SUSE-SU-2019:2620-1 SUSE-SU-2020:0050-1 SUSE-SU-2020:1792-1 SUSE-SU-2020:3095-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 42.3 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Development Tools 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP3-BCL SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP4-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SP5 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND bubblewrap-0.2.0-lp150.1 is installed
Definition Synopsis
openSUSE Leap 42.3 is installed AND Package Information alsa-1.1.4.1-1 is installed OR alsa-devel-1.1.4.1-1 is installed OR libasound2-1.1.4.1-1 is installed OR libasound2-32bit-1.1.4.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND telepathy-gabble-0.7.10-2.19 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND libid3tag0-0.15.1b-182 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND ft2demos-2.5.5-7.5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND fetchmail-6.3.26-12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND bogofilter-1.2.4-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information avahi-0.6.32-30 is installed OR avahi-lang-0.6.32-30 is installed OR libavahi-client3-0.6.32-30 is installed OR libavahi-client3-32bit-0.6.32-30 is installed OR libavahi-common3-0.6.32-30 is installed OR libavahi-common3-32bit-0.6.32-30 is installed OR libavahi-core7-0.6.32-30 is installed OR libdns_sd-0.6.32-30 is installed OR libdns_sd-32bit-0.6.32-30 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information audit-devel-2.8.1-3 is installed OR libaudit1-2.8.1-3 is installed OR libaudit1-32bit-2.8.1-3 is installed OR libauparse0-2.8.1-3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information ghostscript-9.26a-3.15 is installed OR ghostscript-devel-9.26a-3.15 is installed OR ghostscript-x11-9.26a-3.15 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND libjbig2-32bit-2.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 is installed AND Package Information crash-7.2.1-3.2 is installed OR crash-devel-7.2.1-3.2 is installed OR crash-kmp-default-7.2.1_k4.12.14_23-3.2 is installed OR lttng-modules-2.10.0-5.2 is installed OR lttng-modules-kmp-default-2.10.0_k4.12.14_23-5.2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND Package Information git-2.26.1-3.25 is installed OR git-arch-2.26.1-3.25 is installed OR git-cvs-2.26.1-3.25 is installed OR git-daemon-2.26.1-3.25 is installed OR git-doc-2.26.1-3.25 is installed OR git-email-2.26.1-3.25 is installed OR git-gui-2.26.1-3.25 is installed OR git-svn-2.26.1-3.25 is installed OR git-web-2.26.1-3.25 is installed OR gitk-2.26.1-3.25 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information kernel-default-4.12.14-150.38 is installed OR reiserfs-kmp-default-4.12.14-150.38 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_28-default-4-2 is installed OR kernel-livepatch-SLE15_Update_8-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-195-default-3-7 is installed OR kernel-livepatch-SLE15-SP1_Update_0-3-7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information java-11-openjdk-11.0.3.0-3.21 is installed OR java-11-openjdk-accessibility-11.0.3.0-3.21 is installed OR java-11-openjdk-demo-11.0.3.0-3.21 is installed OR java-11-openjdk-devel-11.0.3.0-3.21 is installed OR java-11-openjdk-headless-11.0.3.0-3.21 is installed OR java-11-openjdk-javadoc-11.0.3.0-3.21 is installed OR java-11-openjdk-jmods-11.0.3.0-3.21 is installed OR java-11-openjdk-src-11.0.3.0-3.21 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libtasn1-4.13-4.5 is installed OR libtasn1-devel-32bit-4.13-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND grub2-x86_64-xen-2.02-17 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information libmariadb-devel-3.1.2-3.9 is installed OR libmariadb_plugins-3.1.2-3.9 is installed OR libmysqld-devel-10.2.25-3.17 is installed OR libmysqld19-10.2.25-3.17 is installed OR mariadb-10.2.25-3.17 is installed OR mariadb-client-10.2.25-3.17 is installed OR mariadb-connector-c-3.1.2-3.9 is installed OR mariadb-errormessages-10.2.25-3.17 is installed OR mariadb-tools-10.2.25-3.17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libspice-server1-0.12.7-10.3 is installed OR spice-0.12.7-10.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND ucode-intel-20180425-13.20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libvirt-2.0.0-27.42 is installed OR libvirt-client-2.0.0-27.42 is installed OR libvirt-daemon-2.0.0-27.42 is installed OR libvirt-daemon-config-network-2.0.0-27.42 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed OR libvirt-daemon-driver-network-2.0.0-27.42 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed OR libvirt-daemon-hooks-2.0.0-27.42 is installed OR libvirt-daemon-lxc-2.0.0-27.42 is installed OR libvirt-daemon-qemu-2.0.0-27.42 is installed OR libvirt-daemon-xen-2.0.0-27.42 is installed OR libvirt-doc-2.0.0-27.42 is installed OR libvirt-lock-sanlock-2.0.0-27.42 is installed OR libvirt-nss-2.0.0-27.42 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information perl-5.18.2-12.14 is installed OR perl-32bit-5.18.2-12.14 is installed OR perl-base-5.18.2-12.14 is installed OR perl-doc-5.18.2-12.14 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND jasper-1.900.14-195.5 is installed OR libjasper1-1.900.14-195.5 is installed OR libjasper1-32bit-1.900.14-195.5 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND jasper-1.900.14-195.5 is installed OR libjasper1-1.900.14-195.5 is installed OR libjasper1-32bit-1.900.14-195.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cups-1.7.5-19 is installed OR cups-client-1.7.5-19 is installed OR cups-libs-1.7.5-19 is installed OR cups-libs-32bit-1.7.5-19 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-BCL is installed AND python-certifi-2018.4.16-3.6 is installed OR python-chardet-3.0.4-5.6 is installed OR python-urllib3-1.22-3.20 is installed OR python3-certifi-2018.4.16-3.6 is installed OR python3-chardet-3.0.4-5.6 is installed OR python3-requests-2.20.1-5 is installed OR python3-urllib3-1.22-3.20 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-BCL is installed AND python-certifi-2018.4.16-3.6 is installed OR python-chardet-3.0.4-5.6 is installed OR python-urllib3-1.22-3.20 is installed OR python3-certifi-2018.4.16-3.6 is installed OR python3-chardet-3.0.4-5.6 is installed OR python3-requests-2.20.1-5 is installed OR python3-urllib3-1.22-3.20 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND kgraft-patch-4_4_162-94_69-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_21-6-2 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS is installed AND kgraft-patch-4_4_162-94_69-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_21-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_176-94_88-default-3-2 is installed OR kgraft-patch-SLE12-SP3_Update_24-3-2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND libecpg6-10.6-1.6 is installed OR libpq5-10.6-1.6 is installed OR libpq5-32bit-10.6-1.6 is installed OR postgresql10-10.6-1.6 is installed OR postgresql10-contrib-10.6-1.6 is installed OR postgresql10-docs-10.6-1.6 is installed OR postgresql10-libs-10.6-1.6 is installed OR postgresql10-server-10.6-1.6 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA is installed AND libecpg6-10.6-1.6 is installed OR libpq5-10.6-1.6 is installed OR libpq5-32bit-10.6-1.6 is installed OR postgresql10-10.6-1.6 is installed OR postgresql10-contrib-10.6-1.6 is installed OR postgresql10-docs-10.6-1.6 is installed OR postgresql10-libs-10.6-1.6 is installed OR postgresql10-server-10.6-1.6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libwsman1-2.4.11-21.8 is installed OR libwsman_clientpp1-2.4.11-21.8 is installed OR openwsman-2.4.11-21.8 is installed OR openwsman-server-2.4.11-21.8 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND libopenssl1_1-1.1.1b-2.12 is installed OR libopenssl1_1-32bit-1.1.1b-2.12 is installed OR openssl-1_1-1.1.1b-2.12 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND libopenssl1_1-1.1.1b-2.12 is installed OR libopenssl1_1-32bit-1.1.1b-2.12 is installed OR openssl-1_1-1.1.1b-2.12 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND libpython3_4m1_0-3.4.10-25.52 is installed OR python3-3.4.10-25.52 is installed OR python3-base-3.4.10-25.52 is installed OR python3-curses-3.4.10-25.52 is installed OR python3-devel-3.4.10-25.52 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4-LTSS is installed AND libpython3_4m1_0-3.4.10-25.52 is installed OR python3-3.4.10-25.52 is installed OR python3-base-3.4.10-25.52 is installed OR python3-curses-3.4.10-25.52 is installed OR python3-devel-3.4.10-25.52 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND sysstat-12.0.2-10.27 is installed OR sysstat-isag-12.0.2-10.27 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND sysstat-12.0.2-10.27 is installed OR sysstat-isag-12.0.2-10.27 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libmaxminddb-1.4.2-1.3 is installed OR libmaxminddb-devel-1.4.2-1.3 is installed OR libmaxminddb0-1.4.2-1.3 is installed OR libmaxminddb0-32bit-1.4.2-1.3 is installed OR libspandsp2-0.0.6-3.2 is installed OR libwireshark13-3.2.2-3.35 is installed OR libwiretap10-3.2.2-3.35 is installed OR libwsutil11-3.2.2-3.35 is installed OR mmdblookup-1.4.2-1.3 is installed OR spandsp-0.0.6-3.2 is installed OR wireshark-3.2.2-3.35 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information rmt-server-2.5.2-3.26 is installed OR rmt-server-config-2.5.2-3.26 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information flash-player-11.2.202.451-77 is installed OR flash-player-gnome-11.2.202.451-77 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information bash-4.2-82 is installed OR bash-lang-4.2-82 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information libuuid-devel-2.28-42 is installed OR util-linux-2.28-42 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information kernel-default-4.4.138-94.39 is installed OR kernel-default-extra-4.4.138-94.39 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND Package Information kernel-default-4.12.14-95.40 is installed OR kernel-default-extra-4.12.14-95.40 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND Package Information libmysqlclient_r18-10.0.40.2-2.12 is installed OR libmysqlclient_r18-32bit-10.0.40.2-2.12 is installed OR mariadb-100-10.0.40.2-2.12 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information MozillaThunderbird-60.7.0-3.36 is installed OR MozillaThunderbird-translations-common-60.7.0-3.36 is installed OR MozillaThunderbird-translations-other-60.7.0-3.36 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.10 is installed OR kernel-default-extra-4.12.14-197.10 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information glibc-2.22-62.22 is installed OR glibc-32bit-2.22-62.22 is installed OR glibc-devel-2.22-62.22 is installed OR glibc-devel-32bit-2.22-62.22 is installed OR glibc-html-2.22-62.22 is installed OR glibc-i18ndata-2.22-62.22 is installed OR glibc-info-2.22-62.22 is installed OR glibc-locale-2.22-62.22 is installed OR glibc-locale-32bit-2.22-62.22 is installed OR glibc-profile-2.22-62.22 is installed OR glibc-profile-32bit-2.22-62.22 is installed OR nscd-2.22-62.22 is installed

BACK