OVAL Reference oval:org.opensuse.security:def:45537

Oval Definition:

oval:org.opensuse.security:def:45537

Revision Date:	2020-12-01	Version:	1
Title:	Security update for libjpeg-turbo (Moderate)
Description:	This update for libjpeg-turbo fixes the following issues: The following security vulnerabilities were addressed: - CVE-2018-14498: Fixed a heap-based buffer over read in get_8bit_row function which could allow to an attacker to cause denial of service (bsc#1128712). - CVE-2018-11813: Fixed the end-of-file mishandling in read_pixel in rdtarga.c, which allowed remote attackers to cause a denial-of-service via crafted JPG files due to a large loop (bsc#1096209) - CVE-2018-1152: Fixed a denial of service in start_input_bmp() rdbmp.c caused by a divide by zero when processing a crafted BMP image (bsc#1098155)
Family:	unix	Class:	patch
Status:		Reference(s):	1027519 1044638 1050129 1054413 1055478 1070737 1073879 1082318 1096209 1098155 1101820 1102840 1105592 1106989 1107604 1107609 1107612 1107616 1107619 1108282 1108283 1111622 1111657 1117463 1117464 1117465 1122668 1123823 1123828 1123832 1126140 1126141 1126192 1126195 1126196 1126197 1126198 1126201 1126768 1127400 1128712 1128828 1133375 1133818 1138748 1142614 1143797 1146874 1149792 1149813 1160039 1160467 1160468 1170601 1171863 1171864 1171866 1172205 1172906 1172935 1173197 1176496 1176764 1177158 761500 922448 929736 935252 945455 947357 961596 967128 981848 CVE-2013-7490 CVE-2015-2296 CVE-2017-11532 CVE-2017-9670 CVE-2018-10903 CVE-2018-1152 CVE-2018-11813 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-14498 CVE-2018-16413 CVE-2018-16640 CVE-2018-16642 CVE-2018-16643 CVE-2018-16644 CVE-2018-16645 CVE-2018-16749 CVE-2018-16750 CVE-2018-18074 CVE-2018-19490 CVE-2018-19491 CVE-2018-19492 CVE-2018-20748 CVE-2018-20749 CVE-2018-20750 CVE-2019-11091 CVE-2019-12068 CVE-2019-14378 CVE-2019-14896 CVE-2019-14897 CVE-2019-15890 CVE-2019-17340 CVE-2019-17341 CVE-2019-17342 CVE-2019-17343 CVE-2019-17344 CVE-2019-17345 CVE-2019-17346 CVE-2019-17347 CVE-2019-17348 CVE-2019-20919 CVE-2019-8375 CVE-2019-9893 CVE-2019-9928 CVE-2020-0543 CVE-2020-10543 CVE-2020-10878 CVE-2020-12723 CVE-2020-14093 CVE-2020-14154 CVE-2020-14355 CVE-2020-14954 SUSE-SU-2019:0313-1 SUSE-SU-2019:1030-1 SUSE-SU-2019:1111-1 SUSE-SU-2019:1600-1 SUSE-SU-2020:1632-1 SUSE-SU-2020:1792-1 SUSE-SU-2020:1794-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 42.3 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Public Cloud 15 SP1 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-LTSS SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP4-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SP5 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND hardlink-1.0+git.e66999f-lp150.1 is installed
Definition Synopsis
openSUSE Leap 42.3 is installed AND lftp-4.7.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information libvdpau-0.4.1-16.20 is installed OR libvdpau1-0.4.1-16.20 is installed OR libvdpau1-32bit-0.4.1-16.20 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information bind-libs-9.9.5P1-1 is installed OR bind-libs-32bit-9.9.5P1-1 is installed OR bind-utils-9.9.5P1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information gdk-pixbuf-loader-rsvg-2.40.2-1 is installed OR librsvg-2-2-2.40.2-1 is installed OR librsvg-2-2-32bit-2.40.2-1 is installed OR rsvg-view-2.40.2-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information gnome-online-accounts-3.20.4-7 is installed OR gnome-online-accounts-lang-3.20.4-7 is installed OR libgoa-1_0-0-3.20.4-7 is installed OR libgoa-1_0-0-32bit-3.20.4-7 is installed OR libgoa-backend-1_0-1-3.20.4-7 is installed OR typelib-1_0-Goa-1_0-3.20.4-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information cups-1.7.5-19 is installed OR cups-client-1.7.5-19 is installed OR cups-libs-1.7.5-19 is installed OR cups-libs-32bit-1.7.5-19 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information cyrus-sasl-2.1.26-8.7 is installed OR cyrus-sasl-32bit-2.1.26-8.7 is installed OR cyrus-sasl-crammd5-2.1.26-8.7 is installed OR cyrus-sasl-crammd5-32bit-2.1.26-8.7 is installed OR cyrus-sasl-digestmd5-2.1.26-8.7 is installed OR cyrus-sasl-digestmd5-32bit-2.1.26-8.7 is installed OR cyrus-sasl-gssapi-2.1.26-8.7 is installed OR cyrus-sasl-gssapi-32bit-2.1.26-8.7 is installed OR cyrus-sasl-plain-2.1.26-8.7 is installed OR cyrus-sasl-plain-32bit-2.1.26-8.7 is installed OR cyrus-sasl-saslauthd-2.1.26-8.7 is installed OR libsasl2-3-2.1.26-8.7 is installed OR libsasl2-3-32bit-2.1.26-8.7 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information python-Werkzeug-0.12.2-3.3 is installed OR python2-Werkzeug-0.12.2-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information libXRes1-1.2.0-1 is installed OR libXres-devel-1.2.0-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information apr-util-devel-1.6.1-4.3 is installed OR libapr-util1-1.6.1-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information gdm-3.26.2.1-11 is installed OR gdm-devel-3.26.2.1-11 is installed OR gdm-lang-3.26.2.1-11 is installed OR gdmflexiserver-3.26.2.1-11 is installed OR libgdm1-3.26.2.1-11 is installed OR typelib-1_0-Gdm-1_0-3.26.2.1-11 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.20-3.6 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-3.6 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.20-3.6 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-3.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_3-default-11-2 is installed OR kernel-livepatch-SLE15_Update_1-11-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.4 is installed OR kernel-default-livepatch-4.12.14-197.4 is installed OR kernel-default-livepatch-devel-4.12.14-197.4 is installed OR kernel-livepatch-4_12_14-197_4-default-1-3.3 is installed OR kernel-livepatch-SLE15-SP1_Update_1-1-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information MozillaFirefox-60.4.0-3.21 is installed OR MozillaFirefox-branding-upstream-60.4.0-3.21 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libgcrypt-1.8.2-8.12 is installed OR libgcrypt-cavs-1.8.2-8.12 is installed OR libgcrypt-devel-32bit-1.8.2-8.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information cloud-init-19.4-5.24 is installed OR cloud-init-config-suse-19.4-5.24 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed AND python3-keystoneclient-3.15.0-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python-ldb-1.4.6-1 is installed OR python-ldb-devel-1.4.6-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information xen-4.10.2_04-3.9 is installed OR xen-devel-4.10.2_04-3.9 is installed OR xen-tools-4.10.2_04-3.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND minicom-2.7-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information qemu-2.6.2-41.49 is installed OR qemu-block-curl-2.6.2-41.49 is installed OR qemu-block-rbd-2.6.2-41.49 is installed OR qemu-block-ssh-2.6.2-41.49 is installed OR qemu-guest-agent-2.6.2-41.49 is installed OR qemu-ipxe-1.0.0-41.49 is installed OR qemu-kvm-2.6.2-41.49 is installed OR qemu-lang-2.6.2-41.49 is installed OR qemu-seabios-1.9.1-41.49 is installed OR qemu-sgabios-8-41.49 is installed OR qemu-tools-2.6.2-41.49 is installed OR qemu-vgabios-1.9.1-41.49 is installed OR qemu-x86-2.6.2-41.49 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND yast2-smt-3.0.14-17.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_67-default-5-2 is installed OR kgraft-patch-SLE12-SP2_Update_19-5-2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND libjpeg-turbo-1.5.3-31.14 is installed OR libjpeg62-62.2.0-31.14 is installed OR libjpeg62-32bit-62.2.0-31.14 is installed OR libjpeg62-turbo-1.5.3-31.14 is installed OR libjpeg8-8.1.2-31.14 is installed OR libjpeg8-32bit-8.1.2-31.14 is installed OR libturbojpeg0-8.1.2-31.14 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND libjpeg-turbo-1.5.3-31.14 is installed OR libjpeg62-62.2.0-31.14 is installed OR libjpeg62-32bit-62.2.0-31.14 is installed OR libjpeg62-turbo-1.5.3-31.14 is installed OR libjpeg8-8.1.2-31.14 is installed OR libjpeg8-32bit-8.1.2-31.14 is installed OR libturbojpeg0-8.1.2-31.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND libquicktime0-1.2.4-10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND libseccomp-2.4.1-11.3 is installed OR libseccomp2-2.4.1-11.3 is installed OR libseccomp2-32bit-2.4.1-11.3 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-ESPOS is installed AND libseccomp-2.4.1-11.3 is installed OR libseccomp2-2.4.1-11.3 is installed OR libseccomp2-32bit-2.4.1-11.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_140-94_42-default-10-2 is installed OR kgraft-patch-SLE12-SP3_Update_15-10-2 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND ImageMagick-6.8.8.1-71.79 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.79 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.79 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP3-TERADATA is installed AND ImageMagick-6.8.8.1-71.79 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.79 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.79 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND perl-Archive-Zip-1.34-3.3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4 is installed AND libjavascriptcoregtk-4_0-18-2.24.0-2.38 is installed OR libwebkit2gtk-4_0-37-2.24.0-2.38 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.0-2.38 is installed OR typelib-1_0-WebKit2-4_0-2.24.0-2.38 is installed OR webkit2gtk-4_0-injected-bundles-2.24.0-2.38 is installed OR webkit2gtk3-2.24.0-2.38 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND libjavascriptcoregtk-4_0-18-2.24.0-2.38 is installed OR libwebkit2gtk-4_0-37-2.24.0-2.38 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.0-2.38 is installed OR typelib-1_0-WebKit2-4_0-2.24.0-2.38 is installed OR webkit2gtk-4_0-injected-bundles-2.24.0-2.38 is installed OR webkit2gtk3-2.24.0-2.38 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND xrdp-0.9.0~git.1456906198.f422461-21.27 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP4-LTSS is installed AND xrdp-0.9.0~git.1456906198.f422461-21.27 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP5 is installed AND xen-4.12.1_10-3.8 is installed OR xen-doc-html-4.12.1_10-3.8 is installed OR xen-libs-4.12.1_10-3.8 is installed OR xen-libs-32bit-4.12.1_10-3.8 is installed OR xen-tools-4.12.1_10-3.8 is installed OR xen-tools-domU-4.12.1_10-3.8 is installed OR Package Information SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed AND xen-4.12.1_10-3.8 is installed OR xen-doc-html-4.12.1_10-3.8 is installed OR xen-libs-4.12.1_10-3.8 is installed OR xen-libs-32bit-4.12.1_10-3.8 is installed OR xen-tools-4.12.1_10-3.8 is installed OR xen-tools-domU-4.12.1_10-3.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information tomcat-9.0.35-3.52 is installed OR tomcat-admin-webapps-9.0.35-3.52 is installed OR tomcat-el-3_0-api-9.0.35-3.52 is installed OR tomcat-jsp-2_3-api-9.0.35-3.52 is installed OR tomcat-lib-9.0.35-3.52 is installed OR tomcat-servlet-4_0-api-9.0.35-3.52 is installed OR tomcat-webapps-9.0.35-3.52 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information rmt-server-2.5.7-3.31 is installed OR rmt-server-config-2.5.7-3.31 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND pidgin-otr-4.0.0-8 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND bogofilter-1.2.4-5 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information gstreamer-plugins-base-1.8.3-9 is installed OR libgstfft-1_0-0-32bit-1.8.3-9 is installed OR typelib-1_0-GstAudio-1_0-1.8.3-9 is installed OR typelib-1_0-GstPbutils-1_0-1.8.3-9 is installed OR typelib-1_0-GstTag-1_0-1.8.3-9 is installed OR typelib-1_0-GstVideo-1_0-1.8.3-9 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP3 is installed AND Package Information ImageMagick-6.8.8.1-71.17 is installed OR libMagick++-6_Q16-3-6.8.8.1-71.17 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-71.17 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP4 is installed AND Package Information libwebkit2gtk3-lang-2.22.4-2.29 is installed OR webkit2gtk3-2.22.4-2.29 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP5 is installed AND Package Information kernel-default-4.12.14-122.26 is installed OR kernel-default-extra-4.12.14-122.26 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.25 is installed OR kernel-default-extra-4.12.14-25.25 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information libavcodec-devel-3.4.2-4.12 is installed OR libavformat-devel-3.4.2-4.12 is installed OR libavformat57-3.4.2-4.12 is installed OR libavresample-devel-3.4.2-4.12 is installed OR libavresample3-3.4.2-4.12 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND ansible-2.4.6.0-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information crowbar-5.0+git.1528696845.81a7b5d0-3.3 is installed OR crowbar-core-5.0+git.1533887407.6e9b0412d-3.8 is installed OR crowbar-core-branding-upstream-5.0+git.1533887407.6e9b0412d-3.8 is installed OR crowbar-devel-5.0+git.1528696845.81a7b5d0-3.3 is installed OR crowbar-ha-5.0+git.1530177874.35b9099-3.3 is installed OR crowbar-init-5.0+git.1520420379.d5bbb35-3.3 is installed OR crowbar-openstack-5.0+git.1534167599.d325ef804-4.8 is installed OR crowbar-ui-1.2.0+git.1533844061.4ac8e723-3.3 is installed

BACK