OVAL Reference oval:org.opensuse.security:def:50257

Oval Definition:

oval:org.opensuse.security:def:50257

Revision Date:	2020-12-01	Version:	1
Title:	Security update for cairo (Moderate)
Description:	This update for cairo fixes the following issues: The following security vulnerability was addressed: - CVE-2017-9814: Fixed and out-of-bounds read in cairo-truetype-subset.c by replacing the malloc implementation with _cairo_malloc and checking the size before memory allocation (bsc#1049092)
Family:	unix	Class:	patch
Status:		Reference(s):	1049092 1055186 1065600 1065729 1081516 1082318 1094244 1102062 1102068 1102073 1102604 1104662 1105443 1106420 1108086 1108395 1112178 1112182 1113956 1117058 1118952 1120813 1123642 1124667 1125665 1126325 1127458 1130129 1133297 1137835 1139959 1141688 1146111 1146115 1146123 1152856 1153165 1154212 1154217 1154366 1156402 1167527 1168468 1168994 1169972 1171252 1171254 1171675 1171688 1171742 1172004 1173115 1173477 1173812 1174463 1174570 1174899 1175228 1175749 1175882 1176011 1176022 1176038 1176235 1176242 1176278 1176316 1176317 1176318 1176319 1176320 1176321 1176381 1176395 1176410 1176423 1176482 1176507 1176536 1176544 1176545 1176546 1176548 1176659 1176698 1176699 1176700 1176721 1176722 1176725 1176732 1176788 1176789 1176869 1176877 1176935 1176950 1176962 1176966 1176990 1177027 1177030 1177041 1177042 1177043 1177044 1177121 1177206 1177258 1177291 1177293 1177294 1177295 1177296 CVE-2017-18922 CVE-2017-9814 CVE-2018-1000632 CVE-2018-14598 CVE-2018-14599 CVE-2018-14600 CVE-2019-12779 CVE-2019-13012 CVE-2019-14809 CVE-2019-14853 CVE-2019-14859 CVE-2019-2201 CVE-2019-2894 CVE-2019-2933 CVE-2019-2945 CVE-2019-2949 CVE-2019-2958 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2975 CVE-2019-2977 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2987 CVE-2019-2988 CVE-2019-2989 CVE-2019-2992 CVE-2019-2999 CVE-2019-3840 CVE-2019-9512 CVE-2019-9514 CVE-2020-0404 CVE-2020-0427 CVE-2020-0431 CVE-2020-0432 CVE-2020-10713 CVE-2020-12653 CVE-2020-12654 CVE-2020-12693 CVE-2020-14308 CVE-2020-14309 CVE-2020-14310 CVE-2020-14311 CVE-2020-14381 CVE-2020-14390 CVE-2020-15706 CVE-2020-15707 CVE-2020-25212 CVE-2020-25284 CVE-2020-25641 CVE-2020-25643 CVE-2020-26088 SUSE-SU-2018:1873-1 SUSE-SU-2018:2955-1 SUSE-SU-2018:3908-1 SUSE-SU-2019:0936-1 SUSE-SU-2019:1791-1 SUSE-SU-2019:1833-1 SUSE-SU-2019:2213-1 SUSE-SU-2019:2891-2 SUSE-SU-2019:2971-2 SUSE-SU-2019:2998-1 SUSE-SU-2020:1873-1 SUSE-SU-2020:2905-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libpoppler-glib4-0.12.3-1.8 is installed OR libpoppler-qt4-3-0.12.3-1.8 is installed OR libpoppler5-0.12.3-1.8 is installed OR poppler-tools-0.12.3-1.8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information compat-openssl097g-0.9.7g-146.22.36 is installed OR compat-openssl097g-32bit-0.9.7g-146.22.36 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND xfsprogs-3.1.8-0.7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND fetchmail-6.3.26-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information cups-1.7.5-9 is installed OR cups-client-1.7.5-9 is installed OR cups-libs-1.7.5-9 is installed OR cups-libs-32bit-1.7.5-9 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libHX28-3.18-1 is installed OR libHX28-32bit-3.18-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information lcms-1.19-17 is installed OR liblcms1-1.19-17 is installed OR liblcms1-32bit-1.19-17 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed AND Package Information python-ecdsa-0.13.3-3.3 is installed OR python2-ecdsa-0.13.3-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed AND libjpeg-turbo-1.5.3-5.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information cairo-1.15.10-4.5 is installed OR cairo-devel-1.15.10-4.5 is installed OR libcairo-gobject2-1.15.10-4.5 is installed OR libcairo-script-interpreter2-1.15.10-4.5 is installed OR libcairo2-1.15.10-4.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.61 is installed OR reiserfs-kmp-default-4.12.14-197.61 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_21-default-6-2 is installed OR kernel-livepatch-SLE15-SP1_Update_6-6-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information dom4j-1.6.1-4.3 is installed OR dom4j-demo-1.6.1-4.3 is installed OR dom4j-javadoc-1.6.1-4.3 is installed OR dom4j-manual-1.6.1-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information libqb-1.0.3+20190326.a521604-3.3 is installed OR libqb-devel-32bit-1.0.3+20190326.a521604-3.3 is installed OR libqb20-32bit-1.0.3+20190326.a521604-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information libzstd-devel-static-1.4.4-1.3 is installed OR zstd-1.4.4-1.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.5 is installed OR kernel-azure-base-4.12.14-5.5 is installed OR kernel-azure-devel-4.12.14-5.5 is installed OR kernel-devel-azure-4.12.14-5.5 is installed OR kernel-source-azure-4.12.14-5.5 is installed OR kernel-syms-azure-4.12.14-5.5 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND rmt-server-2.1.4-3.17 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information graphviz-addons-2.40.1-6.6 is installed OR graphviz-tcl-2.40.1-6.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information qemu-4.2.1-11.4 is installed OR qemu-arm-4.2.1-11.4 is installed OR qemu-audio-alsa-4.2.1-11.4 is installed OR qemu-audio-pa-4.2.1-11.4 is installed OR qemu-block-curl-4.2.1-11.4 is installed OR qemu-block-iscsi-4.2.1-11.4 is installed OR qemu-block-rbd-4.2.1-11.4 is installed OR qemu-block-ssh-4.2.1-11.4 is installed OR qemu-guest-agent-4.2.1-11.4 is installed OR qemu-ipxe-1.0.0+-11.4 is installed OR qemu-kvm-4.2.1-11.4 is installed OR qemu-lang-4.2.1-11.4 is installed OR qemu-microvm-4.2.1-11.4 is installed OR qemu-ppc-4.2.1-11.4 is installed OR qemu-s390-4.2.1-11.4 is installed OR qemu-seabios-1.12.1+-11.4 is installed OR qemu-sgabios-8-11.4 is installed OR qemu-ui-curses-4.2.1-11.4 is installed OR qemu-ui-gtk-4.2.1-11.4 is installed OR qemu-ui-spice-app-4.2.1-11.4 is installed OR qemu-vgabios-1.12.1+-11.4 is installed OR qemu-x86-4.2.1-11.4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND apache2-mod_jk-1.2.40-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_69-default-4-2 is installed OR kgraft-patch-3_12_74-60_64_69-xen-4-2 is installed OR kgraft-patch-SLE12-SP1_Update_24-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information gnome-settings-daemon-3.20.1-40 is installed OR gnome-settings-daemon-lang-3.20.1-40 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information apache2-2.4.23-29.24 is installed OR apache2-doc-2.4.23-29.24 is installed OR apache2-example-pages-2.4.23-29.24 is installed OR apache2-prefork-2.4.23-29.24 is installed OR apache2-utils-2.4.23-29.24 is installed OR apache2-worker-2.4.23-29.24 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_98-default-2-2 is installed OR kgraft-patch-SLE12-SP2_Update_26-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information glibc-2.22-62.13 is installed OR glibc-32bit-2.22-62.13 is installed OR glibc-devel-2.22-62.13 is installed OR glibc-devel-32bit-2.22-62.13 is installed OR glibc-html-2.22-62.13 is installed OR glibc-i18ndata-2.22-62.13 is installed OR glibc-info-2.22-62.13 is installed OR glibc-locale-2.22-62.13 is installed OR glibc-locale-32bit-2.22-62.13 is installed OR glibc-profile-2.22-62.13 is installed OR glibc-profile-32bit-2.22-62.13 is installed OR nscd-2.22-62.13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information gnome-shell-3.20.4-76 is installed OR gnome-shell-browser-plugin-3.20.4-76 is installed OR gnome-shell-lang-3.20.4-76 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_143-94_47-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_16-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libtiff5-4.0.9-44.21 is installed OR libtiff5-32bit-4.0.9-44.21 is installed OR tiff-4.0.9-44.21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libpython3_6m1_0-3.6.10-3.56 is installed OR python3-3.6.10-3.56 is installed OR python3-base-3.6.10-3.56 is installed OR python3-curses-3.6.10-3.56 is installed OR python3-dbm-3.6.10-3.56 is installed OR python3-devel-3.6.10-3.56 is installed OR python3-idle-3.6.10-3.56 is installed OR python3-tk-3.6.10-3.56 is installed OR python3-tools-3.6.10-3.56 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information cups-2.2.7-3.17 is installed OR cups-client-2.2.7-3.17 is installed OR cups-config-2.2.7-3.17 is installed OR cups-ddk-2.2.7-3.17 is installed OR cups-devel-2.2.7-3.17 is installed OR libcups2-2.2.7-3.17 is installed OR libcups2-32bit-2.2.7-3.17 is installed OR libcupscgi1-2.2.7-3.17 is installed OR libcupsimage2-2.2.7-3.17 is installed OR libcupsmime1-2.2.7-3.17 is installed OR libcupsppdc1-2.2.7-3.17 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information bluez-5.48-5.19 is installed OR bluez-cups-5.48-5.19 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND enigmail-2.1.2-3.19 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information openstack-nova-12.0.2~a0~dev18-1 is installed OR openstack-nova-api-12.0.2~a0~dev18-1 is installed OR openstack-nova-cells-12.0.2~a0~dev18-1 is installed OR openstack-nova-cert-12.0.2~a0~dev18-1 is installed OR openstack-nova-compute-12.0.2~a0~dev18-1 is installed OR openstack-nova-conductor-12.0.2~a0~dev18-1 is installed OR openstack-nova-console-12.0.2~a0~dev18-1 is installed OR openstack-nova-consoleauth-12.0.2~a0~dev18-1 is installed OR openstack-nova-novncproxy-12.0.2~a0~dev18-1 is installed OR openstack-nova-objectstore-12.0.2~a0~dev18-1 is installed OR openstack-nova-scheduler-12.0.2~a0~dev18-1 is installed OR openstack-nova-serialproxy-12.0.2~a0~dev18-1 is installed OR openstack-nova-vncproxy-12.0.2~a0~dev18-1 is installed OR python-nova-12.0.2~a0~dev18-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information nodejs-common-1.0-2 is installed OR nodejs6-6.11.1-11.5 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information bzip2-1.0.6-30.5 is installed OR bzip2-doc-1.0.6-30.5 is installed OR libbz2-1-1.0.6-30.5 is installed OR libbz2-1-32bit-1.0.6-30.5 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.14.4-11.18 is installed

BACK