OVAL Reference oval:org.opensuse.security:def:50345

Oval Definition:

oval:org.opensuse.security:def:50345

Revision Date:	2020-12-01	Version:	1
Title:	Security update for tiff (Moderate)
Description:	This update for tiff fixes the following issues: Security issues fixed: - CVE-2018-12900: Fixed heap-based buffer overflow in the cpSeparateBufToContigBuf (bsc#1099257). - CVE-2018-18661: Fixed NULL pointer dereference in the function LZWDecode in the file tif_lzw.c (bsc#1113672). - CVE-2018-18557: Fixed JBIG decode can lead to out-of-bounds write (bsc#1113094). Non-security issues fixed: - asan_build: build ASAN included - debug_build: build more suitable for debugging
Family:	unix	Class:	patch
Status:		Reference(s):	1027282 1041090 1042670 1047962 1049826 1053177 1065022 1068664 1069904 1073269 1073748 1078326 1078485 1079300 1081750 1083507 1084650 1086001 1088004 1088009 1089039 1097158 1099019 1099257 1100687 1101470 1102261 1104789 1106197 1109847 1110542 1111319 1111793 1112911 1113094 1113296 1113672 1113755 1114908 1115034 1115341 1116840 1118758 1119373 1119820 1119873 1120263 1120463 1120629 1120630 1120631 1121611 1121624 1122062 1122191 1122471 1122895 1123137 1123681 1123843 1123865 1123967 1124211 1124897 1125415 1127026 1127155 1127220 1129346 1130161 1130840 1130847 1131823 1135749 1137977 1138425 1138459 1138464 1139924 1141267 1141853 1142772 1144059 1145692 1149792 1149841 1149955 1151021 1153238 1153830 1154999 1159035 1159723 1159729 1161025 1175239 1176179 1177895 214983 298378 346490 367853 379534 380942 399190 406051 425138 426563 430761 432677 436966 437293 441088 462375 525295 534721 551715 572673 577032 581765 603255 617751 637176 638233 658604 663358 673071 682554 697251 707667 718009 747125 747794 751718 754447 764147 766778 794139 804978 827982 831442 834601 836739 856835 856836 857470 863741 885882 898572 901715 935856 945401 964182 965786 978193 984751 985177 985348 989523 993025 997436 CVE-2007-2052 CVE-2008-1721 CVE-2008-2315 CVE-2008-2316 CVE-2008-3142 CVE-2008-3143 CVE-2008-3144 CVE-2011-1521 CVE-2011-3389 CVE-2011-4944 CVE-2012-0845 CVE-2012-1150 CVE-2013-1752 CVE-2013-1753 CVE-2013-4238 CVE-2014-1912 CVE-2014-4650 CVE-2014-7185 CVE-2016-0772 CVE-2016-1000110 CVE-2016-5636 CVE-2016-5699 CVE-2017-1000158 CVE-2017-14804 CVE-2017-18207 CVE-2018-0732 CVE-2018-0737 CVE-2018-1000030 CVE-2018-1000802 CVE-2018-1060 CVE-2018-1061 CVE-2018-12900 CVE-2018-13785 CVE-2018-14647 CVE-2018-18557 CVE-2018-18661 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2018-20852 CVE-2019-10072 CVE-2019-1010180 CVE-2019-10160 CVE-2019-10197 CVE-2019-11043 CVE-2019-11597 CVE-2019-12418 CVE-2019-14835 CVE-2019-16056 CVE-2019-16056 CVE-2019-16935 CVE-2019-16935 CVE-2019-17563 CVE-2019-5010 CVE-2019-7317 CVE-2019-9636 CVE-2019-9947 CVE-2019-9947 CVE-2019-9948 CVE-2020-14363 CVE-2020-24977 CVE-2020-27153 SUSE-SU-2018:2965-1 SUSE-SU-2018:3925-1 SUSE-SU-2019:0387-1 SUSE-SU-2019:1398-1 SUSE-SU-2019:1773-1 SUSE-SU-2019:2030-1 SUSE-SU-2019:2743-1 SUSE-SU-2019:2819-1 SUSE-SU-2019:2902-1 SUSE-SU-2020:0226-1 SUSE-SU-2020:0234-1 SUSE-SU-2020:2612-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Python2 packages 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SP2 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information glibc-2.11.3-17.45.49 is installed OR glibc-32bit-2.11.3-17.45.49 is installed OR glibc-devel-2.11.3-17.45.49 is installed OR glibc-devel-32bit-2.11.3-17.45.49 is installed OR glibc-i18ndata-2.11.3-17.45.49 is installed OR glibc-locale-2.11.3-17.45.49 is installed OR glibc-locale-32bit-2.11.3-17.45.49 is installed OR nscd-2.11.3-17.45.49 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-24.7.0esr-0.8 is installed OR MozillaFirefox-translations-24.7.0esr-0.8 is installed OR libfreebl3-3.16.2-0.8 is installed OR libfreebl3-32bit-3.16.2-0.8 is installed OR libsoftokn3-3.16.2-0.8 is installed OR libsoftokn3-32bit-3.16.2-0.8 is installed OR mozilla-nss-3.16.2-0.8 is installed OR mozilla-nss-32bit-3.16.2-0.8 is installed OR mozilla-nss-tools-3.16.2-0.8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information dhcp-4.2.6-7 is installed OR dhcp-client-4.2.6-7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information expat-2.1.0-13 is installed OR libexpat1-2.1.0-13 is installed OR libexpat1-32bit-2.1.0-13 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information at-3.1.14-7 is installed OR libQtWebKit4-4.8.6+2.3.3-3 is installed OR libQtWebKit4-32bit-4.8.6+2.3.3-3 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed OR libkde4-4.12.0-7 is installed OR libkde4-32bit-4.12.0-7 is installed OR libkdecore4-4.12.0-7 is installed OR libkdecore4-32bit-4.12.0-7 is installed OR libksuseinstall1-4.12.0-7 is installed OR libksuseinstall1-32bit-4.12.0-7 is installed OR libnetpbm11-10.66.3-4 is installed OR libnetpbm11-32bit-10.66.3-4 is installed OR netpbm-10.66.3-4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND cifs-utils-6.5-8 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gnome-shell-3.20.4-77.17 is installed OR gnome-shell-browser-plugin-3.20.4-77.17 is installed OR gnome-shell-calendar-3.20.4-77.17 is installed OR gnome-shell-lang-3.20.4-77.17 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information php7-7.2.5-4.46 is installed OR php7-embed-7.2.5-4.46 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 is installed AND Package Information libtiff-devel-4.0.9-5.17 is installed OR libtiff5-4.0.9-5.17 is installed OR tiff-4.0.9-5.17 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information libopenssl-1_0_0-devel-1.0.2p-3.8 is installed OR libopenssl1_0_0-1.0.2p-3.8 is installed OR openssl-1_0_0-1.0.2p-3.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-150_22-default-3-2 is installed OR kernel-livepatch-SLE15_Update_11-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information PackageKit-1.1.10-4.10 is installed OR PackageKit-branding-upstream-1.1.10-4.10 is installed OR libsolv-0.7.5-3.12 is installed OR libsolv-demo-0.7.5-3.12 is installed OR libzypp-17.12.0-3.23 is installed OR libzypp-devel-doc-17.12.0-3.23 is installed OR yast2-pkg-bindings-devel-doc-4.0.13-3.7 is installed OR zypper-1.14.28-3.18 is installed OR zypper-aptitude-1.14.28-3.18 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information ImageMagick-7.0.7.34-3.64 is installed OR ImageMagick-config-7-upstream-7.0.7.34-3.64 is installed OR ImageMagick-devel-32bit-7.0.7.34-3.64 is installed OR ImageMagick-doc-7.0.7.34-3.64 is installed OR ImageMagick-extra-7.0.7.34-3.64 is installed OR libMagick++-7_Q16HDRI4-32bit-7.0.7.34-3.64 is installed OR libMagick++-devel-32bit-7.0.7.34-3.64 is installed OR libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-3.64 is installed OR libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-3.64 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information libX11-1.6.5-3.12 is installed OR libX11-devel-32bit-1.6.5-3.12 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information libsamba-policy0-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-ad-dc-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-dsdb-modules-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-libs-python-4.9.5+git.187.71edee57d5a-3.9 is installed OR samba-python-4.9.5+git.187.71edee57d5a-3.9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP2 is installed AND Package Information samba-4.11.13+git.189.e9bd318cd13-4.11 is installed OR samba-ad-dc-4.11.13+git.189.e9bd318cd13-4.11 is installed OR samba-dsdb-modules-4.11.13+git.189.e9bd318cd13-4.11 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information ovmf-2017+git1510945757.b2662641d5-5.32 is installed OR ovmf-tools-2017+git1510945757.b2662641d5-5.32 is installed OR qemu-ovmf-x86_64-2017+git1510945757.b2662641d5-5.32 is installed OR qemu-uefi-aarch64-2017+git1510945757.b2662641d5-5.32 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed AND Package Information libfreebl3-hmac-3.53-3.40 is installed OR libsoftokn3-hmac-3.53-3.40 is installed OR mozilla-nss-3.53-3.40 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs8-8.17.0-3.32 is installed OR nodejs8-devel-8.17.0-3.32 is installed OR nodejs8-docs-8.17.0-3.32 is installed OR npm8-8.17.0-3.32 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information krb5-1.12.1-19 is installed OR krb5-32bit-1.12.1-19 is installed OR krb5-client-1.12.1-19 is installed OR krb5-doc-1.12.1-19 is installed OR krb5-plugin-kdb-ldap-1.12.1-19 is installed OR krb5-plugin-preauth-otp-1.12.1-19 is installed OR krb5-plugin-preauth-pkinit-1.12.1-19 is installed OR krb5-server-1.12.1-19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_67-60_64_24-default-7-2 is installed OR kgraft-patch-3_12_67-60_64_24-xen-7-2 is installed OR kgraft-patch-SLE12-SP1_Update_11-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information dracut-044-87 is installed OR dracut-fips-044-87 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information gpg2-2.0.24-9.3 is installed OR gpg2-lang-2.0.24-9.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-30.33 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_32-default-10-2 is installed OR kgraft-patch-SLE12-SP2_Update_11-10-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cracklib-2.9.0-7 is installed OR libcrack2-2.9.0-7 is installed OR libcrack2-32bit-2.9.0-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_100-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_27-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information krb5-1.12.5-40.31 is installed OR krb5-32bit-1.12.5-40.31 is installed OR krb5-client-1.12.5-40.31 is installed OR krb5-doc-1.12.5-40.31 is installed OR krb5-plugin-kdb-ldap-1.12.5-40.31 is installed OR krb5-plugin-preauth-otp-1.12.5-40.31 is installed OR krb5-plugin-preauth-pkinit-1.12.5-40.31 is installed OR krb5-server-1.12.5-40.31 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information python2-salt-2019.2.0-5.67 is installed OR python3-salt-2019.2.0-5.67 is installed OR salt-2019.2.0-5.67 is installed OR salt-api-2019.2.0-5.67 is installed OR salt-bash-completion-2019.2.0-5.67 is installed OR salt-cloud-2019.2.0-5.67 is installed OR salt-doc-2019.2.0-5.67 is installed OR salt-fish-completion-2019.2.0-5.67 is installed OR salt-master-2019.2.0-5.67 is installed OR salt-minion-2019.2.0-5.67 is installed OR salt-proxy-2019.2.0-5.67 is installed OR salt-ssh-2019.2.0-5.67 is installed OR salt-standalone-formulas-configuration-2019.2.0-5.67 is installed OR salt-syndic-2019.2.0-5.67 is installed OR salt-zsh-completion-2019.2.0-5.67 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libssh-0.7.5-6.9 is installed OR libssh-devel-0.7.5-6.9 is installed OR libssh4-0.7.5-6.9 is installed OR libssh4-32bit-0.7.5-6.9 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.22 is installed OR kernel-default-extra-4.12.14-25.22 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information openconnect-7.08-6.9 is installed OR openconnect-devel-7.08-6.9 is installed OR openconnect-lang-7.08-6.9 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information tomcat-8.0.43-10.24 is installed OR tomcat-admin-webapps-8.0.43-10.24 is installed OR tomcat-docs-webapp-8.0.43-10.24 is installed OR tomcat-el-3_0-api-8.0.43-10.24 is installed OR tomcat-javadoc-8.0.43-10.24 is installed OR tomcat-jsp-2_3-api-8.0.43-10.24 is installed OR tomcat-lib-8.0.43-10.24 is installed OR tomcat-servlet-3_1-api-8.0.43-10.24 is installed OR tomcat-webapps-8.0.43-10.24 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information git-2.12.3-27.14 is installed OR git-core-2.12.3-27.14 is installed OR git-doc-2.12.3-27.14 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information perl-5.18.2-12.20 is installed OR perl-32bit-5.18.2-12.20 is installed OR perl-base-5.18.2-12.20 is installed OR perl-doc-5.18.2-12.20 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND couchdb-1.7.2-3.3 is installed

BACK