Oval Definition:	oval:org.opensuse.security:def:5051
Revision Date: 2021-06-02 Version: 1 Title: Security update for libwebp (Critical) Description: This update for libwebp fixes the following issues: - CVE-2018-25010: Fixed heap-based buffer overflow in ApplyFilter() (bsc#1185685). - CVE-2020-36330: Fixed heap-based buffer overflow in ChunkVerifyAndAssign() (bsc#1185691). - CVE-2020-36332: Fixed extreme memory allocation when reading a file (bsc#1185674). - CVE-2020-36329: Fixed use-after-free in EmitFancyRGB() (bsc#1185652). - CVE-2018-25012: Fixed heap-based buffer overflow in GetLE24() (bsc#1185690). - CVE-2018-25013: Fixed heap-based buffer overflow in ShiftBytes() (bsc#1185654). - CVE-2020-36331: Fixed heap-based buffer overflow in ChunkAssignData() (bsc#1185686). - CVE-2018-25009: Fixed heap-based buffer overflow in GetLE16() (bsc#1185673). - CVE-2018-25011: Fixed fail on multiple image chunks (bsc#1186247). Family: unix Class: patch Status: Reference(s): 1000019 1004465 1024718 1046299 1050242 1050244 1051510 1055120 1055121 1055186 1058115 1060463 1061840 1065600 1065729 1068273 1071995 1078248 1079935 1082387 1082555 1082653 1083647 1085030 1085535 1086196 1086282 1086283 1086423 1087978 1088386 1089350 1090888 1091405 1091800 1094244 1097593 1097755 1100132 1102875 1102877 1102879 1102882 1102896 1103257 1103356 1103925 1104124 1104353 1104427 1104824 1104967 1105168 1105428 1106105 1106110 1106237 1106240 1106615 1106913 1107256 1107385 1107866 1108270 1108468 1109272 1109772 1109806 1110006 1110558 1110998 1111040 1111062 1111174 1111183 1111188 1111469 1111696 1111795 1111809 1111921 1112878 1112963 1113295 1113408 1113412 1113501 1113667 1113677 1113722 1113751 1113769 1113780 1113972 1114015 1114178 1114279 1114385 1114576 1114577 1114578 1114579 1114580 1114581 1114582 1114583 1114584 1114585 1114839 1114871 1115074 1115269 1115431 1115433 1115440 1115567 1115709 1115976 1116040 1116183 1116336 1116692 1116693 1116698 1116699 1116700 1116701 1116803 1116841 1116862 1116863 1116876 1116877 1116878 1116891 1116895 1116899 1116950 1117115 1117162 1117165 1117168 1117172 1117174 1117181 1117184 1117186 1117188 1117189 1117349 1117561 1117656 1117788 1117789 1117790 1117791 1117792 1117794 1117795 1117796 1117798 1117799 1117801 1117802 1117803 1117804 1117805 1117806 1117807 1117808 1117815 1117816 1117817 1117818 1117819 1117820 1117821 1117822 1117953 1118102 1118136 1118137 1118138 1118140 1118152 1118215 1118316 1118319 1118428 1118484 1118505 1118752 1118760 1118761 1118762 1118766 1118767 1118768 1118769 1118771 1118772 1118773 1118774 1118775 1118798 1118809 1118962 1119017 1119086 1119212 1119322 1119410 1119714 1119749 1119804 1119946 1119962 1119968 1120036 1120046 1120053 1120054 1120055 1120058 1120088 1120092 1120094 1120096 1120097 1120163 1120173 1120214 1120223 1120228 1120230 1120232 1120234 1120235 1120238 1120594 1120598 1120600 1120601 1120602 1120603 1120604 1120606 1120612 1120613 1120614 1120615 1120616 1120617 1120618 1120620 1120621 1120632 1120633 1120743 1120954 1121017 1121058 1121263 1121273 1121477 1121483 1121599 1121621 1121714 1121715 1121973 1133021 1149032 1152472 1152489 1153274 1154353 1154488 1154492 1155518 1156395 1159058 1160634 1167773 1169790 1171634 1171688 1172108 1172177 1172197 1172247 1172418 1172871 1172963 1173468 1173477 1173485 1173798 1173813 1173954 1174002 1174003 1174026 1174205 1174230 1174247 1174362 1174387 1174484 1174625 1174645 1174689 1174699 1174737 1174757 1174762 1174770 1174771 1174777 1174805 1174824 1174825 1174852 1174865 1174880 1174897 1174906 1174969 1175009 1175010 1175011 1175012 1175013 1175014 1175015 1175016 1175017 1175018 1175019 1175020 1175021 1175052 1175112 1175116 1175128 1175149 1175175 1175176 1175180 1175181 1175182 1175183 1175184 1175185 1175186 1175187 1175188 1175189 1175190 1175191 1175192 1175195 1175199 1175213 1175232 1175263 1175284 1175296 1175344 1175345 1175346 1175347 1175367 1175377 1175440 1175493 1175546 1175550 1175654 1175691 1175768 1175769 1175770 1175771 1175772 1175774 1175775 1175834 1175873 1176384 1176756 1176899 1177977 1185652 1185654 1185673 1185674 1185685 1185686 1185690 1185691 1186247 CVE-2006-2607 CVE-2006-7250 CVE-2009-0186 CVE-2009-0590 CVE-2009-0591 CVE-2009-0789 CVE-2009-1377 CVE-2009-1378 CVE-2009-1379 CVE-2009-1386 CVE-2009-1387 CVE-2009-3245 CVE-2009-3555 CVE-2009-4355 CVE-2010-0424 CVE-2010-0740 CVE-2010-2939 CVE-2010-3864 CVE-2010-4180 CVE-2010-4252 CVE-2011-0014 CVE-2011-1709 CVE-2011-2696 CVE-2011-3146 CVE-2011-3210 CVE-2011-4108 CVE-2011-4109 CVE-2011-4354 CVE-2011-4576 CVE-2011-4577 CVE-2011-4619 CVE-2011-5095 CVE-2012-0050 CVE-2012-0804 CVE-2012-0884 CVE-2012-1165 CVE-2012-1571 CVE-2012-2110 CVE-2012-2131 CVE-2012-2333 CVE-2012-4929 CVE-2013-0166 CVE-2013-0169 CVE-2013-1881 CVE-2013-6393 CVE-2014-0076 CVE-2014-0221 CVE-2014-0224 CVE-2014-2525 CVE-2014-3470 CVE-2014-3505 CVE-2014-3506 CVE-2014-3507 CVE-2014-3508 CVE-2014-3510 CVE-2014-3634 CVE-2014-3710 CVE-2014-8116 CVE-2014-8117 CVE-2016-5181 CVE-2016-5182 CVE-2016-5183 CVE-2016-5184 CVE-2016-5185 CVE-2016-5186 CVE-2016-5187 CVE-2016-5188 CVE-2016-5189 CVE-2016-5190 CVE-2016-5191 CVE-2016-5192 CVE-2016-5193 CVE-2017-18922 CVE-2018-12232 CVE-2018-14625 CVE-2018-16862 CVE-2018-16884 CVE-2018-18281 CVE-2018-18397 CVE-2018-18710 CVE-2018-19407 CVE-2018-19824 CVE-2018-19854 CVE-2018-19985 CVE-2018-20169 CVE-2018-25009 CVE-2018-25010 CVE-2018-25011 CVE-2018-25012 CVE-2018-25013 CVE-2018-9568 CVE-2020-14314 CVE-2020-14331 CVE-2020-14356 CVE-2020-15673 CVE-2020-15676 CVE-2020-15677 CVE-2020-15678 CVE-2020-15683 CVE-2020-15969 CVE-2020-16166 CVE-2020-36329 CVE-2020-36330 CVE-2020-36331 CVE-2020-36332 CVE-2020-8164 SUSE-SU-2016:2597-1 SUSE-SU-2019:0224-1 SUSE-SU-2020:1873-1 SUSE-SU-2020:2486-1 SUSE-SU-2020:2710-1 SUSE-SU-2020:3091-1 SUSE-SU-2021:1830-1 Platform(s): SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-LTSS SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP5 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 5 SUSE Package Hub for SUSE Linux Enterprise 12 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libproxy0-0.3.1-2.6.1 is installed OR libproxy0-32bit-0.3.1-2.6.1 is installed OR libproxy0-config-gnome-0.3.1-2.6.3 is installed OR libproxy0-config-gnome-32bit-0.3.1-2.6.3 is installed OR libproxy0-config-kde4-0.3.1-2.6.3 is installed OR libproxy0-networkmanager-0.3.1-2.6.3 is installed OR libproxy0-networkmanager-32bit-0.3.1-2.6.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information libsndfile-1.0.20-2.10.2 is installed OR libsndfile-32bit-1.0.20-2.10.2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND cvs-1.12.12-181 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information cron-4.2-58 is installed OR cronie-1.4.11-58 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND argyllcms-1.6.3-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND hardlink-1.0-6 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 is installed AND haproxy-1.5.4-2.4.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP1 is installed AND hawk2-1.0.1+git.1456406635.49e230d-12.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND Package Information cluster-md-kmp-default-4.4.21-84.1 is installed OR cluster-network-kmp-default-4.4.21-84.1 is installed OR dlm-kmp-default-4.4.21-84.1 is installed OR gfs2-kmp-default-4.4.21-84.1 is installed OR kernel-default-4.4.21-84.1 is installed OR ocfs2-kmp-default-4.4.21-84.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information cluster-md-kmp-default-4.4.73-5 is installed OR dlm-kmp-default-4.4.73-5 is installed OR gfs2-kmp-default-4.4.73-5 is installed OR ocfs2-kmp-default-4.4.73-5 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND lighttpd-1.4.35-3 is installed Definition Synopsis SUSE Linux Enterprise High Availability 15 is installed AND Package Information cluster-md-kmp-default-4.12.14-25.28 is installed OR dlm-kmp-default-4.12.14-25.28 is installed OR gfs2-kmp-default-4.12.14-25.28 is installed OR kernel-default-4.12.14-25.28 is installed OR ocfs2-kmp-default-4.12.14-25.28 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information alsa-1.0.27.2-15 is installed OR alsa-docs-1.0.27.2-15 is installed OR libasound2-1.0.27.2-15 is installed OR libasound2-32bit-1.0.27.2-15 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_32-33-default-2-3.1 is installed OR kgraft-patch-3_12_32-33-xen-2-3.1 is installed OR kgraft-patch-3_12_36-38-default-2-3.1 is installed OR kgraft-patch-3_12_36-38-xen-2-3.1 is installed OR kgraft-patch-SLE12_Update_1-2-3.1 is installed OR kgraft-patch-SLE12_Update_2-2-3.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND Package Information puppet-3.6.2-3 is installed OR puppet-server-3.6.2-3 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information java-1_6_0-ibm-1.6.0_sr16.3-12.1 is installed OR java-1_6_0-ibm-fonts-1.6.0_sr16.3-12.1 is installed OR java-1_6_0-ibm-jdbc-1.6.0_sr16.3-12.1 is installed OR java-1_6_0-ibm-plugin-1.6.0_sr16.3-12.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.38-44.1 is installed OR kernel-ec2-devel-3.12.38-44.1 is installed OR kernel-ec2-extra-3.12.38-44.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php5-5.5.14-59.2 is installed OR php5-5.5.14-59.2 is installed OR php5-bcmath-5.5.14-59.2 is installed OR php5-bz2-5.5.14-59.2 is installed OR php5-calendar-5.5.14-59.2 is installed OR php5-ctype-5.5.14-59.2 is installed OR php5-curl-5.5.14-59.2 is installed OR php5-dba-5.5.14-59.2 is installed OR php5-dom-5.5.14-59.2 is installed OR php5-enchant-5.5.14-59.2 is installed OR php5-exif-5.5.14-59.2 is installed OR php5-fastcgi-5.5.14-59.2 is installed OR php5-fileinfo-5.5.14-59.2 is installed OR php5-fpm-5.5.14-59.2 is installed OR php5-ftp-5.5.14-59.2 is installed OR php5-gd-5.5.14-59.2 is installed OR php5-gettext-5.5.14-59.2 is installed OR php5-gmp-5.5.14-59.2 is installed OR php5-iconv-5.5.14-59.2 is installed OR php5-intl-5.5.14-59.2 is installed OR php5-json-5.5.14-59.2 is installed OR php5-ldap-5.5.14-59.2 is installed OR php5-mbstring-5.5.14-59.2 is installed OR php5-mcrypt-5.5.14-59.2 is installed OR php5-mysql-5.5.14-59.2 is installed OR php5-odbc-5.5.14-59.2 is installed OR php5-opcache-5.5.14-59.2 is installed OR php5-openssl-5.5.14-59.2 is installed OR php5-pcntl-5.5.14-59.2 is installed OR php5-pdo-5.5.14-59.2 is installed OR php5-pear-5.5.14-59.2 is installed OR php5-pgsql-5.5.14-59.2 is installed OR php5-phar-5.5.14-59.2 is installed OR php5-posix-5.5.14-59.2 is installed OR php5-pspell-5.5.14-59.2 is installed OR php5-shmop-5.5.14-59.2 is installed OR php5-snmp-5.5.14-59.2 is installed OR php5-soap-5.5.14-59.2 is installed OR php5-sockets-5.5.14-59.2 is installed OR php5-sqlite-5.5.14-59.2 is installed OR php5-suhosin-5.5.14-59.2 is installed OR php5-sysvmsg-5.5.14-59.2 is installed OR php5-sysvsem-5.5.14-59.2 is installed OR php5-sysvshm-5.5.14-59.2 is installed OR php5-tokenizer-5.5.14-59.2 is installed OR php5-wddx-5.5.14-59.2 is installed OR php5-xmlreader-5.5.14-59.2 is installed OR php5-xmlrpc-5.5.14-59.2 is installed OR php5-xmlwriter-5.5.14-59.2 is installed OR php5-xsl-5.5.14-59.2 is installed OR php5-zip-5.5.14-59.2 is installed OR php5-zlib-5.5.14-59.2 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND xorg-x11-Xvnc-7.4-27.85.1 is installed OR xorg-x11-server-7.4-27.85.1 is installed OR xorg-x11-server-extra-7.4-27.85.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND xorg-x11-Xvnc-7.4-27.85.1 is installed OR xorg-x11-server-7.4-27.85.1 is installed OR xorg-x11-server-extra-7.4-27.85.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND libexiv2-4-0.17.1-31.20 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information PackageKit-0.3.14-2.30.11 is installed OR PackageKit-lang-0.3.14-2.30.11 is installed OR hal-0.5.12-23.76.1 is installed OR hal-32bit-0.5.12-23.76.1 is installed OR hal-doc-0.5.12-23.76.1 is installed OR hal-x86-0.5.12-23.76.1 is installed OR libpackagekit-glib10-0.3.14-2.30.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information MozillaFirefox-31.1.0esr-1 is installed OR MozillaFirefox-translations-31.1.0esr-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libksba-1.3.0-18.1 is installed OR libksba8-1.3.0-18.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND libdmx1-1.1.3-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache-commons-daemon-1.0.15-6 is installed OR apache-commons-daemon-javadoc-1.0.15-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information fontconfig-2.11.1-7 is installed OR fontconfig-32bit-2.11.1-7 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND Package Information libwebp-devel-0.4.3-4.7.1 is installed OR libwebpdecoder1-0.4.3-4.7.1 is installed OR libwebpmux1-0.4.3-4.7.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_51-52_39-default-4-2.2 is installed OR kgraft-patch-3_12_51-52_39-xen-4-2.2 is installed OR kgraft-patch-SLE12_Update_11-4-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information policycoreutils-2.5-6 is installed OR policycoreutils-python-2.5-6 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information libmysqlclient-devel-5.0.96-0.8.10.3 is installed OR libmysqlclient_r15-32bit-5.0.96-0.8.10.3 is installed OR libmysqlclient_r15-x86-5.0.96-0.8.10.3 is installed OR mysql-5.0.96-0.8.10.3 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information libtidy-0_99-0-1.0.20100204cvs-25 is installed OR libtidy-0_99-0-devel-1.0.20100204cvs-25 is installed OR tidy-1.0.20100204cvs-25 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information FastCGI-2.4.0-167 is installed OR perl-FastCGI-2.4.0-167 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND accountsservice-devel-0.6.42-14 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information flash-player-11.2.202.418-11.1 is installed OR flash-player-gnome-11.2.202.418-11.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information ImageMagick-6.8.8.1-30.2 is installed OR libMagick++-6_Q16-3-6.8.8.1-30.2 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-30.2 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information libpcrecpp0-8.39-5.1 is installed OR libpcrecpp0-32bit-8.39-5.1 is installed OR pcre-8.39-5.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information LibVNCServer-0.9.10-4.19 is installed OR libvncclient0-0.9.10-4.19 is installed OR libvncserver0-0.9.10-4.19 is installed Definition Synopsis SUSE Package Hub for SUSE Linux Enterprise 12 is installed AND Package Information chromedriver-54.0.2840.59-109 is installed OR chromium-54.0.2840.59-109 is installed OR chromium-ffmpegsumo-54.0.2840.59-109 is installed
BACK