Oval Definition:oval:org.opensuse.security:def:50546
Revision Date:2020-12-01Version:1
Title:Security update for gd (Moderate)
Description:

This update for gd fixes the following issues:

Security issues fixed:

- CVE-2019-6977: Fixed a heap-based buffer overflow the GD Graphics Library used in the imagecolormatch function (bsc#1123361). - CVE-2019-6978: Fixed a double free in the gdImage*Ptr() functions (bsc#1123522).
Family:unixClass:patch
Status:Reference(s):1055186
1058115
1065600
1065729
1094244
1097108
1100331
1101888
1101889
1103203
1105026
1114837
1121967
1123156
1123361
1123522
1135170
1138529
1138920
1139649
1141132
1142160
1142413
1143409
1143578
1143581
1143582
1143584
1152472
1152489
1152856
1153274
1154212
1154353
1154790
1155518
1156395
1161066
1162729
1163018
1165776
1166240
1166379
1167527
1170774
1171068
1171252
1171254
1171496
1171497
1171498
1171499
1171688
1171742
1172757
1173017
1173115
1173746
1174358
1174899
1175193
1175194
1175568
1175749
1175882
1176019
1176038
1176137
1176235
1176236
1176237
1176242
1176278
1176357
1176358
1176359
1176360
1176361
1176362
1176363
1176364
1176365
1176366
1176367
1176381
1176382
1176423
1176449
1176482
1176486
1176507
1176536
1176537
1176538
1176539
1176540
1176541
1176542
1176544
1176545
1176546
1176548
1176558
1176559
1176587
1176659
1176698
1176699
1176700
1176721
1176722
1176725
1176732
1176763
1176775
1176788
1176789
1176833
1176869
1176877
1176925
1176962
1176980
1176990
1177021
1177030
CVE-2018-10853
CVE-2018-10892
CVE-2018-14394
CVE-2018-14395
CVE-2018-15471
CVE-2018-16850
CVE-2018-20860
CVE-2018-20861
CVE-2019-13508
CVE-2019-13509
CVE-2019-14271
CVE-2019-14382
CVE-2019-14383
CVE-2019-15034
CVE-2019-20382
CVE-2019-2894
CVE-2019-2933
CVE-2019-2945
CVE-2019-2949
CVE-2019-2958
CVE-2019-2962
CVE-2019-2964
CVE-2019-2973
CVE-2019-2975
CVE-2019-2978
CVE-2019-2981
CVE-2019-2983
CVE-2019-2987
CVE-2019-2988
CVE-2019-2989
CVE-2019-2992
CVE-2019-2999
CVE-2019-5436
CVE-2019-5736
CVE-2019-6778
CVE-2019-6977
CVE-2019-6978
CVE-2020-0404
CVE-2020-0427
CVE-2020-0431
CVE-2020-0432
CVE-2020-11863
CVE-2020-11864
CVE-2020-11865
CVE-2020-11866
CVE-2020-12653
CVE-2020-12654
CVE-2020-14349
CVE-2020-14350
CVE-2020-14385
CVE-2020-14390
CVE-2020-1711
CVE-2020-25212
CVE-2020-25212
CVE-2020-25284
CVE-2020-26088
CVE-2020-7039
CVE-2020-8027
CVE-2020-8608
SUSE-SU-2018:2678-1
SUSE-SU-2018:3942-1
SUSE-SU-2019:0771-1
SUSE-SU-2019:1299-2
SUSE-SU-2019:1357-2
SUSE-SU-2019:2117-1
SUSE-SU-2019:2435-1
SUSE-SU-2019:3238-1
SUSE-SU-2020:0844-1
SUSE-SU-2020:1417-2
SUSE-SU-2020:2355-1
Platform(s):SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Basesystem 15
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Live Patching 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE Linux Enterprise Workstation Extension 15 SP2
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • libpng12-0-1.2.31-5.35 is installed
  • OR libpng12-0-32bit-1.2.31-5.35 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND kvm-1.4.2-35 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • curl-7.37.0-2 is installed
  • OR libcurl4-7.37.0-2 is installed
  • OR libcurl4-32bit-7.37.0-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • DirectFB-1.7.1-4 is installed
  • OR lib++dfb-1_7-1-1.7.1-4 is installed
  • OR libdirectfb-1_7-1-1.7.1-4 is installed
  • OR libdirectfb-1_7-1-32bit-1.7.1-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • alsa-1.0.27.2-11 is installed
  • OR libasound2-1.0.27.2-11 is installed
  • OR libasound2-32bit-1.0.27.2-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • gstreamer-plugins-good-1.8.3-15 is installed
  • OR gstreamer-plugins-good-lang-1.8.3-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND bogofilter-1.2.4-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 is installed
  • AND Package Information
  • gd-2.2.5-4.6 is installed
  • OR libgd3-2.2.5-4.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • curl-7.60.0-3.20 is installed
  • OR libcurl-devel-7.60.0-3.20 is installed
  • OR libcurl4-7.60.0-3.20 is installed
  • OR libcurl4-32bit-7.60.0-3.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-25_6-default-3-2 is installed
  • OR kernel-livepatch-SLE15_Update_2-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed
  • AND Package Information
  • kernel-livepatch-5_3_18-24_15-default-2-2 is installed
  • OR kernel-livepatch-SLE15-SP2_Update_3-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • ffmpeg-3.4.2-4.17 is installed
  • OR ffmpeg-private-devel-3.4.2-4.17 is installed
  • OR libavcodec57-32bit-3.4.2-4.17 is installed
  • OR libavdevice-devel-3.4.2-4.17 is installed
  • OR libavdevice57-3.4.2-4.17 is installed
  • OR libavdevice57-32bit-3.4.2-4.17 is installed
  • OR libavfilter-devel-3.4.2-4.17 is installed
  • OR libavfilter6-3.4.2-4.17 is installed
  • OR libavfilter6-32bit-3.4.2-4.17 is installed
  • OR libavformat57-32bit-3.4.2-4.17 is installed
  • OR libavresample3-32bit-3.4.2-4.17 is installed
  • OR libavutil55-32bit-3.4.2-4.17 is installed
  • OR libpostproc54-32bit-3.4.2-4.17 is installed
  • OR libswresample2-32bit-3.4.2-4.17 is installed
  • OR libswscale4-32bit-3.4.2-4.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • cluster-md-kmp-azure-5.3.18-18.21 is installed
  • OR dlm-kmp-azure-5.3.18-18.21 is installed
  • OR gfs2-kmp-azure-5.3.18-18.21 is installed
  • OR kernel-azure-5.3.18-18.21 is installed
  • OR kernel-azure-extra-5.3.18-18.21 is installed
  • OR kernel-azure-livepatch-devel-5.3.18-18.21 is installed
  • OR kselftests-kmp-azure-5.3.18-18.21 is installed
  • OR ocfs2-kmp-azure-5.3.18-18.21 is installed
  • OR reiserfs-kmp-azure-5.3.18-18.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • libecpg6-10.6-4.8 is installed
  • OR postgresql10-10.6-4.8 is installed
  • OR postgresql10-contrib-10.6-4.8 is installed
  • OR postgresql10-devel-10.6-4.8 is installed
  • OR postgresql10-docs-10.6-4.8 is installed
  • OR postgresql10-plperl-10.6-4.8 is installed
  • OR postgresql10-plpython-10.6-4.8 is installed
  • OR postgresql10-pltcl-10.6-4.8 is installed
  • OR postgresql10-server-10.6-4.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • postgresql10-10.14-8.19 is installed
  • OR postgresql10-contrib-10.14-8.19 is installed
  • OR postgresql10-devel-10.14-8.19 is installed
  • OR postgresql10-docs-10.14-8.19 is installed
  • OR postgresql10-plperl-10.14-8.19 is installed
  • OR postgresql10-plpython-10.14-8.19 is installed
  • OR postgresql10-pltcl-10.14-8.19 is installed
  • OR postgresql10-server-10.14-8.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND Package Information
  • freetds-1.1.36-3.3 is installed
  • OR libct4-1.1.36-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • cpp48-4.8.5-24 is installed
  • OR gcc48-4.8.5-24 is installed
  • OR gcc48-32bit-4.8.5-24 is installed
  • OR gcc48-c++-4.8.5-24 is installed
  • OR gcc48-info-4.8.5-24 is installed
  • OR gcc48-locale-4.8.5-24 is installed
  • OR libasan0-4.8.5-24 is installed
  • OR libasan0-32bit-4.8.5-24 is installed
  • OR libstdc++48-devel-4.8.5-24 is installed
  • OR libstdc++48-devel-32bit-4.8.5-24 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • evince-3.10.3-2.3 is installed
  • OR evince-lang-3.10.3-2.3 is installed
  • OR libevdocument3-4-3.10.3-2.3 is installed
  • OR libevview3-3-3.10.3-2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • git-2.12.3-27.14 is installed
  • OR git-core-2.12.3-27.14 is installed
  • OR git-doc-2.12.3-27.14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • gnutls-3.2.15-18.6 is installed
  • OR libgnutls-openssl27-3.2.15-18.6 is installed
  • OR libgnutls28-3.2.15-18.6 is installed
  • OR libgnutls28-32bit-3.2.15-18.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kernel-firmware-20170530-21.22 is installed
  • OR ucode-amd-20170530-21.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • cpp48-4.8.5-30 is installed
  • OR gcc48-4.8.5-30 is installed
  • OR gcc48-32bit-4.8.5-30 is installed
  • OR gcc48-c++-4.8.5-30 is installed
  • OR gcc48-info-4.8.5-30 is installed
  • OR gcc48-locale-4.8.5-30 is installed
  • OR libasan0-4.8.5-30 is installed
  • OR libasan0-32bit-4.8.5-30 is installed
  • OR libstdc++48-devel-4.8.5-30 is installed
  • OR libstdc++48-devel-32bit-4.8.5-30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • xen-4.9.4_04-3.56 is installed
  • OR xen-doc-html-4.9.4_04-3.56 is installed
  • OR xen-libs-4.9.4_04-3.56 is installed
  • OR xen-libs-32bit-4.9.4_04-3.56 is installed
  • OR xen-tools-4.9.4_04-3.56 is installed
  • OR xen-tools-domU-4.9.4_04-3.56 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_103-default-4-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_28-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • ghostscript-9.27-23.28 is installed
  • OR ghostscript-x11-9.27-23.28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND gd-2.1.0-24.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.28.3-3.57 is installed
  • OR libwebkit2gtk-4_0-37-2.28.3-3.57 is installed
  • OR libwebkit2gtk3-lang-2.28.3-3.57 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.28.3-3.57 is installed
  • OR webkit2gtk3-2.28.3-3.57 is installed
  • OR webkit2gtk3-devel-2.28.3-3.57 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • java-11-openjdk-11.0.6.0-3.39 is installed
  • OR java-11-openjdk-demo-11.0.6.0-3.39 is installed
  • OR java-11-openjdk-devel-11.0.6.0-3.39 is installed
  • OR java-11-openjdk-headless-11.0.6.0-3.39 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.40 is installed
  • OR kernel-default-extra-4.12.14-197.40 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
  • AND Package Information
  • freerdp-2.1.2-15.7 is installed
  • OR freerdp-devel-2.1.2-15.7 is installed
  • OR libfreerdp2-2.1.2-15.7 is installed
  • OR libwinpr2-2.1.2-15.7 is installed
  • OR winpr2-devel-2.1.2-15.7 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • openstack-cinder-7.0.2~a0~dev1-1 is installed
  • OR openstack-cinder-api-7.0.2~a0~dev1-1 is installed
  • OR openstack-cinder-backup-7.0.2~a0~dev1-1 is installed
  • OR openstack-cinder-scheduler-7.0.2~a0~dev1-1 is installed
  • OR openstack-cinder-volume-7.0.2~a0~dev1-1 is installed
  • OR python-cinder-7.0.2~a0~dev1-1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • libvirt-2.0.0-27.45 is installed
  • OR libvirt-client-2.0.0-27.45 is installed
  • OR libvirt-daemon-2.0.0-27.45 is installed
  • OR libvirt-daemon-config-network-2.0.0-27.45 is installed
  • OR libvirt-daemon-config-nwfilter-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-interface-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-libxl-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-lxc-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-network-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-nodedev-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-nwfilter-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-qemu-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-secret-2.0.0-27.45 is installed
  • OR libvirt-daemon-driver-storage-2.0.0-27.45 is installed
  • OR libvirt-daemon-hooks-2.0.0-27.45 is installed
  • OR libvirt-daemon-lxc-2.0.0-27.45 is installed
  • OR libvirt-daemon-qemu-2.0.0-27.45 is installed
  • OR libvirt-daemon-xen-2.0.0-27.45 is installed
  • OR libvirt-doc-2.0.0-27.45 is installed
  • OR libvirt-lock-sanlock-2.0.0-27.45 is installed
  • OR libvirt-nss-2.0.0-27.45 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • dnsmasq-2.78-18.6 is installed
  • OR dnsmasq-utils-2.78-18.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND ansible-2.4.6.0-3.3 is installed
    • BACK