Oval Definition:	oval:org.opensuse.security:def:50970
Revision Date: 2020-12-01 Version: 1 Title: Security update for jasper (Moderate) Description: This update for jasper fixes the following issues: - CVE-2016-9398: Improved patch for already fixed issue (bsc#1010979). - CVE-2016-9399: Fix assert in calcstepsizes (bsc#1010980). - CVE-2017-5499: Validate component depth bit (bsc#1020451). - CVE-2017-5503: Check bounds in jas_seq2d_bindsub() (bsc#1020456). - CVE-2017-5504: Check bounds in jas_seq2d_bindsub() (bsc#1020458). - CVE-2017-5505: Check bounds in jas_seq2d_bindsub() (bsc#1020460). - CVE-2017-14132: Fix heap base overflow in by checking components (bsc#1057152). - CVE-2018-9252: Fix reachable assertion in jpc_abstorelstepsize (bsc#1088278). - CVE-2018-18873: Fix null pointer deref in ras_putdatastd (bsc#1114498). - CVE-2018-19139: Fix mem leaks by registering jpc_unk_destroyparms (bsc#1115637). - CVE-2018-19543, bsc#1045450 CVE-2017-9782: Fix numchans mixup (bsc#1117328). - CVE-2018-20570: Fix heap based buffer over-read in jp2_encode (bsc#1120807). - CVE-2018-20622: Fix memory leak in jas_malloc.c (bsc#1120805). Family: unix Class: patch Status: Reference(s): 1010979 1010980 1020451 1020456 1020458 1020460 1045450 1051510 1055117 1057152 1067720 1071995 1083647 1083710 1085416 1087240 1088278 1093697 1102247 1102379 1102400 1102410 1103557 1103991 1103992 1104745 1104918 1107832 1109837 1110233 1111622 1111666 1112028 1112374 1114209 1114498 1114832 1115637 1116708 1117328 1117963 1117964 1117965 1117966 1117967 1118897 1118898 1118899 1119222 1120507 1120805 1120807 1121397 1121967 1123013 1123080 1126826 1126829 1126831 1127034 1127315 1127611 1128376 1128746 1129770 1130972 1132728 1132729 1132732 1132734 1133021 1133534 1134068 1134090 1134097 1134390 1134399 1134718 1135335 1135642 1136217 1136342 1136460 1136461 1136462 1136467 1137458 1137534 1137535 1137584 1137609 1137811 1137827 1138874 1139358 1139619 1140126 1140133 1140139 1140322 1140559 1140652 1140676 1140903 1140945 1140948 1141312 1141320 1141401 1141402 1141452 1141453 1141454 1141478 1141558 1141861 1141862 1142023 1142052 1142083 1142112 1142115 1142119 1142220 1142221 1142254 1142350 1142351 1142354 1142359 1142450 1142623 1142649 1142673 1142701 1142868 1143003 1143045 1143105 1143185 1143189 1143191 1143209 1143507 1143609 1144065 1146098 1146105 1146107 1149943 1149944 1153768 1153770 1157755 1160254 1160590 1162680 1163184 1163333 1163744 1164505 1165784 1169095 1169521 1169850 1169851 1171437 1171883 1172307 1173159 1173160 1173161 1173359 1174120 1175475 1176382 CVE-2016-9398 CVE-2016-9399 CVE-2017-14132 CVE-2017-5499 CVE-2017-5503 CVE-2017-5504 CVE-2017-5505 CVE-2017-9782 CVE-2018-0886 CVE-2018-1000852 CVE-2018-1336 CVE-2018-14633 CVE-2018-16873 CVE-2018-16874 CVE-2018-16875 CVE-2018-17182 CVE-2018-18074 CVE-2018-18873 CVE-2018-19139 CVE-2018-19543 CVE-2018-20570 CVE-2018-20622 CVE-2018-20855 CVE-2018-8014 CVE-2018-8034 CVE-2018-8037 CVE-2018-8784 CVE-2018-8785 CVE-2018-8786 CVE-2018-8787 CVE-2018-8788 CVE-2018-8789 CVE-2018-9252 CVE-2019-10214 CVE-2019-10245 CVE-2019-1125 CVE-2019-11810 CVE-2019-12972 CVE-2019-13631 CVE-2019-13648 CVE-2019-14250 CVE-2019-14283 CVE-2019-14284 CVE-2019-14444 CVE-2019-17450 CVE-2019-17451 CVE-2019-2602 CVE-2019-2684 CVE-2019-2697 CVE-2019-2698 CVE-2019-5736 CVE-2019-6486 CVE-2019-9074 CVE-2019-9075 CVE-2019-9077 CVE-2019-9848 CVE-2019-9849 CVE-2019-9850 CVE-2019-9851 CVE-2019-9852 CVE-2019-9854 CVE-2019-9855 CVE-2020-10029 CVE-2020-10700 CVE-2020-10704 CVE-2020-10730 CVE-2020-10745 CVE-2020-10760 CVE-2020-14303 CVE-2020-14352 CVE-2020-25212 SUSE-SU-2018:3011-1 SUSE-SU-2019:0539-1 SUSE-SU-2019:1234-1 SUSE-SU-2019:1308-1 SUSE-SU-2019:1487-1 SUSE-SU-2019:2073-1 SUSE-SU-2019:2340-1 SUSE-SU-2019:2402-1 SUSE-SU-2020:0668-1 SUSE-SU-2020:1858-1 SUSE-SU-2020:2689-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Containers 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP2 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information libxml2-2.7.6-0.37 is installed OR libxml2-32bit-2.7.6-0.37 is installed OR libxml2-python-2.7.6-0.37 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libX11-6-1.6.2-4 is installed OR libX11-6-32bit-1.6.2-4 is installed OR libX11-data-1.6.2-4 is installed OR libX11-xcb1-1.6.2-4 is installed OR libX11-xcb1-32bit-1.6.2-4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information alsa-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libasan2-5.3.1+r233831-9 is installed OR libasan2-32bit-5.3.1+r233831-9 is installed OR libffi4-5.3.1+r233831-9 is installed OR libffi4-32bit-5.3.1+r233831-9 is installed OR libmpx0-5.3.1+r233831-9 is installed OR libmpx0-32bit-5.3.1+r233831-9 is installed OR libmpxwrappers0-5.3.1+r233831-9 is installed OR libmpxwrappers0-32bit-5.3.1+r233831-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information expat-2.1.0-20 is installed OR libexpat1-2.1.0-20 is installed OR libexpat1-32bit-2.1.0-20 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gd-2.1.0-24.9 is installed OR gd-32bit-2.1.0-24.9 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information jasper-2.0.14-3.16 is installed OR libjasper4-2.0.14-3.16 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 15 is installed AND Package Information containerd-1.2.5-5.13 is installed OR docker-18.09.6_ce-6.17 is installed OR docker-bash-completion-18.09.6_ce-6.17 is installed OR docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed OR docker-runc-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.35-3.20 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.35-3.20 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_19-default-2-2 is installed OR kernel-livepatch-SLE15_Update_5-2-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed AND Package Information kernel-livepatch-5_3_18-24_15-default-2-2 is installed OR kernel-livepatch-SLE15-SP2_Update_3-2-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information glibc-2.26-13.39 is installed OR glibc-devel-static-32bit-2.26-13.39 is installed OR glibc-html-2.26-13.39 is installed OR glibc-locale-base-32bit-2.26-13.39 is installed OR glibc-profile-32bit-2.26-13.39 is installed OR glibc-utils-32bit-2.26-13.39 is installed OR glibc-utils-src-2.26-13.39 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information ctdb-pcp-pmda-4.11.11+git.180.2cf3b203f07-4.5 is installed OR ctdb-tests-4.11.11+git.180.2cf3b203f07-4.5 is installed OR ldb-2.0.12-3.3 is installed OR libdcerpc-samr0-32bit-4.11.11+git.180.2cf3b203f07-4.5 is installed OR libsamba-policy0-python3-32bit-4.11.11+git.180.2cf3b203f07-4.5 is installed OR libsmbclient0-32bit-4.11.11+git.180.2cf3b203f07-4.5 is installed OR python3-ldb-32bit-2.0.12-3.3 is installed OR samba-4.11.11+git.180.2cf3b203f07-4.5 is installed OR samba-ad-dc-32bit-4.11.11+git.180.2cf3b203f07-4.5 is installed OR samba-client-32bit-4.11.11+git.180.2cf3b203f07-4.5 is installed OR samba-doc-4.11.11+git.180.2cf3b203f07-4.5 is installed OR samba-libs-python3-32bit-4.11.11+git.180.2cf3b203f07-4.5 is installed OR samba-test-4.11.11+git.180.2cf3b203f07-4.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND Package Information python-requests-2.20.1-6.3 is installed OR python2-requests-2.20.1-6.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND skopeo-0.1.32-4.8 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information tomcat-9.0.10-3.7 is installed OR tomcat-admin-webapps-9.0.10-3.7 is installed OR tomcat-el-3_0-api-9.0.10-3.7 is installed OR tomcat-jsp-2_3-api-9.0.10-3.7 is installed OR tomcat-lib-9.0.10-3.7 is installed OR tomcat-servlet-4_0-api-9.0.10-3.7 is installed OR tomcat-webapps-9.0.10-3.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND mailman-2.1.17-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_29-default-7-2 is installed OR kgraft-patch-3_12_69-60_64_29-xen-7-2 is installed OR kgraft-patch-SLE12-SP1_Update_12-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libsystemd0-228-150.58 is installed OR libsystemd0-32bit-228-150.58 is installed OR libudev1-228-150.58 is installed OR libudev1-32bit-228-150.58 is installed OR systemd-228-150.58 is installed OR systemd-32bit-228-150.58 is installed OR systemd-bash-completion-228-150.58 is installed OR systemd-sysvinit-228-150.58 is installed OR udev-228-150.58 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kernel-firmware-20170530-21.22 is installed OR ucode-amd-20170530-21.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_29-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_10-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libXvnc1-1.6.0-18.28 is installed OR tigervnc-1.6.0-18.28 is installed OR xorg-x11-Xvnc-1.6.0-18.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND squid-3.5.21-26.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_97-default-3-2 is installed OR kgraft-patch-SLE12-SP3_Update_26-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information sysstat-12.0.2-10.18 is installed OR sysstat-isag-12.0.2-10.18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information cvs-1.12.12-182.3 is installed OR cvs-doc-1.12.12-182.3 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND permissions-20180125-3.27 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information freerdp-2.0.0~rc4-3.3 is installed OR freerdp-devel-2.0.0~rc4-3.3 is installed OR libfreerdp2-2.0.0~rc4-3.3 is installed OR libwinpr2-2.0.0~rc4-3.3 is installed OR winpr2-devel-2.0.0~rc4-3.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.15 is installed OR kernel-default-extra-4.12.14-197.15 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND python-Django-1.8.9-1 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information postgresql94-9.4.19-21.22 is installed OR postgresql94-contrib-9.4.19-21.22 is installed OR postgresql94-docs-9.4.19-21.22 is installed OR postgresql94-server-9.4.19-21.22 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND slf4j-1.7.12-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-Django1-1.11.23-3.9 is installed
BACK