Oval Definition:	oval:org.opensuse.security:def:51094
Revision Date: 2020-12-16 Version: 1 Title: Security update for spice-gtk (Important) Description: This update for spice-gtk fixes the following issues: - CVE-2018-10873: Fixed a potential heap corruption when demarshalling (bsc#1104448) - CVE-2018-10893: Fixed a buffer overflow on image lz checks (bsc#1101295) Family: unix Class: patch Status: Reference(s): 1051510 1061840 1063993 1065600 1071995 1079730 1088047 1094555 1098633 1100408 1101295 1101982 1104448 1106383 1106751 1109137 1111647 1112646 1114279 1114957 1116717 1117275 1119493 1119532 1119835 1120423 1121600 1123156 1123179 1123823 1123828 1123832 1124167 1127155 1128432 1128902 1128910 1131644 1131645 1131868 1131870 1131871 1131872 1131874 1132154 1132390 1133401 1133640 1133738 1134303 1134395 1135296 1135556 1135642 1136157 1136598 1136922 1136935 1137103 1137194 1137429 1137625 1137728 1137884 1137995 1137996 1137998 1137999 1138000 1138002 1138003 1138005 1138006 1138007 1138008 1138009 1138010 1138011 1138012 1138013 1138014 1138015 1138016 1138017 1138018 1138019 1138291 1138293 1138374 1138375 1138589 1138719 1139751 1139771 1139782 1139865 1140133 1140328 1140405 1140424 1140428 1140575 1140577 1140637 1140658 1140715 1140719 1140726 1140727 1140728 1140814 1143578 1143581 1143582 1143584 1144443 1146403 1150934 1153259 1155784 1156920 1158696 1166933 1167331 1170771 1173991 1174157 1174284 1175686 1177513 1177729 1178003 930077 930078 930079 CVE-2011-2485 CVE-2012-0804 CVE-2014-2497 CVE-2015-4141 CVE-2015-4142 CVE-2015-4143 CVE-2015-8041 CVE-2017-13077 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081 CVE-2017-13082 CVE-2017-13086 CVE-2017-13087 CVE-2017-13088 CVE-2018-10873 CVE-2018-10893 CVE-2018-12086 CVE-2018-14526 CVE-2018-16871 CVE-2018-16872 CVE-2018-18227 CVE-2018-18954 CVE-2018-19364 CVE-2018-19489 CVE-2018-20105 CVE-2018-20748 CVE-2018-20749 CVE-2018-20750 CVE-2018-20836 CVE-2018-20860 CVE-2018-20861 CVE-2019-10126 CVE-2019-10638 CVE-2019-10639 CVE-2019-11478 CVE-2019-11555 CVE-2019-11599 CVE-2019-12380 CVE-2019-12456 CVE-2019-12614 CVE-2019-12818 CVE-2019-12819 CVE-2019-13377 CVE-2019-14382 CVE-2019-14383 CVE-2019-16275 CVE-2019-19727 CVE-2019-6778 CVE-2019-9494 CVE-2019-9495 CVE-2019-9497 CVE-2019-9498 CVE-2019-9499 CVE-2020-0430 CVE-2020-12243 CVE-2020-12351 CVE-2020-14556 CVE-2020-14562 CVE-2020-14573 CVE-2020-14577 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-15663 CVE-2020-15664 CVE-2020-15670 CVE-2020-25645 SUSE-SU-2018:3282-1 SUSE-SU-2019:0283-1 SUSE-SU-2019:0423-1 SUSE-SU-2019:1829-1 SUSE-SU-2019:2435-1 SUSE-SU-2020:0228-1 SUSE-SU-2020:0578-1 SUSE-SU-2020:1219-1 SUSE-SU-2020:2143-1 SUSE-SU-2020:3441-1 SUSE-SU-2020:3841-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for High Performance Computing 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SP1 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-24.6.0esr-0.8 is installed OR MozillaFirefox-branding-SLED-24-0.7 is installed OR MozillaFirefox-translations-24.6.0esr-0.8 is installed OR libfreebl3-3.16.1-0.8 is installed OR libfreebl3-32bit-3.16.1-0.8 is installed OR libsoftokn3-3.16.1-0.8 is installed OR libsoftokn3-32bit-3.16.1-0.8 is installed OR mozilla-nspr-4.10.6-0.3 is installed OR mozilla-nspr-32bit-4.10.6-0.3 is installed OR mozilla-nss-3.16.1-0.8 is installed OR mozilla-nss-32bit-3.16.1-0.8 is installed OR mozilla-nss-tools-3.16.1-0.8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information flash-player-11.2.202.548-0.26 is installed OR flash-player-gnome-11.2.202.548-0.26 is installed OR flash-player-kde4-11.2.202.548-0.26 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND cvs-1.12.12-181 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information dbus-1-glib-0.100.2-3 is installed OR dbus-1-glib-32bit-0.100.2-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information ecryptfs-utils-103-7 is installed OR ecryptfs-utils-32bit-103-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information augeas-1.2.0-15 is installed OR augeas-lenses-1.2.0-15 is installed OR libaugeas0-1.2.0-15 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information wireshark-2.4.10-3.12 is installed OR wireshark-devel-2.4.10-3.12 is installed OR wireshark-ui-qt-2.4.10-3.12 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 SP1 is installed AND Package Information libslurm32-17.11.13-6.23 is installed OR slurm-17.11.13-6.23 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 SP1 is installed AND Package Information openldap2-2.4.46-9.28 is installed OR openldap2-back-meta-2.4.46-9.28 is installed OR openldap2-back-perl-2.4.46-9.28 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-150.27 is installed OR kernel-default-livepatch-4.12.14-150.27 is installed OR kernel-livepatch-4_12_14-150_27-default-1-1.5 is installed OR kernel-livepatch-SLE15_Update_12-1-1.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information MozillaFirefox-78.2.0-3.105 is installed OR MozillaFirefox-branding-upstream-78.2.0-3.105 is installed OR MozillaFirefox-buildsymbols-78.2.0-3.105 is installed OR MozillaFirefox-devel-78.2.0-3.105 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.33 is installed OR kernel-azure-base-4.12.14-5.33 is installed OR kernel-azure-devel-4.12.14-5.33 is installed OR kernel-devel-azure-4.12.14-5.33 is installed OR kernel-source-azure-4.12.14-5.33 is installed OR kernel-syms-azure-4.12.14-5.33 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information qemu-2.11.2-9.20 is installed OR qemu-arm-2.11.2-9.20 is installed OR qemu-block-curl-2.11.2-9.20 is installed OR qemu-block-iscsi-2.11.2-9.20 is installed OR qemu-block-rbd-2.11.2-9.20 is installed OR qemu-block-ssh-2.11.2-9.20 is installed OR qemu-guest-agent-2.11.2-9.20 is installed OR qemu-ipxe-1.0.0+-9.20 is installed OR qemu-kvm-2.11.2-9.20 is installed OR qemu-lang-2.11.2-9.20 is installed OR qemu-ppc-2.11.2-9.20 is installed OR qemu-s390-2.11.2-9.20 is installed OR qemu-seabios-1.11.0-9.20 is installed OR qemu-sgabios-8-9.20 is installed OR qemu-vgabios-1.11.0-9.20 is installed OR qemu-x86-2.11.2-9.20 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND yast2-rmt-1.3.0-3.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information fontconfig-2.11.0-6 is installed OR fontconfig-32bit-2.11.0-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information xen-4.5.5_24-22.52 is installed OR xen-doc-html-4.5.5_24-22.52 is installed OR xen-kmp-default-4.5.5_24_k3.12.74_60.64.96-22.52 is installed OR xen-libs-4.5.5_24-22.52 is installed OR xen-libs-32bit-4.5.5_24-22.52 is installed OR xen-tools-4.5.5_24-22.52 is installed OR xen-tools-domU-4.5.5_24-22.52 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information ecryptfs-utils-103-7 is installed OR ecryptfs-utils-32bit-103-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libvirt-2.0.0-27.45 is installed OR libvirt-client-2.0.0-27.45 is installed OR libvirt-daemon-2.0.0-27.45 is installed OR libvirt-daemon-config-network-2.0.0-27.45 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.45 is installed OR libvirt-daemon-driver-interface-2.0.0-27.45 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.45 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.45 is installed OR libvirt-daemon-driver-network-2.0.0-27.45 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.45 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.45 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.45 is installed OR libvirt-daemon-driver-secret-2.0.0-27.45 is installed OR libvirt-daemon-driver-storage-2.0.0-27.45 is installed OR libvirt-daemon-hooks-2.0.0-27.45 is installed OR libvirt-daemon-lxc-2.0.0-27.45 is installed OR libvirt-daemon-qemu-2.0.0-27.45 is installed OR libvirt-daemon-xen-2.0.0-27.45 is installed OR libvirt-doc-2.0.0-27.45 is installed OR libvirt-lock-sanlock-2.0.0-27.45 is installed OR libvirt-nss-2.0.0-27.45 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information ntp-4.2.8p11-64.5 is installed OR ntp-doc-4.2.8p11-64.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kernel-firmware-20170530-21.22 is installed OR ucode-amd-20170530-21.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND autofs-5.0.9-27 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information glibc-2.22-62.22 is installed OR glibc-32bit-2.22-62.22 is installed OR glibc-devel-2.22-62.22 is installed OR glibc-devel-32bit-2.22-62.22 is installed OR glibc-html-2.22-62.22 is installed OR glibc-i18ndata-2.22-62.22 is installed OR glibc-info-2.22-62.22 is installed OR glibc-locale-2.22-62.22 is installed OR glibc-locale-32bit-2.22-62.22 is installed OR glibc-profile-2.22-62.22 is installed OR glibc-profile-32bit-2.22-62.22 is installed OR nscd-2.22-62.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_156-94_61-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_19-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libgcrypt-1.6.1-16.68 is installed OR libgcrypt20-1.6.1-16.68 is installed OR libgcrypt20-32bit-1.6.1-16.68 is installed OR libgcrypt20-hmac-1.6.1-16.68 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libtirpc-1.0.1-17.6 is installed OR libtirpc-netconfig-1.0.1-17.6 is installed OR libtirpc3-1.0.1-17.6 is installed OR libtirpc3-32bit-1.0.1-17.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information elfutils-0.158-6 is installed OR libasm1-0.158-6 is installed OR libasm1-32bit-0.158-6 is installed OR libdw1-0.158-6 is installed OR libdw1-32bit-0.158-6 is installed OR libebl1-0.158-6 is installed OR libebl1-32bit-0.158-6 is installed OR libelf-devel-0.158-6 is installed OR libelf1-0.158-6 is installed OR libelf1-32bit-0.158-6 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information java-11-openjdk-11.0.8.0-3.45 is installed OR java-11-openjdk-demo-11.0.8.0-3.45 is installed OR java-11-openjdk-devel-11.0.8.0-3.45 is installed OR java-11-openjdk-headless-11.0.8.0-3.45 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND Package Information libspice-client-glib-2_0-8-0.31-9.10.1 is installed OR libspice-client-glib-helper-0.31-9.10.1 is installed OR libspice-client-gtk-2_0-4-0.31-9.10.1 is installed OR libspice-client-gtk-3_0-4-0.31-9.10.1 is installed OR libspice-controller0-0.31-9.10.1 is installed OR typelib-1_0-SpiceClientGlib-2_0-0.31-9.10.1 is installed OR typelib-1_0-SpiceClientGtk-3_0-0.31-9.10.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information LibVNCServer-0.9.10-4.6 is installed OR libvncclient0-0.9.10-4.6 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND ruby2.1-rubygem-activerecord-4_2-4.2.2-5 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information ansible-2.2.3.0-5 is installed OR monasca-installer-20170912_10.45-5 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND cobbler-2.6.6-49.14 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND python-cryptography-2.0.3-3.3 is installed
BACK