Oval Definition:oval:org.opensuse.security:def:51220
Revision Date:2020-12-01Version:1
Title:Security update for netpbm (Moderate)
Description:

This update for netpbm fixes the following issues:

Security issues fixed:

- CVE-2017-2579: Fixed out-of-bounds read in expandCodeOntoStack() (bsc#1024288). - CVE-2017-2580: Fixed out-of-bounds write of heap data in addPixelToRaster() function (bsc#1024291). - create netpbm-vulnerable subpackage and move pstopnm there, as ghostscript is used to convert (bsc#1136936)

Family:unixClass:patch
Status:Reference(s):1024288
1024291
1027519
1079730
1083424
1098403
1098531
1107832
1110233
1111025
1111331
1111853
1120067
1120095
1136936
1144502
1148643
1153108
1156317
1157770
1159913
1163985
1165631
1167462
1169511
1171924
1172698
1172704
1174662
1176590
CVE-2008-3825
CVE-2009-1273
CVE-2009-1384
CVE-2009-2285
CVE-2009-2347
CVE-2010-2065
CVE-2010-2067
CVE-2010-2233
CVE-2010-2494
CVE-2010-4665
CVE-2011-0192
CVE-2011-1167
CVE-2012-1173
CVE-2012-2113
CVE-2012-3401
CVE-2012-4564
CVE-2012-5468
CVE-2013-1960
CVE-2013-1961
CVE-2013-4231
CVE-2013-4232
CVE-2013-4243
CVE-2013-4244
CVE-2017-2579
CVE-2017-2580
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2018-12327
CVE-2018-14633
CVE-2018-17182
CVE-2018-7170
CVE-2019-10220
CVE-2019-11091
CVE-2019-13233
CVE-2019-15239
CVE-2019-5108
CVE-2020-14374
CVE-2020-14375
CVE-2020-14376
CVE-2020-14377
CVE-2020-14378
CVE-2020-1720
CVE-2020-1749
CVE-2020-2754
CVE-2020-2755
CVE-2020-2756
CVE-2020-2757
CVE-2020-2767
CVE-2020-2773
CVE-2020-2778
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2816
CVE-2020-2830
CVE-2020-8023
CVE-2020-9862
CVE-2020-9893
CVE-2020-9894
CVE-2020-9895
CVE-2020-9915
CVE-2020-9925
SUSE-SU-2018:3386-1
SUSE-SU-2019:1248-1
SUSE-SU-2019:1525-1
SUSE-SU-2020:1511-1
SUSE-SU-2020:1856-1
SUSE-SU-2020:2149-1
SUSE-SU-2020:2198-1
SUSE-SU-2020:2770-1
Platform(s):SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Legacy Software 15 SP2
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 15
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-38.5.0esr-28 is installed
  • OR MozillaFirefox-translations-38.5.0esr-28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND bogofilter-1.2.4-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • libXrender1-0.9.8-3 is installed
  • OR libXrender1-32bit-0.9.8-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND libdmx1-1.1.3-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • glibc-2.22-61 is installed
  • OR glibc-32bit-2.22-61 is installed
  • OR glibc-devel-2.22-61 is installed
  • OR glibc-devel-32bit-2.22-61 is installed
  • OR glibc-i18ndata-2.22-61 is installed
  • OR glibc-locale-2.22-61 is installed
  • OR glibc-locale-32bit-2.22-61 is installed
  • OR nscd-2.22-61 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • bind-utils-9.11.2-1 is installed
  • OR libbind9-160-9.11.2-1 is installed
  • OR libdns169-9.11.2-1 is installed
  • OR libirs160-9.11.2-1 is installed
  • OR libisc166-9.11.2-1 is installed
  • OR libisc166-32bit-9.11.2-1 is installed
  • OR libisccc160-9.11.2-1 is installed
  • OR libisccfg160-9.11.2-1 is installed
  • OR liblwres160-9.11.2-1 is installed
  • OR python-bind-9.11.2-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • libnetpbm-devel-10.80.1-3.8 is installed
  • OR netpbm-10.80.1-3.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 is installed
  • AND ntp-4.2.8p12-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 SP2 is installed
  • AND Package Information
  • openldap2-2.4.46-9.31 is installed
  • OR openldap2-back-meta-2.4.46-9.31 is installed
  • OR openldap2-back-perl-2.4.46-9.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-25_6-default-5-2 is installed
  • OR kernel-livepatch-SLE15_Update_2-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-livepatch-4_12_14-197_4-default-4-2 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_1-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • xen-4.10.3_04-3.19 is installed
  • OR xen-devel-4.10.3_04-3.19 is installed
  • OR xen-tools-4.10.3_04-3.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND Package Information
  • dpdk-19.11.4-3.9 is installed
  • OR dpdk-devel-19.11.4-3.9 is installed
  • OR dpdk-kmp-default-19.11.4_k5.3.18_24.15-3.9 is installed
  • OR dpdk-thunderx-19.11.4-3.9 is installed
  • OR dpdk-thunderx-devel-19.11.4-3.9 is installed
  • OR dpdk-thunderx-kmp-default-19.11.4_k5.3.18_24.15-3.9 is installed
  • OR dpdk-tools-19.11.4-3.9 is installed
  • OR libdpdk-20_0-19.11.4-3.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND davfs2-1.5.2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • xorg-x11-server-7.6_1.15.2-53.3 is installed
  • OR xorg-x11-server-extra-7.6_1.15.2-53.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • colord-gtk-lang-0.1.26-6 is installed
  • OR libcolord-gtk1-0.1.26-6 is installed
  • OR libcolord2-1.3.3-10 is installed
  • OR libcolord2-32bit-1.3.3-10 is installed
  • OR libcolorhug2-1.3.3-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND clamav-0.100.2-33.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_114-92_64-default-10-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_18-10-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_92-default-2-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_24-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND dstat-0.7.2-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • kernel-default-4.4.180-94.113 is installed
  • OR kernel-default-base-4.4.180-94.113 is installed
  • OR kernel-default-devel-4.4.180-94.113 is installed
  • OR kernel-devel-4.4.180-94.113 is installed
  • OR kernel-macros-4.4.180-94.113 is installed
  • OR kernel-source-4.4.180-94.113 is installed
  • OR kernel-syms-4.4.180-94.113 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-60.9.0-109.86 is installed
  • OR MozillaFirefox-translations-common-60.9.0-109.86 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_175-94_79-default-5-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_23-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • openslp-2.0.0-18.17 is installed
  • OR openslp-32bit-2.0.0-18.17 is installed
  • OR openslp-server-2.0.0-18.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND coolkey-1.1.0-148.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • java-11-openjdk-11.0.7.0-3.42 is installed
  • OR java-11-openjdk-demo-11.0.7.0-3.42 is installed
  • OR java-11-openjdk-devel-11.0.7.0-3.42 is installed
  • OR java-11-openjdk-headless-11.0.7.0-3.42 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • libecpg6-10.13-4.22 is installed
  • OR libpq5-10.13-4.22 is installed
  • OR libpq5-32bit-10.13-4.22 is installed
  • OR postgresql-12.0.1-8.14 is installed
  • OR postgresql-contrib-12.0.1-8.14 is installed
  • OR postgresql-devel-12.0.1-8.14 is installed
  • OR postgresql-docs-12.0.1-8.14 is installed
  • OR postgresql-plperl-12.0.1-8.14 is installed
  • OR postgresql-plpython-12.0.1-8.14 is installed
  • OR postgresql-pltcl-12.0.1-8.14 is installed
  • OR postgresql-server-12.0.1-8.14 is installed
  • OR postgresql10-10.13-4.22 is installed
  • OR postgresql10-contrib-10.13-4.22 is installed
  • OR postgresql10-devel-10.13-4.22 is installed
  • OR postgresql10-docs-10.13-4.22 is installed
  • OR postgresql10-plperl-10.13-4.22 is installed
  • OR postgresql10-plpython-10.13-4.22 is installed
  • OR postgresql10-pltcl-10.13-4.22 is installed
  • OR postgresql10-server-10.13-4.22 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • libsystemd0-228-150.58 is installed
  • OR libsystemd0-32bit-228-150.58 is installed
  • OR libudev1-228-150.58 is installed
  • OR libudev1-32bit-228-150.58 is installed
  • OR systemd-228-150.58 is installed
  • OR systemd-32bit-228-150.58 is installed
  • OR systemd-bash-completion-228-150.58 is installed
  • OR systemd-sysvinit-228-150.58 is installed
  • OR udev-228-150.58 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • bzip2-1.0.6-30.8 is installed
  • OR bzip2-doc-1.0.6-30.8 is installed
  • OR libbz2-1-1.0.6-30.8 is installed
  • OR libbz2-1-32bit-1.0.6-30.8 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND ansible-2.4.6.0-3.3 is installed
    • BACK