OVAL Reference oval:org.opensuse.security:def:51249

Oval Definition:

oval:org.opensuse.security:def:51249

Revision Date:	2020-12-01	Version:	1
Title:	Security update for ImageMagick (Moderate)
Description:	This update for ImageMagick fixes the following issues: Security issues fixed: - CVE-2019-15139: Fixed a denial-of-service vulnerability in ReadXWDImage (bsc#1146213). - CVE-2019-15140: Fixed a use-after-free bug in the Matlab image parser (bsc#1146212). - CVE-2019-15141: Fixed a divide-by-zero vulnerability in the MeanShiftImage function (bsc#1146211). - CVE-2019-14980: Fixed an application crash resulting from a heap-based buffer over-read in WriteTIFFImage (bsc#1146068). - CVE-2019-14981: Fixed a use after free in the UnmapBlob function (bsc#1146065). - CVE-2019-16708: Fixed a memory leak in magick/xwindow.c (bsc#1151781). - CVE-2019-16709: Fixed a memory leak in coders/dps.c (bsc#1151782). - CVE-2019-16710: Fixed a memory leak in coders/dot.c (bsc#1151783). - CVE-2019-16711: Fixed a memory leak in Huffman2DEncodeImage in coders/ps2.c (bsc#1151784). - CVE-2019-16712: Fixed a memory leak in Huffman2DEncodeImage in coders/ps3.c (bsc#1151785). - CVE-2019-16713: Fixed a memory leak in coders/dot.c (bsc#1151786).
Family:	unix	Class:	patch
Status:		Reference(s):	1106191 1114837 1136446 1137597 1140747 1146065 1146068 1146090 1146091 1146093 1146094 1146095 1146097 1146099 1146100 1146211 1146212 1146213 1150556 1151781 1151782 1151783 1151784 1151785 1151786 1152497 1154448 1154456 1154458 1154461 1155381 1155945 1158910 1159740 1160968 1171252 1171254 1171746 1172437 1172686 1173937 1173998 1176589 CVE-2009-0790 CVE-2012-1571 CVE-2012-2388 CVE-2012-4024 CVE-2012-4025 CVE-2013-2944 CVE-2013-5018 CVE-2013-6075 CVE-2013-6076 CVE-2014-2338 CVE-2014-3230 CVE-2018-1000199 CVE-2018-10938 CVE-2018-12207 CVE-2018-16850 CVE-2019-11135 CVE-2019-11477 CVE-2019-11478 CVE-2019-14980 CVE-2019-14981 CVE-2019-15139 CVE-2019-15140 CVE-2019-15141 CVE-2019-16708 CVE-2019-16709 CVE-2019-16710 CVE-2019-16711 CVE-2019-16712 CVE-2019-16713 CVE-2019-18420 CVE-2019-18421 CVE-2019-18424 CVE-2019-18425 CVE-2019-3846 CVE-2019-9511 CVE-2019-9512 CVE-2019-9513 CVE-2019-9514 CVE-2019-9515 CVE-2019-9516 CVE-2019-9517 CVE-2019-9518 CVE-2020-10757 CVE-2020-12653 CVE-2020-12654 CVE-2020-13753 CVE-2020-15095 CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2654 CVE-2020-2659 CVE-2020-8252 CVE-2020-9802 CVE-2020-9803 CVE-2020-9805 CVE-2020-9806 CVE-2020-9807 CVE-2020-9843 CVE-2020-9850 SUSE-SU-2018:2964-1 SUSE-SU-2018:3942-1 SUSE-SU-2019:2259-1 SUSE-SU-2019:2896-1 SUSE-SU-2019:2960-1 SUSE-SU-2020:0231-1 SUSE-SU-2020:0519-1 SUSE-SU-2020:1990-1 SUSE-SU-2020:2829-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information MozillaFirefox-17.0.5esr-0.4 is installed OR MozillaFirefox-branding-SLED-7-0.6.9 is installed OR MozillaFirefox-translations-17.0.5esr-0.4 is installed OR libfreebl3-3.14.3-0.4.3 is installed OR libfreebl3-32bit-3.14.3-0.4.3 is installed OR mozilla-nspr-4.9.6-0.3 is installed OR mozilla-nspr-32bit-4.9.6-0.3 is installed OR mozilla-nss-3.14.3-0.4.3 is installed OR mozilla-nss-32bit-3.14.3-0.4.3 is installed OR mozilla-nss-tools-3.14.3-0.4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information ecryptfs-utils-61-1.35 is installed OR ecryptfs-utils-32bit-61-1.35 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information file-5.19-2 is installed OR file-magic-5.19-2 is installed OR libmagic1-5.19-2 is installed OR libmagic1-32bit-5.19-2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libjbig2-2.0-12 is installed OR libjbig2-32bit-2.0-12 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND clamav-0.99.2-25 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information java-1_7_0-openjdk-plugin-1.6.2-2.8 is installed OR java-1_8_0-openjdk-plugin-1.6.2-2.10 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND dracut-044.1-9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information postgresql10-10.6-4.8 is installed OR postgresql10-test-10.6-4.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information ImageMagick-7.0.7.34-3.72 is installed OR ImageMagick-config-7-SUSE-7.0.7.34-3.72 is installed OR ImageMagick-devel-7.0.7.34-3.72 is installed OR libMagick++-7_Q16HDRI4-7.0.7.34-3.72 is installed OR libMagick++-devel-7.0.7.34-3.72 is installed OR libMagickCore-7_Q16HDRI6-7.0.7.34-3.72 is installed OR libMagickWand-7_Q16HDRI6-7.0.7.34-3.72 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information java-1_8_0-openjdk-1.8.0.242-3.30 is installed OR java-1_8_0-openjdk-demo-1.8.0.242-3.30 is installed OR java-1_8_0-openjdk-devel-1.8.0.242-3.30 is installed OR java-1_8_0-openjdk-headless-1.8.0.242-3.30 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_16-default-2-2 is installed OR kernel-livepatch-SLE15_Update_4-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-197_34-default-3-2 is installed OR kernel-livepatch-SLE15-SP1_Update_9-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information xen-4.10.4_06-3.25 is installed OR xen-devel-4.10.4_06-3.25 is installed OR xen-tools-4.10.4_06-3.25 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs10-10.16.3-1.12 is installed OR nodejs10-devel-10.16.3-1.12 is installed OR nodejs10-docs-10.16.3-1.12 is installed OR npm10-10.16.3-1.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information gpg2-2.0.24-1 is installed OR gpg2-lang-2.0.24-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.10-38.5 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.10-38.5 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.10-38.5 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.10-38.5 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.10-38.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information expat-2.1.0-17 is installed OR libexpat1-2.1.0-17 is installed OR libexpat1-32bit-2.1.0-17 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information perl-5.18.2-12.14 is installed OR perl-32bit-5.18.2-12.14 is installed OR perl-base-5.18.2-12.14 is installed OR perl-doc-5.18.2-12.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kernel-default-4.4.121-92.109 is installed OR kernel-default-base-4.4.121-92.109 is installed OR kernel-default-devel-4.4.121-92.109 is installed OR kernel-devel-4.4.121-92.109 is installed OR kernel-macros-4.4.121-92.109 is installed OR kernel-source-4.4.121-92.109 is installed OR kernel-syms-4.4.121-92.109 is installed OR kgraft-patch-4_4_121-92_109-default-1-3.5 is installed OR kgraft-patch-SLE12-SP2_Update_29-1-3.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_120-92_70-default-3-2 is installed OR kgraft-patch-SLE12-SP2_Update_20-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache-commons-daemon-1.0.15-6 is installed OR apache-commons-daemon-javadoc-1.0.15-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libgcrypt-1.6.1-16.68 is installed OR libgcrypt20-1.6.1-16.68 is installed OR libgcrypt20-32bit-1.6.1-16.68 is installed OR libgcrypt20-hmac-1.6.1-16.68 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kernel-default-4.4.180-94.103 is installed OR kernel-default-base-4.4.180-94.103 is installed OR kernel-default-devel-4.4.180-94.103 is installed OR kernel-devel-4.4.180-94.103 is installed OR kernel-macros-4.4.180-94.103 is installed OR kernel-source-4.4.180-94.103 is installed OR kernel-syms-4.4.180-94.103 is installed OR kgraft-patch-4_4_180-94_103-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_28-1-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information ghostscript-9.27-23.31 is installed OR ghostscript-x11-9.27-23.31 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND clamav-0.100.1-33.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information evince-3.20.2-6.22 is installed OR evince-browser-plugin-3.20.2-6.22 is installed OR evince-lang-3.20.2-6.22 is installed OR evince-plugin-djvudocument-3.20.2-6.22 is installed OR evince-plugin-dvidocument-3.20.2-6.22 is installed OR evince-plugin-pdfdocument-3.20.2-6.22 is installed OR evince-plugin-psdocument-3.20.2-6.22 is installed OR evince-plugin-tiffdocument-3.20.2-6.22 is installed OR evince-plugin-xpsdocument-3.20.2-6.22 is installed OR libevdocument3-4-3.20.2-6.22 is installed OR libevview3-3-3.20.2-6.22 is installed OR nautilus-evince-3.20.2-6.22 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.3-3.57 is installed OR libwebkit2gtk-4_0-37-2.28.3-3.57 is installed OR libwebkit2gtk3-lang-2.28.3-3.57 is installed OR webkit2gtk-4_0-injected-bundles-2.28.3-3.57 is installed OR webkit2gtk3-2.28.3-3.57 is installed OR webkit2gtk3-devel-2.28.3-3.57 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information nodejs10-10.22.1-1.27 is installed OR nodejs10-devel-10.22.1-1.27 is installed OR nodejs10-docs-10.22.1-1.27 is installed OR npm10-10.22.1-1.27 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information kernel-default-4.4.121-92.117 is installed OR kernel-default-base-4.4.121-92.117 is installed OR kernel-default-devel-4.4.121-92.117 is installed OR kernel-default-man-4.4.121-92.117 is installed OR kernel-devel-4.4.121-92.117 is installed OR kernel-macros-4.4.121-92.117 is installed OR kernel-source-4.4.121-92.117 is installed OR kernel-syms-4.4.121-92.117 is installed OR kgraft-patch-4_4_121-92_117-default-1-3.3 is installed OR kgraft-patch-SLE12-SP2_Update_31-1-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND python-Django-1.11.11-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information kernel-default-4.4.180-94.103 is installed OR kernel-default-base-4.4.180-94.103 is installed OR kernel-default-devel-4.4.180-94.103 is installed OR kernel-devel-4.4.180-94.103 is installed OR kernel-macros-4.4.180-94.103 is installed OR kernel-source-4.4.180-94.103 is installed OR kernel-syms-4.4.180-94.103 is installed OR kgraft-patch-4_4_180-94_103-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_28-1-4.3 is installed

BACK