Oval Definition:oval:org.opensuse.security:def:51341
Revision Date:2020-12-01Version:1
Title:Security update for libqt5-qtbase (Important)
Description:

This update for libqt5-qtbase fixes the following issues:

- CVE-2020-17507: Fixed a buffer overflow in XBM parser (bsc#1176315) - Fixed various issues discovered by fuzzing: - Made handling of XDG_RUNTIME_DIR more secure (bsc#1172515):
Family:unixClass:patch
Status:Reference(s):1012382
1046303
1048942
1050242
1051510
1053043
1055186
1056787
1058115
1063638
1064802
1065600
1065729
1066129
1068546
1071995
1075020
1078248
1082387
1082555
1082635
1083647
1085535
1089644
1089895
1090888
1091041
1099658
1103990
1103991
1103992
1104353
1104427
1104745
1106011
1106284
1108043
1108193
1108838
1108937
1109837
1110946
1111666
1111696
1112063
1112178
1112374
1113722
1113956
1114279
1114427
1115026
1115688
1117158
1117169
1117561
1118139
1119843
1120091
1120423
1120566
1120843
1120853
1120902
1122776
1123454
1123663
1124278
1124503
1124839
1126356
1127354
1127355
1127371
1127616
1128052
1128904
1128979
1129138
1129273
1129497
1129693
1129770
1130579
1130699
1130972
1131107
1131326
1131451
1131488
1131565
1131673
1132044
1133021
1133176
1133188
1133190
1133320
1133612
1133616
1134160
1134162
1134199
1134200
1134201
1134202
1134203
1134204
1134205
1134354
1134393
1134459
1134460
1134461
1134537
1134597
1134651
1134671
1134760
1134806
1134810
1134813
1134848
1134936
1135006
1135007
1135008
1135056
1135100
1135120
1135278
1135281
1135309
1135312
1135314
1135315
1135316
1135320
1135323
1135330
1135492
1135542
1135556
1135603
1135642
1135661
1135758
1136206
1136424
1136428
1136430
1136432
1136434
1136435
1136438
1136439
1136477
1136478
1136573
1136586
1136881
1136935
1136990
1137151
1137152
1137153
1137162
1137372
1137444
1137586
1137739
1137752
1138039
1140948
1142095
1142685
1143706
1143959
1144333
1146519
1146544
1149448
1150466
1151548
1151794
1151900
1152489
1152631
1152782
1153165
1153628
1153681
1153811
1154043
1154058
1154124
1154217
1154355
1154526
1154824
1154956
1155021
1155331
1155334
1155689
1155692
1155836
1155897
1155921
1156187
1156258
1156259
1156429
1156462
1156466
1156471
1156494
1156609
1156700
1156729
1156882
1157038
1157042
1157070
1157143
1157145
1157158
1157162
1157169
1157171
1157173
1157178
1157180
1157182
1157183
1157184
1157191
1157193
1157197
1157298
1157303
1157307
1157324
1157333
1157424
1157463
1157499
1157678
1157698
1157778
1157853
1157908
1158049
1158063
1158064
1158065
1158066
1158067
1158068
1158082
1158094
1158095
1158132
1158265
1158381
1158394
1158398
1158407
1158410
1158413
1158417
1158427
1158445
1158533
1158637
1158638
1158639
1158640
1158641
1158643
1158644
1158645
1158646
1158647
1158649
1158651
1158652
1158823
1158824
1158827
1158834
1158893
1158900
1158903
1158904
1158954
1159024
1159297
1160388
1160947
1164780
1164871
1165183
1165478
1165741
1166969
1166978
1167574
1167851
1167867
1168332
1168670
1168789
1169020
1169514
1169525
1169762
1170056
1170125
1170145
1170284
1170345
1170457
1170522
1170592
1170617
1170618
1170620
1170621
1170770
1170778
1170791
1170901
1171078
1171098
1171118
1171189
1171191
1171195
1171202
1171205
1171214
1171217
1171218
1171219
1171220
1171244
1171252
1171254
1171293
1171417
1171527
1171599
1171600
1171601
1171602
1171604
1171605
1171606
1171607
1171608
1171609
1171610
1171611
1171612
1171613
1171614
1171615
1171616
1171617
1171618
1171619
1171620
1171621
1171622
1171623
1171624
1171625
1171626
1171662
1171679
1171691
1171692
1171694
1171695
1171736
1171817
1171948
1171949
1171951
1171952
1171979
1171982
1171983
1172017
1172096
1172097
1172098
1172099
1172101
1172102
1172103
1172104
1172127
1172130
1172185
1172188
1172199
1172201
1172202
1172221
1172249
1172251
1172317
1172342
1172343
1172344
1172366
1172378
1172391
1172397
1172405
1172453
1172515
1175070
1175071
1175074
1175992
1176012
1176072
1176315
1176382
1176896
1177513
1177729
CVE-2009-0799
CVE-2009-0800
CVE-2009-1179
CVE-2009-1180
CVE-2009-1181
CVE-2009-1182
CVE-2009-1183
CVE-2009-1187
CVE-2009-1188
CVE-2009-3607
CVE-2009-3608
CVE-2009-5044
CVE-2009-5080
CVE-2009-5081
CVE-2013-1788
CVE-2013-1789
CVE-2013-1790
CVE-2013-4473
CVE-2013-4474
CVE-2014-3248
CVE-2015-0797
CVE-2018-1000199
CVE-2018-7191
CVE-2019-10124
CVE-2019-11085
CVE-2019-11477
CVE-2019-11478
CVE-2019-11479
CVE-2019-11486
CVE-2019-11487
CVE-2019-11815
CVE-2019-11833
CVE-2019-11884
CVE-2019-12382
CVE-2019-14853
CVE-2019-14859
CVE-2019-14889
CVE-2019-14895
CVE-2019-14901
CVE-2019-15213
CVE-2019-15916
CVE-2019-16231
CVE-2019-17055
CVE-2019-18660
CVE-2019-18683
CVE-2019-18805
CVE-2019-18808
CVE-2019-18809
CVE-2019-19049
CVE-2019-19051
CVE-2019-19052
CVE-2019-19056
CVE-2019-19057
CVE-2019-19058
CVE-2019-19060
CVE-2019-19062
CVE-2019-19063
CVE-2019-19065
CVE-2019-19066
CVE-2019-19067
CVE-2019-19068
CVE-2019-19073
CVE-2019-19074
CVE-2019-19075
CVE-2019-19077
CVE-2019-19227
CVE-2019-19332
CVE-2019-19338
CVE-2019-19462
CVE-2019-19523
CVE-2019-19524
CVE-2019-19525
CVE-2019-19526
CVE-2019-19527
CVE-2019-19528
CVE-2019-19529
CVE-2019-19530
CVE-2019-19531
CVE-2019-19532
CVE-2019-19533
CVE-2019-19534
CVE-2019-19535
CVE-2019-19536
CVE-2019-19537
CVE-2019-19543
CVE-2019-19767
CVE-2019-20806
CVE-2019-20812
CVE-2019-3846
CVE-2019-5489
CVE-2019-9455
CVE-2020-0431
CVE-2020-0543
CVE-2020-10690
CVE-2020-10711
CVE-2020-10720
CVE-2020-10732
CVE-2020-10751
CVE-2020-10757
CVE-2020-11984
CVE-2020-11993
CVE-2020-12114
CVE-2020-12351
CVE-2020-12464
CVE-2020-12652
CVE-2020-12653
CVE-2020-12654
CVE-2020-12655
CVE-2020-12656
CVE-2020-12657
CVE-2020-12659
CVE-2020-12768
CVE-2020-12769
CVE-2020-13143
CVE-2020-14381
CVE-2020-14386
CVE-2020-17507
CVE-2020-24394
CVE-2020-25212
CVE-2020-25645
CVE-2020-8022
CVE-2020-9490
SUSE-SU-2019:1529-1
SUSE-SU-2019:2891-2
SUSE-SU-2019:3381-1
SUSE-SU-2020:0130-1
SUSE-SU-2020:1599-1
SUSE-SU-2020:1789-1
SUSE-SU-2020:2344-1
SUSE-SU-2020:2742-1
SUSE-SU-2020:3180-1
SUSE-SU-2020:3402-1
Platform(s):openSUSE Leap 15.0
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2
SUSE Linux Enterprise Module for Desktop Applications 15 SP2
SUSE Linux Enterprise Module for Development Tools 15
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Live Patching 15 SP1
SUSE Linux Enterprise Module for Live Patching 15 SP2
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Workstation Extension 15
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • fuse-2.9.7-lp150.1 is installed
  • OR libfuse2-2.9.7-lp150.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • acroread-9.5.5-0.5.5 is installed
  • OR acroread-cmaps-9.4.6-0.4.5 is installed
  • OR acroread-fonts-ja-9.4.6-0.4.5 is installed
  • OR acroread-fonts-ko-9.4.6-0.4.5 is installed
  • OR acroread-fonts-zh_CN-9.4.6-0.4.5 is installed
  • OR acroread-fonts-zh_TW-9.4.6-0.4.5 is installed
  • OR acroread_ja-9.4.2-0.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • bind-9.9.6P1-0.22 is installed
  • OR bind-libs-9.9.6P1-0.22 is installed
  • OR bind-libs-32bit-9.9.6P1-0.22 is installed
  • OR bind-utils-9.9.6P1-0.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • libpoppler-glib8-0.24.4-3 is installed
  • OR libpoppler-qt4-4-0.24.4-3 is installed
  • OR libpoppler44-0.24.4-3 is installed
  • OR poppler-tools-0.24.4-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND facter-2.0.2-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • bash-4.3-78 is installed
  • OR bash-doc-4.3-78 is installed
  • OR bash-lang-4.3-78 is installed
  • OR libreadline6-6.3-78 is installed
  • OR libreadline6-32bit-6.3-78 is installed
  • OR readline-doc-6.3-78 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND coolkey-1.1.0-147 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND autofs-5.0.9-28.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed
  • AND Package Information
  • python-ecdsa-0.13.3-3.3 is installed
  • OR python2-ecdsa-0.13.3-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed
  • AND Package Information
  • libQt5OpenGLExtensions-devel-static-5.12.7-4.6 is installed
  • OR libQt5Sql5-mysql-5.12.7-4.6 is installed
  • OR libQt5Sql5-postgresql-5.12.7-4.6 is installed
  • OR libQt5Sql5-unixODBC-5.12.7-4.6 is installed
  • OR libqt5-qtbase-5.12.7-4.6 is installed
  • OR libqt5-qtbase-platformtheme-gtk3-5.12.7-4.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 is installed
  • AND Package Information
  • kernel-docs-4.12.14-150.22 is installed
  • OR kernel-obs-build-4.12.14-150.22 is installed
  • OR kernel-source-4.12.14-150.22 is installed
  • OR kernel-syms-4.12.14-150.22 is installed
  • OR kernel-vanilla-4.12.14-150.22 is installed
  • OR kernel-vanilla-base-4.12.14-150.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-150.22 is installed
  • OR kernel-default-livepatch-4.12.14-150.22 is installed
  • OR kernel-livepatch-4_12_14-150_22-default-1-1.5 is installed
  • OR kernel-livepatch-SLE15_Update_11-1-1.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.45 is installed
  • OR kernel-default-livepatch-4.12.14-197.45 is installed
  • OR kernel-default-livepatch-devel-4.12.14-197.45 is installed
  • OR kernel-livepatch-4_12_14-197_45-default-1-3.5 is installed
  • OR kernel-livepatch-SLE15-SP1_Update_12-1-3.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 SP2 is installed
  • AND Package Information
  • kernel-livepatch-5_3_18-24_24-default-3-2 is installed
  • OR kernel-livepatch-SLE15-SP2_Update_4-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND Package Information
  • apache2-2.4.33-3.33 is installed
  • OR apache2-devel-2.4.33-3.33 is installed
  • OR apache2-doc-2.4.33-3.33 is installed
  • OR apache2-prefork-2.4.33-3.33 is installed
  • OR apache2-utils-2.4.33-3.33 is installed
  • OR apache2-worker-2.4.33-3.33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libpulse-mainloop-glib0-5.0-2 is installed
  • OR libpulse-mainloop-glib0-32bit-5.0-2 is installed
  • OR libpulse0-5.0-2 is installed
  • OR libpulse0-32bit-5.0-2 is installed
  • OR pulseaudio-5.0-2 is installed
  • OR pulseaudio-esound-compat-5.0-2 is installed
  • OR pulseaudio-gdm-hooks-5.0-2 is installed
  • OR pulseaudio-lang-5.0-2 is installed
  • OR pulseaudio-module-x11-5.0-2 is installed
  • OR pulseaudio-module-zeroconf-5.0-2 is installed
  • OR pulseaudio-utils-5.0-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND sudo-1.8.10p3-2.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • file-5.19-9 is installed
  • OR file-magic-5.19-9 is installed
  • OR libmagic1-5.19-9 is installed
  • OR libmagic1-32bit-5.19-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-52.9.0esr-109.38 is installed
  • OR MozillaFirefox-devel-52.9.0esr-109.38 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_92-default-3-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_24-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • augeas-1.2.0-15 is installed
  • OR augeas-lenses-1.2.0-15 is installed
  • OR libaugeas0-1.2.0-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • git-2.12.3-27.22 is installed
  • OR git-core-2.12.3-27.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_176-94_88-default-5-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_24-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_140-94_42-default-10-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_15-10-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libQtWebKit4-4.8.7+2.3.4-4.7 is installed
  • OR libQtWebKit4-32bit-4.8.7+2.3.4-4.7 is installed
  • OR libqca2-2.0.3-17.7 is installed
  • OR libqca2-32bit-2.0.3-17.7 is installed
  • OR libqt4-4.8.7-8.8 is installed
  • OR libqt4-32bit-4.8.7-8.8 is installed
  • OR libqt4-devel-doc-4.8.7-8.8 is installed
  • OR libqt4-qt3support-4.8.7-8.8 is installed
  • OR libqt4-qt3support-32bit-4.8.7-8.8 is installed
  • OR libqt4-sql-4.8.7-8.8 is installed
  • OR libqt4-sql-32bit-4.8.7-8.8 is installed
  • OR libqt4-sql-mysql-4.8.7-8.8 is installed
  • OR libqt4-sql-plugins-4.8.7-8.8 is installed
  • OR libqt4-sql-sqlite-4.8.7-8.8 is installed
  • OR libqt4-x11-4.8.7-8.8 is installed
  • OR libqt4-x11-32bit-4.8.7-8.8 is installed
  • OR qt4-x11-tools-4.8.7-8.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libcairo-gobject2-1.15.2-25.3 is installed
  • OR libcairo-gobject2-32bit-1.15.2-25.3 is installed
  • OR libcairo-script-interpreter2-1.15.2-25.3 is installed
  • OR libcairo2-1.15.2-25.3 is installed
  • OR libcairo2-32bit-1.15.2-25.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • tomcat-9.0.35-3.57 is installed
  • OR tomcat-admin-webapps-9.0.35-3.57 is installed
  • OR tomcat-el-3_0-api-9.0.35-3.57 is installed
  • OR tomcat-jsp-2_3-api-9.0.35-3.57 is installed
  • OR tomcat-lib-9.0.35-3.57 is installed
  • OR tomcat-servlet-4_0-api-9.0.35-3.57 is installed
  • OR tomcat-webapps-9.0.35-3.57 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • libssh-0.7.5-6.9 is installed
  • OR libssh-devel-0.7.5-6.9 is installed
  • OR libssh4-0.7.5-6.9 is installed
  • OR libssh4-32bit-0.7.5-6.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-150.47 is installed
  • OR kernel-default-extra-4.12.14-150.47 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND ucode-intel-20190618-13.47 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libpolkit0-0.113-5.18 is installed
  • OR polkit-0.113-5.18 is installed
  • OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Twisted-15.2.1-9.5 is installed
    • BACK