Oval Definition:	oval:org.opensuse.security:def:51365
Revision Date: 2020-12-01 Version: 1 Title: Security update for ImageMagick (Moderate) Description: This update for ImageMagick fixes the following issues: The following security vulnerabilities were fixed: - CVE-2018-11625: Fixed heap-based buffer over-read in SetGrayscaleImage in the quantize.c file, which allowed remote attackers to cause buffer over-read via a crafted file. (bsc#1096200) - CVE-2018-11624: Fixed a use-after-free issue in the ReadMATImage function in coders/mat.c. (bsc#1096203) - CVE-2018-10805: Fixed several memory leaks in bgr.c, rgb.c, cmyk.c, gray.c, and ycbcr.c (bsc#1095812) - CVE-2018-12600: The ReadDIBImage and WriteDIBImage functions allowed attackers to cause an out of bounds write via a crafted file (bsc#1098545). - CVE-2018-12599: The ReadBMPImage and WriteBMPImage fucntions allowed attackers to cause an out of bounds write via a crafted file (bsc#1098546). The following other changes were made: - Fix -gamma issues in special cases. (bsc#1094745, bsc#1094742) Family: unix Class: patch Status: Reference(s): 1024718 1046299 1050242 1050244 1051510 1055117 1055120 1055121 1055186 1058115 1060463 1061840 1065600 1065729 1068273 1071995 1078248 1079935 1082387 1082555 1082653 1083647 1083710 1085535 1086196 1086282 1086283 1086423 1087978 1088386 1089350 1090888 1091405 1091800 1094244 1094742 1094745 1095812 1096200 1096203 1097593 1097755 1098545 1098546 1100132 1102875 1102877 1102879 1102882 1102896 1103257 1103320 1103356 1103925 1103991 1104124 1104353 1104427 1104824 1104967 1105168 1105428 1106105 1106110 1106237 1106240 1106615 1106913 1107256 1107385 1107866 1108270 1108468 1109272 1109772 1109806 1110006 1110558 1110998 1111040 1111062 1111174 1111183 1111188 1111469 1111666 1111696 1111795 1111809 1111921 1112878 1112963 1113295 1113408 1113412 1113501 1113667 1113677 1113722 1113751 1113769 1113780 1113972 1114015 1114178 1114279 1114385 1114576 1114577 1114578 1114579 1114580 1114581 1114582 1114583 1114584 1114585 1114839 1114871 1115074 1115269 1115431 1115433 1115440 1115567 1115709 1115976 1116040 1116183 1116336 1116692 1116693 1116698 1116699 1116700 1116701 1116803 1116841 1116862 1116863 1116876 1116877 1116878 1116891 1116895 1116899 1116950 1117115 1117162 1117165 1117168 1117172 1117174 1117181 1117184 1117186 1117188 1117189 1117349 1117561 1117656 1117788 1117789 1117790 1117791 1117792 1117794 1117795 1117796 1117798 1117799 1117801 1117802 1117803 1117804 1117805 1117806 1117807 1117808 1117815 1117816 1117817 1117818 1117819 1117820 1117821 1117822 1117953 1118102 1118136 1118137 1118138 1118140 1118152 1118215 1118316 1118319 1118428 1118484 1118505 1118752 1118760 1118761 1118762 1118766 1118767 1118768 1118769 1118771 1118772 1118773 1118774 1118775 1118798 1118809 1118962 1119017 1119086 1119212 1119222 1119322 1119410 1119714 1119749 1119804 1119946 1119962 1119968 1120036 1120046 1120053 1120054 1120055 1120058 1120088 1120092 1120094 1120096 1120097 1120173 1120214 1120223 1120228 1120230 1120232 1120234 1120235 1120238 1120594 1120598 1120600 1120601 1120602 1120603 1120604 1120606 1120612 1120613 1120614 1120615 1120616 1120617 1120618 1120620 1120621 1120632 1120633 1120743 1120954 1121017 1121058 1121263 1121273 1121477 1121483 1121599 1121621 1121714 1121715 1121973 1123080 1127034 1127315 1129770 1133021 1134097 1134390 1134399 1135335 1135642 1137458 1137534 1137535 1137584 1137597 1137609 1137827 1139358 1140133 1140139 1140322 1140652 1140747 1140868 1140887 1140888 1140889 1140891 1140893 1140903 1140945 1140948 1140954 1140955 1140956 1140957 1140958 1140959 1140960 1140961 1140962 1140964 1140971 1140972 1140992 1141401 1141402 1141452 1141453 1141454 1141478 1142023 1142112 1142220 1142221 1142265 1142350 1142351 1142354 1142359 1142450 1142701 1142868 1143003 1143105 1143185 1143189 1143191 1143507 1145092 1152107 1154036 1154037 1158755 1159530 1162002 1165715 1170011 1171078 1171673 1171732 1171868 1172257 1172775 1172781 1172782 1172783 1172999 1173027 1173100 1173265 1173280 1173514 1173567 1173573 1173659 1173661 1173663 1173869 1173942 1173963 1173999 1174000 1174115 1174186 1174247 1174462 1174543 1174662 CVE-2009-0316 CVE-2013-1982 CVE-2013-2003 CVE-2013-2064 CVE-2018-10805 CVE-2018-11624 CVE-2018-11625 CVE-2018-12232 CVE-2018-12599 CVE-2018-12600 CVE-2018-14625 CVE-2018-16862 CVE-2018-16884 CVE-2018-18281 CVE-2018-18397 CVE-2018-18710 CVE-2018-19407 CVE-2018-19824 CVE-2018-19854 CVE-2018-19985 CVE-2018-20169 CVE-2018-20855 CVE-2018-9568 CVE-2019-0155 CVE-2019-10208 CVE-2019-10214 CVE-2019-1125 CVE-2019-11477 CVE-2019-11478 CVE-2019-11709 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11715 CVE-2019-11717 CVE-2019-11719 CVE-2019-11729 CVE-2019-11730 CVE-2019-11810 CVE-2019-13631 CVE-2019-13648 CVE-2019-14283 CVE-2019-14284 CVE-2019-14895 CVE-2019-14901 CVE-2019-16746 CVE-2019-17594 CVE-2019-17595 CVE-2019-19447 CVE-2019-20908 CVE-2019-9458 CVE-2019-9811 CVE-2020-0305 CVE-2020-10766 CVE-2020-10767 CVE-2020-10768 CVE-2020-10769 CVE-2020-10773 CVE-2020-11668 CVE-2020-12771 CVE-2020-12888 CVE-2020-13974 CVE-2020-14331 CVE-2020-14416 CVE-2020-15393 CVE-2020-15780 CVE-2020-8177 CVE-2020-9862 CVE-2020-9893 CVE-2020-9894 CVE-2020-9895 CVE-2020-9915 CVE-2020-9925 SUSE-SU-2018:2043-1 SUSE-SU-2019:1889-1 SUSE-SU-2019:1960-1 SUSE-SU-2019:2068-1 SUSE-SU-2019:2228-1 SUSE-SU-2019:2997-1 SUSE-SU-2020:0712-1 SUSE-SU-2020:1773-1 SUSE-SU-2020:2106-1 SUSE-SU-2020:2198-1 SUSE-SU-2020:2505-1 Platform(s): openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Live Patching 15 SP1 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information gstreamer-plugins-good-1.12.5-lp150.1 is installed OR gstreamer-plugins-good-lang-1.12.5-lp150.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information ghostscript-fonts-other-8.62-32.34 is installed OR ghostscript-fonts-rus-8.62-32.34 is installed OR ghostscript-fonts-std-8.62-32.34 is installed OR ghostscript-library-8.62-32.34 is installed OR ghostscript-omni-8.62-32.34 is installed OR ghostscript-x11-8.62-32.34 is installed OR libgimpprint-4.2.7-32.34 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-24.3.0esr-0.8 is installed OR MozillaFirefox-branding-SLED-24-0.7 is installed OR MozillaFirefox-translations-24.3.0esr-0.8 is installed OR libfreebl3-3.15.4-0.7 is installed OR libfreebl3-32bit-3.15.4-0.7 is installed OR libsoftokn3-3.15.4-0.7 is installed OR libsoftokn3-32bit-3.15.4-0.7 is installed OR mozilla-nss-3.15.4-0.7 is installed OR mozilla-nss-32bit-3.15.4-0.7 is installed OR mozilla-nss-tools-3.15.4-0.7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information MozillaFirefox-38.3.0esr-22 is installed OR MozillaFirefox-translations-38.3.0esr-22 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libxcb-dri2-0-1.10-1 is installed OR libxcb-dri2-0-32bit-1.10-1 is installed OR libxcb-glx0-1.10-1 is installed OR libxcb-glx0-32bit-1.10-1 is installed OR libxcb-randr0-1.10-1 is installed OR libxcb-render0-1.10-1 is installed OR libxcb-render0-32bit-1.10-1 is installed OR libxcb-shape0-1.10-1 is installed OR libxcb-shm0-1.10-1 is installed OR libxcb-shm0-32bit-1.10-1 is installed OR libxcb-sync1-1.10-1 is installed OR libxcb-xf86dri0-1.10-1 is installed OR libxcb-xfixes0-1.10-1 is installed OR libxcb-xfixes0-32bit-1.10-1 is installed OR libxcb-xkb1-1.10-1 is installed OR libxcb-xkb1-32bit-1.10-1 is installed OR libxcb-xv0-1.10-1 is installed OR libxcb1-1.10-1 is installed OR libxcb1-32bit-1.10-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information gvim-7.4.326-2 is installed OR vim-7.4.326-2 is installed OR vim-data-7.4.326-2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information dhcp-4.3.3-9 is installed OR dhcp-client-4.3.3-9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND autofs-5.0.9-27 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND binutils-2.31-9.26 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information postgresql10-10.10-4.16 is installed OR postgresql10-test-10.10-4.16 is installed Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 is installed AND Package Information ImageMagick-7.0.7.34-3.9 is installed OR perl-PerlMagick-7.0.7.34-3.9 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-25.28 is installed OR kernel-default-livepatch-4.12.14-25.28 is installed OR kernel-livepatch-4_12_14-25_28-default-1-1.3 is installed OR kernel-livepatch-SLE15_Update_8-1-1.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 SP1 is installed AND Package Information kernel-livepatch-4_12_14-195-default-4-10 is installed OR kernel-livepatch-SLE15-SP1_Update_0-4-10 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.38 is installed OR kernel-azure-base-4.12.14-5.38 is installed OR kernel-azure-devel-4.12.14-5.38 is installed OR kernel-devel-azure-4.12.14-5.38 is installed OR kernel-source-azure-4.12.14-5.38 is installed OR kernel-syms-azure-4.12.14-5.38 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND skopeo-0.1.41-4.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libxerces-c-3_1-3.1.1-4 is installed OR libxerces-c-3_1-32bit-3.1.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_32-default-5-2 is installed OR kgraft-patch-3_12_69-60_64_32-xen-5-2 is installed OR kgraft-patch-SLE12-SP1_Update_13-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information gv-3.7.4-1 is installed OR wdiff-1.2.1-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-devel-52.9.0esr-109.38 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information glibc-2.22-62.13 is installed OR glibc-32bit-2.22-62.13 is installed OR glibc-devel-2.22-62.13 is installed OR glibc-devel-32bit-2.22-62.13 is installed OR glibc-html-2.22-62.13 is installed OR glibc-i18ndata-2.22-62.13 is installed OR glibc-info-2.22-62.13 is installed OR glibc-locale-2.22-62.13 is installed OR glibc-locale-32bit-2.22-62.13 is installed OR glibc-profile-2.22-62.13 is installed OR glibc-profile-32bit-2.22-62.13 is installed OR nscd-2.22-62.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kernel-default-4.4.121-92.95 is installed OR kernel-default-base-4.4.121-92.95 is installed OR kernel-default-devel-4.4.121-92.95 is installed OR kernel-default-man-4.4.121-92.95 is installed OR kernel-devel-4.4.121-92.95 is installed OR kernel-macros-4.4.121-92.95 is installed OR kernel-source-4.4.121-92.95 is installed OR kernel-syms-4.4.121-92.95 is installed OR kgraft-patch-4_4_121-92_95-default-1-3.4 is installed OR kgraft-patch-SLE12-SP2_Update_25-1-3.4 is installed OR lttng-modules-2.7.1-9.6 is installed OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.95-9.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information curl-7.37.0-36 is installed OR libcurl4-7.37.0-36 is installed OR libcurl4-32bit-7.37.0-36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libopenssl-devel-1.0.2j-60.55 is installed OR libopenssl1_0_0-1.0.2j-60.55 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed OR openssl-1.0.2j-60.55 is installed OR openssl-doc-1.0.2j-60.55 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libpolkit0-0.113-5.18 is installed OR polkit-0.113-5.18 is installed OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_143-94_47-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_16-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libspice-server1-0.12.8-6 is installed OR spice-0.12.8-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND libimobiledevice6-1.2.0-7 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.4-3.60 is installed OR libwebkit2gtk-4_0-37-2.28.4-3.60 is installed OR libwebkit2gtk3-lang-2.28.4-3.60 is installed OR webkit2gtk-4_0-injected-bundles-2.28.4-3.60 is installed OR webkit2gtk3-2.28.4-3.60 is installed OR webkit2gtk3-devel-2.28.4-3.60 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information curl-7.60.0-3.29 is installed OR libcurl-devel-7.60.0-3.29 is installed OR libcurl4-7.60.0-3.29 is installed OR libcurl4-32bit-7.60.0-3.29 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-60.8.0-3.46 is installed OR MozillaThunderbird-translations-common-60.8.0-3.46 is installed OR MozillaThunderbird-translations-other-60.8.0-3.46 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information storm-1.0.5-5 is installed OR storm-nimbus-1.0.5-5 is installed OR storm-supervisor-1.0.5-5 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information curl-7.37.0-37.43 is installed OR libcurl4-7.37.0-37.43 is installed OR libcurl4-32bit-7.37.0-37.43 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.14.3-11.15 is installed
BACK