Oval Definition:	oval:org.opensuse.security:def:5149
Revision Date: 2021-11-10 Version: 1 Title: Security update for pcre (Moderate) Description: This update for pcre fixes the following issues: Update pcre to version 8.45: - CVE-2020-14155: Fixed integer overflow via a large number after a '(?C' substring (bsc#1172974). - CVE-2019-20838: Fixed buffer over-read in JIT compiler (bsc#1172973). - CVE-2017-7244: Fixed invalid read in _pcre32_xclass() (bsc#1030807). - CVE-2017-7245: Fixed buffer overflow in the pcre32_copy_substring (bsc#1030805). - CVE-2017-7246: Fixed another buffer overflow in the pcre32_copy_substring (bsc#1030803). - CVE-2017-7186: Fixed denial of service caused by an invalid Unicode property lookup (bsc#1030066). - CVE-2017-6004: Fixed denial of service via crafted regular expression (bsc#1025709). Family: unix Class: patch Status: Reference(s): 1025709 1030066 1030803 1030805 1030807 1150711 1155690 1156202 1160682 1167152 1168140 1168142 1168143 1169392 1172205 1172973 1172974 CVE-2007-5970 CVE-2008-7247 CVE-2009-4019 CVE-2009-4028 CVE-2009-4030 CVE-2010-2494 CVE-2011-0020 CVE-2011-0064 CVE-2011-1526 CVE-2011-2895 CVE-2011-3563 CVE-2011-3571 CVE-2011-4862 CVE-2011-5035 CVE-2012-0497 CVE-2012-0501 CVE-2012-0502 CVE-2012-0503 CVE-2012-0505 CVE-2012-0506 CVE-2012-0547 CVE-2012-0804 CVE-2012-1174 CVE-2012-1682 CVE-2012-1711 CVE-2012-1713 CVE-2012-1716 CVE-2012-1717 CVE-2012-1718 CVE-2012-1719 CVE-2012-1723 CVE-2012-1724 CVE-2012-1725 CVE-2012-1726 CVE-2012-3136 CVE-2012-3174 CVE-2012-3216 CVE-2012-4416 CVE-2012-4559 CVE-2012-4560 CVE-2012-4561 CVE-2012-4681 CVE-2012-5068 CVE-2012-5069 CVE-2012-5070 CVE-2012-5071 CVE-2012-5072 CVE-2012-5073 CVE-2012-5074 CVE-2012-5075 CVE-2012-5076 CVE-2012-5077 CVE-2012-5079 CVE-2012-5081 CVE-2012-5084 CVE-2012-5085 CVE-2012-5086 CVE-2012-5087 CVE-2012-5088 CVE-2012-5089 CVE-2012-5468 CVE-2013-0169 CVE-2013-0176 CVE-2013-0401 CVE-2013-0422 CVE-2013-0424 CVE-2013-0425 CVE-2013-0426 CVE-2013-0427 CVE-2013-0428 CVE-2013-0429 CVE-2013-0431 CVE-2013-0432 CVE-2013-0433 CVE-2013-0434 CVE-2013-0435 CVE-2013-0440 CVE-2013-0441 CVE-2013-0442 CVE-2013-0443 CVE-2013-0444 CVE-2013-0450 CVE-2013-0809 CVE-2013-1475 CVE-2013-1476 CVE-2013-1478 CVE-2013-1480 CVE-2013-1484 CVE-2013-1485 CVE-2013-1486 CVE-2013-1488 CVE-2013-1493 CVE-2013-1500 CVE-2013-1518 CVE-2013-1537 CVE-2013-1557 CVE-2013-1569 CVE-2013-1571 CVE-2013-1976 CVE-2013-1990 CVE-2013-1999 CVE-2013-2383 CVE-2013-2384 CVE-2013-2407 CVE-2013-2412 CVE-2013-2415 CVE-2013-2417 CVE-2013-2419 CVE-2013-2420 CVE-2013-2421 CVE-2013-2422 CVE-2013-2423 CVE-2013-2424 CVE-2013-2426 CVE-2013-2429 CVE-2013-2430 CVE-2013-2431 CVE-2013-2436 CVE-2013-2443 CVE-2013-2444 CVE-2013-2445 CVE-2013-2446 CVE-2013-2447 CVE-2013-2448 CVE-2013-2449 CVE-2013-2450 CVE-2013-2451 CVE-2013-2452 CVE-2013-2453 CVE-2013-2454 CVE-2013-2455 CVE-2013-2456 CVE-2013-2457 CVE-2013-2458 CVE-2013-2459 CVE-2013-2460 CVE-2013-2461 CVE-2013-2463 CVE-2013-2465 CVE-2013-2469 CVE-2013-2470 CVE-2013-2471 CVE-2013-2472 CVE-2013-2473 CVE-2013-3829 CVE-2013-4002 CVE-2013-4143 CVE-2013-4288 CVE-2013-5772 CVE-2013-5774 CVE-2013-5778 CVE-2013-5780 CVE-2013-5782 CVE-2013-5783 CVE-2013-5784 CVE-2013-5790 CVE-2013-5797 CVE-2013-5800 CVE-2013-5802 CVE-2013-5803 CVE-2013-5804 CVE-2013-5805 CVE-2013-5806 CVE-2013-5809 CVE-2013-5814 CVE-2013-5817 CVE-2013-5820 CVE-2013-5823 CVE-2013-5825 CVE-2013-5829 CVE-2013-5830 CVE-2013-5840 CVE-2013-5842 CVE-2013-5849 CVE-2013-5850 CVE-2013-5851 CVE-2013-5878 CVE-2013-5884 CVE-2013-5893 CVE-2013-5896 CVE-2013-5907 CVE-2013-5910 CVE-2013-6462 CVE-2013-6629 CVE-2013-6954 CVE-2014-0017 CVE-2014-0209 CVE-2014-0210 CVE-2014-0211 CVE-2014-0368 CVE-2014-0373 CVE-2014-0376 CVE-2014-0408 CVE-2014-0411 CVE-2014-0416 CVE-2014-0422 CVE-2014-0423 CVE-2014-0428 CVE-2014-0429 CVE-2014-0446 CVE-2014-0451 CVE-2014-0452 CVE-2014-0453 CVE-2014-0454 CVE-2014-0455 CVE-2014-0456 CVE-2014-0457 CVE-2014-0458 CVE-2014-0459 CVE-2014-0460 CVE-2014-0461 CVE-2014-1876 CVE-2014-2397 CVE-2014-2398 CVE-2014-2402 CVE-2014-2403 CVE-2014-2412 CVE-2014-2413 CVE-2014-2414 CVE-2014-2421 CVE-2014-2423 CVE-2014-2427 CVE-2014-2483 CVE-2014-2490 CVE-2014-3564 CVE-2014-3566 CVE-2014-3970 CVE-2014-4209 CVE-2014-4216 CVE-2014-4218 CVE-2014-4219 CVE-2014-4221 CVE-2014-4223 CVE-2014-4244 CVE-2014-4252 CVE-2014-4262 CVE-2014-4263 CVE-2014-4264 CVE-2014-4266 CVE-2014-4268 CVE-2014-6457 CVE-2014-6502 CVE-2014-6504 CVE-2014-6506 CVE-2014-6511 CVE-2014-6512 CVE-2014-6513 CVE-2014-6517 CVE-2014-6519 CVE-2014-6531 CVE-2014-6558 CVE-2014-6585 CVE-2014-6587 CVE-2014-6591 CVE-2014-6593 CVE-2014-6601 CVE-2015-0383 CVE-2015-0395 CVE-2015-0400 CVE-2015-0407 CVE-2015-0408 CVE-2015-0410 CVE-2015-0412 CVE-2015-0460 CVE-2015-0469 CVE-2015-0477 CVE-2015-0478 CVE-2015-0480 CVE-2015-0488 CVE-2015-2590 CVE-2015-2601 CVE-2015-2613 CVE-2015-2621 CVE-2015-2625 CVE-2015-2628 CVE-2015-2632 CVE-2015-2808 CVE-2015-4000 CVE-2015-4731 CVE-2015-4732 CVE-2015-4733 CVE-2015-4734 CVE-2015-4748 CVE-2015-4749 CVE-2015-4760 CVE-2015-4803 CVE-2015-4805 CVE-2015-4806 CVE-2015-4835 CVE-2015-4840 CVE-2015-4842 CVE-2015-4843 CVE-2015-4844 CVE-2015-4860 CVE-2015-4872 CVE-2015-4881 CVE-2015-4882 CVE-2015-4883 CVE-2015-4893 CVE-2015-4903 CVE-2015-4911 CVE-2017-6004 CVE-2017-7186 CVE-2017-7244 CVE-2017-7245 CVE-2017-7246 CVE-2019-20372 CVE-2019-20838 CVE-2020-0543 CVE-2020-11739 CVE-2020-11740 CVE-2020-11741 CVE-2020-11742 CVE-2020-11743 CVE-2020-14155 SUSE-SU-2020:1171-1 SUSE-SU-2020:1634-1 SUSE-SU-2021:3652-1 Platform(s): openSUSE 13.1 SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Software Development Kit 12 SP5 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE OpenStack Cloud 5 Product(s): Definition Synopsis SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND python-setuptools-1.1.7-7.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND clamav-0.97.8-0.2.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-24.3.0esr-0.8.1 is installed OR MozillaFirefox-branding-SLED-24-0.7.14 is installed OR MozillaFirefox-translations-24.3.0esr-0.8.1 is installed OR libfreebl3-3.15.4-0.7.1 is installed OR libfreebl3-32bit-3.15.4-0.7.1 is installed OR libsoftokn3-3.15.4-0.7.1 is installed OR libsoftokn3-32bit-3.15.4-0.7.1 is installed OR mozilla-nss-3.15.4-0.7.1 is installed OR mozilla-nss-32bit-3.15.4-0.7.1 is installed OR mozilla-nss-tools-3.15.4-0.7.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information gpgme-1.5.1-1 is installed OR libgpgme11-1.5.1-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND bogofilter-1.2.4-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND autofs-5.0.9-21 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information avahi-0.6.32-30 is installed OR avahi-lang-0.6.32-30 is installed OR libavahi-client3-0.6.32-30 is installed OR libavahi-client3-32bit-0.6.32-30 is installed OR libavahi-common3-0.6.32-30 is installed OR libavahi-common3-32bit-0.6.32-30 is installed OR libavahi-core7-0.6.32-30 is installed OR libdns_sd-0.6.32-30 is installed OR libdns_sd-32bit-0.6.32-30 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gnome-shell-search-provider-nautilus-3.20.3-23.6 is installed OR libnautilus-extension1-3.20.3-23.6 is installed OR libnautilus-extension1-32bit-3.20.3-23.6 is installed OR nautilus-3.20.3-23.6 is installed OR nautilus-lang-3.20.3-23.6 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND ctdb-4.4.2-29 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND fence-agents-4.0.25+git.1485179354.eb43835-2 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP4 is installed AND lighttpd-1.4.35-3 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information alsa-1.0.27.2-15 is installed OR alsa-docs-1.0.27.2-15 is installed OR libasound2-1.0.27.2-15 is installed OR libasound2-32bit-1.0.27.2-15 is installed Definition Synopsis Release Information SUSE Linux Enterprise High Performance Computing 15-ESPOS is installed AND nginx-1.16.1-3.12 is installed OR Package Information SUSE Linux Enterprise High Performance Computing 15-LTSS is installed AND nginx-1.16.1-3.12 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_32-33-default-2-3.1 is installed OR kgraft-patch-3_12_32-33-xen-2-3.1 is installed OR kgraft-patch-3_12_36-38-default-2-3.1 is installed OR kgraft-patch-3_12_36-38-xen-2-3.1 is installed OR kgraft-patch-SLE12_Update_1-2-3.1 is installed OR kgraft-patch-SLE12_Update_2-2-3.1 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_82-6_6-default-1-2.1 is installed OR kgraft-patch-SLE12-SP3_Update_2-1-2.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 12 is installed AND Package Information ruby2.1-rubygem-passenger-5.0.18-6.1 is installed OR rubygem-passenger-5.0.18-6.1 is installed OR rubygem-passenger-apache2-5.0.18-6.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information java-1_6_0-ibm-1.6.0_sr16.30-40.1 is installed OR java-1_6_0-ibm-fonts-1.6.0_sr16.30-40.1 is installed OR java-1_6_0-ibm-jdbc-1.6.0_sr16.30-40.1 is installed OR java-1_6_0-ibm-plugin-1.6.0_sr16.30-40.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 12 is installed AND python-PyYAML-3.10-15.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information libpython3_4m1_0-3.4.1-2 is installed OR python3-base-3.4.1-2 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information OpenEXR-1.6.1-83.17.1 is installed OR OpenEXR-32bit-1.6.1-83.17.1 is installed OR OpenEXR-x86-1.6.1-83.17.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information tomcat6-6.0.18-20.35.40.1 is installed OR tomcat6-admin-webapps-6.0.18-20.35.40.1 is installed OR tomcat6-docs-webapp-6.0.18-20.35.40.1 is installed OR tomcat6-javadoc-6.0.18-20.35.40.1 is installed OR tomcat6-jsp-2_1-api-6.0.18-20.35.40.1 is installed OR tomcat6-lib-6.0.18-20.35.40.1 is installed OR tomcat6-servlet-2_5-api-6.0.18-20.35.40.1 is installed OR tomcat6-webapps-6.0.18-20.35.40.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP4 is installed AND amavisd-new-2.7.0-18.7.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND cifs-utils-6.4-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libsndfile-1.0.25-25.1 is installed OR libsndfile1-1.0.25-25.1 is installed OR libsndfile1-32bit-1.0.25-25.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information openvpn-2.3.8-16.6 is installed OR openvpn-auth-pam-plugin-2.3.8-16.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND chrony-2.3-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information apache-commons-daemon-1.0.15-6 is installed OR apache-commons-daemon-javadoc-1.0.15-6 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND Package Information libpcrecpp0-8.45-8.7.1 is installed OR libpcreposix0-8.45-8.7.1 is installed OR pcre-devel-8.45-8.7.1 is installed OR pcre-devel-static-8.45-8.7.1 is installed OR pcre-tools-8.45-8.7.1 is installed OR selinux-policy-devel-20140730-36.5.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_60-52_49-default-2-2.2 is installed OR kgraft-patch-3_12_60-52_49-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_14-2-2.2 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information graphite2-1.3.1-9 is installed OR libgraphite2-3-1.3.1-9 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information bind-9.9.9P1-59.1 is installed OR bind-devel-9.9.9P1-59.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND gdm-devel-3.10.0.1-52 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information FastCGI-2.4.0-168 is installed OR FastCGI-devel-2.4.0-168 is installed OR perl-FastCGI-2.4.0-168 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND MozillaFirefox-devel-52.9.0esr-109.38 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information gstreamer-0_10-plugins-bad-0.10.23-17.1 is installed OR gstreamer-0_10-plugins-bad-lang-0.10.23-17.1 is installed OR libgstbasecamerabinsrc-0_10-23-0.10.23-17.1 is installed OR libgstbasecamerabinsrc-0_10-23-32bit-0.10.23-17.1 is installed OR libgstbasevideo-0_10-23-0.10.23-17.1 is installed OR libgstbasevideo-0_10-23-32bit-0.10.23-17.1 is installed OR libgstcodecparsers-0_10-23-0.10.23-17.1 is installed OR libgstphotography-0_10-23-0.10.23-17.1 is installed OR libgstphotography-0_10-23-32bit-0.10.23-17.1 is installed OR libgstsignalprocessor-0_10-23-0.10.23-17.1 is installed OR libgstsignalprocessor-0_10-23-32bit-0.10.23-17.1 is installed OR libgstvdp-0_10-23-0.10.23-17.1 is installed OR libgstvdp-0_10-23-32bit-0.10.23-17.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information kernel-default-3.12.59-60.41.2 is installed OR kernel-default-extra-3.12.59-60.41.2 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information ImageMagick-6.8.8.1-47.1 is installed OR libMagick++-6_Q16-3-6.8.8.1-47.1 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-47.1 is installed
BACK