Oval Definition:	oval:org.opensuse.security:def:51898
Revision Date: 2021-06-02 Version: 1 Title: Security update for libwebp (Critical) Description: This update for libwebp fixes the following issues: - CVE-2018-25010: Fixed heap-based buffer overflow in ApplyFilter() (bsc#1185685). - CVE-2020-36330: Fixed heap-based buffer overflow in ChunkVerifyAndAssign() (bsc#1185691). - CVE-2020-36332: Fixed extreme memory allocation when reading a file (bsc#1185674). - CVE-2020-36329: Fixed use-after-free in EmitFancyRGB() (bsc#1185652). - CVE-2018-25012: Fixed heap-based buffer overflow in GetLE24() (bsc#1185690). - CVE-2018-25013: Fixed heap-based buffer overflow in ShiftBytes() (bsc#1185654). - CVE-2020-36331: Fixed heap-based buffer overflow in ChunkAssignData() (bsc#1185686). - CVE-2018-25009: Fixed heap-based buffer overflow in GetLE16() (bsc#1185673). - CVE-2018-25011: Fixed fail on multiple image chunks (bsc#1186247). Family: unix Class: patch Status: Reference(s): 1013882 1101676 1101677 1101678 1103342 1111858 1111859 1112368 1112377 1112384 1112386 1112391 1112397 1112404 1112415 1112417 1112421 1112432 1112767 1116686 1118754 1120041 1122198 1122475 1124493 1127027 1128106 1133031 1134883 1135210 1135902 1136540 1136778 1138534 1140402 1143794 1144087 1144919 1146090 1146091 1146093 1146094 1146095 1146097 1146099 1146100 1159530 1165715 1167462 1169511 1172356 1173160 1174543 1185652 1185654 1185673 1185674 1185685 1185686 1185690 1185691 1186247 CVE-2009-0035 CVE-2009-0037 CVE-2009-0946 CVE-2009-2417 CVE-2009-2694 CVE-2009-2703 CVE-2009-3026 CVE-2009-3083 CVE-2009-3084 CVE-2009-3085 CVE-2009-3615 CVE-2010-0013 CVE-2010-0277 CVE-2010-0420 CVE-2010-0423 CVE-2010-1624 CVE-2010-2497 CVE-2010-2528 CVE-2010-2805 CVE-2010-3053 CVE-2010-3054 CVE-2010-3311 CVE-2010-3711 CVE-2010-3814 CVE-2011-0226 CVE-2011-1091 CVE-2011-3172 CVE-2011-3594 CVE-2011-3602 CVE-2012-2214 CVE-2012-3374 CVE-2012-5668 CVE-2012-5669 CVE-2012-5670 CVE-2012-6152 CVE-2013-0249 CVE-2013-0271 CVE-2013-0272 CVE-2013-0273 CVE-2013-0274 CVE-2013-1944 CVE-2013-2174 CVE-2013-4545 CVE-2013-6477 CVE-2013-6478 CVE-2013-6479 CVE-2013-6481 CVE-2013-6482 CVE-2013-6483 CVE-2013-6484 CVE-2013-6485 CVE-2013-6486 CVE-2013-6487 CVE-2014-0015 CVE-2014-0020 CVE-2014-0138 CVE-2014-0139 CVE-2014-2240 CVE-2014-3613 CVE-2014-3620 CVE-2014-3694 CVE-2014-3695 CVE-2014-3696 CVE-2014-3697 CVE-2014-3698 CVE-2014-3707 CVE-2014-8150 CVE-2014-9656 CVE-2014-9657 CVE-2014-9658 CVE-2014-9659 CVE-2014-9660 CVE-2014-9661 CVE-2014-9662 CVE-2014-9663 CVE-2014-9664 CVE-2014-9665 CVE-2014-9666 CVE-2014-9667 CVE-2014-9668 CVE-2014-9669 CVE-2014-9670 CVE-2014-9671 CVE-2014-9672 CVE-2014-9673 CVE-2014-9674 CVE-2014-9675 CVE-2015-1782 CVE-2015-3143 CVE-2015-3144 CVE-2015-3145 CVE-2015-3148 CVE-2015-3153 CVE-2016-0755 CVE-2016-0787 CVE-2016-5384 CVE-2016-5419 CVE-2016-5420 CVE-2016-5421 CVE-2016-7141 CVE-2016-7167 CVE-2016-8615 CVE-2016-8616 CVE-2016-8617 CVE-2016-8618 CVE-2016-8619 CVE-2016-8620 CVE-2016-8621 CVE-2016-8622 CVE-2016-8623 CVE-2016-8624 CVE-2016-9586 CVE-2016-9843 CVE-2017-2640 CVE-2017-7407 CVE-2018-25009 CVE-2018-25010 CVE-2018-25011 CVE-2018-25012 CVE-2018-25013 CVE-2018-3058 CVE-2018-3060 CVE-2018-3063 CVE-2018-3064 CVE-2018-3066 CVE-2018-3143 CVE-2018-3156 CVE-2018-3162 CVE-2018-3173 CVE-2018-3174 CVE-2018-3185 CVE-2018-3200 CVE-2018-3251 CVE-2018-3277 CVE-2018-3282 CVE-2018-3284 CVE-2019-10214 CVE-2019-12155 CVE-2019-13164 CVE-2019-14378 CVE-2019-2510 CVE-2019-2537 CVE-2019-3820 CVE-2019-5008 CVE-2019-9511 CVE-2019-9512 CVE-2019-9513 CVE-2019-9514 CVE-2019-9515 CVE-2019-9516 CVE-2019-9517 CVE-2019-9518 CVE-2020-10745 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2767 CVE-2020-2773 CVE-2020-2778 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2816 CVE-2020-2830 CVE-2020-36329 CVE-2020-36330 CVE-2020-36331 CVE-2020-36332 SUSE-SU-2019:0555-1 SUSE-SU-2019:1459-1 SUSE-SU-2019:2192-1 SUSE-SU-2019:2260-1 SUSE-SU-2020:0712-1 SUSE-SU-2020:1511-1 SUSE-SU-2020:2065-1 SUSE-SU-2020:2158-1 SUSE-SU-2021:1830-1 Platform(s): openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Module for Web Scripting 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 15 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 6-LTSS SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information flatpak-0.10.4-lp150.2 is installed OR libflatpak0-0.10.4-lp150.2 is installed OR typelib-1_0-Flatpak-1_0-0.10.4-lp150.2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information cups-1.3.9-8.46.48 is installed OR cups-client-1.3.9-8.46.48 is installed OR cups-libs-1.3.9-8.46.48 is installed OR cups-libs-32bit-1.3.9-8.46.48 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information libvirt-1.0.5.9-0.9 is installed OR libvirt-client-1.0.5.9-0.9 is installed OR libvirt-client-32bit-1.0.5.9-0.9 is installed OR libvirt-doc-1.0.5.9-0.9 is installed OR libvirt-python-1.0.5.9-0.9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information alsa-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libssh2-1-1.4.3-19 is installed OR libssh2-1-32bit-1.4.3-19 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information curl-7.37.0-36 is installed OR libcurl4-7.37.0-36 is installed OR libcurl4-32bit-7.37.0-36 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information gnome-shell-3.26.2+20180130.0d9c74212-4.19 is installed OR gnome-shell-browser-plugin-3.26.2+20180130.0d9c74212-4.19 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information libmysqld-devel-10.2.22-3.14 is installed OR libmysqld19-10.2.22-3.14 is installed OR mariadb-10.2.22-3.14 is installed OR mariadb-client-10.2.22-3.14 is installed OR mariadb-errormessages-10.2.22-3.14 is installed OR mariadb-tools-10.2.22-3.14 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information xen-4.12.3_06-3.25 is installed OR xen-devel-4.12.3_06-3.25 is installed OR xen-tools-4.12.3_06-3.25 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed AND Package Information nodejs8-8.16.1-3.20 is installed OR nodejs8-devel-8.16.1-3.20 is installed OR nodejs8-docs-8.16.1-3.20 is installed OR npm8-8.16.1-3.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libXcursor1-1.1.14-3 is installed OR libXcursor1-32bit-1.1.14-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_48-default-3-2 is installed OR kgraft-patch-3_12_74-60_64_48-xen-3-2 is installed OR kgraft-patch-SLE12-SP1_Update_17-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information cpio-2.11-29 is installed OR cpio-lang-2.11-29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_7_0-openjdk-1.7.0.221-43.22 is installed OR java-1_7_0-openjdk-demo-1.7.0.221-43.22 is installed OR java-1_7_0-openjdk-devel-1.7.0.221-43.22 is installed OR java-1_7_0-openjdk-headless-1.7.0.221-43.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND shadow-4.2.1-27.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information libopenssl-devel-1.0.2j-60.46 is installed OR libopenssl1_0_0-1.0.2j-60.46 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.46 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.46 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.46 is installed OR openssl-1.0.2j-60.46 is installed OR openssl-doc-1.0.2j-60.46 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_jk-1.2.40-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libseccomp-2.4.1-11.3 is installed OR libseccomp2-2.4.1-11.3 is installed OR libseccomp2-32bit-2.4.1-11.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_103-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_28-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information perl-5.18.2-12.20 is installed OR perl-32bit-5.18.2-12.20 is installed OR perl-base-5.18.2-12.20 is installed OR perl-doc-5.18.2-12.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information xen-4.9.4_04-3.53 is installed OR xen-doc-html-4.9.4_04-3.53 is installed OR xen-libs-4.9.4_04-3.53 is installed OR xen-libs-32bit-4.9.4_04-3.53 is installed OR xen-tools-4.9.4_04-3.53 is installed OR xen-tools-domU-4.9.4_04-3.53 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND ant-1.9.4-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libdcerpc-binding0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libdcerpc-binding0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libdcerpc-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libdcerpc-samr-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libdcerpc-samr0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libdcerpc0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libdcerpc0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr-krb5pac-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr-krb5pac0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr-krb5pac0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr-nbt-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr-nbt0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr-nbt0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr-standard-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr-standard0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr-standard0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libndr0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libnetapi-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libnetapi0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libnetapi0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-credentials-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-credentials0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-credentials0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-errors-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-errors0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-errors0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-hostconfig-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-hostconfig0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-hostconfig0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-passdb-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-passdb0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-passdb0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-policy-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-policy0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-util-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-util0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamba-util0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamdb-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamdb0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsamdb0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsmbclient-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsmbclient0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsmbclient0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsmbconf-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsmbconf0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsmbconf0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsmbldap-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsmbldap2-4.7.11+git.240.76c9942a99f-4.43 is installed OR libsmbldap2-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libtevent-util-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libtevent-util0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libtevent-util0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR libwbclient-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR libwbclient0-4.7.11+git.240.76c9942a99f-4.43 is installed OR libwbclient0-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR samba-4.7.11+git.240.76c9942a99f-4.43 is installed OR samba-client-4.7.11+git.240.76c9942a99f-4.43 is installed OR samba-client-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR samba-core-devel-4.7.11+git.240.76c9942a99f-4.43 is installed OR samba-libs-4.7.11+git.240.76c9942a99f-4.43 is installed OR samba-libs-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed OR samba-winbind-4.7.11+git.240.76c9942a99f-4.43 is installed OR samba-winbind-32bit-4.7.11+git.240.76c9942a99f-4.43 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP4 is installed AND Package Information libwebp5-0.4.3-4.7.1 is installed OR libwebp5-32bit-0.4.3-4.7.1 is installed OR libwebpdemux1-0.4.3-4.7.1 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information java-11-openjdk-11.0.7.0-3.42 is installed OR java-11-openjdk-demo-11.0.7.0-3.42 is installed OR java-11-openjdk-devel-11.0.7.0-3.42 is installed OR java-11-openjdk-headless-11.0.7.0-3.42 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND ruby2.1-rubygem-activesupport-4_2-4.2.2-2 is installed Definition Synopsis SUSE OpenStack Cloud 6-LTSS is installed AND Package Information containerd-1.2.2-16.14 is installed OR docker-18.09.1_ce-98.34 is installed OR docker-libnetwork-0.7.0.1+gitr2711_2cfbf9b1f981-16 is installed OR docker-runc-1.0.0rc6+gitr3748_96ec2177ae84-1.17 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2711_2cfbf9b1f981-16 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information openstack-glance-13.0.1~a0~dev6-4.3 is installed OR openstack-glance-api-13.0.1~a0~dev6-4.3 is installed OR openstack-glance-doc-13.0.1~a0~dev6-4.3 is installed OR openstack-glance-glare-13.0.1~a0~dev6-4.3 is installed OR openstack-glance-registry-13.0.1~a0~dev6-4.3 is installed OR python-glance-13.0.1~a0~dev6-4.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND clamav-0.100.3-33.29 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.14.4-11.18 is installed
BACK