Oval Definition:	oval:org.opensuse.security:def:52211
Revision Date: 2020-12-01 Version: 1 Title: Security update for jasper (Moderate) Description: This update for jasper fixes the following issues: - CVE-2016-9398: Improved patch for already fixed issue (bsc#1010979). - CVE-2016-9399: Fix assert in calcstepsizes (bsc#1010980). - CVE-2017-5499: Validate component depth bit (bsc#1020451). - CVE-2017-5503: Check bounds in jas_seq2d_bindsub() (bsc#1020456). - CVE-2017-5504: Check bounds in jas_seq2d_bindsub() (bsc#1020458). - CVE-2017-5505: Check bounds in jas_seq2d_bindsub() (bsc#1020460). - CVE-2017-14132: Fix heap base overflow in by checking components (bsc#1057152). - CVE-2018-9252: Fix reachable assertion in jpc_abstorelstepsize (bsc#1088278). - CVE-2018-18873: Fix null pointer deref in ras_putdatastd (bsc#1114498). - CVE-2018-19139: Fix mem leaks by registering jpc_unk_destroyparms (bsc#1115637). - CVE-2018-19543, bsc#1045450 CVE-2017-9782: Fix numchans mixup (bsc#1117328). - CVE-2018-20570: Fix heap based buffer over-read in jp2_encode (bsc#1120807). - CVE-2018-20622: Fix memory leak in jas_malloc.c (bsc#1120805). Family: unix Class: patch Status: Reference(s): 1010979 1010980 1012382 1020451 1020456 1020458 1020460 1037697 1045450 1046299 1046300 1046302 1046303 1046305 1046306 1046307 1046533 1046543 1050242 1050536 1050538 1050540 1051510 1054245 1056651 1056787 1057152 1058169 1058659 1060463 1068032 1075087 1075360 1077338 1077761 1077989 1085042 1085536 1085539 1086301 1086313 1086314 1086324 1086457 1087092 1087202 1087217 1087233 1088278 1090098 1090888 1091041 1091171 1093148 1093666 1094119 1096330 1097583 1097584 1097585 1097586 1097587 1097588 1098633 1099193 1100132 1100884 1101143 1101337 1101352 1101564 1101669 1101674 1101789 1101813 1101816 1102088 1102097 1102147 1102340 1102512 1102851 1103216 1103220 1103230 1103421 1114498 1115637 1117328 1120805 1120807 1122469 1143349 1150397 1152308 1153163 1153164 1153367 1158590 1160968 1171863 1171864 1171866 1172348 1173786 1177351 1177352 CVE-2010-2935 CVE-2010-2936 CVE-2010-2947 CVE-2011-1898 CVE-2012-0029 CVE-2012-0035 CVE-2012-0217 CVE-2012-0786 CVE-2012-2625 CVE-2012-3432 CVE-2012-3433 CVE-2012-4411 CVE-2012-4510 CVE-2012-4535 CVE-2012-4536 CVE-2012-4537 CVE-2012-4538 CVE-2012-4539 CVE-2012-4544 CVE-2012-5510 CVE-2012-5511 CVE-2012-5513 CVE-2012-5514 CVE-2012-5515 CVE-2012-5525 CVE-2012-5634 CVE-2012-6075 CVE-2013-0151 CVE-2013-0152 CVE-2013-0153 CVE-2013-1442 CVE-2013-1917 CVE-2013-1918 CVE-2013-1919 CVE-2013-1922 CVE-2013-1952 CVE-2013-1982 CVE-2013-2007 CVE-2013-3495 CVE-2013-4355 CVE-2013-4356 CVE-2013-4361 CVE-2013-4375 CVE-2013-4416 CVE-2013-4494 CVE-2013-4540 CVE-2013-4551 CVE-2013-4553 CVE-2013-4554 CVE-2013-6473 CVE-2013-6474 CVE-2013-6475 CVE-2013-6476 CVE-2014-0222 CVE-2014-0247 CVE-2014-2707 CVE-2014-3124 CVE-2014-3421 CVE-2014-3422 CVE-2014-3423 CVE-2014-3424 CVE-2014-3524 CVE-2014-3575 CVE-2014-3615 CVE-2014-3634 CVE-2014-3693 CVE-2014-4336 CVE-2014-4337 CVE-2014-4338 CVE-2014-5146 CVE-2014-5149 CVE-2014-6268 CVE-2014-7154 CVE-2014-7155 CVE-2014-7156 CVE-2014-7188 CVE-2014-8119 CVE-2014-8146 CVE-2014-8147 CVE-2014-8594 CVE-2014-8595 CVE-2014-8866 CVE-2014-8867 CVE-2014-9030 CVE-2014-9065 CVE-2014-9066 CVE-2014-9093 CVE-2015-0361 CVE-2015-2044 CVE-2015-2045 CVE-2015-2151 CVE-2015-2152 CVE-2015-2265 CVE-2015-2751 CVE-2015-2752 CVE-2015-2756 CVE-2015-3258 CVE-2015-3259 CVE-2015-3279 CVE-2015-3340 CVE-2015-3456 CVE-2015-4037 CVE-2015-4103 CVE-2015-4104 CVE-2015-4105 CVE-2015-4106 CVE-2015-4551 CVE-2015-5154 CVE-2015-5212 CVE-2015-5213 CVE-2015-5214 CVE-2015-5239 CVE-2015-5307 CVE-2015-6815 CVE-2015-7311 CVE-2015-7835 CVE-2015-7969 CVE-2015-7970 CVE-2015-7971 CVE-2015-7972 CVE-2015-8327 CVE-2015-8560 CVE-2016-0794 CVE-2016-0795 CVE-2016-4324 CVE-2016-9398 CVE-2016-9399 CVE-2017-14132 CVE-2017-18344 CVE-2017-5499 CVE-2017-5503 CVE-2017-5504 CVE-2017-5505 CVE-2017-7555 CVE-2017-9782 CVE-2018-18873 CVE-2018-19139 CVE-2018-19543 CVE-2018-20570 CVE-2018-20622 CVE-2018-5390 CVE-2018-9252 CVE-2019-16884 CVE-2019-17177 CVE-2019-17178 CVE-2020-10543 CVE-2020-10878 CVE-2020-12723 CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2654 CVE-2020-2659 CVE-2020-7069 CVE-2020-7070 SUSE-SU-2018:2223-1 SUSE-SU-2019:3079-1 SUSE-SU-2020:0035-1 SUSE-SU-2020:0231-1 SUSE-SU-2020:1682-1 SUSE-SU-2020:2997-1 Platform(s): openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information cracklib-2.9.6-lp150.2 is installed OR libcrack2-2.9.6-lp150.2 is installed OR libcrack2-32bit-2.9.6-lp150.2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information ghostscript-fonts-other-8.62-32.34 is installed OR ghostscript-fonts-rus-8.62-32.34 is installed OR ghostscript-fonts-std-8.62-32.34 is installed OR ghostscript-library-8.62-32.34 is installed OR ghostscript-omni-8.62-32.34 is installed OR ghostscript-x11-8.62-32.34 is installed OR libgimpprint-4.2.7-32.34 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information xen-4.2.5_12-15 is installed OR xen-doc-html-4.2.5_12-15 is installed OR xen-doc-pdf-4.2.5_12-15 is installed OR xen-kmp-default-4.2.5_12_3.0.101_0.47.55-15 is installed OR xen-kmp-pae-4.2.5_12_3.0.101_0.47.55-15 is installed OR xen-libs-4.2.5_12-15 is installed OR xen-libs-32bit-4.2.5_12-15 is installed OR xen-tools-4.2.5_12-15 is installed OR xen-tools-domU-4.2.5_12-15 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information emacs-24.3-14 is installed OR emacs-info-24.3-14 is installed OR emacs-x11-24.3-14 is installed OR etags-24.3-14 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libXext6-1.3.2-3 is installed OR libXext6-32bit-1.3.2-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libHX28-3.18-1 is installed OR libHX28-32bit-3.18-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libreoffice-5.2.5.1-42 is installed OR libreoffice-base-5.2.5.1-42 is installed OR libreoffice-base-drivers-mysql-5.2.5.1-42 is installed OR libreoffice-base-drivers-postgresql-5.2.5.1-42 is installed OR libreoffice-calc-5.2.5.1-42 is installed OR libreoffice-calc-extensions-5.2.5.1-42 is installed OR libreoffice-draw-5.2.5.1-42 is installed OR libreoffice-filters-optional-5.2.5.1-42 is installed OR libreoffice-gnome-5.2.5.1-42 is installed OR libreoffice-icon-theme-galaxy-5.2.5.1-42 is installed OR libreoffice-icon-theme-tango-5.2.5.1-42 is installed OR libreoffice-impress-5.2.5.1-42 is installed OR libreoffice-l10n-af-5.2.5.1-42 is installed OR libreoffice-l10n-ar-5.2.5.1-42 is installed OR libreoffice-l10n-ca-5.2.5.1-42 is installed OR libreoffice-l10n-cs-5.2.5.1-42 is installed OR libreoffice-l10n-da-5.2.5.1-42 is installed OR libreoffice-l10n-de-5.2.5.1-42 is installed OR libreoffice-l10n-en-5.2.5.1-42 is installed OR libreoffice-l10n-es-5.2.5.1-42 is installed OR libreoffice-l10n-fi-5.2.5.1-42 is installed OR libreoffice-l10n-fr-5.2.5.1-42 is installed OR libreoffice-l10n-gu-5.2.5.1-42 is installed OR libreoffice-l10n-hi-5.2.5.1-42 is installed OR libreoffice-l10n-hu-5.2.5.1-42 is installed OR libreoffice-l10n-it-5.2.5.1-42 is installed OR libreoffice-l10n-ja-5.2.5.1-42 is installed OR libreoffice-l10n-ko-5.2.5.1-42 is installed OR libreoffice-l10n-nb-5.2.5.1-42 is installed OR libreoffice-l10n-nl-5.2.5.1-42 is installed OR libreoffice-l10n-nn-5.2.5.1-42 is installed OR libreoffice-l10n-pl-5.2.5.1-42 is installed OR libreoffice-l10n-pt_BR-5.2.5.1-42 is installed OR libreoffice-l10n-pt_PT-5.2.5.1-42 is installed OR libreoffice-l10n-ro-5.2.5.1-42 is installed OR libreoffice-l10n-ru-5.2.5.1-42 is installed OR libreoffice-l10n-sk-5.2.5.1-42 is installed OR libreoffice-l10n-sv-5.2.5.1-42 is installed OR libreoffice-l10n-xh-5.2.5.1-42 is installed OR libreoffice-l10n-zh_CN-5.2.5.1-42 is installed OR libreoffice-l10n-zh_TW-5.2.5.1-42 is installed OR libreoffice-l10n-zu-5.2.5.1-42 is installed OR libreoffice-mailmerge-5.2.5.1-42 is installed OR libreoffice-math-5.2.5.1-42 is installed OR libreoffice-officebean-5.2.5.1-42 is installed OR libreoffice-pyuno-5.2.5.1-42 is installed OR libreoffice-writer-5.2.5.1-42 is installed OR libreoffice-writer-extensions-5.2.5.1-42 is installed OR libreofficekit-5.2.5.1-42 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information augeas-1.2.0-17.3 is installed OR augeas-lenses-1.2.0-17.3 is installed OR libaugeas0-1.2.0-17.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information jasper-2.0.14-3.16 is installed OR libjasper4-32bit-2.0.14-3.16 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libXRes1-1.0.7-3 is installed OR libXRes1-32bit-1.0.7-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information openvpn-2.3.8-16.20 is installed OR openvpn-auth-pam-plugin-2.3.8-16.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libXRes1-1.0.7-3 is installed OR libXRes1-32bit-1.0.7-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-30.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_109-default-3-2 is installed OR kgraft-patch-SLE12-SP2_Update_29-3-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information xen-4.7.6_02-43.36 is installed OR xen-doc-html-4.7.6_02-43.36 is installed OR xen-libs-4.7.6_02-43.36 is installed OR xen-libs-32bit-4.7.6_02-43.36 is installed OR xen-tools-4.7.6_02-43.36 is installed OR xen-tools-domU-4.7.6_02-43.36 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information alsa-1.0.27.2-15 is installed OR alsa-docs-1.0.27.2-15 is installed OR libasound2-1.0.27.2-15 is installed OR libasound2-32bit-1.0.27.2-15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information curl-7.37.0-37.43 is installed OR libcurl4-7.37.0-37.43 is installed OR libcurl4-32bit-7.37.0-37.43 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_156-94_57-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_18-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information MozillaFirefox-60.8.0-109.83 is installed OR MozillaFirefox-translations-common-60.8.0-109.83 is installed OR libfreebl3-3.44.1-58.28 is installed OR libfreebl3-32bit-3.44.1-58.28 is installed OR libfreebl3-hmac-3.44.1-58.28 is installed OR libfreebl3-hmac-32bit-3.44.1-58.28 is installed OR libsoftokn3-3.44.1-58.28 is installed OR libsoftokn3-32bit-3.44.1-58.28 is installed OR libsoftokn3-hmac-3.44.1-58.28 is installed OR libsoftokn3-hmac-32bit-3.44.1-58.28 is installed OR mozilla-nss-3.44.1-58.28 is installed OR mozilla-nss-32bit-3.44.1-58.28 is installed OR mozilla-nss-certs-3.44.1-58.28 is installed OR mozilla-nss-certs-32bit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-3.44.1-58.28 is installed OR mozilla-nss-sysinit-32bit-3.44.1-58.28 is installed OR mozilla-nss-tools-3.44.1-58.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libspice-client-glib-2_0-8-0.33-3.6 is installed OR libspice-client-glib-helper-0.33-3.6 is installed OR libspice-client-gtk-3_0-5-0.33-3.6 is installed OR libspice-controller0-0.33-3.6 is installed OR spice-gtk-0.33-3.6 is installed OR typelib-1_0-SpiceClientGlib-2_0-0.33-3.6 is installed OR typelib-1_0-SpiceClientGtk-3_0-0.33-3.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND git-core-2.12.3-27.14 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information apache2-mod_php7-7.2.5-4.67 is installed OR php7-7.2.5-4.67 is installed OR php7-bcmath-7.2.5-4.67 is installed OR php7-bz2-7.2.5-4.67 is installed OR php7-calendar-7.2.5-4.67 is installed OR php7-ctype-7.2.5-4.67 is installed OR php7-curl-7.2.5-4.67 is installed OR php7-dba-7.2.5-4.67 is installed OR php7-devel-7.2.5-4.67 is installed OR php7-dom-7.2.5-4.67 is installed OR php7-enchant-7.2.5-4.67 is installed OR php7-exif-7.2.5-4.67 is installed OR php7-fastcgi-7.2.5-4.67 is installed OR php7-fileinfo-7.2.5-4.67 is installed OR php7-fpm-7.2.5-4.67 is installed OR php7-ftp-7.2.5-4.67 is installed OR php7-gd-7.2.5-4.67 is installed OR php7-gettext-7.2.5-4.67 is installed OR php7-gmp-7.2.5-4.67 is installed OR php7-iconv-7.2.5-4.67 is installed OR php7-intl-7.2.5-4.67 is installed OR php7-json-7.2.5-4.67 is installed OR php7-ldap-7.2.5-4.67 is installed OR php7-mbstring-7.2.5-4.67 is installed OR php7-mysql-7.2.5-4.67 is installed OR php7-odbc-7.2.5-4.67 is installed OR php7-opcache-7.2.5-4.67 is installed OR php7-openssl-7.2.5-4.67 is installed OR php7-pcntl-7.2.5-4.67 is installed OR php7-pdo-7.2.5-4.67 is installed OR php7-pear-7.2.5-4.67 is installed OR php7-pear-Archive_Tar-7.2.5-4.67 is installed OR php7-pgsql-7.2.5-4.67 is installed OR php7-phar-7.2.5-4.67 is installed OR php7-posix-7.2.5-4.67 is installed OR php7-readline-7.2.5-4.67 is installed OR php7-shmop-7.2.5-4.67 is installed OR php7-snmp-7.2.5-4.67 is installed OR php7-soap-7.2.5-4.67 is installed OR php7-sockets-7.2.5-4.67 is installed OR php7-sodium-7.2.5-4.67 is installed OR php7-sqlite-7.2.5-4.67 is installed OR php7-sysvmsg-7.2.5-4.67 is installed OR php7-sysvsem-7.2.5-4.67 is installed OR php7-sysvshm-7.2.5-4.67 is installed OR php7-tokenizer-7.2.5-4.67 is installed OR php7-wddx-7.2.5-4.67 is installed OR php7-xmlreader-7.2.5-4.67 is installed OR php7-xmlrpc-7.2.5-4.67 is installed OR php7-xmlwriter-7.2.5-4.67 is installed OR php7-xsl-7.2.5-4.67 is installed OR php7-zip-7.2.5-4.67 is installed OR php7-zlib-7.2.5-4.67 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information perl-5.26.1-7.12 is installed OR perl-base-5.26.1-7.12 is installed OR perl-base-32bit-5.26.1-7.12 is installed OR perl-doc-5.26.1-7.12 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.6 is installed OR kernel-default-extra-4.12.14-25.6 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information freerdp-2.0.0~rc4-10.4 is installed OR freerdp-devel-2.0.0~rc4-10.4 is installed OR libfreerdp2-2.0.0~rc4-10.4 is installed OR libwinpr2-2.0.0~rc4-10.4 is installed OR winpr2-devel-2.0.0~rc4-10.4 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND ucode-intel-20180312-13.17 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information libopenssl-devel-1.0.2j-60.30 is installed OR libopenssl1_0_0-1.0.2j-60.30 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.30 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.30 is installed OR openssl-1.0.2j-60.30 is installed OR openssl-doc-1.0.2j-60.30 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information glibc-2.22-62.22 is installed OR glibc-32bit-2.22-62.22 is installed OR glibc-devel-2.22-62.22 is installed OR glibc-devel-32bit-2.22-62.22 is installed OR glibc-html-2.22-62.22 is installed OR glibc-i18ndata-2.22-62.22 is installed OR glibc-info-2.22-62.22 is installed OR glibc-locale-2.22-62.22 is installed OR glibc-locale-32bit-2.22-62.22 is installed OR glibc-profile-2.22-62.22 is installed OR glibc-profile-32bit-2.22-62.22 is installed OR nscd-2.22-62.22 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information mariadb-10.2.22-4.11 is installed OR mariadb-client-10.2.22-4.11 is installed OR mariadb-errormessages-10.2.22-4.11 is installed OR mariadb-galera-10.2.22-4.11 is installed OR mariadb-tools-10.2.22-4.11 is installed
BACK