Oval Definition:	oval:org.opensuse.security:def:52219
Revision Date: 2020-12-01 Version: 1 Title: Security update for ImageMagick (Moderate) Description: This update for ImageMagick fixes the following issues: Security issue fixed: - CVE-2019-19948: Fixed a heap-based buffer overflow in WriteSGIImage() (bsc#1159861). - CVE-2019-19949: Fixed a heap-based buffer over-read in WritePNGImage() (bsc#1160369). Non-security issue fixed: - Fixed an issue where converting tiff to png would lead to unviewable files (bsc#1161194). Family: unix Class: patch Status: Reference(s): 1012382 1031392 1051510 1055120 1058115 1061840 1065600 1065729 1071995 1082519 1083647 1085030 1090078 1094244 1098782 1101669 1102495 1103269 1103405 1103587 1103636 1104888 1105190 1105795 1106105 1106240 1106948 1107783 1107829 1107928 1107947 1108096 1108170 1108281 1108323 1108399 1108823 1109244 1109333 1109336 1109337 1109603 1109806 1109859 1109911 1109979 1109992 1110006 1110301 1110363 1110639 1110642 1110643 1110644 1110645 1110646 1110647 1110649 1110650 1111666 1113956 1114279 1118338 1120386 1130103 1137325 1142685 1145051 1145929 1148868 1154366 1157424 1158983 1159037 1159198 1159199 1159861 1160369 1160790 1161088 1161089 1161194 1161561 1161670 1161951 1162171 1163403 1163897 1164284 1164777 1164780 1164893 1165019 1165182 1165185 1165211 1165629 1165631 1165823 1165949 1166780 1166860 1166861 1166862 1166864 1166866 1166867 1166868 1166870 1166940 1166982 1167005 1167216 1167288 1167290 1167316 1167421 1167423 1167627 1167629 1168075 1168202 1168273 1168276 1168295 1168367 1168424 1168443 1168486 1168552 1168760 1168762 1168763 1168764 1168765 1168829 1168854 1168881 1168884 1168952 1169013 1169057 1169307 1169308 1169390 1169514 1169625 1171988 1172428 1173274 1173798 1174205 1174757 1175112 1175122 1175128 1175204 1175213 1175515 1175518 1175691 1175992 1176069 1178083 CVE-2008-4546 CVE-2008-5984 CVE-2009-0901 CVE-2009-1862 CVE-2009-1863 CVE-2009-1864 CVE-2009-1865 CVE-2009-1866 CVE-2009-1867 CVE-2009-1868 CVE-2009-1869 CVE-2009-1870 CVE-2009-2395 CVE-2009-2493 CVE-2009-3793 CVE-2009-3794 CVE-2009-3796 CVE-2009-3797 CVE-2009-3798 CVE-2009-3799 CVE-2009-3800 CVE-2009-3951 CVE-2010-0186 CVE-2010-0187 CVE-2010-0209 CVE-2010-1297 CVE-2010-2160 CVE-2010-2161 CVE-2010-2162 CVE-2010-2163 CVE-2010-2164 CVE-2010-2165 CVE-2010-2166 CVE-2010-2167 CVE-2010-2169 CVE-2010-2170 CVE-2010-2171 CVE-2010-2172 CVE-2010-2173 CVE-2010-2174 CVE-2010-2175 CVE-2010-2176 CVE-2010-2177 CVE-2010-2178 CVE-2010-2179 CVE-2010-2180 CVE-2010-2181 CVE-2010-2182 CVE-2010-2183 CVE-2010-2184 CVE-2010-2185 CVE-2010-2186 CVE-2010-2187 CVE-2010-2188 CVE-2010-2189 CVE-2010-2213 CVE-2010-2214 CVE-2010-2216 CVE-2010-2884 CVE-2010-3654 CVE-2011-0558 CVE-2011-0559 CVE-2011-0560 CVE-2011-0561 CVE-2011-0571 CVE-2011-0572 CVE-2011-0573 CVE-2011-0574 CVE-2011-0575 CVE-2011-0577 CVE-2011-0578 CVE-2011-0589 CVE-2011-0607 CVE-2011-0608 CVE-2011-0609 CVE-2011-0611 CVE-2011-0618 CVE-2011-0619 CVE-2011-0620 CVE-2011-0621 CVE-2011-0622 CVE-2011-0623 CVE-2011-0624 CVE-2011-0625 CVE-2011-0626 CVE-2011-0627 CVE-2011-2107 CVE-2011-2110 CVE-2011-2130 CVE-2011-2134 CVE-2011-2135 CVE-2011-2136 CVE-2011-2137 CVE-2011-2138 CVE-2011-2139 CVE-2011-2140 CVE-2011-2414 CVE-2011-2415 CVE-2011-2416 CVE-2011-2417 CVE-2011-2425 CVE-2011-2445 CVE-2011-2450 CVE-2011-2451 CVE-2011-2452 CVE-2011-2453 CVE-2011-2454 CVE-2011-2455 CVE-2011-2456 CVE-2011-2457 CVE-2011-2458 CVE-2011-2459 CVE-2011-2460 CVE-2011-2483 CVE-2011-3177 CVE-2012-0751 CVE-2012-0752 CVE-2012-0753 CVE-2012-0754 CVE-2012-0755 CVE-2012-0756 CVE-2012-0767 CVE-2012-0768 CVE-2012-0769 CVE-2012-0773 CVE-2012-0779 CVE-2012-1535 CVE-2012-2034 CVE-2012-2035 CVE-2012-2036 CVE-2012-2037 CVE-2012-2038 CVE-2012-2039 CVE-2012-2040 CVE-2012-5248 CVE-2012-5249 CVE-2012-5250 CVE-2012-5251 CVE-2012-5252 CVE-2012-5253 CVE-2012-5254 CVE-2012-5255 CVE-2012-5256 CVE-2012-5257 CVE-2012-5258 CVE-2012-5259 CVE-2012-5260 CVE-2012-5261 CVE-2012-5262 CVE-2012-5263 CVE-2012-5264 CVE-2012-5265 CVE-2012-5266 CVE-2012-5267 CVE-2012-5268 CVE-2012-5269 CVE-2012-5270 CVE-2012-5271 CVE-2012-5272 CVE-2012-5274 CVE-2012-5275 CVE-2012-5276 CVE-2012-5277 CVE-2012-5278 CVE-2012-5279 CVE-2012-5280 CVE-2012-5676 CVE-2012-5677 CVE-2012-5678 CVE-2013-0504 CVE-2013-0630 CVE-2013-0633 CVE-2013-0634 CVE-2013-0637 CVE-2013-0638 CVE-2013-0639 CVE-2013-0642 CVE-2013-0643 CVE-2013-0644 CVE-2013-0645 CVE-2013-0646 CVE-2013-0647 CVE-2013-0648 CVE-2013-0649 CVE-2013-0650 CVE-2013-1365 CVE-2013-1366 CVE-2013-1367 CVE-2013-1368 CVE-2013-1369 CVE-2013-1370 CVE-2013-1371 CVE-2013-1372 CVE-2013-1373 CVE-2013-1374 CVE-2013-1375 CVE-2013-1378 CVE-2013-1379 CVE-2013-1380 CVE-2013-1983 CVE-2013-2002 CVE-2013-2005 CVE-2013-2555 CVE-2013-2728 CVE-2013-3324 CVE-2013-3325 CVE-2013-3326 CVE-2013-3327 CVE-2013-3328 CVE-2013-3329 CVE-2013-3330 CVE-2013-3331 CVE-2013-3332 CVE-2013-3333 CVE-2013-3334 CVE-2013-3335 CVE-2013-3343 CVE-2013-3344 CVE-2013-3345 CVE-2013-3347 CVE-2013-3361 CVE-2013-3362 CVE-2013-3363 CVE-2013-4282 CVE-2013-5324 CVE-2013-5329 CVE-2013-5330 CVE-2013-5331 CVE-2013-5332 CVE-2014-0491 CVE-2014-0492 CVE-2014-0497 CVE-2014-0498 CVE-2014-0499 CVE-2014-0502 CVE-2014-0503 CVE-2014-0506 CVE-2014-0507 CVE-2014-0508 CVE-2014-0509 CVE-2014-0515 CVE-2014-0516 CVE-2014-0517 CVE-2014-0518 CVE-2014-0519 CVE-2014-0520 CVE-2014-0531 CVE-2014-0532 CVE-2014-0533 CVE-2014-0534 CVE-2014-0535 CVE-2014-0536 CVE-2014-0537 CVE-2014-0538 CVE-2014-0539 CVE-2014-0540 CVE-2014-0541 CVE-2014-0542 CVE-2014-0543 CVE-2014-0544 CVE-2014-0545 CVE-2014-0547 CVE-2014-0548 CVE-2014-0549 CVE-2014-0550 CVE-2014-0551 CVE-2014-0552 CVE-2014-0553 CVE-2014-0554 CVE-2014-0555 CVE-2014-0556 CVE-2014-0557 CVE-2014-0559 CVE-2014-4671 CVE-2014-8139 CVE-2014-8140 CVE-2014-8141 CVE-2014-9636 CVE-2014-9645 CVE-2015-3247 CVE-2015-3294 CVE-2015-5260 CVE-2015-5261 CVE-2015-8899 CVE-2016-0749 CVE-2016-2150 CVE-2016-9577 CVE-2016-9578 CVE-2017-14491 CVE-2017-14492 CVE-2017-14493 CVE-2017-14494 CVE-2017-14495 CVE-2017-14496 CVE-2018-14633 CVE-2018-17182 CVE-2019-16785 CVE-2019-16786 CVE-2019-16789 CVE-2019-16792 CVE-2019-17498 CVE-2019-19770 CVE-2019-19948 CVE-2019-19949 CVE-2019-3701 CVE-2019-3855 CVE-2019-3856 CVE-2019-3857 CVE-2019-3858 CVE-2019-3859 CVE-2019-3860 CVE-2019-3861 CVE-2019-3862 CVE-2019-3863 CVE-2019-9458 CVE-2020-10135 CVE-2020-10942 CVE-2020-11494 CVE-2020-11669 CVE-2020-14314 CVE-2020-14331 CVE-2020-14356 CVE-2020-14386 CVE-2020-14422 CVE-2020-16166 CVE-2020-1749 CVE-2020-24394 CVE-2020-8834 SUSE-SU-2018:3159-1 SUSE-SU-2020:0275-1 SUSE-SU-2020:1146-1 SUSE-SU-2020:1822-1 SUSE-SU-2020:2610-1 SUSE-SU-2020:3269-1 Platform(s): openSUSE Leap 15.0 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information dbus-1-glib-0.108-lp150.1 is installed OR dbus-1-glib-tool-0.108-lp150.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information Mesa-7.11.2-0.9 is installed OR Mesa-32bit-7.11.2-0.9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information xen-4.2.5_08-0.9 is installed OR xen-doc-html-4.2.5_08-0.9 is installed OR xen-doc-pdf-4.2.5_08-0.9 is installed OR xen-kmp-default-4.2.5_08_3.0.101_0.47.55-0.9 is installed OR xen-kmp-pae-4.2.5_08_3.0.101_0.47.55-0.9 is installed OR xen-libs-4.2.5_08-0.9 is installed OR xen-libs-32bit-4.2.5_08-0.9 is installed OR xen-tools-4.2.5_08-0.9 is installed OR xen-tools-domU-4.2.5_08-0.9 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information flash-player-11.2.202.406-1 is installed OR flash-player-gnome-11.2.202.406-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information libXt6-1.1.4-3 is installed OR libXt6-32bit-1.1.4-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND libspice-server1-0.12.8-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND busybox-1.21.1-3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information ImageMagick-7.0.7.34-3.79 is installed OR ImageMagick-config-7-upstream-7.0.7.34-3.79 is installed OR ImageMagick-devel-32bit-7.0.7.34-3.79 is installed OR ImageMagick-doc-7.0.7.34-3.79 is installed OR ImageMagick-extra-7.0.7.34-3.79 is installed OR libMagick++-7_Q16HDRI4-32bit-7.0.7.34-3.79 is installed OR libMagick++-devel-32bit-7.0.7.34-3.79 is installed OR libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-3.79 is installed OR libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-3.79 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libXrandr2-1.4.2-3 is installed OR libXrandr2-32bit-1.4.2-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information libopenssl1_0_0-1.0.1i-54.8 is installed OR libopenssl1_0_0-32bit-1.0.1i-54.8 is installed OR libopenssl1_0_0-hmac-1.0.1i-54.8 is installed OR libopenssl1_0_0-hmac-32bit-1.0.1i-54.8 is installed OR openssl-1.0.1i-54.8 is installed OR openssl-doc-1.0.1i-54.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libXrandr2-1.5.0-6 is installed OR libXrandr2-32bit-1.5.0-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information perl-5.18.2-12.14 is installed OR perl-32bit-5.18.2-12.14 is installed OR perl-base-5.18.2-12.14 is installed OR perl-doc-5.18.2-12.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_7_0-openjdk-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_103-92_53-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_16-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND apache2-mod_nss-1.0.14-18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libgcrypt-1.6.1-16.68 is installed OR libgcrypt20-1.6.1-16.68 is installed OR libgcrypt20-32bit-1.6.1-16.68 is installed OR libgcrypt20-hmac-1.6.1-16.68 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_97-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_26-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_162-94_69-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_21-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ImageMagick-6.8.8.1-71.74 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.74 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.74 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information gpg2-2.0.24-9.3 is installed OR gpg2-lang-2.0.24-9.3 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information python-waitress-1.4.3-3.3 is installed OR python3-waitress-1.4.3-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 15 is installed AND Package Information libpython3_6m1_0-3.6.10-3.56 is installed OR python3-3.6.10-3.56 is installed OR python3-base-3.6.10-3.56 is installed OR python3-curses-3.6.10-3.56 is installed OR python3-dbm-3.6.10-3.56 is installed OR python3-devel-3.6.10-3.56 is installed OR python3-idle-3.6.10-3.56 is installed OR python3-tk-3.6.10-3.56 is installed OR python3-tools-3.6.10-3.56 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.22 is installed OR kernel-default-extra-4.12.14-25.22 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information kernel-default-4.12.14-197.40 is installed OR kernel-default-extra-4.12.14-197.40 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information java-1_7_0-openjdk-1.7.0.161-43.7 is installed OR java-1_7_0-openjdk-demo-1.7.0.161-43.7 is installed OR java-1_7_0-openjdk-devel-1.7.0.161-43.7 is installed OR java-1_7_0-openjdk-headless-1.7.0.161-43.7 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-devel-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information evince-3.20.2-6.27 is installed OR evince-browser-plugin-3.20.2-6.27 is installed OR evince-lang-3.20.2-6.27 is installed OR evince-plugin-djvudocument-3.20.2-6.27 is installed OR evince-plugin-dvidocument-3.20.2-6.27 is installed OR evince-plugin-pdfdocument-3.20.2-6.27 is installed OR evince-plugin-psdocument-3.20.2-6.27 is installed OR evince-plugin-tiffdocument-3.20.2-6.27 is installed OR evince-plugin-xpsdocument-3.20.2-6.27 is installed OR libevdocument3-4-3.20.2-6.27 is installed OR libevview3-3-3.20.2-6.27 is installed OR nautilus-evince-3.20.2-6.27 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND couchdb-1.7.2-3.3 is installed
BACK