Oval Definition:oval:org.opensuse.security:def:52305
Revision Date:2020-12-01Version:1
Title:Security update for librsvg (Moderate)
Description:

This update for librsvg to version 2.42.8 fixes the following issues:

librsvg was updated to version 2.42.8 fixing the following issues:

- CVE-2019-20446: Fixed an issue where a crafted SVG file with nested patterns can cause denial of service (bsc#1162501). NOTE: Librsvg now has limits on the number of loaded XML elements, and the number of referenced elements within an SVG document. - Fixed a stack exhaustion with circular references in elements. - Fixed a denial-of-service condition from exponential explosion of rendered elements, through nested use of SVG 'use' elements in malicious SVGs.
Family:unixClass:patch
Status:Reference(s):1048942
1051510
1071995
1078248
1082635
1089644
1091041
1101888
1101889
1103990
1103991
1104353
1104427
1104745
1108043
1109837
1111666
1112178
1112374
1113722
1113956
1113994
1114279
1117169
1118661
1119113
1120853
1126390
1127354
1127371
1129770
1131107
1134983
1135966
1135967
1137223
1137236
1138039
1140948
1142095
1142635
1142924
1143706
1144333
1149448
1150466
1151067
1151548
1151900
1152782
1153628
1153811
1154043
1154058
1154124
1154355
1154526
1154601
1155021
1155689
1155692
1155836
1155897
1155921
1155982
1156187
1156258
1156429
1156466
1156471
1156494
1156609
1156700
1156729
1156882
1156928
1157032
1157038
1157042
1157044
1157045
1157046
1157049
1157070
1157115
1157143
1157145
1157158
1157160
1157162
1157171
1157173
1157178
1157180
1157182
1157183
1157184
1157191
1157193
1157197
1157298
1157304
1157307
1157324
1157333
1157386
1157424
1157463
1157499
1157678
1157698
1157778
1157908
1158049
1158063
1158064
1158065
1158066
1158067
1158068
1158071
1158082
1158381
1158394
1158398
1158407
1158410
1158413
1158417
1158427
1158445
1159329
1161719
1162501
1163809
1172698
1172704
1173580
CVE-2006-2607
CVE-2009-3939
CVE-2009-4026
CVE-2009-4027
CVE-2009-4131
CVE-2009-4138
CVE-2009-4536
CVE-2009-4538
CVE-2010-0407
CVE-2010-0424
CVE-2010-1146
CVE-2010-1436
CVE-2010-1641
CVE-2010-2066
CVE-2010-2529
CVE-2010-2942
CVE-2010-2954
CVE-2010-2955
CVE-2010-3081
CVE-2010-3296
CVE-2010-3297
CVE-2010-3298
CVE-2010-3301
CVE-2010-3310
CVE-2010-4531
CVE-2011-0711
CVE-2011-0712
CVE-2011-1020
CVE-2011-1098
CVE-2011-1154
CVE-2011-1155
CVE-2011-1180
CVE-2011-1577
CVE-2011-1581
CVE-2011-2203
CVE-2011-3146
CVE-2011-4604
CVE-2012-0056
CVE-2012-3412
CVE-2012-3520
CVE-2012-4425
CVE-2013-0160
CVE-2013-0231
CVE-2013-0913
CVE-2013-1881
CVE-2013-1984
CVE-2013-1995
CVE-2013-1998
CVE-2013-2850
CVE-2014-0038
CVE-2014-00691
CVE-2014-0196
CVE-2014-8133
CVE-2015-1333
CVE-2015-7550
CVE-2015-7884
CVE-2015-7885
CVE-2015-8539
CVE-2015-8660
CVE-2016-0723
CVE-2016-0728
CVE-2016-1237
CVE-2016-1583
CVE-2016-1602
CVE-2016-2184
CVE-2016-2185
CVE-2016-2186
CVE-2016-2384
CVE-2016-3134
CVE-2016-3135
CVE-2016-3136
CVE-2016-3140
CVE-2016-3689
CVE-2016-3713
CVE-2016-4470
CVE-2016-4485
CVE-2016-4486
CVE-2016-4557
CVE-2016-4558
CVE-2016-4569
CVE-2016-4578
CVE-2016-4951
CVE-2016-4997
CVE-2016-4998
CVE-2016-5195
CVE-2016-5244
CVE-2016-5829
CVE-2016-6187
CVE-2016-6480
CVE-2016-6516
CVE-2016-6828
CVE-2016-7039
CVE-2016-7042
CVE-2016-7425
CVE-2016-7913
CVE-2016-7945
CVE-2016-7946
CVE-2016-8655
CVE-2016-9555
CVE-2016-9576
CVE-2017-1000251
CVE-2017-1000252
CVE-2017-1000255
CVE-2017-1000380
CVE-2017-1000410
CVE-2017-11473
CVE-2017-11600
CVE-2017-12153
CVE-2017-12154
CVE-2017-12190
CVE-2017-12193
CVE-2017-13080
CVE-2017-13166
CVE-2017-14051
CVE-2017-14489
CVE-2017-15115
CVE-2017-15127
CVE-2017-15128
CVE-2017-15129
CVE-2017-15265
CVE-2017-15537
CVE-2017-15649
CVE-2017-15951
CVE-2017-16525
CVE-2017-16527
CVE-2017-16528
CVE-2017-16529
CVE-2017-16531
CVE-2017-16534
CVE-2017-16535
CVE-2017-16536
CVE-2017-16537
CVE-2017-16538
CVE-2017-16611
CVE-2017-16644
CVE-2017-16645
CVE-2017-16646
CVE-2017-16647
CVE-2017-16649
CVE-2017-16650
CVE-2017-16911
CVE-2017-16912
CVE-2017-16913
CVE-2017-16914
CVE-2017-16939
CVE-2017-16994
CVE-2017-16995
CVE-2017-16996
CVE-2017-17052
CVE-2017-17448
CVE-2017-17449
CVE-2017-17450
CVE-2017-17558
CVE-2017-17712
CVE-2017-17741
CVE-2017-17805
CVE-2017-17806
CVE-2017-17852
CVE-2017-17853
CVE-2017-17854
CVE-2017-17855
CVE-2017-17856
CVE-2017-17857
CVE-2017-17862
CVE-2017-17864
CVE-2017-17975
CVE-2017-18075
CVE-2017-18202
CVE-2017-18203
CVE-2017-18204
CVE-2017-18208
CVE-2017-18344
CVE-2017-2636
CVE-2017-5715
CVE-2017-5753
CVE-2017-5754
CVE-2017-5897
CVE-2017-5970
CVE-2017-5986
CVE-2017-6347
CVE-2017-6353
CVE-2017-7184
CVE-2017-7187
CVE-2017-7261
CVE-2017-7277
CVE-2017-7294
CVE-2017-7308
CVE-2017-7346
CVE-2017-7477
CVE-2017-7487
CVE-2017-7541
CVE-2017-7542
CVE-2017-8824
CVE-2017-8831
CVE-2017-8890
CVE-2017-9059
CVE-2017-9074
CVE-2017-9075
CVE-2017-9076
CVE-2017-9077
CVE-2017-9211
CVE-2017-9242
CVE-2018-1000004
CVE-2018-1000028
CVE-2018-1000200
CVE-2018-1000204
CVE-2018-10087
CVE-2018-10124
CVE-2018-10323
CVE-2018-1065
CVE-2018-1068
CVE-2018-10853
CVE-2018-10902
CVE-2018-1091
CVE-2018-10938
CVE-2018-1094
CVE-2018-10940
CVE-2018-1108
CVE-2018-1118
CVE-2018-1120
CVE-2018-1128
CVE-2018-1129
CVE-2018-1130
CVE-2018-12233
CVE-2018-12896
CVE-2018-13053
CVE-2018-13093
CVE-2018-13094
CVE-2018-13095
CVE-2018-13405
CVE-2018-13406
CVE-2018-14394
CVE-2018-14395
CVE-2018-14613
CVE-2018-14617
CVE-2018-14633
CVE-2018-15572
CVE-2018-16658
CVE-2018-17182
CVE-2018-3620
CVE-2018-3639
CVE-2018-3646
CVE-2018-5332
CVE-2018-5333
CVE-2018-5390
CVE-2018-5391
CVE-2018-5803
CVE-2018-5848
CVE-2018-6554
CVE-2018-6555
CVE-2018-6927
CVE-2018-7492
CVE-2018-7566
CVE-2018-7740
CVE-2018-8043
CVE-2018-8087
CVE-2018-8781
CVE-2018-8822
CVE-2018-9363
CVE-2018-9385
CVE-2019-0154
CVE-2019-14895
CVE-2019-14901
CVE-2019-15916
CVE-2019-16231
CVE-2019-17055
CVE-2019-18660
CVE-2019-18683
CVE-2019-18805
CVE-2019-18809
CVE-2019-19046
CVE-2019-19049
CVE-2019-19052
CVE-2019-19056
CVE-2019-19057
CVE-2019-19058
CVE-2019-19060
CVE-2019-19062
CVE-2019-19063
CVE-2019-19065
CVE-2019-19067
CVE-2019-19068
CVE-2019-19073
CVE-2019-19074
CVE-2019-19075
CVE-2019-19077
CVE-2019-19078
CVE-2019-19080
CVE-2019-19081
CVE-2019-19082
CVE-2019-19083
CVE-2019-19227
CVE-2019-19524
CVE-2019-19525
CVE-2019-19528
CVE-2019-19529
CVE-2019-19530
CVE-2019-19531
CVE-2019-19534
CVE-2019-19536
CVE-2019-19543
CVE-2019-20446
CVE-2019-8835
CVE-2019-8844
CVE-2019-8846
CVE-2020-3862
CVE-2020-3864
CVE-2020-3865
CVE-2020-3867
CVE-2020-3868
CVE-2020-4044
CVE-2020-8023
SUSE-SU-2019:1299-1
SUSE-SU-2020:0468-1
SUSE-SU-2020:0629-1
SUSE-SU-2020:1933-1
Platform(s):openSUSE Leap 15.0
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • cups-2.2.7-lp150.1 is installed
  • OR cups-client-2.2.7-lp150.1 is installed
  • OR cups-config-2.2.7-lp150.1 is installed
  • OR libcups2-2.2.7-lp150.1 is installed
  • OR libcupscgi1-2.2.7-lp150.1 is installed
  • OR libcupsimage2-2.2.7-lp150.1 is installed
  • OR libcupsmime1-2.2.7-lp150.1 is installed
  • OR libcupsppdc1-2.2.7-lp150.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • MozillaFirefox-10.0.10-0.3 is installed
  • OR MozillaFirefox-translations-10.0.10-0.3 is installed
  • OR mozilla-nspr-4.9.3-0.2 is installed
  • OR mozilla-nspr-32bit-4.9.3-0.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • cups-1.3.9-8.46.52 is installed
  • OR cups-client-1.3.9-8.46.52 is installed
  • OR cups-libs-1.3.9-8.46.52 is installed
  • OR cups-libs-32bit-1.3.9-8.46.52 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • libssh2-1-1.2.9-4.2.6 is installed
  • OR libssh2_org-1.2.9-4.2.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • cron-4.2-55 is installed
  • OR cronie-1.4.11-55 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND logrotate-3.8.7-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND iputils-s20121221-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • gdk-pixbuf-loader-rsvg-2.40.15-4 is installed
  • OR librsvg-2-2-2.40.15-4 is installed
  • OR librsvg-2-2-32bit-2.40.15-4 is installed
  • OR rsvg-view-2.40.15-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • kernel-default-4.12.14-94.41 is installed
  • OR kernel-default-devel-4.12.14-94.41 is installed
  • OR kernel-default-extra-4.12.14-94.41 is installed
  • OR kernel-devel-4.12.14-94.41 is installed
  • OR kernel-macros-4.12.14-94.41 is installed
  • OR kernel-source-4.12.14-94.41 is installed
  • OR kernel-syms-4.12.14-94.41 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed
  • AND Package Information
  • gdk-pixbuf-loader-rsvg-32bit-2.42.8-3.3 is installed
  • OR librsvg-2.42.8-3.3 is installed
  • OR librsvg-2-2-32bit-2.42.8-3.3 is installed
  • OR rsvg-thumbnailer-2.42.8-3.3 is installed
  • OR rsvg-view-2.42.8-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • openldap2-2.4.46-9.31 is installed
  • OR openldap2-back-sock-2.4.46-9.31 is installed
  • OR openldap2-back-sql-2.4.46-9.31 is installed
  • OR openldap2-contrib-2.4.46-9.31 is installed
  • OR openldap2-doc-2.4.46-9.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND mailman-2.1.17-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_54-default-2-2 is installed
  • OR kgraft-patch-3_12_74-60_64_54-xen-2-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_19-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libtag1-1.9.1-1 is installed
  • OR libtag_c0-1.9.1-1 is installed
  • OR taglib-1.9.1-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND ucode-intel-20180703-13.25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.20-30.36 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_74-92_29-default-12-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_10-12-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • apache2-mod_apparmor-2.8.2-49 is installed
  • OR apparmor-docs-2.8.2-49 is installed
  • OR apparmor-parser-2.8.2-49 is installed
  • OR apparmor-profiles-2.8.2-49 is installed
  • OR apparmor-utils-2.8.2-49 is installed
  • OR libapparmor1-2.8.2-49 is installed
  • OR libapparmor1-32bit-2.8.2-49 is installed
  • OR pam_apparmor-2.8.2-49 is installed
  • OR pam_apparmor-32bit-2.8.2-49 is installed
  • OR perl-apparmor-2.8.2-49 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libssh2-1-1.4.3-20.9 is installed
  • OR libssh2-1-32bit-1.4.3-20.9 is installed
  • OR libssh2_org-1.4.3-20.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_156-94_57-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_18-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_100-default-2-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_27-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libgcrypt-1.6.1-16.58 is installed
  • OR libgcrypt20-1.6.1-16.58 is installed
  • OR libgcrypt20-32bit-1.6.1-16.58 is installed
  • OR libgcrypt20-hmac-1.6.1-16.58 is installed
  • OR libgcrypt20-hmac-32bit-1.6.1-16.58 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libgssglue1-0.4-3 is installed
  • OR libgssglue1-32bit-0.4-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • libpainter0-0.9.6-4.8 is installed
  • OR librfxencode0-0.9.6-4.8 is installed
  • OR xrdp-0.9.6-4.8 is installed
  • OR xrdp-devel-0.9.6-4.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • ffmpeg-3.4.2-4.17 is installed
  • OR libavcodec-devel-3.4.2-4.17 is installed
  • OR libavformat-devel-3.4.2-4.17 is installed
  • OR libavformat57-3.4.2-4.17 is installed
  • OR libavresample-devel-3.4.2-4.17 is installed
  • OR libavresample3-3.4.2-4.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.29 is installed
  • OR kernel-default-extra-4.12.14-197.29 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND python-tablib-0.9.11-3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libmariadb3-3.0.3-3.3 is installed
  • OR mariadb-10.2.15-4.3 is installed
  • OR mariadb-client-10.2.15-4.3 is installed
  • OR mariadb-connector-c-3.0.3-3.3 is installed
  • OR mariadb-errormessages-10.2.15-4.3 is installed
  • OR mariadb-galera-10.2.15-4.3 is installed
  • OR mariadb-tools-10.2.15-4.3 is installed
  • OR xtrabackup-2.4.10-4.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • curl-7.37.0-37.43 is installed
  • OR libcurl4-7.37.0-37.43 is installed
  • OR libcurl4-32bit-7.37.0-37.43 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Django1-1.11.20-3.6 is installed
    • BACK