Oval Definition:oval:org.opensuse.security:def:53033
Revision Date:2020-12-01Version:1
Title:Security update for librsvg (Moderate)
Description:

This update for librsvg to version 2.42.8 fixes the following issues:

librsvg was updated to version 2.42.8 fixing the following issues:

- CVE-2019-20446: Fixed an issue where a crafted SVG file with nested patterns can cause denial of service (bsc#1162501). NOTE: Librsvg now has limits on the number of loaded XML elements, and the number of referenced elements within an SVG document. - Fixed a stack exhaustion with circular references in elements. - Fixed a denial-of-service condition from exponential explosion of rendered elements, through nested use of SVG 'use' elements in malicious SVGs.
Family:unixClass:patch
Status:Reference(s):1010829
1013659
1013678
1013680
1127838
1162501
918342
924202
928321
933336
939367
961964
967026
970547
CVE-2007-5970
CVE-2008-7247
CVE-2009-0159
CVE-2009-0790
CVE-2009-1252
CVE-2009-4019
CVE-2009-4028
CVE-2009-4030
CVE-2010-5298
CVE-2011-3602
CVE-2012-2150
CVE-2012-2388
CVE-2012-5615
CVE-2013-1976
CVE-2013-2944
CVE-2013-5018
CVE-2013-5211
CVE-2013-6075
CVE-2013-6076
CVE-2013-6370
CVE-2013-6371
CVE-2014-0195
CVE-2014-0198
CVE-2014-0221
CVE-2014-0224
CVE-2014-2338
CVE-2014-2494
CVE-2014-2497
CVE-2014-3248
CVE-2014-3470
CVE-2014-4207
CVE-2014-4258
CVE-2014-4260
CVE-2014-4274
CVE-2014-4287
CVE-2014-6463
CVE-2014-6464
CVE-2014-6469
CVE-2014-6474
CVE-2014-6478
CVE-2014-6484
CVE-2014-6489
CVE-2014-6491
CVE-2014-6494
CVE-2014-6495
CVE-2014-6496
CVE-2014-6500
CVE-2014-6505
CVE-2014-6507
CVE-2014-6520
CVE-2014-6530
CVE-2014-6551
CVE-2014-6555
CVE-2014-6559
CVE-2014-6564
CVE-2014-6568
CVE-2014-8964
CVE-2014-9221
CVE-2014-9293
CVE-2014-9294
CVE-2014-9295
CVE-2014-9296
CVE-2014-9297
CVE-2014-9298
CVE-2014-9709
CVE-2015-0374
CVE-2015-0381
CVE-2015-0382
CVE-2015-0391
CVE-2015-0411
CVE-2015-0432
CVE-2015-0433
CVE-2015-0441
CVE-2015-0499
CVE-2015-0501
CVE-2015-0505
CVE-2015-1798
CVE-2015-1799
CVE-2015-2325
CVE-2015-2326
CVE-2015-2568
CVE-2015-2571
CVE-2015-2573
CVE-2015-2590
CVE-2015-2597
CVE-2015-2601
CVE-2015-2613
CVE-2015-2619
CVE-2015-2621
CVE-2015-2625
CVE-2015-2627
CVE-2015-2628
CVE-2015-2632
CVE-2015-2637
CVE-2015-2638
CVE-2015-2659
CVE-2015-2664
CVE-2015-2808
CVE-2015-3152
CVE-2015-3405
CVE-2015-4000
CVE-2015-4171
CVE-2015-4729
CVE-2015-4731
CVE-2015-4732
CVE-2015-4733
CVE-2015-4734
CVE-2015-4736
CVE-2015-4748
CVE-2015-4749
CVE-2015-4760
CVE-2015-4792
CVE-2015-4802
CVE-2015-4803
CVE-2015-4805
CVE-2015-4806
CVE-2015-4807
CVE-2015-4810
CVE-2015-4815
CVE-2015-4826
CVE-2015-4830
CVE-2015-4835
CVE-2015-4836
CVE-2015-4840
CVE-2015-4842
CVE-2015-4843
CVE-2015-4844
CVE-2015-4858
CVE-2015-4860
CVE-2015-4861
CVE-2015-4868
CVE-2015-4870
CVE-2015-4872
CVE-2015-4881
CVE-2015-4882
CVE-2015-4883
CVE-2015-4893
CVE-2015-4901
CVE-2015-4902
CVE-2015-4903
CVE-2015-4906
CVE-2015-4908
CVE-2015-4911
CVE-2015-4913
CVE-2015-4916
CVE-2015-5219
CVE-2015-5300
CVE-2015-5969
CVE-2015-7575
CVE-2015-7691
CVE-2015-7692
CVE-2015-7701
CVE-2015-7702
CVE-2015-7703
CVE-2015-7704
CVE-2015-7705
CVE-2015-7747
CVE-2015-7848
CVE-2015-7849
CVE-2015-7850
CVE-2015-7851
CVE-2015-7852
CVE-2015-7853
CVE-2015-7854
CVE-2015-7855
CVE-2015-7871
CVE-2015-7973
CVE-2015-7974
CVE-2015-7975
CVE-2015-7976
CVE-2015-7977
CVE-2015-7978
CVE-2015-7979
CVE-2015-8126
CVE-2015-8138
CVE-2015-8139
CVE-2015-8140
CVE-2015-8158
CVE-2016-0402
CVE-2016-0448
CVE-2016-0466
CVE-2016-0475
CVE-2016-0483
CVE-2016-0494
CVE-2016-0505
CVE-2016-0546
CVE-2016-0596
CVE-2016-0597
CVE-2016-0598
CVE-2016-0600
CVE-2016-0606
CVE-2016-0608
CVE-2016-0609
CVE-2016-0616
CVE-2016-0636
CVE-2016-0640
CVE-2016-0641
CVE-2016-0642
CVE-2016-0643
CVE-2016-0644
CVE-2016-0646
CVE-2016-0647
CVE-2016-0648
CVE-2016-0649
CVE-2016-0650
CVE-2016-0651
CVE-2016-0655
CVE-2016-0666
CVE-2016-0668
CVE-2016-0686
CVE-2016-0687
CVE-2016-0695
CVE-2016-0787
CVE-2016-0960
CVE-2016-0961
CVE-2016-0962
CVE-2016-0963
CVE-2016-0986
CVE-2016-0987
CVE-2016-0988
CVE-2016-0989
CVE-2016-0990
CVE-2016-0991
CVE-2016-0992
CVE-2016-0993
CVE-2016-0994
CVE-2016-0995
CVE-2016-0996
CVE-2016-0997
CVE-2016-0998
CVE-2016-0999
CVE-2016-1000
CVE-2016-1001
CVE-2016-1002
CVE-2016-1005
CVE-2016-1010
CVE-2016-10166
CVE-2016-10167
CVE-2016-10168
CVE-2016-1547
CVE-2016-1548
CVE-2016-1549
CVE-2016-1550
CVE-2016-1551
CVE-2016-2047
CVE-2016-2516
CVE-2016-2517
CVE-2016-2518
CVE-2016-2519
CVE-2016-3425
CVE-2016-3426
CVE-2016-3427
CVE-2016-3458
CVE-2016-3477
CVE-2016-3485
CVE-2016-3498
CVE-2016-3500
CVE-2016-3503
CVE-2016-3508
CVE-2016-3511
CVE-2016-3521
CVE-2016-3550
CVE-2016-3552
CVE-2016-3587
CVE-2016-3598
CVE-2016-3606
CVE-2016-3610
CVE-2016-3615
CVE-2016-4953
CVE-2016-4954
CVE-2016-4955
CVE-2016-4956
CVE-2016-4957
CVE-2016-5116
CVE-2016-5440
CVE-2016-6128
CVE-2016-6132
CVE-2016-6161
CVE-2016-6207
CVE-2016-6214
CVE-2016-6662
CVE-2016-6905
CVE-2016-6906
CVE-2016-6911
CVE-2016-6912
CVE-2016-7426
CVE-2016-7427
CVE-2016-7428
CVE-2016-7429
CVE-2016-7431
CVE-2016-7433
CVE-2016-7434
CVE-2016-7568
CVE-2016-8670
CVE-2016-9042
CVE-2016-9310
CVE-2016-9311
CVE-2016-9317
CVE-2016-9445
CVE-2016-9446
CVE-2016-9809
CVE-2016-9812
CVE-2016-9813
CVE-2016-9933
CVE-2017-6451
CVE-2017-6458
CVE-2017-6460
CVE-2017-6462
CVE-2017-6463
CVE-2017-6464
CVE-2017-6827
CVE-2017-6828
CVE-2017-6829
CVE-2017-6830
CVE-2017-6831
CVE-2017-6832
CVE-2017-6833
CVE-2017-6834
CVE-2017-6835
CVE-2017-6836
CVE-2017-6837
CVE-2017-6838
CVE-2017-6839
CVE-2018-12327
CVE-2018-7170
CVE-2018-7182
CVE-2018-7183
CVE-2018-7184
CVE-2018-7185
CVE-2019-0804
CVE-2019-20446
SUSE-SU-2015:0865-1
SUSE-SU-2015:2384-1
SUSE-SU-2016:0715-1
SUSE-SU-2016:0718-1
SUSE-SU-2016:3297-1
SUSE-SU-2020:0440-1
SUSE-SU-2020:0629-2
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1
SUSE Linux Enterprise Module for Public Cloud 15 SP1
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libexif12-0.6.21-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • apache2-mod_php7-7.2.5-lp151.6.6 is installed
  • OR php7-7.2.5-lp151.6.6 is installed
  • OR php7-bcmath-7.2.5-lp151.6.6 is installed
  • OR php7-bz2-7.2.5-lp151.6.6 is installed
  • OR php7-calendar-7.2.5-lp151.6.6 is installed
  • OR php7-ctype-7.2.5-lp151.6.6 is installed
  • OR php7-curl-7.2.5-lp151.6.6 is installed
  • OR php7-dba-7.2.5-lp151.6.6 is installed
  • OR php7-devel-7.2.5-lp151.6.6 is installed
  • OR php7-dom-7.2.5-lp151.6.6 is installed
  • OR php7-embed-7.2.5-lp151.6.6 is installed
  • OR php7-enchant-7.2.5-lp151.6.6 is installed
  • OR php7-exif-7.2.5-lp151.6.6 is installed
  • OR php7-fastcgi-7.2.5-lp151.6.6 is installed
  • OR php7-fileinfo-7.2.5-lp151.6.6 is installed
  • OR php7-firebird-7.2.5-lp151.6.6 is installed
  • OR php7-fpm-7.2.5-lp151.6.6 is installed
  • OR php7-ftp-7.2.5-lp151.6.6 is installed
  • OR php7-gd-7.2.5-lp151.6.6 is installed
  • OR php7-gettext-7.2.5-lp151.6.6 is installed
  • OR php7-gmp-7.2.5-lp151.6.6 is installed
  • OR php7-iconv-7.2.5-lp151.6.6 is installed
  • OR php7-intl-7.2.5-lp151.6.6 is installed
  • OR php7-json-7.2.5-lp151.6.6 is installed
  • OR php7-ldap-7.2.5-lp151.6.6 is installed
  • OR php7-mbstring-7.2.5-lp151.6.6 is installed
  • OR php7-mysql-7.2.5-lp151.6.6 is installed
  • OR php7-odbc-7.2.5-lp151.6.6 is installed
  • OR php7-opcache-7.2.5-lp151.6.6 is installed
  • OR php7-openssl-7.2.5-lp151.6.6 is installed
  • OR php7-pcntl-7.2.5-lp151.6.6 is installed
  • OR php7-pdo-7.2.5-lp151.6.6 is installed
  • OR php7-pear-7.2.5-lp151.6.6 is installed
  • OR php7-pear-Archive_Tar-7.2.5-lp151.6.6 is installed
  • OR php7-pgsql-7.2.5-lp151.6.6 is installed
  • OR php7-phar-7.2.5-lp151.6.6 is installed
  • OR php7-posix-7.2.5-lp151.6.6 is installed
  • OR php7-readline-7.2.5-lp151.6.6 is installed
  • OR php7-shmop-7.2.5-lp151.6.6 is installed
  • OR php7-snmp-7.2.5-lp151.6.6 is installed
  • OR php7-soap-7.2.5-lp151.6.6 is installed
  • OR php7-sockets-7.2.5-lp151.6.6 is installed
  • OR php7-sodium-7.2.5-lp151.6.6 is installed
  • OR php7-sqlite-7.2.5-lp151.6.6 is installed
  • OR php7-sysvmsg-7.2.5-lp151.6.6 is installed
  • OR php7-sysvsem-7.2.5-lp151.6.6 is installed
  • OR php7-sysvshm-7.2.5-lp151.6.6 is installed
  • OR php7-testresults-7.2.5-lp151.6.6 is installed
  • OR php7-tidy-7.2.5-lp151.6.6 is installed
  • OR php7-tokenizer-7.2.5-lp151.6.6 is installed
  • OR php7-wddx-7.2.5-lp151.6.6 is installed
  • OR php7-xmlreader-7.2.5-lp151.6.6 is installed
  • OR php7-xmlrpc-7.2.5-lp151.6.6 is installed
  • OR php7-xmlwriter-7.2.5-lp151.6.6 is installed
  • OR php7-xsl-7.2.5-lp151.6.6 is installed
  • OR php7-zip-7.2.5-lp151.6.6 is installed
  • OR php7-zlib-7.2.5-lp151.6.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • MozillaFirefox-24.6.0esr-0.8 is installed
  • OR MozillaFirefox-branding-SLED-24-0.7 is installed
  • OR MozillaFirefox-translations-24.6.0esr-0.8 is installed
  • OR libfreebl3-3.16.1-0.8 is installed
  • OR libfreebl3-32bit-3.16.1-0.8 is installed
  • OR libsoftokn3-3.16.1-0.8 is installed
  • OR libsoftokn3-32bit-3.16.1-0.8 is installed
  • OR mozilla-nspr-4.10.6-0.3 is installed
  • OR mozilla-nspr-32bit-4.10.6-0.3 is installed
  • OR mozilla-nss-3.16.1-0.8 is installed
  • OR mozilla-nss-32bit-3.16.1-0.8 is installed
  • OR mozilla-nss-tools-3.16.1-0.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND fetchmail-6.3.8.90-13.20.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • ntp-4.2.6p5-44 is installed
  • OR ntp-doc-4.2.6p5-44 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • strongswan-5.1.3-18 is installed
  • OR strongswan-doc-5.1.3-18 is installed
  • OR strongswan-ipsec-5.1.3-18 is installed
  • OR strongswan-libs0-5.1.3-18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND facter-2.0.2-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • gd-2.1.0-23 is installed
  • OR gd-32bit-2.1.0-23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • audiofile-0.3.6-10 is installed
  • OR libaudiofile1-0.3.6-10 is installed
  • OR libaudiofile1-32bit-0.3.6-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 SP1 is installed
  • AND Package Information
  • librsvg-2.42.8-3.3 is installed
  • OR rsvg-view-2.42.8-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 SP1 is installed
  • AND python-azure-agent-2.2.45-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • glibc-2.19-31 is installed
  • OR glibc-32bit-2.19-31 is installed
  • OR glibc-devel-2.19-31 is installed
  • OR glibc-devel-32bit-2.19-31 is installed
  • OR glibc-html-2.19-31 is installed
  • OR glibc-i18ndata-2.19-31 is installed
  • OR glibc-info-2.19-31 is installed
  • OR glibc-locale-2.19-31 is installed
  • OR glibc-locale-32bit-2.19-31 is installed
  • OR glibc-profile-2.19-31 is installed
  • OR glibc-profile-32bit-2.19-31 is installed
  • OR nscd-2.19-31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_69-60_64_32-default-4-3 is installed
  • OR kgraft-patch-3_12_69-60_64_32-xen-4-3 is installed
  • OR kgraft-patch-SLE12-SP1_Update_13-4-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • avahi-0.6.32-30 is installed
  • OR avahi-lang-0.6.32-30 is installed
  • OR avahi-utils-0.6.32-30 is installed
  • OR libavahi-client3-0.6.32-30 is installed
  • OR libavahi-client3-32bit-0.6.32-30 is installed
  • OR libavahi-common3-0.6.32-30 is installed
  • OR libavahi-common3-32bit-0.6.32-30 is installed
  • OR libavahi-core7-0.6.32-30 is installed
  • OR libdns_sd-0.6.32-30 is installed
  • OR libdns_sd-32bit-0.6.32-30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • kernel-default-4.4.121-92.109 is installed
  • OR kernel-default-base-4.4.121-92.109 is installed
  • OR kernel-default-devel-4.4.121-92.109 is installed
  • OR kernel-devel-4.4.121-92.109 is installed
  • OR kernel-macros-4.4.121-92.109 is installed
  • OR kernel-source-4.4.121-92.109 is installed
  • OR kernel-syms-4.4.121-92.109 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • openslp-2.0.0-18.15 is installed
  • OR openslp-32bit-2.0.0-18.15 is installed
  • OR openslp-server-2.0.0-18.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • MozillaFirefox-52.9.0esr-109.38 is installed
  • OR MozillaFirefox-devel-52.9.0esr-109.38 is installed
  • OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • krb5-appl-clients-1.0.3-1 is installed
  • OR krb5-appl-servers-1.0.3-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libpolkit0-0.113-5.18 is installed
  • OR polkit-0.113-5.18 is installed
  • OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_155-94_50-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_17-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libecpg6-10.5-1.3 is installed
  • OR libpq5-10.5-1.3 is installed
  • OR libpq5-32bit-10.5-1.3 is installed
  • OR postgresql-init-10-17.20 is installed
  • OR postgresql10-10.5-1.3 is installed
  • OR postgresql10-contrib-10.5-1.3 is installed
  • OR postgresql10-docs-10.5-1.3 is installed
  • OR postgresql10-libs-10.5-1.3 is installed
  • OR postgresql10-server-10.5-1.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND cifs-utils-6.5-9.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND crowbar-openstack-3.0+git.1456169766.1e60d19-1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • libpcap-1.8.1-10.3 is installed
  • OR libpcap1-1.8.1-10.3 is installed
  • OR tcpdump-4.9.2-14.14 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • MozillaFirefox-60.7.2-109.80 is installed
  • OR MozillaFirefox-translations-common-60.7.2-109.80 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libexif-0.6.21-8.6 is installed
  • OR libexif12-0.6.21-8.6 is installed
  • OR libexif12-32bit-0.6.21-8.6 is installed
    • BACK