Oval Definition:oval:org.opensuse.security:def:53899
Revision Date:2020-12-01Version:1
Title:Security update for libraw (Moderate)
Description:

This update for libraw fixes the following issues:

- security update - added patches fix CVE-2020-15503 [bsc#1173674], lack of thumbnail size range check can lead to buffer overflow + libraw-CVE-2020-15503.patch
Family:unixClass:patch
Status:Reference(s):1001203
1009085
1014437
1014441
1014442
1020950
1024749
1042824
1042829
1042911
1045460
1047044
1047898
1048110
1048272
1049374
1049375
1050048
1050119
1050120
1050122
1050126
1050132
1050469
1050606
1050617
1051446
1052207
1052248
1052251
1052254
1052468
1052472
1052550
1052688
1052710
1052711
1052720
1052731
1052732
1052747
1052750
1052754
1052761
1055065
1055069
1055229
1055323
1055434
1055855
1056768
1057163
1058009
1058640
1059751
1068664
1072898
1074119
1074123
1074170
1074969
1074973
1074975
1075821
1076182
1076832
1077375
1078433
1079300
1080249
1083213
1083993
1088662
1089124
1173674
910790
912214
935701
973790
975299
986675
991564
994500
997833
CVE-2009-2905
CVE-2009-5029
CVE-2010-2522
CVE-2010-2523
CVE-2012-4412
CVE-2013-0242
CVE-2013-1914
CVE-2013-2207
CVE-2013-4237
CVE-2013-4332
CVE-2013-4458
CVE-2014-0475
CVE-2014-1829
CVE-2014-1830
CVE-2014-4043
CVE-2014-5119
CVE-2014-6040
CVE-2014-8132
CVE-2014-9556
CVE-2015-3113
CVE-2016-2123
CVE-2016-2125
CVE-2016-2126
CVE-2016-2347
CVE-2016-7586
CVE-2016-7589
CVE-2016-7592
CVE-2016-7599
CVE-2016-7623
CVE-2016-7632
CVE-2016-7635
CVE-2016-7639
CVE-2016-7641
CVE-2016-7645
CVE-2016-7652
CVE-2016-7654
CVE-2016-7656
CVE-2017-1000158
CVE-2017-10800
CVE-2017-11141
CVE-2017-11166
CVE-2017-11170
CVE-2017-11448
CVE-2017-11450
CVE-2017-11528
CVE-2017-11529
CVE-2017-11530
CVE-2017-11531
CVE-2017-11533
CVE-2017-11537
CVE-2017-11638
CVE-2017-11642
CVE-2017-11644
CVE-2017-11724
CVE-2017-12418
CVE-2017-12427
CVE-2017-12429
CVE-2017-12432
CVE-2017-12434
CVE-2017-12564
CVE-2017-12566
CVE-2017-12654
CVE-2017-12663
CVE-2017-12664
CVE-2017-12665
CVE-2017-12667
CVE-2017-12668
CVE-2017-12670
CVE-2017-12672
CVE-2017-12674
CVE-2017-12675
CVE-2017-13058
CVE-2017-13060
CVE-2017-13131
CVE-2017-13146
CVE-2017-13648
CVE-2017-13658
CVE-2017-14060
CVE-2017-14139
CVE-2017-14224
CVE-2017-14326
CVE-2017-14533
CVE-2017-17682
CVE-2017-17881
CVE-2017-17885
CVE-2017-17934
CVE-2017-18022
CVE-2017-18028
CVE-2017-2350
CVE-2017-2354
CVE-2017-2355
CVE-2017-2356
CVE-2017-2362
CVE-2017-2363
CVE-2017-2364
CVE-2017-2365
CVE-2017-2366
CVE-2017-2369
CVE-2017-2371
CVE-2017-2373
CVE-2017-2496
CVE-2017-2510
CVE-2017-2538
CVE-2017-2539
CVE-2017-7018
CVE-2017-7030
CVE-2017-7034
CVE-2017-7037
CVE-2017-7039
CVE-2017-7046
CVE-2017-7048
CVE-2017-7055
CVE-2017-7056
CVE-2017-7061
CVE-2017-7064
CVE-2017-9405
CVE-2017-9407
CVE-2017-9432
CVE-2017-9433
CVE-2018-1000030
CVE-2018-1055
CVE-2018-5246
CVE-2018-5247
CVE-2018-5357
CVE-2018-6003
CVE-2018-6405
CVE-2018-6871
CVE-2020-15503
SUSE-SU-2015:0366-1
SUSE-SU-2015:1136-1
SUSE-SU-2016:1091-1
SUSE-SU-2016:3272-1
SUSE-SU-2017:2933-1
SUSE-SU-2018:0130-1
SUSE-SU-2018:0295-1
SUSE-SU-2018:0581-1
SUSE-SU-2018:1076-1
SUSE-SU-2018:1372-1
SUSE-SU-2020:2029-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Workstation Extension 15 SP2
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • groff-1.22.3-lp150.3 is installed
  • OR groff-full-1.22.3-lp150.3 is installed
  • OR gxditview-1.22.3-lp150.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • containerd-1.2.5-lp151.2.3 is installed
  • OR containerd-ctr-1.2.5-lp151.2.3 is installed
  • OR containerd-test-1.2.5-lp151.2.3 is installed
  • OR docker-18.09.6_ce-lp151.2.3 is installed
  • OR docker-bash-completion-18.09.6_ce-lp151.2.3 is installed
  • OR docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-lp151.2.3 is installed
  • OR docker-runc-1.0.0rc6+gitr3804_2b18fe1d885e-lp151.3.3 is installed
  • OR docker-runc-test-1.0.0rc6+gitr3804_2b18fe1d885e-lp151.3.3 is installed
  • OR docker-test-18.09.6_ce-lp151.2.3 is installed
  • OR docker-zsh-completion-18.09.6_ce-lp151.2.3 is installed
  • OR go-1.12-lp151.2.3 is installed
  • OR go-doc-1.12-lp151.2.3 is installed
  • OR go-race-1.12-lp151.2.3 is installed
  • OR go1.11-1.11.9-lp151.2.3 is installed
  • OR go1.11-doc-1.11.9-lp151.2.3 is installed
  • OR go1.11-race-1.11.9-lp151.2.3 is installed
  • OR go1.12-1.12.4-lp151.2.3 is installed
  • OR go1.12-doc-1.12.4-lp151.2.3 is installed
  • OR go1.12-race-1.12.4-lp151.2.3 is installed
  • OR golang-github-docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • ghostscript-fonts-other-8.62-32.34 is installed
  • OR ghostscript-fonts-rus-8.62-32.34 is installed
  • OR ghostscript-fonts-std-8.62-32.34 is installed
  • OR ghostscript-library-8.62-32.34 is installed
  • OR ghostscript-omni-8.62-32.34 is installed
  • OR ghostscript-x11-8.62-32.34 is installed
  • OR libgimpprint-4.2.7-32.34 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND libaugeas0-0.9.0-3.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • libmspack-0.0.20060920alpha-74.10 is installed
  • OR libmspack0-0.0.20060920alpha-74.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • glibc-2.19-17 is installed
  • OR glibc-32bit-2.19-17 is installed
  • OR glibc-devel-2.19-17 is installed
  • OR glibc-devel-32bit-2.19-17 is installed
  • OR glibc-i18ndata-2.19-17 is installed
  • OR glibc-locale-2.19-17 is installed
  • OR glibc-locale-32bit-2.19-17 is installed
  • OR nscd-2.19-17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • lhasa-0.2.0-5 is installed
  • OR liblhasa0-0.2.0-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • libdcerpc-atsvc0-4.2.4-28.3 is installed
  • OR samba-4.2.4-28.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libtasn1-4.9-3.5 is installed
  • OR libtasn1-6-4.9-3.5 is installed
  • OR libtasn1-6-32bit-4.9-3.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND libnewt0_52-0.52.16-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • dhcp-4.3.3-2 is installed
  • OR dhcp-client-4.3.3-2 is installed
  • OR dhcp-relay-4.3.3-2 is installed
  • OR dhcp-server-4.3.3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_62-60_64_8-default-11-2 is installed
  • OR kgraft-patch-3_12_62-60_64_8-xen-11-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_8-11-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND mailx-12.5-28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • kernel-default-4.4.121-92.129 is installed
  • OR kernel-default-base-4.4.121-92.129 is installed
  • OR kernel-default-devel-4.4.121-92.129 is installed
  • OR kernel-devel-4.4.121-92.129 is installed
  • OR kernel-macros-4.4.121-92.129 is installed
  • OR kernel-source-4.4.121-92.129 is installed
  • OR kernel-syms-4.4.121-92.129 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_114-92_64-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_18-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_103-92_56-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_17-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • kernel-default-4.4.73-5 is installed
  • OR kernel-default-base-4.4.73-5 is installed
  • OR kernel-default-devel-4.4.73-5 is installed
  • OR kernel-default-man-4.4.73-5 is installed
  • OR kernel-devel-4.4.73-5 is installed
  • OR kernel-macros-4.4.73-5 is installed
  • OR kernel-source-4.4.73-5 is installed
  • OR kernel-syms-4.4.73-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_175-94_79-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_23-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_176-94_88-default-4-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_24-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-71.74 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-71.74 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-71.74 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND apache2-mod_jk-1.2.40-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
  • AND Package Information
  • libraw-0.18.9-3.11 is installed
  • OR libraw-devel-0.18.9-3.11 is installed
  • OR libraw16-0.18.9-3.11 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND ruby2.1-rubygem-railties-4_2-4.2.2-2 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • gvim-7.4.326-17.3 is installed
  • OR vim-7.4.326-17.3 is installed
  • OR vim-data-7.4.326-17.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND python-ecdsa-0.13.3-5.10 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • mariadb-10.2.22-4.11 is installed
  • OR mariadb-client-10.2.22-4.11 is installed
  • OR mariadb-errormessages-10.2.22-4.11 is installed
  • OR mariadb-galera-10.2.22-4.11 is installed
  • OR mariadb-tools-10.2.22-4.11 is installed
    • BACK