Oval Definition:oval:org.opensuse.security:def:55195
Revision Date:2021-06-02Version:1
Title:Security update for libwebp (Critical)
Description:

This update for libwebp fixes the following issues:

- CVE-2018-25010: Fixed heap-based buffer overflow in ApplyFilter() (bsc#1185685). - CVE-2020-36330: Fixed heap-based buffer overflow in ChunkVerifyAndAssign() (bsc#1185691). - CVE-2020-36332: Fixed extreme memory allocation when reading a file (bsc#1185674). - CVE-2020-36329: Fixed use-after-free in EmitFancyRGB() (bsc#1185652). - CVE-2018-25012: Fixed heap-based buffer overflow in GetLE24() (bsc#1185690). - CVE-2018-25013: Fixed heap-based buffer overflow in ShiftBytes() (bsc#1185654). - CVE-2020-36331: Fixed heap-based buffer overflow in ChunkAssignData() (bsc#1185686). - CVE-2018-25009: Fixed heap-based buffer overflow in GetLE16() (bsc#1185673). - CVE-2018-25011: Fixed fail on multiple image chunks (bsc#1186247).
Family:unixClass:patch
Status:Reference(s):1005778
1005780
1005781
1010470
1012382
1019695
1019696
1022604
1045330
1055755
1062568
1063416
1063638
1065600
1066001
1067118
1068032
1072689
1072865
1074293
1074488
1075617
1075621
1077182
1077560
1077779
1078669
1078672
1078673
1078674
1080255
1080287
1080464
1080757
1081512
1082299
1083244
1083483
1083494
1083507
1083640
1084323
1084517
1084519
1085107
1085114
1085447
1085535
1085539
1090888
1091836
1099658
1100132
1104205
1106110
1106284
1106929
1108293
1108838
1109209
1110785
1110946
1112063
1112178
1115713
1116803
1117562
1119086
1120642
1120843
1120902
1122776
1126040
1126356
1128052
1129138
1129770
1130972
1131107
1131488
1131565
1132212
1132472
1133188
1133874
1134160
1134162
1134338
1134537
1134564
1134565
1134566
1134651
1134760
1134806
1134813
1134848
1135013
1135014
1135015
1135100
1135120
1135281
1135603
1135642
1135661
1135878
1136424
1136438
1136448
1136449
1136451
1136452
1136455
1136458
1136539
1136573
1136575
1136586
1136590
1136623
1136810
1136935
1136990
1137142
1137162
1137586
1185652
1185654
1185673
1185674
1185685
1185686
1185690
1185691
1186247
808355
813448
835827
836937
843419
852368
863205
866690
875385
889332
889765
891082
989121
989122
CVE-2009-0799
CVE-2009-0800
CVE-2009-1179
CVE-2009-1180
CVE-2009-1181
CVE-2009-1182
CVE-2009-1183
CVE-2009-1187
CVE-2009-1188
CVE-2009-3607
CVE-2009-3608
CVE-2011-2483
CVE-2013-0157
CVE-2013-0200
CVE-2013-1788
CVE-2013-1789
CVE-2013-1790
CVE-2013-4325
CVE-2013-4473
CVE-2013-4474
CVE-2013-4566
CVE-2013-6402
CVE-2014-3675
CVE-2014-3676
CVE-2014-3677
CVE-2014-4345
CVE-2014-9114
CVE-2015-5218
CVE-2015-8946
CVE-2016-2779
CVE-2016-5011
CVE-2016-6224
CVE-2016-7915
CVE-2017-1000456
CVE-2017-12190
CVE-2017-13166
CVE-2017-14517
CVE-2017-14518
CVE-2017-14520
CVE-2017-14617
CVE-2017-14928
CVE-2017-14975
CVE-2017-14976
CVE-2017-14977
CVE-2017-15299
CVE-2017-15565
CVE-2017-16644
CVE-2017-16911
CVE-2017-16912
CVE-2017-16913
CVE-2017-16914
CVE-2017-18017
CVE-2017-18204
CVE-2017-18207
CVE-2017-18208
CVE-2017-18221
CVE-2017-2616
CVE-2017-7511
CVE-2017-7515
CVE-2017-9406
CVE-2017-9408
CVE-2017-9775
CVE-2017-9776
CVE-2017-9865
CVE-2018-1000001
CVE-2018-1066
CVE-2018-1068
CVE-2018-14526
CVE-2018-17972
CVE-2018-19208
CVE-2018-25009
CVE-2018-25010
CVE-2018-25011
CVE-2018-25012
CVE-2018-25013
CVE-2018-5332
CVE-2018-5333
CVE-2018-6927
CVE-2018-7191
CVE-2018-7566
CVE-2018-7725
CVE-2018-7726
CVE-2018-7738
CVE-2019-11190
CVE-2019-11477
CVE-2019-11478
CVE-2019-11479
CVE-2019-11486
CVE-2019-11815
CVE-2019-11833
CVE-2019-11884
CVE-2019-12382
CVE-2019-3846
CVE-2019-5489
CVE-2020-36329
CVE-2020-36330
CVE-2020-36331
CVE-2020-36332
SUSE-SU-2018:0071-1
SUSE-SU-2018:0336-1
SUSE-SU-2018:0848-1
SUSE-SU-2018:0919-1
SUSE-SU-2018:2040-1
SUSE-SU-2018:3812-1
SUSE-SU-2019:1088-1
SUSE-SU-2019:1532-1
SUSE-SU-2021:1830-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND klogd-1.4.1-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • GraphicsMagick-1.3.29-lp151.4.6 is installed
  • OR GraphicsMagick-devel-1.3.29-lp151.4.6 is installed
  • OR libGraphicsMagick++-Q16-12-1.3.29-lp151.4.6 is installed
  • OR libGraphicsMagick++-devel-1.3.29-lp151.4.6 is installed
  • OR libGraphicsMagick-Q16-3-1.3.29-lp151.4.6 is installed
  • OR libGraphicsMagick3-config-1.3.29-lp151.4.6 is installed
  • OR libGraphicsMagickWand-Q16-2-1.3.29-lp151.4.6 is installed
  • OR perl-GraphicsMagick-1.3.29-lp151.4.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • hplip-3.11.10-0.6.11 is installed
  • OR hplip-hpijs-3.11.10-0.6.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • krb5-1.6.3-133.49.62 is installed
  • OR krb5-32bit-1.6.3-133.49.62 is installed
  • OR krb5-client-1.6.3-133.49.62 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libpython2_7-1_0-2.7.13-28.6 is installed
  • OR libpython2_7-1_0-32bit-2.7.13-28.6 is installed
  • OR python-2.7.13-28.6 is installed
  • OR python-base-2.7.13-28.6 is installed
  • OR python-curses-2.7.13-28.6 is installed
  • OR python-devel-2.7.13-28.6 is installed
  • OR python-tk-2.7.13-28.6 is installed
  • OR python-xml-2.7.13-28.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • libblkid1-2.29.2-7 is installed
  • OR libblkid1-32bit-2.29.2-7 is installed
  • OR libfdisk1-2.29.2-7 is installed
  • OR libmount1-2.29.2-7 is installed
  • OR libmount1-32bit-2.29.2-7 is installed
  • OR libsmartcols1-2.29.2-7 is installed
  • OR libuuid-devel-2.29.2-7 is installed
  • OR libuuid1-2.29.2-7 is installed
  • OR libuuid1-32bit-2.29.2-7 is installed
  • OR python-libmount-2.29.2-7 is installed
  • OR util-linux-2.29.2-7 is installed
  • OR util-linux-lang-2.29.2-7 is installed
  • OR util-linux-systemd-2.29.2-7 is installed
  • OR uuidd-2.29.2-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND apache2-mod_nss-1.0.8-13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_48-default-2-2 is installed
  • OR kgraft-patch-3_12_74-60_64_48-xen-2-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_17-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • apache2-2.4.23-14 is installed
  • OR apache2-doc-2.4.23-14 is installed
  • OR apache2-example-pages-2.4.23-14 is installed
  • OR apache2-prefork-2.4.23-14 is installed
  • OR apache2-utils-2.4.23-14 is installed
  • OR apache2-worker-2.4.23-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libwebp5-0.4.3-4.7.1 is installed
  • OR libwebp5-32bit-0.4.3-4.7.1 is installed
  • OR libwebpdemux1-0.4.3-4.7.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • evince-3.20.2-6.27 is installed
  • OR evince-browser-plugin-3.20.2-6.27 is installed
  • OR evince-lang-3.20.2-6.27 is installed
  • OR evince-plugin-djvudocument-3.20.2-6.27 is installed
  • OR evince-plugin-dvidocument-3.20.2-6.27 is installed
  • OR evince-plugin-pdfdocument-3.20.2-6.27 is installed
  • OR evince-plugin-psdocument-3.20.2-6.27 is installed
  • OR evince-plugin-tiffdocument-3.20.2-6.27 is installed
  • OR evince-plugin-xpsdocument-3.20.2-6.27 is installed
  • OR libevdocument3-4-3.20.2-6.27 is installed
  • OR libevview3-3-3.20.2-6.27 is installed
  • OR nautilus-evince-3.20.2-6.27 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • libopenssl-devel-1.0.2j-60.39 is installed
  • OR libopenssl1_0_0-1.0.2j-60.39 is installed
  • OR libopenssl1_0_0-32bit-1.0.2j-60.39 is installed
  • OR libopenssl1_0_0-hmac-1.0.2j-60.39 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.39 is installed
  • OR openssl-1.0.2j-60.39 is installed
  • OR openssl-doc-1.0.2j-60.39 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-36 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libpython3_4m1_0-3.4.6-25.29 is installed
  • OR python3-3.4.6-25.29 is installed
  • OR python3-base-3.4.6-25.29 is installed
  • OR python3-curses-3.4.6-25.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.28.1-2.50 is installed
  • OR libwebkit2gtk-4_0-37-2.28.1-2.50 is installed
  • OR libwebkit2gtk3-lang-2.28.1-2.50 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.28.1-2.50 is installed
  • OR typelib-1_0-WebKit2-4_0-2.28.1-2.50 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.28.1-2.50 is installed
  • OR webkit2gtk3-2.28.1-2.50 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_178-94_91-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_25-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libopenssl-devel-1.0.2j-60.39 is installed
  • OR libopenssl1_0_0-1.0.2j-60.39 is installed
  • OR libopenssl1_0_0-32bit-1.0.2j-60.39 is installed
  • OR libopenssl1_0_0-hmac-1.0.2j-60.39 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.39 is installed
  • OR openssl-1.0.2j-60.39 is installed
  • OR openssl-doc-1.0.2j-60.39 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libnm-glib-vpn1-1.0.12-13.6 is installed
  • OR libnm-glib4-1.0.12-13.6 is installed
  • OR libnm-util2-1.0.12-13.6 is installed
  • OR libnm0-1.0.12-13.6 is installed
  • OR typelib-1_0-NMClient-1_0-1.0.12-13.6 is installed
  • OR typelib-1_0-NetworkManager-1_0-1.0.12-13.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND ucode-intel-20180425-13.20 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • grafana-4.5.1-1.8 is installed
  • OR kafka-0.10.2.2-5 is installed
  • OR logstash-2.4.1-5 is installed
  • OR monasca-installer-20180608_12.47-9 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND ucode-intel-20191112-13.53 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Twisted-15.2.1-9.8 is installed
    • BACK