Oval Definition:	oval:org.opensuse.security:def:55244
Revision Date: 2021-09-16 Version: 1 Title: Security update for transfig (Moderate) Description: This update for transfig fixes the following issues: Update to version 3.2.8, including fixes for - CVE-2021-3561: overflow in fig2dev/read.c in function read_colordef() (bsc#1186329). - CVE-2020-21683: Fixed buffer overflow in the shade_or_tint_name_after_declare_color in genpstricks.c (bsc#1189325). - CVE-2020-21682: Fixed buffer overflow in the set_fill component in genge.c (bsc#1189346). - CVE-2020-21681: Fixed buffer overflow in the set_color component in genge.c (bsc#1189345). - CVE-2020-21680: Fixed stack-based buffer overflow in the put_arrow() component in genpict2e.c (bsc#1189343). - CVE-2019-19797: out-of-bounds write in read_colordef in read.c (bsc#1159293). - CVE-2019-19555: stack-based buffer overflow because of an incorrect sscanf (bsc#1161698). - CVE-2019-19746: segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type (bsc#1159130). Family: unix Class: patch Status: Reference(s): 1036304 1045735 1049825 1057246 1070851 1076192 1077355 1088705 1091624 1092413 1096803 1099847 1100028 1100078 1101349 1102429 1104205 1109209 1113064 1113975 1117463 1117951 1127080 1128481 1136570 1136882 1159130 1159293 1161698 1176421 1186329 1189325 1189343 1189345 1189346 662458 676471 777890 778105 779212 784087 786516 786517 786518 786519 786520 787163 889207 897031 897662 899908 903279 908151 928547 931448 937086 939567 940413 942262 943989 944309 945345 951844 953233 957805 958390 959514 960857 962336 962846 962872 963572 964461 964727 965319 966054 966573 967640 968497 968687 968812 968813 969016 970604 970609 970892 970911 970948 970955 970956 970958 970970 971049 971124 971126 971159 971170 971600 971628 971793 971947 972003 972068 972174 972780 972844 972891 972951 973378 973556 973855 974418 974646 974692 975371 975488 975772 975945 976739 976821 976868 977582 977685 978401 978527 978822 979213 979347 982366 983143 983549 983638 983639 983643 983646 983651 983652 983653 983655 984006 984126 985659 CVE-2007-5970 CVE-2008-7247 CVE-2009-4019 CVE-2009-4028 CVE-2009-4030 CVE-2009-5029 CVE-2010-5298 CVE-2012-3497 CVE-2012-4411 CVE-2012-4412 CVE-2012-4535 CVE-2012-4536 CVE-2012-4537 CVE-2012-4538 CVE-2012-4539 CVE-2012-4544 CVE-2012-5615 CVE-2013-0242 CVE-2013-1914 CVE-2013-1976 CVE-2013-2207 CVE-2013-4237 CVE-2013-4332 CVE-2013-4458 CVE-2013-7423 CVE-2014-0195 CVE-2014-0198 CVE-2014-0221 CVE-2014-0224 CVE-2014-0475 CVE-2014-2494 CVE-2014-3470 CVE-2014-4043 CVE-2014-4207 CVE-2014-4258 CVE-2014-4260 CVE-2014-4274 CVE-2014-4287 CVE-2014-5119 CVE-2014-6040 CVE-2014-6051 CVE-2014-6052 CVE-2014-6053 CVE-2014-6054 CVE-2014-6055 CVE-2014-6463 CVE-2014-6464 CVE-2014-6469 CVE-2014-6474 CVE-2014-6478 CVE-2014-6484 CVE-2014-6489 CVE-2014-6491 CVE-2014-6494 CVE-2014-6495 CVE-2014-6496 CVE-2014-6500 CVE-2014-6505 CVE-2014-6507 CVE-2014-6520 CVE-2014-6530 CVE-2014-6551 CVE-2014-6555 CVE-2014-6559 CVE-2014-6564 CVE-2014-6568 CVE-2014-7817 CVE-2014-8121 CVE-2014-8964 CVE-2014-9402 CVE-2014-9717 CVE-2015-0374 CVE-2015-0381 CVE-2015-0382 CVE-2015-0391 CVE-2015-0411 CVE-2015-0432 CVE-2015-0433 CVE-2015-0441 CVE-2015-0499 CVE-2015-0501 CVE-2015-0505 CVE-2015-1142857 CVE-2015-1472 CVE-2015-1781 CVE-2015-2325 CVE-2015-2326 CVE-2015-2568 CVE-2015-2571 CVE-2015-2573 CVE-2015-3152 CVE-2015-3982 CVE-2015-4792 CVE-2015-4802 CVE-2015-4807 CVE-2015-4815 CVE-2015-4826 CVE-2015-4830 CVE-2015-4836 CVE-2015-4858 CVE-2015-4861 CVE-2015-4870 CVE-2015-4913 CVE-2015-5145 CVE-2015-5477 CVE-2015-5963 CVE-2015-5969 CVE-2015-8213 CVE-2016-0505 CVE-2016-0546 CVE-2016-0596 CVE-2016-0597 CVE-2016-0598 CVE-2016-0600 CVE-2016-0606 CVE-2016-0608 CVE-2016-0609 CVE-2016-0616 CVE-2016-0640 CVE-2016-0641 CVE-2016-0642 CVE-2016-0643 CVE-2016-0644 CVE-2016-0646 CVE-2016-0647 CVE-2016-0648 CVE-2016-0649 CVE-2016-0650 CVE-2016-0651 CVE-2016-0655 CVE-2016-0666 CVE-2016-0668 CVE-2016-1583 CVE-2016-2047 CVE-2016-2185 CVE-2016-2186 CVE-2016-2188 CVE-2016-2815 CVE-2016-2818 CVE-2016-2819 CVE-2016-2821 CVE-2016-2822 CVE-2016-2824 CVE-2016-2828 CVE-2016-2831 CVE-2016-2834 CVE-2016-2847 CVE-2016-3134 CVE-2016-3136 CVE-2016-3137 CVE-2016-3138 CVE-2016-3140 CVE-2016-3477 CVE-2016-3492 CVE-2016-3521 CVE-2016-3615 CVE-2016-3689 CVE-2016-3951 CVE-2016-4482 CVE-2016-4486 CVE-2016-4569 CVE-2016-5440 CVE-2016-5584 CVE-2016-5624 CVE-2016-5626 CVE-2016-5629 CVE-2016-6662 CVE-2016-6663 CVE-2016-6664 CVE-2016-7440 CVE-2016-8283 CVE-2017-10268 CVE-2017-10378 CVE-2017-3238 CVE-2017-3243 CVE-2017-3244 CVE-2017-3257 CVE-2017-3258 CVE-2017-3265 CVE-2017-3291 CVE-2017-3302 CVE-2017-3308 CVE-2017-3309 CVE-2017-3312 CVE-2017-3313 CVE-2017-3317 CVE-2017-3318 CVE-2017-3453 CVE-2017-3456 CVE-2017-3464 CVE-2017-3636 CVE-2017-3641 CVE-2017-3653 CVE-2017-5950 CVE-2017-9269 CVE-2018-14526 CVE-2018-18544 CVE-2018-2562 CVE-2018-2612 CVE-2018-2622 CVE-2018-2640 CVE-2018-2665 CVE-2018-2668 CVE-2018-2755 CVE-2018-2761 CVE-2018-2766 CVE-2018-2767 CVE-2018-2771 CVE-2018-2781 CVE-2018-2782 CVE-2018-2784 CVE-2018-2787 CVE-2018-2813 CVE-2018-2817 CVE-2018-2819 CVE-2018-7685 CVE-2019-1559 CVE-2019-19555 CVE-2019-19746 CVE-2019-19797 CVE-2019-3860 CVE-2020-15169 CVE-2020-21680 CVE-2020-21681 CVE-2020-21682 CVE-2020-21683 CVE-2021-3561 SUSE-SU-2015:1304-1 SUSE-SU-2015:2110-1 SUSE-SU-2016:1691-1 SUSE-SU-2016:1696-1 SUSE-SU-2018:0674-1 SUSE-SU-2018:2814-1 SUSE-SU-2018:4023-1 SUSE-SU-2019:0803-1 SUSE-SU-2019:1088-1 SUSE-SU-2019:1606-1 SUSE-SU-2020:2686-1 SUSE-SU-2021:3124-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 6-LTSS SUSE OpenStack Cloud 7 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information apache2-mod_php7-7.2.5-lp150.1 is installed OR php7-7.2.5-lp150.1 is installed OR php7-ctype-7.2.5-lp150.1 is installed OR php7-dom-7.2.5-lp150.1 is installed OR php7-iconv-7.2.5-lp150.1 is installed OR php7-json-7.2.5-lp150.1 is installed OR php7-mysql-7.2.5-lp150.1 is installed OR php7-pdo-7.2.5-lp150.1 is installed OR php7-pgsql-7.2.5-lp150.1 is installed OR php7-sqlite-7.2.5-lp150.1 is installed OR php7-tokenizer-7.2.5-lp150.1 is installed OR php7-xmlreader-7.2.5-lp150.1 is installed OR php7-xmlwriter-7.2.5-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libnetpbm-devel-10.80.1-lp151.4.3 is installed OR libnetpbm11-10.80.1-lp151.4.3 is installed OR libnetpbm11-32bit-10.80.1-lp151.4.3 is installed OR netpbm-10.80.1-lp151.4.3 is installed OR netpbm-vulnerable-10.80.1-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information xen-4.1.3_04-0.5 is installed OR xen-doc-html-4.1.3_04-0.5 is installed OR xen-doc-pdf-4.1.3_04-0.5 is installed OR xen-kmp-default-4.1.3_04_3.0.42_0.7-0.5 is installed OR xen-kmp-pae-4.1.3_04_3.0.42_0.7-0.5 is installed OR xen-kmp-trace-4.1.3_04_3.0.42_0.7-0.5 is installed OR xen-libs-4.1.3_04-0.5 is installed OR xen-libs-32bit-4.1.3_04-0.5 is installed OR xen-tools-4.1.3_04-0.5 is installed OR xen-tools-domU-4.1.3_04-0.5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND LibVNCServer-0.9.1-156 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information bind-9.9.6P1-0.12 is installed OR bind-libs-9.9.6P1-0.12 is installed OR bind-libs-32bit-9.9.6P1-0.12 is installed OR bind-utils-9.9.6P1-0.12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libzypp-16.17.20-2.33 is installed OR zypper-1.13.45-21.21 is installed OR zypper-log-1.13.45-21.21 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libmysqlclient18-10.0.35-1 is installed OR libmysqlclient18-32bit-10.0.35-1 is installed OR libmysqlclient_r18-10.0.35-1 is installed OR libmysqlclient_r18-32bit-10.0.35-1 is installed OR mariadb-100-errormessages-10.0.35-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information glibc-2.19-31 is installed OR glibc-32bit-2.19-31 is installed OR glibc-devel-2.19-31 is installed OR glibc-devel-32bit-2.19-31 is installed OR glibc-html-2.19-31 is installed OR glibc-i18ndata-2.19-31 is installed OR glibc-info-2.19-31 is installed OR glibc-locale-2.19-31 is installed OR glibc-locale-32bit-2.19-31 is installed OR glibc-profile-2.19-31 is installed OR glibc-profile-32bit-2.19-31 is installed OR nscd-2.19-31 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND sudo-1.8.10p3-2.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information MozillaFirefox-45.4.0esr-81 is installed OR MozillaFirefox-translations-45.4.0esr-81 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND transfig-3.2.8a-2.17.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libssh2-1-1.4.3-20.14 is installed OR libssh2-1-32bit-1.4.3-20.14 is installed OR libssh2_org-1.4.3-20.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information libmysqlclient18-10.0.35-29.20 is installed OR libmysqlclient18-32bit-10.0.35-29.20 is installed OR mariadb-10.0.35-29.20 is installed OR mariadb-client-10.0.35-29.20 is installed OR mariadb-errormessages-10.0.35-29.20 is installed OR mariadb-tools-10.0.35-29.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND dstat-0.7.2-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information cups-1.7.5-20.26 is installed OR cups-client-1.7.5-20.26 is installed OR cups-libs-1.7.5-20.26 is installed OR cups-libs-32bit-1.7.5-20.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND squid-3.5.21-26.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_143-94_47-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_16-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information exiv2-0.23-12.5 is installed OR libexiv2-12-0.23-12.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND coolkey-1.1.0-148.3 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND python-Django-1.8.9-1 is installed Definition Synopsis SUSE OpenStack Cloud 6-LTSS is installed AND Package Information ruby2.1-rubygem-actionview-4_2-4.2.9-9.12 is installed OR rubygem-actionview-4_2-4.2.9-9.12 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information MozillaFirefox-52.8.1esr-109.34 is installed OR MozillaFirefox-devel-52.8.1esr-109.34 is installed OR MozillaFirefox-translations-52.8.1esr-109.34 is installed
BACK