OVAL Reference oval:org.opensuse.security:def:55689

Oval Definition:

oval:org.opensuse.security:def:55689

Revision Date:	2020-12-01	Version:	1
Title:	Security update for graphite2 (Important)
Description:	This update for graphite2 fixes the following issues: - CVE-2016-1521: The directrun function in directmachine.cpp in Libgraphite did not validate a certain skip operation, which allowed remote attackers to execute arbitrary code, obtain sensitive information, or cause a denial of service (out-of-bounds read and application crash) via a crafted Graphite smart font. - CVE-2016-1523: The SillMap::readFace function in FeatureMap.cpp in Libgraphite mishandled a return value, which allowed remote attackers to cause a denial of service (missing initialization, NULL pointer dereference, and application crash) via a crafted Graphite smart font. - CVE-2016-1526: The TtfUtil:LocaLookup function in TtfUtil.cpp in Libgraphite incorrectly validated a size value, which allowed remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and application crash) via a crafted Graphite smart font.
Family:	unix	Class:	patch
Status:		Reference(s):	1000998 1027779 1032020 1032021 1032022 1034560 1038553 1039348 1042146 1042292 1046610 1075021 1075026 1075322 1075772 1076962 1079152 1082962 1083382 1083900 1085449 1087007 1087012 1087082 1087086 1087095 1092813 1092904 1093311 1094033 1094353 1094823 1096140 1096242 1096281 1096480 1096728 1096889 1096890 1097356 1108631 1108632 1145092 718113 843716 856729 866278 902367 939998 945443 945445 955832 965294 965296 965803 965807 965810 967014 967015 977784 991389 991390 991391 991746 997420 CVE-2009-5029 CVE-2012-4412 CVE-2013-0242 CVE-2013-1914 CVE-2013-2207 CVE-2013-4237 CVE-2013-4276 CVE-2013-4332 CVE-2013-4458 CVE-2013-7423 CVE-2014-0017 CVE-2014-0475 CVE-2014-1829 CVE-2014-1830 CVE-2014-3710 CVE-2014-4043 CVE-2014-5119 CVE-2014-6040 CVE-2014-7817 CVE-2014-8121 CVE-2014-9402 CVE-2015-1472 CVE-2015-1781 CVE-2016-0794 CVE-2016-0795 CVE-2016-1521 CVE-2016-1523 CVE-2016-1526 CVE-2016-5419 CVE-2016-5420 CVE-2016-5421 CVE-2016-7141 CVE-2016-7545 CVE-2017-1000364 CVE-2017-1000368 CVE-2017-13305 CVE-2017-6845 CVE-2017-7381 CVE-2017-7382 CVE-2017-7383 CVE-2017-8054 CVE-2018-1000204 CVE-2018-1092 CVE-2018-1093 CVE-2018-1094 CVE-2018-11256 CVE-2018-1130 CVE-2018-1417 CVE-2018-17097 CVE-2018-17098 CVE-2018-2783 CVE-2018-2790 CVE-2018-2794 CVE-2018-2795 CVE-2018-2796 CVE-2018-2797 CVE-2018-2798 CVE-2018-2799 CVE-2018-2800 CVE-2018-2814 CVE-2018-3665 CVE-2018-5295 CVE-2018-5296 CVE-2018-5308 CVE-2018-5309 CVE-2018-5783 CVE-2018-5803 CVE-2018-5848 CVE-2018-7492 CVE-2019-10208 SUSE-SU-2016:0779-1 SUSE-SU-2016:1728-1 SUSE-SU-2016:2330-1 SUSE-SU-2017:0340-1 SUSE-SU-2017:1615-1 SUSE-SU-2017:1627-1 SUSE-SU-2018:1761-1 SUSE-SU-2018:1764-1 SUSE-SU-2019:0096-1 SUSE-SU-2019:0393-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND libFS6-1.0.7-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libu2f-host-1.1.6-lp151.2.3 is installed OR libu2f-host-devel-1.1.6-lp151.2.3 is installed OR libu2f-host-doc-1.1.6-lp151.2.3 is installed OR libu2f-host0-1.1.6-lp151.2.3 is installed OR u2f-host-1.1.6-lp151.2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information lcms-1.17-77.16 is installed OR liblcms1-1.17-77.16 is installed OR liblcms1-32bit-1.17-77.16 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information file-4.24-43.27 is installed OR file-32bit-4.24-43.27 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information graphite2-1.3.1-6 is installed OR libgraphite2-3-1.3.1-6 is installed OR libgraphite2-3-32bit-1.3.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information boost-1.54.0-15 is installed OR boost-license1_54_0-1.54.0-15 is installed OR cmis-client-0.5.1-8 is installed OR hunspell-1.3.2-18 is installed OR hunspell-32bit-1.3.2-18 is installed OR hunspell-tools-1.3.2-18 is installed OR hyphen-2.8.8-12 is installed OR libOpenCOLLADA0-1_3335ac1-2 is installed OR libboost_atomic1_54_0-1.54.0-15 is installed OR libboost_date_time1_54_0-1.54.0-15 is installed OR libboost_filesystem1_54_0-1.54.0-15 is installed OR libboost_iostreams1_54_0-1.54.0-15 is installed OR libboost_program_options1_54_0-1.54.0-15 is installed OR libboost_regex1_54_0-1.54.0-15 is installed OR libboost_signals1_54_0-1.54.0-15 is installed OR libboost_system1_54_0-1.54.0-15 is installed OR libboost_thread1_54_0-1.54.0-15 is installed OR libcmis-0_5-5-0.5.1-8 is installed OR libetonyek-0.1.6-6 is installed OR libetonyek-0_1-1-0.1.6-6 is installed OR libhyphen0-2.8.8-12 is installed OR libixion-0.11.0-6 is installed OR libixion-0_11-0-0.11.0-6 is installed OR liborcus-0.11.0-6 is installed OR liborcus-0_11-0-0.11.0-6 is installed OR libreoffice-5.1.3.2-22 is installed OR libreoffice-base-5.1.3.2-22 is installed OR libreoffice-base-drivers-mysql-5.1.3.2-22 is installed OR libreoffice-base-drivers-postgresql-5.1.3.2-22 is installed OR libreoffice-calc-5.1.3.2-22 is installed OR libreoffice-calc-extensions-5.1.3.2-22 is installed OR libreoffice-draw-5.1.3.2-22 is installed OR libreoffice-filters-optional-5.1.3.2-22 is installed OR libreoffice-gnome-5.1.3.2-22 is installed OR libreoffice-icon-theme-galaxy-5.1.3.2-22 is installed OR libreoffice-icon-theme-tango-5.1.3.2-22 is installed OR libreoffice-impress-5.1.3.2-22 is installed OR libreoffice-l10n-af-5.1.3.2-22 is installed OR libreoffice-l10n-ar-5.1.3.2-22 is installed OR libreoffice-l10n-ca-5.1.3.2-22 is installed OR libreoffice-l10n-cs-5.1.3.2-22 is installed OR libreoffice-l10n-da-5.1.3.2-22 is installed OR libreoffice-l10n-de-5.1.3.2-22 is installed OR libreoffice-l10n-en-5.1.3.2-22 is installed OR libreoffice-l10n-es-5.1.3.2-22 is installed OR libreoffice-l10n-fi-5.1.3.2-22 is installed OR libreoffice-l10n-fr-5.1.3.2-22 is installed OR libreoffice-l10n-gu-5.1.3.2-22 is installed OR libreoffice-l10n-hi-5.1.3.2-22 is installed OR libreoffice-l10n-hu-5.1.3.2-22 is installed OR libreoffice-l10n-it-5.1.3.2-22 is installed OR libreoffice-l10n-ja-5.1.3.2-22 is installed OR libreoffice-l10n-ko-5.1.3.2-22 is installed OR libreoffice-l10n-nb-5.1.3.2-22 is installed OR libreoffice-l10n-nl-5.1.3.2-22 is installed OR libreoffice-l10n-nn-5.1.3.2-22 is installed OR libreoffice-l10n-pl-5.1.3.2-22 is installed OR libreoffice-l10n-pt-BR-5.1.3.2-22 is installed OR libreoffice-l10n-pt-PT-5.1.3.2-22 is installed OR libreoffice-l10n-ru-5.1.3.2-22 is installed OR libreoffice-l10n-sk-5.1.3.2-22 is installed OR libreoffice-l10n-sv-5.1.3.2-22 is installed OR libreoffice-l10n-xh-5.1.3.2-22 is installed OR libreoffice-l10n-zh-Hans-5.1.3.2-22 is installed OR libreoffice-l10n-zh-Hant-5.1.3.2-22 is installed OR libreoffice-l10n-zu-5.1.3.2-22 is installed OR libreoffice-mailmerge-5.1.3.2-22 is installed OR libreoffice-math-5.1.3.2-22 is installed OR libreoffice-officebean-5.1.3.2-22 is installed OR libreoffice-pyuno-5.1.3.2-22 is installed OR libreoffice-writer-5.1.3.2-22 is installed OR libreoffice-writer-extensions-5.1.3.2-22 is installed OR libvisio-0.1.5-7 is installed OR libvisio-0_1-1-0.1.5-7 is installed OR libwps-0.4.2-6 is installed OR libwps-0_4-4-0.4.2-6 is installed OR myspell-af_NA-20160511-11 is installed OR myspell-af_ZA-20160511-11 is installed OR myspell-ar-20160511-11 is installed OR myspell-ar_AE-20160511-11 is installed OR myspell-ar_BH-20160511-11 is installed OR myspell-ar_DZ-20160511-11 is installed OR myspell-ar_EG-20160511-11 is installed OR myspell-ar_IQ-20160511-11 is installed OR myspell-ar_JO-20160511-11 is installed OR myspell-ar_KW-20160511-11 is installed OR myspell-ar_LB-20160511-11 is installed OR myspell-ar_LY-20160511-11 is installed OR myspell-ar_MA-20160511-11 is installed OR myspell-ar_OM-20160511-11 is installed OR myspell-ar_QA-20160511-11 is installed OR myspell-ar_SA-20160511-11 is installed OR myspell-ar_SD-20160511-11 is installed OR myspell-ar_SY-20160511-11 is installed OR myspell-ar_TN-20160511-11 is installed OR myspell-ar_YE-20160511-11 is installed OR myspell-be_BY-20160511-11 is installed OR myspell-bg_BG-20160511-11 is installed OR myspell-bn_BD-20160511-11 is installed OR myspell-bn_IN-20160511-11 is installed OR myspell-bs-20160511-11 is installed OR myspell-bs_BA-20160511-11 is installed OR myspell-ca-20160511-11 is installed OR myspell-ca_AD-20160511-11 is installed OR myspell-ca_ES-20160511-11 is installed OR myspell-ca_ES_valencia-20160511-11 is installed OR myspell-ca_FR-20160511-11 is installed OR myspell-ca_IT-20160511-11 is installed OR myspell-cs_CZ-20160511-11 is installed OR myspell-da_DK-20160511-11 is installed OR myspell-de-20160511-11 is installed OR myspell-de_AT-20160511-11 is installed OR myspell-de_CH-20160511-11 is installed OR myspell-de_DE-20160511-11 is installed OR myspell-dictionaries-20160511-11 is installed OR myspell-el_GR-20160511-11 is installed OR myspell-en-20160511-11 is installed OR myspell-en_AU-20160511-11 is installed OR myspell-en_BS-20160511-11 is installed OR myspell-en_BZ-20160511-11 is installed OR myspell-en_CA-20160511-11 is installed OR myspell-en_GB-20160511-11 is installed OR myspell-en_GH-20160511-11 is installed OR myspell-en_IE-20160511-11 is installed OR myspell-en_IN-20160511-11 is installed OR myspell-en_JM-20160511-11 is installed OR myspell-en_MW-20160511-11 is installed OR myspell-en_NA-20160511-11 is installed OR myspell-en_NZ-20160511-11 is installed OR myspell-en_PH-20160511-11 is installed OR myspell-en_TT-20160511-11 is installed OR myspell-en_US-20160511-11 is installed OR myspell-en_ZA-20160511-11 is installed OR myspell-en_ZW-20160511-11 is installed OR myspell-es-20160511-11 is installed OR myspell-es_AR-20160511-11 is installed OR myspell-es_BO-20160511-11 is installed OR myspell-es_CL-20160511-11 is installed OR myspell-es_CO-20160511-11 is installed OR myspell-es_CR-20160511-11 is installed OR myspell-es_CU-20160511-11 is installed OR myspell-es_DO-20160511-11 is installed OR myspell-es_EC-20160511-11 is installed OR myspell-es_ES-20160511-11 is installed OR myspell-es_GT-20160511-11 is installed OR myspell-es_HN-20160511-11 is installed OR myspell-es_MX-20160511-11 is installed OR myspell-es_NI-20160511-11 is installed OR myspell-es_PA-20160511-11 is installed OR myspell-es_PE-20160511-11 is installed OR myspell-es_PR-20160511-11 is installed OR myspell-es_PY-20160511-11 is installed OR myspell-es_SV-20160511-11 is installed OR myspell-es_UY-20160511-11 is installed OR myspell-es_VE-20160511-11 is installed OR myspell-et_EE-20160511-11 is installed OR myspell-fr_BE-20160511-11 is installed OR myspell-fr_CA-20160511-11 is installed OR myspell-fr_CH-20160511-11 is installed OR myspell-fr_FR-20160511-11 is installed OR myspell-fr_LU-20160511-11 is installed OR myspell-fr_MC-20160511-11 is installed OR myspell-gu_IN-20160511-11 is installed OR myspell-he_IL-20160511-11 is installed OR myspell-hi_IN-20160511-11 is installed OR myspell-hr_HR-20160511-11 is installed OR myspell-hu_HU-20160511-11 is installed OR myspell-it_IT-20160511-11 is installed OR myspell-lightproof-en-20160511-11 is installed OR myspell-lightproof-hu_HU-20160511-11 is installed OR myspell-lightproof-pt_BR-20160511-11 is installed OR myspell-lightproof-ru_RU-20160511-11 is installed OR myspell-lo_LA-20160511-11 is installed OR myspell-lt_LT-20160511-11 is installed OR myspell-lv_LV-20160511-11 is installed OR myspell-nb_NO-20160511-11 is installed OR myspell-nl_BE-20160511-11 is installed OR myspell-nl_NL-20160511-11 is installed OR myspell-nn_NO-20160511-11 is installed OR myspell-no-20160511-11 is installed OR myspell-pl_PL-20160511-11 is installed OR myspell-pt_AO-20160511-11 is installed OR myspell-pt_BR-20160511-11 is installed OR myspell-pt_PT-20160511-11 is installed OR myspell-ro-20160511-11 is installed OR myspell-ro_RO-20160511-11 is installed OR myspell-ru_RU-20160511-11 is installed OR myspell-sk_SK-20160511-11 is installed OR myspell-sl_SI-20160511-11 is installed OR myspell-sr-20160511-11 is installed OR myspell-sr_CS-20160511-11 is installed OR myspell-sr_Latn_CS-20160511-11 is installed OR myspell-sr_Latn_RS-20160511-11 is installed OR myspell-sr_RS-20160511-11 is installed OR myspell-sv_FI-20160511-11 is installed OR myspell-sv_SE-20160511-11 is installed OR myspell-te-20160511-11 is installed OR myspell-te_IN-20160511-11 is installed OR myspell-th_TH-20160511-11 is installed OR myspell-vi-20160511-11 is installed OR myspell-vi_VN-20160511-11 is installed OR myspell-zu_ZA-20160511-11 is installed OR openCOLLADA-1_3335ac1-2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libecpg6-10.10-1.15 is installed OR libpq5-10.10-1.15 is installed OR libpq5-32bit-10.10-1.15 is installed OR postgresql10-10.10-1.15 is installed OR postgresql10-libs-10.10-1.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information glibc-2.19-31 is installed OR glibc-32bit-2.19-31 is installed OR glibc-devel-2.19-31 is installed OR glibc-devel-32bit-2.19-31 is installed OR glibc-html-2.19-31 is installed OR glibc-i18ndata-2.19-31 is installed OR glibc-info-2.19-31 is installed OR glibc-locale-2.19-31 is installed OR glibc-locale-32bit-2.19-31 is installed OR glibc-profile-2.19-31 is installed OR glibc-profile-32bit-2.19-31 is installed OR nscd-2.19-31 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kernel-default-3.12.74-60.64.45 is installed OR kernel-default-base-3.12.74-60.64.45 is installed OR kernel-default-devel-3.12.74-60.64.45 is installed OR kernel-default-man-3.12.74-60.64.45 is installed OR kernel-devel-3.12.74-60.64.45 is installed OR kernel-macros-3.12.74-60.64.45 is installed OR kernel-source-3.12.74-60.64.45 is installed OR kernel-syms-3.12.74-60.64.45 is installed OR kernel-xen-3.12.74-60.64.45 is installed OR kernel-xen-base-3.12.74-60.64.45 is installed OR kernel-xen-devel-3.12.74-60.64.45 is installed OR kgraft-patch-3_12_74-60_64_45-default-1-4 is installed OR kgraft-patch-3_12_74-60_64_45-xen-1-4 is installed OR kgraft-patch-SLE12-SP1_Update_16-1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND clamav-0.99.2-25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND clamav-0.100.2-33.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_80-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_22-8-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_45-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_14-7-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information pam_krb5-2.4.4-4 is installed OR pam_krb5-32bit-2.4.4-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libgcrypt-1.6.1-16.68 is installed OR libgcrypt20-1.6.1-16.68 is installed OR libgcrypt20-32bit-1.6.1-16.68 is installed OR libgcrypt20-hmac-1.6.1-16.68 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND binutils-2.32-9.33 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libXvnc1-1.6.0-18.28 is installed OR tigervnc-1.6.0-18.28 is installed OR xorg-x11-Xvnc-1.6.0-18.28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND xrdp-0.9.0~git.1456906198.f422461-21.9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information gvim-7.4.326-16 is installed OR vim-7.4.326-16 is installed OR vim-data-7.4.326-16 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND sudo-1.8.10p3-2.16 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND python-PyJWT-1.4.2-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND python-SQLAlchemy-1.1.12-3.5 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND python-requests-2.20.1-4.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND clamav-0.100.3-33.26 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information ruby2.1-rubygem-haml-4.0.6-3.3 is installed OR rubygem-haml-4.0.6-3.3 is installed

BACK