Oval Definition:	oval:org.opensuse.security:def:55818
Revision Date: 2020-12-01 Version: 1 Title: Security update for ghostscript-library (Important) Description: This update for ghostscript-library fixes the following issues: * - Multiple security vulnerabilities have been discovered where ghostscript's '-dsafer' flag did not provide sufficient protection against unintended access to the file system. Thus, a machine that would process a specially crafted Postscript file would potentially leak sensitive information to an attacker. (CVE-2013-5653, bsc#1001951) * - An incorrect reference count was found in .setdevice. This issue lead to a use-after-free scenario, which could have been exploited for denial-of-service or, possibly, arbitrary code execution attacks. (CVE-2016-7978, bsc#1001951) * - Insufficient validation of the type of input in .initialize_dsc_parser used to allow remote code execution. (CVE-2016-7979, bsc#1001951) Family: unix Class: patch Status: Reference(s): 1001951 1038505 1051684 1051685 1053259 1097356 1112039 1115339 1118319 1118320 1158809 662458 676471 782060 829077 854869 881874 889207 897662 899908 903279 908151 916617 928547 930721 931448 937086 937339 937837 940413 942262 942317 943989 944309 945345 950944 951391 951559 951629 951844 952196 953233 956773 956988 957805 958390 959514 960857 961721 962318 962336 962736 962737 962738 962739 962784 962802 962846 962872 962960 962966 962970 962988 962994 962995 962997 963000 963002 963572 964461 964727 964845 964847 964849 965319 966054 966573 967640 968497 968687 968812 968813 969016 970604 970609 970892 970911 970948 970955 970956 970958 970970 971049 971124 971126 971159 971170 971600 971628 971793 971947 972003 972068 972174 972780 972844 972891 972951 973378 973556 973855 974418 974646 974692 975371 975488 975496 975772 975945 975981 976739 976821 976868 977582 977685 978401 978527 978822 979213 979347 983143 CVE-2010-2522 CVE-2010-2523 CVE-2013-2877 CVE-2013-5653 CVE-2014-0578 CVE-2014-1533 CVE-2014-1534 CVE-2014-1536 CVE-2014-1537 CVE-2014-1538 CVE-2014-1541 CVE-2014-1545 CVE-2014-9717 CVE-2014-9761 CVE-2015-0286 CVE-2015-0288 CVE-2015-1789 CVE-2015-1793 CVE-2015-3114 CVE-2015-3115 CVE-2015-3116 CVE-2015-3117 CVE-2015-3118 CVE-2015-3119 CVE-2015-3120 CVE-2015-3121 CVE-2015-3122 CVE-2015-3123 CVE-2015-3124 CVE-2015-3125 CVE-2015-3126 CVE-2015-3127 CVE-2015-3128 CVE-2015-3129 CVE-2015-3130 CVE-2015-3131 CVE-2015-3132 CVE-2015-3133 CVE-2015-3134 CVE-2015-3135 CVE-2015-3136 CVE-2015-3137 CVE-2015-4428 CVE-2015-4429 CVE-2015-4430 CVE-2015-4431 CVE-2015-4432 CVE-2015-4433 CVE-2015-4730 CVE-2015-4766 CVE-2015-4792 CVE-2015-4800 CVE-2015-4802 CVE-2015-4815 CVE-2015-4816 CVE-2015-4819 CVE-2015-4826 CVE-2015-4830 CVE-2015-4833 CVE-2015-4836 CVE-2015-4858 CVE-2015-4861 CVE-2015-4862 CVE-2015-4864 CVE-2015-4866 CVE-2015-4870 CVE-2015-4879 CVE-2015-4890 CVE-2015-4895 CVE-2015-4904 CVE-2015-4905 CVE-2015-4910 CVE-2015-4913 CVE-2015-5116 CVE-2015-5117 CVE-2015-5118 CVE-2015-5119 CVE-2015-5300 CVE-2015-7547 CVE-2015-7973 CVE-2015-7974 CVE-2015-7975 CVE-2015-7976 CVE-2015-7977 CVE-2015-7978 CVE-2015-7979 CVE-2015-8138 CVE-2015-8139 CVE-2015-8140 CVE-2015-8158 CVE-2015-8776 CVE-2015-8777 CVE-2015-8778 CVE-2015-8779 CVE-2015-8803 CVE-2015-8804 CVE-2015-8805 CVE-2016-1583 CVE-2016-2185 CVE-2016-2186 CVE-2016-2188 CVE-2016-2847 CVE-2016-3134 CVE-2016-3136 CVE-2016-3137 CVE-2016-3138 CVE-2016-3140 CVE-2016-3689 CVE-2016-3951 CVE-2016-4482 CVE-2016-4486 CVE-2016-4569 CVE-2016-7978 CVE-2016-7979 CVE-2016-9840 CVE-2016-9841 CVE-2016-9842 CVE-2016-9843 CVE-2017-1289 CVE-2017-3509 CVE-2017-3511 CVE-2017-3533 CVE-2017-3539 CVE-2017-3544 CVE-2017-7546 CVE-2017-7547 CVE-2017-7548 CVE-2018-18386 CVE-2018-5848 CVE-2018-9568 CVE-2019-1551 SUSE-SU-2015:2303-1 SUSE-SU-2016:0455-1 SUSE-SU-2016:0472-1 SUSE-SU-2016:1177-1 SUSE-SU-2016:1696-1 SUSE-SU-2016:2492-1 SUSE-SU-2017:1385-1 SUSE-SU-2017:2356-1 SUSE-SU-2018:3772-1 SUSE-SU-2020:0028-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.0 NonFree openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information aaa_base-84.87+git20180409.04c9dae-lp150.1 is installed OR aaa_base-extras-84.87+git20180409.04c9dae-lp150.1 is installed Definition Synopsis openSUSE Leap 15.0 NonFree is installed AND opera-54.0.2952.41-lp150.2.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libzmq5-4.2.3-lp151.5.3 is installed OR zeromq-4.2.3-lp151.5.3 is installed OR zeromq-devel-4.2.3-lp151.5.3 is installed OR zeromq-tools-4.2.3-lp151.5.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libxml2-2.7.6-0.25 is installed OR libxml2-32bit-2.7.6-0.25 is installed OR libxml2-python-2.7.6-0.25 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-24.6.0esr-0.8 is installed OR MozillaFirefox-branding-SLED-24-0.7 is installed OR MozillaFirefox-translations-24.6.0esr-0.8 is installed OR libfreebl3-3.16.1-0.8 is installed OR libfreebl3-32bit-3.16.1-0.8 is installed OR libsoftokn3-3.16.1-0.8 is installed OR libsoftokn3-32bit-3.16.1-0.8 is installed OR mozilla-nspr-4.10.6-0.3 is installed OR mozilla-nspr-32bit-4.10.6-0.3 is installed OR mozilla-nss-3.16.1-0.8 is installed OR mozilla-nss-32bit-3.16.1-0.8 is installed OR mozilla-nss-tools-3.16.1-0.8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information flash-player-11.2.202.481-0.8 is installed OR flash-player-gnome-11.2.202.481-0.8 is installed OR flash-player-kde4-11.2.202.481-0.8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information ghostscript-9.15-11 is installed OR ghostscript-x11-9.15-11 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libopenssl-1_0_0-devel-1.0.2p-3.14 is installed OR libopenssl1_0_0-1.0.2p-3.14 is installed OR libopenssl1_0_0-32bit-1.0.2p-3.14 is installed OR openssl-1_0_0-1.0.2p-3.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND mipv6d-2.0.2.umip.0.4-19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_88-default-7-2 is installed OR kgraft-patch-3_12_74-60_64_88-xen-7-2 is installed OR kgraft-patch-SLE12-SP1_Update_27-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND binutils-2.26.1-9.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.35-30.50 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.35-30.50 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.35-30.50 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.35-30.50 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_109-default-6-2 is installed OR kgraft-patch-SLE12-SP2_Update_29-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_74-92_38-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_13-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information expat-2.1.0-20 is installed OR libexpat1-2.1.0-20 is installed OR libexpat1-32bit-2.1.0-20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.50-38.41 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libopenssl-devel-1.0.2j-60.55 is installed OR libopenssl1_0_0-1.0.2j-60.55 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed OR openssl-1.0.2j-60.55 is installed OR openssl-doc-1.0.2j-60.55 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libspice-client-glib-2_0-8-0.33-3.6 is installed OR libspice-client-glib-helper-0.33-3.6 is installed OR libspice-client-gtk-3_0-5-0.33-3.6 is installed OR libspice-controller0-0.33-3.6 is installed OR spice-gtk-0.33-3.6 is installed OR typelib-1_0-SpiceClientGlib-2_0-0.33-3.6 is installed OR typelib-1_0-SpiceClientGtk-3_0-0.33-3.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information grub2-2.02-11 is installed OR grub2-arm64-efi-2.02-11 is installed OR grub2-i386-pc-2.02-11 is installed OR grub2-powerpc-ieee1275-2.02-11 is installed OR grub2-s390x-emu-2.02-11 is installed OR grub2-snapper-plugin-2.02-11 is installed OR grub2-systemd-sleep-plugin-2.02-11 is installed OR grub2-x86_64-efi-2.02-11 is installed OR grub2-x86_64-xen-2.02-11 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information libecpg6-9.6.4-3.6 is installed OR libpq5-9.6.4-3.6 is installed OR libpq5-32bit-9.6.4-3.6 is installed OR postgresql96-9.6.4-3.6 is installed OR postgresql96-contrib-9.6.4-3.6 is installed OR postgresql96-docs-9.6.4-3.6 is installed OR postgresql96-libs-9.6.4-3.6 is installed OR postgresql96-server-9.6.4-3.6 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.35-38.29 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.50-38.41 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.50-38.41 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND haproxy-1.6.11-11.3 is installed
BACK