Oval Definition:	oval:org.opensuse.security:def:55965
Revision Date: 2021-10-29 Version: 1 Title: Security update for transfig (Important) Description: This update for transfig fixes the following issues: Update to fig2dev version 3.2.8 Patchlevel 8b (Aug 2021) - bsc#1190618, CVE-2020-21529: stack buffer overflow in the bezier_spline function in genepic.c. - bsc#1190615, CVE-2020-21530: segmentation fault in the read_objects function in read.c. - bsc#1190617, CVE-2020-21531: global buffer overflow in the conv_pattern_index function in gencgm.c. - bsc#1190616, CVE-2020-21532: global buffer overflow in the setfigfont function in genepic.c. - bsc#1190612, CVE-2020-21533: stack buffer overflow in the read_textobject function in read.c. - bsc#1190611, CVE-2020-21534: global buffer overflow in the get_line function in read.c. - bsc#1190607, CVE-2020-21535: segmentation fault in the gencgm_start function in gencgm.c. - bsc#1192019, CVE-2021-32280: NULL pointer dereference in compute_closed_spline() in trans_spline.c Family: unix Class: patch Status: Reference(s): 1002639 1013669 1019016 1037559 1042910 1046554 1046555 1053352 1059554 1087200 1109412 1109413 1109414 1109465 1111996 1112039 1112534 1112535 1113247 1113252 1113255 1116827 1117473 1118830 1118831 1120640 1121034 1121035 1121056 1123482 1124525 1133131 1133232 1133810 1140868 1141913 1142772 1145092 1145665 1149323 1190607 1190611 1190612 1190615 1190616 1190617 1190618 1192019 870444 880735 880737 880738 884698 885302 894575 897816 901924 911363 926826 935158 938344 941500 969522 969785 975131 977410 981566 986228 986869 991564 CVE-2012-3547 CVE-2014-2015 CVE-2014-3467 CVE-2014-3468 CVE-2014-3469 CVE-2014-3613 CVE-2014-3707 CVE-2014-8150 CVE-2015-3813 CVE-2015-4652 CVE-2015-5154 CVE-2015-6241 CVE-2015-6242 CVE-2015-6243 CVE-2015-6244 CVE-2015-6245 CVE-2015-6246 CVE-2015-6247 CVE-2015-6248 CVE-2015-6249 CVE-2016-2119 CVE-2016-2851 CVE-2016-9811 CVE-2017-12617 CVE-2017-3142 CVE-2017-3143 CVE-2017-5664 CVE-2017-7674 CVE-2017-8779 CVE-2018-1000876 CVE-2018-17358 CVE-2018-17359 CVE-2018-17360 CVE-2018-17985 CVE-2018-18309 CVE-2018-18386 CVE-2018-18483 CVE-2018-18484 CVE-2018-18605 CVE-2018-18606 CVE-2018-18607 CVE-2018-19931 CVE-2018-19932 CVE-2018-20623 CVE-2018-20651 CVE-2018-20671 CVE-2019-1010180 CVE-2019-10208 CVE-2019-11709 CVE-2019-11710 CVE-2019-11711 CVE-2019-11712 CVE-2019-11713 CVE-2019-11714 CVE-2019-11715 CVE-2019-11716 CVE-2019-11717 CVE-2019-11718 CVE-2019-11719 CVE-2019-11720 CVE-2019-11721 CVE-2019-11723 CVE-2019-11724 CVE-2019-11725 CVE-2019-11727 CVE-2019-11728 CVE-2019-11729 CVE-2019-11730 CVE-2019-11733 CVE-2019-11735 CVE-2019-11736 CVE-2019-11738 CVE-2019-11740 CVE-2019-11742 CVE-2019-11743 CVE-2019-11744 CVE-2019-11746 CVE-2019-11747 CVE-2019-11748 CVE-2019-11749 CVE-2019-11750 CVE-2019-11751 CVE-2019-11752 CVE-2019-11753 CVE-2019-9811 CVE-2019-9812 CVE-2020-21529 CVE-2020-21530 CVE-2020-21531 CVE-2020-21532 CVE-2020-21533 CVE-2020-21534 CVE-2020-21535 CVE-2021-32280 SUSE-SU-2015:0901-1 SUSE-SU-2015:1472-1 SUSE-SU-2015:1676-2 SUSE-SU-2016:0008-1 SUSE-SU-2016:0707-1 SUSE-SU-2016:2306-1 SUSE-SU-2017:0263-1 SUSE-SU-2017:1306-1 SUSE-SU-2017:1736-1 SUSE-SU-2017:3279-1 SUSE-SU-2019:2159-1 SUSE-SU-2019:2620-1 SUSE-SU-2019:2650-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP2-LTSS-ERICSSON SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND libgc1-7.6.4-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information chromedriver-75.0.3770.80-lp151.2.6 is installed OR chromium-75.0.3770.80-lp151.2.6 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information curl-7.19.7-1.40 is installed OR libcurl4-7.19.7-1.40 is installed OR libcurl4-32bit-7.19.7-1.40 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND libksba-1.0.4-1.20 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information gstreamer-0_10-plugins-base-0.10.36-11.3 is installed OR gstreamer-0_10-plugins-base-32bit-0.10.36-11.3 is installed OR gstreamer-0_10-plugins-base-lang-0.10.36-11.3 is installed OR libgstapp-0_10-0-0.10.36-11.3 is installed OR libgstapp-0_10-0-32bit-0.10.36-11.3 is installed OR libgstinterfaces-0_10-0-0.10.36-11.3 is installed OR libgstinterfaces-0_10-0-32bit-0.10.36-11.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information freeradius-server-3.0.3-10 is installed OR freeradius-server-doc-3.0.3-10 is installed OR freeradius-server-krb5-3.0.3-10 is installed OR freeradius-server-ldap-3.0.3-10 is installed OR freeradius-server-libs-3.0.3-10 is installed OR freeradius-server-mysql-3.0.3-10 is installed OR freeradius-server-perl-3.0.3-10 is installed OR freeradius-server-postgresql-3.0.3-10 is installed OR freeradius-server-python-3.0.3-10 is installed OR freeradius-server-sqlite-3.0.3-10 is installed OR freeradius-server-utils-3.0.3-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information tomcat-8.0.43-10.24 is installed OR tomcat-admin-webapps-8.0.43-10.24 is installed OR tomcat-docs-webapp-8.0.43-10.24 is installed OR tomcat-el-3_0-api-8.0.43-10.24 is installed OR tomcat-javadoc-8.0.43-10.24 is installed OR tomcat-jsp-2_3-api-8.0.43-10.24 is installed OR tomcat-lib-8.0.43-10.24 is installed OR tomcat-servlet-3_1-api-8.0.43-10.24 is installed OR tomcat-webapps-8.0.43-10.24 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND apache-commons-httpclient-3.1-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libwireshark9-2.4.9-48.29 is installed OR libwiretap7-2.4.9-48.29 is installed OR libwscodecs1-2.4.9-48.29 is installed OR libwsutil8-2.4.9-48.29 is installed OR wireshark-2.4.9-48.29 is installed OR wireshark-gtk-2.4.9-48.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information xen-4.7.5_04-43.33 is installed OR xen-doc-html-4.7.5_04-43.33 is installed OR xen-libs-4.7.5_04-43.33 is installed OR xen-libs-32bit-4.7.5_04-43.33 is installed OR xen-tools-4.7.5_04-43.33 is installed OR xen-tools-domU-4.7.5_04-43.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_64-default-5-2 is installed OR kgraft-patch-SLE12-SP2_Update_18-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libpulse-mainloop-glib0-5.0-4 is installed OR libpulse-mainloop-glib0-32bit-5.0-4 is installed OR libpulse0-5.0-4 is installed OR libpulse0-32bit-5.0-4 is installed OR pulseaudio-5.0-4 is installed OR pulseaudio-esound-compat-5.0-4 is installed OR pulseaudio-gdm-hooks-5.0-4 is installed OR pulseaudio-lang-5.0-4 is installed OR pulseaudio-module-x11-5.0-4 is installed OR pulseaudio-module-zeroconf-5.0-4 is installed OR pulseaudio-utils-5.0-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_156-94_57-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_18-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libjavascriptcoregtk-4_0-18-2.20.3-2.23 is installed OR libwebkit2gtk-4_0-37-2.20.3-2.23 is installed OR typelib-1_0-JavaScriptCore-4_0-2.20.3-2.23 is installed OR typelib-1_0-WebKit2-4_0-2.20.3-2.23 is installed OR webkit2gtk-4_0-injected-bundles-2.20.3-2.23 is installed OR webkit2gtk3-2.20.3-2.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND apache2-mod_jk-1.2.40-5 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information bind-9.9.9P1-62 is installed OR bind-chrootenv-9.9.9P1-62 is installed OR bind-devel-9.9.9P1-62 is installed OR bind-doc-9.9.9P1-62 is installed OR bind-libs-9.9.9P1-62 is installed OR bind-libs-32bit-9.9.9P1-62 is installed OR bind-utils-9.9.9P1-62 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information perl-5.18.2-12.14 is installed OR perl-32bit-5.18.2-12.14 is installed OR perl-base-5.18.2-12.14 is installed OR perl-doc-5.18.2-12.14 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information MozillaFirefox-68.6.1-109.113 is installed OR MozillaFirefox-translations-common-68.6.1-109.113 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libruby2_1-2_1-2.1.9-19.3 is installed OR ruby2.1-2.1.9-19.3 is installed OR ruby2.1-stdlib-2.1.9-19.3 is installed
BACK