Oval Definition:	oval:org.opensuse.security:def:56120
Revision Date: 2020-12-01 Version: 1 Title: Security update for libquicktime (Moderate) Description: This update for libquicktime fixes the following issues: CVE-2017-9122: A DoS in quicktime_read_moov function in moov.c via acrafted mp4 file was fixed. (bsc#1044077) * CVE-2017-9123: An invalid memory read in lqt_frame_duration via a crafted mp4 file was fixed. (bsc#1044009) * CVE-2017-9124: A NULL pointer dereference in quicktime_match_32 via a crafted mp4 file was fixed. (bsc#1044008) * CVE-2017-9125: A DoS in lqt_frame_duration function in lqt_quicktime.c via crafted mp4 file was fixed. (bsc#1044122) * CVE-2017-9126: A heap-based buffer overflow in quicktime_read_dref_table via a crafted mp4 file was fixed. (bsc#1044006) * CVE-2017-9127: A heap-based buffer overflow in quicktime_user_atoms_read_atom via a crafted mp4 file was fixed. (bsc#1044002) * CVE-2017-9128: A heap-based buffer over-read in quicktime_video_width via a crafted mp4 file was fixed. (bsc#1044000) Family: unix Class: patch Status: Reference(s): 1044000 1044002 1044006 1044008 1044009 1044077 1044122 1062645 1063671 1064392 1066471 1066472 1097108 1099306 1123371 1123377 1123378 1164692 838333 896715 904625 929718 944787 948976 963415 968046 968048 968051 968053 968374 982385 982386 986971 CVE-2008-5519 CVE-2010-4530 CVE-2013-1984 CVE-2013-1995 CVE-2013-1998 CVE-2013-4566 CVE-2014-3540 CVE-2014-3566 CVE-2014-4330 CVE-2014-8111 CVE-2014-8651 CVE-2015-3197 CVE-2015-5244 CVE-2015-5260 CVE-2015-5261 CVE-2016-0702 CVE-2016-0703 CVE-2016-0749 CVE-2016-0797 CVE-2016-0799 CVE-2016-0800 CVE-2016-2150 CVE-2016-3099 CVE-2016-5746 CVE-2017-13080 CVE-2017-15191 CVE-2017-15192 CVE-2017-15193 CVE-2017-15649 CVE-2017-9122 CVE-2017-9123 CVE-2017-9124 CVE-2017-9125 CVE-2017-9126 CVE-2017-9127 CVE-2017-9128 CVE-2018-10853 CVE-2018-16890 CVE-2018-3646 CVE-2019-3822 CVE-2019-3823 CVE-2020-1938 SUSE-SU-2016:0303-1 SUSE-SU-2016:0631-1 SUSE-SU-2016:1559-1 SUSE-SU-2016:2189-1 SUSE-SU-2017:1769-1 SUSE-SU-2017:2860-1 SUSE-SU-2017:3127-1 SUSE-SU-2018:2368-1 SUSE-SU-2019:0249-1 SUSE-SU-2020:0806-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information alsa-1.1.5-lp150.4 is installed OR libasound2-1.1.5-lp150.4 is installed OR libasound2-32bit-1.1.5-lp150.4 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information irssi-1.1.3-33 is installed OR irssi-devel-1.1.3-33 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information perl-5.10.0-64.70 is installed OR perl-32bit-5.10.0-64.70 is installed OR perl-Module-Build-0.2808.01-0.70 is installed OR perl-Test-Simple-0.72-0.70 is installed OR perl-base-5.10.0-64.70 is installed OR perl-doc-5.10.0-64.70 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information compat-openssl097g-0.9.7g-146.22.41 is installed OR compat-openssl097g-32bit-0.9.7g-146.22.41 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libquicktime-1.2.4-13 is installed OR libquicktime0-1.2.4-13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_35-default-7-2 is installed OR kgraft-patch-3_12_69-60_64_35-xen-7-2 is installed OR kgraft-patch-SLE12-SP1_Update_14-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND apache2-mod_jk-1.2.40-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information git-2.12.3-27.14 is installed OR git-core-2.12.3-27.14 is installed OR git-doc-2.12.3-27.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kernel-default-4.4.121-92.73 is installed OR kernel-default-base-4.4.121-92.73 is installed OR kernel-default-devel-4.4.121-92.73 is installed OR kernel-devel-4.4.121-92.73 is installed OR kernel-macros-4.4.121-92.73 is installed OR kernel-source-4.4.121-92.73 is installed OR kernel-syms-4.4.121-92.73 is installed OR kgraft-patch-4_4_121-92_73-default-1-3.3 is installed OR kgraft-patch-SLE12-SP2_Update_21-1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND kbd-1.15.5-8.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information git-2.26.0-27.27 is installed OR git-core-2.26.0-27.27 is installed OR libpcre2-16-0-10.34-1.3 is installed OR libpcre2-32-0-10.34-1.3 is installed OR libpcre2-8-0-10.34-1.3 is installed OR libpcre2-posix2-10.34-1.3 is installed OR pcre2-10.34-1.3 is installed OR perl-CGI-4.38-1.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information liblouis-2.6.4-6.6 is installed OR liblouis-data-2.6.4-6.6 is installed OR liblouis9-2.6.4-6.6 is installed OR python-louis-2.6.4-6.6 is installed OR python3-louis-2.6.4-6.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND libgme0-0.6.0-5 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information openstack-nova-14.0.10~dev13-4.11 is installed OR openstack-nova-api-14.0.10~dev13-4.11 is installed OR openstack-nova-cells-14.0.10~dev13-4.11 is installed OR openstack-nova-cert-14.0.10~dev13-4.11 is installed OR openstack-nova-compute-14.0.10~dev13-4.11 is installed OR openstack-nova-conductor-14.0.10~dev13-4.11 is installed OR openstack-nova-console-14.0.10~dev13-4.11 is installed OR openstack-nova-consoleauth-14.0.10~dev13-4.11 is installed OR openstack-nova-doc-14.0.10~dev13-4.11 is installed OR openstack-nova-novncproxy-14.0.10~dev13-4.11 is installed OR openstack-nova-placement-api-14.0.10~dev13-4.11 is installed OR openstack-nova-scheduler-14.0.10~dev13-4.11 is installed OR openstack-nova-serialproxy-14.0.10~dev13-4.11 is installed OR openstack-nova-vncproxy-14.0.10~dev13-4.11 is installed OR python-nova-14.0.10~dev13-4.11 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND git-2.12.3-27.17 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND squid-3.5.21-26.29 is installed
BACK