Oval Definition:oval:org.opensuse.security:def:56161
Revision Date:2020-12-01Version:1
Title:Security update for icu (Moderate)
Description:

icu was updated to fix two security issues.

These security issues were fixed: - CVE-2014-8147: The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) used an integer data type that is inconsistent with a header file, which allowed remote attackers to cause a denial of service (incorrect malloc followed by invalid free) or possibly execute arbitrary code via crafted text (bsc#929629). - CVE-2014-8146: The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) did not properly track directionally isolated pieces of text, which allowed remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via crafted text (bsc#929629).
Family:unixClass:patch
Status:Reference(s):1003813
1005544
1005666
1007197
1008557
1008567
1008833
1008876
1008979
1009062
1009969
1010040
1010201
1010213
1010294
1010475
1010478
1010501
1010502
1010507
1010612
1010711
1010716
1012060
1012382
1012422
1012829
1012917
1012985
1013001
1013038
1013479
1013531
1013540
1013542
1014410
1014746
1016713
1016725
1016961
1017164
1017170
1017410
1017461
1017589
1017710
1018100
1019032
1019148
1019260
1019300
1019783
1019851
1020214
1020602
1020645
1021258
1021424
1022595
1022600
1022914
1024412
1025461
1027301
1028971
1030061
1031717
1034048
1037890
1038564
1042892
1046107
1046191
1050060
1050231
1050751
1053919
1055567
1056003
1056365
1056427
1056979
1057199
1058135
1059863
1060333
1060682
1060985
1061451
1061756
1062520
1062941
1062962
1063026
1063460
1063475
1063501
1063509
1063516
1063520
1063695
1064206
1064701
1064926
1065180
1065600
1065639
1065692
1065717
1065866
1066045
1066192
1066213
1066223
1066285
1066382
1066470
1066471
1066472
1066573
1066606
1066629
1067105
1067132
1067494
1067888
1068671
1068978
1068980
1068982
1069270
1069793
1069942
1069996
1070006
1070145
1070535
1070767
1070771
1070805
1070825
1070964
1071231
1071693
1071694
1071695
1071833
1102682
1103203
1105323
1120374
1122983
814440
856380
857394
858727
879378
879381
900610
904348
904965
921081
921338
921778
922052
922056
923036
923037
924381
926774
929629
930077
930078
930145
930770
930788
930835
932805
935123
935757
937256
937444
938706
938963
939826
939926
939955
940017
940913
940946
941202
942938
943786
944296
944677
944831
944837
944989
944993
945691
945825
945827
946078
946214
946309
947957
948330
948347
948521
949100
949298
949502
949706
949744
949936
949981
950298
950750
950998
951440
952084
952099
952384
952579
952976
953527
953799
953980
954404
954628
954950
954984
955673
956709
957812
963575
964944
966170
966172
966186
966191
966316
966318
969474
969475
969476
969477
971975
972993
974590
979928
980560
981709
983087
983348
984194
984419
985850
987192
987576
989261
990384
991273
993739
996376
997807
999101
CVE-2010-0624
CVE-2010-2640
CVE-2010-2641
CVE-2010-2642
CVE-2010-2643
CVE-2012-0035
CVE-2014-0172
CVE-2014-3421
CVE-2014-3422
CVE-2014-3423
CVE-2014-3424
CVE-2014-3634
CVE-2014-5461
CVE-2014-8146
CVE-2014-8147
CVE-2014-9112
CVE-2014-9447
CVE-2015-0272
CVE-2015-3195
CVE-2015-4141
CVE-2015-4142
CVE-2015-5157
CVE-2015-5307
CVE-2015-6937
CVE-2015-7509
CVE-2015-7799
CVE-2015-7872
CVE-2015-7990
CVE-2015-8104
CVE-2015-8215
CVE-2015-8962
CVE-2015-8963
CVE-2015-8964
CVE-2016-10088
CVE-2016-4658
CVE-2016-7910
CVE-2016-7911
CVE-2016-7913
CVE-2016-7914
CVE-2016-8399
CVE-2016-8633
CVE-2016-8645
CVE-2016-9083
CVE-2016-9084
CVE-2016-9756
CVE-2016-9793
CVE-2016-9806
CVE-2017-1000410
CVE-2017-11600
CVE-2017-12193
CVE-2017-15115
CVE-2017-15265
CVE-2017-16528
CVE-2017-16536
CVE-2017-16537
CVE-2017-16645
CVE-2017-16646
CVE-2017-16994
CVE-2017-17448
CVE-2017-17449
CVE-2017-17450
CVE-2017-2583
CVE-2017-2584
CVE-2017-5551
CVE-2017-7482
CVE-2017-7533
CVE-2017-7645
CVE-2017-8824
CVE-2017-8890
CVE-2017-9242
CVE-2018-10902
CVE-2018-18500
CVE-2018-18501
CVE-2018-18505
CVE-2018-5390
SUSE-SU-2015:2221-1
SUSE-SU-2015:2275-1
SUSE-SU-2015:2339-1
SUSE-SU-2016:2650-1
SUSE-SU-2017:0464-1
SUSE-SU-2017:2091-1
SUSE-SU-2017:2318-1
SUSE-SU-2017:3410-1
SUSE-SU-2019:0336-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • elfutils-0.168-lp150.2 is installed
  • OR elfutils-lang-0.168-lp150.2 is installed
  • OR libasm1-0.168-lp150.2 is installed
  • OR libdw1-0.168-lp150.2 is installed
  • OR libdw1-32bit-0.168-lp150.2 is installed
  • OR libebl-plugins-0.168-lp150.2 is installed
  • OR libebl-plugins-32bit-0.168-lp150.2 is installed
  • OR libelf1-0.168-lp150.2 is installed
  • OR libelf1-32bit-0.168-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • bind-9.11.2-lp151.11.3 is installed
  • OR bind-chrootenv-9.11.2-lp151.11.3 is installed
  • OR bind-devel-9.11.2-lp151.11.3 is installed
  • OR bind-devel-32bit-9.11.2-lp151.11.3 is installed
  • OR bind-doc-9.11.2-lp151.11.3 is installed
  • OR bind-lwresd-9.11.2-lp151.11.3 is installed
  • OR bind-utils-9.11.2-lp151.11.3 is installed
  • OR libbind9-160-9.11.2-lp151.11.3 is installed
  • OR libbind9-160-32bit-9.11.2-lp151.11.3 is installed
  • OR libdns169-9.11.2-lp151.11.3 is installed
  • OR libdns169-32bit-9.11.2-lp151.11.3 is installed
  • OR libirs-devel-9.11.2-lp151.11.3 is installed
  • OR libirs160-9.11.2-lp151.11.3 is installed
  • OR libirs160-32bit-9.11.2-lp151.11.3 is installed
  • OR libisc166-9.11.2-lp151.11.3 is installed
  • OR libisc166-32bit-9.11.2-lp151.11.3 is installed
  • OR libisccc160-9.11.2-lp151.11.3 is installed
  • OR libisccc160-32bit-9.11.2-lp151.11.3 is installed
  • OR libisccfg160-9.11.2-lp151.11.3 is installed
  • OR libisccfg160-32bit-9.11.2-lp151.11.3 is installed
  • OR liblwres160-9.11.2-lp151.11.3 is installed
  • OR liblwres160-32bit-9.11.2-lp151.11.3 is installed
  • OR python3-bind-9.11.2-lp151.11.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • wpa_supplicant-0.7.1-6.17 is installed
  • OR wpa_supplicant-gui-0.7.1-6.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • kernel-default-3.0.101-68 is installed
  • OR kernel-default-base-3.0.101-68 is installed
  • OR kernel-default-devel-3.0.101-68 is installed
  • OR kernel-default-extra-3.0.101-68 is installed
  • OR kernel-pae-3.0.101-68 is installed
  • OR kernel-pae-base-3.0.101-68 is installed
  • OR kernel-pae-devel-3.0.101-68 is installed
  • OR kernel-pae-extra-3.0.101-68 is installed
  • OR kernel-source-3.0.101-68 is installed
  • OR kernel-syms-3.0.101-68 is installed
  • OR kernel-trace-3.0.101-68 is installed
  • OR kernel-trace-devel-3.0.101-68 is installed
  • OR kernel-xen-3.0.101-68 is installed
  • OR kernel-xen-base-3.0.101-68 is installed
  • OR kernel-xen-devel-3.0.101-68 is installed
  • OR kernel-xen-extra-3.0.101-68 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • icu-52.1-8.3 is installed
  • OR libicu52_1-52.1-8.3 is installed
  • OR libicu52_1-32bit-52.1-8.3 is installed
  • OR libicu52_1-data-52.1-8.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • evince-3.10.3-1 is installed
  • OR evince-lang-3.10.3-1 is installed
  • OR libevdocument3-4-3.10.3-1 is installed
  • OR libevview3-3-3.10.3-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_69-60_64_35-default-4-2 is installed
  • OR kgraft-patch-3_12_69-60_64_35-xen-4-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_14-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • cpio-2.11-29 is installed
  • OR cpio-lang-2.11-29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • ntp-4.2.8p11-64.5 is installed
  • OR ntp-doc-4.2.8p11-64.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_120-92_70-default-3-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_20-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND libdmx1-1.1.3-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libzypp-16.17.20-2.33 is installed
  • OR zypper-1.13.45-21.21 is installed
  • OR zypper-log-1.13.45-21.21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • libnm-glib-vpn1-1.0.12-13.6 is installed
  • OR libnm-glib4-1.0.12-13.6 is installed
  • OR libnm-util2-1.0.12-13.6 is installed
  • OR libnm0-1.0.12-13.6 is installed
  • OR typelib-1_0-NMClient-1_0-1.0.12-13.6 is installed
  • OR typelib-1_0-NetworkManager-1_0-1.0.12-13.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • gpg2-2.0.24-9.3 is installed
  • OR gpg2-lang-2.0.24-9.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • MozillaFirefox-60.9.0-109.86 is installed
  • OR MozillaFirefox-translations-common-60.9.0-109.86 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • tomcat-8.0.53-29.22 is installed
  • OR tomcat-admin-webapps-8.0.53-29.22 is installed
  • OR tomcat-docs-webapp-8.0.53-29.22 is installed
  • OR tomcat-el-3_0-api-8.0.53-29.22 is installed
  • OR tomcat-javadoc-8.0.53-29.22 is installed
  • OR tomcat-jsp-2_3-api-8.0.53-29.22 is installed
  • OR tomcat-lib-8.0.53-29.22 is installed
  • OR tomcat-servlet-3_1-api-8.0.53-29.22 is installed
  • OR tomcat-webapps-8.0.53-29.22 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Twisted-15.2.1-9.8 is installed
    • BACK