Oval Definition:	oval:org.opensuse.security:def:56206
Revision Date: 2020-12-01 Version: 1 Title: Security update for poppler (Moderate) Description: This update for poppler fixes the following issues: This security issue was fixed: - CVE-2017-14517: Prevent NULL Pointer dereference in the XRef::parseEntry() function via a crafted PDF document (bsc#1059066). - CVE-2017-14518: Remedy a floating point exception in isImageInterpolationRequired() that could have been exploited using a specially crafted PDF document. (bsc#1059101) - CVE-2017-14520: Remedy a floating point exception in Splash::scaleImageYuXd() that could have been exploited using a specially crafted PDF document. (bsc#1059155) - CVE-2017-14977: Fixed a NULL pointer dereference vulnerability in the FoFiTrueType::getCFFBlock() function in FoFiTrueType.cc that occurred due to lack of validation of a table pointer, which allows an attacker to launch a denial of service attack. (bsc#1061265) Family: unix Class: patch Status: Reference(s): 1000998 1009434 1011377 1011390 1011395 1011398 1011404 1011406 1011411 1011417 1024076 1024079 1033783 1059066 1059101 1059155 1061265 1091396 1105010 1106163 1112758 1131886 775988 900914 915410 943216 956365 964336 981252 982273 988028 992038 992606 CVE-2008-4989 CVE-2009-0696 CVE-2009-3939 CVE-2009-4022 CVE-2009-4026 CVE-2009-4027 CVE-2009-4131 CVE-2009-4138 CVE-2009-4536 CVE-2009-4538 CVE-2010-1146 CVE-2010-1436 CVE-2010-1641 CVE-2010-2066 CVE-2010-2942 CVE-2010-2954 CVE-2010-2955 CVE-2010-3081 CVE-2010-3296 CVE-2010-3297 CVE-2010-3298 CVE-2010-3301 CVE-2010-3310 CVE-2010-3613 CVE-2010-3614 CVE-2010-3615 CVE-2011-0414 CVE-2011-0421 CVE-2011-0712 CVE-2011-1020 CVE-2011-1577 CVE-2011-1907 CVE-2011-1910 CVE-2011-2203 CVE-2011-2464 CVE-2011-4128 CVE-2011-4313 CVE-2012-0056 CVE-2012-0390 CVE-2012-1162 CVE-2012-1163 CVE-2012-1569 CVE-2012-1573 CVE-2012-1667 CVE-2012-3482 CVE-2012-3817 CVE-2012-3868 CVE-2012-4244 CVE-2012-4413 CVE-2012-5166 CVE-2012-5688 CVE-2012-5689 CVE-2013-0160 CVE-2013-0231 CVE-2013-0913 CVE-2013-1981 CVE-2013-1997 CVE-2013-2004 CVE-2013-2266 CVE-2013-2850 CVE-2013-4312 CVE-2013-4854 CVE-2013-6391 CVE-2014-0038 CVE-2014-00691 CVE-2014-0092 CVE-2014-0196 CVE-2014-0204 CVE-2014-0591 CVE-2014-1959 CVE-2014-3466 CVE-2014-3476 CVE-2014-3621 CVE-2014-5252 CVE-2014-5253 CVE-2014-8242 CVE-2014-8500 CVE-2014-8564 CVE-2014-9512 CVE-2015-0294 CVE-2015-1349 CVE-2015-2331 CVE-2015-3622 CVE-2015-4620 CVE-2015-5219 CVE-2015-5477 CVE-2015-5722 CVE-2015-6251 CVE-2015-7833 CVE-2015-7884 CVE-2015-7885 CVE-2015-8709 CVE-2015-8812 CVE-2016-0617 CVE-2016-0723 CVE-2016-0728 CVE-2016-0758 CVE-2016-1237 CVE-2016-1583 CVE-2016-2143 CVE-2016-2184 CVE-2016-2185 CVE-2016-2186 CVE-2016-2188 CVE-2016-2383 CVE-2016-2384 CVE-2016-2847 CVE-2016-3134 CVE-2016-3135 CVE-2016-3136 CVE-2016-3137 CVE-2016-3138 CVE-2016-3140 CVE-2016-3156 CVE-2016-3672 CVE-2016-3689 CVE-2016-3713 CVE-2016-3951 CVE-2016-4470 CVE-2016-4482 CVE-2016-4486 CVE-2016-4557 CVE-2016-4558 CVE-2016-4569 CVE-2016-4578 CVE-2016-4794 CVE-2016-4805 CVE-2016-4951 CVE-2016-4997 CVE-2016-4998 CVE-2016-5195 CVE-2016-5244 CVE-2016-5412 CVE-2016-5696 CVE-2016-5759 CVE-2016-5828 CVE-2016-5829 CVE-2016-6197 CVE-2016-6480 CVE-2016-6828 CVE-2016-7039 CVE-2016-7097 CVE-2016-7426 CVE-2016-7427 CVE-2016-7428 CVE-2016-7429 CVE-2016-7431 CVE-2016-7433 CVE-2016-7434 CVE-2016-7545 CVE-2016-8658 CVE-2016-9310 CVE-2016-9311 CVE-2017-14517 CVE-2017-14518 CVE-2017-14520 CVE-2017-14977 CVE-2017-5837 CVE-2017-5844 CVE-2017-7467 CVE-2018-15473 CVE-2018-15919 CVE-2018-16839 SUSE-SU-2016:0176-1 SUSE-SU-2016:0872-1 SUSE-SU-2016:3195-1 SUSE-SU-2017:0340-1 SUSE-SU-2017:1003-1 SUSE-SU-2017:1092-1 SUSE-SU-2017:2952-1 SUSE-SU-2018:3776-1 SUSE-SU-2019:0996-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.1 NonFree SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND autofs-5.1.3-lp150.5 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information expat-2.2.5-lp151.3.3 is installed OR libexpat-devel-2.2.5-lp151.3.3 is installed OR libexpat-devel-32bit-2.2.5-lp151.3.3 is installed OR libexpat1-2.2.5-lp151.3.3 is installed OR libexpat1-32bit-2.2.5-lp151.3.3 is installed Definition Synopsis openSUSE Leap 15.1 NonFree is installed AND opera-67.0.3575.97-lp151.2.12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND fetchmail-6.3.8.90-13.20.21 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libpoppler44-0.24.4-14.13 is installed OR poppler-0.24.4-14.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information bind-9.9.6P1-30 is installed OR bind-chrootenv-9.9.6P1-30 is installed OR bind-doc-9.9.6P1-30 is installed OR bind-libs-9.9.6P1-30 is installed OR bind-libs-32bit-9.9.6P1-30 is installed OR bind-utils-9.9.6P1-30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information openssh-6.6p1-54.18 is installed OR openssh-askpass-gnome-6.6p1-54.18 is installed OR openssh-fips-6.6p1-54.18 is installed OR openssh-helpers-6.6p1-54.18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information gnutls-3.2.15-11 is installed OR libgnutls-openssl27-3.2.15-11 is installed OR libgnutls28-3.2.15-11 is installed OR libgnutls28-32bit-3.2.15-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information MozillaFirefox-60.3.0-109.50 is installed OR MozillaFirefox-devel-60.3.0-109.50 is installed OR MozillaFirefox-translations-common-60.3.0-109.50 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_114-92_67-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_19-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_120-92_70-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_20-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libnm-glib-vpn1-1.0.12-12 is installed OR libnm-glib4-1.0.12-12 is installed OR libnm-util2-1.0.12-12 is installed OR libnm0-1.0.12-12 is installed OR typelib-1_0-NMClient-1_0-1.0.12-12 is installed OR typelib-1_0-NetworkManager-1_0-1.0.12-12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information qemu-2.9.1-6.19 is installed OR qemu-block-curl-2.9.1-6.19 is installed OR qemu-block-iscsi-2.9.1-6.19 is installed OR qemu-block-rbd-2.9.1-6.19 is installed OR qemu-block-ssh-2.9.1-6.19 is installed OR qemu-guest-agent-2.9.1-6.19 is installed OR qemu-ipxe-1.0.0-6.19 is installed OR qemu-kvm-2.9.1-6.19 is installed OR qemu-lang-2.9.1-6.19 is installed OR qemu-seabios-1.10.2-6.19 is installed OR qemu-sgabios-8-6.19 is installed OR qemu-tools-2.9.1-6.19 is installed OR qemu-vgabios-1.10.2-6.19 is installed OR qemu-x86-2.9.1-6.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libthai-data-0.1.25-4 is installed OR libthai0-0.1.25-4 is installed OR libthai0-32bit-0.1.25-4 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information openstack-keystone-8.0.2~a0~dev8-1 is installed OR python-keystone-8.0.2~a0~dev8-1 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information cups-filters-1.0.58-15.2 is installed OR cups-filters-cups-browsed-1.0.58-15.2 is installed OR cups-filters-foomatic-rip-1.0.58-15.2 is installed OR cups-filters-ghostscript-1.0.58-15.2 is installed OR libqpdf18-7.1.1-3.3 is installed OR qpdf-7.1.1-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libshibsp-lite6-2.5.5-6.6 is installed OR libshibsp6-2.5.5-6.6 is installed OR shibboleth-sp-2.5.5-6.6 is installed
BACK