Revision Date: | 2020-12-01 | Version: | 1 |
Title: | Security update for libXfont (Moderate) |
Description: |
This update for libXfont fixes several issues.
These security issues were fixed:
- CVE-2017-13720: Improper check for end of string in PatterMatch caused invalid reads (bsc#1054285) - CVE-2017-13722: Malformed PCF file could have caused DoS or leak information (bsc#1049692) - Prevent the X server from accessing arbitrary files as root. It is not possible to leak information, but special files can be touched allowing for causing side effects (bsc#1050459)
|
Family: | unix | Class: | patch |
Status: | | Reference(s): | 1001161 1035829 1041783 1041830 1042802 1042803 1043088 1043484 1043607 1045060 1045062 1045065 1045719 1045721 1048046 1048576 1049692 1050459 1051429 1054285 1083125 1085447 1090368 1090646 1107832 1108963 1110233 1112980 1114832 1118897 1118898 1118899 1121412 1121967 1122706 1124308 827568 CVE-2008-4225 CVE-2008-4226 CVE-2008-4409 CVE-2009-0945 CVE-2010-4494 CVE-2010-4530 CVE-2010-4651 CVE-2011-1944 CVE-2011-3193 CVE-2011-3922 CVE-2012-4929 CVE-2012-5134 CVE-2012-6093 CVE-2013-0254 CVE-2013-0338 CVE-2013-1969 CVE-2013-2217 CVE-2013-4242 CVE-2013-4326 CVE-2013-4549 CVE-2014-0190 CVE-2014-0191 CVE-2014-3430 CVE-2014-3564 CVE-2014-3591 CVE-2014-3660 CVE-2015-0295 CVE-2015-0837 CVE-2015-1196 CVE-2015-1395 CVE-2015-1396 CVE-2015-1819 CVE-2015-1858 CVE-2015-1859 CVE-2015-1860 CVE-2015-5312 CVE-2015-7497 CVE-2015-7498 CVE-2015-7499 CVE-2015-7500 CVE-2015-7941 CVE-2015-7942 CVE-2015-8035 CVE-2015-8241 CVE-2015-8242 CVE-2015-8317 CVE-2015-8710 CVE-2016-1762 CVE-2016-1833 CVE-2016-1834 CVE-2016-1835 CVE-2016-1836 CVE-2016-1837 CVE-2016-1838 CVE-2016-1839 CVE-2016-1840 CVE-2016-3627 CVE-2016-3705 CVE-2016-4483 CVE-2016-9962 CVE-2017-13166 CVE-2017-13720 CVE-2017-13722 CVE-2017-3167 CVE-2017-3169 CVE-2017-7511 CVE-2017-7515 CVE-2017-7679 CVE-2017-9406 CVE-2017-9408 CVE-2017-9775 CVE-2017-9776 CVE-2017-9788 CVE-2018-14633 CVE-2018-14634 CVE-2018-16873 CVE-2018-16874 CVE-2018-16875 CVE-2018-17182 CVE-2018-8781 CVE-2018-8897 CVE-2019-3813 CVE-2019-5736 SUSE-SU-2016:2704-1 SUSE-SU-2017:1999-1 SUSE-SU-2017:2449-1 SUSE-SU-2018:0334-1 SUSE-SU-2018:1528-1 SUSE-SU-2019:0231-1 SUSE-SU-2019:0573-1
|
Platform(s): | openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 6-LTSS SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9
| Product(s): | |
Definition Synopsis |
openSUSE Leap 15.0 is installed AND Package Information
cyrus-sasl-2.1.26-lp150.3 is installed
OR cyrus-sasl-32bit-2.1.26-lp150.3 is installed
OR cyrus-sasl-crammd5-2.1.26-lp150.3 is installed
OR cyrus-sasl-crammd5-32bit-2.1.26-lp150.3 is installed
OR cyrus-sasl-digestmd5-2.1.26-lp150.3 is installed
OR cyrus-sasl-digestmd5-32bit-2.1.26-lp150.3 is installed
OR cyrus-sasl-gssapi-2.1.26-lp150.3 is installed
OR cyrus-sasl-gssapi-32bit-2.1.26-lp150.3 is installed
OR cyrus-sasl-plain-2.1.26-lp150.3 is installed
OR cyrus-sasl-plain-32bit-2.1.26-lp150.3 is installed
OR libsasl2-3-2.1.26-lp150.3 is installed
OR libsasl2-3-32bit-2.1.26-lp150.3 is installed
|
Definition Synopsis |
openSUSE Leap 15.1 is installed
AND Package Information
MozillaFirefox-60.8.0-lp151.2.10 is installed
OR MozillaFirefox-branding-upstream-60.8.0-lp151.2.10 is installed
OR MozillaFirefox-buildsymbols-60.8.0-lp151.2.10 is installed
OR MozillaFirefox-devel-60.8.0-lp151.2.10 is installed
OR MozillaFirefox-translations-common-60.8.0-lp151.2.10 is installed
OR MozillaFirefox-translations-other-60.8.0-lp151.2.10 is installed
OR libfreebl3-3.44.1-lp151.2.3 is installed
OR libfreebl3-32bit-3.44.1-lp151.2.3 is installed
OR libfreebl3-hmac-3.44.1-lp151.2.3 is installed
OR libfreebl3-hmac-32bit-3.44.1-lp151.2.3 is installed
OR libsoftokn3-3.44.1-lp151.2.3 is installed
OR libsoftokn3-32bit-3.44.1-lp151.2.3 is installed
OR libsoftokn3-hmac-3.44.1-lp151.2.3 is installed
OR libsoftokn3-hmac-32bit-3.44.1-lp151.2.3 is installed
OR mozilla-nss-3.44.1-lp151.2.3 is installed
OR mozilla-nss-32bit-3.44.1-lp151.2.3 is installed
OR mozilla-nss-certs-3.44.1-lp151.2.3 is installed
OR mozilla-nss-certs-32bit-3.44.1-lp151.2.3 is installed
OR mozilla-nss-devel-3.44.1-lp151.2.3 is installed
OR mozilla-nss-sysinit-3.44.1-lp151.2.3 is installed
OR mozilla-nss-sysinit-32bit-3.44.1-lp151.2.3 is installed
OR mozilla-nss-tools-3.44.1-lp151.2.3 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 12 SP2 is installed
AND Package Information
libXfont-1.5.1-11.3 is installed
OR libXfont1-1.5.1-11.3 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Desktop 12 SP3 is installed
AND Package Information
libpoppler-glib8-0.43.0-16.5 is installed
OR libpoppler-qt4-4-0.43.0-16.5 is installed
OR libpoppler60-0.43.0-16.5 is installed
OR poppler-0.43.0-16.5 is installed
OR poppler-qt-0.43.0-16.5 is installed
OR poppler-tools-0.43.0-16.5 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP1 is installed
AND Package Information
dovecot22-2.2.13-2 is installed
OR dovecot22-backend-mysql-2.2.13-2 is installed
OR dovecot22-backend-pgsql-2.2.13-2 is installed
OR dovecot22-backend-sqlite-2.2.13-2 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP1-LTSS is installed
AND Package Information
apache2-2.4.16-20.10 is installed
OR apache2-doc-2.4.16-20.10 is installed
OR apache2-example-pages-2.4.16-20.10 is installed
OR apache2-prefork-2.4.16-20.10 is installed
OR apache2-utils-2.4.16-20.10 is installed
OR apache2-worker-2.4.16-20.10 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2 is installed
AND Package Information
gpgme-1.5.1-1 is installed
OR libgpgme11-1.5.1-1 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2-BCL is installed
AND Package Information
java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed
OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed
OR java-1_8_0-ibm-devel-1.8.0_sr5.20-30.36 is installed
OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
AND Package Information
MozillaFirefox-60.4.0esr-109.55 is installed
OR MozillaFirefox-devel-60.4.0esr-109.55 is installed
OR MozillaFirefox-translations-common-60.4.0esr-109.55 is installed
OR libfreebl3-3.40.1-58.18 is installed
OR libfreebl3-32bit-3.40.1-58.18 is installed
OR libsoftokn3-3.40.1-58.18 is installed
OR libsoftokn3-32bit-3.40.1-58.18 is installed
OR mozilla-nspr-4.20-19.6 is installed
OR mozilla-nspr-32bit-4.20-19.6 is installed
OR mozilla-nss-3.40.1-58.18 is installed
OR mozilla-nss-32bit-3.40.1-58.18 is installed
OR mozilla-nss-certs-3.40.1-58.18 is installed
OR mozilla-nss-certs-32bit-3.40.1-58.18 is installed
OR mozilla-nss-sysinit-3.40.1-58.18 is installed
OR mozilla-nss-sysinit-32bit-3.40.1-58.18 is installed
OR mozilla-nss-tools-3.40.1-58.18 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP2-LTSS is installed
AND Package Information
kgraft-patch-4_4_90-92_45-default-8-2 is installed
OR kgraft-patch-SLE12-SP2_Update_14-8-2 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3 is installed
AND Package Information
audiofile-0.3.6-10 is installed
OR libaudiofile1-0.3.6-10 is installed
OR libaudiofile1-32bit-0.3.6-10 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3-LTSS is installed
AND Package Information
MozillaFirefox-68.2.0-109.95 is installed
OR MozillaFirefox-translations-common-68.2.0-109.95 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
AND Package Information
apache-commons-beanutils-1.9.2-3.3 is installed
OR apache-commons-beanutils-javadoc-1.9.2-3.3 is installed
|
Definition Synopsis |
SUSE Linux Enterprise Server 12 SP4 is installed
AND Package Information
emacs-24.3-25.3 is installed
OR emacs-el-24.3-25.3 is installed
OR emacs-info-24.3-25.3 is installed
OR emacs-nox-24.3-25.3 is installed
OR emacs-x11-24.3-25.3 is installed
OR etags-24.3-25.3 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud 6 is installed
AND python-suds-jurko-0.6-4 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud 6-LTSS is installed
AND Package Information
containerd-1.2.2-16.14 is installed
OR docker-18.09.1_ce-98.34 is installed
OR docker-libnetwork-0.7.0.1+gitr2711_2cfbf9b1f981-16 is installed
OR docker-runc-1.0.0rc6+gitr3748_96ec2177ae84-1.17 is installed
OR golang-github-docker-libnetwork-0.7.0.1+gitr2711_2cfbf9b1f981-16 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud 7 is installed
AND Package Information
MozillaFirefox-60.2.2esr-109.46 is installed
OR MozillaFirefox-branding-SLE-60-32.3 is installed
OR MozillaFirefox-devel-60.2.2esr-109.46 is installed
OR MozillaFirefox-translations-common-60.2.2esr-109.46 is installed
OR apache2-mod_nss-1.0.14-19.6 is installed
OR libfreebl3-3.36.4-58.15 is installed
OR libfreebl3-32bit-3.36.4-58.15 is installed
OR libfreebl3-hmac-3.36.4-58.15 is installed
OR libfreebl3-hmac-32bit-3.36.4-58.15 is installed
OR libsoftokn3-3.36.4-58.15 is installed
OR libsoftokn3-32bit-3.36.4-58.15 is installed
OR libsoftokn3-hmac-3.36.4-58.15 is installed
OR libsoftokn3-hmac-32bit-3.36.4-58.15 is installed
OR mozilla-nspr-4.19-19.3 is installed
OR mozilla-nspr-32bit-4.19-19.3 is installed
OR mozilla-nss-3.36.4-58.15 is installed
OR mozilla-nss-32bit-3.36.4-58.15 is installed
OR mozilla-nss-certs-3.36.4-58.15 is installed
OR mozilla-nss-certs-32bit-3.36.4-58.15 is installed
OR mozilla-nss-sysinit-3.36.4-58.15 is installed
OR mozilla-nss-sysinit-32bit-3.36.4-58.15 is installed
OR mozilla-nss-tools-3.36.4-58.15 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud 9 is installed
AND python-Django1-1.11.20-3.6 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud Crowbar 8 is installed
AND python-Django-1.11.23-3.12 is installed
|
Definition Synopsis |
SUSE OpenStack Cloud Crowbar 9 is installed
AND python-Twisted-15.2.1-9.8 is installed
|