OVAL Reference oval:org.opensuse.security:def:56348

Oval Definition:

oval:org.opensuse.security:def:56348

Revision Date:	2020-12-01	Version:	1
Title:	Security update for libXfont (Moderate)
Description:	This update for libXfont fixes several issues. These security issues were fixed: - CVE-2017-13720: Improper check for end of string in PatterMatch caused invalid reads (bsc#1054285) - CVE-2017-13722: Malformed PCF file could have caused DoS or leak information (bsc#1049692) - Prevent the X server from accessing arbitrary files as root. It is not possible to leak information, but special files can be touched allowing for causing side effects (bsc#1050459)
Family:	unix	Class:	patch
Status:		Reference(s):	1001161 1035829 1041783 1041830 1042802 1042803 1043088 1043484 1043607 1045060 1045062 1045065 1045719 1045721 1048046 1048576 1049692 1050459 1051429 1054285 1083125 1085447 1090368 1090646 1107832 1108963 1110233 1112980 1114832 1118897 1118898 1118899 1121412 1121967 1122706 1124308 827568 CVE-2008-4225 CVE-2008-4226 CVE-2008-4409 CVE-2009-0945 CVE-2010-4494 CVE-2010-4530 CVE-2010-4651 CVE-2011-1944 CVE-2011-3193 CVE-2011-3922 CVE-2012-4929 CVE-2012-5134 CVE-2012-6093 CVE-2013-0254 CVE-2013-0338 CVE-2013-1969 CVE-2013-2217 CVE-2013-4242 CVE-2013-4326 CVE-2013-4549 CVE-2014-0190 CVE-2014-0191 CVE-2014-3430 CVE-2014-3564 CVE-2014-3591 CVE-2014-3660 CVE-2015-0295 CVE-2015-0837 CVE-2015-1196 CVE-2015-1395 CVE-2015-1396 CVE-2015-1819 CVE-2015-1858 CVE-2015-1859 CVE-2015-1860 CVE-2015-5312 CVE-2015-7497 CVE-2015-7498 CVE-2015-7499 CVE-2015-7500 CVE-2015-7941 CVE-2015-7942 CVE-2015-8035 CVE-2015-8241 CVE-2015-8242 CVE-2015-8317 CVE-2015-8710 CVE-2016-1762 CVE-2016-1833 CVE-2016-1834 CVE-2016-1835 CVE-2016-1836 CVE-2016-1837 CVE-2016-1838 CVE-2016-1839 CVE-2016-1840 CVE-2016-3627 CVE-2016-3705 CVE-2016-4483 CVE-2016-9962 CVE-2017-13166 CVE-2017-13720 CVE-2017-13722 CVE-2017-3167 CVE-2017-3169 CVE-2017-7511 CVE-2017-7515 CVE-2017-7679 CVE-2017-9406 CVE-2017-9408 CVE-2017-9775 CVE-2017-9776 CVE-2017-9788 CVE-2018-14633 CVE-2018-14634 CVE-2018-16873 CVE-2018-16874 CVE-2018-16875 CVE-2018-17182 CVE-2018-8781 CVE-2018-8897 CVE-2019-3813 CVE-2019-5736 SUSE-SU-2016:2704-1 SUSE-SU-2017:1999-1 SUSE-SU-2017:2449-1 SUSE-SU-2018:0334-1 SUSE-SU-2018:1528-1 SUSE-SU-2019:0231-1 SUSE-SU-2019:0573-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 6-LTSS SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information cyrus-sasl-2.1.26-lp150.3 is installed OR cyrus-sasl-32bit-2.1.26-lp150.3 is installed OR cyrus-sasl-crammd5-2.1.26-lp150.3 is installed OR cyrus-sasl-crammd5-32bit-2.1.26-lp150.3 is installed OR cyrus-sasl-digestmd5-2.1.26-lp150.3 is installed OR cyrus-sasl-digestmd5-32bit-2.1.26-lp150.3 is installed OR cyrus-sasl-gssapi-2.1.26-lp150.3 is installed OR cyrus-sasl-gssapi-32bit-2.1.26-lp150.3 is installed OR cyrus-sasl-plain-2.1.26-lp150.3 is installed OR cyrus-sasl-plain-32bit-2.1.26-lp150.3 is installed OR libsasl2-3-2.1.26-lp150.3 is installed OR libsasl2-3-32bit-2.1.26-lp150.3 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information MozillaFirefox-60.8.0-lp151.2.10 is installed OR MozillaFirefox-branding-upstream-60.8.0-lp151.2.10 is installed OR MozillaFirefox-buildsymbols-60.8.0-lp151.2.10 is installed OR MozillaFirefox-devel-60.8.0-lp151.2.10 is installed OR MozillaFirefox-translations-common-60.8.0-lp151.2.10 is installed OR MozillaFirefox-translations-other-60.8.0-lp151.2.10 is installed OR libfreebl3-3.44.1-lp151.2.3 is installed OR libfreebl3-32bit-3.44.1-lp151.2.3 is installed OR libfreebl3-hmac-3.44.1-lp151.2.3 is installed OR libfreebl3-hmac-32bit-3.44.1-lp151.2.3 is installed OR libsoftokn3-3.44.1-lp151.2.3 is installed OR libsoftokn3-32bit-3.44.1-lp151.2.3 is installed OR libsoftokn3-hmac-3.44.1-lp151.2.3 is installed OR libsoftokn3-hmac-32bit-3.44.1-lp151.2.3 is installed OR mozilla-nss-3.44.1-lp151.2.3 is installed OR mozilla-nss-32bit-3.44.1-lp151.2.3 is installed OR mozilla-nss-certs-3.44.1-lp151.2.3 is installed OR mozilla-nss-certs-32bit-3.44.1-lp151.2.3 is installed OR mozilla-nss-devel-3.44.1-lp151.2.3 is installed OR mozilla-nss-sysinit-3.44.1-lp151.2.3 is installed OR mozilla-nss-sysinit-32bit-3.44.1-lp151.2.3 is installed OR mozilla-nss-tools-3.44.1-lp151.2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information libXfont-1.5.1-11.3 is installed OR libXfont1-1.5.1-11.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libpoppler-glib8-0.43.0-16.5 is installed OR libpoppler-qt4-4-0.43.0-16.5 is installed OR libpoppler60-0.43.0-16.5 is installed OR poppler-0.43.0-16.5 is installed OR poppler-qt-0.43.0-16.5 is installed OR poppler-tools-0.43.0-16.5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information dovecot22-2.2.13-2 is installed OR dovecot22-backend-mysql-2.2.13-2 is installed OR dovecot22-backend-pgsql-2.2.13-2 is installed OR dovecot22-backend-sqlite-2.2.13-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information apache2-2.4.16-20.10 is installed OR apache2-doc-2.4.16-20.10 is installed OR apache2-example-pages-2.4.16-20.10 is installed OR apache2-prefork-2.4.16-20.10 is installed OR apache2-utils-2.4.16-20.10 is installed OR apache2-worker-2.4.16-20.10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information gpgme-1.5.1-1 is installed OR libgpgme11-1.5.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.20-30.36 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information MozillaFirefox-60.4.0esr-109.55 is installed OR MozillaFirefox-devel-60.4.0esr-109.55 is installed OR MozillaFirefox-translations-common-60.4.0esr-109.55 is installed OR libfreebl3-3.40.1-58.18 is installed OR libfreebl3-32bit-3.40.1-58.18 is installed OR libsoftokn3-3.40.1-58.18 is installed OR libsoftokn3-32bit-3.40.1-58.18 is installed OR mozilla-nspr-4.20-19.6 is installed OR mozilla-nspr-32bit-4.20-19.6 is installed OR mozilla-nss-3.40.1-58.18 is installed OR mozilla-nss-32bit-3.40.1-58.18 is installed OR mozilla-nss-certs-3.40.1-58.18 is installed OR mozilla-nss-certs-32bit-3.40.1-58.18 is installed OR mozilla-nss-sysinit-3.40.1-58.18 is installed OR mozilla-nss-sysinit-32bit-3.40.1-58.18 is installed OR mozilla-nss-tools-3.40.1-58.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information MozillaFirefox-68.2.0-109.95 is installed OR MozillaFirefox-translations-common-68.2.0-109.95 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information apache-commons-beanutils-1.9.2-3.3 is installed OR apache-commons-beanutils-javadoc-1.9.2-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information emacs-24.3-25.3 is installed OR emacs-el-24.3-25.3 is installed OR emacs-info-24.3-25.3 is installed OR emacs-nox-24.3-25.3 is installed OR emacs-x11-24.3-25.3 is installed OR etags-24.3-25.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND python-suds-jurko-0.6-4 is installed
Definition Synopsis
SUSE OpenStack Cloud 6-LTSS is installed AND Package Information containerd-1.2.2-16.14 is installed OR docker-18.09.1_ce-98.34 is installed OR docker-libnetwork-0.7.0.1+gitr2711_2cfbf9b1f981-16 is installed OR docker-runc-1.0.0rc6+gitr3748_96ec2177ae84-1.17 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2711_2cfbf9b1f981-16 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information MozillaFirefox-60.2.2esr-109.46 is installed OR MozillaFirefox-branding-SLE-60-32.3 is installed OR MozillaFirefox-devel-60.2.2esr-109.46 is installed OR MozillaFirefox-translations-common-60.2.2esr-109.46 is installed OR apache2-mod_nss-1.0.14-19.6 is installed OR libfreebl3-3.36.4-58.15 is installed OR libfreebl3-32bit-3.36.4-58.15 is installed OR libfreebl3-hmac-3.36.4-58.15 is installed OR libfreebl3-hmac-32bit-3.36.4-58.15 is installed OR libsoftokn3-3.36.4-58.15 is installed OR libsoftokn3-32bit-3.36.4-58.15 is installed OR libsoftokn3-hmac-3.36.4-58.15 is installed OR libsoftokn3-hmac-32bit-3.36.4-58.15 is installed OR mozilla-nspr-4.19-19.3 is installed OR mozilla-nspr-32bit-4.19-19.3 is installed OR mozilla-nss-3.36.4-58.15 is installed OR mozilla-nss-32bit-3.36.4-58.15 is installed OR mozilla-nss-certs-3.36.4-58.15 is installed OR mozilla-nss-certs-32bit-3.36.4-58.15 is installed OR mozilla-nss-sysinit-3.36.4-58.15 is installed OR mozilla-nss-sysinit-32bit-3.36.4-58.15 is installed OR mozilla-nss-tools-3.36.4-58.15 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND python-Django1-1.11.20-3.6 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND python-Django-1.11.23-3.12 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND python-Twisted-15.2.1-9.8 is installed

BACK