Oval Definition:oval:org.opensuse.security:def:56348
Revision Date:2020-12-01Version:1
Title:Security update for libXfont (Moderate)
Description:

This update for libXfont fixes several issues.

These security issues were fixed:

- CVE-2017-13720: Improper check for end of string in PatterMatch caused invalid reads (bsc#1054285) - CVE-2017-13722: Malformed PCF file could have caused DoS or leak information (bsc#1049692) - Prevent the X server from accessing arbitrary files as root. It is not possible to leak information, but special files can be touched allowing for causing side effects (bsc#1050459)
Family:unixClass:patch
Status:Reference(s):1001161
1035829
1041783
1041830
1042802
1042803
1043088
1043484
1043607
1045060
1045062
1045065
1045719
1045721
1048046
1048576
1049692
1050459
1051429
1054285
1083125
1085447
1090368
1090646
1107832
1108963
1110233
1112980
1114832
1118897
1118898
1118899
1121412
1121967
1122706
1124308
827568
CVE-2008-4225
CVE-2008-4226
CVE-2008-4409
CVE-2009-0945
CVE-2010-4494
CVE-2010-4530
CVE-2010-4651
CVE-2011-1944
CVE-2011-3193
CVE-2011-3922
CVE-2012-4929
CVE-2012-5134
CVE-2012-6093
CVE-2013-0254
CVE-2013-0338
CVE-2013-1969
CVE-2013-2217
CVE-2013-4242
CVE-2013-4326
CVE-2013-4549
CVE-2014-0190
CVE-2014-0191
CVE-2014-3430
CVE-2014-3564
CVE-2014-3591
CVE-2014-3660
CVE-2015-0295
CVE-2015-0837
CVE-2015-1196
CVE-2015-1395
CVE-2015-1396
CVE-2015-1819
CVE-2015-1858
CVE-2015-1859
CVE-2015-1860
CVE-2015-5312
CVE-2015-7497
CVE-2015-7498
CVE-2015-7499
CVE-2015-7500
CVE-2015-7941
CVE-2015-7942
CVE-2015-8035
CVE-2015-8241
CVE-2015-8242
CVE-2015-8317
CVE-2015-8710
CVE-2016-1762
CVE-2016-1833
CVE-2016-1834
CVE-2016-1835
CVE-2016-1836
CVE-2016-1837
CVE-2016-1838
CVE-2016-1839
CVE-2016-1840
CVE-2016-3627
CVE-2016-3705
CVE-2016-4483
CVE-2016-9962
CVE-2017-13166
CVE-2017-13720
CVE-2017-13722
CVE-2017-3167
CVE-2017-3169
CVE-2017-7511
CVE-2017-7515
CVE-2017-7679
CVE-2017-9406
CVE-2017-9408
CVE-2017-9775
CVE-2017-9776
CVE-2017-9788
CVE-2018-14633
CVE-2018-14634
CVE-2018-16873
CVE-2018-16874
CVE-2018-16875
CVE-2018-17182
CVE-2018-8781
CVE-2018-8897
CVE-2019-3813
CVE-2019-5736
SUSE-SU-2016:2704-1
SUSE-SU-2017:1999-1
SUSE-SU-2017:2449-1
SUSE-SU-2018:0334-1
SUSE-SU-2018:1528-1
SUSE-SU-2019:0231-1
SUSE-SU-2019:0573-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 6-LTSS
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • cyrus-sasl-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-32bit-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-crammd5-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-crammd5-32bit-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-digestmd5-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-digestmd5-32bit-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-gssapi-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-gssapi-32bit-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-plain-2.1.26-lp150.3 is installed
  • OR cyrus-sasl-plain-32bit-2.1.26-lp150.3 is installed
  • OR libsasl2-3-2.1.26-lp150.3 is installed
  • OR libsasl2-3-32bit-2.1.26-lp150.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • MozillaFirefox-60.8.0-lp151.2.10 is installed
  • OR MozillaFirefox-branding-upstream-60.8.0-lp151.2.10 is installed
  • OR MozillaFirefox-buildsymbols-60.8.0-lp151.2.10 is installed
  • OR MozillaFirefox-devel-60.8.0-lp151.2.10 is installed
  • OR MozillaFirefox-translations-common-60.8.0-lp151.2.10 is installed
  • OR MozillaFirefox-translations-other-60.8.0-lp151.2.10 is installed
  • OR libfreebl3-3.44.1-lp151.2.3 is installed
  • OR libfreebl3-32bit-3.44.1-lp151.2.3 is installed
  • OR libfreebl3-hmac-3.44.1-lp151.2.3 is installed
  • OR libfreebl3-hmac-32bit-3.44.1-lp151.2.3 is installed
  • OR libsoftokn3-3.44.1-lp151.2.3 is installed
  • OR libsoftokn3-32bit-3.44.1-lp151.2.3 is installed
  • OR libsoftokn3-hmac-3.44.1-lp151.2.3 is installed
  • OR libsoftokn3-hmac-32bit-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-32bit-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-certs-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-certs-32bit-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-devel-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-sysinit-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-sysinit-32bit-3.44.1-lp151.2.3 is installed
  • OR mozilla-nss-tools-3.44.1-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • libXfont-1.5.1-11.3 is installed
  • OR libXfont1-1.5.1-11.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libpoppler-glib8-0.43.0-16.5 is installed
  • OR libpoppler-qt4-4-0.43.0-16.5 is installed
  • OR libpoppler60-0.43.0-16.5 is installed
  • OR poppler-0.43.0-16.5 is installed
  • OR poppler-qt-0.43.0-16.5 is installed
  • OR poppler-tools-0.43.0-16.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • dovecot22-2.2.13-2 is installed
  • OR dovecot22-backend-mysql-2.2.13-2 is installed
  • OR dovecot22-backend-pgsql-2.2.13-2 is installed
  • OR dovecot22-backend-sqlite-2.2.13-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • apache2-2.4.16-20.10 is installed
  • OR apache2-doc-2.4.16-20.10 is installed
  • OR apache2-example-pages-2.4.16-20.10 is installed
  • OR apache2-prefork-2.4.16-20.10 is installed
  • OR apache2-utils-2.4.16-20.10 is installed
  • OR apache2-worker-2.4.16-20.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • gpgme-1.5.1-1 is installed
  • OR libgpgme11-1.5.1-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr5.20-30.36 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-60.4.0esr-109.55 is installed
  • OR MozillaFirefox-devel-60.4.0esr-109.55 is installed
  • OR MozillaFirefox-translations-common-60.4.0esr-109.55 is installed
  • OR libfreebl3-3.40.1-58.18 is installed
  • OR libfreebl3-32bit-3.40.1-58.18 is installed
  • OR libsoftokn3-3.40.1-58.18 is installed
  • OR libsoftokn3-32bit-3.40.1-58.18 is installed
  • OR mozilla-nspr-4.20-19.6 is installed
  • OR mozilla-nspr-32bit-4.20-19.6 is installed
  • OR mozilla-nss-3.40.1-58.18 is installed
  • OR mozilla-nss-32bit-3.40.1-58.18 is installed
  • OR mozilla-nss-certs-3.40.1-58.18 is installed
  • OR mozilla-nss-certs-32bit-3.40.1-58.18 is installed
  • OR mozilla-nss-sysinit-3.40.1-58.18 is installed
  • OR mozilla-nss-sysinit-32bit-3.40.1-58.18 is installed
  • OR mozilla-nss-tools-3.40.1-58.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_90-92_45-default-8-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_14-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • audiofile-0.3.6-10 is installed
  • OR libaudiofile1-0.3.6-10 is installed
  • OR libaudiofile1-32bit-0.3.6-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • MozillaFirefox-68.2.0-109.95 is installed
  • OR MozillaFirefox-translations-common-68.2.0-109.95 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • apache-commons-beanutils-1.9.2-3.3 is installed
  • OR apache-commons-beanutils-javadoc-1.9.2-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • emacs-24.3-25.3 is installed
  • OR emacs-el-24.3-25.3 is installed
  • OR emacs-info-24.3-25.3 is installed
  • OR emacs-nox-24.3-25.3 is installed
  • OR emacs-x11-24.3-25.3 is installed
  • OR etags-24.3-25.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND python-suds-jurko-0.6-4 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6-LTSS is installed
  • AND Package Information
  • containerd-1.2.2-16.14 is installed
  • OR docker-18.09.1_ce-98.34 is installed
  • OR docker-libnetwork-0.7.0.1+gitr2711_2cfbf9b1f981-16 is installed
  • OR docker-runc-1.0.0rc6+gitr3748_96ec2177ae84-1.17 is installed
  • OR golang-github-docker-libnetwork-0.7.0.1+gitr2711_2cfbf9b1f981-16 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • MozillaFirefox-60.2.2esr-109.46 is installed
  • OR MozillaFirefox-branding-SLE-60-32.3 is installed
  • OR MozillaFirefox-devel-60.2.2esr-109.46 is installed
  • OR MozillaFirefox-translations-common-60.2.2esr-109.46 is installed
  • OR apache2-mod_nss-1.0.14-19.6 is installed
  • OR libfreebl3-3.36.4-58.15 is installed
  • OR libfreebl3-32bit-3.36.4-58.15 is installed
  • OR libfreebl3-hmac-3.36.4-58.15 is installed
  • OR libfreebl3-hmac-32bit-3.36.4-58.15 is installed
  • OR libsoftokn3-3.36.4-58.15 is installed
  • OR libsoftokn3-32bit-3.36.4-58.15 is installed
  • OR libsoftokn3-hmac-3.36.4-58.15 is installed
  • OR libsoftokn3-hmac-32bit-3.36.4-58.15 is installed
  • OR mozilla-nspr-4.19-19.3 is installed
  • OR mozilla-nspr-32bit-4.19-19.3 is installed
  • OR mozilla-nss-3.36.4-58.15 is installed
  • OR mozilla-nss-32bit-3.36.4-58.15 is installed
  • OR mozilla-nss-certs-3.36.4-58.15 is installed
  • OR mozilla-nss-certs-32bit-3.36.4-58.15 is installed
  • OR mozilla-nss-sysinit-3.36.4-58.15 is installed
  • OR mozilla-nss-sysinit-32bit-3.36.4-58.15 is installed
  • OR mozilla-nss-tools-3.36.4-58.15 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND python-Django1-1.11.20-3.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND python-Django-1.11.23-3.12 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Twisted-15.2.1-9.8 is installed
    • BACK