Oval Definition:oval:org.opensuse.security:def:56361
Revision Date:2020-12-01Version:1
Title:Security update for freetype2 (Important)
Description:



This update for freetype2 fixes the following security issues:

- CVE-2016-10244: Make sure that the parse_charstrings function in type1/t1load.c does ensure that a font contains a glyph name to prevent a DoS through a heap-based buffer over-read or possibly have unspecified other impact via a crafted file (bsc#1028103) - CVE-2017-8105: Fix an out-of-bounds write caused by a heap-based buffer overflow related to the t1_decoder_parse_charstrings function in psaux/t1decode.ca (bsc#1035807) - CVE-2017-8287: an out-of-bounds write caused by a heap-based buffer overflow related to the t1_builder_close_contour function in psaux/psobjs.c (bsc#1036457) - Fix several integer overflow issues in truetype/ttinterp.c (bsc#1079600)
Family:unixClass:patch
Status:Reference(s):1014136
1026236
1027519
1028103
1029638
1029639
1029706
1029707
1029751
1031460
1034845
1035807
1036457
1036470
1037243
1042160
1042863
1042882
1042893
1042915
1042923
1042924
1042931
1042938
1043074
1043297
1058058
1077355
1078677
1079600
1082480
1082481
1093697
1095735
1102379
1102400
1102410
1110850
1151021
926826
CVE-2009-2285
CVE-2009-2347
CVE-2010-2065
CVE-2010-2067
CVE-2010-2233
CVE-2010-2529
CVE-2010-4665
CVE-2011-0192
CVE-2011-1167
CVE-2012-1173
CVE-2012-2113
CVE-2012-3401
CVE-2012-4564
CVE-2013-1960
CVE-2013-1961
CVE-2013-4231
CVE-2013-4232
CVE-2013-4238
CVE-2013-4243
CVE-2013-4244
CVE-2013-6370
CVE-2013-6371
CVE-2014-2497
CVE-2014-2653
CVE-2014-3618
CVE-2014-3634
CVE-2014-8127
CVE-2014-8128
CVE-2014-8129
CVE-2014-8130
CVE-2014-9655
CVE-2014-9709
CVE-2015-1142857
CVE-2015-1547
CVE-2015-5352
CVE-2015-5600
CVE-2015-6563
CVE-2015-6564
CVE-2015-8325
CVE-2016-0777
CVE-2016-0778
CVE-2016-10244
CVE-2016-1908
CVE-2016-3115
CVE-2016-6210
CVE-2016-6515
CVE-2017-10911
CVE-2017-10912
CVE-2017-10913
CVE-2017-10914
CVE-2017-10915
CVE-2017-10916
CVE-2017-10917
CVE-2017-10918
CVE-2017-10920
CVE-2017-10921
CVE-2017-10922
CVE-2017-15706
CVE-2017-5715
CVE-2017-6435
CVE-2017-6436
CVE-2017-6437
CVE-2017-6438
CVE-2017-6439
CVE-2017-7864
CVE-2017-8105
CVE-2017-8112
CVE-2017-8287
CVE-2017-8309
CVE-2017-8905
CVE-2017-9330
CVE-2017-9374
CVE-2017-9503
CVE-2017-9798
CVE-2018-11784
CVE-2018-1304
CVE-2018-1305
CVE-2018-1336
CVE-2018-8014
CVE-2018-8034
CVE-2018-8037
CVE-2019-14835
SUSE-SU-2015:2056-2
SUSE-SU-2017:1812-1
SUSE-SU-2017:2201-1
SUSE-SU-2017:2718-1
SUSE-SU-2018:0414-1
SUSE-SU-2018:1570-1
SUSE-SU-2018:3388-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • firewall-macros-0.5.3-lp150.1 is installed
  • OR firewalld-0.5.3-lp150.1 is installed
  • OR firewalld-lang-0.5.3-lp150.1 is installed
  • OR python3-firewall-0.5.3-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libIlmImf-2_2-23-2.2.1-lp151.4.3 is installed
  • OR libIlmImf-2_2-23-32bit-2.2.1-lp151.4.3 is installed
  • OR libIlmImfUtil-2_2-23-2.2.1-lp151.4.3 is installed
  • OR libIlmImfUtil-2_2-23-32bit-2.2.1-lp151.4.3 is installed
  • OR openexr-2.2.1-lp151.4.3 is installed
  • OR openexr-devel-2.2.1-lp151.4.3 is installed
  • OR openexr-doc-2.2.1-lp151.4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • freetype2-2.6.3-7.15 is installed
  • OR ft2demos-2.6.3-7.15 is installed
  • OR libfreetype6-2.6.3-7.15 is installed
  • OR libfreetype6-32bit-2.6.3-7.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libplist-1.12-20.3 is installed
  • OR libplist++3-1.12-20.3 is installed
  • OR libplist3-1.12-20.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND gd-2.1.0-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • apache2-2.4.16-20.13 is installed
  • OR apache2-doc-2.4.16-20.13 is installed
  • OR apache2-example-pages-2.4.16-20.13 is installed
  • OR apache2-prefork-2.4.16-20.13 is installed
  • OR apache2-utils-2.4.16-20.13 is installed
  • OR apache2-worker-2.4.16-20.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND iputils-s20121221-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • xen-4.7.6_05-43.42 is installed
  • OR xen-doc-html-4.7.6_05-43.42 is installed
  • OR xen-libs-4.7.6_05-43.42 is installed
  • OR xen-libs-32bit-4.7.6_05-43.42 is installed
  • OR xen-tools-4.7.6_05-43.42 is installed
  • OR xen-tools-domU-4.7.6_05-43.42 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • libssh2-1-1.4.3-20.6 is installed
  • OR libssh2-1-32bit-1.4.3-20.6 is installed
  • OR libssh2_org-1.4.3-20.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_74-92_29-default-12-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_10-12-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • colord-gtk-lang-0.1.26-6 is installed
  • OR libcolord-gtk1-0.1.26-6 is installed
  • OR libcolord2-1.3.3-12 is installed
  • OR libcolord2-32bit-1.3.3-12 is installed
  • OR libcolorhug2-1.3.3-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND mailman-2.1.17-3.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • ibus-1.5.13-15.11 is installed
  • OR ibus-gtk-1.5.13-15.11 is installed
  • OR ibus-gtk3-1.5.13-15.11 is installed
  • OR ibus-lang-1.5.13-15.11 is installed
  • OR libibus-1_0-5-1.5.13-15.11 is installed
  • OR typelib-1_0-IBus-1_0-1.5.13-15.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND ant-1.9.4-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • xen-4.5.5_12-22.18 is installed
  • OR xen-doc-html-4.5.5_12-22.18 is installed
  • OR xen-kmp-default-4.5.5_12_k3.12.74_60.64.45-22.18 is installed
  • OR xen-libs-4.5.5_12-22.18 is installed
  • OR xen-libs-32bit-4.5.5_12-22.18 is installed
  • OR xen-tools-4.5.5_12-22.18 is installed
  • OR xen-tools-domU-4.5.5_12-22.18 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • libQt5Concurrent5-5.6.1-17.6 is installed
  • OR libQt5Core5-5.6.1-17.6 is installed
  • OR libQt5DBus5-5.6.1-17.6 is installed
  • OR libQt5Gui5-5.6.1-17.6 is installed
  • OR libQt5Network5-5.6.1-17.6 is installed
  • OR libQt5OpenGL5-5.6.1-17.6 is installed
  • OR libQt5PrintSupport5-5.6.1-17.6 is installed
  • OR libQt5Sql5-5.6.1-17.6 is installed
  • OR libQt5Sql5-mysql-5.6.1-17.6 is installed
  • OR libQt5Sql5-postgresql-5.6.1-17.6 is installed
  • OR libQt5Sql5-sqlite-5.6.1-17.6 is installed
  • OR libQt5Sql5-unixODBC-5.6.1-17.6 is installed
  • OR libQt5Test5-5.6.1-17.6 is installed
  • OR libQt5Widgets5-5.6.1-17.6 is installed
  • OR libQt5Xml5-5.6.1-17.6 is installed
  • OR libqt5-qtbase-5.6.1-17.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND slf4j-1.7.12-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND python-ecdsa-0.13.3-5.10 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libopenssl-devel-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed
  • OR openssl-1.0.2j-60.55 is installed
  • OR openssl-doc-1.0.2j-60.55 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-Twisted-15.2.1-9.5 is installed
    • BACK