OVAL Reference oval:org.opensuse.security:def:56442

Oval Definition:

oval:org.opensuse.security:def:56442

Revision Date:	2020-12-01	Version:	1
Title:	Security update for libraw (Moderate)
Description:	This update for libraw fixes the following issues: - CVE-2015-3885: A specially crafted raw image file could have caused a Denial of Service through an integer overflow. (bsc#930683) - CVE-2015-8367: The function phase_one_correct() did not handle memory object initialization correctly, which may have caused some other problems. (bsc#957517) - CVE-2017-6886: memory corruption in parse_tiff_ifd() func (internal/dcraw_common.cpp) could lead to Denial of service (bsc#1039380) - CVE-2017-6889: integer overflow error within the 'foveon_load_camf()' function (dcraw_foveon.c) could lead to Denial of service (bsc#1039210) - CVE-2017-6890: boundary error within the 'foveon_load_camf()' function (dcraw_foveon.c) (bsc#1039209)
Family:	unix	Class:	patch
Status:		Reference(s):	1001419 1002165 1004418 1008965 1012504 1012632 1019332 1020077 1023041 1027519 1039209 1039210 1039379 1039380 1083292 1087066 1088268 1089152 1089635 1090023 1090024 1090025 1090026 1090027 1090028 1090029 1090030 1090032 1090033 1090036 1090820 1090822 1090823 1091836 1102682 1103203 1105323 1131493 904970 907150 920615 920633 930408 930683 957517 983273 CVE-2007-5970 CVE-2008-7247 CVE-2009-4019 CVE-2009-4028 CVE-2009-4030 CVE-2010-5298 CVE-2012-5615 CVE-2013-1976 CVE-2013-1976 CVE-2013-6370 CVE-2013-6371 CVE-2014-0050 CVE-2014-0195 CVE-2014-0198 CVE-2014-0221 CVE-2014-0224 CVE-2014-2494 CVE-2014-3470 CVE-2014-4040 CVE-2014-4207 CVE-2014-4258 CVE-2014-4260 CVE-2014-4274 CVE-2014-4287 CVE-2014-6463 CVE-2014-6464 CVE-2014-6469 CVE-2014-6474 CVE-2014-6478 CVE-2014-6484 CVE-2014-6489 CVE-2014-6491 CVE-2014-6494 CVE-2014-6495 CVE-2014-6496 CVE-2014-6500 CVE-2014-6505 CVE-2014-6507 CVE-2014-6520 CVE-2014-6530 CVE-2014-6551 CVE-2014-6555 CVE-2014-6559 CVE-2014-6564 CVE-2014-6568 CVE-2014-8964 CVE-2015-0374 CVE-2015-0381 CVE-2015-0382 CVE-2015-0391 CVE-2015-0411 CVE-2015-0432 CVE-2015-0433 CVE-2015-0441 CVE-2015-0499 CVE-2015-0501 CVE-2015-0505 CVE-2015-2325 CVE-2015-2326 CVE-2015-2568 CVE-2015-2571 CVE-2015-2573 CVE-2015-3152 CVE-2015-3885 CVE-2015-4792 CVE-2015-4802 CVE-2015-4807 CVE-2015-4815 CVE-2015-4826 CVE-2015-4830 CVE-2015-4836 CVE-2015-4858 CVE-2015-4861 CVE-2015-4870 CVE-2015-4913 CVE-2015-5969 CVE-2015-8367 CVE-2015-8899 CVE-2016-0505 CVE-2016-0546 CVE-2016-0596 CVE-2016-0597 CVE-2016-0598 CVE-2016-0600 CVE-2016-0606 CVE-2016-0608 CVE-2016-0609 CVE-2016-0616 CVE-2016-0640 CVE-2016-0641 CVE-2016-0642 CVE-2016-0643 CVE-2016-0644 CVE-2016-0646 CVE-2016-0647 CVE-2016-0648 CVE-2016-0649 CVE-2016-0650 CVE-2016-0651 CVE-2016-0655 CVE-2016-0666 CVE-2016-0668 CVE-2016-1601 CVE-2016-2047 CVE-2016-3477 CVE-2016-3521 CVE-2016-3615 CVE-2016-5195 CVE-2016-5440 CVE-2016-6662 CVE-2017-0861 CVE-2017-2616 CVE-2017-6886 CVE-2017-6887 CVE-2017-6889 CVE-2017-6890 CVE-2017-6899 CVE-2018-1000199 CVE-2018-10471 CVE-2018-10472 CVE-2018-10902 CVE-2018-2790 CVE-2018-2794 CVE-2018-2795 CVE-2018-2796 CVE-2018-2797 CVE-2018-2798 CVE-2018-2799 CVE-2018-2800 CVE-2018-2814 CVE-2018-2815 CVE-2018-5390 CVE-2018-7550 CVE-2018-8897 CVE-2019-5953 SUSE-SU-2016:2592-1 SUSE-SU-2016:3269-1 SUSE-SU-2017:0555-1 SUSE-SU-2017:2300-1 SUSE-SU-2018:1202-1 SUSE-SU-2018:1266-1 SUSE-SU-2018:1661-1 SUSE-SU-2018:1690-1 SUSE-SU-2018:1692-1 SUSE-SU-2019:0956-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information bash-4.4-lp150.7 is installed OR bash-doc-4.4-lp150.7 is installed OR bash-lang-4.4-lp150.7 is installed OR libreadline7-7.0-lp150.7 is installed OR readline-doc-7.0-lp150.7 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information fish3-3.0.0-lp151.2 is installed OR fish3-devel-3.0.0-lp151.2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libraw-0.15.4-9 is installed OR libraw9-0.15.4-9 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libjson-c2-0.11-2 is installed OR libjson-c2-32bit-0.11-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_60-default-11-2 is installed OR kgraft-patch-3_12_74-60_64_60-xen-11-2 is installed OR kgraft-patch-SLE12-SP1_Update_21-11-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libmysqlclient18-10.0.27-12 is installed OR libmysqlclient18-32bit-10.0.27-12 is installed OR mariadb-10.0.27-12 is installed OR mariadb-client-10.0.27-12 is installed OR mariadb-errormessages-10.0.27-12 is installed OR mariadb-tools-10.0.27-12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information kernel-default-4.4.121-92.73 is installed OR kernel-default-base-4.4.121-92.73 is installed OR kernel-default-devel-4.4.121-92.73 is installed OR kernel-devel-4.4.121-92.73 is installed OR kernel-macros-4.4.121-92.73 is installed OR kernel-source-4.4.121-92.73 is installed OR kernel-syms-4.4.121-92.73 is installed OR kgraft-patch-4_4_121-92_73-default-1-3.3 is installed OR kgraft-patch-SLE12-SP2_Update_21-1-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-devel-52.9.0esr-109.38 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_120-92_70-default-3-2 is installed OR kgraft-patch-SLE12-SP2_Update_20-3-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information freeradius-server-3.0.14-1 is installed OR freeradius-server-doc-3.0.14-1 is installed OR freeradius-server-krb5-3.0.14-1 is installed OR freeradius-server-ldap-3.0.14-1 is installed OR freeradius-server-libs-3.0.14-1 is installed OR freeradius-server-mysql-3.0.14-1 is installed OR freeradius-server-perl-3.0.14-1 is installed OR freeradius-server-postgresql-3.0.14-1 is installed OR freeradius-server-python-3.0.14-1 is installed OR freeradius-server-sqlite-3.0.14-1 is installed OR freeradius-server-utils-3.0.14-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information MozillaFirefox-60.9.0-109.86 is installed OR MozillaFirefox-translations-common-60.9.0-109.86 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libjavascriptcoregtk-4_0-18-2.22.4-2.29 is installed OR libwebkit2gtk-4_0-37-2.22.4-2.29 is installed OR typelib-1_0-JavaScriptCore-4_0-2.22.4-2.29 is installed OR typelib-1_0-WebKit2-4_0-2.22.4-2.29 is installed OR webkit2gtk-4_0-injected-bundles-2.22.4-2.29 is installed OR webkit2gtk3-2.22.4-2.29 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information accountsservice-0.6.42-16.3 is installed OR accountsservice-lang-0.6.42-16.3 is installed OR libaccountsservice0-0.6.42-16.3 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-16.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information dnsmasq-2.71-13 is installed OR dnsmasq-utils-2.71-13 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information java-1_8_0-openjdk-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-demo-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-devel-1.8.0.171-27.19 is installed OR java-1_8_0-openjdk-headless-1.8.0.171-27.19 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information cups-1.7.5-20.26 is installed OR cups-client-1.7.5-20.26 is installed OR cups-libs-1.7.5-20.26 is installed OR cups-libs-32bit-1.7.5-20.26 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information perl-5.18.2-12.23 is installed OR perl-32bit-5.18.2-12.23 is installed OR perl-base-5.18.2-12.23 is installed OR perl-doc-5.18.2-12.23 is installed

BACK