Oval Definition:oval:org.opensuse.security:def:56465
Revision Date:2020-12-01Version:1
Title:Security update for openjpeg2 (Moderate)
Description:

This update for openjpeg2 fixes several issues.

These security issues were fixed:

- CVE-2016-10507: Integer overflow vulnerability in the bmp24toimage function allowed remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted bmp file (bsc#1056421). - CVE-2017-14039: A heap-based buffer overflow was discovered in the opj_t2_encode_packet function. The vulnerability caused an out-of-bounds write, which may have lead to remote denial of service or possibly unspecified other impact (bsc#1056622). - CVE-2017-14164: A size-validation issue was discovered in opj_j2k_write_sot. The vulnerability caused an out-of-bounds write, which may have lead to remote DoS or possibly remote code execution (bsc#1057511). - CVE-2017-14040: An invalid write access was discovered in bin/jp2/convert.c, triggering a crash in the tgatoimage function. The vulnerability may have lead to remote denial of service or possibly unspecified other impact (bsc#1056621). - CVE-2017-14041: A stack-based buffer overflow was discovered in the pgxtoimage function. The vulnerability caused an out-of-bounds write, which may have lead to remote denial of service or possibly remote code execution (bsc#1056562).
Family:unixClass:patch
Status:Reference(s):1002573
1007188
1017646
1027519
1031240
1034862
1046637
1047675
1048920
1049578
1051787
1051788
1052686
1056421
1056562
1056621
1056622
1057511
1066674
1068565
1071021
1076957
1082216
1082233
1082234
1083424
1086535
1090023
1090024
1090025
1090026
1090027
1090028
1090029
1090030
1090032
1090033
1091107
1091171
1094825
1096718
1098531
1100001
1102517
1103097
1103276
1104475
1105025
1105296
1106913
1107829
1108498
1110768
1111331
1111516
1111853
1113751
1113769
1114648
1114920
1115007
1115038
1116345
1116841
1118152
1118319
1119714
1119946
1120743
1120758
1121621
1122015
1123161
1124010
1124728
1124732
1124735
1126890
1128166
1131416
1131427
1132828
1133188
1160467
1160468
913058
939367
958791
CVE-2011-1521
CVE-2011-3389
CVE-2011-4944
CVE-2012-0845
CVE-2012-1150
CVE-2012-2141
CVE-2012-2150
CVE-2013-1752
CVE-2013-1753
CVE-2013-3571
CVE-2013-4238
CVE-2014-0019
CVE-2014-1912
CVE-2014-2284
CVE-2014-2285
CVE-2014-3565
CVE-2014-4650
CVE-2014-7185
CVE-2015-5621
CVE-2015-6496
CVE-2015-8540
CVE-2016-10087
CVE-2016-10507
CVE-2016-10708
CVE-2016-10741
CVE-2016-6321
CVE-2017-1000407
CVE-2017-10664
CVE-2017-10806
CVE-2017-11334
CVE-2017-11434
CVE-2017-12135
CVE-2017-12137
CVE-2017-14039
CVE-2017-14040
CVE-2017-14041
CVE-2017-14164
CVE-2017-16533
CVE-2017-7273
CVE-2017-7472
CVE-2018-12015
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2018-12327
CVE-2018-14633
CVE-2018-15572
CVE-2018-16884
CVE-2018-18281
CVE-2018-18386
CVE-2018-18690
CVE-2018-18710
CVE-2018-19407
CVE-2018-19824
CVE-2018-19985
CVE-2018-20169
CVE-2018-2790
CVE-2018-2794
CVE-2018-2795
CVE-2018-2796
CVE-2018-2797
CVE-2018-2798
CVE-2018-2799
CVE-2018-2800
CVE-2018-2814
CVE-2018-2815
CVE-2018-3646
CVE-2018-5391
CVE-2018-6797
CVE-2018-6798
CVE-2018-6913
CVE-2018-7170
CVE-2018-9516
CVE-2018-9568
CVE-2019-11091
CVE-2019-11486
CVE-2019-14896
CVE-2019-14897
CVE-2019-3459
CVE-2019-3460
CVE-2019-3882
CVE-2019-6974
CVE-2019-7221
CVE-2019-7222
CVE-2019-8564
CVE-2019-9213
CVE-2019-9503
SUSE-SU-2015:2384-1
SUSE-SU-2016:2896-1
SUSE-SU-2017:0950-1
SUSE-SU-2017:2319-1
SUSE-SU-2017:2649-1
SUSE-SU-2018:1692-1
SUSE-SU-2018:1972-1
SUSE-SU-2018:2410-1
SUSE-SU-2018:2530-1
SUSE-SU-2018:3342-1
SUSE-SU-2019:1289-1
SUSE-SU-2020:0204-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND dracut-044.1-lp150.13 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libu2f-host-1.1.6-lp151.2.3 is installed
  • OR libu2f-host-devel-1.1.6-lp151.2.3 is installed
  • OR libu2f-host-doc-1.1.6-lp151.2.3 is installed
  • OR libu2f-host0-1.1.6-lp151.2.3 is installed
  • OR u2f-host-1.1.6-lp151.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libopenjp2-7-2.1.0-4.6 is installed
  • OR openjpeg2-2.1.0-4.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libpython2_7-1_0-2.7.9-20 is installed
  • OR libpython2_7-1_0-32bit-2.7.9-20 is installed
  • OR python-base-2.7.9-20 is installed
  • OR python-base-32bit-2.7.9-20 is installed
  • OR python-xml-2.7.9-20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • ntp-4.2.8p12-64.8 is installed
  • OR ntp-doc-4.2.8p12-64.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libsnmp30-5.7.3-4 is installed
  • OR libsnmp30-32bit-5.7.3-4 is installed
  • OR net-snmp-5.7.3-4 is installed
  • OR perl-SNMP-5.7.3-4 is installed
  • OR snmp-mibs-5.7.3-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • dovecot22-2.2.31-19.17 is installed
  • OR dovecot22-backend-mysql-2.2.31-19.17 is installed
  • OR dovecot22-backend-pgsql-2.2.31-19.17 is installed
  • OR dovecot22-backend-sqlite-2.2.31-19.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND clamav-0.100.1-33.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • bash-4.3-82 is installed
  • OR bash-doc-4.3-82 is installed
  • OR libreadline6-6.3-82 is installed
  • OR libreadline6-32bit-6.3-82 is installed
  • OR readline-doc-6.3-82 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_162-94_69-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_21-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • SDL-1.2.15-15.11 is installed
  • OR libSDL-1_2-0-1.2.15-15.11 is installed
  • OR libSDL-1_2-0-32bit-1.2.15-15.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • bzip2-1.0.6-29 is installed
  • OR bzip2-doc-1.0.6-29 is installed
  • OR libbz2-1-1.0.6-29 is installed
  • OR libbz2-1-32bit-1.0.6-29 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND conntrack-tools-1.4.2-5 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • java-1_7_0-openjdk-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed
  • OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • icu-52.1-8.10 is installed
  • OR libicu-doc-52.1-8.10 is installed
  • OR libicu52_1-52.1-8.10 is installed
  • OR libicu52_1-32bit-52.1-8.10 is installed
  • OR libicu52_1-data-52.1-8.10 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • libdcerpc-binding0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libdcerpc-binding0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libdcerpc0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libdcerpc0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr-krb5pac0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr-krb5pac0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr-nbt0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr-nbt0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr-standard0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr-standard0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libndr0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libnetapi0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libnetapi0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-credentials0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-credentials0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-errors0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-errors0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-hostconfig0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-hostconfig0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-passdb0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-passdb0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-util0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamba-util0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamdb0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsamdb0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsmbclient0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsmbclient0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsmbconf0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsmbconf0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsmbldap0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libsmbldap0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libtevent-util0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libtevent-util0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libwbclient0-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR libwbclient0-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-client-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-client-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-doc-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-libs-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-libs-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-winbind-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
  • OR samba-winbind-32bit-4.6.16+git.186.c6d77b0d5a6-3.52 is installed
    • BACK