OVAL Reference oval:org.opensuse.security:def:56481

Oval Definition:

oval:org.opensuse.security:def:56481

Revision Date:	2020-12-01	Version:	1
Title:	Security update for libwpd (Important)
Description:	This update for libwpd fixes the following issues: Security issue fixed: - CVE-2017-14226: WP1StylesListener.cpp, WP5StylesListener.cpp, and WP42StylesListener.cpp in libwpd 0.10.1 mishandle iterators, which allows remote attackers to cause a denial of service (heap-based buffer over-read in the WPXTableList class in WPXTable.cpp). This vulnerability can be triggered in LibreOffice before 5.3.7. It may lead to suffering a remote attack against a LibreOffice application. (bnc#1058025) Bugfixes: - Fix various crashes, leaks and hangs when reading damaged files found by oss-fuzz. - Fix crash when NULL is passed as input stream. - Use symbol visibility on Linux. The library only exports public functions now. - Avoid infinite loop. (libwpd#3) - Remove bashism. (libwpd#5) - Fix various crashes and hangs when reading broken files found with the help of american-fuzzy-lop. - Make --help output of all command line tools more help2man-friendly. - Miscellaneous fixes and cleanups. - Generate manpages for the libwpd-tools
Family:	unix	Class:	patch
Status:		Reference(s):	1006984 1006989 1012964 1020940 1022917 1022918 1022919 1035686 1037811 1054849 1058025 1061041 1094301 1097560 1097824 1101776 1101777 1101786 1101788 1101791 1101794 1101800 1101802 1101804 1101810 1103411 1103809 1103810 1104076 1106514 1112039 1133375 1160968 1162972 905870 905871 905872 922220 922221 922222 922223 927637 947165 954018 954405 956408 956409 956411 956592 956832 977043 CVE-2011-1145 CVE-2014-0004 CVE-2014-3555 CVE-2014-6414 CVE-2014-7821 CVE-2014-8153 CVE-2014-8767 CVE-2014-8768 CVE-2014-8769 CVE-2015-0261 CVE-2015-2153 CVE-2015-2154 CVE-2015-2155 CVE-2015-3138 CVE-2015-3259 CVE-2015-4106 CVE-2015-5154 CVE-2015-5198 CVE-2015-5199 CVE-2015-5200 CVE-2015-5239 CVE-2015-5307 CVE-2015-6815 CVE-2015-7311 CVE-2015-7504 CVE-2015-7835 CVE-2015-8104 CVE-2015-8339 CVE-2015-8340 CVE-2015-8341 CVE-2015-8345 CVE-2016-10195 CVE-2016-10196 CVE-2016-10197 CVE-2016-7922 CVE-2016-7923 CVE-2016-7924 CVE-2016-7925 CVE-2016-7926 CVE-2016-7927 CVE-2016-7928 CVE-2016-7929 CVE-2016-7930 CVE-2016-7931 CVE-2016-7932 CVE-2016-7933 CVE-2016-7934 CVE-2016-7935 CVE-2016-7936 CVE-2016-7937 CVE-2016-7938 CVE-2016-7939 CVE-2016-7940 CVE-2016-7973 CVE-2016-7974 CVE-2016-7975 CVE-2016-7983 CVE-2016-7984 CVE-2016-7985 CVE-2016-7986 CVE-2016-7992 CVE-2016-7993 CVE-2016-8574 CVE-2016-8575 CVE-2016-9079 CVE-2017-14226 CVE-2017-14867 CVE-2017-5202 CVE-2017-5203 CVE-2017-5204 CVE-2017-5205 CVE-2017-5341 CVE-2017-5342 CVE-2017-5482 CVE-2017-5483 CVE-2017-5484 CVE-2017-5485 CVE-2017-5486 CVE-2018-10858 CVE-2018-11354 CVE-2018-11355 CVE-2018-11356 CVE-2018-11357 CVE-2018-11358 CVE-2018-11359 CVE-2018-11360 CVE-2018-11361 CVE-2018-11362 CVE-2018-12470 CVE-2018-12471 CVE-2018-12472 CVE-2018-14339 CVE-2018-14340 CVE-2018-14341 CVE-2018-14342 CVE-2018-14343 CVE-2018-14344 CVE-2018-14367 CVE-2018-14368 CVE-2018-14369 CVE-2018-14370 CVE-2018-16056 CVE-2018-16057 CVE-2018-16058 CVE-2018-18386 CVE-2019-9928 CVE-2020-2583 CVE-2020-2593 CVE-2020-2604 CVE-2020-2659 SUSE-SU-2015:2324-1 SUSE-SU-2016:3048-1 SUSE-SU-2017:1110-1 SUSE-SU-2017:2747-1 SUSE-SU-2017:2931-1 SUSE-SU-2018:0200-1 SUSE-SU-2018:2320-1 SUSE-SU-2018:2891-1 SUSE-SU-2018:2898-1 SUSE-SU-2019:1509-1 SUSE-SU-2020:0456-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information gdm-3.26.2.1-lp150.10 is installed OR gdm-lang-3.26.2.1-lp150.10 is installed OR gdmflexiserver-3.26.2.1-lp150.10 is installed OR libgdm1-3.26.2.1-lp150.10 is installed OR typelib-1_0-Gdm-1_0-3.26.2.1-lp150.10 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information kernel-debug-4.12.14-lp151.28.7 is installed OR kernel-debug-base-4.12.14-lp151.28.7 is installed OR kernel-debug-devel-4.12.14-lp151.28.7 is installed OR kernel-default-4.12.14-lp151.28.7 is installed OR kernel-default-base-4.12.14-lp151.28.7 is installed OR kernel-default-devel-4.12.14-lp151.28.7 is installed OR kernel-devel-4.12.14-lp151.28.7 is installed OR kernel-docs-4.12.14-lp151.28.7 is installed OR kernel-docs-html-4.12.14-lp151.28.7 is installed OR kernel-kvmsmall-4.12.14-lp151.28.7 is installed OR kernel-kvmsmall-base-4.12.14-lp151.28.7 is installed OR kernel-kvmsmall-devel-4.12.14-lp151.28.7 is installed OR kernel-macros-4.12.14-lp151.28.7 is installed OR kernel-obs-build-4.12.14-lp151.28.7 is installed OR kernel-obs-qa-4.12.14-lp151.28.7 is installed OR kernel-source-4.12.14-lp151.28.7 is installed OR kernel-source-vanilla-4.12.14-lp151.28.7 is installed OR kernel-syms-4.12.14-lp151.28.7 is installed OR kernel-vanilla-4.12.14-lp151.28.7 is installed OR kernel-vanilla-base-4.12.14-lp151.28.7 is installed OR kernel-vanilla-devel-4.12.14-lp151.28.7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libwpd-0.10.2-2.4 is installed OR libwpd-0_10-10-0.10.2-2.4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libudisks2-0-2.1.3-1 is installed OR udisks2-2.1.3-1 is installed OR udisks2-lang-2.1.3-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_66-default-10-2 is installed OR kgraft-patch-3_12_74-60_64_66-xen-10-2 is installed OR kgraft-patch-SLE12-SP1_Update_23-10-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND libvdpau1-1.1.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information glibc-2.22-62.13 is installed OR glibc-32bit-2.22-62.13 is installed OR glibc-devel-2.22-62.13 is installed OR glibc-devel-32bit-2.22-62.13 is installed OR glibc-html-2.22-62.13 is installed OR glibc-i18ndata-2.22-62.13 is installed OR glibc-info-2.22-62.13 is installed OR glibc-locale-2.22-62.13 is installed OR glibc-locale-32bit-2.22-62.13 is installed OR glibc-profile-2.22-62.13 is installed OR glibc-profile-32bit-2.22-62.13 is installed OR nscd-2.22-62.13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_7_0-openjdk-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-demo-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-devel-1.7.0.181-43.15 is installed OR java-1_7_0-openjdk-headless-1.7.0.181-43.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_67-default-5-2 is installed OR kgraft-patch-SLE12-SP2_Update_19-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND ctags-5.8-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libjpeg-turbo-1.5.3-31.19 is installed OR libjpeg62-62.2.0-31.19 is installed OR libjpeg62-32bit-62.2.0-31.19 is installed OR libjpeg62-turbo-1.5.3-31.19 is installed OR libjpeg8-8.1.2-31.19 is installed OR libjpeg8-32bit-8.1.2-31.19 is installed OR libturbojpeg0-8.1.2-31.19 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information pam_radius-1.3.16-239.4 is installed OR pam_radius-32bit-1.3.16-239.4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information cups-pk-helper-0.2.5-5 is installed OR cups-pk-helper-lang-0.2.5-5 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information openstack-neutron-7.0.4~a0~dev18-1 is installed OR openstack-neutron-dhcp-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-ha-tool-7.0.4~a0~dev18-1 is installed OR openstack-neutron-l3-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-linuxbridge-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-metadata-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-metering-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-mlnx-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-nvsd-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-openvswitch-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-plugin-cisco-7.0.2~a0~dev63-1 is installed OR openstack-neutron-restproxy-agent-7.0.4~a0~dev18-1 is installed OR openstack-neutron-server-7.0.4~a0~dev18-1 is installed OR python-neutron-7.0.4~a0~dev18-1 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information libdcerpc-binding0-4.4.2-38.20 is installed OR libdcerpc-binding0-32bit-4.4.2-38.20 is installed OR libdcerpc0-4.4.2-38.20 is installed OR libdcerpc0-32bit-4.4.2-38.20 is installed OR libndr-krb5pac0-4.4.2-38.20 is installed OR libndr-krb5pac0-32bit-4.4.2-38.20 is installed OR libndr-nbt0-4.4.2-38.20 is installed OR libndr-nbt0-32bit-4.4.2-38.20 is installed OR libndr-standard0-4.4.2-38.20 is installed OR libndr-standard0-32bit-4.4.2-38.20 is installed OR libndr0-4.4.2-38.20 is installed OR libndr0-32bit-4.4.2-38.20 is installed OR libnetapi0-4.4.2-38.20 is installed OR libnetapi0-32bit-4.4.2-38.20 is installed OR libsamba-credentials0-4.4.2-38.20 is installed OR libsamba-credentials0-32bit-4.4.2-38.20 is installed OR libsamba-errors0-4.4.2-38.20 is installed OR libsamba-errors0-32bit-4.4.2-38.20 is installed OR libsamba-hostconfig0-4.4.2-38.20 is installed OR libsamba-hostconfig0-32bit-4.4.2-38.20 is installed OR libsamba-passdb0-4.4.2-38.20 is installed OR libsamba-passdb0-32bit-4.4.2-38.20 is installed OR libsamba-util0-4.4.2-38.20 is installed OR libsamba-util0-32bit-4.4.2-38.20 is installed OR libsamdb0-4.4.2-38.20 is installed OR libsamdb0-32bit-4.4.2-38.20 is installed OR libsmbclient0-4.4.2-38.20 is installed OR libsmbclient0-32bit-4.4.2-38.20 is installed OR libsmbconf0-4.4.2-38.20 is installed OR libsmbconf0-32bit-4.4.2-38.20 is installed OR libsmbldap0-4.4.2-38.20 is installed OR libsmbldap0-32bit-4.4.2-38.20 is installed OR libtevent-util0-4.4.2-38.20 is installed OR libtevent-util0-32bit-4.4.2-38.20 is installed OR libwbclient0-4.4.2-38.20 is installed OR libwbclient0-32bit-4.4.2-38.20 is installed OR samba-4.4.2-38.20 is installed OR samba-client-4.4.2-38.20 is installed OR samba-client-32bit-4.4.2-38.20 is installed OR samba-doc-4.4.2-38.20 is installed OR samba-libs-4.4.2-38.20 is installed OR samba-libs-32bit-4.4.2-38.20 is installed OR samba-winbind-4.4.2-38.20 is installed OR samba-winbind-32bit-4.4.2-38.20 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information gvim-7.4.326-17.6 is installed OR vim-7.4.326-17.6 is installed OR vim-data-7.4.326-17.6 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information MozillaFirefox-68.5.0-109.106 is installed OR MozillaFirefox-translations-common-68.5.0-109.106 is installed

BACK