Oval Definition:oval:org.opensuse.security:def:56485
Revision Date:2020-12-01Version:1
Title:Security update for ImageMagick (Moderate)
Description:





This update for ImageMagick fixes the following issues:

Security issues fixed:

CVE-2017-15033: A denial of service attack (memory leak) was fixed in ReadYUVImage in coders/yuv.c [bsc#1061873] * CVE-2017-11446: An infinite loop in ReadPESImage was fixed. (bsc#1049379) * CVE-2017-12433: A memory leak in ReadPESImage in coders/pes.c was fixed. (bsc#1052545) * CVE-2017-12428: A memory leak in ReadWMFImage in coders/wmf.c was fixed. (bsc#1052249) * CVE-2017-12431: A use-after-free in ReadWMFImage was fixed. (bsc#1052253) * CVE-2017-11534: A memory leak in the lite_font_map() in coders/wmf.c was fixed. (bsc#1050135) * CVE-2017-13133: A memory exhaustion in load_level function in coders/xcf.c was fixed. (bsc#1055219) * CVE-2017-13139: A out-of-bounds read in the ReadOneMNGImage was fixed. (bsc#1055430)

This update also reverts an incorrect fix for CVE-2016-7530 [bsc#1054924].
Family:unixClass:patch
Status:Reference(s):1009280
1035204
1049379
1050082
1050135
1052249
1052253
1052545
1054924
1055219
1055430
1059777
1061066
1061076
1061077
1061080
1061081
1061082
1061084
1061086
1061087
1061873
1081741
1087018
1091396
1092885
1096223
1096405
1096406
1096407
1096408
1098735
1103411
1105010
1106163
1106171
1106172
1106173
1106195
1107410
1107411
1107412
1107413
1107420
1107421
1107422
1107423
1107426
1107581
1108027
1109105
1136976
1154162
964336
971770
972124
981143
982273
983394
986362
CVE-2008-1420
CVE-2009-3379
CVE-2012-0444
CVE-2012-2738
CVE-2012-3458
CVE-2015-1419
CVE-2016-4997
CVE-2016-5542
CVE-2016-5554
CVE-2016-5556
CVE-2016-5568
CVE-2016-5573
CVE-2016-5597
CVE-2016-7530
CVE-2017-11446
CVE-2017-11534
CVE-2017-12428
CVE-2017-12431
CVE-2017-12433
CVE-2017-13133
CVE-2017-13139
CVE-2017-15033
CVE-2017-15588
CVE-2017-15589
CVE-2017-15590
CVE-2017-15591
CVE-2017-15592
CVE-2017-15593
CVE-2017-15594
CVE-2017-15595
CVE-2017-18248
CVE-2017-5436
CVE-2017-5526
CVE-2018-1050
CVE-2018-10858
CVE-2018-11806
CVE-2018-12617
CVE-2018-15473
CVE-2018-15908
CVE-2018-15909
CVE-2018-15910
CVE-2018-15911
CVE-2018-15919
CVE-2018-16509
CVE-2018-16510
CVE-2018-16511
CVE-2018-16513
CVE-2018-16539
CVE-2018-16540
CVE-2018-16541
CVE-2018-16542
CVE-2018-16543
CVE-2018-16585
CVE-2018-16802
CVE-2018-17183
CVE-2018-3639
CVE-2018-4180
CVE-2018-4181
CVE-2018-4182
CVE-2018-4183
CVE-2019-2974
CVE-2019-8457
SUSE-SU-2016:1709-1
SUSE-SU-2016:3078-1
SUSE-SU-2017:1149-1
SUSE-SU-2017:2873-1
SUSE-SU-2017:2949-1
SUSE-SU-2018:2162-1
SUSE-SU-2018:2339-1
SUSE-SU-2018:2973-1
SUSE-SU-2018:2975-1
SUSE-SU-2018:3776-1
SUSE-SU-2019:1601-1
SUSE-SU-2020:0050-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • glib2-lang-2.54.3-lp150.2 is installed
  • OR glib2-tools-2.54.3-lp150.2 is installed
  • OR libgio-2_0-0-2.54.3-lp150.2 is installed
  • OR libglib-2_0-0-2.54.3-lp150.2 is installed
  • OR libglib-2_0-0-32bit-2.54.3-lp150.2 is installed
  • OR libgmodule-2_0-0-2.54.3-lp150.2 is installed
  • OR libgobject-2_0-0-2.54.3-lp150.2 is installed
  • OR libgthread-2_0-0-2.54.3-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libipa_hbac-devel-1.16.1-lp151.7.3 is installed
  • OR libipa_hbac0-1.16.1-lp151.7.3 is installed
  • OR libnfsidmap-sss-1.16.1-lp151.7.3 is installed
  • OR libsss_certmap-devel-1.16.1-lp151.7.3 is installed
  • OR libsss_certmap0-1.16.1-lp151.7.3 is installed
  • OR libsss_idmap-devel-1.16.1-lp151.7.3 is installed
  • OR libsss_idmap0-1.16.1-lp151.7.3 is installed
  • OR libsss_nss_idmap-devel-1.16.1-lp151.7.3 is installed
  • OR libsss_nss_idmap0-1.16.1-lp151.7.3 is installed
  • OR libsss_simpleifp-devel-1.16.1-lp151.7.3 is installed
  • OR libsss_simpleifp0-1.16.1-lp151.7.3 is installed
  • OR python3-ipa_hbac-1.16.1-lp151.7.3 is installed
  • OR python3-sss-murmur-1.16.1-lp151.7.3 is installed
  • OR python3-sss_nss_idmap-1.16.1-lp151.7.3 is installed
  • OR python3-sssd-config-1.16.1-lp151.7.3 is installed
  • OR sssd-1.16.1-lp151.7.3 is installed
  • OR sssd-32bit-1.16.1-lp151.7.3 is installed
  • OR sssd-ad-1.16.1-lp151.7.3 is installed
  • OR sssd-dbus-1.16.1-lp151.7.3 is installed
  • OR sssd-ipa-1.16.1-lp151.7.3 is installed
  • OR sssd-krb5-1.16.1-lp151.7.3 is installed
  • OR sssd-krb5-common-1.16.1-lp151.7.3 is installed
  • OR sssd-ldap-1.16.1-lp151.7.3 is installed
  • OR sssd-proxy-1.16.1-lp151.7.3 is installed
  • OR sssd-tools-1.16.1-lp151.7.3 is installed
  • OR sssd-wbclient-1.16.1-lp151.7.3 is installed
  • OR sssd-wbclient-devel-1.16.1-lp151.7.3 is installed
  • OR sssd-winbind-idmap-1.16.1-lp151.7.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-71.12 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-71.12 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-71.12 is installed
  • OR libMagickCore-6_Q16-1-32bit-6.8.8.1-71.12 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-71.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libvorbis-doc-1.3.3-8 is installed
  • OR libvorbis0-1.3.3-8 is installed
  • OR libvorbis0-32bit-1.3.3-8 is installed
  • OR libvorbisenc2-1.3.3-8 is installed
  • OR libvorbisenc2-32bit-1.3.3-8 is installed
  • OR libvorbisfile3-1.3.3-8 is installed
  • OR libvorbisfile3-32bit-1.3.3-8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • openssh-6.6p1-54.18 is installed
  • OR openssh-askpass-gnome-6.6p1-54.18 is installed
  • OR openssh-fips-6.6p1-54.18 is installed
  • OR openssh-helpers-6.6p1-54.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libvte9-0.28.2-19 is installed
  • OR python-vte-0.28.2-19 is installed
  • OR vte2-lang-0.28.2-19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND ucode-intel-20180425-13.20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-devel-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.25-38.23 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.25-38.23 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_114-92_67-default-5-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_19-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • curl-7.37.0-36 is installed
  • OR libcurl4-7.37.0-36 is installed
  • OR libcurl4-32bit-7.37.0-36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • cups-1.7.5-20.26 is installed
  • OR cups-client-1.7.5-20.26 is installed
  • OR cups-libs-1.7.5-20.26 is installed
  • OR cups-libs-32bit-1.7.5-20.26 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • LibVNCServer-0.9.9-17.19 is installed
  • OR libvncclient0-0.9.9-17.19 is installed
  • OR libvncserver0-0.9.9-17.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND davfs2-1.5.2-2 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND python-Beaker-1.6.4-0.7 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • libdcerpc-atsvc0-4.2.4-28.29 is installed
  • OR samba-4.2.4-28.29 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • libXvnc1-1.6.0-18.28 is installed
  • OR tigervnc-1.6.0-18.28 is installed
  • OR xorg-x11-Xvnc-1.6.0-18.28 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • dnsmasq-2.78-18.12 is installed
  • OR dnsmasq-utils-2.78-18.12 is installed
    • BACK