Oval Definition:	oval:org.opensuse.security:def:56533
Revision Date: 2020-12-01 Version: 1 Title: Security update for ImageMagick (Moderate) Description: This update for ImageMagick fixes the following issues: These security issues were fixed: - CVE-2017-13758: Prevent heap-based buffer overflow in the TracePoint() function (bsc#1056277). - CVE-2017-10928: Prevent heap-based buffer over-read in the GetNextToken function that allowed remote attackers to obtain sensitive information from process memory or possibly have unspecified other impact via a crafted SVG document (bsc#1047356). - CVE-2018-9133: Long compute times in the tiff decoder have been fixed (bsc#1087820). - CVE-2018-11251: Heap-based buffer over-read in ReadSUNImage in coders/sun.c, which allows attackers to cause denial of service (bsc#1094237). - CVE-2017-18271: Infinite loop in the function ReadMIFFImage in coders/miff.c, which allows attackers to cause a denial of service (bsc#1094204). - CVE-2018-11655: Memory leak in the GetImagePixelCache in MagickCore/cache.c was fixed (bsc#1095730) - CVE-2018-10804: Memory leak in WriteTIFFImage in coders/tiff.c was fixed (bsc#1095813) - CVE-2018-10805: Fixed memory leaks in bgr.c, rgb.c, cmyk.c, gray.c, ycbcr.c (bsc#1095812) Family: unix Class: patch Status: Reference(s): 1000396 1001299 1008846 1034674 1034678 1044329 1047356 1048510 1056277 1065276 1066156 1067203 1068251 1070428 1071558 1072193 1074254 1075724 1076017 1076308 1077999 1083488 1085114 1085447 1085449 1086247 1087820 1087932 1093311 1094204 1094237 1095730 1095812 1095813 1116574 1151021 897422 929629 949520 952849 953110 954872 960305 964465 973786 990636 998309 CVE-2011-3602 CVE-2012-4502 CVE-2012-4503 CVE-2014-0021 CVE-2014-1829 CVE-2014-1830 CVE-2014-8146 CVE-2014-8147 CVE-2014-9494 CVE-2015-0862 CVE-2015-5313 CVE-2016-0634 CVE-2016-1567 CVE-2016-3076 CVE-2016-6293 CVE-2016-6662 CVE-2016-7543 CVE-2016-9190 CVE-2017-10928 CVE-2017-13166 CVE-2017-13758 CVE-2017-14952 CVE-2017-15422 CVE-2017-15908 CVE-2017-17484 CVE-2017-18271 CVE-2017-2810 CVE-2017-7867 CVE-2017-7868 CVE-2018-1000004 CVE-2018-1049 CVE-2018-1068 CVE-2018-10804 CVE-2018-10805 CVE-2018-11251 CVE-2018-11655 CVE-2018-13785 CVE-2018-1417 CVE-2018-2783 CVE-2018-2790 CVE-2018-2794 CVE-2018-2795 CVE-2018-2796 CVE-2018-2797 CVE-2018-2798 CVE-2018-2799 CVE-2018-2800 CVE-2018-2814 CVE-2018-2825 CVE-2018-2826 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3183 CVE-2018-3214 CVE-2018-7566 CVE-2018-9133 CVE-2019-14835 SUSE-SU-2016:0923-1 SUSE-SU-2016:2404-1 SUSE-SU-2017:2105-1 SUSE-SU-2018:0299-1 SUSE-SU-2018:0988-1 SUSE-SU-2018:1191-1 SUSE-SU-2018:1398-1 SUSE-SU-2018:1401-1 SUSE-SU-2018:1738-1 SUSE-SU-2018:1851-1 SUSE-SU-2018:4064-1 SUSE-SU-2019:2613-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND libHX28-3.22-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information gnutls-3.6.7-lp151.2.3 is installed OR gnutls-guile-3.6.7-lp151.2.3 is installed OR libgnutls-dane-devel-3.6.7-lp151.2.3 is installed OR libgnutls-dane0-3.6.7-lp151.2.3 is installed OR libgnutls-devel-3.6.7-lp151.2.3 is installed OR libgnutls-devel-32bit-3.6.7-lp151.2.3 is installed OR libgnutls30-3.6.7-lp151.2.3 is installed OR libgnutls30-32bit-3.6.7-lp151.2.3 is installed OR libgnutlsxx-devel-3.6.7-lp151.2.3 is installed OR libgnutlsxx28-3.6.7-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information ImageMagick-6.8.8.1-71.65 is installed OR libMagick++-6_Q16-3-6.8.8.1-71.65 is installed OR libMagickCore-6_Q16-1-6.8.8.1-71.65 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-71.65 is installed OR libMagickWand-6_Q16-1-6.8.8.1-71.65 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND python-requests-2.3.0-6.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-30.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND chrony-2.3-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND binutils-2.31-9.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND binutils-2.31-9.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_92-default-2-2 is installed OR kgraft-patch-SLE12-SP2_Update_24-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information guile-2.0.9-8 is installed OR guile-modules-2_0-2.0.9-8 is installed OR libguile-2_0-22-2.0.9-8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information java-1_8_0-openjdk-1.8.0.232-27.38 is installed OR java-1_8_0-openjdk-demo-1.8.0.232-27.38 is installed OR java-1_8_0-openjdk-devel-1.8.0.232-27.38 is installed OR java-1_8_0-openjdk-headless-1.8.0.232-27.38 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information guile-2.0.9-8 is installed OR guile-modules-2_0-2.0.9-8 is installed OR libguile-2_0-22-2.0.9-8 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information rabbitmq-server-3.4.4-2 is installed OR rabbitmq-server-plugins-3.4.4-2 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.25-30.39 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.25-30.39 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.25-30.39 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.25-30.39 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libQt5Concurrent5-5.6.2-6.22 is installed OR libQt5Core5-5.6.2-6.22 is installed OR libQt5DBus5-5.6.2-6.22 is installed OR libQt5Gui5-5.6.2-6.22 is installed OR libQt5Network5-5.6.2-6.22 is installed OR libQt5OpenGL5-5.6.2-6.22 is installed OR libQt5PrintSupport5-5.6.2-6.22 is installed OR libQt5Sql5-5.6.2-6.22 is installed OR libQt5Sql5-mysql-5.6.2-6.22 is installed OR libQt5Sql5-postgresql-5.6.2-6.22 is installed OR libQt5Sql5-sqlite-5.6.2-6.22 is installed OR libQt5Sql5-unixODBC-5.6.2-6.22 is installed OR libQt5Test5-5.6.2-6.22 is installed OR libQt5Widgets5-5.6.2-6.22 is installed OR libQt5Xml5-5.6.2-6.22 is installed OR libqt5-qtbase-5.6.2-6.22 is installed
BACK