Oval Definition:oval:org.opensuse.security:def:56624
Revision Date:2020-12-01Version:1
Title:Security update for libXfont (Moderate)
Description:

This update for libXfont fixes several issues.

These security issues were fixed:

- CVE-2017-13720: Improper check for end of string in PatterMatch caused invalid reads (bsc#1054285) - CVE-2017-13722: Malformed PCF file could have caused DoS or leak information (bsc#1049692) - Prevent the X server from accessing arbitrary files as root. It is not possible to leak information, but special files can be touched allowing for causing side effects (bsc#1050459)
Family:unixClass:patch
Status:Reference(s):1017902
1021669
1049692
1050459
1054285
1057974
1065641
1068588
1071224
1071311
1075801
1077925
1079798
1079799
1079800
1079801
1087082
1087083
1089343
1104134
1107832
1108963
1110233
1119376
1129071
1130972
1132663
1133037
1134399
1138744
1139358
1140652
1140945
1141401
1141402
1141452
1141453
1141454
1141619
1142023
1142098
1142254
1143045
1143189
1143191
1143194
1143273
1144257
1144273
1144288
1150011
1158675
1165402
1170771
1172175
1172176
967087
979475
982575
982745
983249
988591
990419
993819
994749
994844
995075
995324
995359
995377
998190
999665
999666
999668
CVE-2013-0175
CVE-2013-2062
CVE-2016-10109
CVE-2016-1523
CVE-2016-2177
CVE-2016-2178
CVE-2016-2179
CVE-2016-2180
CVE-2016-2181
CVE-2016-2182
CVE-2016-2183
CVE-2016-6302
CVE-2016-6303
CVE-2016-6304
CVE-2016-6306
CVE-2017-13720
CVE-2017-13722
CVE-2017-16227
CVE-2017-18078
CVE-2017-5495
CVE-2018-14633
CVE-2018-14634
CVE-2018-17182
CVE-2018-20060
CVE-2018-20855
CVE-2018-3639
CVE-2018-3640
CVE-2018-3646
CVE-2018-5378
CVE-2018-5379
CVE-2018-5380
CVE-2018-5381
CVE-2019-1010006
CVE-2019-11236
CVE-2019-1125
CVE-2019-11459
CVE-2019-11810
CVE-2019-13057
CVE-2019-13565
CVE-2019-13631
CVE-2019-13648
CVE-2019-14283
CVE-2019-14284
CVE-2019-14822
CVE-2019-16770
CVE-2019-9740
CVE-2020-11076
CVE-2020-11077
CVE-2020-12243
CVE-2020-5247
SUSE-SU-2016:0554-1
SUSE-SU-2016:2394-1
SUSE-SU-2017:0286-1
SUSE-SU-2018:0334-1
SUSE-SU-2018:0455-1
SUSE-SU-2018:0546-1
SUSE-SU-2018:2331-1
SUSE-SU-2019:2080-1
SUSE-SU-2019:2262-1
SUSE-SU-2019:2389-1
SUSE-SU-2019:2399-1
SUSE-SU-2020:1210-1
SUSE-SU-2020:2060-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 6-LTSS
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • ghostscript-9.23-lp150.1 is installed
  • OR ghostscript-x11-9.23-lp150.1 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • MozillaThunderbird-60.7.2-lp151.2.7 is installed
  • OR MozillaThunderbird-buildsymbols-60.7.2-lp151.2.7 is installed
  • OR MozillaThunderbird-translations-common-60.7.2-lp151.2.7 is installed
  • OR MozillaThunderbird-translations-other-60.7.2-lp151.2.7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • libXfont-1.5.1-11.3 is installed
  • OR libXfont1-1.5.1-11.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • libopenssl1_0_0-1.0.1i-52 is installed
  • OR libopenssl1_0_0-32bit-1.0.1i-52 is installed
  • OR libopenssl1_0_0-hmac-1.0.1i-52 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.1i-52 is installed
  • OR openssl-1.0.1i-52 is installed
  • OR openssl-doc-1.0.1i-52 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_66-default-9-2 is installed
  • OR kgraft-patch-3_12_74-60_64_66-xen-9-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_23-9-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libXp6-1.0.2-3 is installed
  • OR libXp6-32bit-1.0.2-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • qemu-2.6.2-41.46 is installed
  • OR qemu-block-curl-2.6.2-41.46 is installed
  • OR qemu-block-rbd-2.6.2-41.46 is installed
  • OR qemu-block-ssh-2.6.2-41.46 is installed
  • OR qemu-guest-agent-2.6.2-41.46 is installed
  • OR qemu-ipxe-1.0.0-41.46 is installed
  • OR qemu-kvm-2.6.2-41.46 is installed
  • OR qemu-lang-2.6.2-41.46 is installed
  • OR qemu-seabios-1.9.1-41.46 is installed
  • OR qemu-sgabios-8-41.46 is installed
  • OR qemu-tools-2.6.2-41.46 is installed
  • OR qemu-vgabios-1.9.1-41.46 is installed
  • OR qemu-x86-2.6.2-41.46 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • ghostscript-9.25-23.13 is installed
  • OR ghostscript-x11-9.25-23.13 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_74-92_38-default-9-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_13-9-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND dosfstools-3.0.26-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libXvnc1-1.6.0-18.28 is installed
  • OR tigervnc-1.6.0-18.28 is installed
  • OR xorg-x11-Xvnc-1.6.0-18.28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_100-default-5-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_27-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • colord-gtk-lang-0.1.26-6 is installed
  • OR libcolord-gtk1-0.1.26-6 is installed
  • OR libcolord2-1.3.3-12 is installed
  • OR libcolord2-32bit-1.3.3-12 is installed
  • OR libcolorhug2-1.3.3-12 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND ruby2.1-rubygem-multi_xml-0.5.5-1 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6-LTSS is installed
  • AND Package Information
  • ruby2.1-rubygem-puma-2.16.0-4.3 is installed
  • OR rubygem-puma-2.16.0-4.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND ucode-intel-20180807-13.29 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • MozillaFirefox-60.9.0-109.86 is installed
  • OR MozillaFirefox-translations-common-60.9.0-109.86 is installed
    • BACK