OVAL Reference oval:org.opensuse.security:def:56671

Oval Definition:

oval:org.opensuse.security:def:56671

Revision Date:	2020-12-01	Version:	1
Title:	Security update for tiff (Moderate)
Description:	This update for tiff fixes the following issues: Security issues fixed: - CVE-2018-12900: Fixed heap-based buffer overflow in the cpSeparateBufToContigBuf (bsc#1099257). - CVE-2018-18661: Fixed NULL pointer dereference in the function LZWDecode in the file tif_lzw.c (bsc#1113672). - CVE-2018-18557: Fixed JBIG decode can lead to out-of-bounds write (bsc#1113094). Non-security issues fixed: - asan_build: build ASAN included - debug_build: build more suitable for debugging
Family:	unix	Class:	patch
Status:		Reference(s):	1010685 1012382 1019695 1019699 1020427 1021741 1022604 1025109 1025311 1028184 1028656 1030624 1031717 1032075 1034866 1034908 1035406 1035950 1036211 1037242 1037334 1037336 1039495 1042159 1042800 1042801 1043073 1043296 1045035 1046610 1046636 1047674 1048902 1049381 1054724 1055962 1056334 1057378 1057585 1060799 1062069 1063122 1064206 1068032 1073059 1073069 1075428 1076033 1077560 1083574 1083745 1083836 1084223 1084310 1084328 1084353 1084452 1084610 1084699 1084829 1084889 1084898 1084914 1084918 1084967 1085042 1085058 1085224 1085383 1085402 1085404 1085487 1085507 1085511 1085679 1085981 1086015 1086162 1086194 1086357 1086499 1086518 1086607 1087088 1087211 1087231 1087260 1087274 1087659 1087845 1087906 1087999 1088050 1088087 1088241 1088267 1088313 1088324 1088600 1088684 1088871 1099257 1111498 1113094 1113534 1113652 1113672 1116574 1117025 1117382 1117625 1117626 1117627 1117629 1117630 1118595 1118596 1120658 1122000 1122344 1123333 1123892 1125352 1139073 1141035 1153108 1154043 1155988 1156334 1164692 802154 860611 901748 953516 953519 953521 954200 954201 968849 981670 984751 985177 985348 988903 989523 993302 993313 994418 994605 CVE-2014-3566 CVE-2014-9756 CVE-2015-3223 CVE-2015-5330 CVE-2015-7805 CVE-2015-8075 CVE-2015-8076 CVE-2015-8077 CVE-2015-8078 CVE-2016-0772 CVE-2016-1000110 CVE-2016-1248 CVE-2016-2098 CVE-2016-5636 CVE-2016-5699 CVE-2016-6316 CVE-2016-6317 CVE-2016-6834 CVE-2016-6835 CVE-2016-9602 CVE-2016-9603 CVE-2017-10664 CVE-2017-10806 CVE-2017-10911 CVE-2017-11334 CVE-2017-11434 CVE-2017-12809 CVE-2017-13672 CVE-2017-14167 CVE-2017-15038 CVE-2017-15289 CVE-2017-18257 CVE-2017-5579 CVE-2017-5973 CVE-2017-5987 CVE-2017-6505 CVE-2017-7377 CVE-2017-7471 CVE-2017-7493 CVE-2017-7718 CVE-2017-7980 CVE-2017-8086 CVE-2017-8112 CVE-2017-8309 CVE-2017-8379 CVE-2017-8380 CVE-2017-9330 CVE-2017-9373 CVE-2017-9374 CVE-2017-9375 CVE-2017-9503 CVE-2018-0734 CVE-2018-1091 CVE-2018-12116 CVE-2018-12120 CVE-2018-12121 CVE-2018-12122 CVE-2018-12123 CVE-2018-12900 CVE-2018-13785 CVE-2018-15518 CVE-2018-18557 CVE-2018-18661 CVE-2018-19873 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3214 CVE-2018-5407 CVE-2018-7740 CVE-2018-8043 CVE-2018-8822 CVE-2019-10220 CVE-2019-11135 CVE-2019-11139 CVE-2019-15917 CVE-2019-6454 CVE-2020-1938 SUSE-SU-2015:2000-2 SUSE-SU-2016:1457-1 SUSE-SU-2016:2106-1 SUSE-SU-2016:2942-1 SUSE-SU-2017:2716-1 SUSE-SU-2017:2946-1 SUSE-SU-2018:1048-1 SUSE-SU-2018:3911-1 SUSE-SU-2018:3933-1 SUSE-SU-2018:4210-1 SUSE-SU-2019:0395-1 SUSE-SU-2019:0428-1 SUSE-SU-2019:2959-1 SUSE-SU-2020:0806-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND lftp-4.8.3-lp150.2 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libwireshark9-2.4.15-lp151.2.3 is installed OR libwiretap7-2.4.15-lp151.2.3 is installed OR libwscodecs1-2.4.15-lp151.2.3 is installed OR libwsutil8-2.4.15-lp151.2.3 is installed OR wireshark-2.4.15-lp151.2.3 is installed OR wireshark-devel-2.4.15-lp151.2.3 is installed OR wireshark-ui-qt-2.4.15-lp151.2.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libtiff5-4.0.9-44.27 is installed OR libtiff5-32bit-4.0.9-44.27 is installed OR tiff-4.0.9-44.27 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libsndfile-1.0.25-25 is installed OR libsndfile1-1.0.25-25 is installed OR libsndfile1-32bit-1.0.25-25 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information qemu-2.3.1-33.3 is installed OR qemu-block-curl-2.3.1-33.3 is installed OR qemu-block-rbd-2.3.1-33.3 is installed OR qemu-guest-agent-2.3.1-33.3 is installed OR qemu-ipxe-1.0.0-33.3 is installed OR qemu-kvm-2.3.1-33.3 is installed OR qemu-lang-2.3.1-33.3 is installed OR qemu-ppc-2.3.1-33.3 is installed OR qemu-s390-2.3.1-33.3 is installed OR qemu-seabios-1.8.1-33.3 is installed OR qemu-sgabios-8-33.3 is installed OR qemu-tools-2.3.1-33.3 is installed OR qemu-vgabios-1.8.1-33.3 is installed OR qemu-x86-2.3.1-33.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libldb1-1.1.26-10 is installed OR libldb1-32bit-1.1.26-10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information gstreamer-0_10-plugins-base-0.10.36-18.3 is installed OR gstreamer-0_10-plugins-base-32bit-0.10.36-18.3 is installed OR libgstapp-0_10-0-32bit-0.10.36-18.3 is installed OR libgstinterfaces-0_10-0-32bit-0.10.36-18.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information openslp-2.0.0-18.15 is installed OR openslp-32bit-2.0.0-18.15 is installed OR openslp-server-2.0.0-18.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information libvirt-2.0.0-27.42 is installed OR libvirt-client-2.0.0-27.42 is installed OR libvirt-daemon-2.0.0-27.42 is installed OR libvirt-daemon-config-network-2.0.0-27.42 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed OR libvirt-daemon-driver-network-2.0.0-27.42 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed OR libvirt-daemon-hooks-2.0.0-27.42 is installed OR libvirt-daemon-lxc-2.0.0-27.42 is installed OR libvirt-daemon-qemu-2.0.0-27.42 is installed OR libvirt-daemon-xen-2.0.0-27.42 is installed OR libvirt-doc-2.0.0-27.42 is installed OR libvirt-lock-sanlock-2.0.0-27.42 is installed OR libvirt-nss-2.0.0-27.42 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information ibus-chewing-1.4.14-4 is installed OR ibus-pinyin-1.5.0-11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information glib2-2.48.2-12.15 is installed OR glib2-lang-2.48.2-12.15 is installed OR glib2-tools-2.48.2-12.15 is installed OR libgio-2_0-0-2.48.2-12.15 is installed OR libgio-2_0-0-32bit-2.48.2-12.15 is installed OR libglib-2_0-0-2.48.2-12.15 is installed OR libglib-2_0-0-32bit-2.48.2-12.15 is installed OR libgmodule-2_0-0-2.48.2-12.15 is installed OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed OR libgobject-2_0-0-2.48.2-12.15 is installed OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed OR libgthread-2_0-0-2.48.2-12.15 is installed OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information perl-5.18.2-12.20 is installed OR perl-32bit-5.18.2-12.20 is installed OR perl-base-5.18.2-12.20 is installed OR perl-doc-5.18.2-12.20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information glibc-2.22-15 is installed OR glibc-32bit-2.22-15 is installed OR glibc-devel-2.22-15 is installed OR glibc-devel-32bit-2.22-15 is installed OR glibc-html-2.22-15 is installed OR glibc-i18ndata-2.22-15 is installed OR glibc-info-2.22-15 is installed OR glibc-locale-2.22-15 is installed OR glibc-locale-32bit-2.22-15 is installed OR glibc-profile-2.22-15 is installed OR glibc-profile-32bit-2.22-15 is installed OR nscd-2.22-15 is installed
Definition Synopsis
SUSE OpenStack Cloud 6 is installed AND Package Information ruby2.1-rubygem-actionmailer-4_2-4.2.9-3.3 is installed OR ruby2.1-rubygem-actionpack-4_2-4.2.9-7.3 is installed OR ruby2.1-rubygem-actionview-4_2-4.2.9-9.3 is installed OR ruby2.1-rubygem-activejob-4_2-4.2.9-3.3 is installed OR ruby2.1-rubygem-activemodel-4_2-4.2.9-6.3 is installed OR ruby2.1-rubygem-activerecord-4_2-4.2.9-6.3 is installed OR ruby2.1-rubygem-activesupport-4_2-4.2.9-7.3 is installed OR ruby2.1-rubygem-rails-4_2-4.2.9-3.3 is installed OR ruby2.1-rubygem-rails-html-sanitizer-1.0.3-8.3 is installed OR ruby2.1-rubygem-railties-4_2-4.2.9-3.3 is installed OR rubygem-actionmailer-4_2-4.2.9-3.3 is installed OR rubygem-actionpack-4_2-4.2.9-7.3 is installed OR rubygem-actionview-4_2-4.2.9-9.3 is installed OR rubygem-activejob-4_2-4.2.9-3.3 is installed OR rubygem-activemodel-4_2-4.2.9-6.3 is installed OR rubygem-activerecord-4_2-4.2.9-6.3 is installed OR rubygem-activesupport-4_2-4.2.9-7.3 is installed OR rubygem-rails-4_2-4.2.9-3.3 is installed OR rubygem-rails-html-sanitizer-1.0.3-8.3 is installed OR rubygem-railties-4_2-4.2.9-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.35-38.29 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.35-38.29 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information pam_radius-1.3.16-239.4 is installed OR pam_radius-32bit-1.3.16-239.4 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND python-Django1-1.11.20-3.6 is installed

BACK