Oval Definition:	oval:org.opensuse.security:def:56679
Revision Date: 2020-12-01 Version: 1 Title: Security update for ghostscript (Important) Description: This update for ghostscript to version 9.26 fixes the following issues: Security issues fixed: - CVE-2018-19475: Fixed bypass of an intended access restriction in psi/zdevice2.c (bsc#1117327) - CVE-2018-19476: Fixed bypass of an intended access restriction in psi/zicc.c (bsc#1117313) - CVE-2018-19477: Fixed bypass of an intended access restriction in psi/zfjbig2.c (bsc#1117274) - CVE-2018-19409: Check if another device is used correctly in LockSafetyParams (bsc#1117022) - CVE-2018-18284: Fixed potential sandbox escape through 1Policy operator (bsc#1112229) - CVE-2018-18073: Fixed leaks through operator in saved execution stacks (bsc#1111480) - CVE-2018-17961: Fixed a -dSAFER sandbox escape by bypassing executeonly (bsc#1111479) - CVE-2018-17183: Fixed a potential code injection by specially crafted PostScript files (bsc#1109105) Version update to 9.26 (bsc#1117331): - Security issues have been the primary focus - Minor bug fixes and improvements - For release summary see: http://www.ghostscript.com/doc/9.26/News.htm Family: unix Class: patch Status: Reference(s): 1001459 1002998 1012985 1023287 1027149 1028217 1030531 1030552 1031515 1033960 1034405 1035531 1035738 1037182 1037183 1037994 1038544 1038564 1038879 1038883 1038981 1038982 1039348 1039354 1039456 1039721 1039864 1039882 1039883 1039885 1040069 1041160 1041429 1041431 1042696 1042832 1042863 1044125 1045327 1045487 1045922 1046107 1047356 1048275 1048788 1049645 1049882 1053148 1053152 1053317 1056588 1056982 1057179 1058410 1058507 1058524 1058635 1059863 1062471 1062520 1063667 1063671 1064388 1064392 1066471 1066472 1074117 1076390 1077358 1082810 1084604 1086773 1086782 1087027 1087033 1087037 1087039 1087825 1089781 1099510 1101288 1109105 1111479 1111480 1112229 1113231 1116717 1117022 1117274 1117275 1117313 1117327 1117331 1119493 1119947 1120932 1123156 1141322 1144504 1149458 1151839 1158527 1159819 856774 860250 863764 878240 922855 922871 925502 929900 942801 944787 948790 948791 948976 955131 982385 982386 986924 986971 993099 994364 995352 CVE-2006-4197 CVE-2015-2775 CVE-2015-4491 CVE-2015-5260 CVE-2015-5261 CVE-2015-7673 CVE-2015-7674 CVE-2016-0749 CVE-2016-2150 CVE-2016-5746 CVE-2016-6893 CVE-2016-7945 CVE-2016-7946 CVE-2017-1000363 CVE-2017-1000365 CVE-2017-1000380 CVE-2017-1000476 CVE-2017-10661 CVE-2017-10928 CVE-2017-11176 CVE-2017-11450 CVE-2017-12153 CVE-2017-12154 CVE-2017-12762 CVE-2017-13080 CVE-2017-13672 CVE-2017-13673 CVE-2017-14051 CVE-2017-14106 CVE-2017-14140 CVE-2017-14325 CVE-2017-15265 CVE-2017-15274 CVE-2017-15649 CVE-2017-17887 CVE-2017-18250 CVE-2017-18251 CVE-2017-18252 CVE-2017-18254 CVE-2017-7482 CVE-2017-7487 CVE-2017-7518 CVE-2017-7541 CVE-2017-7542 CVE-2017-7889 CVE-2017-8831 CVE-2017-8890 CVE-2017-8924 CVE-2017-8925 CVE-2017-9074 CVE-2017-9075 CVE-2017-9076 CVE-2017-9077 CVE-2017-9242 CVE-2018-0618 CVE-2018-10177 CVE-2018-13796 CVE-2018-16872 CVE-2018-16884 CVE-2018-17183 CVE-2018-17961 CVE-2018-18073 CVE-2018-18284 CVE-2018-19364 CVE-2018-19409 CVE-2018-19475 CVE-2018-19476 CVE-2018-19477 CVE-2018-19489 CVE-2018-2579 CVE-2018-2582 CVE-2018-2588 CVE-2018-2599 CVE-2018-2602 CVE-2018-2603 CVE-2018-2618 CVE-2018-2633 CVE-2018-2634 CVE-2018-2637 CVE-2018-2638 CVE-2018-2639 CVE-2018-2641 CVE-2018-2663 CVE-2018-2677 CVE-2018-2678 CVE-2018-5950 CVE-2018-7858 CVE-2018-8960 CVE-2018-9018 CVE-2018-9135 CVE-2019-11745 CVE-2019-12625 CVE-2019-12900 CVE-2019-17006 CVE-2019-3498 CVE-2019-6778 SUSE-SU-2015:2195-2 SUSE-SU-2016:1559-1 SUSE-SU-2016:2189-1 SUSE-SU-2016:3047-1 SUSE-SU-2017:2908-1 SUSE-SU-2017:3131-1 SUSE-SU-2018:0665-1 SUSE-SU-2018:1178-1 SUSE-SU-2018:4090-1 SUSE-SU-2018:4296-1 SUSE-SU-2019:0356-1 SUSE-SU-2019:0483-1 SUSE-SU-2019:0489-1 SUSE-SU-2019:3066-1 SUSE-SU-2020:0088-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND libSDL2-2_0-0-2.0.8-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libqb-1.0.3+20190326.a521604-lp151.2.3 is installed OR libqb-devel-1.0.3+20190326.a521604-lp151.2.3 is installed OR libqb-devel-32bit-1.0.3+20190326.a521604-lp151.2.3 is installed OR libqb-tests-1.0.3+20190326.a521604-lp151.2.3 is installed OR libqb-tools-1.0.3+20190326.a521604-lp151.2.3 is installed OR libqb20-1.0.3+20190326.a521604-lp151.2.3 is installed OR libqb20-32bit-1.0.3+20190326.a521604-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information ghostscript-9.26-23.16 is installed OR ghostscript-x11-9.26-23.16 is installed OR libspectre-0.2.7-12.4 is installed OR libspectre1-0.2.7-12.4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information gdk-pixbuf-2.30.6-7 is installed OR gdk-pixbuf-lang-2.30.6-7 is installed OR gdk-pixbuf-query-loaders-2.30.6-7 is installed OR gdk-pixbuf-query-loaders-32bit-2.30.6-7 is installed OR libgdk_pixbuf-2_0-0-2.30.6-7 is installed OR libgdk_pixbuf-2_0-0-32bit-2.30.6-7 is installed OR typelib-1_0-GdkPixbuf-2_0-2.30.6-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_69-60_64_29-default-9-2 is installed OR kgraft-patch-3_12_69-60_64_29-xen-9-2 is installed OR kgraft-patch-SLE12-SP1_Update_12-9-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND libmusicbrainz4-2.1.5-27 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information kernel-firmware-20170530-21.22 is installed OR ucode-amd-20170530-21.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information qemu-2.6.2-41.43 is installed OR qemu-block-curl-2.6.2-41.43 is installed OR qemu-block-rbd-2.6.2-41.43 is installed OR qemu-block-ssh-2.6.2-41.43 is installed OR qemu-guest-agent-2.6.2-41.43 is installed OR qemu-ipxe-1.0.0-41.43 is installed OR qemu-kvm-2.6.2-41.43 is installed OR qemu-lang-2.6.2-41.43 is installed OR qemu-seabios-1.9.1-41.43 is installed OR qemu-sgabios-8-41.43 is installed OR qemu-tools-2.6.2-41.43 is installed OR qemu-vgabios-1.9.1-41.43 is installed OR qemu-x86-2.6.2-41.43 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-devel-1.8.0_sr5.15-30.33 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.15-30.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information java-1_8_0-openjdk-1.8.0.131-26 is installed OR java-1_8_0-openjdk-demo-1.8.0.131-26 is installed OR java-1_8_0-openjdk-devel-1.8.0.131-26 is installed OR java-1_8_0-openjdk-headless-1.8.0.131-26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information evince-3.20.2-6.27 is installed OR evince-browser-plugin-3.20.2-6.27 is installed OR evince-lang-3.20.2-6.27 is installed OR evince-plugin-djvudocument-3.20.2-6.27 is installed OR evince-plugin-dvidocument-3.20.2-6.27 is installed OR evince-plugin-pdfdocument-3.20.2-6.27 is installed OR evince-plugin-psdocument-3.20.2-6.27 is installed OR evince-plugin-tiffdocument-3.20.2-6.27 is installed OR evince-plugin-xpsdocument-3.20.2-6.27 is installed OR libevdocument3-4-3.20.2-6.27 is installed OR libevview3-3-3.20.2-6.27 is installed OR nautilus-evince-3.20.2-6.27 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libopenssl-devel-1.0.2j-60.55 is installed OR libopenssl1_0_0-1.0.2j-60.55 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed OR openssl-1.0.2j-60.55 is installed OR openssl-doc-1.0.2j-60.55 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information groff-1.22.2-5 is installed OR groff-full-1.22.2-5 is installed OR gxditview-1.22.2-5 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information kernel-default-3.12.74-60.64.63 is installed OR kernel-default-base-3.12.74-60.64.63 is installed OR kernel-default-devel-3.12.74-60.64.63 is installed OR kernel-devel-3.12.74-60.64.63 is installed OR kernel-macros-3.12.74-60.64.63 is installed OR kernel-source-3.12.74-60.64.63 is installed OR kernel-syms-3.12.74-60.64.63 is installed OR kernel-xen-3.12.74-60.64.63 is installed OR kernel-xen-base-3.12.74-60.64.63 is installed OR kernel-xen-devel-3.12.74-60.64.63 is installed OR kgraft-patch-3_12_74-60_64_63-default-1-2 is installed OR kgraft-patch-3_12_74-60_64_63-xen-1-2 is installed OR kgraft-patch-SLE12-SP1_Update_22-1-2 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND mailman-2.1.17-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ghostscript-9.52-23.34 is installed OR ghostscript-x11-9.52-23.34 is installed OR libspectre-0.2.7-12.10 is installed OR libspectre1-0.2.7-12.10 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information mariadb-10.2.25-3.19 is installed OR mariadb-galera-10.2.25-3.19 is installed
BACK