Oval Definition:	oval:org.opensuse.security:def:56732
Revision Date: 2020-12-01 Version: 1 Title: Security update for tiff (Important) Description: This update for tiff to version 4.0.9 fixes the following issues: Security issues fixed: - CVE-2014-8128: Fix out-of-bounds read with malformed TIFF image in multiple tools (bsc#969783). - CVE-2015-7554: Fix invalid write in tiffsplit / _TIFFVGetField (bsc#960341). - CVE-2016-10095: Fix stack-based buffer overflow in _TIFFVGetField (tif_dir.c) (bsc#1017690). - CVE-2016-5318: Fix stackoverflow in thumbnail (bsc#983436). - CVE-2017-16232: Fix memory-based DoS in tiff2bw (bsc#1069213). Family: unix Class: patch Status: Reference(s): 1005084 1005090 1005242 1006591 1006593 1006597 1006598 1006599 1006836 1006839 1007009 1017690 1017902 1022805 1043983 1048072 1054028 1055265 1055851 1056286 1056782 1058754 1058755 1058757 1062452 1069213 1069607 1069632 1073002 1078782 1081725 1082007 1082008 1082009 1082010 1082011 1082014 1082058 1087433 1087434 1087436 1087437 1087440 1087441 1111331 1112530 1112532 1117632 1128829 1128963 1130611 1130617 1130620 1130622 1130623 1130627 1141670 1152990 1152992 1152994 1152995 1163933 1169511 1171186 1171517 1172275 392410 939342 941919 942553 960341 961886 963017 963983 968373 969783 983436 994157 CVE-2004-2771 CVE-2008-3522 CVE-2014-7844 CVE-2014-8128 CVE-2014-8158 CVE-2015-0247 CVE-2015-1572 CVE-2015-3228 CVE-2015-5203 CVE-2015-5221 CVE-2015-7554 CVE-2015-9096 CVE-2015-9542 CVE-2016-1000031 CVE-2016-10095 CVE-2016-10109 CVE-2016-1577 CVE-2016-1867 CVE-2016-2089 CVE-2016-2116 CVE-2016-2339 CVE-2016-2399 CVE-2016-5318 CVE-2016-6313 CVE-2016-7798 CVE-2016-8690 CVE-2016-8691 CVE-2016-8692 CVE-2016-8693 CVE-2016-8880 CVE-2016-8881 CVE-2016-8882 CVE-2016-8883 CVE-2016-8884 CVE-2016-8885 CVE-2016-8886 CVE-2016-8887 CVE-2017-0898 CVE-2017-0899 CVE-2017-0900 CVE-2017-0901 CVE-2017-0902 CVE-2017-0903 CVE-2017-10784 CVE-2017-14033 CVE-2017-14064 CVE-2017-16232 CVE-2017-17405 CVE-2017-17742 CVE-2017-17790 CVE-2017-7562 CVE-2017-9228 CVE-2017-9229 CVE-2018-1000073 CVE-2018-1000074 CVE-2018-1000075 CVE-2018-1000076 CVE-2018-1000077 CVE-2018-1000078 CVE-2018-1000079 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-16395 CVE-2018-16396 CVE-2018-16476 CVE-2018-6914 CVE-2018-8777 CVE-2018-8778 CVE-2018-8779 CVE-2018-8780 CVE-2019-11091 CVE-2019-15845 CVE-2019-16201 CVE-2019-16254 CVE-2019-16255 CVE-2019-8320 CVE-2019-8321 CVE-2019-8322 CVE-2019-8323 CVE-2019-8324 CVE-2019-8325 CVE-2020-10663 CVE-2020-12387 CVE-2020-12388 CVE-2020-12389 CVE-2020-12392 CVE-2020-12393 CVE-2020-12395 CVE-2020-2756 CVE-2020-2757 CVE-2020-2773 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 CVE-2020-6831 SUSE-SU-2016:0884-1 SUSE-SU-2016:2345-1 SUSE-SU-2016:2775-1 SUSE-SU-2017:0286-1 SUSE-SU-2017:0610-1 SUSE-SU-2018:0073-1 SUSE-SU-2019:0152-1 SUSE-SU-2019:1214-1 SUSE-SU-2019:1296-1 SUSE-SU-2020:1117-1 SUSE-SU-2020:1218-1 SUSE-SU-2020:1570-1 SUSE-SU-2020:1571-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information dbus-1-glib-0.108-lp150.1 is installed OR dbus-1-glib-tool-0.108-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information kernel-debug-4.12.14-lp151.28.13 is installed OR kernel-debug-base-4.12.14-lp151.28.13 is installed OR kernel-debug-devel-4.12.14-lp151.28.13 is installed OR kernel-default-4.12.14-lp151.28.13 is installed OR kernel-default-base-4.12.14-lp151.28.13 is installed OR kernel-default-devel-4.12.14-lp151.28.13 is installed OR kernel-devel-4.12.14-lp151.28.13 is installed OR kernel-docs-4.12.14-lp151.28.13 is installed OR kernel-docs-html-4.12.14-lp151.28.13 is installed OR kernel-kvmsmall-4.12.14-lp151.28.13 is installed OR kernel-kvmsmall-base-4.12.14-lp151.28.13 is installed OR kernel-kvmsmall-devel-4.12.14-lp151.28.13 is installed OR kernel-macros-4.12.14-lp151.28.13 is installed OR kernel-obs-build-4.12.14-lp151.28.13 is installed OR kernel-obs-qa-4.12.14-lp151.28.13 is installed OR kernel-source-4.12.14-lp151.28.13 is installed OR kernel-source-vanilla-4.12.14-lp151.28.13 is installed OR kernel-syms-4.12.14-lp151.28.13 is installed OR kernel-vanilla-4.12.14-lp151.28.13 is installed OR kernel-vanilla-base-4.12.14-lp151.28.13 is installed OR kernel-vanilla-devel-4.12.14-lp151.28.13 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libtiff5-4.0.9-44.7 is installed OR libtiff5-32bit-4.0.9-44.7 is installed OR tiff-4.0.9-44.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libgcrypt-1.6.1-16.33 is installed OR libgcrypt20-1.6.1-16.33 is installed OR libgcrypt20-32bit-1.6.1-16.33 is installed OR libgcrypt20-hmac-1.6.1-16.33 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information jakarta-commons-fileupload-1.1.1-122.3 is installed OR jakarta-commons-fileupload-javadoc-1.1.1-122.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information e2fsprogs-1.42.11-7 is installed OR libcom_err2-1.42.11-7 is installed OR libcom_err2-32bit-1.42.11-7 is installed OR libext2fs2-1.42.11-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information ntp-4.2.8p11-64.5 is installed OR ntp-doc-4.2.8p11-64.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information apache2-2.4.23-29.24 is installed OR apache2-doc-2.4.23-29.24 is installed OR apache2-example-pages-2.4.23-29.24 is installed OR apache2-prefork-2.4.23-29.24 is installed OR apache2-utils-2.4.23-29.24 is installed OR apache2-worker-2.4.23-29.24 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND ucode-intel-20180703-13.25 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information e2fsprogs-1.42.11-15 is installed OR libcom_err2-1.42.11-15 is installed OR libcom_err2-32bit-1.42.11-15 is installed OR libext2fs2-1.42.11-15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information icu-52.1-8.10 is installed OR libicu-doc-52.1-8.10 is installed OR libicu52_1-52.1-8.10 is installed OR libicu52_1-32bit-52.1-8.10 is installed OR libicu52_1-data-52.1-8.10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_162-94_72-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_22-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_100-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_27-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libXrender1-0.9.8-7 is installed OR libXrender1-32bit-0.9.8-7 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information krb5-1.12.1-38.5 is installed OR krb5-32bit-1.12.1-38.5 is installed OR krb5-client-1.12.1-38.5 is installed OR krb5-doc-1.12.1-38.5 is installed OR krb5-plugin-kdb-ldap-1.12.1-38.5 is installed OR krb5-plugin-preauth-otp-1.12.1-38.5 is installed OR krb5-plugin-preauth-pkinit-1.12.1-38.5 is installed OR krb5-server-1.12.1-38.5 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information ruby2.1-rubygem-activejob-4_2-4.2.9-3.6 is installed OR rubygem-activejob-4_2-4.2.9-3.6 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND cobbler-2.6.6-49.9 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libX11-1.6.2-12.8 is installed OR libX11-6-1.6.2-12.8 is installed OR libX11-6-32bit-1.6.2-12.8 is installed OR libX11-data-1.6.2-12.8 is installed OR libX11-xcb1-1.6.2-12.8 is installed OR libX11-xcb1-32bit-1.6.2-12.8 is installed OR libxcb-1.10-4.5 is installed OR libxcb-dri2-0-1.10-4.5 is installed OR libxcb-dri2-0-32bit-1.10-4.5 is installed OR libxcb-dri3-0-1.10-4.5 is installed OR libxcb-dri3-0-32bit-1.10-4.5 is installed OR libxcb-glx0-1.10-4.5 is installed OR libxcb-glx0-32bit-1.10-4.5 is installed OR libxcb-present0-1.10-4.5 is installed OR libxcb-present0-32bit-1.10-4.5 is installed OR libxcb-randr0-1.10-4.5 is installed OR libxcb-render0-1.10-4.5 is installed OR libxcb-render0-32bit-1.10-4.5 is installed OR libxcb-shape0-1.10-4.5 is installed OR libxcb-shm0-1.10-4.5 is installed OR libxcb-shm0-32bit-1.10-4.5 is installed OR libxcb-sync1-1.10-4.5 is installed OR libxcb-sync1-32bit-1.10-4.5 is installed OR libxcb-xf86dri0-1.10-4.5 is installed OR libxcb-xfixes0-1.10-4.5 is installed OR libxcb-xfixes0-32bit-1.10-4.5 is installed OR libxcb-xinerama0-1.10-4.5 is installed OR libxcb-xkb1-1.10-4.5 is installed OR libxcb-xkb1-32bit-1.10-4.5 is installed OR libxcb-xv0-1.10-4.5 is installed OR libxcb1-1.10-4.5 is installed OR libxcb1-32bit-1.10-4.5 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information dnsmasq-2.78-18.12 is installed OR dnsmasq-utils-2.78-18.12 is installed
BACK