Oval Definition:	oval:org.opensuse.security:def:56804
Revision Date: 2020-12-01 Version: 1 Title: Security update for libraw (Moderate) Description: This update for libraw fixes the following issues: Security issues fixed: - CVE-2018-20365: Fixed a heap-based buffer overflow in the raw2image function of libraw_cxx.cpp (bsc#1120500) - CVE-2018-20364: Fixed a NULL pointer dereference in the copy_bayer function of libraw_cxx.cpp (bsc#1120499) - CVE-2018-20363: Fixed a NULL pointer dereference in the raw2image function of libraw_cxx.cpp (bsc#1120498) - CVE-2018-5817: Fixed an infinite loop in the unpacked_load_raw function of dcraw_common.cpp (bsc#1120515) - CVE-2018-5818: Fixed an infinite loop in the parse_rollei function of dcraw_common.cpp (bsc#1120516) - CVE-2018-5819: Fixed a denial of service in the parse_sinar_ia function of dcraw_common.cpp (bsc#1120517) Family: unix Class: patch Status: Reference(s): 1008253 1010399 1010405 1010406 1010408 1010409 1010421 1010423 1010424 1010425 1010426 1012382 1012651 1014298 1016340 1020413 1020868 1020873 1020875 1020877 1020878 1020882 1020884 1020885 1020891 1020894 1020896 1022428 1025108 1027575 1038564 1042892 1043008 1046191 1047281 1050751 1065600 1070767 1074235 1075697 1082943 1083125 1085447 1087092 1090368 1090435 1090646 1092611 1102959 1103429 1106929 1109137 1109248 1119019 1119843 1120374 1120498 1120499 1120500 1120515 1120516 1120517 1120691 1120902 1121713 1121805 1124235 1125315 1125446 1126389 1126772 1126773 1126805 1127082 1127155 1127561 1127725 1127731 1127961 1128166 1128452 1128565 1128696 1128756 1128893 1129080 1129179 1129237 1129238 1129239 1129240 1129241 1129413 1129414 1129415 1129416 1129417 1129418 1129419 1129581 1129770 1129923 1137990 1148987 1149429 1154738 1173902 1173991 1173994 1174284 1175686 1176756 1177872 865241 928292 932894 959933 967082 983922 984906 987887 988311 CVE-2010-2252 CVE-2012-4929 CVE-2014-0011 CVE-2014-4877 CVE-2014-8169 CVE-2014-8240 CVE-2015-0255 CVE-2015-2059 CVE-2015-8853 CVE-2016-10013 CVE-2016-10024 CVE-2016-1238 CVE-2016-2381 CVE-2016-2830 CVE-2016-4971 CVE-2016-5289 CVE-2016-5292 CVE-2016-6185 CVE-2016-6664 CVE-2016-9063 CVE-2016-9067 CVE-2016-9068 CVE-2016-9069 CVE-2016-9071 CVE-2016-9073 CVE-2016-9075 CVE-2016-9076 CVE-2016-9077 CVE-2016-9932 CVE-2017-13166 CVE-2017-2636 CVE-2017-3238 CVE-2017-3243 CVE-2017-3244 CVE-2017-3257 CVE-2017-3258 CVE-2017-3265 CVE-2017-3291 CVE-2017-3312 CVE-2017-3317 CVE-2017-3318 CVE-2017-7533 CVE-2017-7645 CVE-2017-7789 CVE-2017-8890 CVE-2017-9242 CVE-2018-20363 CVE-2018-20364 CVE-2018-20365 CVE-2018-5150 CVE-2018-5151 CVE-2018-5152 CVE-2018-5153 CVE-2018-5154 CVE-2018-5155 CVE-2018-5157 CVE-2018-5158 CVE-2018-5159 CVE-2018-5160 CVE-2018-5163 CVE-2018-5164 CVE-2018-5165 CVE-2018-5166 CVE-2018-5167 CVE-2018-5168 CVE-2018-5169 CVE-2018-5172 CVE-2018-5173 CVE-2018-5174 CVE-2018-5175 CVE-2018-5176 CVE-2018-5177 CVE-2018-5178 CVE-2018-5179 CVE-2018-5180 CVE-2018-5181 CVE-2018-5182 CVE-2018-5183 CVE-2018-5817 CVE-2018-5818 CVE-2018-5819 CVE-2018-8781 CVE-2018-8897 CVE-2019-11757 CVE-2019-11758 CVE-2019-11759 CVE-2019-11760 CVE-2019-11761 CVE-2019-11762 CVE-2019-11763 CVE-2019-11764 CVE-2019-13627 CVE-2019-15903 CVE-2019-2024 CVE-2019-9213 CVE-2020-14318 CVE-2020-14323 CVE-2020-15663 CVE-2020-15664 CVE-2020-15670 CVE-2020-15683 CVE-2020-15969 SUSE-SU-2016:2263-1 SUSE-SU-2016:3207-1 SUSE-SU-2017:0412-1 SUSE-SU-2017:2061-1 SUSE-SU-2018:1541-1 SUSE-SU-2019:0127-1 SUSE-SU-2019:0801-1 SUSE-SU-2019:2510-1 SUSE-SU-2019:2872-1 SUSE-SU-2020:2544-1 SUSE-SU-2020:3053-1 SUSE-SU-2020:3083-1 SUSE-SU-403 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information aaa_base-84.87+git20180409.04c9dae-lp150.1 is installed OR aaa_base-extras-84.87+git20180409.04c9dae-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libtasn1-4.13-lp151.4.3 is installed OR libtasn1-6-4.13-lp151.4.3 is installed OR libtasn1-6-32bit-4.13-lp151.4.3 is installed OR libtasn1-devel-4.13-lp151.4.3 is installed OR libtasn1-devel-32bit-4.13-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libraw-0.15.4-30 is installed OR libraw9-0.15.4-30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information perl-5.18.2-11 is installed OR perl-32bit-5.18.2-11 is installed OR perl-base-5.18.2-11 is installed OR perl-doc-5.18.2-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_67-60_64_18-default-9-2 is installed OR kgraft-patch-3_12_67-60_64_18-xen-9-2 is installed OR kgraft-patch-SLE12-SP1_Update_9-9-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND autofs-5.0.9-21 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_121-92_101-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_27-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_67-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_19-9-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libXp6-1.0.2-3 is installed OR libXp6-32bit-1.0.2-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information MozillaFirefox-60.9.0-109.86 is installed OR MozillaFirefox-translations-common-60.9.0-109.86 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information perl-5.18.2-12.23 is installed OR perl-32bit-5.18.2-12.23 is installed OR perl-base-5.18.2-12.23 is installed OR perl-doc-5.18.2-12.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information apache2-2.4.23-29.54 is installed OR apache2-doc-2.4.23-29.54 is installed OR apache2-example-pages-2.4.23-29.54 is installed OR apache2-prefork-2.4.23-29.54 is installed OR apache2-utils-2.4.23-29.54 is installed OR apache2-worker-2.4.23-29.54 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libopenssl1_1-1.1.1-1 is installed OR libopenssl1_1-32bit-1.1.1-1 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information MozillaFirefox-68.2.0-109.95 is installed OR MozillaFirefox-devel-68.2.0-109.95 is installed OR MozillaFirefox-translations-common-68.2.0-109.95 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information ardana-monasca-8.0+git.1535031421.9262a47-3.12 is installed OR ardana-spark-8.0+git.1534267176.a5f3a22-3.6 is installed OR kafka-0.10.2.2-5.6 is installed OR openstack-monasca-api-2.2.1~dev24-3.6 is installed OR python-monasca-api-2.2.1~dev24-3.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information ruby2.1-rubygem-actionview-4_2-4.2.9-9.6 is installed OR rubygem-actionview-4_2-4.2.9-9.6 is installed
BACK