OVAL Reference oval:org.opensuse.security:def:56942

Oval Definition:

oval:org.opensuse.security:def:56942

Revision Date:	2020-12-01	Version:	1
Title:	Security update for libjpeg-turbo (Moderate)
Description:	This update for libjpeg-turbo fixes the following issues: The following security vulnerabilities were addressed: - CVE-2018-14498: Fixed a heap-based buffer over read in get_8bit_row function which could allow to an attacker to cause denial of service (bsc#1128712). - CVE-2018-11813: Fixed the end-of-file mishandling in read_pixel in rdtarga.c, which allowed remote attackers to cause a denial-of-service via crafted JPG files due to a large loop (bsc#1096209) - CVE-2018-1152: Fixed a denial of service in start_input_bmp() rdbmp.c caused by a divide by zero when processing a crafted BMP image (bsc#1098155)
Family:	unix	Class:	patch
Status:		Reference(s):	1000662 1021578 1028301 1038078 1040109 1040112 1040113 1040115 1043652 1046853 1046858 1048914 1052311 1052365 1052368 1052916 1054979 1055478 1064715 1064716 1070737 1090338 1096209 1096740 1098155 1099498 1101820 1111634 1111635 1111657 1113455 1115245 1117751 1117776 1118460 1118462 1118463 1125623 1125666 1128712 1138748 1149792 1175664 1175665 1175671 972335 975947 981848 CVE-2008-0928 CVE-2008-1945 CVE-2008-2382 CVE-2008-4539 CVE-2012-3515 CVE-2012-5112 CVE-2012-5133 CVE-2013-4148 CVE-2013-4149 CVE-2013-4150 CVE-2013-4151 CVE-2013-4526 CVE-2013-4527 CVE-2013-4529 CVE-2013-4530 CVE-2013-4531 CVE-2013-4533 CVE-2013-4534 CVE-2013-4535 CVE-2013-4536 CVE-2013-4537 CVE-2013-4538 CVE-2013-4539 CVE-2013-4540 CVE-2013-4541 CVE-2013-4542 CVE-2013-4544 CVE-2013-6399 CVE-2014-0142 CVE-2014-0143 CVE-2014-0144 CVE-2014-0145 CVE-2014-0146 CVE-2014-0147 CVE-2014-0150 CVE-2014-0182 CVE-2014-0222 CVE-2014-0223 CVE-2014-1344 CVE-2014-1384 CVE-2014-1385 CVE-2014-1386 CVE-2014-1387 CVE-2014-1388 CVE-2014-1389 CVE-2014-1390 CVE-2014-1748 CVE-2014-3461 CVE-2014-3640 CVE-2014-7840 CVE-2014-8106 CVE-2015-1071 CVE-2015-1076 CVE-2015-1081 CVE-2015-1083 CVE-2015-1120 CVE-2015-1122 CVE-2015-1127 CVE-2015-1153 CVE-2015-1155 CVE-2015-1779 CVE-2015-2330 CVE-2015-3209 CVE-2015-3456 CVE-2015-3658 CVE-2015-3659 CVE-2015-3727 CVE-2015-3731 CVE-2015-3741 CVE-2015-3743 CVE-2015-3745 CVE-2015-3747 CVE-2015-3748 CVE-2015-3749 CVE-2015-3752 CVE-2015-4037 CVE-2015-5154 CVE-2015-5225 CVE-2015-5278 CVE-2015-5279 CVE-2015-5745 CVE-2015-5788 CVE-2015-5794 CVE-2015-5801 CVE-2015-5809 CVE-2015-5822 CVE-2015-5928 CVE-2015-6815 CVE-2015-6855 CVE-2015-7295 CVE-2015-7512 CVE-2015-7549 CVE-2015-8345 CVE-2015-8504 CVE-2015-8558 CVE-2015-8567 CVE-2015-8568 CVE-2015-8613 CVE-2015-8619 CVE-2015-8743 CVE-2015-8744 CVE-2015-8745 CVE-2016-1568 CVE-2016-1714 CVE-2016-1922 CVE-2016-1981 CVE-2016-2198 CVE-2016-3627 CVE-2016-3710 CVE-2016-3712 CVE-2016-4002 CVE-2016-4020 CVE-2016-4439 CVE-2016-4441 CVE-2016-4453 CVE-2016-4454 CVE-2016-4952 CVE-2016-4964 CVE-2016-5105 CVE-2016-5106 CVE-2016-5107 CVE-2016-5126 CVE-2016-5238 CVE-2016-5337 CVE-2016-5338 CVE-2016-5403 CVE-2016-6351 CVE-2016-6490 CVE-2016-6833 CVE-2016-6836 CVE-2016-6888 CVE-2016-7116 CVE-2016-7155 CVE-2016-7156 CVE-2016-7157 CVE-2017-1000111 CVE-2017-1000112 CVE-2017-1000112 CVE-2017-10684 CVE-2017-10685 CVE-2017-13089 CVE-2017-13090 CVE-2017-2885 CVE-2017-6508 CVE-2017-9111 CVE-2017-9112 CVE-2017-9113 CVE-2017-9115 CVE-2018-1000807 CVE-2018-1000808 CVE-2018-10903 CVE-2018-1152 CVE-2018-11813 CVE-2018-14498 CVE-2018-18444 CVE-2018-19636 CVE-2018-19637 CVE-2018-19638 CVE-2018-19639 CVE-2018-19640 CVE-2018-3665 CVE-2020-15810 CVE-2020-15811 CVE-2020-24606 SUSE-SU-2016:1204-1 SUSE-SU-2017:0800-1 SUSE-SU-2017:1815-1 SUSE-SU-2017:2129-1 SUSE-SU-2017:2131-1 SUSE-SU-2017:2436-1 SUSE-SU-2017:2871-2 SUSE-SU-2018:2109-1 SUSE-SU-2018:4063-1 SUSE-SU-2019:1111-1 SUSE-SU-2019:1122-1 SUSE-SU-2019:1962-1 SUSE-SU-2020:0790-1 SUSE-SU-2020:2471-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.1 NonFree SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information libdcerpc-binding0-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR libdcerpc0-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR libndr-krb5pac0-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR libndr-nbt0-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR libndr-standard0-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR libndr0-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR libnetapi0-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR libsamba-credentials0-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR libsamba-errors0-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR libsamba-hostconfig0-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR libsamba-passdb0-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR libsamba-policy0-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR libsamba-util0-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR libsamdb0-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR libsmbclient0-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR libsmbconf0-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR libsmbldap2-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR libtevent-util0-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR libwbclient0-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR samba-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR samba-client-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR samba-dsdb-modules-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR samba-kdc-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR samba-libs-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR samba-python-4.7.6+git.54.6e3276c9872-lp150.2 is installed OR samba-winbind-4.7.6+git.54.6e3276c9872-lp150.2 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information libvlc5-3.0.7.1-lp151.6.3 is installed OR libvlccore9-3.0.7.1-lp151.6.3 is installed OR vlc-3.0.7.1-lp151.6.3 is installed OR vlc-codec-gstreamer-3.0.7.1-lp151.6.3 is installed OR vlc-devel-3.0.7.1-lp151.6.3 is installed OR vlc-jack-3.0.7.1-lp151.6.3 is installed OR vlc-lang-3.0.7.1-lp151.6.3 is installed OR vlc-noX-3.0.7.1-lp151.6.3 is installed OR vlc-qt-3.0.7.1-lp151.6.3 is installed OR vlc-vdpau-3.0.7.1-lp151.6.3 is installed
Definition Synopsis
openSUSE Leap 15.1 NonFree is installed AND opera-68.0.3618.63-lp151.2.15 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libjpeg-turbo-1.5.3-31.14 is installed OR libjpeg62-62.2.0-31.14 is installed OR libjpeg62-32bit-62.2.0-31.14 is installed OR libjpeg62-turbo-1.5.3-31.14 is installed OR libjpeg8-8.1.2-31.14 is installed OR libjpeg8-32bit-8.1.2-31.14 is installed OR libturbojpeg0-8.1.2-31.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libxml2-2.9.1-20 is installed OR libxml2-2-2.9.1-20 is installed OR libxml2-2-32bit-2.9.1-20 is installed OR libxml2-doc-2.9.1-20 is installed OR libxml2-tools-2.9.1-20 is installed OR python-libxml2-2.9.1-20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_40-default-4-2 is installed OR kgraft-patch-3_12_74-60_64_40-xen-4-2 is installed OR kgraft-patch-SLE12-SP1_Update_15-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libjavascriptcoregtk-3_0-0-2.4.11-23 is installed OR libwebkitgtk-3_0-0-2.4.11-23 is installed OR libwebkitgtk3-lang-2.4.11-23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libvirt-2.0.0-27.42 is installed OR libvirt-client-2.0.0-27.42 is installed OR libvirt-daemon-2.0.0-27.42 is installed OR libvirt-daemon-config-network-2.0.0-27.42 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed OR libvirt-daemon-driver-network-2.0.0-27.42 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed OR libvirt-daemon-hooks-2.0.0-27.42 is installed OR libvirt-daemon-lxc-2.0.0-27.42 is installed OR libvirt-daemon-qemu-2.0.0-27.42 is installed OR libvirt-daemon-xen-2.0.0-27.42 is installed OR libvirt-doc-2.0.0-27.42 is installed OR libvirt-lock-sanlock-2.0.0-27.42 is installed OR libvirt-nss-2.0.0-27.42 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_114-92_67-default-8-2 is installed OR kgraft-patch-SLE12-SP2_Update_19-8-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_64-default-4-2 is installed OR kgraft-patch-SLE12-SP2_Update_18-4-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information cracklib-2.9.0-7 is installed OR libcrack2-2.9.0-7 is installed OR libcrack2-32bit-2.9.0-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND sudo-1.8.20p2-3.14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kernel-default-4.4.180-94.103 is installed OR kernel-default-base-4.4.180-94.103 is installed OR kernel-default-devel-4.4.180-94.103 is installed OR kernel-devel-4.4.180-94.103 is installed OR kernel-macros-4.4.180-94.103 is installed OR kernel-source-4.4.180-94.103 is installed OR kernel-syms-4.4.180-94.103 is installed OR kgraft-patch-4_4_180-94_103-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_28-1-4.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND axis-1.4-290.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information strongswan-5.1.3-26.5 is installed OR strongswan-doc-5.1.3-26.5 is installed OR strongswan-hmac-5.1.3-26.5 is installed OR strongswan-ipsec-5.1.3-26.5 is installed OR strongswan-libs0-5.1.3-26.5 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information hostinfo-1.0.1-19.5 is installed OR supportutils-3.0-95.21 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-sprockets-2_12-2.12.5-1.4 is installed OR rubygem-sprockets-2_12-2.12.5-1.4 is installed

BACK