Oval Definition:	oval:org.opensuse.security:def:57415
Revision Date: 2020-12-01 Version: 1 Title: Security update for libmspack (Moderate) Description: libmspack was updated to fix several security vulnerabilities. - Fix null pointer dereference on a crafted CAB. (bsc#934524, CVE-2014-9732) - Fix denial of service while processing crafted CHM file. (bsc#934525, CVE-2015-4467) - Fix denial of service while processing crafted CHM file. (bsc#934529, CVE-2015-4472) - Fix pointer arithmetic overflow during CHM decompression. (bsc#934526, CVE-2015-4469) - Fix off-by-one buffer over-read in mspack/mszipd.c. (bsc#934527, CVE-2015-4470) - Fix off-by-one buffer under-read in mspack/lzxd.c. (bsc#934528, CVE-2015-4471) Family: unix Class: patch Status: Reference(s): 1005179 1007216 1008501 1008894 1014338 1031240 1034862 1066674 1071021 1073230 1076017 1083488 1085114 1085447 1086535 1088268 1090036 1091171 1094825 1096723 1100001 1102517 1102682 1103097 1104475 1105025 1105296 1105323 1106191 1106913 1107829 1108498 1109673 1110768 1111331 1111516 1113751 1113769 1114648 1114920 1115007 1115038 1116345 1116841 1117632 1118152 1118319 1119714 1119946 1120743 1120758 1121621 1122015 1123161 1124010 1124728 1124732 1124735 1126890 1128166 1131416 1131427 1132828 1133188 1144903 1153108 1153158 1153161 1154162 1154824 1164692 1164871 1171098 1171195 1171202 1171218 1171219 1171689 1171698 1172221 1172317 900914 915410 934524 934525 934526 934527 934528 934529 977940 982141 985232 987144 990438 999688 CVE-2014-8242 CVE-2014-9512 CVE-2014-9732 CVE-2015-4467 CVE-2015-4469 CVE-2015-4470 CVE-2015-4471 CVE-2015-4472 CVE-2015-7555 CVE-2016-10741 CVE-2016-2851 CVE-2016-3977 CVE-2016-5009 CVE-2017-0861 CVE-2017-1000407 CVE-2017-13166 CVE-2017-16533 CVE-2017-7273 CVE-2017-7472 CVE-2018-1000004 CVE-2018-1000026 CVE-2018-1000199 CVE-2018-1068 CVE-2018-10902 CVE-2018-10938 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-14633 CVE-2018-15572 CVE-2018-16476 CVE-2018-16884 CVE-2018-17407 CVE-2018-18281 CVE-2018-18386 CVE-2018-18690 CVE-2018-18710 CVE-2018-19407 CVE-2018-19824 CVE-2018-19985 CVE-2018-20169 CVE-2018-5390 CVE-2018-5391 CVE-2018-7566 CVE-2018-9516 CVE-2018-9568 CVE-2019-10220 CVE-2019-11091 CVE-2019-11486 CVE-2019-17133 CVE-2019-2974 CVE-2019-3459 CVE-2019-3460 CVE-2019-3882 CVE-2019-6974 CVE-2019-7221 CVE-2019-7222 CVE-2019-8564 CVE-2019-9213 CVE-2019-9503 CVE-2020-0543 CVE-2020-10757 CVE-2020-12114 CVE-2020-12652 CVE-2020-12653 CVE-2020-12654 CVE-2020-12656 CVE-2020-1938 SUSE-SU-2015:2215-1 SUSE-SU-2016:0176-1 SUSE-SU-2017:0367-1 SUSE-SU-2018:1012-1 SUSE-SU-2018:1250-1 SUSE-SU-2018:1256-1 SUSE-SU-2018:3033-2 SUSE-SU-2019:0152-1 SUSE-SU-2019:1289-1 SUSE-SU-2020:0050-1 SUSE-SU-2020:0725-1 SUSE-SU-2020:1597-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information aaa_base-84.87+git20180409.04c9dae-lp150.1 is installed OR aaa_base-extras-84.87+git20180409.04c9dae-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information neovim-0.3.7-lp151.2.7 is installed OR neovim-lang-0.3.7-lp151.2.7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information libmspack-0.0.20060920alpha-74.10 is installed OR libmspack0-0.0.20060920alpha-74.10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kernel-default-3.12.74-60.64.110 is installed OR kernel-default-base-3.12.74-60.64.110 is installed OR kernel-default-devel-3.12.74-60.64.110 is installed OR kernel-default-man-3.12.74-60.64.110 is installed OR kernel-devel-3.12.74-60.64.110 is installed OR kernel-macros-3.12.74-60.64.110 is installed OR kernel-source-3.12.74-60.64.110 is installed OR kernel-syms-3.12.74-60.64.110 is installed OR kernel-xen-3.12.74-60.64.110 is installed OR kernel-xen-base-3.12.74-60.64.110 is installed OR kernel-xen-devel-3.12.74-60.64.110 is installed OR kgraft-patch-3_12_74-60_64_110-default-1-2.3 is installed OR kgraft-patch-3_12_74-60_64_110-xen-1-2.3 is installed OR kgraft-patch-SLE12-SP1_Update_33-1-2.3 is installed OR lttng-modules-2.7.0-4.4 is installed OR lttng-modules-kmp-default-2.7.0_k3.12.74_60.64.110-4.4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information giflib-progs-5.0.5-12 is installed OR libgif6-5.0.5-12 is installed OR libgif6-32bit-5.0.5-12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information krb5-1.12.5-40.31 is installed OR krb5-32bit-1.12.5-40.31 is installed OR krb5-client-1.12.5-40.31 is installed OR krb5-doc-1.12.5-40.31 is installed OR krb5-plugin-kdb-ldap-1.12.5-40.31 is installed OR krb5-plugin-preauth-otp-1.12.5-40.31 is installed OR krb5-plugin-preauth-pkinit-1.12.5-40.31 is installed OR krb5-server-1.12.5-40.31 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information glibc-2.22-62.13 is installed OR glibc-32bit-2.22-62.13 is installed OR glibc-devel-2.22-62.13 is installed OR glibc-devel-32bit-2.22-62.13 is installed OR glibc-html-2.22-62.13 is installed OR glibc-i18ndata-2.22-62.13 is installed OR glibc-info-2.22-62.13 is installed OR glibc-locale-2.22-62.13 is installed OR glibc-locale-32bit-2.22-62.13 is installed OR glibc-profile-2.22-62.13 is installed OR glibc-profile-32bit-2.22-62.13 is installed OR nscd-2.22-62.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_114-92_64-default-7-2 is installed OR kgraft-patch-SLE12-SP2_Update_18-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND gzip-1.6-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libfreebl3-3.47.1-58.34 is installed OR libfreebl3-32bit-3.47.1-58.34 is installed OR libfreebl3-hmac-3.47.1-58.34 is installed OR libfreebl3-hmac-32bit-3.47.1-58.34 is installed OR libsoftokn3-3.47.1-58.34 is installed OR libsoftokn3-32bit-3.47.1-58.34 is installed OR libsoftokn3-hmac-3.47.1-58.34 is installed OR libsoftokn3-hmac-32bit-3.47.1-58.34 is installed OR mozilla-nspr-4.23-19.12 is installed OR mozilla-nspr-32bit-4.23-19.12 is installed OR mozilla-nss-3.47.1-58.34 is installed OR mozilla-nss-32bit-3.47.1-58.34 is installed OR mozilla-nss-certs-3.47.1-58.34 is installed OR mozilla-nss-certs-32bit-3.47.1-58.34 is installed OR mozilla-nss-sysinit-3.47.1-58.34 is installed OR mozilla-nss-sysinit-32bit-3.47.1-58.34 is installed OR mozilla-nss-tools-3.47.1-58.34 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information ghostscript-9.52-23.34 is installed OR ghostscript-x11-9.52-23.34 is installed OR libspectre-0.2.7-12.10 is installed OR libspectre1-0.2.7-12.10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information bluez-5.13-5.12 is installed OR libbluetooth3-5.13-5.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information e2fsprogs-1.43.8-1 is installed OR libcom_err2-1.43.8-1 is installed OR libcom_err2-32bit-1.43.8-1 is installed OR libext2fs2-1.43.8-1 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information ruby2.1-rubygem-activejob-4_2-4.2.9-3.6 is installed OR rubygem-activejob-4_2-4.2.9-3.6 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND python-Werkzeug-0.12.2-3.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information grub2-2.02-4.61 is installed OR grub2-i386-pc-2.02-4.61 is installed OR grub2-snapper-plugin-2.02-4.61 is installed OR grub2-systemd-sleep-plugin-2.02-4.61 is installed OR grub2-x86_64-efi-2.02-4.61 is installed OR grub2-x86_64-xen-2.02-4.61 is installed
BACK