Oval Definition:	oval:org.opensuse.security:def:57452
Revision Date: 2021-06-02 Version: 1 Title: Security update for libwebp (Critical) Description: This update for libwebp fixes the following issues: - CVE-2018-25010: Fixed heap-based buffer overflow in ApplyFilter() (bsc#1185685). - CVE-2020-36330: Fixed heap-based buffer overflow in ChunkVerifyAndAssign() (bsc#1185691). - CVE-2020-36332: Fixed extreme memory allocation when reading a file (bsc#1185674). - CVE-2020-36329: Fixed use-after-free in EmitFancyRGB() (bsc#1185652). - CVE-2018-25012: Fixed heap-based buffer overflow in GetLE24() (bsc#1185690). - CVE-2018-25013: Fixed heap-based buffer overflow in ShiftBytes() (bsc#1185654). - CVE-2020-36331: Fixed heap-based buffer overflow in ChunkAssignData() (bsc#1185686). - CVE-2018-25009: Fixed heap-based buffer overflow in GetLE16() (bsc#1185673). - CVE-2018-25011: Fixed fail on multiple image chunks (bsc#1186247). Family: unix Class: patch Status: Reference(s): 1011276 1019611 1022103 1079405 1092100 1092885 1104076 1111056 1111331 1121571 1121753 1121816 1121818 1121821 1137597 1140747 1145092 1157471 1174633 1174635 1174638 1185652 1185654 1185673 1185674 1185685 1185686 1185690 1185691 1186247 762294 844230 855685 924663 928962 934401 938412 CVE-2008-1420 CVE-2009-3379 CVE-2012-0444 CVE-2012-0862 CVE-2013-1667 CVE-2013-4342 CVE-2015-0295 CVE-2015-1858 CVE-2015-1859 CVE-2015-1860 CVE-2015-2582 CVE-2015-2611 CVE-2015-2617 CVE-2015-2620 CVE-2015-2639 CVE-2015-2641 CVE-2015-2643 CVE-2015-2648 CVE-2015-2661 CVE-2015-3152 CVE-2015-4737 CVE-2015-4752 CVE-2015-4756 CVE-2015-4757 CVE-2015-4761 CVE-2015-4767 CVE-2015-4769 CVE-2015-4771 CVE-2015-4772 CVE-2016-9427 CVE-2017-5225 CVE-2018-1122 CVE-2018-1123 CVE-2018-1124 CVE-2018-1125 CVE-2018-1126 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-12472 CVE-2018-20685 CVE-2018-25009 CVE-2018-25010 CVE-2018-25011 CVE-2018-25012 CVE-2018-25013 CVE-2018-3639 CVE-2019-10208 CVE-2019-11091 CVE-2019-11477 CVE-2019-11478 CVE-2019-19191 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-14345 CVE-2020-14346 CVE-2020-14347 CVE-2020-36329 CVE-2020-36330 CVE-2020-36331 CVE-2020-36332 SUSE-SU-2015:1788-1 SUSE-SU-2016:3057-1 SUSE-SU-2017:0453-1 SUSE-SU-2018:1362-1 SUSE-SU-2018:3467-1 SUSE-SU-2019:0132-1 SUSE-SU-2019:0450-1 SUSE-SU-2019:1296-1 SUSE-SU-2019:2158-1 SUSE-SU-2020:0115-1 SUSE-SU-2020:2331-1 SUSE-SU-2021:1830-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information eog-3.26.2-lp150.3 is installed OR eog-lang-3.26.2-lp150.3 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND dosbox-0.74.3-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information libmysql55client18-5.5.45-0.11 is installed OR libmysql55client18-32bit-5.5.45-0.11 is installed OR libmysql55client_r18-5.5.45-0.11 is installed OR libmysql55client_r18-32bit-5.5.45-0.11 is installed OR mysql-5.5.45-0.11 is installed OR mysql-client-5.5.45-0.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_104-default-8-2 is installed OR kgraft-patch-3_12_74-60_64_104-xen-8-2 is installed OR kgraft-patch-SLE12-SP1_Update_31-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND apache2-mod_perl-2.0.8-11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information kernel-default-4.4.121-92.117 is installed OR kernel-default-base-4.4.121-92.117 is installed OR kernel-default-devel-4.4.121-92.117 is installed OR kernel-devel-4.4.121-92.117 is installed OR kernel-macros-4.4.121-92.117 is installed OR kernel-source-4.4.121-92.117 is installed OR kernel-syms-4.4.121-92.117 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information res-signingkeys-3.0.37-52.23 is installed OR smt-3.0.37-52.23 is installed OR smt-support-3.0.37-52.23 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information res-signingkeys-3.0.38-52.26 is installed OR smt-3.0.38-52.26 is installed OR smt-support-3.0.38-52.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libwebp5-0.4.3-4.7.1 is installed OR libwebp5-32bit-0.4.3-4.7.1 is installed OR libwebpdemux1-0.4.3-4.7.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_176-94_88-default-4-2 is installed OR kgraft-patch-SLE12-SP3_Update_24-4-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_180-94_113-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_30-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information avahi-0.6.32-32.3 is installed OR avahi-glib2-0.6.32-32.3 is installed OR avahi-lang-0.6.32-32.3 is installed OR avahi-utils-0.6.32-32.3 is installed OR libavahi-client3-0.6.32-32.3 is installed OR libavahi-client3-32bit-0.6.32-32.3 is installed OR libavahi-common3-0.6.32-32.3 is installed OR libavahi-common3-32bit-0.6.32-32.3 is installed OR libavahi-core7-0.6.32-32.3 is installed OR libavahi-glib1-0.6.32-32.3 is installed OR libavahi-glib1-32bit-0.6.32-32.3 is installed OR libdns_sd-0.6.32-32.3 is installed OR libdns_sd-32bit-0.6.32-32.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information guestfs-data-1.32.4-21.3 is installed OR guestfs-tools-1.32.4-21.3 is installed OR guestfsd-1.32.4-21.3 is installed OR libguestfs0-1.32.4-21.3 is installed OR perl-Sys-Guestfs-1.32.4-21.3 is installed OR python-libguestfs-1.32.4-21.3 is installed OR virt-p2v-1.32.4-21.3 is installed OR virt-v2v-1.32.4-21.3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information postgresql94-9.4.24-21.25 is installed OR postgresql94-contrib-9.4.24-21.25 is installed OR postgresql94-docs-9.4.24-21.25 is installed OR postgresql94-plperl-9.4.24-21.25 is installed OR postgresql94-plpython-9.4.24-21.25 is installed OR postgresql94-pltcl-9.4.24-21.25 is installed OR postgresql94-server-9.4.24-21.25 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information java-1_8_0-openjdk-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-demo-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-devel-1.8.0.222-27.35 is installed OR java-1_8_0-openjdk-headless-1.8.0.222-27.35 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND python-Django-1.11.11-3.3 is installed
BACK