| Revision Date: | 2020-12-01 | Version: | 1 |
| Title: | Security update for libotr (Moderate) |
| Description: |
This update for libotr fixes the following issues:
* - Apply 'libotr-CVE-2016-2851.patch' to fix integer overflows that used to occur on 64-bit architectures when receiving 4GB messages. This flaw could potentially have been exploited by an attacker to remotely execute arbitrary code on the user's machine. (CVE-2016-2851, bsc#969785)
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1003846
1025282
1027519
1029907
1029908
1029909
1029995
1030296
1030297
1030298
1030583
1030584
1030585
1030588
1030589
1031590
1031593
1031595
1031638
1031644
1031656
1033122
1035642
1037052
1037057
1037061
1037062
1037066
1037070
1037072
1037243
1037273
1038874
1038875
1038876
1038877
1038878
1038880
1038881
1042160
1042882
1042893
1042915
1042923
1042924
1042931
1042938
1044891
1044897
1044901
1044909
1044925
1044927
1046094
1052061
1052460
1052496
1052503
1052507
1052509
1052511
1052514
1052518
1053347
1055053
1055063
1056312
1056437
1056550
1057139
1057144
1057149
1057723
1058422
1058480
1059050
1060599
1060621
1061241
1063049
1063050
1070162
1082023
1082828
1104662
1112142
1112143
1112144
1112146
1112147
1112148
1112152
1112153
1114592
1120813
1127458
1132549
1132664
1135254
1141897
1142649
1142654
1148517
1149145
1158785
1158787
1158788
1158789
1158790
1158791
1158792
1158793
1158795
1173998
437293
445037
546106
561142
578249
590820
691290
698346
713504
776968
863764
938658
969785
970239
CVE-2009-0696
CVE-2009-3736
CVE-2009-4022
CVE-2010-3613
CVE-2010-3614
CVE-2010-3615
CVE-2011-0414
CVE-2011-1831
CVE-2011-1832
CVE-2011-1833
CVE-2011-1834
CVE-2011-1835
CVE-2011-1836
CVE-2011-1837
CVE-2011-1907
CVE-2011-1910
CVE-2011-2464
CVE-2011-4313
CVE-2012-1667
CVE-2012-3817
CVE-2012-3868
CVE-2012-4244
CVE-2012-5166
CVE-2012-5688
CVE-2012-5689
CVE-2013-2266
CVE-2013-4854
CVE-2014-0591
CVE-2014-1932
CVE-2014-8500
CVE-2014-9687
CVE-2014-9939
CVE-2015-1349
CVE-2015-4047
CVE-2015-4620
CVE-2015-5477
CVE-2015-5722
CVE-2015-8000
CVE-2015-8704
CVE-2016-10165
CVE-2016-1285
CVE-2016-1286
CVE-2016-1572
CVE-2016-2776
CVE-2016-2851
CVE-2016-9841
CVE-2017-10281
CVE-2017-10285
CVE-2017-10293
CVE-2017-10295
CVE-2017-10309
CVE-2017-10345
CVE-2017-10346
CVE-2017-10347
CVE-2017-10348
CVE-2017-10349
CVE-2017-10350
CVE-2017-10355
CVE-2017-10356
CVE-2017-10357
CVE-2017-10388
CVE-2017-12448
CVE-2017-12450
CVE-2017-12452
CVE-2017-12453
CVE-2017-12454
CVE-2017-12456
CVE-2017-12563
CVE-2017-12691
CVE-2017-12799
CVE-2017-13061
CVE-2017-13062
CVE-2017-13757
CVE-2017-14042
CVE-2017-14128
CVE-2017-14129
CVE-2017-14130
CVE-2017-14174
CVE-2017-14333
CVE-2017-14343
CVE-2017-14529
CVE-2017-14729
CVE-2017-14745
CVE-2017-14974
CVE-2017-15130
CVE-2017-15277
CVE-2017-15281
CVE-2017-6965
CVE-2017-6966
CVE-2017-6969
CVE-2017-7209
CVE-2017-7210
CVE-2017-7223
CVE-2017-7224
CVE-2017-7225
CVE-2017-7226
CVE-2017-7227
CVE-2017-7299
CVE-2017-7300
CVE-2017-7301
CVE-2017-7302
CVE-2017-7303
CVE-2017-7304
CVE-2017-7614
CVE-2017-8309
CVE-2017-8392
CVE-2017-8393
CVE-2017-8394
CVE-2017-8395
CVE-2017-8396
CVE-2017-8397
CVE-2017-8398
CVE-2017-8421
CVE-2017-9038
CVE-2017-9039
CVE-2017-9040
CVE-2017-9041
CVE-2017-9042
CVE-2017-9043
CVE-2017-9044
CVE-2017-9330
CVE-2017-9746
CVE-2017-9747
CVE-2017-9748
CVE-2017-9750
CVE-2017-9755
CVE-2017-9756
CVE-2017-9954
CVE-2017-9955
CVE-2018-13785
CVE-2018-16435
CVE-2018-3136
CVE-2018-3139
CVE-2018-3149
CVE-2018-3169
CVE-2018-3180
CVE-2018-3183
CVE-2018-3214
CVE-2019-11234
CVE-2019-11235
CVE-2019-1348
CVE-2019-1349
CVE-2019-1350
CVE-2019-1351
CVE-2019-1352
CVE-2019-1353
CVE-2019-1354
CVE-2019-1387
CVE-2019-14250
CVE-2019-15847
CVE-2019-19604
CVE-2019-3840
CVE-2020-13753
CVE-2020-9802
CVE-2020-9803
CVE-2020-9805
CVE-2020-9806
CVE-2020-9807
CVE-2020-9843
CVE-2020-9850
SUSE-SU-2016:0706-1
SUSE-SU-2017:1742-1
SUSE-SU-2017:3170-1
SUSE-SU-2017:3411-1
SUSE-SU-2018:0017-1
SUSE-SU-2018:2632-1
SUSE-SU-2019:0057-1
SUSE-SU-2019:0553-1
SUSE-SU-2019:1039-1
SUSE-SU-2019:3311-1
SUSE-SU-2020:0394-1
SUSE-SU-2020:2069-1
|
| Platform(s): | openSUSE Leap 15.0
openSUSE Leap 15.1
openSUSE Leap 15.1 NonFree
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
| Product(s): | |
| Definition Synopsis |
| openSUSE Leap 15.0 is installed AND libexiv2-26-0.26-lp150.4 is installed
|
| Definition Synopsis |
| openSUSE Leap 15.1 is installed
AND Package Information
SDL2_image-2.0.5-lp151.2.5 is installed
OR libSDL2_image-2_0-0-2.0.5-lp151.2.5 is installed
OR libSDL2_image-2_0-0-32bit-2.0.5-lp151.2.5 is installed
OR libSDL2_image-devel-2.0.5-lp151.2.5 is installed
OR libSDL2_image-devel-32bit-2.0.5-lp151.2.5 is installed
|
| Definition Synopsis |
| openSUSE Leap 15.1 NonFree is installed
AND opera-67.0.3575.97-lp151.2.12 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 11 SP4 is installed
AND Package Information
libotr-3.2.0-10.5 is installed
OR libotr2-3.2.0-10.5 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP1-LTSS is installed
AND Package Information
java-1_8_0-ibm-1.8.0_sr5.5-30.13 is installed
OR java-1_8_0-ibm-alsa-1.8.0_sr5.5-30.13 is installed
OR java-1_8_0-ibm-devel-1.8.0_sr5.5-30.13 is installed
OR java-1_8_0-ibm-plugin-1.8.0_sr5.5-30.13 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2 is installed
AND Package Information
bind-9.9.9P1-46 is installed
OR bind-chrootenv-9.9.9P1-46 is installed
OR bind-doc-9.9.9P1-46 is installed
OR bind-libs-9.9.9P1-46 is installed
OR bind-libs-32bit-9.9.9P1-46 is installed
OR bind-utils-9.9.9P1-46 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2-BCL is installed
AND Package Information
libzypp-16.17.20-27.52 is installed
OR zypper-1.13.45-18.33 is installed
OR zypper-log-1.13.45-18.33 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
AND Package Information
MozillaFirefox-52.8.1esr-109.34 is installed
OR MozillaFirefox-devel-52.8.1esr-109.34 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2-LTSS is installed
AND Package Information
freeradius-server-3.0.3-17.12 is installed
OR freeradius-server-doc-3.0.3-17.12 is installed
OR freeradius-server-krb5-3.0.3-17.12 is installed
OR freeradius-server-ldap-3.0.3-17.12 is installed
OR freeradius-server-libs-3.0.3-17.12 is installed
OR freeradius-server-mysql-3.0.3-17.12 is installed
OR freeradius-server-perl-3.0.3-17.12 is installed
OR freeradius-server-postgresql-3.0.3-17.12 is installed
OR freeradius-server-python-3.0.3-17.12 is installed
OR freeradius-server-sqlite-3.0.3-17.12 is installed
OR freeradius-server-utils-3.0.3-17.12 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3 is installed
AND Package Information
cups-filters-1.0.58-17 is installed
OR cups-filters-cups-browsed-1.0.58-17 is installed
OR cups-filters-foomatic-rip-1.0.58-17 is installed
OR cups-filters-ghostscript-1.0.58-17 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-BCL is installed
AND Package Information
libjavascriptcoregtk-4_0-18-2.28.2-2.53 is installed
OR libwebkit2gtk-4_0-37-2.28.2-2.53 is installed
OR typelib-1_0-JavaScriptCore-4_0-2.28.2-2.53 is installed
OR typelib-1_0-WebKit2-4_0-2.28.2-2.53 is installed
OR webkit2gtk-4_0-injected-bundles-2.28.2-2.53 is installed
OR webkit2gtk3-2.28.2-2.53 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
AND ipmitool-1.8.18-5.9 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-LTSS is installed
AND Package Information
libpython3_4m1_0-3.4.6-25.29 is installed
OR python3-3.4.6-25.29 is installed
OR python3-base-3.4.6-25.29 is installed
OR python3-curses-3.4.6-25.29 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
AND Package Information
apache2-2.4.23-29.40 is installed
OR apache2-doc-2.4.23-29.40 is installed
OR apache2-example-pages-2.4.23-29.40 is installed
OR apache2-prefork-2.4.23-29.40 is installed
OR apache2-utils-2.4.23-29.40 is installed
OR apache2-worker-2.4.23-29.40 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP4 is installed
AND Package Information
java-1_8_0-ibm-1.8.0_sr5.20-30.36 is installed
OR java-1_8_0-ibm-alsa-1.8.0_sr5.20-30.36 is installed
OR java-1_8_0-ibm-plugin-1.8.0_sr5.20-30.36 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud 7 is installed
AND Package Information
dovecot22-2.2.31-19.11 is installed
OR dovecot22-backend-mysql-2.2.31-19.11 is installed
OR dovecot22-backend-pgsql-2.2.31-19.11 is installed
OR dovecot22-backend-sqlite-2.2.31-19.11 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud 8 is installed
AND slf4j-1.7.12-3.3 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud Crowbar 8 is installed
AND Package Information
libecpg6-10.9-1.12 is installed
OR libpq5-10.9-1.12 is installed
OR libpq5-32bit-10.9-1.12 is installed
OR postgresql10-10.9-1.12 is installed
OR postgresql10-contrib-10.9-1.12 is installed
OR postgresql10-docs-10.9-1.12 is installed
OR postgresql10-libs-10.9-1.12 is installed
OR postgresql10-plperl-10.9-1.12 is installed
OR postgresql10-plpython-10.9-1.12 is installed
OR postgresql10-pltcl-10.9-1.12 is installed
OR postgresql10-server-10.9-1.12 is installed
|