| Revision Date: | 2020-12-01 | Version: | 1 |
| Title: | Security update for libxml2 (Moderate) |
| Description: |
This update fixes the following security issues:
* CVE-2015-1819 Enforce the reader to run in constant memory [bnc#928193] * CVE-2015-7941 Fix out of bound read with crafted xml input by stopping parsing on entities boundaries errors [bnc#951734] * CVE-2015-7942 Fix another variation of overflow in Conditional sections [bnc#951735] * CVE-2015-8241 Avoid extra processing of MarkupDecl when EOF [bnc#956018] * CVE-2015-8242 Buffer overead with HTML parser in push mode [bnc#956021] * CVE-2015-8317 Return if the encoding declaration is broken or encoding conversion failed [bnc#956260] * CVE-2015-5312 Fix another entity expansion issue [bnc#957105] * CVE-2015-7497 Avoid an heap buffer overflow in xmlDictComputeFastQKey [bnc#957106] * CVE-2015-7498 Processes entities after encoding conversion failures [bnc#957107] * CVE-2015-7499 Add xmlHaltParser() to stop the parser / Detect incoherency on GROW [bnc#957109] * CVE-2015-7500 Fix memory access error due to incorrect entities boundaries [bnc#957110]
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1019274
1023012
1035283
1071905
1071906
1072947
1078662
1080740
1082858
1084300
1089039
1101246
1101410
1101412
1101470
1101654
1103040
1104789
1106197
1111331
1124211
1124729
1124734
1128378
1129186
1141493
1163019
1168140
1168142
1169392
1174543
928193
951734
951735
956018
956021
956260
957105
957106
957107
957109
957110
997043
CVE-2006-7250
CVE-2008-5077
CVE-2009-0590
CVE-2009-0591
CVE-2009-0789
CVE-2009-1377
CVE-2009-1378
CVE-2009-1379
CVE-2009-1386
CVE-2009-1387
CVE-2010-0740
CVE-2010-0742
CVE-2010-1633
CVE-2010-2939
CVE-2010-3864
CVE-2010-5298
CVE-2011-0014
CVE-2011-3200
CVE-2011-3207
CVE-2011-3210
CVE-2011-4108
CVE-2011-4576
CVE-2011-4577
CVE-2011-4619
CVE-2012-0027
CVE-2012-0050
CVE-2012-0884
CVE-2012-1165
CVE-2012-2110
CVE-2012-2686
CVE-2012-4929
CVE-2013-0166
CVE-2013-0169
CVE-2013-4353
CVE-2013-4758
CVE-2013-6370
CVE-2013-6371
CVE-2013-6449
CVE-2013-6450
CVE-2014-0076
CVE-2014-0160
CVE-2014-0195
CVE-2014-0198
CVE-2014-0221
CVE-2014-0224
CVE-2014-2497
CVE-2014-3470
CVE-2014-3505
CVE-2014-3506
CVE-2014-3507
CVE-2014-3508
CVE-2014-3509
CVE-2014-3510
CVE-2014-3511
CVE-2014-3512
CVE-2014-3513
CVE-2014-3566
CVE-2014-3567
CVE-2014-3568
CVE-2014-3570
CVE-2014-3571
CVE-2014-3572
CVE-2014-3634
CVE-2014-3683
CVE-2014-5139
CVE-2014-8275
CVE-2014-8962
CVE-2014-9028
CVE-2014-9709
CVE-2015-0204
CVE-2015-0205
CVE-2015-0206
CVE-2015-0209
CVE-2015-0286
CVE-2015-0287
CVE-2015-0288
CVE-2015-0289
CVE-2015-0293
CVE-2015-1788
CVE-2015-1789
CVE-2015-1790
CVE-2015-1791
CVE-2015-1792
CVE-2015-1819
CVE-2015-3194
CVE-2015-3195
CVE-2015-3196
CVE-2015-3197
CVE-2015-3216
CVE-2015-4000
CVE-2015-5312
CVE-2015-7497
CVE-2015-7498
CVE-2015-7499
CVE-2015-7500
CVE-2015-7941
CVE-2015-7942
CVE-2015-8241
CVE-2015-8242
CVE-2015-8317
CVE-2016-0702
CVE-2016-0705
CVE-2016-0797
CVE-2016-0798
CVE-2016-0799
CVE-2016-0800
CVE-2016-10207
CVE-2016-2105
CVE-2016-2106
CVE-2016-2107
CVE-2016-2109
CVE-2016-2176
CVE-2016-2177
CVE-2016-2178
CVE-2016-2179
CVE-2016-2180
CVE-2016-2181
CVE-2016-2182
CVE-2016-2183
CVE-2016-5116
CVE-2016-6128
CVE-2016-6132
CVE-2016-6161
CVE-2016-6207
CVE-2016-6214
CVE-2016-6302
CVE-2016-6303
CVE-2016-6304
CVE-2016-6306
CVE-2016-6318
CVE-2016-6905
CVE-2016-7052
CVE-2016-9941
CVE-2016-9942
CVE-2017-10971
CVE-2017-10972
CVE-2017-12652
CVE-2017-3737
CVE-2017-3738
CVE-2018-0360
CVE-2018-0361
CVE-2018-0737
CVE-2018-1000085
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2018-14679
CVE-2018-7738
CVE-2019-11091
CVE-2019-3838
CVE-2019-6974
CVE-2019-7221
CVE-2019-7317
CVE-2019-9213
CVE-2020-11739
CVE-2020-11740
CVE-2020-11741
CVE-2020-11742
CVE-2020-8608
SUSE-SU-2016:0030-1
SUSE-SU-2017:0519-1
SUSE-SU-2017:1860-1
SUSE-SU-2017:3343-1
SUSE-SU-2018:2323-1
SUSE-SU-2018:2928-1
SUSE-SU-2019:0390-1
SUSE-SU-2019:0719-1
SUSE-SU-2019:1235-1
SUSE-SU-2019:3060-2
SUSE-SU-2020:2234-1
|
| Platform(s): | openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
| Product(s): | |
| Definition Synopsis |
| openSUSE Leap 15.0 is installed AND libgypsy0-0.9-lp150.2 is installed
|
| Definition Synopsis |
| openSUSE Leap 15.1 is installed
AND Package Information
graphviz-2.40.1-lp151.6.3 is installed
OR graphviz-addons-2.40.1-lp151.6.3 is installed
OR graphviz-devel-2.40.1-lp151.6.3 is installed
OR graphviz-doc-2.40.1-lp151.6.3 is installed
OR graphviz-gd-2.40.1-lp151.6.3 is installed
OR graphviz-gnome-2.40.1-lp151.6.3 is installed
OR graphviz-guile-2.40.1-lp151.6.3 is installed
OR graphviz-gvedit-2.40.1-lp151.6.3 is installed
OR graphviz-java-2.40.1-lp151.6.3 is installed
OR graphviz-lua-2.40.1-lp151.6.3 is installed
OR graphviz-perl-2.40.1-lp151.6.3 is installed
OR graphviz-php-2.40.1-lp151.6.3 is installed
OR graphviz-plugins-core-2.40.1-lp151.6.3 is installed
OR graphviz-python-2.40.1-lp151.6.3 is installed
OR graphviz-ruby-2.40.1-lp151.6.3 is installed
OR graphviz-smyrna-2.40.1-lp151.6.3 is installed
OR graphviz-tcl-2.40.1-lp151.6.3 is installed
OR libgraphviz6-2.40.1-lp151.6.3 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Desktop 11 SP4 is installed
AND Package Information
libxml2-2.7.6-0.34 is installed
OR libxml2-32bit-2.7.6-0.34 is installed
OR libxml2-python-2.7.6-0.34 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP1 is installed
AND Package Information
tigervnc-1.4.3-19 is installed
OR xorg-x11-Xvnc-1.4.3-19 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP1-LTSS is installed
AND Package Information
libpng16-1.6.8-15.5 is installed
OR libpng16-16-1.6.8-15.5 is installed
OR libpng16-16-32bit-1.6.8-15.5 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2 is installed
AND Package Information
cracklib-2.9.0-7 is installed
OR libcrack2-2.9.0-7 is installed
OR libcrack2-32bit-2.9.0-7 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2-BCL is installed
AND Package Information
java-1_8_0-openjdk-1.8.0.181-27.26 is installed
OR java-1_8_0-openjdk-demo-1.8.0.181-27.26 is installed
OR java-1_8_0-openjdk-devel-1.8.0.181-27.26 is installed
OR java-1_8_0-openjdk-headless-1.8.0.181-27.26 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
AND Package Information
kernel-default-4.4.121-92.92 is installed
OR kernel-default-base-4.4.121-92.92 is installed
OR kernel-default-devel-4.4.121-92.92 is installed
OR kernel-devel-4.4.121-92.92 is installed
OR kernel-macros-4.4.121-92.92 is installed
OR kernel-source-4.4.121-92.92 is installed
OR kernel-syms-4.4.121-92.92 is installed
OR kgraft-patch-4_4_121-92_92-default-1-3.7 is installed
OR kgraft-patch-SLE12-SP2_Update_24-1-3.7 is installed
OR lttng-modules-2.7.1-9.4 is installed
OR lttng-modules-kmp-default-2.7.1_k4.4.121_92.92-9.4 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP2-LTSS is installed
AND clamav-0.100.1-33.15 is installed
|
| Definition Synopsis |
| Release Information
SUSE Linux Enterprise Server 12 SP3 is installed
AND
libssh2-1-1.4.3-20.9 is installed
OR libssh2-1-32bit-1.4.3-20.9 is installed
OR libssh2_org-1.4.3-20.9 is installed
OR Package Information
SUSE Linux Enterprise Server 12 SP3-LTSS is installed
AND
libssh2-1-1.4.3-20.9 is installed
OR libssh2-1-32bit-1.4.3-20.9 is installed
OR libssh2_org-1.4.3-20.9 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3 is installed
AND Package Information
dracut-044-113 is installed
OR dracut-fips-044-113 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-BCL is installed
AND Package Information
libexif-0.6.22-8.9 is installed
OR libexif12-0.6.22-8.9 is installed
OR libexif12-32bit-0.6.22-8.9 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
AND Package Information
kgraft-patch-4_4_180-94_107-default-4-2 is installed
OR kgraft-patch-SLE12-SP3_Update_29-4-2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-LTSS is installed
AND Package Information
kgraft-patch-4_4_143-94_47-default-7-2 is installed
OR kgraft-patch-SLE12-SP3_Update_16-7-2 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
AND Package Information
curl-7.37.0-37.37 is installed
OR libcurl4-7.37.0-37.37 is installed
OR libcurl4-32bit-7.37.0-37.37 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise Server 12 SP4 is installed
AND Package Information
apache-commons-beanutils-1.9.2-1 is installed
OR apache-commons-beanutils-javadoc-1.9.2-1 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud 7 is installed
AND Package Information
libopenssl-devel-1.0.2j-60.39 is installed
OR libopenssl1_0_0-1.0.2j-60.39 is installed
OR libopenssl1_0_0-32bit-1.0.2j-60.39 is installed
OR libopenssl1_0_0-hmac-1.0.2j-60.39 is installed
OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.39 is installed
OR openssl-1.0.2j-60.39 is installed
OR openssl-doc-1.0.2j-60.39 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud 8 is installed
AND Package Information
libssh2-1-1.4.3-20.9 is installed
OR libssh2-1-32bit-1.4.3-20.9 is installed
OR libssh2_org-1.4.3-20.9 is installed
|
| Definition Synopsis |
| SUSE OpenStack Cloud Crowbar 8 is installed
AND Package Information
evince-3.20.2-6.27 is installed
OR evince-browser-plugin-3.20.2-6.27 is installed
OR evince-lang-3.20.2-6.27 is installed
OR evince-plugin-djvudocument-3.20.2-6.27 is installed
OR evince-plugin-dvidocument-3.20.2-6.27 is installed
OR evince-plugin-pdfdocument-3.20.2-6.27 is installed
OR evince-plugin-psdocument-3.20.2-6.27 is installed
OR evince-plugin-tiffdocument-3.20.2-6.27 is installed
OR evince-plugin-xpsdocument-3.20.2-6.27 is installed
OR libevdocument3-4-3.20.2-6.27 is installed
OR libevview3-3-3.20.2-6.27 is installed
OR nautilus-evince-3.20.2-6.27 is installed
|