Oval Definition:	oval:org.opensuse.security:def:58260
Revision Date: 2020-12-01 Version: 1 Title: Security update for LibVNCServer (Important) Description: This update for LibVNCServer fixes the following issues: - CVE-2019-15690: Fixed a heap buffer overflow (bsc#1160471). - CVE-2019-15681: Fixed a memory leak which could have allowed to a remote attacker to read stack memory (bsc#1155419). - CVE-2019-20788: Fixed a integer overflow and heap-based buffer overflow via a large height or width value (bsc#1170441). Family: unix Class: patch Status: Reference(s): 1023895 1038395 1044887 1044894 1052261 1054413 1055478 1070737 1073230 1073879 1076017 1083488 1085114 1085447 1091396 1101820 1105010 1111331 1111622 1111657 1120489 1122668 1131390 1131595 1135273 1138748 1149792 1155419 1157763 1159478 1159479 1159482 1159486 1160471 1170441 1173902 1173994 1176409 1176412 1178588 761500 922448 929736 935252 945455 947357 961596 964336 967128 980486 981848 CVE-2015-2296 CVE-2017-12424 CVE-2017-13166 CVE-2017-7375 CVE-2017-7376 CVE-2017-8386 CVE-2018-1000004 CVE-2018-1068 CVE-2018-10903 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-14734 CVE-2018-15473 CVE-2018-18074 CVE-2018-20217 CVE-2018-7566 CVE-2019-11091 CVE-2019-15681 CVE-2019-15690 CVE-2019-15961 CVE-2019-18388 CVE-2019-18389 CVE-2019-18390 CVE-2019-18391 CVE-2019-20788 CVE-2019-3886 CVE-2020-14318 CVE-2020-14323 CVE-2020-14392 CVE-2020-14393 CVE-2020-26950 SUSE-SU-2017:1357-1 SUSE-SU-2017:2947-1 SUSE-SU-2018:0989-1 SUSE-SU-2018:3910-1 SUSE-SU-2019:3177-1 SUSE-SU-2020:0016-1 SUSE-SU-2020:0792-1 SUSE-SU-2020:1165-1 SUSE-SU-2020:1792-1 SUSE-SU-2020:2661-1 SUSE-SU-2020:3083-1 SUSE-SU-2020:3331-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information bash-4.4-lp150.7 is installed OR bash-doc-4.4-lp150.7 is installed OR bash-lang-4.4-lp150.7 is installed OR libreadline7-7.0-lp150.7 is installed OR readline-doc-7.0-lp150.7 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND transfig-3.2.6a-lp151.4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libxml2-2.9.4-45 is installed OR libxml2-2-2.9.4-45 is installed OR libxml2-2-32bit-2.9.4-45 is installed OR libxml2-doc-2.9.4-45 is installed OR libxml2-tools-2.9.4-45 is installed OR python-libxml2-2.9.4-45 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information openssh-7.2p2-74.30 is installed OR openssh-askpass-gnome-7.2p2-74.30 is installed OR openssh-fips-7.2p2-74.30 is installed OR openssh-helpers-7.2p2-74.30 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information krb5-1.12.5-40.31 is installed OR krb5-32bit-1.12.5-40.31 is installed OR krb5-client-1.12.5-40.31 is installed OR krb5-doc-1.12.5-40.31 is installed OR krb5-plugin-kdb-ldap-1.12.5-40.31 is installed OR krb5-plugin-preauth-otp-1.12.5-40.31 is installed OR krb5-plugin-preauth-pkinit-1.12.5-40.31 is installed OR krb5-server-1.12.5-40.31 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_90-92_45-default-5-2 is installed OR kgraft-patch-SLE12-SP2_Update_14-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND ant-1.9.4-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information xen-4.9.4_04-3.56 is installed OR xen-doc-html-4.9.4_04-3.56 is installed OR xen-libs-4.9.4_04-3.56 is installed OR xen-libs-32bit-4.9.4_04-3.56 is installed OR xen-tools-4.9.4_04-3.56 is installed OR xen-tools-domU-4.9.4_04-3.56 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libXvnc1-1.6.0-18.28 is installed OR tigervnc-1.6.0-18.28 is installed OR xorg-x11-Xvnc-1.6.0-18.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_156-94_64-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_20-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND shadow-4.2.1-27.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND libXxf86dga1-1.1.4-3 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information LibVNCServer-0.9.9-17.19 is installed OR libvncclient0-0.9.9-17.19 is installed OR libvncserver0-0.9.9-17.19 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND python-Twisted-15.2.1-9.8 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.14.4-11.18 is installed
BACK