OVAL Reference oval:org.opensuse.security:def:58487

Oval Definition:

oval:org.opensuse.security:def:58487

Revision Date:	2020-12-01	Version:	1
Title:	Security update for libquicktime (Moderate)
Description:	This update for libquicktime fixes the following issues: CVE-2017-9122: A DoS in quicktime_read_moov function in moov.c via acrafted mp4 file was fixed. (bsc#1044077) * CVE-2017-9123: An invalid memory read in lqt_frame_duration via a crafted mp4 file was fixed. (bsc#1044009) * CVE-2017-9124: A NULL pointer dereference in quicktime_match_32 via a crafted mp4 file was fixed. (bsc#1044008) * CVE-2017-9125: A DoS in lqt_frame_duration function in lqt_quicktime.c via crafted mp4 file was fixed. (bsc#1044122) * CVE-2017-9126: A heap-based buffer overflow in quicktime_read_dref_table via a crafted mp4 file was fixed. (bsc#1044006) * CVE-2017-9127: A heap-based buffer overflow in quicktime_user_atoms_read_atom via a crafted mp4 file was fixed. (bsc#1044002) * CVE-2017-9128: A heap-based buffer over-read in quicktime_video_width via a crafted mp4 file was fixed. (bsc#1044000)
Family:	unix	Class:	patch
Status:		Reference(s):	1003577 1003579 1003580 1006796 1007600 1011057 1013496 1013882 1024200 1024287 1024292 1024294 1044000 1044002 1044006 1044008 1044009 1044077 1044122 1049825 1052916 1057974 1060877 1065237 1068588 1071224 1071311 1075801 1077925 1090671 1097108 1109893 1110542 1111319 1112911 1113296 1116995 1119183 1119687 1120629 1120630 1120631 1121816 1121821 1127155 1131576 1131709 1131823 1134226 1137977 1140039 1145521 1160467 1160468 1168874 1173027 1173991 1174284 1175686 971031 994598 CVE-2015-5191 CVE-2016-9840 CVE-2016-9841 CVE-2016-9842 CVE-2016-9843 CVE-2017-12166 CVE-2017-18078 CVE-2017-2581 CVE-2017-2586 CVE-2017-2587 CVE-2017-2885 CVE-2017-9122 CVE-2017-9123 CVE-2017-9124 CVE-2017-9125 CVE-2017-9126 CVE-2017-9127 CVE-2017-9128 CVE-2018-10853 CVE-2018-20346 CVE-2018-20506 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2019-14896 CVE-2019-14897 CVE-2019-6109 CVE-2019-6111 CVE-2020-15663 CVE-2020-15664 CVE-2020-15670 CVE-2020-6821 CVE-2020-6822 CVE-2020-6825 CVE-2020-6827 CVE-2020-6828 CVE-2020-8177 SUSE-SU-2017:0003-1 SUSE-SU-2017:0702-1 SUSE-SU-2017:1603-1 SUSE-SU-2017:1769-1 SUSE-SU-2017:2129-1 SUSE-SU-2017:2839-1 SUSE-SU-2018:0546-1 SUSE-SU-2018:2684-1 SUSE-SU-2019:0913-1 SUSE-SU-2019:1524-1 SUSE-SU-2020:0978-1 SUSE-SU-2020:2544-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information kinit-5.45.0-lp150.1 is installed OR kinit-lang-5.45.0-lp150.1 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information MozillaThunderbird-60.7.2-lp151.2.7 is installed OR MozillaThunderbird-buildsymbols-60.7.2-lp151.2.7 is installed OR MozillaThunderbird-translations-common-60.7.2-lp151.2.7 is installed OR MozillaThunderbird-translations-other-60.7.2-lp151.2.7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libquicktime-1.2.4-13 is installed OR libquicktime0-1.2.4-13 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information openssh-7.2p2-74.42 is installed OR openssh-askpass-gnome-7.2p2-74.42 is installed OR openssh-fips-7.2p2-74.42 is installed OR openssh-helpers-7.2p2-74.42 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libsolv-0.6.36-2.27.19 is installed OR libsolv-tools-0.6.36-2.27.19 is installed OR libzypp-16.20.2-27.60 is installed OR perl-solv-0.6.36-2.27.19 is installed OR python-solv-0.6.36-2.27.19 is installed OR zypper-1.13.54-18.40 is installed OR zypper-log-1.13.54-18.40 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_92-default-2-2 is installed OR kgraft-patch-SLE12-SP2_Update_24-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information ghostscript-9.15-22 is installed OR ghostscript-x11-9.15-22 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libjavascriptcoregtk-4_0-18-2.24.4-2.47 is installed OR libwebkit2gtk-4_0-37-2.24.4-2.47 is installed OR typelib-1_0-JavaScriptCore-4_0-2.24.4-2.47 is installed OR typelib-1_0-WebKit2-4_0-2.24.4-2.47 is installed OR webkit2gtk-4_0-injected-bundles-2.24.4-2.47 is installed OR webkit2gtk3-2.24.4-2.47 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.2-2.53 is installed OR libwebkit2gtk-4_0-37-2.28.2-2.53 is installed OR libwebkit2gtk3-lang-2.28.2-2.53 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.2-2.53 is installed OR typelib-1_0-WebKit2-4_0-2.28.2-2.53 is installed OR webkit2gtk-4_0-injected-bundles-2.28.2-2.53 is installed OR webkit2gtk3-2.28.2-2.53 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libfreebl3-3.53.1-58.48 is installed OR libfreebl3-32bit-3.53.1-58.48 is installed OR libfreebl3-hmac-3.53.1-58.48 is installed OR libfreebl3-hmac-32bit-3.53.1-58.48 is installed OR libsoftokn3-3.53.1-58.48 is installed OR libsoftokn3-32bit-3.53.1-58.48 is installed OR libsoftokn3-hmac-3.53.1-58.48 is installed OR libsoftokn3-hmac-32bit-3.53.1-58.48 is installed OR mozilla-nspr-4.25-19.15 is installed OR mozilla-nspr-32bit-4.25-19.15 is installed OR mozilla-nspr-devel-4.25-19.15 is installed OR mozilla-nss-3.53.1-58.48 is installed OR mozilla-nss-32bit-3.53.1-58.48 is installed OR mozilla-nss-certs-3.53.1-58.48 is installed OR mozilla-nss-certs-32bit-3.53.1-58.48 is installed OR mozilla-nss-devel-3.53.1-58.48 is installed OR mozilla-nss-sysinit-3.53.1-58.48 is installed OR mozilla-nss-sysinit-32bit-3.53.1-58.48 is installed OR mozilla-nss-tools-3.53.1-58.48 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libdcerpc-binding0-4.6.16+git.154.2998451b912-3.40 is installed OR libdcerpc-binding0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libdcerpc0-4.6.16+git.154.2998451b912-3.40 is installed OR libdcerpc0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libndr-krb5pac0-4.6.16+git.154.2998451b912-3.40 is installed OR libndr-krb5pac0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libndr-nbt0-4.6.16+git.154.2998451b912-3.40 is installed OR libndr-nbt0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libndr-standard0-4.6.16+git.154.2998451b912-3.40 is installed OR libndr-standard0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libndr0-4.6.16+git.154.2998451b912-3.40 is installed OR libndr0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libnetapi0-4.6.16+git.154.2998451b912-3.40 is installed OR libnetapi0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libsamba-credentials0-4.6.16+git.154.2998451b912-3.40 is installed OR libsamba-credentials0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libsamba-errors0-4.6.16+git.154.2998451b912-3.40 is installed OR libsamba-errors0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libsamba-hostconfig0-4.6.16+git.154.2998451b912-3.40 is installed OR libsamba-hostconfig0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libsamba-passdb0-4.6.16+git.154.2998451b912-3.40 is installed OR libsamba-passdb0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libsamba-util0-4.6.16+git.154.2998451b912-3.40 is installed OR libsamba-util0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libsamdb0-4.6.16+git.154.2998451b912-3.40 is installed OR libsamdb0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libsmbclient0-4.6.16+git.154.2998451b912-3.40 is installed OR libsmbclient0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libsmbconf0-4.6.16+git.154.2998451b912-3.40 is installed OR libsmbconf0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libsmbldap0-4.6.16+git.154.2998451b912-3.40 is installed OR libsmbldap0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libtevent-util0-4.6.16+git.154.2998451b912-3.40 is installed OR libtevent-util0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR libwbclient0-4.6.16+git.154.2998451b912-3.40 is installed OR libwbclient0-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR samba-4.6.16+git.154.2998451b912-3.40 is installed OR samba-client-4.6.16+git.154.2998451b912-3.40 is installed OR samba-client-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR samba-doc-4.6.16+git.154.2998451b912-3.40 is installed OR samba-libs-4.6.16+git.154.2998451b912-3.40 is installed OR samba-libs-32bit-4.6.16+git.154.2998451b912-3.40 is installed OR samba-winbind-4.6.16+git.154.2998451b912-3.40 is installed OR samba-winbind-32bit-4.6.16+git.154.2998451b912-3.40 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information gnome-settings-daemon-3.20.1-50.5 is installed OR gnome-settings-daemon-lang-3.20.1-50.5 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information libsolv-0.6.36-2.16 is installed OR libsolv-tools-0.6.36-2.16 is installed OR libzypp-16.20.0-2.39 is installed OR perl-solv-0.6.36-2.16 is installed OR python-solv-0.6.36-2.16 is installed OR zypper-1.13.51-21.26 is installed OR zypper-log-1.13.51-21.26 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr5.40-30.54 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr5.40-30.54 is installed

BACK