OVAL Reference oval:org.opensuse.security:def:58589

Oval Definition:

oval:org.opensuse.security:def:58589

Revision Date:	2020-12-01	Version:	1
Title:	Security update for libxml2 (Moderate)
Description:	This update for libxml2 fixes the following issues: CVE-2016-4658: use-after-free error could lead to crash [bsc#1005544] * Fix NULL dereference in xpointer.c when in recovery mode [bsc#1014873] * CVE-2016-9597: An XML document with many opening tags could have caused a overflow of the stack not detected by the recursion limits, allowing for DoS (bsc#1017497). For CVE-2016-9318 we decided not to ship a fix since it can break existing setups. Please take appropriate actions if you parse untrusted XML files and use the new -noxxe flag if possible (bnc#1010675, bnc#1013930).
Family:	unix	Class:	patch
Status:		Reference(s):	1005544 1010675 1012382 1013930 1014863 1014873 1017497 1018808 1021814 1021817 1021818 1021819 1021820 1021821 1021822 1021823 1021824 1021991 1027519 1034849 1037930 1039616 1047487 1051791 1063043 1064311 1065180 1068032 1068951 1071009 1072556 1072962 1073090 1073792 1073809 1073874 1073912 1073990 1074293 1079036 1101644 1101645 1101651 1101656 1102682 1103203 1105323 1106119 1106191 1106812 1111331 1111789 1116380 1123022 1130116 1130324 1130680 1131060 1133818 1159913 1165631 1168994 1175626 1175656 887877 909695 926974 936032 959495 964063 969470 986630 CVE-2014-4975 CVE-2015-1855 CVE-2015-3900 CVE-2015-7551 CVE-2015-7747 CVE-2016-2339 CVE-2016-4658 CVE-2016-6354 CVE-2016-9318 CVE-2016-9597 CVE-2017-12132 CVE-2017-17805 CVE-2017-17806 CVE-2017-3509 CVE-2017-3511 CVE-2017-3512 CVE-2017-3514 CVE-2017-3526 CVE-2017-3533 CVE-2017-3539 CVE-2017-3544 CVE-2017-5373 CVE-2017-5375 CVE-2017-5376 CVE-2017-5378 CVE-2017-5380 CVE-2017-5383 CVE-2017-5386 CVE-2017-5390 CVE-2017-5396 CVE-2017-5715 CVE-2017-5753 CVE-2017-5754 CVE-2017-6827 CVE-2017-6828 CVE-2017-6829 CVE-2017-6830 CVE-2017-6831 CVE-2017-6832 CVE-2017-6833 CVE-2017-6834 CVE-2017-6835 CVE-2017-6836 CVE-2017-6837 CVE-2017-6838 CVE-2017-6839 CVE-2017-8804 CVE-2018-1000001 CVE-2018-10902 CVE-2018-10938 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-20815 CVE-2018-2938 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-3639 CVE-2018-5390 CVE-2018-6485 CVE-2018-6551 CVE-2019-11091 CVE-2019-3814 CVE-2019-3880 CVE-2019-5108 CVE-2019-7524 CVE-2019-9924 CVE-2020-10713 CVE-2020-1749 SUSE-SU-2017:0380-1 SUSE-SU-2017:0427-1 SUSE-SU-2017:1067-1 SUSE-SU-2017:1445-1 SUSE-SU-2018:0012-1 SUSE-SU-2018:0451-1 SUSE-SU-2019:0900-1 SUSE-SU-2019:1195-1 SUSE-SU-2019:1371-1 SUSE-SU-2020:2628-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information groff-1.22.3-lp150.3 is installed OR groff-full-1.22.3-lp150.3 is installed OR gxditview-1.22.3-lp150.3 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information chromedriver-76.0.3809.100-lp151.2.20 is installed OR chromium-76.0.3809.100-lp151.2.20 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libxml2-2.9.4-33 is installed OR libxml2-2-2.9.4-33 is installed OR libxml2-2-32bit-2.9.4-33 is installed OR libxml2-doc-2.9.4-33 is installed OR libxml2-tools-2.9.4-33 is installed OR python-libxml2-2.9.4-33 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information xen-4.7.6_06-43.51 is installed OR xen-doc-html-4.7.6_06-43.51 is installed OR xen-libs-4.7.6_06-43.51 is installed OR xen-libs-32bit-4.7.6_06-43.51 is installed OR xen-tools-4.7.6_06-43.51 is installed OR xen-tools-domU-4.7.6_06-43.51 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_8_0-openjdk-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-demo-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-devel-1.8.0.181-27.26 is installed OR java-1_8_0-openjdk-headless-1.8.0.181-27.26 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_80-default-5-2 is installed OR kgraft-patch-SLE12-SP2_Update_22-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information at-3.1.14-7 is installed OR flex-2.5.37-8 is installed OR flex-32bit-2.5.37-8 is installed OR libQtWebKit4-4.8.6+2.3.3-3 is installed OR libQtWebKit4-32bit-4.8.6+2.3.3-3 is installed OR libbonobo-2.32.1-16 is installed OR libbonobo-32bit-2.32.1-16 is installed OR libbonobo-doc-2.32.1-16 is installed OR libbonobo-lang-2.32.1-16 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information evince-3.20.2-6.27 is installed OR evince-browser-plugin-3.20.2-6.27 is installed OR evince-lang-3.20.2-6.27 is installed OR evince-plugin-djvudocument-3.20.2-6.27 is installed OR evince-plugin-dvidocument-3.20.2-6.27 is installed OR evince-plugin-pdfdocument-3.20.2-6.27 is installed OR evince-plugin-psdocument-3.20.2-6.27 is installed OR evince-plugin-tiffdocument-3.20.2-6.27 is installed OR evince-plugin-xpsdocument-3.20.2-6.27 is installed OR libevdocument3-4-3.20.2-6.27 is installed OR libevview3-3-3.20.2-6.27 is installed OR nautilus-evince-3.20.2-6.27 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information glibc-2.22-62.22 is installed OR glibc-32bit-2.22-62.22 is installed OR glibc-devel-2.22-62.22 is installed OR glibc-devel-32bit-2.22-62.22 is installed OR glibc-html-2.22-62.22 is installed OR glibc-i18ndata-2.22-62.22 is installed OR glibc-info-2.22-62.22 is installed OR glibc-locale-2.22-62.22 is installed OR glibc-locale-32bit-2.22-62.22 is installed OR glibc-profile-2.22-62.22 is installed OR glibc-profile-32bit-2.22-62.22 is installed OR nscd-2.22-62.22 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_176-94_88-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_24-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information audiofile-0.3.6-11.3 is installed OR libaudiofile1-0.3.6-11.3 is installed OR libaudiofile1-32bit-0.3.6-11.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libjavascriptcoregtk-4_0-18-2.20.3-2.23 is installed OR libwebkit2gtk-4_0-37-2.20.3-2.23 is installed OR typelib-1_0-JavaScriptCore-4_0-2.20.3-2.23 is installed OR typelib-1_0-WebKit2-4_0-2.20.3-2.23 is installed OR webkit2gtk-4_0-injected-bundles-2.20.3-2.23 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND Package Information perl-5.18.2-12.23 is installed OR perl-32bit-5.18.2-12.23 is installed OR perl-base-5.18.2-12.23 is installed OR perl-doc-5.18.2-12.23 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND python-cryptography-2.0.3-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information ghostscript-9.52-23.39 is installed OR ghostscript-x11-9.52-23.39 is installed

BACK