Oval Definition:	oval:org.opensuse.security:def:58623
Revision Date: 2020-12-01 Version: 1 Title: Security update for jasper (Important) Description: This update for jasper fixes the following issues: - CVE-2016-8654: Heap-based buffer overflow in QMFB code in JPC codec. (bsc#1012530) - CVE-2016-9395: Invalid jasper files could lead to abort of the library caused by attacker provided image. (bsc#1010977) - CVE-2016-9398: Invalid jasper files could lead to abort of the library caused by attacker provided image. (bsc#1010979) - CVE-2016-9560: Stack-based buffer overflow in jpc_tsfb_getbands2. (bsc#1011830) - CVE-2016-9591: Use-after-free on heap in jas_matrix_destroy. (bsc#1015993) Family: unix Class: patch Status: Reference(s): 1002981 1005776 1006867 1010735 1010740 1010752 1010754 1010911 1010977 1010979 1011830 1012382 1012530 1012829 1015993 1018699 1018700 1018701 1018702 1021739 1022917 1022918 1022919 1025913 1026507 1027054 1027692 1027998 1031717 1033936 1033937 1033938 1033939 1033940 1033941 1033942 1033943 1033944 1033945 1034503 1035432 1040543 1041447 1041470 1042286 1043441 1045330 1061310 1062840 1065600 1065615 1066223 1067118 1068032 1068569 1069135 1071306 1071892 1072363 1072689 1072739 1072865 1073401 1074198 1074426 1075087 1076282 1077285 1077513 1077560 1077779 1078583 1078609 1078672 1078673 1078787 1079029 1079038 1079384 1079989 1080014 1080263 1080344 1080360 1080364 1080384 1080464 1080774 1080809 1080813 1080851 1081134 1081431 1081491 1081498 1081500 1081512 1081671 1082223 1082299 1082478 1082795 1082864 1082897 1082979 1082993 1083494 1083548 1084610 1085053 1085107 1085224 1085239 1090036 1103098 1112039 1123156 1133191 1136446 1136935 1137597 1140738 1141329 1141332 1146873 1149811 1161066 1163018 1166240 1170940 1172265 1178593 863764 966328 975772 983145 990856 998761 998762 998763 998800 998963 998964 CVE-2009-1886 CVE-2009-1888 CVE-2009-2813 CVE-2009-2906 CVE-2009-2948 CVE-2010-0547 CVE-2010-0728 CVE-2010-0787 CVE-2012-1586 CVE-2014-3430 CVE-2015-8872 CVE-2016-10195 CVE-2016-10196 CVE-2016-10197 CVE-2016-4804 CVE-2016-4983 CVE-2016-6354 CVE-2016-7175 CVE-2016-7176 CVE-2016-7177 CVE-2016-7178 CVE-2016-7179 CVE-2016-7180 CVE-2016-8654 CVE-2016-9131 CVE-2016-9147 CVE-2016-9373 CVE-2016-9374 CVE-2016-9375 CVE-2016-9376 CVE-2016-9395 CVE-2016-9398 CVE-2016-9444 CVE-2016-9560 CVE-2016-9591 CVE-2017-13166 CVE-2017-14970 CVE-2017-15951 CVE-2017-16644 CVE-2017-16912 CVE-2017-16913 CVE-2017-17975 CVE-2017-18208 CVE-2017-18926 CVE-2017-2669 CVE-2017-5596 CVE-2017-5597 CVE-2017-6014 CVE-2017-7700 CVE-2017-7701 CVE-2017-7702 CVE-2017-7703 CVE-2017-7704 CVE-2017-7705 CVE-2017-7745 CVE-2017-7746 CVE-2017-7747 CVE-2017-7748 CVE-2017-9103 CVE-2017-9104 CVE-2017-9105 CVE-2017-9106 CVE-2017-9107 CVE-2017-9108 CVE-2017-9109 CVE-2017-9214 CVE-2017-9263 CVE-2017-9265 CVE-2018-1000026 CVE-2018-1000199 CVE-2018-1068 CVE-2018-18386 CVE-2018-5391 CVE-2018-8087 CVE-2019-11477 CVE-2019-11478 CVE-2019-11487 CVE-2019-12068 CVE-2019-12525 CVE-2019-12529 CVE-2019-13345 CVE-2019-15890 CVE-2019-3846 CVE-2019-6778 CVE-2020-1711 CVE-2020-1983 CVE-2020-7039 CVE-2020-8608 SUSE-SU-2017:0084-1 SUSE-SU-2017:0111-1 SUSE-SU-2017:1442-1 SUSE-SU-2018:0200-1 SUSE-SU-2018:0311-1 SUSE-SU-2018:0785-1 SUSE-SU-2018:1550-1 SUSE-SU-2019:2089-1 SUSE-SU-2020:1612-1 SUSE-SU-2020:3351-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information libFLAC++6-1.3.2-lp150.1 is installed OR libFLAC8-1.3.2-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information go1.12-1.12.9-lp151.2.13 is installed OR go1.12-doc-1.12.9-lp151.2.13 is installed OR go1.12-race-1.12.9-lp151.2.13 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information jasper-1.900.14-184 is installed OR libjasper1-1.900.14-184 is installed OR libjasper1-32bit-1.900.14-184 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND squid-3.5.21-26.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information kgraft-patch-4_4_103-92_56-default-11-2 is installed OR kgraft-patch-SLE12-SP2_Update_17-11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_80-default-2-2 is installed OR kgraft-patch-SLE12-SP2_Update_22-2-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND cifs-utils-6.5-8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libsqlite3-0-3.8.10.2-9.15 is installed OR libsqlite3-0-32bit-3.8.10.2-9.15 is installed OR sqlite3-3.8.10.2-9.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libsolv-0.6.36-2.27.19 is installed OR libsolv-tools-0.6.36-2.27.19 is installed OR libzypp-16.20.2-27.60 is installed OR perl-solv-0.6.36-2.27.19 is installed OR python-solv-0.6.36-2.27.19 is installed OR zypper-1.13.54-18.40 is installed OR zypper-log-1.13.54-18.40 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND squid-3.5.21-26.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ovmf-2017+git1492060560.b6d11d7c46-4.12 is installed OR ovmf-tools-2017+git1492060560.b6d11d7c46-4.12 is installed OR qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-4.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libpango-1_0-0-1.40.1-9 is installed OR libpango-1_0-0-32bit-1.40.1-9 is installed OR typelib-1_0-Pango-1_0-1.40.1-9 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information kernel-default-4.4.180-94.100 is installed OR kernel-default-base-4.4.180-94.100 is installed OR kernel-default-devel-4.4.180-94.100 is installed OR kernel-devel-4.4.180-94.100 is installed OR kernel-macros-4.4.180-94.100 is installed OR kernel-source-4.4.180-94.100 is installed OR kernel-syms-4.4.180-94.100 is installed OR kgraft-patch-4_4_180-94_100-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_27-1-4.3 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.14.4-11.18 is installed
BACK