Oval Definition:	oval:org.opensuse.security:def:58666
Revision Date: 2020-12-01 Version: 1 Title: Security update for tigervnc (Moderate) Description: This update for tigervnc provides the several fixes. These security issues were fixed: - CVE-2017-7392, CVE-2017-7396: Client can cause leak in VNC server (bsc#1031886) - CVE-2017-7395: Authenticated VNC client can crash VNC server (bsc#1031877) - CVE-2017-7394: Client can crash or block VNC server (bsc#1031879) - CVE-2017-7393: Authenticated client can cause double free in VNC server (bsc#1031875) - Prevent buffer overflow in VNC client, allowing for crashing the client (bnc#1032880) These non-security issues were fixed: - Prevent client disconnection caused by invalid cursor manipulation. (bsc#1024929, bsc#1031045) - Readd index.vnc. (bsc#1026833) - Crop operations to visible screen. (bnc#1032272) Family: unix Class: patch Status: Reference(s): 1024929 1026833 1027519 1031045 1031875 1031877 1031879 1031886 1032272 1032880 1038231 1047443 1056127 1056128 1056129 1056131 1056132 1056136 1059809 1059811 1074562 1086039 1092631 1095735 1102682 1103203 1105323 1106191 1111331 1149496 1152856 1154212 1160968 1174415 CVE-2009-2624 CVE-2010-0001 CVE-2011-3630 CVE-2011-3631 CVE-2011-3632 CVE-2013-5653 CVE-2015-3228 CVE-2016-10220 CVE-2016-10396 CVE-2016-7978 CVE-2016-7979 CVE-2016-8602 CVE-2016-9601 CVE-2017-13728 CVE-2017-13729 CVE-2017-13730 CVE-2017-13731 CVE-2017-13732 CVE-2017-13733 CVE-2017-14632 CVE-2017-14633 CVE-2017-5715 CVE-2017-5753 CVE-2017-5754 CVE-2017-5951 CVE-2017-7207 CVE-2017-7392 CVE-2017-7393 CVE-2017-7394 CVE-2017-7395 CVE-2017-7396 CVE-2017-7494 CVE-2017-8291 CVE-2018-10902 CVE-2018-10938 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-3639 CVE-2018-5390 CVE-2019-11091 CVE-2019-2894 CVE-2019-2933 CVE-2019-2945 CVE-2019-2949 CVE-2019-2958 CVE-2019-2962 CVE-2019-2964 CVE-2019-2973 CVE-2019-2978 CVE-2019-2981 CVE-2019-2983 CVE-2019-2987 CVE-2019-2988 CVE-2019-2989 CVE-2019-2992 CVE-2019-2999 CVE-2019-5482 CVE-2020-15900 CVE-2020-2583 CVE-2020-2590 CVE-2020-2593 CVE-2020-2601 CVE-2020-2604 CVE-2020-2654 CVE-2020-2659 SUSE-SU-2017:1094-1 SUSE-SU-2017:1392-1 SUSE-SU-2018:0015-1 SUSE-SU-2018:0120-1 SUSE-SU-2018:0424-1 SUSE-SU-2018:1571-2 SUSE-SU-2018:1699-1 SUSE-SU-2019:2339-2 SUSE-SU-2019:3084-1 SUSE-SU-2020:0261-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information ImageMagick-7.0.7.29-lp150.1 is installed OR libMagick++-7_Q16HDRI4-7.0.7.29-lp150.1 is installed OR libMagickCore-7_Q16HDRI6-7.0.7.29-lp150.1 is installed OR libMagickWand-7_Q16HDRI6-7.0.7.29-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libmosquitto1-1.5.7-lp151.2.3 is installed OR libmosquittopp1-1.5.7-lp151.2.3 is installed OR mosquitto-1.5.7-lp151.2.3 is installed OR mosquitto-clients-1.5.7-lp151.2.3 is installed OR mosquitto-devel-1.5.7-lp151.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libXvnc1-1.6.0-18.11 is installed OR tigervnc-1.6.0-18.11 is installed OR xorg-x11-Xvnc-1.6.0-18.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information kernel-firmware-20170530-21.22 is installed OR ucode-amd-20170530-21.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND ucode-intel-20190507-13.41 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information xen-4.7.5_04-43.33 is installed OR xen-doc-html-4.7.5_04-43.33 is installed OR xen-libs-4.7.5_04-43.33 is installed OR xen-libs-32bit-4.7.5_04-43.33 is installed OR xen-tools-4.7.5_04-43.33 is installed OR xen-tools-domU-4.7.5_04-43.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information ghostscript-9.15-22 is installed OR ghostscript-x11-9.15-22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libgcrypt-1.6.1-16.68 is installed OR libgcrypt20-1.6.1-16.68 is installed OR libgcrypt20-32bit-1.6.1-16.68 is installed OR libgcrypt20-hmac-1.6.1-16.68 is installed OR libgcrypt20-hmac-32bit-1.6.1-16.68 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_156-94_61-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_19-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_178-94_91-default-5-2 is installed OR kgraft-patch-SLE12-SP3_Update_25-5-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND yast2-smt-3.0.14-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND libvirglrenderer0-0.5.0-11 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND squid-3.5.21-26.17 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed
BACK