Oval Definition:oval:org.opensuse.security:def:58709
Revision Date:2020-12-01Version:1
Title:Security update for netpbm (Moderate)
Description:

This update for netpbm fixes the following issues:

Security bugs: * CVE-2017-2586: A NULL pointer dereference in stringToUint function could lead to a denial of service (abort) problem when processing malformed images. [bsc#1024292] * CVE-2017-2581: A out-of-bounds write in writeRasterPbm() could be used by attackers to crash the decoder or potentially execute code. [bsc#1024287] * CVE-2017-2587: A insufficient size check of memory allocation in createCanvas() function could be used for a denial of service attack (memory exhaustion) [bsc#1024294]
Family:unixClass:patch
Status:Reference(s):1024287
1024292
1024294
1043978
1059911
1059912
1059913
1068032
1069874
1095735
1096723
1097108
1099306
1102682
1105323
1106191
1108308
1124211
1132728
1132729
1132732
1132734
1134718
1136446
1137597
1139073
1140747
1141035
1141493
1155988
1157471
1173902
1173994
CVE-2009-0023
CVE-2009-1720
CVE-2009-1721
CVE-2009-2412
CVE-2009-3560
CVE-2009-3720
CVE-2010-1623
CVE-2013-2001
CVE-2017-12652
CVE-2017-14245
CVE-2017-14246
CVE-2017-14634
CVE-2017-16942
CVE-2017-2581
CVE-2017-2586
CVE-2017-2587
CVE-2017-5715
CVE-2017-5753
CVE-2017-6892
CVE-2018-1000026
CVE-2018-10853
CVE-2018-10902
CVE-2018-10938
CVE-2018-3646
CVE-2018-5390
CVE-2019-10245
CVE-2019-11135
CVE-2019-11139
CVE-2019-11477
CVE-2019-11478
CVE-2019-19191
CVE-2019-2602
CVE-2019-2684
CVE-2019-2697
CVE-2019-2698
CVE-2019-3846
CVE-2019-7317
CVE-2020-14318
CVE-2020-14323
SUSE-SU-2017:1603-1
SUSE-SU-2018:0069-1
SUSE-SU-2018:0352-1
SUSE-SU-2018:1571-1
SUSE-SU-2018:3074-2
SUSE-SU-2019:1345-1
SUSE-SU-2019:2988-1
SUSE-SU-2019:3060-2
SUSE-SU-2020:0115-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • eog-3.26.2-lp150.3 is installed
  • OR eog-lang-3.26.2-lp150.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND docker-runc-1.0.0rc8+gitr3826_425e105d5a03-lp151.3.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libnetpbm11-10.66.3-7 is installed
  • OR libnetpbm11-32bit-10.66.3-7 is installed
  • OR netpbm-10.66.3-7 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libecpg6-10.5-1.3 is installed
  • OR libpq5-10.5-1.3 is installed
  • OR libpq5-32bit-10.5-1.3 is installed
  • OR postgresql-init-10-17.20 is installed
  • OR postgresql10-10.5-1.3 is installed
  • OR postgresql10-contrib-10.5-1.3 is installed
  • OR postgresql10-docs-10.5-1.3 is installed
  • OR postgresql10-libs-10.5-1.3 is installed
  • OR postgresql10-server-10.5-1.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_95-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_25-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_73-default-4-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_21-4-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libIlmImf-Imf_2_1-21-2.1.0-4 is installed
  • OR openexr-2.1.0-4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libpolkit0-0.113-5.18 is installed
  • OR polkit-0.113-5.18 is installed
  • OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_97-default-6-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_26-6-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libvirglrenderer0-0.5.0-12.3 is installed
  • OR virglrenderer-0.5.0-12.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libarchive-3.1.2-26.3 is installed
  • OR libarchive13-3.1.2-26.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND pcsc-ccid-1.4.25-4 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND slf4j-1.7.12-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ruby2.1-rubygem-activejob-4_2-4.2.9-3.6 is installed
  • OR rubygem-activejob-4_2-4.2.9-3.6 is installed
    • BACK