Oval Definition:oval:org.opensuse.security:def:58827
Revision Date:2021-09-16Version:1
Title:Security update for transfig (Moderate)
Description:

This update for transfig fixes the following issues:

Update to version 3.2.8, including fixes for

- CVE-2021-3561: overflow in fig2dev/read.c in function read_colordef() (bsc#1186329). - CVE-2020-21683: Fixed buffer overflow in the shade_or_tint_name_after_declare_color in genpstricks.c (bsc#1189325). - CVE-2020-21682: Fixed buffer overflow in the set_fill component in genge.c (bsc#1189346). - CVE-2020-21681: Fixed buffer overflow in the set_color component in genge.c (bsc#1189345). - CVE-2020-21680: Fixed stack-based buffer overflow in the put_arrow() component in genpict2e.c (bsc#1189343). - CVE-2019-19797: out-of-bounds write in read_colordef in read.c (bsc#1159293). - CVE-2019-19555: stack-based buffer overflow because of an incorrect sscanf (bsc#1161698). - CVE-2019-19746: segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type (bsc#1159130).
Family:unixClass:patch
Status:Reference(s):1001600
1043353
1043354
1047908
1048510
1050037
1050072
1050098
1050100
1050635
1051442
1052470
1052708
1052717
1052721
1052768
1052777
1052781
1054600
1055068
1055374
1055455
1055456
1057000
1060162
1062752
1065276
1066156
1068251
1070428
1071558
1072362
1072901
1074120
1074125
1074185
1074254
1074309
1075724
1075939
1076021
1076051
1076308
1081925
1092548
1093414
1106222
1110910
1111006
1111010
1111013
1114422
1124729
1124734
1128378
1133191
1136446
1136882
1136935
1137597
1144902
1150734
1157198
1159130
1159293
1161698
1163985
1167373
1173304
1186329
1189325
1189343
1189345
1189346
897422
974655
980722
994989
CVE-2010-2522
CVE-2010-2523
CVE-2012-3466
CVE-2014-1545
CVE-2015-7183
CVE-2016-4912
CVE-2016-5104
CVE-2016-7567
CVE-2017-10995
CVE-2017-11505
CVE-2017-11525
CVE-2017-11526
CVE-2017-11539
CVE-2017-11639
CVE-2017-11750
CVE-2017-12565
CVE-2017-12640
CVE-2017-12641
CVE-2017-12643
CVE-2017-12671
CVE-2017-12673
CVE-2017-12676
CVE-2017-12935
CVE-2017-13059
CVE-2017-13141
CVE-2017-13142
CVE-2017-13147
CVE-2017-14103
CVE-2017-14649
CVE-2017-15218
CVE-2017-15908
CVE-2017-17504
CVE-2017-17681
CVE-2017-17879
CVE-2017-17884
CVE-2017-17914
CVE-2017-18008
CVE-2017-18027
CVE-2017-18029
CVE-2017-9261
CVE-2017-9262
CVE-2018-1049
CVE-2018-1058
CVE-2018-10839
CVE-2018-15746
CVE-2018-17958
CVE-2018-17962
CVE-2018-17963
CVE-2018-18849
CVE-2018-5150
CVE-2018-5154
CVE-2018-5155
CVE-2018-5157
CVE-2018-5158
CVE-2018-5159
CVE-2018-5168
CVE-2018-5174
CVE-2018-5178
CVE-2018-5183
CVE-2018-5246
CVE-2018-5685
CVE-2019-10218
CVE-2019-11477
CVE-2019-11478
CVE-2019-11487
CVE-2019-18860
CVE-2019-19555
CVE-2019-19746
CVE-2019-19797
CVE-2019-3688
CVE-2019-3690
CVE-2019-3846
CVE-2019-6974
CVE-2019-7221
CVE-2019-9213
CVE-2020-14059
CVE-2020-1720
CVE-2020-21680
CVE-2020-21681
CVE-2020-21682
CVE-2020-21683
CVE-2021-3561
SUSE-SU-2018:0100-1
SUSE-SU-2018:0299-1
SUSE-SU-2018:0349-1
SUSE-SU-2018:0756-1
SUSE-SU-2018:4237-1
SUSE-SU-2019:2875-1
SUSE-SU-2019:3180-1
SUSE-SU-2020:0715-1
SUSE-SU-2020:1803-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND libgypsy0-0.9-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.26.4-lp151.2.12 is installed
  • OR libjavascriptcoregtk-4_0-18-32bit-2.26.4-lp151.2.12 is installed
  • OR libwebkit2gtk-4_0-37-2.26.4-lp151.2.12 is installed
  • OR libwebkit2gtk-4_0-37-32bit-2.26.4-lp151.2.12 is installed
  • OR libwebkit2gtk3-lang-2.26.4-lp151.2.12 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.26.4-lp151.2.12 is installed
  • OR typelib-1_0-WebKit2-4_0-2.26.4-lp151.2.12 is installed
  • OR typelib-1_0-WebKit2WebExtension-4_0-2.26.4-lp151.2.12 is installed
  • OR webkit-jsc-4-2.26.4-lp151.2.12 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.26.4-lp151.2.12 is installed
  • OR webkit2gtk3-2.26.4-lp151.2.12 is installed
  • OR webkit2gtk3-devel-2.26.4-lp151.2.12 is installed
  • OR webkit2gtk3-minibrowser-2.26.4-lp151.2.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libsystemd0-228-150.29 is installed
  • OR libsystemd0-32bit-228-150.29 is installed
  • OR libudev1-228-150.29 is installed
  • OR libudev1-32bit-228-150.29 is installed
  • OR systemd-228-150.29 is installed
  • OR systemd-32bit-228-150.29 is installed
  • OR systemd-bash-completion-228-150.29 is installed
  • OR systemd-sysvinit-228-150.29 is installed
  • OR udev-228-150.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libdcerpc-atsvc0-4.2.4-28.36 is installed
  • OR samba-4.2.4-28.36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-52.8.0esr-109.31 is installed
  • OR MozillaFirefox-devel-52.8.0esr-109.31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • qemu-2.6.2-41.46 is installed
  • OR qemu-block-curl-2.6.2-41.46 is installed
  • OR qemu-block-rbd-2.6.2-41.46 is installed
  • OR qemu-block-ssh-2.6.2-41.46 is installed
  • OR qemu-guest-agent-2.6.2-41.46 is installed
  • OR qemu-ipxe-1.0.0-41.46 is installed
  • OR qemu-kvm-2.6.2-41.46 is installed
  • OR qemu-lang-2.6.2-41.46 is installed
  • OR qemu-ppc-2.6.2-41.46 is installed
  • OR qemu-s390-2.6.2-41.46 is installed
  • OR qemu-seabios-1.9.1-41.46 is installed
  • OR qemu-sgabios-8-41.46 is installed
  • OR qemu-tools-2.6.2-41.46 is installed
  • OR qemu-vgabios-1.9.1-41.46 is installed
  • OR qemu-x86-2.6.2-41.46 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • gnome-keyring-3.20.0-27 is installed
  • OR gnome-keyring-32bit-3.20.0-27 is installed
  • OR gnome-keyring-lang-3.20.0-27 is installed
  • OR gnome-keyring-pam-3.20.0-27 is installed
  • OR gnome-keyring-pam-32bit-3.20.0-27 is installed
  • OR libgck-modules-gnome-keyring-3.20.0-27 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • glibc-2.22-62.22 is installed
  • OR glibc-32bit-2.22-62.22 is installed
  • OR glibc-devel-2.22-62.22 is installed
  • OR glibc-devel-32bit-2.22-62.22 is installed
  • OR glibc-html-2.22-62.22 is installed
  • OR glibc-i18ndata-2.22-62.22 is installed
  • OR glibc-info-2.22-62.22 is installed
  • OR glibc-locale-2.22-62.22 is installed
  • OR glibc-locale-32bit-2.22-62.22 is installed
  • OR glibc-profile-2.22-62.22 is installed
  • OR glibc-profile-32bit-2.22-62.22 is installed
  • OR nscd-2.22-62.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kernel-default-4.4.180-94.103 is installed
  • OR kernel-default-base-4.4.180-94.103 is installed
  • OR kernel-default-devel-4.4.180-94.103 is installed
  • OR kernel-devel-4.4.180-94.103 is installed
  • OR kernel-macros-4.4.180-94.103 is installed
  • OR kernel-source-4.4.180-94.103 is installed
  • OR kernel-syms-4.4.180-94.103 is installed
  • OR kgraft-patch-4_4_180-94_103-default-1-4.3 is installed
  • OR kgraft-patch-SLE12-SP3_Update_28-1-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_97-default-3-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_26-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND transfig-3.2.8a-2.17.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND clamav-0.100.2-33.18 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND sudo-1.8.20p2-3.14 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND xrdp-0.9.0~git.1456906198.f422461-21.27 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • perl-5.18.2-12.23 is installed
  • OR perl-32bit-5.18.2-12.23 is installed
  • OR perl-base-5.18.2-12.23 is installed
  • OR perl-doc-5.18.2-12.23 is installed
    • BACK