Oval Definition:oval:org.opensuse.security:def:59433
Revision Date:2020-12-01Version:1
Title:Security update for qpdf (Moderate)
Description:



This update for qpdf fixes the following issues:

qpdf was updated to 7.1.1.

Security issues fixed:

- CVE-2017-11627: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050577). - CVE-2017-11625: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050579). - CVE-2017-11626: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050578). - CVE-2017-11624: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050581). - CVE-2017-12595: Stack overflow when processing deeply nested arrays and dictionaries (bsc#1055960). - CVE-2017-9209: Remote attackers can cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document (bsc#1040312). - CVE-2017-9210: Remote attackers can cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document (bsc#1040313). - CVE-2017-9208: Remote attackers can cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document (bsc#1040311).

* Check release notes for detailed bug fixes. * http://qpdf.sourceforge.net/files/qpdf-manual.html#ref.release-notes

Family:unixClass:patch
Status:Reference(s):1009745
1012382
1023616
1027519
1031717
1036659
1038984
1040311
1040312
1040313
1043055
1043218
1045735
1046417
1046610
1047785
1048315
1048576
1050577
1050578
1050579
1050581
1053431
1055960
1057734
1070536
1074562
1075428
1076847
1077560
1082153
1082299
1083125
1083745
1083836
1084353
1084610
1084721
1084829
1085042
1085185
1085224
1085402
1085404
1086039
1086162
1086194
1087088
1087260
1087845
1088241
1088242
1088600
1088684
1089198
1089608
1089644
1089752
1090643
1092631
1096254
1101644
1101645
1101651
1101656
1104204
1108382
1109137
1111331
1112142
1112143
1112144
1112146
1112147
1112152
1112153
1127155
1129622
1130675
1133190
1133738
1134395
1134701
1136922
1136935
1137194
1138291
1140575
1148987
1154328
1171352
1174157
1174628
1177943
CVE-2011-1018
CVE-2014-0011
CVE-2014-8240
CVE-2015-0255
CVE-2017-10053
CVE-2017-10067
CVE-2017-10074
CVE-2017-10078
CVE-2017-10081
CVE-2017-10087
CVE-2017-10089
CVE-2017-10090
CVE-2017-10096
CVE-2017-10101
CVE-2017-10102
CVE-2017-10105
CVE-2017-10107
CVE-2017-10108
CVE-2017-10109
CVE-2017-10110
CVE-2017-10111
CVE-2017-10115
CVE-2017-10116
CVE-2017-10125
CVE-2017-10243
CVE-2017-11624
CVE-2017-11625
CVE-2017-11626
CVE-2017-11627
CVE-2017-12595
CVE-2017-18257
CVE-2017-5715
CVE-2017-5753
CVE-2017-5754
CVE-2017-7435
CVE-2017-7436
CVE-2017-9208
CVE-2017-9209
CVE-2017-9210
CVE-2017-9269
CVE-2017-9788
CVE-2018-10087
CVE-2018-10124
CVE-2018-1087
CVE-2018-11769
CVE-2018-12126
CVE-2018-12127
CVE-2018-12130
CVE-2018-13785
CVE-2018-16435
CVE-2018-20815
CVE-2018-20836
CVE-2018-2938
CVE-2018-2940
CVE-2018-2952
CVE-2018-2973
CVE-2018-3136
CVE-2018-3139
CVE-2018-3149
CVE-2018-3169
CVE-2018-3180
CVE-2018-3214
CVE-2018-3639
CVE-2018-7740
CVE-2018-8043
CVE-2018-8781
CVE-2018-8822
CVE-2018-8897
CVE-2019-10126
CVE-2019-10638
CVE-2019-10639
CVE-2019-11091
CVE-2019-11487
CVE-2019-11599
CVE-2019-12380
CVE-2019-12456
CVE-2019-12614
CVE-2019-12818
CVE-2019-12819
CVE-2019-13627
CVE-2019-3693
CVE-2019-9824
CVE-2020-14344
CVE-2020-14556
CVE-2020-14577
CVE-2020-14578
CVE-2020-14579
CVE-2020-14581
CVE-2020-14583
CVE-2020-14593
CVE-2020-14621
CVE-2020-14779
CVE-2020-14781
CVE-2020-14782
CVE-2020-14792
CVE-2020-14796
CVE-2020-14797
CVE-2020-14798
CVE-2020-14803
SUSE-SU-2017:1961-1
SUSE-SU-2017:2263-1
SUSE-SU-2017:2264-1
SUSE-SU-2018:1173-2
SUSE-SU-2018:3066-2
SUSE-SU-2019:0049-1
SUSE-SU-2019:0392-1
SUSE-SU-2019:1823-1
SUSE-SU-2019:2510-1
SUSE-SU-2019:3076-1
SUSE-SU-2020:2196-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • gpg2-2.2.5-lp150.2 is installed
  • OR gpg2-lang-2.2.5-lp150.2 is installed
  • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • go1.12-1.12.9-lp151.2.21 is installed
  • OR go1.12-doc-1.12.9-lp151.2.21 is installed
  • OR go1.12-race-1.12.9-lp151.2.21 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • cups-filters-1.0.58-15.2 is installed
  • OR cups-filters-cups-browsed-1.0.58-15.2 is installed
  • OR cups-filters-foomatic-rip-1.0.58-15.2 is installed
  • OR cups-filters-ghostscript-1.0.58-15.2 is installed
  • OR libqpdf18-7.1.1-3.3 is installed
  • OR qpdf-7.1.1-3.3 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • xen-4.7.5_04-43.33 is installed
  • OR xen-doc-html-4.7.5_04-43.33 is installed
  • OR xen-libs-4.7.5_04-43.33 is installed
  • OR xen-libs-32bit-4.7.5_04-43.33 is installed
  • OR xen-tools-4.7.5_04-43.33 is installed
  • OR xen-tools-domU-4.7.5_04-43.33 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libXvnc1-1.6.0-18.11 is installed
  • OR tigervnc-1.6.0-18.11 is installed
  • OR xorg-x11-Xvnc-1.6.0-18.11 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • perl-5.18.2-12.20 is installed
  • OR perl-32bit-5.18.2-12.20 is installed
  • OR perl-base-5.18.2-12.20 is installed
  • OR perl-doc-5.18.2-12.20 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • libpcap-1.8.1-10.3 is installed
  • OR libpcap1-1.8.1-10.3 is installed
  • OR tcpdump-4.9.2-14.14 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • postgresql96-9.6.15-3.29 is installed
  • OR postgresql96-contrib-9.6.15-3.29 is installed
  • OR postgresql96-docs-9.6.15-3.29 is installed
  • OR postgresql96-libs-9.6.15-3.29 is installed
  • OR postgresql96-plperl-9.6.15-3.29 is installed
  • OR postgresql96-plpython-9.6.15-3.29 is installed
  • OR postgresql96-pltcl-9.6.15-3.29 is installed
  • OR postgresql96-server-9.6.15-3.29 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • libQt5Concurrent5-5.6.2-6.15 is installed
  • OR libQt5Core5-5.6.2-6.15 is installed
  • OR libQt5DBus5-5.6.2-6.15 is installed
  • OR libQt5Gui5-5.6.2-6.15 is installed
  • OR libQt5Network5-5.6.2-6.15 is installed
  • OR libQt5OpenGL5-5.6.2-6.15 is installed
  • OR libQt5PrintSupport5-5.6.2-6.15 is installed
  • OR libQt5Sql5-5.6.2-6.15 is installed
  • OR libQt5Sql5-mysql-5.6.2-6.15 is installed
  • OR libQt5Sql5-postgresql-5.6.2-6.15 is installed
  • OR libQt5Sql5-sqlite-5.6.2-6.15 is installed
  • OR libQt5Sql5-unixODBC-5.6.2-6.15 is installed
  • OR libQt5Test5-5.6.2-6.15 is installed
  • OR libQt5Widgets5-5.6.2-6.15 is installed
  • OR libQt5Xml5-5.6.2-6.15 is installed
  • OR libqt5-qtbase-5.6.2-6.15 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND dstat-0.7.3-1 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND mailman-2.1.17-3.11 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND mailman-2.1.17-3.23 is installed
  • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND couchdb-1.7.2-3.6 is installed
  • BACK