Oval Definition:	oval:org.opensuse.security:def:59433
Revision Date: 2020-12-01 Version: 1 Title: Security update for qpdf (Moderate) Description: This update for qpdf fixes the following issues: qpdf was updated to 7.1.1. Security issues fixed: - CVE-2017-11627: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050577). - CVE-2017-11625: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050579). - CVE-2017-11626: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050578). - CVE-2017-11624: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050581). - CVE-2017-12595: Stack overflow when processing deeply nested arrays and dictionaries (bsc#1055960). - CVE-2017-9209: Remote attackers can cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document (bsc#1040312). - CVE-2017-9210: Remote attackers can cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document (bsc#1040313). - CVE-2017-9208: Remote attackers can cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document (bsc#1040311). * Check release notes for detailed bug fixes. * http://qpdf.sourceforge.net/files/qpdf-manual.html#ref.release-notes Family: unix Class: patch Status: Reference(s): 1009745 1012382 1023616 1027519 1031717 1036659 1038984 1040311 1040312 1040313 1043055 1043218 1045735 1046417 1046610 1047785 1048315 1048576 1050577 1050578 1050579 1050581 1053431 1055960 1057734 1070536 1074562 1075428 1076847 1077560 1082153 1082299 1083125 1083745 1083836 1084353 1084610 1084721 1084829 1085042 1085185 1085224 1085402 1085404 1086039 1086162 1086194 1087088 1087260 1087845 1088241 1088242 1088600 1088684 1089198 1089608 1089644 1089752 1090643 1092631 1096254 1101644 1101645 1101651 1101656 1104204 1108382 1109137 1111331 1112142 1112143 1112144 1112146 1112147 1112152 1112153 1127155 1129622 1130675 1133190 1133738 1134395 1134701 1136922 1136935 1137194 1138291 1140575 1148987 1154328 1171352 1174157 1174628 1177943 CVE-2011-1018 CVE-2014-0011 CVE-2014-8240 CVE-2015-0255 CVE-2017-10053 CVE-2017-10067 CVE-2017-10074 CVE-2017-10078 CVE-2017-10081 CVE-2017-10087 CVE-2017-10089 CVE-2017-10090 CVE-2017-10096 CVE-2017-10101 CVE-2017-10102 CVE-2017-10105 CVE-2017-10107 CVE-2017-10108 CVE-2017-10109 CVE-2017-10110 CVE-2017-10111 CVE-2017-10115 CVE-2017-10116 CVE-2017-10125 CVE-2017-10243 CVE-2017-11624 CVE-2017-11625 CVE-2017-11626 CVE-2017-11627 CVE-2017-12595 CVE-2017-18257 CVE-2017-5715 CVE-2017-5753 CVE-2017-5754 CVE-2017-7435 CVE-2017-7436 CVE-2017-9208 CVE-2017-9209 CVE-2017-9210 CVE-2017-9269 CVE-2017-9788 CVE-2018-10087 CVE-2018-10124 CVE-2018-1087 CVE-2018-11769 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2018-13785 CVE-2018-16435 CVE-2018-20815 CVE-2018-20836 CVE-2018-2938 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3214 CVE-2018-3639 CVE-2018-7740 CVE-2018-8043 CVE-2018-8781 CVE-2018-8822 CVE-2018-8897 CVE-2019-10126 CVE-2019-10638 CVE-2019-10639 CVE-2019-11091 CVE-2019-11487 CVE-2019-11599 CVE-2019-12380 CVE-2019-12456 CVE-2019-12614 CVE-2019-12818 CVE-2019-12819 CVE-2019-13627 CVE-2019-3693 CVE-2019-9824 CVE-2020-14344 CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-14779 CVE-2020-14781 CVE-2020-14782 CVE-2020-14792 CVE-2020-14796 CVE-2020-14797 CVE-2020-14798 CVE-2020-14803 SUSE-SU-2017:1961-1 SUSE-SU-2017:2263-1 SUSE-SU-2017:2264-1 SUSE-SU-2018:1173-2 SUSE-SU-2018:3066-2 SUSE-SU-2019:0049-1 SUSE-SU-2019:0392-1 SUSE-SU-2019:1823-1 SUSE-SU-2019:2510-1 SUSE-SU-2019:3076-1 SUSE-SU-2020:2196-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information gpg2-2.2.5-lp150.2 is installed OR gpg2-lang-2.2.5-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information go1.12-1.12.9-lp151.2.21 is installed OR go1.12-doc-1.12.9-lp151.2.21 is installed OR go1.12-race-1.12.9-lp151.2.21 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information cups-filters-1.0.58-15.2 is installed OR cups-filters-cups-browsed-1.0.58-15.2 is installed OR cups-filters-foomatic-rip-1.0.58-15.2 is installed OR cups-filters-ghostscript-1.0.58-15.2 is installed OR libqpdf18-7.1.1-3.3 is installed OR qpdf-7.1.1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information xen-4.7.5_04-43.33 is installed OR xen-doc-html-4.7.5_04-43.33 is installed OR xen-libs-4.7.5_04-43.33 is installed OR xen-libs-32bit-4.7.5_04-43.33 is installed OR xen-tools-4.7.5_04-43.33 is installed OR xen-tools-domU-4.7.5_04-43.33 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libXvnc1-1.6.0-18.11 is installed OR tigervnc-1.6.0-18.11 is installed OR xorg-x11-Xvnc-1.6.0-18.11 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information perl-5.18.2-12.20 is installed OR perl-32bit-5.18.2-12.20 is installed OR perl-base-5.18.2-12.20 is installed OR perl-doc-5.18.2-12.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libpcap-1.8.1-10.3 is installed OR libpcap1-1.8.1-10.3 is installed OR tcpdump-4.9.2-14.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information postgresql96-9.6.15-3.29 is installed OR postgresql96-contrib-9.6.15-3.29 is installed OR postgresql96-docs-9.6.15-3.29 is installed OR postgresql96-libs-9.6.15-3.29 is installed OR postgresql96-plperl-9.6.15-3.29 is installed OR postgresql96-plpython-9.6.15-3.29 is installed OR postgresql96-pltcl-9.6.15-3.29 is installed OR postgresql96-server-9.6.15-3.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libQt5Concurrent5-5.6.2-6.15 is installed OR libQt5Core5-5.6.2-6.15 is installed OR libQt5DBus5-5.6.2-6.15 is installed OR libQt5Gui5-5.6.2-6.15 is installed OR libQt5Network5-5.6.2-6.15 is installed OR libQt5OpenGL5-5.6.2-6.15 is installed OR libQt5PrintSupport5-5.6.2-6.15 is installed OR libQt5Sql5-5.6.2-6.15 is installed OR libQt5Sql5-mysql-5.6.2-6.15 is installed OR libQt5Sql5-postgresql-5.6.2-6.15 is installed OR libQt5Sql5-sqlite-5.6.2-6.15 is installed OR libQt5Sql5-unixODBC-5.6.2-6.15 is installed OR libQt5Test5-5.6.2-6.15 is installed OR libQt5Widgets5-5.6.2-6.15 is installed OR libQt5Xml5-5.6.2-6.15 is installed OR libqt5-qtbase-5.6.2-6.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND dstat-0.7.3-1 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND mailman-2.1.17-3.11 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND mailman-2.1.17-3.23 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND couchdb-1.7.2-3.6 is installed
BACK