Oval Definition:	oval:org.opensuse.security:def:59630
Revision Date: 2020-12-01 Version: 1 Title: Security update for tigervnc (Important) Description: This update for tigervnc fixes the following issues: - CVE-2019-15691: Fixed a use-after-return due to incorrect usage of stack memory in ZRLEDecoder (bsc#1159856). - CVE-2019-15692: Fixed a heap-based buffer overflow in CopyRectDecode (bsc#1160250). - CVE-2019-15693: Fixed a heap-based buffer overflow in TightDecoder::FilterGradient (bsc#1159858). - CVE-2019-15694: Fixed a heap-based buffer overflow, caused by improper error handling in processing MemOutStream (bsc#1160251). - CVE-2019-15695: Fixed a stack-based buffer overflow, which could be triggered from CMsgReader::readSetCursor (bsc#1159860). Family: unix Class: patch Status: Reference(s): 1027519 1055478 1055695 1056278 1056280 1056281 1056282 1057358 1070737 1074186 1088279 1088601 1092480 1101820 1102046 1104205 1104668 1105166 1108308 1109209 1111657 1138748 1140290 1141670 1149792 1151021 1152497 1154448 1154456 1154458 1154461 1155945 1157888 1158003 1158004 1158005 1158006 1158007 1159856 1159858 1159860 1160250 1160251 1160937 1161181 1163933 1171252 1171254 1174628 981848 983440 CVE-2008-1686 CVE-2009-1886 CVE-2009-1888 CVE-2009-2813 CVE-2009-2906 CVE-2009-2948 CVE-2010-0547 CVE-2010-0728 CVE-2010-0787 CVE-2010-0926 CVE-2010-1635 CVE-2010-1642 CVE-2010-2063 CVE-2010-3069 CVE-2011-0719 CVE-2011-2522 CVE-2011-2694 CVE-2012-0817 CVE-2012-0870 CVE-2012-1182 CVE-2012-2111 CVE-2012-6150 CVE-2013-0172 CVE-2013-0213 CVE-2013-0214 CVE-2013-0454 CVE-2013-1863 CVE-2013-4124 CVE-2013-4408 CVE-2013-4475 CVE-2013-4476 CVE-2013-4496 CVE-2013-6442 CVE-2014-0178 CVE-2014-0239 CVE-2014-0244 CVE-2014-3493 CVE-2014-3560 CVE-2014-8143 CVE-2014-9638 CVE-2014-9639 CVE-2014-9640 CVE-2015-0240 CVE-2015-3223 CVE-2015-5252 CVE-2015-5296 CVE-2015-5299 CVE-2015-5330 CVE-2015-5370 CVE-2015-6749 CVE-2015-7560 CVE-2015-8467 CVE-2015-8543 CVE-2015-9542 CVE-2016-0771 CVE-2016-2110 CVE-2016-2111 CVE-2016-2112 CVE-2016-2113 CVE-2016-2115 CVE-2016-2118 CVE-2016-2119 CVE-2016-2123 CVE-2016-2125 CVE-2016-2126 CVE-2016-5319 CVE-2017-14316 CVE-2017-14317 CVE-2017-14318 CVE-2017-14319 CVE-2017-17942 CVE-2017-18258 CVE-2017-2619 CVE-2017-7494 CVE-2018-10779 CVE-2018-10903 CVE-2018-12207 CVE-2018-12539 CVE-2018-14404 CVE-2018-14526 CVE-2018-14567 CVE-2018-1517 CVE-2018-1656 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-9251 CVE-2019-11135 CVE-2019-13173 CVE-2019-14835 CVE-2019-15691 CVE-2019-15692 CVE-2019-15693 CVE-2019-15694 CVE-2019-15695 CVE-2019-18420 CVE-2019-18421 CVE-2019-18424 CVE-2019-18425 CVE-2019-19577 CVE-2019-19578 CVE-2019-19579 CVE-2019-19580 CVE-2019-19581 CVE-2019-19583 CVE-2020-12653 CVE-2020-12654 CVE-2020-14344 CVE-2020-7211 SUSE-SU-2017:2420-1 SUSE-SU-2018:2836-1 SUSE-SU-2018:3074-1 SUSE-SU-2018:3081-1 SUSE-SU-2019:2181-1 SUSE-SU-2020:0159-1 SUSE-SU-2020:0334-1 SUSE-SU-2020:0792-1 SUSE-SU-2020:1117-1 SUSE-SU-2020:2117-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND mailx-12.5-lp150.1 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND clementine-1.3.1-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libXvnc1-1.6.0-18.28 is installed OR tigervnc-1.6.0-18.28 is installed OR xorg-x11-Xvnc-1.6.0-18.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information java-1_7_1-ibm-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-alsa-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-devel-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-jdbc-1.7.1_sr4.30-38.26 is installed OR java-1_7_1-ibm-plugin-1.7.1_sr4.30-38.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libdcerpc-binding0-4.6.5+git.27.6afd48b1083-2 is installed OR libdcerpc-binding0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libdcerpc0-4.6.5+git.27.6afd48b1083-2 is installed OR libdcerpc0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libndr-krb5pac0-4.6.5+git.27.6afd48b1083-2 is installed OR libndr-krb5pac0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libndr-nbt0-4.6.5+git.27.6afd48b1083-2 is installed OR libndr-nbt0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libndr-standard0-4.6.5+git.27.6afd48b1083-2 is installed OR libndr-standard0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libndr0-4.6.5+git.27.6afd48b1083-2 is installed OR libndr0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libnetapi0-4.6.5+git.27.6afd48b1083-2 is installed OR libnetapi0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libsamba-credentials0-4.6.5+git.27.6afd48b1083-2 is installed OR libsamba-credentials0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libsamba-errors0-4.6.5+git.27.6afd48b1083-2 is installed OR libsamba-errors0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libsamba-hostconfig0-4.6.5+git.27.6afd48b1083-2 is installed OR libsamba-hostconfig0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libsamba-passdb0-4.6.5+git.27.6afd48b1083-2 is installed OR libsamba-passdb0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libsamba-util0-4.6.5+git.27.6afd48b1083-2 is installed OR libsamba-util0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libsamdb0-4.6.5+git.27.6afd48b1083-2 is installed OR libsamdb0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libsmbclient0-4.6.5+git.27.6afd48b1083-2 is installed OR libsmbclient0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libsmbconf0-4.6.5+git.27.6afd48b1083-2 is installed OR libsmbconf0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libsmbldap0-4.6.5+git.27.6afd48b1083-2 is installed OR libsmbldap0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libtevent-util0-4.6.5+git.27.6afd48b1083-2 is installed OR libtevent-util0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR libwbclient0-4.6.5+git.27.6afd48b1083-2 is installed OR libwbclient0-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR samba-4.6.5+git.27.6afd48b1083-2 is installed OR samba-client-4.6.5+git.27.6afd48b1083-2 is installed OR samba-client-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR samba-doc-4.6.5+git.27.6afd48b1083-2 is installed OR samba-libs-4.6.5+git.27.6afd48b1083-2 is installed OR samba-libs-32bit-4.6.5+git.27.6afd48b1083-2 is installed OR samba-winbind-4.6.5+git.27.6afd48b1083-2 is installed OR samba-winbind-32bit-4.6.5+git.27.6afd48b1083-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_162-94_72-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_22-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_156-94_64-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_20-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND clamav-0.100.1-33.15 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND ant-1.9.4-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information pam_radius-1.3.16-239.4 is installed OR pam_radius-32bit-1.3.16-239.4 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.17.0-11.27 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information java-1_8_0-ibm-1.8.0_sr6.15-30.72 is installed OR java-1_8_0-ibm-alsa-1.8.0_sr6.15-30.72 is installed OR java-1_8_0-ibm-devel-1.8.0_sr6.15-30.72 is installed OR java-1_8_0-ibm-plugin-1.8.0_sr6.15-30.72 is installed
BACK