Oval Definition:	oval:org.opensuse.security:def:59951
Revision Date: 2020-12-01 Version: 1 Title: Security update for ghostscript (Important) Description: This update for ghostscript to 9.27 fixes the following issues: Security issues fixed: - CVE-2019-3835: Fixed an unauthorized file system access caused by an available superexec operator. (bsc#1129180) - CVE-2019-3839: Fixed an unauthorized file system access caused by available privileged operators. (bsc#1134156) - CVE-2019-12973: Fixed a denial-of-service vulnerability in the OpenJPEG function opj_t1_encode_cblks. (bsc#1140359) - CVE-2019-14811: Fixed a safer mode bypass by .forceput exposure in .pdf_hook_DSC_Creator. (bsc#1146882) - CVE-2019-14812: Fixed a safer mode bypass by .forceput exposure in setuserparams. (bsc#1146882) - CVE-2019-14813: Fixed a safer mode bypass by .forceput exposure in setsystemparams. (bsc#1146882) - CVE-2019-14817: Fixed a safer mode bypass by .forceput exposure in .pdfexectoken and other procedures. (bsc#1146884) Family: unix Class: patch Status: Reference(s): 1075975 1088200 1115034 1122012 1124729 1124734 1128378 1129180 1131863 1134156 1138461 1140359 1142772 1144903 1145604 1145692 1146882 1146884 1149792 1151021 1153108 1153158 1153161 1158763 1160888 1168930 1169605 1169786 1169936 1169947 1170302 1170715 1170741 1170939 1172031 1172225 1172698 1172704 1178038 936786 976955 CVE-2008-3522 CVE-2011-4516 CVE-2011-4517 CVE-2012-4453 CVE-2014-8137 CVE-2014-8138 CVE-2014-8157 CVE-2014-8158 CVE-2014-9029 CVE-2015-3239 CVE-2015-5203 CVE-2015-5221 CVE-2016-10251 CVE-2016-1577 CVE-2016-1867 CVE-2016-2089 CVE-2016-2116 CVE-2016-8637 CVE-2016-8654 CVE-2016-8690 CVE-2016-8691 CVE-2016-8692 CVE-2016-8693 CVE-2016-8880 CVE-2016-8881 CVE-2016-8882 CVE-2016-8883 CVE-2016-8884 CVE-2016-8885 CVE-2016-8886 CVE-2016-8887 CVE-2016-9395 CVE-2016-9398 CVE-2016-9560 CVE-2016-9583 CVE-2016-9591 CVE-2016-9600 CVE-2017-18379 CVE-2017-5498 CVE-2017-6850 CVE-2018-0486 CVE-2018-9256 CVE-2018-9259 CVE-2018-9260 CVE-2018-9261 CVE-2018-9262 CVE-2018-9263 CVE-2018-9264 CVE-2018-9265 CVE-2018-9266 CVE-2018-9267 CVE-2018-9268 CVE-2018-9269 CVE-2018-9270 CVE-2018-9271 CVE-2018-9272 CVE-2018-9273 CVE-2018-9274 CVE-2019-1010180 CVE-2019-10220 CVE-2019-12855 CVE-2019-12973 CVE-2019-14811 CVE-2019-14812 CVE-2019-14813 CVE-2019-14817 CVE-2019-14835 CVE-2019-14907 CVE-2019-17133 CVE-2019-18900 CVE-2019-20807 CVE-2019-3835 CVE-2019-3839 CVE-2019-6974 CVE-2019-7221 CVE-2019-9213 CVE-2020-11008 CVE-2020-5260 CVE-2020-8023 SUSE-SU-2018:0140-1 SUSE-SU-2018:0981-1 SUSE-SU-2019:0284-1 SUSE-SU-2019:2453-1 SUSE-SU-2020:0233-1 SUSE-SU-2020:1550-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information libopenssl1_1-1.1.0h-lp150.2 is installed OR libopenssl1_1-32bit-1.1.0h-lp150.2 is installed OR openssl-1_1-1.1.0h-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libIlmImf-2_2-23-2.2.1-lp151.4.6 is installed OR libIlmImf-2_2-23-32bit-2.2.1-lp151.4.6 is installed OR libIlmImfUtil-2_2-23-2.2.1-lp151.4.6 is installed OR libIlmImfUtil-2_2-23-32bit-2.2.1-lp151.4.6 is installed OR openexr-2.2.1-lp151.4.6 is installed OR openexr-devel-2.2.1-lp151.4.6 is installed OR openexr-doc-2.2.1-lp151.4.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information ghostscript-9.27-23.28 is installed OR ghostscript-x11-9.27-23.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information dracut-044-113 is installed OR dracut-fips-044-113 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information kernel-default-4.4.180-94.113 is installed OR kernel-default-base-4.4.180-94.113 is installed OR kernel-default-devel-4.4.180-94.113 is installed OR kernel-devel-4.4.180-94.113 is installed OR kernel-macros-4.4.180-94.113 is installed OR kernel-source-4.4.180-94.113 is installed OR kernel-syms-4.4.180-94.113 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_162-94_72-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_22-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information kgraft-patch-4_4_162-94_72-default-6-2 is installed OR kgraft-patch-SLE12-SP3_Update_22-6-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information postgresql96-9.6.10-3.22 is installed OR postgresql96-contrib-9.6.10-3.22 is installed OR postgresql96-docs-9.6.10-3.22 is installed OR postgresql96-libs-9.6.10-3.22 is installed OR postgresql96-server-9.6.10-3.22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information kbd-2.0.4-8.10 is installed OR kbd-legacy-2.0.4-8.10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information libX11-1.6.2-12.8 is installed OR libX11-6-1.6.2-12.8 is installed OR libX11-6-32bit-1.6.2-12.8 is installed OR libX11-data-1.6.2-12.8 is installed OR libX11-xcb1-1.6.2-12.8 is installed OR libX11-xcb1-32bit-1.6.2-12.8 is installed OR libxcb-1.10-4.5 is installed OR libxcb-dri2-0-1.10-4.5 is installed OR libxcb-dri2-0-32bit-1.10-4.5 is installed OR libxcb-dri3-0-1.10-4.5 is installed OR libxcb-dri3-0-32bit-1.10-4.5 is installed OR libxcb-glx0-1.10-4.5 is installed OR libxcb-glx0-32bit-1.10-4.5 is installed OR libxcb-present0-1.10-4.5 is installed OR libxcb-present0-32bit-1.10-4.5 is installed OR libxcb-randr0-1.10-4.5 is installed OR libxcb-render0-1.10-4.5 is installed OR libxcb-render0-32bit-1.10-4.5 is installed OR libxcb-shape0-1.10-4.5 is installed OR libxcb-shm0-1.10-4.5 is installed OR libxcb-shm0-32bit-1.10-4.5 is installed OR libxcb-sync1-1.10-4.5 is installed OR libxcb-sync1-32bit-1.10-4.5 is installed OR libxcb-xf86dri0-1.10-4.5 is installed OR libxcb-xfixes0-1.10-4.5 is installed OR libxcb-xfixes0-32bit-1.10-4.5 is installed OR libxcb-xinerama0-1.10-4.5 is installed OR libxcb-xkb1-1.10-4.5 is installed OR libxcb-xkb1-32bit-1.10-4.5 is installed OR libxcb-xv0-1.10-4.5 is installed OR libxcb1-1.10-4.5 is installed OR libxcb1-32bit-1.10-4.5 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information gvim-7.4.326-17.6 is installed OR vim-7.4.326-17.6 is installed OR vim-data-7.4.326-17.6 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND python-Django1-1.11.20-3.6 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND python-Twisted-15.2.1-9.8 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND python-Django1-1.11.23-3.9 is installed
BACK