Oval Definition:	oval:org.opensuse.security:def:60082
Revision Date: 2020-12-01 Version: 1 Title: Security update for tigervnc (Important) Description: This update for tigervnc fixes the following issues: - CVE-2019-15691: Fixed a use-after-return due to incorrect usage of stack memory in ZRLEDecoder (bsc#1159856). - CVE-2019-15692: Fixed a heap-based buffer overflow in CopyRectDecode (bsc#1160250). - CVE-2019-15693: Fixed a heap-based buffer overflow in TightDecoder::FilterGradient (bsc#1159858). - CVE-2019-15694: Fixed a heap-based buffer overflow, caused by improper error handling in processing MemOutStream (bsc#1160251). - CVE-2019-15695: Fixed a stack-based buffer overflow, which could be triggered from CMsgReader::readSetCursor (bsc#1159860). Family: unix Class: patch Status: Reference(s): 1049219 1056421 1056562 1056621 1056622 1057511 1105012 1109893 1110542 1111319 1112911 1113296 1114592 1120629 1120630 1120631 1123156 1127155 1131823 1134226 1135254 1137977 1141897 1142649 1142654 1146873 1148517 1149145 1149332 1149811 1154609 1159856 1159858 1159860 1160024 1160250 1160251 1160937 1161066 1163018 1164860 1165784 1166240 1170940 1171878 1172085 1172140 1172437 1173455 1174117 1176013 CVE-2012-2737 CVE-2014-2892 CVE-2015-7236 CVE-2016-10198 CVE-2016-10199 CVE-2016-10507 CVE-2016-9634 CVE-2016-9635 CVE-2016-9636 CVE-2016-9807 CVE-2016-9808 CVE-2016-9810 CVE-2017-14039 CVE-2017-14040 CVE-2017-14041 CVE-2017-14164 CVE-2017-5840 CVE-2017-5841 CVE-2017-5845 CVE-2017-8779 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2019-12068 CVE-2019-14250 CVE-2019-15666 CVE-2019-15691 CVE-2019-15692 CVE-2019-15693 CVE-2019-15694 CVE-2019-15695 CVE-2019-15847 CVE-2019-15890 CVE-2019-18197 CVE-2019-6778 CVE-2020-10029 CVE-2020-10757 CVE-2020-13935 CVE-2020-15049 CVE-2020-1711 CVE-2020-1935 CVE-2020-1983 CVE-2020-7039 CVE-2020-8608 SUSE-SU-2017:2649-1 SUSE-SU-2018:3311-1 SUSE-SU-2019:1972-1 SUSE-SU-2020:0920-2 SUSE-SU-2020:1538-1 SUSE-SU-2020:2611-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND wpa_supplicant-2.6-lp150.2 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libzstd-devel-1.4.2-lp151.3.3 is installed OR libzstd-devel-static-1.4.2-lp151.3.3 is installed OR libzstd1-1.4.2-lp151.3.3 is installed OR libzstd1-32bit-1.4.2-lp151.3.3 is installed OR zstd-1.4.2-lp151.3.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libXvnc1-1.6.0-18.28 is installed OR tigervnc-1.6.0-18.28 is installed OR xorg-x11-Xvnc-1.6.0-18.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND clamav-0.100.3-33.29 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_156-94_61-default-8-2 is installed OR kgraft-patch-SLE12-SP3_Update_19-8-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libsolv-0.6.36-2.16 is installed OR libsolv-tools-0.6.36-2.16 is installed OR libzypp-16.20.0-2.39 is installed OR perl-solv-0.6.36-2.16 is installed OR python-solv-0.6.36-2.16 is installed OR zypper-1.13.51-21.26 is installed OR zypper-log-1.13.51-21.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information libpolkit0-0.113-5.12 is installed OR polkit-0.113-5.12 is installed OR typelib-1_0-Polkit-1_0-0.113-5.12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information augeas-1.2.0-17.3 is installed OR augeas-lenses-1.2.0-17.3 is installed OR libaugeas0-1.2.0-17.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information xorg-x11-server-1.19.6-4.8 is installed OR xorg-x11-server-extra-1.19.6-4.8 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libxslt-1.1.28-17.9 is installed OR libxslt-tools-1.1.28-17.9 is installed OR libxslt1-1.1.28-17.9 is installed OR libxslt1-32bit-1.1.28-17.9 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information tomcat-8.0.53-29.37 is installed OR tomcat-admin-webapps-8.0.53-29.37 is installed OR tomcat-docs-webapp-8.0.53-29.37 is installed OR tomcat-el-3_0-api-8.0.53-29.37 is installed OR tomcat-javadoc-8.0.53-29.37 is installed OR tomcat-jsp-2_3-api-8.0.53-29.37 is installed OR tomcat-lib-8.0.53-29.37 is installed OR tomcat-servlet-3_1-api-8.0.53-29.37 is installed OR tomcat-webapps-8.0.53-29.37 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information ruby2.1-rubygem-rails-html-sanitizer-1.0.3-8.8 is installed OR rubygem-rails-html-sanitizer-1.0.3-8.8 is installed
BACK