Oval Definition:	oval:org.opensuse.security:def:60703
Revision Date: 2020-12-01 Version: 1 Title: Security update for tigervnc (Important) Description: This update for tigervnc fixes the following issues: - CVE-2019-15691: Fixed a use-after-return due to incorrect usage of stack memory in ZRLEDecoder (bsc#1159856). - CVE-2019-15692: Fixed a heap-based buffer overflow in CopyRectDecode (bsc#1160250). - CVE-2019-15693: Fixed a heap-based buffer overflow in TightDecoder::FilterGradient (bsc#1159858). - CVE-2019-15694: Fixed a heap-based buffer overflow, caused by improper error handling in processing MemOutStream (bsc#1160251). - CVE-2019-15695: Fixed a stack-based buffer overflow, which could be triggered from CMsgReader::readSetCursor (bsc#1159860). Family: unix Class: patch Status: Reference(s): 1016715 1050129 1061041 1077445 1082063 1082210 1083417 1083420 1083422 1083424 1083426 1091041 1094327 1102062 1102068 1102073 1104826 1105592 1106989 1107604 1107609 1107612 1107616 1107619 1108282 1108283 1119461 1119465 1124211 1131107 1138034 1138190 1141493 1146544 1146612 1150466 1150483 1152631 1153811 1154905 1155689 1155897 1155898 1156187 1156402 1157038 1157042 1157070 1157143 1157158 1157191 1157324 1157333 1157464 1157471 1158132 1158394 1158398 1158410 1158413 1158417 1158445 1158823 1158824 1158827 1158834 1158900 1158903 1158904 1158954 1159856 1159858 1159860 1160250 1160251 1160937 1172049 1172140 1172437 1172781 1172782 1172783 1173580 1173902 1173994 1176733 1177613 CVE-2016-1549 CVE-2016-4975 CVE-2016-8743 CVE-2017-11532 CVE-2017-12652 CVE-2017-14867 CVE-2018-14598 CVE-2018-14599 CVE-2018-14600 CVE-2018-16413 CVE-2018-16640 CVE-2018-16642 CVE-2018-16643 CVE-2018-16644 CVE-2018-16645 CVE-2018-16749 CVE-2018-16750 CVE-2018-7170 CVE-2018-7182 CVE-2018-7183 CVE-2018-7184 CVE-2018-7185 CVE-2019-10164 CVE-2019-14895 CVE-2019-15213 CVE-2019-15666 CVE-2019-15691 CVE-2019-15692 CVE-2019-15693 CVE-2019-15694 CVE-2019-15695 CVE-2019-16231 CVE-2019-18660 CVE-2019-18680 CVE-2019-18683 CVE-2019-18805 CVE-2019-19052 CVE-2019-19062 CVE-2019-19065 CVE-2019-19073 CVE-2019-19074 CVE-2019-19191 CVE-2019-19332 CVE-2019-19338 CVE-2019-19523 CVE-2019-19524 CVE-2019-19525 CVE-2019-19527 CVE-2019-19530 CVE-2019-19531 CVE-2019-19532 CVE-2019-19533 CVE-2019-19534 CVE-2019-19535 CVE-2019-19536 CVE-2019-19537 CVE-2019-2201 CVE-2019-7317 CVE-2020-10757 CVE-2020-10766 CVE-2020-10767 CVE-2020-10768 CVE-2020-14318 CVE-2020-14323 CVE-2020-14383 CVE-2020-26117 CVE-2020-4044 SUSE-SU-2017:2747-1 SUSE-SU-2018:0956-1 SUSE-SU-2019:1783-2 SUSE-SU-2019:2972-1 SUSE-SU-2019:3060-2 SUSE-SU-2019:3379-1 SUSE-SU-2020:0115-1 SUSE-SU-2020:0159-1 SUSE-SU-2020:1991-1 SUSE-SU-2020:2898-1 SUSE-SU-2020:3093-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE OpenStack Cloud 8 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND Package Information MozillaFirefox-60.2.2-lp150.3.23 is installed OR MozillaFirefox-branding-upstream-60.2.2-lp150.3.23 is installed OR MozillaFirefox-buildsymbols-60.2.2-lp150.3.23 is installed OR MozillaFirefox-devel-60.2.2-lp150.3.23 is installed OR MozillaFirefox-translations-common-60.2.2-lp150.3.23 is installed OR MozillaFirefox-translations-other-60.2.2-lp150.3.23 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information libBasicUsageEnvironment1-2019.06.28-lp151.2.3 is installed OR libUsageEnvironment3-2019.06.28-lp151.2.3 is installed OR libgroupsock8-2019.06.28-lp151.2.3 is installed OR libliveMedia66-2019.06.28-lp151.2.3 is installed OR live555-2019.06.28-lp151.2.3 is installed OR live555-devel-2019.06.28-lp151.2.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information coturn-4.5.1.3-lp152.2.3 is installed OR coturn-devel-4.5.1.3-lp152.2.3 is installed OR coturn-utils-4.5.1.3-lp152.2.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information git-2.12.3-27.9 is installed OR git-core-2.12.3-27.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information kernel-default-4.4.180-94.113 is installed OR kernel-default-base-4.4.180-94.113 is installed OR kernel-default-devel-4.4.180-94.113 is installed OR kernel-devel-4.4.180-94.113 is installed OR kernel-macros-4.4.180-94.113 is installed OR kernel-source-4.4.180-94.113 is installed OR kernel-syms-4.4.180-94.113 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kernel-default-4.4.180-94.124 is installed OR kernel-default-base-4.4.180-94.124 is installed OR kernel-default-devel-4.4.180-94.124 is installed OR kernel-default-kgraft-4.4.180-94.124 is installed OR kernel-devel-4.4.180-94.124 is installed OR kernel-macros-4.4.180-94.124 is installed OR kernel-source-4.4.180-94.124 is installed OR kernel-syms-4.4.180-94.124 is installed OR kgraft-patch-4_4_180-94_124-default-1-4.3 is installed OR kgraft-patch-SLE12-SP3_Update_33-1-4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libjpeg-turbo-1.5.3-31.19 is installed OR libjpeg62-62.2.0-31.19 is installed OR libjpeg62-32bit-62.2.0-31.19 is installed OR libjpeg62-turbo-1.5.3-31.19 is installed OR libjpeg8-8.1.2-31.19 is installed OR libjpeg8-32bit-8.1.2-31.19 is installed OR libturbojpeg0-8.1.2-31.19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information apache2-2.4.23-29.24 is installed OR apache2-doc-2.4.23-29.24 is installed OR apache2-example-pages-2.4.23-29.24 is installed OR apache2-prefork-2.4.23-29.24 is installed OR apache2-utils-2.4.23-29.24 is installed OR apache2-worker-2.4.23-29.24 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information xen-4.11.4_04-2.30 is installed OR xen-doc-html-4.11.4_04-2.30 is installed OR xen-libs-4.11.4_04-2.30 is installed OR xen-libs-32bit-4.11.4_04-2.30 is installed OR xen-tools-4.11.4_04-2.30 is installed OR xen-tools-domU-4.11.4_04-2.30 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information libXvnc1-1.6.0-18.28 is installed OR tigervnc-1.6.0-18.28 is installed OR xorg-x11-Xvnc-1.6.0-18.28 is installed Definition Synopsis SUSE OpenStack Cloud 9 is installed AND Package Information libsolv-0.6.36-2.30 is installed OR libsolv-devel-0.6.36-2.30 is installed OR libsolv-tools-0.6.36-2.30 is installed OR perl-solv-0.6.36-2.30 is installed OR python-solv-0.6.36-2.30 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information libecpg6-10.9-1.12 is installed OR libpq5-10.9-1.12 is installed OR libpq5-32bit-10.9-1.12 is installed OR postgresql10-10.9-1.12 is installed OR postgresql10-contrib-10.9-1.12 is installed OR postgresql10-docs-10.9-1.12 is installed OR postgresql10-libs-10.9-1.12 is installed OR postgresql10-plperl-10.9-1.12 is installed OR postgresql10-plpython-10.9-1.12 is installed OR postgresql10-pltcl-10.9-1.12 is installed OR postgresql10-server-10.9-1.12 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information ruby2.1-rubygem-rails-html-sanitizer-1.0.3-8.8 is installed OR rubygem-rails-html-sanitizer-1.0.3-8.8 is installed
BACK