Oval Definition:	oval:org.opensuse.security:def:60900
Revision Date: 2020-12-01 Version: 1 Title: Security update for ghostscript (Important) Description: This update for ghostscript to 9.27 fixes the following issues: Security issues fixed: - CVE-2019-3835: Fixed an unauthorized file system access caused by an available superexec operator. (bsc#1129180) - CVE-2019-3839: Fixed an unauthorized file system access caused by available privileged operators. (bsc#1134156) - CVE-2019-12973: Fixed a denial-of-service vulnerability in the OpenJPEG function opj_t1_encode_cblks. (bsc#1140359) - CVE-2019-14811: Fixed a safer mode bypass by .forceput exposure in .pdf_hook_DSC_Creator. (bsc#1146882) - CVE-2019-14812: Fixed a safer mode bypass by .forceput exposure in setuserparams. (bsc#1146882) - CVE-2019-14813: Fixed a safer mode bypass by .forceput exposure in setsystemparams. (bsc#1146882) - CVE-2019-14817: Fixed a safer mode bypass by .forceput exposure in .pdfexectoken and other procedures. (bsc#1146884) Family: unix Class: patch Status: Reference(s): 1011144 1031692 1046636 1047674 1048296 1048902 1049219 1049381 1050268 1087082 1087083 1096141 1100147 1105012 1106383 1109412 1109413 1109414 1111586 1111996 1112534 1112535 1113247 1113252 1113255 1116827 1118830 1118831 1120640 1121034 1121035 1121056 1121567 1129180 1131863 1133131 1133232 1133495 1134156 1139459 1140359 1141913 1142772 1146358 1146359 1146882 1146884 1149961 1151377 1151506 1152497 1153674 1154043 1154448 1154456 1154458 1154460 1154461 1154464 1154862 1155574 1155945 1156482 1157888 1158003 1158004 1158005 1158006 1158007 1159814 1160398 1162108 1169511 1170643 1173902 1173994 1174157 1175259 1177613 CVE-2017-10664 CVE-2017-10806 CVE-2017-11334 CVE-2017-11434 CVE-2018-1000876 CVE-2018-12207 CVE-2018-16889 CVE-2018-17095 CVE-2018-17358 CVE-2018-17359 CVE-2018-17360 CVE-2018-17985 CVE-2018-18309 CVE-2018-18483 CVE-2018-18484 CVE-2018-18605 CVE-2018-18606 CVE-2018-18607 CVE-2018-19931 CVE-2018-19932 CVE-2018-20623 CVE-2018-20651 CVE-2018-20671 CVE-2018-3639 CVE-2018-3640 CVE-2019-1010180 CVE-2019-11135 CVE-2019-12973 CVE-2019-14287 CVE-2019-14811 CVE-2019-14812 CVE-2019-14813 CVE-2019-14817 CVE-2019-17498 CVE-2019-17639 CVE-2019-18420 CVE-2019-18421 CVE-2019-18422 CVE-2019-18423 CVE-2019-18424 CVE-2019-18425 CVE-2019-19577 CVE-2019-19578 CVE-2019-19579 CVE-2019-19580 CVE-2019-19581 CVE-2019-19582 CVE-2019-19583 CVE-2019-3835 CVE-2019-3839 CVE-2019-8675 CVE-2019-8696 CVE-2020-14318 CVE-2020-14323 CVE-2020-14383 CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-1712 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2773 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 CVE-2020-3899 SUSE-SU-2017:2416-1 SUSE-SU-2018:1935-1 SUSE-SU-2018:3588-1 SUSE-SU-2019:2478-1 SUSE-SU-2019:3057-1 SUSE-SU-2019:3297-1 SUSE-SU-2020:0331-1 SUSE-SU-2020:1211-1 SUSE-SU-2020:1686-1 SUSE-SU-2020:2461-1 SUSE-SU-2020:3093-1 Platform(s): openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9 Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information docker-18.09.6_ce-lp151.2.6 is installed OR docker-bash-completion-18.09.6_ce-lp151.2.6 is installed OR docker-test-18.09.6_ce-lp151.2.6 is installed OR docker-zsh-completion-18.09.6_ce-lp151.2.6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information qemu-2.9.0-6.3 is installed OR qemu-arm-2.9.0-6.3 is installed OR qemu-block-curl-2.9.0-6.3 is installed OR qemu-block-rbd-2.9.0-6.3 is installed OR qemu-block-ssh-2.9.0-6.3 is installed OR qemu-guest-agent-2.9.0-6.3 is installed OR qemu-ipxe-1.0.0-6.3 is installed OR qemu-kvm-2.9.0-6.3 is installed OR qemu-lang-2.9.0-6.3 is installed OR qemu-ppc-2.9.0-6.3 is installed OR qemu-s390-2.9.0-6.3 is installed OR qemu-seabios-1.10.2-6.3 is installed OR qemu-sgabios-8-6.3 is installed OR qemu-tools-2.9.0-6.3 is installed OR qemu-vgabios-1.10.2-6.3 is installed OR qemu-x86-2.9.0-6.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libjavascriptcoregtk-4_0-18-2.28.2-2.53 is installed OR libwebkit2gtk-4_0-37-2.28.2-2.53 is installed OR typelib-1_0-JavaScriptCore-4_0-2.28.2-2.53 is installed OR typelib-1_0-WebKit2-4_0-2.28.2-2.53 is installed OR webkit2gtk-4_0-injected-bundles-2.28.2-2.53 is installed OR webkit2gtk3-2.28.2-2.53 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information libssh2-1-1.4.3-20.14 is installed OR libssh2-1-32bit-1.4.3-20.14 is installed OR libssh2_org-1.4.3-20.14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information cups-1.7.5-20.26 is installed OR cups-client-1.7.5-20.26 is installed OR cups-libs-1.7.5-20.26 is installed OR cups-libs-32bit-1.7.5-20.26 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information pam_pkcs11-0.6.8-7.5 is installed OR pam_pkcs11-32bit-0.6.8-7.5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information ceph-common-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR libcephfs2-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR librados2-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR libradosstriper1-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR librbd1-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR librgw2-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR python-cephfs-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR python-rados-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR python-rbd-12.2.8+git.1536505967.080f2248ff-2.15 is installed OR python-rgw-12.2.8+git.1536505967.080f2248ff-2.15 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ghostscript-9.27-23.28 is installed OR ghostscript-x11-9.27-23.28 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 9 is installed AND haproxy-1.6.11-11.3 is installed
BACK