Oval Definition:	oval:org.opensuse.security:def:63707
Revision Date: 2020-12-01 Version: 1 Title: Security update for libcroco (Moderate) Description: This update for libcroco fixes the following issues: Security issues fixed: - CVE-2017-7960: Fixed heap overflow (input: check end of input before reading a byte) (bsc#1034481). - CVE-2017-7961: Fixed undefined behavior (tknzr: support only max long rgb values) (bsc#1034482). - CVE-2017-8834: Fixed denial of service (memory allocation error) via a crafted CSS file (bsc#1043898). - CVE-2017-8871: Fixed denial of service (infinite loop and CPU consumption) via a crafted CSS file (bsc#1043899). Family: unix Class: patch Status: Reference(s): 1009254 1024718 1034481 1034482 1043898 1043899 1046299 1046305 1046306 1047841 1050242 1050244 1050252 1050549 1051510 1054610 1055121 1055186 1056658 1056662 1056787 1058115 1060463 1063638 1065600 1065729 1070995 1071853 1071995 1078248 1078355 1079935 1082387 1082943 1083548 1083647 1084216 1086095 1086282 1086283 1086301 1086313 1086314 1086323 1086423 1087082 1087084 1087092 1087978 1088133 1088386 1090888 1091405 1093536 1094244 1094462 1094555 1097593 1098382 1098425 1098995 1102875 1102877 1102879 1102882 1102896 1103257 1103429 1104129 1104353 1104427 1104967 1105168 1106105 1106110 1106383 1106434 1106615 1106811 1106913 1107078 1107665 1107874 1108101 1108270 1108870 1109272 1109695 1109845 1110096 1110558 1110705 1111188 1111469 1111666 1111696 1111795 1112128 1113042 1113712 1113722 1113939 1114279 1114585 1114648 1114871 1114893 1116040 1116336 1116803 1116841 1117108 1117115 1117155 1117162 1117165 1117186 1117561 1117645 1117656 1117947 1117953 1118215 1118319 1118338 1118367 1118368 1118428 1118484 1118505 1118752 1118760 1118761 1118762 1118766 1118767 1118768 1118769 1118771 1118772 1118773 1118774 1118775 1118787 1118788 1118798 1118809 1118962 1119017 1119019 1119086 1119212 1119322 1119410 1119714 1119749 1119766 1119804 1119843 1119946 1119962 1119968 1120008 1120036 1120046 1120053 1120054 1120055 1120058 1120088 1120092 1120094 1120096 1120097 1120173 1120214 1120223 1120228 1120230 1120232 1120234 1120235 1120238 1120318 1120594 1120598 1120600 1120601 1120602 1120603 1120604 1120606 1120612 1120613 1120614 1120615 1120616 1120617 1120618 1120620 1120621 1120632 1120633 1120743 1120758 1120854 1120902 1120909 1120954 1120955 1121017 1121058 1121263 1121273 1121317 1121477 1121483 1121599 1121621 1121714 1121715 1121726 1121789 1121805 1121973 1122159 1122192 1122324 1122554 1122662 1122764 1122779 1122822 1122885 1122927 1122944 1122971 1122982 1123060 1123061 1123161 1123317 1123348 1123357 1123456 1123538 1123697 1123882 1123933 1124055 1124204 1124235 1124579 1124589 1124728 1124732 1124735 1124969 1124974 1124975 1124976 1124978 1124979 1124980 1124981 1124982 1124984 1124985 1125109 1125125 1125252 1125315 1125614 1125728 1125780 1125797 1125799 1125800 1125907 1125947 1126068 1126069 1126131 1126209 1126284 1126389 1126393 1126476 1126480 1126481 1126488 1126495 1126555 1126579 1126789 1126790 1126802 1126803 1126804 1126805 1126806 1126807 1127042 1127062 1127081 1127082 1127154 1127285 1127286 1127307 1127363 1127493 1127494 1127495 1127496 1127497 1127498 1127534 1127561 1127567 1127577 1127595 1127603 1127682 1127731 1127750 1127836 1127961 1128094 1128166 1128220 1128351 1128378 1128451 1128895 1129016 1129046 1129080 1129163 1129179 1129181 1129182 1129183 1129184 1129205 1129281 1129284 1129285 1129291 1129292 1129293 1129294 1129295 1129296 1129326 1129327 1129330 1129363 1129366 1129497 1129519 1129543 1129547 1129551 1129581 1129625 1129664 1129739 1129923 1133185 1133495 1137496 1137497 1138687 1139459 1151377 1151506 1154043 1155574 1156482 1159814 1162108 1167240 1176409 1176412 1177409 1177412 1177413 1177414 807502 828192 CVE-2017-11104 CVE-2017-7960 CVE-2017-7961 CVE-2017-8834 CVE-2017-8871 CVE-2018-10811 CVE-2018-12232 CVE-2018-14625 CVE-2018-16151 CVE-2018-16152 CVE-2018-16862 CVE-2018-16884 CVE-2018-17540 CVE-2018-18397 CVE-2018-19407 CVE-2018-19854 CVE-2018-19985 CVE-2018-20169 CVE-2018-20669 CVE-2018-5388 CVE-2018-5740 CVE-2018-5743 CVE-2018-5745 CVE-2018-9568 CVE-2019-11768 CVE-2019-12616 CVE-2019-2024 CVE-2019-3459 CVE-2019-3460 CVE-2019-3819 CVE-2019-6465 CVE-2019-6471 CVE-2019-6974 CVE-2019-7221 CVE-2019-7222 CVE-2019-7308 CVE-2019-8912 CVE-2019-8980 CVE-2019-9213 CVE-2020-14392 CVE-2020-14393 CVE-2020-1712 CVE-2020-27670 CVE-2020-27671 CVE-2020-27672 CVE-2020-27673 CVE-2020-5267 openSUSE-SU-2019:1689-1 openSUSE-SU-2020:0627-1 openSUSE-SU-2020:1086-1 openSUSE-SU-2020:1502-1 SUSE-SU-2019:0767-1 SUSE-SU-2019:1468-1 SUSE-SU-2019:2502-1 SUSE-SU-2019:3266-1 SUSE-SU-2020:0331-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND phpMyAdmin-4.9.0.1-31 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND knot-1.6.8-lp152.5.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libcroco-0.6.11-12.3 is installed OR libcroco-0_6-3-0.6.11-12.3 is installed OR libcroco-0_6-3-32bit-0.6.11-12.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information xen-4.11.4_10-2.39 is installed OR xen-doc-html-4.11.4_10-2.39 is installed OR xen-libs-4.11.4_10-2.39 is installed OR xen-libs-32bit-4.11.4_10-2.39 is installed OR xen-tools-4.11.4_10-2.39 is installed OR xen-tools-domU-4.11.4_10-2.39 is installed
BACK