Oval Definition:oval:org.opensuse.security:def:63874
Revision Date:2020-12-01Version:1
Title:Security update for LibVNCServer (Important)
Description:

This update for LibVNCServer fixes the following issues:

Security issues fixed:

- CVE-2018-15126: Fixed use-after-free in file transfer extension (bsc#1120114) - CVE-2018-6307: Fixed use-after-free in file transfer extension server code (bsc#1120115) - CVE-2018-20020: Fixed heap out-of-bound write inside structure in VNC client code (bsc#1120116) - CVE-2018-15127: Fixed heap out-of-bounds write in rfbserver.c (bsc#1120117) - CVE-2018-20019: Fixed multiple heap out-of-bound writes in VNC client code (bsc#1120118) - CVE-2018-20023: Fixed information disclosure through improper initialization in VNC Repeater client code (bsc#1120119) - CVE-2018-20022: Fixed information disclosure through improper initialization in VNC client code (bsc#1120120) - CVE-2018-20024: Fixed NULL pointer dereference in VNC client code (bsc#1120121) - CVE-2018-20021: Fixed infinite loop in VNC client code (bsc#1120122)
Family:unixClass:patch
Status:Reference(s):1120114
1120115
1120116
1120117
1120118
1120119
1120120
1120121
1120122
1122469
1140868
1143349
1150397
1150733
1152308
1153367
1156323
1156324
1156326
1156328
1156329
1158590
1162687
1162689
1162691
1163019
1169407
1169511
1172277
1173595
1174157
1174543
1176410
1177143
CVE-2018-15126
CVE-2018-15127
CVE-2018-20019
CVE-2018-20020
CVE-2018-20021
CVE-2018-20022
CVE-2018-20023
CVE-2018-20024
CVE-2018-6307
CVE-2019-11709
CVE-2019-11711
CVE-2019-11712
CVE-2019-11713
CVE-2019-11715
CVE-2019-11717
CVE-2019-11719
CVE-2019-11729
CVE-2019-11730
CVE-2019-12523
CVE-2019-12526
CVE-2019-12528
CVE-2019-16884
CVE-2019-18676
CVE-2019-18677
CVE-2019-18678
CVE-2019-18679
CVE-2019-3689
CVE-2019-9811
CVE-2020-14556
CVE-2020-14562
CVE-2020-14573
CVE-2020-14577
CVE-2020-14581
CVE-2020-14583
CVE-2020-14593
CVE-2020-14621
CVE-2020-14983
CVE-2020-1967
CVE-2020-25219
CVE-2020-26154
CVE-2020-2654
CVE-2020-2756
CVE-2020-2757
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2830
CVE-2020-8449
CVE-2020-8450
CVE-2020-8517
CVE-2020-8608
openSUSE-SU-2019:1813-1
openSUSE-SU-2019:2435-1
openSUSE-SU-2020:0045-1
openSUSE-SU-2020:0939-1
openSUSE-SU-2020:1191-1
SUSE-SU-2019:0060-1
SUSE-SU-2020:0661-1
SUSE-SU-2020:1058-1
SUSE-SU-2020:1683-1
SUSE-SU-2020:2900-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.2
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE Linux Enterprise Server 12 SP4-LTSS
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • MozillaThunderbird-60.8.0-lp151.2.10 is installed
  • OR MozillaThunderbird-buildsymbols-60.8.0-lp151.2.10 is installed
  • OR MozillaThunderbird-translations-common-60.8.0-lp151.2.10 is installed
  • OR MozillaThunderbird-translations-other-60.8.0-lp151.2.10 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • java-11-openjdk-11.0.8.0-lp152.2.3 is installed
  • OR java-11-openjdk-accessibility-11.0.8.0-lp152.2.3 is installed
  • OR java-11-openjdk-demo-11.0.8.0-lp152.2.3 is installed
  • OR java-11-openjdk-devel-11.0.8.0-lp152.2.3 is installed
  • OR java-11-openjdk-headless-11.0.8.0-lp152.2.3 is installed
  • OR java-11-openjdk-javadoc-11.0.8.0-lp152.2.3 is installed
  • OR java-11-openjdk-jmods-11.0.8.0-lp152.2.3 is installed
  • OR java-11-openjdk-src-11.0.8.0-lp152.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • LibVNCServer-0.9.9-17.8 is installed
  • OR libvncclient0-0.9.9-17.8 is installed
  • OR libvncserver0-0.9.9-17.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND Package Information
  • xen-4.11.4_06-2.33 is installed
  • OR xen-doc-html-4.11.4_06-2.33 is installed
  • OR xen-libs-4.11.4_06-2.33 is installed
  • OR xen-libs-32bit-4.11.4_06-2.33 is installed
  • OR xen-tools-4.11.4_06-2.33 is installed
  • OR xen-tools-domU-4.11.4_06-2.33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-LTSS is installed
  • AND Package Information
  • libproxy-0.4.13-18.3 is installed
  • OR libproxy-plugins-0.4.13-18.3 is installed
  • OR libproxy1-0.4.13-18.3 is installed
  • OR libproxy1-32bit-0.4.13-18.3 is installed
  • OR libproxy1-config-gnome3-0.4.13-18.3 is installed
  • OR libproxy1-config-gnome3-32bit-0.4.13-18.3 is installed
  • OR libproxy1-networkmanager-0.4.13-18.3 is installed
  • OR libproxy1-pacrunner-webkit-0.4.13-18.3 is installed
    • BACK