Oval Definition:oval:org.opensuse.security:def:63892
Revision Date:2020-12-01Version:1
Title:Security update for file (Moderate)
Description:

This update for file fixes the following issues:

The following security vulnerabilities were addressed:

- Fixed an out-of-bounds read in the function do_core_note in readelf.c, which allowed remote attackers to cause a denial of service (application crash) via a crafted ELF file (bsc#1096974 CVE-2018-10360). - CVE-2019-8905: Fixed a stack-based buffer over-read in do_core_note in readelf.c (bsc#1126118) - CVE-2019-8906: Fixed an out-of-bounds read in do_core_note in readelf. c (bsc#1126119) - CVE-2019-8907: Fixed a stack corruption in do_core_note in readelf.c (bsc#1126117)
Family:unixClass:patch
Status:Reference(s):1096974
1096984
1126117
1126118
1126119
1137479
1141619
1142542
1142690
1144453
1153433
1153452
1154231
1154232
1154830
1155419
1157968
1157969
1165439
1170715
1171924
1172698
1172704
1174662
1176409
1176412
CVE-2018-10360
CVE-2019-1010006
CVE-2019-10206
CVE-2019-10217
CVE-2019-14846
CVE-2019-14856
CVE-2019-14858
CVE-2019-14864
CVE-2019-14904
CVE-2019-14905
CVE-2019-15681
CVE-2019-17362
CVE-2019-8905
CVE-2019-8906
CVE-2019-8907
CVE-2020-14392
CVE-2020-14393
CVE-2020-1747
CVE-2020-8023
CVE-2020-9862
CVE-2020-9893
CVE-2020-9894
CVE-2020-9895
CVE-2020-9915
CVE-2020-9925
openSUSE-SU-2019:1908-1
openSUSE-SU-2019:2514-1
openSUSE-SU-2020:0513-1
openSUSE-SU-2020:1275-1
SUSE-SU-2019:0839-1
SUSE-SU-2020:0955-1
SUSE-SU-2020:1285-1
SUSE-SU-2020:1859-1
SUSE-SU-2020:3343-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.2
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE Linux Enterprise Server 12 SP4-LTSS
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • evince-3.26.0+20180128.1bd86963-lp151.4.6 is installed
  • OR evince-devel-3.26.0+20180128.1bd86963-lp151.4.6 is installed
  • OR evince-lang-3.26.0+20180128.1bd86963-lp151.4.6 is installed
  • OR evince-plugin-comicsdocument-3.26.0+20180128.1bd86963-lp151.4.6 is installed
  • OR evince-plugin-djvudocument-3.26.0+20180128.1bd86963-lp151.4.6 is installed
  • OR evince-plugin-dvidocument-3.26.0+20180128.1bd86963-lp151.4.6 is installed
  • OR evince-plugin-pdfdocument-3.26.0+20180128.1bd86963-lp151.4.6 is installed
  • OR evince-plugin-psdocument-3.26.0+20180128.1bd86963-lp151.4.6 is installed
  • OR evince-plugin-tiffdocument-3.26.0+20180128.1bd86963-lp151.4.6 is installed
  • OR evince-plugin-xpsdocument-3.26.0+20180128.1bd86963-lp151.4.6 is installed
  • OR libevdocument3-4-3.26.0+20180128.1bd86963-lp151.4.6 is installed
  • OR libevview3-3-3.26.0+20180128.1bd86963-lp151.4.6 is installed
  • OR nautilus-evince-3.26.0+20180128.1bd86963-lp151.4.6 is installed
  • OR typelib-1_0-EvinceDocument-3_0-3.26.0+20180128.1bd86963-lp151.4.6 is installed
  • OR typelib-1_0-EvinceView-3_0-3.26.0+20180128.1bd86963-lp151.4.6 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.28.4-lp152.2.4 is installed
  • OR libjavascriptcoregtk-4_0-18-32bit-2.28.4-lp152.2.4 is installed
  • OR libwebkit2gtk-4_0-37-2.28.4-lp152.2.4 is installed
  • OR libwebkit2gtk-4_0-37-32bit-2.28.4-lp152.2.4 is installed
  • OR libwebkit2gtk3-lang-2.28.4-lp152.2.4 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.28.4-lp152.2.4 is installed
  • OR typelib-1_0-WebKit2-4_0-2.28.4-lp152.2.4 is installed
  • OR typelib-1_0-WebKit2WebExtension-4_0-2.28.4-lp152.2.4 is installed
  • OR webkit-jsc-4-2.28.4-lp152.2.4 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.28.4-lp152.2.4 is installed
  • OR webkit2gtk3-2.28.4-lp152.2.4 is installed
  • OR webkit2gtk3-devel-2.28.4-lp152.2.4 is installed
  • OR webkit2gtk3-minibrowser-2.28.4-lp152.2.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • file-5.22-10.12 is installed
  • OR file-magic-5.22-10.12 is installed
  • OR libmagic1-5.22-10.12 is installed
  • OR libmagic1-32bit-5.22-10.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND perl-DBI-1.628-5.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-LTSS is installed
  • AND Package Information
  • libecpg6-12.4-3.5 is installed
  • OR libpq5-12.4-3.5 is installed
  • OR libpq5-32bit-12.4-3.5 is installed
  • OR postgresql-12.0.1-4.4 is installed
  • OR postgresql-contrib-12.0.1-4.4 is installed
  • OR postgresql-docs-12.0.1-4.4 is installed
  • OR postgresql-plperl-12.0.1-4.4 is installed
  • OR postgresql-plpython-12.0.1-4.4 is installed
  • OR postgresql-pltcl-12.0.1-4.4 is installed
  • OR postgresql-server-12.0.1-4.4 is installed
  • OR postgresql10-10.14-4.4 is installed
  • OR postgresql10-contrib-10.14-4.4 is installed
  • OR postgresql10-docs-10.14-4.4 is installed
  • OR postgresql10-plperl-10.14-4.4 is installed
  • OR postgresql10-plpython-10.14-4.4 is installed
  • OR postgresql10-pltcl-10.14-4.4 is installed
  • OR postgresql10-server-10.14-4.4 is installed
  • OR postgresql12-12.4-3.5 is installed
    • BACK