Oval Definition:	oval:org.opensuse.security:def:64009
Revision Date: 2020-12-01 Version: 1 Title: Security update for librsvg (Moderate) Description: This update for librsvg to version 2.40.21 fixes the following issues: librsvg was updated to version 2.40.21 fixing the following issues: - CVE-2019-20446: Fixed an issue where a crafted SVG file with nested patterns can cause denial of service (bsc#1162501). NOTE: Librsvg now has limits on the number of loaded XML elements, and the number of referenced elements within an SVG document. - Fixed a stack exhaustion with circular references in elements. - Fixed a denial-of-service condition from exponential explosion of rendered elements, through nested use of SVG 'use' elements in malicious SVGs. Family: unix Class: patch Status: Reference(s): 1061305 1106531 1134157 1134853 1143463 1143777 1143817 1143818 1143819 1143820 1143821 1143823 1143824 1143825 1143827 1143828 1143830 1143831 1144656 1144675 1149121 1149792 1149955 1151490 1153238 1160790 1161088 1161089 1161670 1162198 1162501 1167209 1170107 1171910 1171975 1172496 1172515 1173580 1174321 1176315 CVE-2017-14988 CVE-2018-16140 CVE-2019-11059 CVE-2019-11690 CVE-2019-13103 CVE-2019-13104 CVE-2019-13106 CVE-2019-14192 CVE-2019-14193 CVE-2019-14194 CVE-2019-14195 CVE-2019-14196 CVE-2019-14197 CVE-2019-14198 CVE-2019-14199 CVE-2019-14200 CVE-2019-14201 CVE-2019-14202 CVE-2019-14203 CVE-2019-14204 CVE-2019-16056 CVE-2019-16785 CVE-2019-16786 CVE-2019-16789 CVE-2019-16792 CVE-2019-16935 CVE-2019-20446 CVE-2020-10648 CVE-2020-15103 CVE-2020-17507 CVE-2020-4044 CVE-2020-6463 CVE-2020-6465 CVE-2020-6466 CVE-2020-6467 CVE-2020-6468 CVE-2020-6469 CVE-2020-6470 CVE-2020-6471 CVE-2020-6472 CVE-2020-6473 CVE-2020-6474 CVE-2020-6475 CVE-2020-6476 CVE-2020-6477 CVE-2020-6478 CVE-2020-6479 CVE-2020-6480 CVE-2020-6481 CVE-2020-6482 CVE-2020-6483 CVE-2020-6484 CVE-2020-6485 CVE-2020-6486 CVE-2020-6487 CVE-2020-6488 CVE-2020-6489 CVE-2020-6490 CVE-2020-6491 CVE-2020-6493 CVE-2020-6494 CVE-2020-6495 CVE-2020-6496 CVE-2020-8432 openSUSE-SU-2019:1455-1 openSUSE-SU-2019:1954-1 openSUSE-SU-2019:2438-1 openSUSE-SU-2020:0823-1 openSUSE-SU-2020:1332-1 SUSE-SU-2020:0604-1 SUSE-SU-2020:2751-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP4-ESPOS SUSE Linux Enterprise Server 12 SP4-LTSS Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND transfig-3.2.6a-lp151.4.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information python-waitress-1.4.3-lp152.4.3 is installed OR python2-waitress-1.4.3-lp152.4.3 is installed OR python3-waitress-1.4.3-lp152.4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information gdk-pixbuf-loader-rsvg-2.40.21-5.9 is installed OR librsvg-2.40.21-5.9 is installed OR librsvg-2-2-2.40.21-5.9 is installed OR librsvg-2-2-32bit-2.40.21-5.9 is installed OR rsvg-view-2.40.21-5.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-ESPOS is installed AND Package Information u-boot-2018.03-4.3 is installed OR u-boot-rpi3-2018.03-4.3 is installed OR u-boot-tools-2018.03-4.3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information libQt5Concurrent5-5.6.2-6.25 is installed OR libQt5Core5-5.6.2-6.25 is installed OR libQt5DBus5-5.6.2-6.25 is installed OR libQt5Gui5-5.6.2-6.25 is installed OR libQt5Network5-5.6.2-6.25 is installed OR libQt5OpenGL5-5.6.2-6.25 is installed OR libQt5PrintSupport5-5.6.2-6.25 is installed OR libQt5Sql5-5.6.2-6.25 is installed OR libQt5Sql5-mysql-5.6.2-6.25 is installed OR libQt5Sql5-postgresql-5.6.2-6.25 is installed OR libQt5Sql5-sqlite-5.6.2-6.25 is installed OR libQt5Sql5-unixODBC-5.6.2-6.25 is installed OR libQt5Test5-5.6.2-6.25 is installed OR libQt5Widgets5-5.6.2-6.25 is installed OR libQt5Xml5-5.6.2-6.25 is installed OR libqt5-qtbase-5.6.2-6.25 is installed
BACK