Oval Definition:	oval:org.opensuse.security:def:64148
Revision Date: 2020-12-01 Version: 1 Title: Security update for libsolv (Moderate) Description: This update for libsolv fixes the following issues: This is a reissue of an existing libsolv update that also included libsolv-devel for LTSS products. libsolv was updated to version 0.6.36 fixes the following issues: Security issues fixed: - CVE-2018-20532: Fixed a NULL pointer dereference in testcase_read() (bsc#1120629). - CVE-2018-20533: Fixed a NULL pointer dereference in testcase_str2dep_complex() (bsc#1120630). - CVE-2018-20534: Fixed a NULL pointer dereference in pool_whatprovides() (bsc#1120631). Non-security issues fixed: - Made cleandeps jobs on patterns work (bsc#1137977). - Fixed an issue multiversion packages that obsolete their own name (bsc#1127155). - Keep consistent package name if there are multiple alternatives (bsc#1131823). Family: unix Class: patch Status: Reference(s): 1120629 1120630 1120631 1124847 1127155 1131823 1137977 1139210 1141093 1141689 1144504 1146111 1146115 1146123 1149458 1151839 1159973 1166751 1172491 1174910 1174913 CVE-2009-0037 CVE-2009-2417 CVE-2013-0249 CVE-2013-1944 CVE-2013-2174 CVE-2013-4545 CVE-2014-0015 CVE-2014-0138 CVE-2014-0139 CVE-2014-3613 CVE-2014-3620 CVE-2014-8150 CVE-2015-3143 CVE-2015-3144 CVE-2015-3145 CVE-2015-3148 CVE-2015-3153 CVE-2015-3236 CVE-2015-3237 CVE-2016-0755 CVE-2016-7167 CVE-2016-8615 CVE-2016-8616 CVE-2016-8617 CVE-2016-8618 CVE-2016-8619 CVE-2016-8620 CVE-2016-8621 CVE-2016-8622 CVE-2016-8623 CVE-2016-8624 CVE-2016-8625 CVE-2016-9586 CVE-2016-9594 CVE-2017-1000099 CVE-2017-1000100 CVE-2017-1000101 CVE-2017-1000254 CVE-2017-1000257 CVE-2017-2629 CVE-2017-7468 CVE-2017-8816 CVE-2017-8817 CVE-2017-8818 CVE-2017-9502 CVE-2018-0500 CVE-2018-1000005 CVE-2018-1000007 CVE-2018-1000120 CVE-2018-1000121 CVE-2018-1000122 CVE-2018-1000300 CVE-2018-1000301 CVE-2018-14618 CVE-2018-16839 CVE-2018-16840 CVE-2018-16842 CVE-2018-16890 CVE-2018-20532 CVE-2018-20533 CVE-2018-20534 CVE-2019-12625 CVE-2019-12900 CVE-2019-13050 CVE-2019-14809 CVE-2019-3822 CVE-2019-3823 CVE-2019-9512 CVE-2019-9514 CVE-2020-0556 CVE-2020-13790 CVE-2020-14361 CVE-2020-14362 openSUSE-SU-2019:1917-1 openSUSE-SU-2019:2130-1 openSUSE-SU-2019:2595-1 openSUSE-SU-2020:0250-1 openSUSE-SU-2020:1374-1 openSUSE-SU-2020:1458-1 SUSE-SU-2020:2660-1 SUSE-SU-2020:3516-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Server 12 SP4-LTSS Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information gpg2-2.2.5-lp151.6.3 is installed OR gpg2-lang-2.2.5-lp151.6.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information libjpeg-turbo-1.5.3-lp152.8.3 is installed OR libjpeg62-62.2.0-lp152.8.3 is installed OR libjpeg62-32bit-62.2.0-lp152.8.3 is installed OR libjpeg62-devel-62.2.0-lp152.8.3 is installed OR libjpeg62-devel-32bit-62.2.0-lp152.8.3 is installed OR libjpeg62-turbo-1.5.3-lp152.8.3 is installed OR libjpeg8-8.1.2-lp152.8.3 is installed OR libjpeg8-32bit-8.1.2-lp152.8.3 is installed OR libjpeg8-devel-8.1.2-lp152.8.3 is installed OR libjpeg8-devel-32bit-8.1.2-lp152.8.3 is installed OR libturbojpeg0-8.1.2-lp152.8.3 is installed OR libturbojpeg0-32bit-8.1.2-lp152.8.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information curl-7.60.0-3.17 is installed OR libcurl-devel-7.60.0-3.17 is installed OR libcurl4-7.60.0-3.17 is installed OR libcurl4-32bit-7.60.0-3.17 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4-LTSS is installed AND Package Information libsolv-0.6.36-2.30 is installed OR libsolv-devel-0.6.36-2.30 is installed OR libsolv-tools-0.6.36-2.30 is installed OR perl-solv-0.6.36-2.30 is installed OR python-solv-0.6.36-2.30 is installed
BACK