Oval Definition:	oval:org.opensuse.security:def:64469
Revision Date: 2021-04-13 Version: 1 Title: Security update for opensc (Moderate) Description: This update for opensc fixes the following issues: - CVE-2019-15945: Fixed an out-of-bounds access of an ASN.1 Bitstring in decode_bit_string (bsc#1149746). - CVE-2019-15946: Fixed an out-of-bounds access of an ASN.1 Octet string in asn1_decode_entry (bsc#1149747) - CVE-2019-19479: Fixed an incorrect read operation during parsing of a SETCOS file attribute (bsc#1158256) - CVE-2019-19480: Fixed an improper free operation in sc_pkcs15_decode_prkdf_entry (bsc#1158307). - CVE-2019-20792: Fixed a double free in coolkey_free_private_data (bsc#1170809). - CVE-2020-26570: Fixed a buffer overflow in sc_oberthur_read_file (bsc#1177364). - CVE-2020-26571: Fixed a stack-based buffer overflow in gemsafe GPK smart card software driver (bsc#1177380) - CVE-2020-26572: Fixed a stack-based buffer overflow in tcos_decipher (bsc#1177378). Family: unix Class: patch Status: Reference(s): 1149746 1149747 1156643 1158256 1158307 1158910 1159713 1159714 1159740 1168930 1170809 1172625 1173630 1177364 1177378 1177380 1178466 CVE-2009-2411 CVE-2010-3315 CVE-2010-4539 CVE-2010-4644 CVE-2011-0715 CVE-2011-1752 CVE-2011-1783 CVE-2011-1921 CVE-2012-2812 CVE-2012-2813 CVE-2012-2814 CVE-2012-2836 CVE-2012-2837 CVE-2012-2840 CVE-2012-2841 CVE-2013-1845 CVE-2013-1846 CVE-2013-1847 CVE-2013-1849 CVE-2013-1884 CVE-2013-1968 CVE-2013-2088 CVE-2013-2112 CVE-2013-4131 CVE-2013-4246 CVE-2013-4262 CVE-2013-4277 CVE-2013-4505 CVE-2013-4558 CVE-2014-0032 CVE-2014-3522 CVE-2014-3528 CVE-2014-3580 CVE-2014-8108 CVE-2015-0202 CVE-2015-0248 CVE-2015-0251 CVE-2015-3184 CVE-2015-3187 CVE-2015-5259 CVE-2015-5343 CVE-2016-2167 CVE-2016-2168 CVE-2016-6328 CVE-2016-8734 CVE-2017-7544 CVE-2017-9800 CVE-2018-11803 CVE-2019-15945 CVE-2019-15946 CVE-2019-18932 CVE-2019-19479 CVE-2019-19480 CVE-2019-19917 CVE-2019-19918 CVE-2019-20792 CVE-2020-13848 CVE-2020-15395 CVE-2020-26570 CVE-2020-26571 CVE-2020-26572 CVE-2020-5260 CVE-2020-8016 CVE-2020-8017 CVE-2020-8037 openSUSE-SU-2020:0117-1 openSUSE-SU-2020:0524-1 openSUSE-SU-2020:0804-1 openSUSE-SU-2020:0805-1 openSUSE-SU-2020:1772-1 SUSE-SU-2021:1168-1 Platform(s): openSUSE Leap 15.1 openSUSE Leap 15.2 SUSE Linux Enterprise Desktop 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Storage 7 SUSE Manager Proxy 4.1 SUSE Manager Server 4.1 Product(s): Definition Synopsis openSUSE Leap 15.1 is installed AND sarg-2.3.10-lp151.3.3 is installed Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information kf5-mediainfo-20.08-lp152.4.3 is installed OR libmediainfo-20.08-lp152.4.3 is installed OR libmediainfo-devel-20.08-lp152.4.3 is installed OR libmediainfo0-20.08-lp152.4.3 is installed OR libmediainfo0-32bit-20.08-lp152.4.3 is installed OR mediainfo-20.08-lp152.4.3 is installed OR mediainfo-gui-20.08-lp152.4.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND Package Information subversion-1.10.0-3.3 is installed OR subversion-devel-1.10.0-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information libexif-devel-0.6.21-3 is installed OR libexif12-0.6.21-3 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND opensc-0.19.0-3.7.1 is installed
BACK