Oval Definition:oval:org.opensuse.security:def:70364
Revision Date:2021-03-19Version:1
Title:Security update for glib2 (Important)
Description:

This update for glib2 fixes the following issues:

- CVE-2021-27218: g_byte_array_new_take takes a gsize as length but stores in a guint, this patch will refuse if the length is larger than guint. (bsc#1182328)

- CVE-2021-27219: g_memdup takes a guint as parameter and sometimes leads into an integer overflow, so add a g_memdup2 function which uses gsize to replace it. (bsc#1182362)
Family:unixClass:patch
Status:Reference(s):1174628
1176733
1182328
1182362
CVE-2020-14344
CVE-2020-26117
CVE-2021-27218
CVE-2021-27219
SUSE-SU-2020:2197-1
SUSE-SU-2020:2880-1
SUSE-SU-2021:0890-1
Platform(s):SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Module for Desktop Applications 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • libX11-1.6.5-3.9 is installed
  • OR libX11-6-1.6.5-3.9 is installed
  • OR libX11-6-32bit-1.6.5-3.9 is installed
  • OR libX11-data-1.6.5-3.9 is installed
  • OR libX11-devel-1.6.5-3.9 is installed
  • OR libX11-xcb1-1.6.5-3.9 is installed
  • OR libX11-xcb1-32bit-1.6.5-3.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed
  • AND Package Information
  • libXvnc-devel-1.9.0-19.9 is installed
  • OR tigervnc-1.9.0-19.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • glib2-devel-2.54.3-4.24.1 is installed
  • OR glib2-lang-2.54.3-4.24.1 is installed
  • OR glib2-tools-2.54.3-4.24.1 is installed
  • OR libgio-2_0-0-2.54.3-4.24.1 is installed
  • OR libgio-2_0-0-32bit-2.54.3-4.24.1 is installed
  • OR libglib-2_0-0-2.54.3-4.24.1 is installed
  • OR libglib-2_0-0-32bit-2.54.3-4.24.1 is installed
  • OR libgmodule-2_0-0-2.54.3-4.24.1 is installed
  • OR libgmodule-2_0-0-32bit-2.54.3-4.24.1 is installed
  • OR libgobject-2_0-0-2.54.3-4.24.1 is installed
  • OR libgobject-2_0-0-32bit-2.54.3-4.24.1 is installed
  • OR libgthread-2_0-0-2.54.3-4.24.1 is installed
    • BACK