Oval Definition:oval:org.opensuse.security:def:70482
Revision Date:2021-09-15Version:1
Title:Security update for ghostscript (Critical)
Description:

This update for ghostscript fixes the following issues:

Security issue fixed:

- CVE-2021-3781: Fixed a trivial -dSAFER bypass command injection (bsc#1190381)

Also a hardening fix was added:

- Link as position independent executable (bsc#1184123)
Family:unixClass:patch
Status:Reference(s):1173749
1174628
1177780
1177781
1177782
1177783
1184123
1190381
CVE-2020-14344
CVE-2020-25650
CVE-2020-25651
CVE-2020-25652
CVE-2020-25653
CVE-2021-3781
SUSE-SU-2020:3268-1
SUSE-SU-2021:3044-1
Platform(s):SUSE Linux Enterprise Module for Desktop Applications 15 SP2
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed
  • AND spice-vdagent-0.19.0-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • libX11-1.6.5-3.9 is installed
  • OR libX11-devel-32bit-1.6.5-3.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 SP1 is installed
  • AND Package Information
  • ghostscript-9.52-155.1 is installed
  • OR ghostscript-devel-9.52-155.1 is installed
  • OR ghostscript-x11-9.52-155.1 is installed
  • OR libspectre-devel-0.2.8-3.12.1 is installed
  • OR libspectre1-0.2.8-3.12.1 is installed
    • BACK