Oval Definition:oval:org.opensuse.security:def:70805
Revision Date:2021-10-29Version:1
Title:Security update for transfig (Important)
Description:

This update for transfig fixes the following issues:

Update to fig2dev version 3.2.8 Patchlevel 8b (Aug 2021)

- bsc#1190618, CVE-2020-21529: stack buffer overflow in the bezier_spline function in genepic.c. - bsc#1190615, CVE-2020-21530: segmentation fault in the read_objects function in read.c. - bsc#1190617, CVE-2020-21531: global buffer overflow in the conv_pattern_index function in gencgm.c. - bsc#1190616, CVE-2020-21532: global buffer overflow in the setfigfont function in genepic.c. - bsc#1190612, CVE-2020-21533: stack buffer overflow in the read_textobject function in read.c. - bsc#1190611, CVE-2020-21534: global buffer overflow in the get_line function in read.c. - bsc#1190607, CVE-2020-21535: segmentation fault in the gencgm_start function in gencgm.c. - bsc#1192019, CVE-2021-32280: NULL pointer dereference in compute_closed_spline() in trans_spline.c
Family:unixClass:patch
Status:Reference(s):1168994
1173812
1174463
1174570
1189325
1189343
1189345
1189346
1190607
1190611
1190612
1190615
1190616
1190617
1190618
1192019
CVE-2014-2524
CVE-2014-6271
CVE-2014-6277
CVE-2014-6278
CVE-2014-7169
CVE-2014-7186
CVE-2014-7187
CVE-2016-9401
CVE-2020-10713
CVE-2020-14308
CVE-2020-14309
CVE-2020-14310
CVE-2020-14311
CVE-2020-15706
CVE-2020-15707
CVE-2020-21529
CVE-2020-21530
CVE-2020-21531
CVE-2020-21532
CVE-2020-21533
CVE-2020-21534
CVE-2020-21535
CVE-2020-21680
CVE-2020-21681
CVE-2020-21682
CVE-2020-21683
CVE-2021-32280
SUSE-SU-2020:2074-1
SUSE-SU-2021:3584-1
Platform(s):SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Workstation Extension 15 SP2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • bash-4.4-9.7 is installed
  • OR bash-devel-4.4-9.7 is installed
  • OR bash-doc-4.4-9.7 is installed
  • OR bash-lang-4.4-9.7 is installed
  • OR libreadline7-7.0-9.7 is installed
  • OR readline-devel-7.0-9.7 is installed
  • OR readline-doc-7.0-9.7 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND Package Information
  • grub2-2.04-9.7 is installed
  • OR grub2-x86_64-xen-2.04-9.7 is installed
  • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
  • AND transfig-3.2.8b-4.15.1 is installed
  • BACK