Oval Definition:oval:org.opensuse.security:def:70827
Revision Date:2021-07-22Version:1
Title:Security update for transfig (Moderate)
Description:

This update for transfig fixes the following issues:

Update to version 3.2.8, including fixes for

- CVE-2021-3561: overflow in fig2dev/read.c in function read_colordef() (bsc#1186329). - CVE-2019-19797: out-of-bounds write in read_colordef in read.c (bsc#1159293). - CVE-2019-19555: stack-based buffer overflow because of an incorrect sscanf (bsc#1161698). - CVE-2019-19746: segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type (bsc#1159130). - CVE-2019-14275: stack-based buffer overflow in the calc_arrow function in bound.c (bsc#1143650).
Family:unixClass:patch
Status:Reference(s):1143650
1159130
1159293
1161698
1178666
1178667
1178668
1186329
CVE-2015-3294
CVE-2015-8899
CVE-2017-14491
CVE-2017-14492
CVE-2017-14493
CVE-2017-14494
CVE-2017-14495
CVE-2017-14496
CVE-2019-14275
CVE-2019-19555
CVE-2019-19746
CVE-2019-19797
CVE-2020-25694
CVE-2020-25695
CVE-2020-25696
CVE-2021-3561
SUSE-SU-2020:3463-1
SUSE-SU-2021:2454-1
Platform(s):SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Linux Enterprise Workstation Extension 15 SP3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP3 is installed
  • AND transfig-3.2.8a-4.12.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND dnsmasq-2.78-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND Package Information
  • libecpg6-12.5-8.10 is installed
  • OR postgresql12-12.5-8.10 is installed
  • OR postgresql12-contrib-12.5-8.10 is installed
  • OR postgresql12-devel-12.5-8.10 is installed
  • OR postgresql12-docs-12.5-8.10 is installed
  • OR postgresql12-plperl-12.5-8.10 is installed
  • OR postgresql12-plpython-12.5-8.10 is installed
  • OR postgresql12-pltcl-12.5-8.10 is installed
  • OR postgresql12-server-12.5-8.10 is installed
  • OR postgresql12-server-devel-12.5-8.10 is installed
    • BACK