Oval Definition:oval:org.opensuse.security:def:74970
Revision Date:2020-12-01Version:1
Title:Security update for libredwg (Moderate)
Description:

This update for libredwg fixes the following issues:

libredwg was updated to release 0.10:

API breaking changes:

Added a new int *isnewp argument to all dynapi utf8text getters, if the returned string is freshly malloced or not. * removed the UNKNOWN supertype, there are only UNKNOWN_OBJ and UNKNOWN_ENT left, with common_entity_data. * renamed BLOCK_HEADER.preview_data to preview, preview_data_size to preview_size. * renamed SHAPE.shape_no to style_id. * renamed CLASS.wasazombie to is_zombie.

Bugfixes:

Harmonized INDXFB with INDXF, removed extra src/in_dxfb.c. * Fixed encoding of added r2000 AUXHEADER address. * Fixed EED encoding from dwgrewrite. * Add several checks against [CVE-2020-6609, boo#1160520], [CVE-2020-6610, boo#1160522], [CVE-2020-6611, boo#1160523], [CVE-2020-6612, boo#1160524], [CVE-2020-6613, boo#1160525], [CVE-2020-6614, boo#1160526], [CVE-2020-6615, boo#1160527]
Family:unixClass:patch
Status:Reference(s):1160520
1160522
1160523
1160524
1160525
1160526
1160527
1171572
1171579
1177346
CVE-2020-6609
CVE-2020-6610
CVE-2020-6611
CVE-2020-6612
CVE-2020-6613
CVE-2020-6614
CVE-2020-6615
CVE-2020-8154
CVE-2020-8155
CVE-2020-8183
CVE-2020-8228
CVE-2020-8233
openSUSE-SU-2020:0096-1
openSUSE-SU-2020:1652-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.2
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libredwg-0.10-lp151.2.6 is installed
  • OR libredwg-devel-0.10-lp151.2.6 is installed
  • OR libredwg-tools-0.10-lp151.2.6 is installed
  • OR libredwg0-0.10-lp151.2.6 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND nextcloud-20.0.0-25 is installed
    • BACK