Oval Definition:oval:org.opensuse.security:def:896
Revision Date:2022-01-25Version:1
Title:Security update for expat (Important)
Description:

This update for expat fixes the following issues: - CVE-2021-45960: Fixed left shift in the storeAtts function in xmlparse.c that can lead to realloc misbehavior (bsc#1194251). - CVE-2021-46143: Fixed integer overflow in m_groupSize in doProlog (bsc#1194362). - CVE-2022-22822: Fixed integer overflow in addBinding in xmlparse.c (bsc#1194474). - CVE-2022-22823: Fixed integer overflow in build_model in xmlparse.c (bsc#1194476). - CVE-2022-22824: Fixed integer overflow in defineAttribute in xmlparse.c (bsc#1194477). - CVE-2022-22825: Fixed integer overflow in lookup in xmlparse.c (bsc#1194478). - CVE-2022-22826: Fixed integer overflow in nextScaffoldPart in xmlparse.c (bsc#1194479). - CVE-2022-22827: Fixed integer overflow in storeAtts in xmlparse.c (bsc#1194480).
Family:unixClass:patch
Status:Reference(s):1194251
1194362
1194474
1194476
1194477
1194478
1194479
1194480
CVE-2014-9680
CVE-2015-5522
CVE-2015-5522
CVE-2015-5523
CVE-2015-5523
CVE-2016-6583
CVE-2016-6583
CVE-2016-7032
CVE-2016-7076
CVE-2017-1000367
CVE-2017-1000368
CVE-2019-14287
CVE-2019-18634
CVE-2021-45960
CVE-2021-46143
CVE-2022-22822
CVE-2022-22823
CVE-2022-22824
CVE-2022-22825
CVE-2022-22826
CVE-2022-22827
SUSE-SU-2022:0178-1
Platform(s):openSUSE 13.2
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise High Availability 15
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP3
SUSE Linux Enterprise Module for Development Tools 15
SUSE Linux Enterprise Module for Development Tools 15 SP1
SUSE Linux Enterprise Module for High Performance Computing 15
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Live Patching 15
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
SUSE Linux Enterprise Module for Public Cloud 15
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Storage 7
SUSE Linux Enterprise Storage 7.1
SUSE Linux Enterprise Workstation Extension 15
SUSE Manager Proxy 4.1
SUSE Manager Proxy 4.2
SUSE Manager Retail Branch Server 4.2
SUSE Manager Server 4.1
SUSE Manager Server 4.2
SUSE Package Hub for SUSE Linux Enterprise 12 SP1
Product(s):
Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND Package Information
  • ruby2.1-rubygem-chef-10.32.2-3 is installed
  • OR rubygem-chef-10.32.2-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-5 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-5 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-5 is installed
  • OR libMagickCore-6_Q16-1-32bit-6.8.8.1-5 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • avahi-0.6.31-20 is installed
  • OR avahi-lang-0.6.31-20 is installed
  • OR libavahi-client3-0.6.31-20 is installed
  • OR libavahi-client3-32bit-0.6.31-20 is installed
  • OR libavahi-common3-0.6.31-20 is installed
  • OR libavahi-common3-32bit-0.6.31-20 is installed
  • OR libavahi-core7-0.6.31-20 is installed
  • OR libdns_sd-0.6.31-20 is installed
  • OR libdns_sd-32bit-0.6.31-20 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • gvim-7.4.326-16 is installed
  • OR vim-7.4.326-16 is installed
  • OR vim-data-7.4.326-16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • sudo-1.8.22-4.9.1 is installed
  • OR sudo-devel-1.8.22-4.9.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Desktop 15 SP3 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed
  • OR SUSE Linux Enterprise Server 15 SP3 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed
  • OR SUSE Linux Enterprise Storage 7.1 is installed
  • OR SUSE Manager Proxy 4.2 is installed
  • OR SUSE Manager Retail Branch Server 4.2 is installed
  • OR SUSE Manager Server 4.2 is installed
  • AND Package Information
  • expat-2.2.5-3.9.1 is installed
  • OR libexpat-devel-2.2.5-3.9.1 is installed
  • OR libexpat1-2.2.5-3.9.1 is installed
  • OR libexpat1-32bit-2.2.5-3.9.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 is installed
  • AND Package Information
  • ruby2.5-rubygem-sprockets-3.7.2-3.3 is installed
  • OR rubygem-sprockets-3.7.2-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • sudo-1.8.22-4.9 is installed
  • OR sudo-devel-1.8.22-4.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 is installed
  • AND Package Information
  • ncurses-6.1-5.3 is installed
  • OR ncurses-devel-32bit-6.1-5.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed
  • AND Package Information
  • libtidy-devel-5.4.0-1 is installed
  • OR libtidy5-5.4.0-1 is installed
  • OR tidy-5.4.0-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for High Performance Computing 15 is installed
  • AND Package Information
  • python-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed
  • OR python2-numpy-gnu-hpc-1.14.0-4.5 is installed
  • OR python2-numpy-gnu-hpc-devel-1.14.0-4.5 is installed
  • OR python2-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed
  • OR python2-numpy_1_14_0-gnu-hpc-devel-1.14.0-4.5 is installed
  • OR python3-numpy-gnu-hpc-1.14.0-4.5 is installed
  • OR python3-numpy-gnu-hpc-devel-1.14.0-4.5 is installed
  • OR python3-numpy_1_14_0-gnu-hpc-1.14.0-4.5 is installed
  • OR python3-numpy_1_14_0-gnu-hpc-devel-1.14.0-4.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 is installed
  • AND Package Information
  • libopenssl-1_0_0-devel-1.0.2n-3.3 is installed
  • OR libopenssl1_0_0-1.0.2n-3.3 is installed
  • OR openssl-1_0_0-1.0.2n-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Live Patching 15 is installed
  • AND Package Information
  • kernel-default-4.12.14-25.3 is installed
  • OR kernel-default-livepatch-4.12.14-25.3 is installed
  • OR kernel-livepatch-4_12_14-25_3-default-1-1.3 is installed
  • OR kernel-livepatch-SLE15_Update_1-1-1.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed
  • AND Package Information
  • python-Werkzeug-0.12.2-3.3 is installed
  • OR python-Werkzeug-doc-0.12.2-3.3 is installed
  • OR python2-Werkzeug-0.12.2-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 is installed
  • AND Package Information
  • kernel-azure-4.12.14-5.5 is installed
  • OR kernel-azure-base-4.12.14-5.5 is installed
  • OR kernel-azure-devel-4.12.14-5.5 is installed
  • OR kernel-devel-azure-4.12.14-5.5 is installed
  • OR kernel-source-azure-4.12.14-5.5 is installed
  • OR kernel-syms-azure-4.12.14-5.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • xen-4.10.1_06-3.3 is installed
  • OR xen-devel-4.10.1_06-3.3 is installed
  • OR xen-tools-4.10.1_06-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND Package Information
  • nodejs8-8.11.3-3.5 is installed
  • OR nodejs8-devel-8.11.3-3.5 is installed
  • OR nodejs8-docs-8.11.3-3.5 is installed
  • OR npm8-8.11.3-3.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • libXRes1-1.0.7-3.54 is installed
  • OR libXRes1-32bit-1.0.7-3.54 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libHX28-3.18-1.19 is installed
  • OR libHX28-32bit-3.18-1.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND enigmail-2.0.7-3.7 is installed
    • Definition Synopsis
  • SUSE Package Hub for SUSE Linux Enterprise 12 SP1 is installed
  • AND Package Information
  • kinit-5.20.0-5 is installed
  • OR kinit-devel-5.20.0-5 is installed
  • OR kinit-lang-5.20.0-5 is installed
    • BACK