OVAL Reference oval:org.opensuse.security:def:962

Oval Definition:

oval:org.opensuse.security:def:962

Revision Date:	2022-03-04	Version:	1
Title:	Security update for vim (Important)
Description:	This update for vim fixes the following issues: - CVE-2022-0318: Fixed heap-based buffer overflow (bsc#1195004). - CVE-2021-3796: Fixed use-after-free in nv_replace() in normal.c (bsc#1190570). - CVE-2021-3872: Fixed heap-based buffer overflow in win_redr_status() drawscreen.c (bsc#1191893). - CVE-2021-3927: Fixed heap-based buffer overflow (bsc#1192481). - CVE-2021-3928: Fixed stack-based buffer overflow (bsc#1192478). - CVE-2021-4019: Fixed heap-based buffer overflow (bsc#1193294). - CVE-2021-3984: Fixed illegal memory access when C-indenting could have led to heap buffer overflow (bsc#1193298). - CVE-2021-3778: Fixed heap-based buffer overflow in regexp_nfa.c (bsc#1190533). - CVE-2021-4193: Fixed out-of-bounds read (bsc#1194216). - CVE-2021-46059: Fixed pointer dereference vulnerability via the vim_regexec_multi function at regexp.c (bsc#1194556). - CVE-2022-0319: Fixded out-of-bounds read (bsc#1195066). - CVE-2022-0351: Fixed uncontrolled recursion in eval7() (bsc#1195126). - CVE-2022-0361: Fixed buffer overflow (bsc#1195126). - CVE-2022-0413: Fixed use-after-free in src/ex_cmds.c (bsc#1195356).
Family:	unix	Class:	patch
Status:		Reference(s):	1190533 1190570 1191893 1192478 1192481 1193294 1193298 1194216 1194556 1195004 1195066 1195126 1195202 1195356 CVE-2013-5123 CVE-2013-5123 CVE-2014-8991 CVE-2014-8991 CVE-2015-0552 CVE-2015-2296 CVE-2015-2296 CVE-2016-6318 CVE-2018-5345 CVE-2021-3778 CVE-2021-3796 CVE-2021-3872 CVE-2021-3927 CVE-2021-3928 CVE-2021-3984 CVE-2021-4019 CVE-2021-4193 CVE-2021-46059 CVE-2022-0318 CVE-2022-0319 CVE-2022-0351 CVE-2022-0361 CVE-2022-0413 SUSE-SU-2022:0736-1
Platform(s):	openSUSE 13.2 SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 15 SP3 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Public Cloud 15 SUSE Linux Enterprise Module for Python2 packages 15 SP1 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Web Scripting 15 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Storage 7.1 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 15 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.2 SUSE Package Hub for SUSE Linux Enterprise 15	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND haproxy-1.5.4-1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information finch-2.10.9-5 is installed OR libpurple-2.10.9-5 is installed OR libpurple-lang-2.10.9-5 is installed OR libpurple-meanwhile-2.10.9-5 is installed OR libpurple-tcl-2.10.9-5 is installed OR pidgin-2.10.9-5 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information DirectFB-1.7.1-4 is installed OR lib++dfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-1.7.1-4 is installed OR libdirectfb-1_7-1-32bit-1.7.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libgssglue1-0.4-3 is installed OR libgssglue1-32bit-0.4-3 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Desktop 15 SP3 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Linux Enterprise Storage 7.1 is installed OR SUSE Manager Proxy 4.2 is installed OR SUSE Manager Retail Branch Server 4.2 is installed OR SUSE Manager Server 4.2 is installed AND Package Information vim-8.0.1568-5.17.1 is installed OR vim-data-8.0.1568-5.17.1 is installed OR vim-data-common-8.0.1568-5.17.1 is installed OR vim-small-8.0.1568-5.17.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed AND Package Information cracklib-2.9.7-11.3.1 is installed OR cracklib-devel-2.9.7-11.3.1 is installed OR cracklib-dict-small-2.9.7-11.3.1 is installed OR libcrack2-2.9.7-11.3.1 is installed OR libcrack2-32bit-2.9.7-11.3.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 is installed AND Package Information ruby2.5-rubygem-sprockets-3.7.2-3.3 is installed OR rubygem-sprockets-3.7.2-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information postgresql10-10.6-4.8 is installed OR postgresql10-test-10.6-4.8 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information gcab-1.1-1 is installed OR gcab-devel-1.1-1 is installed OR gcab-lang-1.1-1 is installed OR libgcab-1_0-0-1.1-1 is installed OR typelib-1_0-GCab-1_0-1.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information libopenssl-1_0_0-devel-1.0.2n-3.3 is installed OR libopenssl1_0_0-1.0.2n-3.3 is installed OR openssl-1_0_0-1.0.2n-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-default-4.12.14-25.3 is installed OR kernel-default-livepatch-4.12.14-25.3 is installed OR kernel-livepatch-4_12_14-25_3-default-1-1.3 is installed OR kernel-livepatch-SLE15_Update_1-1-1.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information cloud-init-19.2-5.18 is installed OR cloud-init-doc-19.2-5.18 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 15 is installed AND Package Information kernel-azure-4.12.14-5.13 is installed OR kernel-azure-base-4.12.14-5.13 is installed OR kernel-azure-devel-4.12.14-5.13 is installed OR kernel-devel-azure-4.12.14-5.13 is installed OR kernel-source-azure-4.12.14-5.13 is installed OR kernel-syms-azure-4.12.14-5.13 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed AND python2-pip-10.0.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information dhcp-relay-4.3.5-4 is installed OR dhcp-server-4.3.5-4 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 15 is installed AND Package Information nodejs8-8.11.4-3.8 is installed OR nodejs8-devel-8.11.4-3.8 is installed OR nodejs8-docs-8.11.4-3.8 is installed OR npm8-8.11.4-3.8 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information libtag1-1.9.1-1.265 is installed OR libtag_c0-1.9.1-1.265 is installed OR taglib-1.9.1-1.265 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libmpfr4-3.1.2-7.1 is installed OR libmpfr4-32bit-3.1.2-7.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information kernel-default-4.12.14-25.13 is installed OR kernel-default-extra-4.12.14-25.13 is installed
Definition Synopsis
SUSE Package Hub for SUSE Linux Enterprise 15 is installed AND Package Information GraphicsMagick-1.3.29-bp150.2.6 is installed OR GraphicsMagick-devel-1.3.29-bp150.2.6 is installed OR libGraphicsMagick++-Q16-12-1.3.29-bp150.2.6 is installed OR libGraphicsMagick++-devel-1.3.29-bp150.2.6 is installed OR libGraphicsMagick-Q16-3-1.3.29-bp150.2.6 is installed OR libGraphicsMagick3-config-1.3.29-bp150.2.6 is installed OR libGraphicsMagickWand-Q16-2-1.3.29-bp150.2.6 is installed OR perl-GraphicsMagick-1.3.29-bp150.2.6 is installed

BACK