Security update for qpdf SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2018:3066-1 Final 1 1 2018-10-08T05:44:05Z current 2018-10-08T05:44:05Z 2018-10-08T05:44:05Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for qpdf This update for qpdf fixes the following issues: qpdf was updated to 7.1.1. Security issues fixed: - CVE-2017-11627: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050577). - CVE-2017-11625: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050579). - CVE-2017-11626: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050578). - CVE-2017-11624: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050581). - CVE-2017-12595: Stack overflow when processing deeply nested arrays and dictionaries (bsc#1055960). - CVE-2017-9209: Remote attackers can cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document (bsc#1040312). - CVE-2017-9210: Remote attackers can cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document (bsc#1040313). - CVE-2017-9208: Remote attackers can cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document (bsc#1040311). * Check release notes for detailed bug fixes. * http://qpdf.sourceforge.net/files/qpdf-manual.html#ref.release-notes The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-OpenStack-Cloud-7-2018-2169,SUSE-SLE-DESKTOP-12-SP3-2018-2169,SUSE-SLE-SAP-12-SP1-2018-2169,SUSE-SLE-SAP-12-SP2-2018-2169,SUSE-SLE-SDK-12-SP3-2018-2169,SUSE-SLE-SERVER-12-2018-2169,SUSE-SLE-SERVER-12-SP1-2018-2169,SUSE-SLE-SERVER-12-SP2-2018-2169,SUSE-SLE-SERVER-12-SP3-2018-2169,SUSE-Storage-4-2018-2169 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2018/suse-su-20183066-1/ Link for SUSE-SU-2018:3066-1 https://lists.suse.com/pipermail/sle-security-updates/2018-October/004650.html E-Mail link for SUSE-SU-2018:3066-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1040311 SUSE Bug 1040311 https://bugzilla.suse.com/1040312 SUSE Bug 1040312 https://bugzilla.suse.com/1040313 SUSE Bug 1040313 https://bugzilla.suse.com/1050577 SUSE Bug 1050577 https://bugzilla.suse.com/1050578 SUSE Bug 1050578 https://bugzilla.suse.com/1050579 SUSE Bug 1050579 https://bugzilla.suse.com/1050581 SUSE Bug 1050581 https://bugzilla.suse.com/1055960 SUSE Bug 1055960 https://www.suse.com/security/cve/CVE-2017-11624/ SUSE CVE CVE-2017-11624 page https://www.suse.com/security/cve/CVE-2017-11625/ SUSE CVE CVE-2017-11625 page https://www.suse.com/security/cve/CVE-2017-11626/ SUSE CVE CVE-2017-11626 page https://www.suse.com/security/cve/CVE-2017-11627/ SUSE CVE CVE-2017-11627 page https://www.suse.com/security/cve/CVE-2017-12595/ SUSE CVE CVE-2017-12595 page https://www.suse.com/security/cve/CVE-2017-9208/ SUSE CVE CVE-2017-9208 page https://www.suse.com/security/cve/CVE-2017-9209/ SUSE CVE CVE-2017-9209 page https://www.suse.com/security/cve/CVE-2017-9210/ SUSE CVE CVE-2017-9210 page SUSE Enterprise Storage 4 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE OpenStack Cloud 7 cups-filters-1.0.58-15.2.1 cups-filters-cups-browsed-1.0.58-15.2.1 cups-filters-foomatic-rip-1.0.58-15.2.1 cups-filters-ghostscript-1.0.58-15.2.1 libqpdf18-7.1.1-3.3.4 qpdf-7.1.1-3.3.4 cups-filters-1.0.58-19.2.3 cups-filters-cups-browsed-1.0.58-19.2.3 cups-filters-foomatic-rip-1.0.58-19.2.3 cups-filters-ghostscript-1.0.58-19.2.3 qpdf-devel-7.1.1-3.3.4 cups-filters-1.0.58-15.2.1 as a component of SUSE Enterprise Storage 4 cups-filters-cups-browsed-1.0.58-15.2.1 as a component of SUSE Enterprise Storage 4 cups-filters-foomatic-rip-1.0.58-15.2.1 as a component of SUSE Enterprise Storage 4 cups-filters-ghostscript-1.0.58-15.2.1 as a component of SUSE Enterprise Storage 4 libqpdf18-7.1.1-3.3.4 as a component of SUSE Enterprise Storage 4 qpdf-7.1.1-3.3.4 as a component of SUSE Enterprise Storage 4 cups-filters-1.0.58-19.2.3 as a component of SUSE Linux Enterprise Desktop 12 SP3 cups-filters-cups-browsed-1.0.58-19.2.3 as a component of SUSE Linux Enterprise Desktop 12 SP3 cups-filters-foomatic-rip-1.0.58-19.2.3 as a component of SUSE Linux Enterprise Desktop 12 SP3 cups-filters-ghostscript-1.0.58-19.2.3 as a component of SUSE Linux Enterprise Desktop 12 SP3 libqpdf18-7.1.1-3.3.4 as a component of SUSE Linux Enterprise Desktop 12 SP3 cups-filters-1.0.58-15.2.1 as a component of SUSE Linux Enterprise Server 12 SP1-LTSS cups-filters-cups-browsed-1.0.58-15.2.1 as a component of SUSE Linux Enterprise Server 12 SP1-LTSS cups-filters-foomatic-rip-1.0.58-15.2.1 as a component of SUSE Linux Enterprise Server 12 SP1-LTSS cups-filters-ghostscript-1.0.58-15.2.1 as a component of SUSE Linux Enterprise Server 12 SP1-LTSS libqpdf18-7.1.1-3.3.4 as a component of SUSE Linux Enterprise Server 12 SP1-LTSS qpdf-7.1.1-3.3.4 as a component of SUSE Linux Enterprise Server 12 SP1-LTSS cups-filters-1.0.58-15.2.1 as a component of SUSE Linux Enterprise Server 12 SP2-LTSS cups-filters-cups-browsed-1.0.58-15.2.1 as a component of SUSE Linux Enterprise Server 12 SP2-LTSS cups-filters-foomatic-rip-1.0.58-15.2.1 as a component of SUSE Linux Enterprise Server 12 SP2-LTSS cups-filters-ghostscript-1.0.58-15.2.1 as a component of SUSE Linux Enterprise Server 12 SP2-LTSS libqpdf18-7.1.1-3.3.4 as a component of SUSE Linux Enterprise Server 12 SP2-LTSS qpdf-7.1.1-3.3.4 as a component of SUSE Linux Enterprise Server 12 SP2-LTSS cups-filters-1.0.58-19.2.3 as a component of SUSE Linux Enterprise Server 12 SP3 cups-filters-cups-browsed-1.0.58-19.2.3 as a component of SUSE Linux Enterprise Server 12 SP3 cups-filters-foomatic-rip-1.0.58-19.2.3 as a component of SUSE Linux Enterprise Server 12 SP3 cups-filters-ghostscript-1.0.58-19.2.3 as a component of SUSE Linux Enterprise Server 12 SP3 libqpdf18-7.1.1-3.3.4 as a component of SUSE Linux Enterprise Server 12 SP3 qpdf-7.1.1-3.3.4 as a component of SUSE Linux Enterprise Server 12 SP3 cups-filters-1.0.58-15.2.1 as a component of SUSE Linux Enterprise Server 12-LTSS cups-filters-cups-browsed-1.0.58-15.2.1 as a component of SUSE Linux Enterprise Server 12-LTSS cups-filters-foomatic-rip-1.0.58-15.2.1 as a component of SUSE Linux Enterprise Server 12-LTSS cups-filters-ghostscript-1.0.58-15.2.1 as a component of SUSE Linux Enterprise Server 12-LTSS libqpdf18-7.1.1-3.3.4 as a component of SUSE Linux Enterprise Server 12-LTSS qpdf-7.1.1-3.3.4 as a component of SUSE Linux Enterprise Server 12-LTSS cups-filters-1.0.58-15.2.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 cups-filters-cups-browsed-1.0.58-15.2.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 cups-filters-foomatic-rip-1.0.58-15.2.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 cups-filters-ghostscript-1.0.58-15.2.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 libqpdf18-7.1.1-3.3.4 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 qpdf-7.1.1-3.3.4 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP1 cups-filters-1.0.58-15.2.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP2 cups-filters-cups-browsed-1.0.58-15.2.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP2 cups-filters-foomatic-rip-1.0.58-15.2.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP2 cups-filters-ghostscript-1.0.58-15.2.1 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP2 libqpdf18-7.1.1-3.3.4 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP2 qpdf-7.1.1-3.3.4 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP2 cups-filters-1.0.58-19.2.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 cups-filters-cups-browsed-1.0.58-19.2.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 cups-filters-foomatic-rip-1.0.58-19.2.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 cups-filters-ghostscript-1.0.58-19.2.3 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 libqpdf18-7.1.1-3.3.4 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 qpdf-7.1.1-3.3.4 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP3 qpdf-devel-7.1.1-3.3.4 as a component of SUSE Linux Enterprise Software Development Kit 12 SP3 cups-filters-1.0.58-15.2.1 as a component of SUSE OpenStack Cloud 7 cups-filters-cups-browsed-1.0.58-15.2.1 as a component of SUSE OpenStack Cloud 7 cups-filters-foomatic-rip-1.0.58-15.2.1 as a component of SUSE OpenStack Cloud 7 cups-filters-ghostscript-1.0.58-15.2.1 as a component of SUSE OpenStack Cloud 7 libqpdf18-7.1.1-3.3.4 as a component of SUSE OpenStack Cloud 7 qpdf-7.1.1-3.3.4 as a component of SUSE OpenStack Cloud 7 A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDFTokenizer::resolveLiteral function in QPDFTokenizer.cc after two consecutive calls to QPDFObjectHandle::parseInternal, aka an "infinite loop." CVE-2017-11624 SUSE Enterprise Storage 4:cups-filters-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Enterprise Storage 4:libqpdf18-7.1.1-3.3.4 SUSE Enterprise Storage 4:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP1-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP2-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP3:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP1:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP2:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP3:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Software Development Kit 12 SP3:qpdf-devel-7.1.1-3.3.4 SUSE OpenStack Cloud 7:cups-filters-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-ghostscript-1.0.58-15.2.1 SUSE OpenStack Cloud 7:libqpdf18-7.1.1-3.3.4 SUSE OpenStack Cloud 7:qpdf-7.1.1-3.3.4 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20183066-1/ https://www.suse.com/security/cve/CVE-2017-11624.html CVE-2017-11624 https://bugzilla.suse.com/1050581 SUSE Bug 1050581 A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDF::resolveObjectsInStream function in QPDF.cc, aka an "infinite loop." CVE-2017-11625 SUSE Enterprise Storage 4:cups-filters-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Enterprise Storage 4:libqpdf18-7.1.1-3.3.4 SUSE Enterprise Storage 4:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP1-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP2-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP3:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP1:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP2:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP3:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Software Development Kit 12 SP3:qpdf-devel-7.1.1-3.3.4 SUSE OpenStack Cloud 7:cups-filters-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-ghostscript-1.0.58-15.2.1 SUSE OpenStack Cloud 7:libqpdf18-7.1.1-3.3.4 SUSE OpenStack Cloud 7:qpdf-7.1.1-3.3.4 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20183066-1/ https://www.suse.com/security/cve/CVE-2017-11625.html CVE-2017-11625 https://bugzilla.suse.com/1050579 SUSE Bug 1050579 A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDFTokenizer::resolveLiteral function in QPDFTokenizer.cc after four consecutive calls to QPDFObjectHandle::parseInternal, aka an "infinite loop." CVE-2017-11626 SUSE Enterprise Storage 4:cups-filters-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Enterprise Storage 4:libqpdf18-7.1.1-3.3.4 SUSE Enterprise Storage 4:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP1-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP2-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP3:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP1:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP2:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP3:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Software Development Kit 12 SP3:qpdf-devel-7.1.1-3.3.4 SUSE OpenStack Cloud 7:cups-filters-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-ghostscript-1.0.58-15.2.1 SUSE OpenStack Cloud 7:libqpdf18-7.1.1-3.3.4 SUSE OpenStack Cloud 7:qpdf-7.1.1-3.3.4 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20183066-1/ https://www.suse.com/security/cve/CVE-2017-11626.html CVE-2017-11626 https://bugzilla.suse.com/1050578 SUSE Bug 1050578 A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the PointerHolder function in PointerHolder.hh, aka an "infinite loop." CVE-2017-11627 SUSE Enterprise Storage 4:cups-filters-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Enterprise Storage 4:libqpdf18-7.1.1-3.3.4 SUSE Enterprise Storage 4:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP1-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP2-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP3:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP1:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP2:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP3:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Software Development Kit 12 SP3:qpdf-devel-7.1.1-3.3.4 SUSE OpenStack Cloud 7:cups-filters-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-ghostscript-1.0.58-15.2.1 SUSE OpenStack Cloud 7:libqpdf18-7.1.1-3.3.4 SUSE OpenStack Cloud 7:qpdf-7.1.1-3.3.4 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20183066-1/ https://www.suse.com/security/cve/CVE-2017-11627.html CVE-2017-11627 https://bugzilla.suse.com/1050577 SUSE Bug 1050577 The tokenizer in QPDF 6.0.0 and 7.0.b1 is recursive for arrays and dictionaries, which allows remote attackers to cause a denial of service (stack consumption and segmentation fault) or possibly have unspecified other impact via a PDF document with a deep data structure, as demonstrated by a crash in QPDFObjectHandle::parseInternal in libqpdf/QPDFObjectHandle.cc. CVE-2017-12595 SUSE Enterprise Storage 4:cups-filters-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Enterprise Storage 4:libqpdf18-7.1.1-3.3.4 SUSE Enterprise Storage 4:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP1-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP2-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP3:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP1:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP2:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP3:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Software Development Kit 12 SP3:qpdf-devel-7.1.1-3.3.4 SUSE OpenStack Cloud 7:cups-filters-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-ghostscript-1.0.58-15.2.1 SUSE OpenStack Cloud 7:libqpdf18-7.1.1-3.3.4 SUSE OpenStack Cloud 7:qpdf-7.1.1-3.3.4 moderate 2.1 AV:L/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20183066-1/ https://www.suse.com/security/cve/CVE-2017-12595.html CVE-2017-12595 https://bugzilla.suse.com/1055960 SUSE Bug 1055960 libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document, related to releaseResolved functions, aka qpdf-infiniteloop1. CVE-2017-9208 SUSE Enterprise Storage 4:cups-filters-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Enterprise Storage 4:libqpdf18-7.1.1-3.3.4 SUSE Enterprise Storage 4:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP1-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP2-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP3:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP1:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP2:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP3:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Software Development Kit 12 SP3:qpdf-devel-7.1.1-3.3.4 SUSE OpenStack Cloud 7:cups-filters-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-ghostscript-1.0.58-15.2.1 SUSE OpenStack Cloud 7:libqpdf18-7.1.1-3.3.4 SUSE OpenStack Cloud 7:qpdf-7.1.1-3.3.4 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20183066-1/ https://www.suse.com/security/cve/CVE-2017-9208.html CVE-2017-9208 https://bugzilla.suse.com/1040311 SUSE Bug 1040311 libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document, related to QPDFObjectHandle::parseInternal, aka qpdf-infiniteloop2. CVE-2017-9209 SUSE Enterprise Storage 4:cups-filters-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Enterprise Storage 4:libqpdf18-7.1.1-3.3.4 SUSE Enterprise Storage 4:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP1-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP2-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP3:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP1:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP2:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP3:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Software Development Kit 12 SP3:qpdf-devel-7.1.1-3.3.4 SUSE OpenStack Cloud 7:cups-filters-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-ghostscript-1.0.58-15.2.1 SUSE OpenStack Cloud 7:libqpdf18-7.1.1-3.3.4 SUSE OpenStack Cloud 7:qpdf-7.1.1-3.3.4 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20183066-1/ https://www.suse.com/security/cve/CVE-2017-9209.html CVE-2017-9209 https://bugzilla.suse.com/1040312 SUSE Bug 1040312 libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document, related to unparse functions, aka qpdf-infiniteloop3. CVE-2017-9210 SUSE Enterprise Storage 4:cups-filters-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Enterprise Storage 4:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Enterprise Storage 4:libqpdf18-7.1.1-3.3.4 SUSE Enterprise Storage 4:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Desktop 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP1-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP1-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12 SP2-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP2-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Server 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12 SP3:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server 12-LTSS:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server 12-LTSS:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server 12-LTSS:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP1:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP1:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:cups-filters-ghostscript-1.0.58-15.2.1 SUSE Linux Enterprise Server for SAP Applications 12 SP2:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP2:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-cups-browsed-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-foomatic-rip-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:cups-filters-ghostscript-1.0.58-19.2.3 SUSE Linux Enterprise Server for SAP Applications 12 SP3:libqpdf18-7.1.1-3.3.4 SUSE Linux Enterprise Server for SAP Applications 12 SP3:qpdf-7.1.1-3.3.4 SUSE Linux Enterprise Software Development Kit 12 SP3:qpdf-devel-7.1.1-3.3.4 SUSE OpenStack Cloud 7:cups-filters-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-cups-browsed-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-foomatic-rip-1.0.58-15.2.1 SUSE OpenStack Cloud 7:cups-filters-ghostscript-1.0.58-15.2.1 SUSE OpenStack Cloud 7:libqpdf18-7.1.1-3.3.4 SUSE OpenStack Cloud 7:qpdf-7.1.1-3.3.4 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2018/suse-su-20183066-1/ https://www.suse.com/security/cve/CVE-2017-9210.html CVE-2017-9210 https://bugzilla.suse.com/1040313 SUSE Bug 1040313