{"affected":[{"ecosystem_specific":{"binaries":[{"libwmf-0_2-7":"0.2.12-150000.4.4.1","libwmf-devel":"0.2.12-150000.4.4.1","libwmf-gnome":"0.2.12-150000.4.4.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Package Hub 15 SP4","name":"libwmf","purl":"pkg:rpm/suse/libwmf&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"0.2.12-150000.4.4.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libwmf-0_2-7":"0.2.12-150000.4.4.1","libwmf-devel":"0.2.12-150000.4.4.1","libwmf-gnome":"0.2.12-150000.4.4.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Workstation Extension 15 SP3","name":"libwmf","purl":"pkg:rpm/suse/libwmf&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"0.2.12-150000.4.4.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libwmf-0_2-7":"0.2.12-150000.4.4.1","libwmf-0_2-7-32bit":"0.2.12-150000.4.4.1","libwmf-devel":"0.2.12-150000.4.4.1","libwmf-gnome":"0.2.12-150000.4.4.1","libwmf-gnome-32bit":"0.2.12-150000.4.4.1","libwmf-tools":"0.2.12-150000.4.4.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.3","name":"libwmf","purl":"pkg:rpm/opensuse/libwmf&distro=openSUSE%20Leap%2015.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"0.2.12-150000.4.4.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"libwmf-0_2-7":"0.2.12-150000.4.4.1","libwmf-0_2-7-32bit":"0.2.12-150000.4.4.1","libwmf-devel":"0.2.12-150000.4.4.1","libwmf-gnome":"0.2.12-150000.4.4.1","libwmf-gnome-32bit":"0.2.12-150000.4.4.1","libwmf-tools":"0.2.12-150000.4.4.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.4","name":"libwmf","purl":"pkg:rpm/opensuse/libwmf&distro=openSUSE%20Leap%2015.4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"0.2.12-150000.4.4.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for libwmf fixes the following issues:\n\nlibwmf was updated to 0.2.12:\n\n* upstream changed to fork from Fedora: https://github.com/caolanm/libwmf\n* merged all the pending fixes\n* merge in fixes for libgd CVE-2019-6978 (bsc#1123522)\n* fixed memory allocation failure (CVE-2016-9011)\n\n* Fixes for %_libexecdir changing to /usr/libexec (bsc#1174075)\n","id":"SUSE-SU-2022:1516-1","modified":"2022-05-04T08:25:34Z","published":"2022-05-04T08:25:34Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20221516-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1006739"},{"type":"REPORT","url":"https://bugzilla.suse.com/1123522"},{"type":"REPORT","url":"https://bugzilla.suse.com/1174075"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2016-9011"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2019-6978"}],"related":["CVE-2016-9011","CVE-2019-6978"],"summary":"Security update for libwmf","upstream":["CVE-2016-9011","CVE-2019-6978"]}