This update for graphviz fixes the following issues:
CVE-2018-10196: Fixed a null dereference in rebuild_vlis (bsc#1093447).
Affected Packages
graphviz-plugins
SUSE Linux Enterprise High Availability Extension 12 SP3SUSE Linux Enterprise High Availability Extension 12 SP4SUSE Linux Enterprise High Availability Extension 12 SP5SUSE Linux Enterprise Server 12 SP5SUSE Linux Enterprise Server for SAP Applications 12 SP5
Fixed in:
2.28.0-29.3.17
graphviz-python
SUSE Linux Enterprise High Availability Extension 12 SP3SUSE Linux Enterprise High Availability Extension 12 SP4SUSE Linux Enterprise High Availability Extension 12 SP5
Fixed in:
2.28.0-29.3.17
graphviz
SUSE Linux Enterprise Server 12 SP5SUSE Linux Enterprise Server for SAP Applications 12 SP5SUSE Linux Enterprise Software Development Kit 12 SP5
Fixed in:
2.28.0-29.3.8
graphviz-gd
SUSE Linux Enterprise Server 12 SP5SUSE Linux Enterprise Server for SAP Applications 12 SP5
Fixed in:
2.28.0-29.3.17
graphviz-gnome
SUSE Linux Enterprise Server 12 SP5SUSE Linux Enterprise Server for SAP Applications 12 SP5
Fixed in:
2.28.0-29.3.17
graphviz-tcl
SUSE Linux Enterprise Server 12 SP5SUSE Linux Enterprise Server for SAP Applications 12 SP5
Fixed in:
2.28.0-29.3.17
graphviz-devel
SUSE Linux Enterprise Software Development Kit 12 SP5