Oval Definition:oval:org.opensuse.security:def:1477
Revision Date:2021-08-17Version:1
Title:Security update for libsndfile (Critical)
Description:

This update for libsndfile fixes the following issues:

- CVE-2018-13139: Fixed a stack-based buffer overflow in psf_memset in common.c in libsndfile 1.0.28allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact. (bsc#1100167) - CVE-2018-19432: Fixed a NULL pointer dereference in the function sf_write_int in sndfile.c, which will lead to a denial of service. (bsc#1116993) - CVE-2021-3246: Fixed a heap buffer overflow vulnerability in msadpcm_decode_block. (bsc#1188540) - CVE-2018-19758: Fixed a heap-based buffer over-read at wav.c in wav_write_header in libsndfile 1.0.28 that will cause a denial of service. (bsc#1117954)
Family:unixClass:patch
Status:Reference(s):1100167
1116993
1117954
1120653
1120654
1120656
1120659
1124341
1124342
1188540
CVE-2014-0012
CVE-2016-10745
CVE-2017-9410
CVE-2017-9411
CVE-2017-9412
CVE-2018-1000877
CVE-2018-1000877
CVE-2018-1000878
CVE-2018-1000878
CVE-2018-1000879
CVE-2018-1000879
CVE-2018-1000880
CVE-2018-1000880
CVE-2018-13139
CVE-2018-19432
CVE-2018-19758
CVE-2019-1000019
CVE-2019-1000019
CVE-2019-1000020
CVE-2019-1000020
CVE-2019-10906
CVE-2019-8341
CVE-2021-3246
SUSE-SU-2019:0831-1
SUSE-SU-2021:2764-1
Platform(s):SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 15 SP1
SUSE Linux Enterprise High Performance Computing 15 SP1
SUSE Linux Enterprise Module for Basesystem 15
SUSE Linux Enterprise Module for Basesystem 15 SP1
SUSE Linux Enterprise Module for CAP 15 SP1
SUSE Linux Enterprise Module for Containers 15
SUSE Linux Enterprise Module for Containers 15 SP1
SUSE Linux Enterprise Module for Desktop Applications 15
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for Development Tools 15
SUSE Linux Enterprise Module for Package Hub 15 SP3
SUSE Linux Enterprise Module for Public Cloud 15
SUSE Linux Enterprise Module for Python2 packages 15 SP1
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Server 11-SECURITY
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server 15 SP1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Linux Enterprise Storage 6
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Manager Proxy 4.0
SUSE Manager Server 4.0
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND m4-1.4.16-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND argyllcms-1.6.3-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-33 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-33 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-33 is installed
  • OR libMagickCore-6_Q16-1-32bit-6.8.8.1-33 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • libmp3lame-devel-3.100-1.33 is installed
  • OR libmp3lame0-3.100-1.33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 is installed
  • AND Package Information
  • libarchive-3.3.2-3.8 is installed
  • OR libarchive-devel-3.3.2-3.8 is installed
  • OR libarchive13-3.3.2-3.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • bind-9.11.2-12.11 is installed
  • OR bind-devel-9.11.2-12.11 is installed
  • OR bind-utils-9.11.2-12.11 is installed
  • OR libbind9-160-9.11.2-12.11 is installed
  • OR libdns169-9.11.2-12.11 is installed
  • OR libirs-devel-9.11.2-12.11 is installed
  • OR libirs160-9.11.2-12.11 is installed
  • OR libisc166-9.11.2-12.11 is installed
  • OR libisccc160-9.11.2-12.11 is installed
  • OR libisccfg160-9.11.2-12.11 is installed
  • OR liblwres160-9.11.2-12.11 is installed
  • OR python3-bind-9.11.2-12.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for CAP 15 SP1 is installed
  • AND cf-cli-6.43.0-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 15 is installed
  • AND Package Information
  • containerd-1.1.2-5.3 is installed
  • OR docker-18.06.1_ce-6.8 is installed
  • OR docker-bash-completion-18.06.1_ce-6.8 is installed
  • OR docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3 is installed
  • OR docker-runc-1.0.0rc5+gitr3562_69663f0bd4b6-6.3 is installed
  • OR golang-github-docker-libnetwork-0.7.0.1+gitr2664_3ac297bc7fd0-4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 15 SP1 is installed
  • AND Package Information
  • containerd-1.2.5-5.13 is installed
  • OR docker-18.09.6_ce-6.17 is installed
  • OR docker-bash-completion-18.09.6_ce-6.17 is installed
  • OR docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed
  • OR docker-runc-1.0.0rc6+gitr3804_2b18fe1d885e-6.18 is installed
  • OR golang-github-docker-libnetwork-0.7.0.1+gitr2726_872f0a83c98a-4.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 is installed
  • AND Package Information
  • cairo-1.15.10-4.5 is installed
  • OR libcairo2-32bit-1.15.10-4.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 is installed
  • AND mercurial-4.5.2-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Package Hub 15 SP3 is installed
  • AND libsndfile1-32bit-1.0.28-5.12.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Public Cloud 15 is installed
  • AND Package Information
  • kernel-azure-4.12.14-5.19 is installed
  • OR kernel-azure-base-4.12.14-5.19 is installed
  • OR kernel-azure-devel-4.12.14-5.19 is installed
  • OR kernel-devel-azure-4.12.14-5.19 is installed
  • OR kernel-source-azure-4.12.14-5.19 is installed
  • OR kernel-syms-azure-4.12.14-5.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Python2 packages 15 SP1 is installed
  • AND python2-Jinja2-2.10.1-3.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • openslp-2.0.0-6.3 is installed
  • OR openslp-server-2.0.0-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • gnutls-3.2.15-11 is installed
  • OR libgnutls-openssl27-3.2.15-11 is installed
  • OR libgnutls28-3.2.15-11 is installed
  • OR libgnutls28-32bit-3.2.15-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.12.5-1.12 is installed
  • OR libwebkit2gtk-4_0-37-2.12.5-1.12 is installed
  • OR typelib-1_0-JavaScriptCore-4_0-2.12.5-1.12 is installed
  • OR typelib-1_0-WebKit2-4_0-2.12.5-1.12 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.12.5-1.12 is installed
    • BACK