Oval Definition:oval:org.opensuse.security:def:4133
Revision Date:2021-06-09Version:1
Title:Security update for libopenmpt (Moderate)
Description:
This update for libopenmpt fixes the following issues:

Various bugfix and stability issues were fixed, some of those
might have security impact.

libopenmpt was updated to 0.3.28:

* Fixed excessive memory consumption with malformed files in
various formats.

Changes in 0.3.27:

* AMS: Avoid allocating excessive amount of memory for compressed
song message in malformed files.
* S3M: Some samples were imported with a too high sample rate if
module was saved with Scream Tracker 3.

Changes in 0.3.26:

* DMF: Improve import of finetune effect with parameters larger
than +/-15.

Changes in 0.3.25:

* AMS: An upper bound for uncompressed sample size is now
established to avoid memory exhaustion from malformed files.
* MO3: Avoid certain ModPlug hacks from being fixed up twice,
which could lead to e.g. very narrow pan swing range for old
OpenMPT IT files saved with a recent MO3 encoder version.
* IMF: Instrument sample mapping was off by one octave, notable
in the guitar part of Astaris by Karsten Koch.
* PLM: Percentage offset (Mxx) was slightly off.

Changes in 0.3.24:

* PP20: The first few bytes of some files were not decompressed
properly, making some files unplayable (depending on the
original format).

Changes in 0.3.23:

* IT: Global volume slides with both nibbles set preferred the
“slide up” nibble over the “slide down” nibble in old OpenMPT
versions, unlike other slides. Such old files are now imported
correctly again.
* IT: Fixed an edge case where, if the filter hit full cutoff /
no resonance on the first tick of a row where a new delayed
note would be triggered, the filter would be disabled even
though it should stay active. Fixes trace.it by maddie.
* XM: Out-of-range arpeggio clamping behaviour broke in OpenMPT
1.23.05.00. The arpeggios in Binary World by Dakota now play
correctly again.
* S3M: Support old-style sample pre-amp value in very early
S3M files.
* S3M: Only force-enable fast slides for files ST 3.00.
Previously, any S3M file made with an ST3 version older than
3.20 enabled them.
* M15: Improve tracker detection heuristics to never assume
SoundTracker 2.0 if there is a huge number of Dxx commands,
as that is a definite hint that they should be treated as
volume slides. Fixes Monty On The Run by Master Blaster.

Changes in 0.3.22:

* IT: Disable retrigger with short notes quirk for modules saved
with Chibi Tracker, as it does not implement that quirk.
* MOD: Fix early song ending due to ProTracker pattern jump quirk
(EEx + Dxx on same row) if infinite looping is disabled.
Fixes Haunted Tracks.mod by Triace.
* MOD: Vibrato type “ramp down” was upside down.

Changes in 0.3.21:

* IT: Vibrato was too fast in Old Effects mode since
libopenmpt 0.3.
* XM: Treat 8bitbubsy’s FT2 clone exactly like Fasttracker 2 with
respect to compatibility and playback flags. For example,
FT2 Pan Law was not applied.
* DMF: Some files had a wrong tempo since libopenmpt
0.2.5705-beta15.
Family:unixClass:patch
Status:Reference(s):1012382
1031392
1051510
1055120
1061840
1065729
1082519
1085030
1090078
1094244
1094420
1098782
1100078
1101669
1102046
1102193
1102495
1103269
1103405
1103587
1103636
1104888
1105190
1105795
1106105
1106240
1106948
1107783
1107829
1107928
1107947
1108096
1108170
1108281
1108323
1108399
1108823
1109244
1109307
1109333
1109336
1109337
1109603
1109806
1109859
1109979
1109992
1110006
1110301
1110363
1110639
1110642
1110643
1110644
1110645
1110646
1110647
1110649
1110650
1112209
1113534
1113652
1113742
1113760
1113969
1114831
1115015
1115022
1115025
1117106
1118579
1118584
1119991
1123156
1133624
1133625
1134209
1138529
1140290
1140750
1144065
1145559
1146873
1152506
1152856
1154212
1154790
1155812
1161066
1162729
1163018
1163102
1163103
1163104
1163985
1165776
1166240
1166379
1172745
1174421
1186663
CVE-2018-0734
CVE-2018-12207
CVE-2018-14404
CVE-2018-14633
CVE-2018-16468
CVE-2018-16470
CVE-2018-16843
CVE-2018-16844
CVE-2018-16845
CVE-2018-17182
CVE-2018-20126
CVE-2018-5407
CVE-2019-10214
CVE-2019-11135
CVE-2019-11494
CVE-2019-11499
CVE-2019-11500
CVE-2019-12068
CVE-2019-13173
CVE-2019-13314
CVE-2019-15034
CVE-2019-15604
CVE-2019-15605
CVE-2019-15606
CVE-2019-20382
CVE-2019-2894
CVE-2019-2933
CVE-2019-2945
CVE-2019-2949
CVE-2019-2958
CVE-2019-2962
CVE-2019-2964
CVE-2019-2973
CVE-2019-2975
CVE-2019-2978
CVE-2019-2981
CVE-2019-2983
CVE-2019-2987
CVE-2019-2988
CVE-2019-2989
CVE-2019-2992
CVE-2019-2999
CVE-2019-6778
CVE-2020-15705
CVE-2020-1711
CVE-2020-1720
CVE-2020-7039
CVE-2020-8608
SUSE-SU-2018:1952-1
SUSE-SU-2018:3159-1
SUSE-SU-2018:4001-1
SUSE-SU-2019:0272-1
SUSE-SU-2019:0334-1
SUSE-SU-2019:2055-1
SUSE-SU-2019:2340-1
SUSE-SU-2019:2954-1
SUSE-SU-2019:3238-1
SUSE-SU-2020:0454-1
SUSE-SU-2020:0589-1
SUSE-SU-2020:0844-1
SUSE-SU-2020:2306-1
SUSE-SU-2020:3045-1
SUSE-SU-2021:1914-1
Platform(s):SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise for SAP 12 SP2
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Availability 12 SP4
SUSE Linux Enterprise High Availability 15
SUSE Linux Enterprise High Availability 15 SP1
SUSE Linux Enterprise High Availability 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise High Performance Computing 15-ESPOS
SUSE Linux Enterprise High Performance Computing 15-LTSS
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Live Patching 12 SP3
SUSE Linux Enterprise Module for Advanced Systems Management 12
SUSE Linux Enterprise Module for Desktop Applications 15 SP2
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Legacy Software 15
SUSE Linux Enterprise Module for Public Cloud 12
SUSE Linux Enterprise Module for Server Applications 15
SUSE Linux Enterprise Module for Server Applications 15 SP1
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Module for Web Scripting 12
SUSE Linux Enterprise Module for Web Scripting 15
SUSE Linux Enterprise Module for Web Scripting 15 SP1
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2-LTSS
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server 15-LTSS
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP3
SUSE Linux Enterprise Storage 7
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • xen-4.2.5_12-15.1 is installed
  • OR xen-doc-html-4.2.5_12-15.1 is installed
  • OR xen-doc-pdf-4.2.5_12-15.1 is installed
  • OR xen-kmp-default-4.2.5_12_3.0.101_0.47.55-15.1 is installed
  • OR xen-kmp-pae-4.2.5_12_3.0.101_0.47.55-15.1 is installed
  • OR xen-libs-4.2.5_12-15.1 is installed
  • OR xen-libs-32bit-4.2.5_12-15.1 is installed
  • OR xen-tools-4.2.5_12-15.1 is installed
  • OR xen-tools-domU-4.2.5_12-15.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • elfutils-0.158-3 is installed
  • OR libasm1-0.158-3 is installed
  • OR libdw1-0.158-3 is installed
  • OR libdw1-32bit-0.158-3 is installed
  • OR libebl1-0.158-3 is installed
  • OR libebl1-32bit-0.158-3 is installed
  • OR libelf1-0.158-3 is installed
  • OR libelf1-32bit-0.158-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • java-1_8_0-openjdk-1.8.0.65-1 is installed
  • OR java-1_8_0-openjdk-headless-1.8.0.65-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • ImageMagick-6.8.8.1-33 is installed
  • OR libMagick++-6_Q16-3-6.8.8.1-33 is installed
  • OR libMagickCore-6_Q16-1-6.8.8.1-33 is installed
  • OR libMagickCore-6_Q16-1-32bit-6.8.8.1-33 is installed
  • OR libMagickWand-6_Q16-1-6.8.8.1-33 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • accountsservice-0.6.42-14 is installed
  • OR accountsservice-lang-0.6.42-14 is installed
  • OR libaccountsservice0-0.6.42-14 is installed
  • OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND libevent-2_0-5-2.0.21-6.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP2 is installed
  • AND Package Information
  • libmodplug-devel-0.3.28-2.13.1 is installed
  • OR libmodplug1-0.3.28-2.13.1 is installed
  • OR libopenmpt-devel-0.3.28-2.13.1 is installed
  • OR libopenmpt0-0.3.28-2.13.1 is installed
  • OR libopenmpt_modplug1-0.3.28-2.13.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 is installed
  • AND Package Information
  • postgresql93-9.3.14-19.2 is installed
  • OR postgresql93-contrib-9.3.14-19.2 is installed
  • OR postgresql93-docs-9.3.14-19.2 is installed
  • OR postgresql93-server-9.3.14-19.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 SP2 is installed
  • AND Package Information
  • compat-openssl098-0.9.8j-105.1 is installed
  • OR libopenssl0_9_8-0.9.8j-105.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND python-requests-2.8.1-6.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND python-requests-2.8.1-6.16 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP4 is installed
  • AND haproxy-1.6.11-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 is installed
  • AND Package Information
  • drbd-9.0.13+git.b83ade31-3.2 is installed
  • OR drbd-kmp-default-9.0.13+git.b83ade31_k4.12.14_23-3.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 SP1 is installed
  • AND Package Information
  • ctdb-4.9.5+git.176.375e1f05788-3.6 is installed
  • OR samba-4.9.5+git.176.375e1f05788-3.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 SP2 is installed
  • AND Package Information
  • ruby2.5-rubygem-actionpack-5_1-5.1.4-3.6 is installed
  • OR rubygem-actionpack-5_1-5.1.4-3.6 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 15-ESPOS is installed
  • AND
  • libjavascriptcoregtk-4_0-18-2.28.1-3.49 is installed
  • OR libwebkit2gtk-4_0-37-2.28.1-3.49 is installed
  • OR libwebkit2gtk3-lang-2.28.1-3.49 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.28.1-3.49 is installed
  • OR webkit2gtk3-2.28.1-3.49 is installed
  • OR webkit2gtk3-devel-2.28.1-3.49 is installed
  • OR Package Information
  • SUSE Linux Enterprise High Performance Computing 15-LTSS is installed
  • AND
  • libjavascriptcoregtk-4_0-18-2.28.1-3.49 is installed
  • OR libwebkit2gtk-4_0-37-2.28.1-3.49 is installed
  • OR libwebkit2gtk3-lang-2.28.1-3.49 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.28.1-3.49 is installed
  • OR webkit2gtk3-2.28.1-3.49 is installed
  • OR webkit2gtk3-devel-2.28.1-3.49 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_69-60_64_32-default-3-2 is installed
  • OR kgraft-patch-3_12_69-60_64_32-xen-3-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_13-3-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 SP3 is installed
  • AND Package Information
  • kgraft-patch-4_4_82-6_9-default-2-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_3-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed
  • AND facter-2.0.2-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 15 is installed
  • AND Package Information
  • libopenssl-1_0_0-devel-1.0.2p-3.11 is installed
  • OR libopenssl1_0_0-1.0.2p-3.11 is installed
  • OR openssl-1_0_0-1.0.2p-3.11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 is installed
  • AND Package Information
  • dovecot23-2.3.3-4.18 is installed
  • OR dovecot23-backend-mysql-2.3.3-4.18 is installed
  • OR dovecot23-backend-pgsql-2.3.3-4.18 is installed
  • OR dovecot23-backend-sqlite-2.3.3-4.18 is installed
  • OR dovecot23-devel-2.3.3-4.18 is installed
  • OR dovecot23-fts-2.3.3-4.18 is installed
  • OR dovecot23-fts-lucene-2.3.3-4.18 is installed
  • OR dovecot23-fts-solr-2.3.3-4.18 is installed
  • OR dovecot23-fts-squat-2.3.3-4.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed
  • AND skopeo-0.1.32-4.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND Package Information
  • grub2-2.04-9.15 is installed
  • OR grub2-x86_64-xen-2.04-9.15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 12 is installed
  • AND Package Information
  • libpython3_4m1_0-3.4.1-2 is installed
  • OR python3-base-3.4.1-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 is installed
  • AND Package Information
  • nodejs8-8.15.1-3.17 is installed
  • OR nodejs8-devel-8.15.1-3.17 is installed
  • OR nodejs8-docs-8.15.1-3.17 is installed
  • OR npm8-8.15.1-3.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Web Scripting 15 SP1 is installed
  • AND Package Information
  • nodejs8-8.17.0-3.28 is installed
  • OR nodejs8-devel-8.17.0-3.28 is installed
  • OR nodejs8-docs-8.17.0-3.28 is installed
  • OR npm8-8.17.0-3.28 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • fuse-2.8.7-0.9.12 is installed
  • OR libfuse2-2.8.7-0.9.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND mipv6d-2.0.2.umip.0.4-8.7.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-1 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-9 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • gstreamer-plugins-bad-1.8.3-17 is installed
  • OR gstreamer-plugins-bad-lang-1.8.3-17 is installed
  • OR libgstadaptivedemux-1_0-0-1.8.3-17 is installed
  • OR libgstbadaudio-1_0-0-1.8.3-17 is installed
  • OR libgstbadbase-1_0-0-1.8.3-17 is installed
  • OR libgstbadvideo-1_0-0-1.8.3-17 is installed
  • OR libgstbasecamerabinsrc-1_0-0-1.8.3-17 is installed
  • OR libgstcodecparsers-1_0-0-1.8.3-17 is installed
  • OR libgstgl-1_0-0-1.8.3-17 is installed
  • OR libgstmpegts-1_0-0-1.8.3-17 is installed
  • OR libgstphotography-1_0-0-1.8.3-17 is installed
  • OR libgsturidownloader-1_0-0-1.8.3-17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12-LTSS is installed
  • AND Package Information
  • bind-9.9.9P1-28.20.1 is installed
  • OR bind-chrootenv-9.9.9P1-28.20.1 is installed
  • OR bind-doc-9.9.9P1-28.20.1 is installed
  • OR bind-libs-9.9.9P1-28.20.1 is installed
  • OR bind-libs-32bit-9.9.9P1-28.20.1 is installed
  • OR bind-utils-9.9.9P1-28.20.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 15-LTSS is installed
  • AND Package Information
  • libjavascriptcoregtk-4_0-18-2.28.2-3.54 is installed
  • OR libwebkit2gtk-4_0-37-2.28.2-3.54 is installed
  • OR libwebkit2gtk3-lang-2.28.2-3.54 is installed
  • OR webkit2gtk-4_0-injected-bundles-2.28.2-3.54 is installed
  • OR webkit2gtk3-2.28.2-3.54 is installed
  • OR webkit2gtk3-devel-2.28.2-3.54 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • MozillaFirefox-45.4.0esr-81 is installed
  • OR MozillaFirefox-translations-45.4.0esr-81 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • rpmlint-1.10-7.12 is installed
  • OR rpmlint-mini-1.10-5.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND Package Information
  • finch-devel-2.10.9-8.1 is installed
  • OR libpurple-2.10.9-8.1 is installed
  • OR libpurple-devel-2.10.9-8.1 is installed
  • OR libpurple-lang-2.10.9-8.1 is installed
  • OR pidgin-2.10.9-8.1 is installed
  • OR pidgin-devel-2.10.9-8.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND Package Information
  • MozillaFirefox-38.5.0esr-54.1 is installed
  • OR MozillaFirefox-devel-38.5.0esr-54.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP3 is installed
  • AND Package Information
  • icecream-1.0.1-5 is installed
  • OR lzo-devel-2.08-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND bash-lang-4.2-75 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND argyllcms-1.6.3-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • ffmpeg-3.4.2-4.5 is installed
  • OR libavcodec-devel-3.4.2-4.5 is installed
  • OR libavformat-devel-3.4.2-4.5 is installed
  • OR libavformat57-3.4.2-4.5 is installed
  • OR libavresample-devel-3.4.2-4.5 is installed
  • OR libavresample3-3.4.2-4.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.4 is installed
  • OR kernel-default-extra-4.12.14-197.4 is installed
    • BACK