OVAL Reference oval:org.opensuse.security:def:5086

Oval Definition:

oval:org.opensuse.security:def:5086

Revision Date:	2021-08-05	Version:	1
Title:	Security update for libsndfile (Critical)
Description:	This update for libsndfile fixes the following issues: - CVE-2018-13139: Fixed a stack-based buffer overflow in psf_memset in common.c in libsndfile 1.0.28allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact. (bsc#1100167) - CVE-2018-19432: Fixed a NULL pointer dereference in the function sf_write_int in sndfile.c, which will lead to a denial of service. (bsc#1116993) - CVE-2021-3246: Fixed a heap buffer overflow vulnerability in msadpcm_decode_block. (bsc#1188540) - CVE-2018-19758: Fixed a heap-based buffer over-read at wav.c in wav_write_header in libsndfile 1.0.28 that will cause a denial of service. (bsc#1117954)
Family:	unix	Class:	patch
Status:		Reference(s):	1093447 1100167 1116993 1117954 1137835 1188540 CVE-2002-2443 CVE-2009-0844 CVE-2009-0845 CVE-2009-0846 CVE-2009-0847 CVE-2009-3295 CVE-2009-3627 CVE-2009-4212 CVE-2009-5044 CVE-2009-5080 CVE-2009-5081 CVE-2010-0283 CVE-2010-0624 CVE-2010-0628 CVE-2010-1320 CVE-2010-1321 CVE-2010-1322 CVE-2010-1323 CVE-2010-1324 CVE-2010-4020 CVE-2010-4021 CVE-2010-4022 CVE-2010-4352 CVE-2011-0281 CVE-2011-0282 CVE-2011-0284 CVE-2011-0285 CVE-2011-0421 CVE-2011-1527 CVE-2011-1528 CVE-2011-1529 CVE-2011-1530 CVE-2011-3602 CVE-2012-1012 CVE-2012-1013 CVE-2012-1016 CVE-2012-1162 CVE-2012-1163 CVE-2012-3458 CVE-2012-3466 CVE-2012-3524 CVE-2013-1415 CVE-2013-1417 CVE-2013-1418 CVE-2013-1986 CVE-2013-1988 CVE-2013-2168 CVE-2014-2524 CVE-2014-3477 CVE-2014-3532 CVE-2014-3533 CVE-2014-3635 CVE-2014-3636 CVE-2014-3637 CVE-2014-3638 CVE-2014-3639 CVE-2014-4341 CVE-2014-4342 CVE-2014-4343 CVE-2014-4344 CVE-2014-4345 CVE-2014-5351 CVE-2014-5352 CVE-2014-5353 CVE-2014-5354 CVE-2014-5355 CVE-2014-6271 CVE-2014-7169 CVE-2014-7186 CVE-2014-7187 CVE-2014-8484 CVE-2014-8485 CVE-2014-8501 CVE-2014-8502 CVE-2014-8503 CVE-2014-8504 CVE-2014-8737 CVE-2014-8738 CVE-2014-9421 CVE-2014-9422 CVE-2014-9423 CVE-2015-2694 CVE-2015-2695 CVE-2015-2696 CVE-2015-2697 CVE-2018-10196 CVE-2018-13139 CVE-2018-19432 CVE-2018-19758 CVE-2019-12779 CVE-2021-3246 SUSE-SU-2019:1791-1 SUSE-SU-2020:2346-1 SUSE-SU-2021:2615-1
Platform(s):	openSUSE 13.1 SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Availability 15 SP1 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Toolchain 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP5 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE OpenStack Cloud 5	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND python-Beaker-1.6.4-0.7 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information xen-4.1.5_02-0.5.1 is installed OR xen-doc-html-4.1.5_02-0.5.1 is installed OR xen-doc-pdf-4.1.5_02-0.5.1 is installed OR xen-kmp-default-4.1.5_02_3.0.74_0.6.10-0.5.1 is installed OR xen-kmp-pae-4.1.5_02_3.0.74_0.6.10-0.5.1 is installed OR xen-kmp-trace-4.1.5_02_3.0.74_0.6.10-0.5.1 is installed OR xen-libs-4.1.5_02-0.5.1 is installed OR xen-libs-32bit-4.1.5_02-0.5.1 is installed OR xen-tools-4.1.5_02-0.5.1 is installed OR xen-tools-domU-4.1.5_02-0.5.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information openssh-6.2p2-0.21.1 is installed OR openssh-askpass-6.2p2-0.21.1 is installed OR openssh-askpass-gnome-6.2p2-0.21.3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND Package Information bash-4.2-75 is installed OR bash-doc-4.2-75 is installed OR bash-lang-4.2-75 is installed OR libreadline6-6.2-75 is installed OR libreadline6-32bit-6.2-75 is installed OR readline-doc-6.2-75 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND binutils-2.25.0-13 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-32bit-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND autofs-5.0.9-28.3 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 is installed AND haproxy-1.5.4-2.4 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP1 is installed AND Package Information ctdb-4.2.4-26.2 is installed OR samba-4.2.4-26.2 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND Package Information libpacemaker3-1.1.15-21.1 is installed OR pacemaker-1.1.15-21.1 is installed OR pacemaker-cli-1.1.15-21.1 is installed OR pacemaker-cts-1.1.15-21.1 is installed OR pacemaker-remote-1.1.15-21.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information cluster-md-kmp-default-4.4.73-5 is installed OR dlm-kmp-default-4.4.73-5 is installed OR gfs2-kmp-default-4.4.73-5 is installed OR ocfs2-kmp-default-4.4.73-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP4 is installed AND ctdb-4.6.16+git.124.aee309c5c18-3.32 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP5 is installed AND ctdb-4.10.5+git.129.35f7bb6e177-1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP1 is installed AND Package Information libqb-1.0.3+20190326.a521604-3.3 is installed OR libqb-devel-1.0.3+20190326.a521604-3.3 is installed OR libqb-tests-1.0.3+20190326.a521604-3.3 is installed OR libqb-tools-1.0.3+20190326.a521604-3.3 is installed OR libqb20-1.0.3+20190326.a521604-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information MozillaFirefox-68.1.0-109.92 is installed OR MozillaFirefox-translations-common-68.1.0-109.92 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_32-33-default-2-3.1 is installed OR kgraft-patch-3_12_32-33-xen-2-3.1 is installed OR kgraft-patch-3_12_36-38-default-2-3.1 is installed OR kgraft-patch-3_12_36-38-xen-2-3.1 is installed OR kgraft-patch-SLE12_Update_1-2-3.1 is installed OR kgraft-patch-SLE12_Update_2-2-3.1 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_73-5-default-2-2.3.2 is installed OR kgraft-patch-SLE12-SP3_Update_0-2-2.3.2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND python-setuptools-1.1.7-7.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information compat-openssl098-0.9.8j-66.3 is installed OR libopenssl0_9_8-0.9.8j-66.3 is installed OR libopenssl0_9_8-32bit-0.9.8j-66.3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.62-60.64.8.2 is installed OR kernel-ec2-devel-3.12.62-60.64.8.2 is installed OR kernel-ec2-extra-3.12.62-60.64.8.2 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Toolchain 12 is installed AND Package Information cpp5-5.3.1+r233831-9 is installed OR gcc5-5.3.1+r233831-9 is installed OR gcc5-c++-5.3.1+r233831-9 is installed OR gcc5-fortran-5.3.1+r233831-9 is installed OR gcc5-info-5.3.1+r233831-9 is installed OR gcc5-locale-5.3.1+r233831-9 is installed OR libffi-devel-gcc5-5.3.1+r233831-9 is installed OR libstdc++6-devel-gcc5-5.3.1+r233831-9 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php5-5.5.14-15.1 is installed OR php5-5.5.14-15.1 is installed OR php5-bcmath-5.5.14-15.1 is installed OR php5-bz2-5.5.14-15.1 is installed OR php5-calendar-5.5.14-15.1 is installed OR php5-ctype-5.5.14-15.1 is installed OR php5-curl-5.5.14-15.1 is installed OR php5-dba-5.5.14-15.1 is installed OR php5-dom-5.5.14-15.1 is installed OR php5-enchant-5.5.14-15.1 is installed OR php5-exif-5.5.14-15.1 is installed OR php5-fastcgi-5.5.14-15.1 is installed OR php5-fileinfo-5.5.14-15.1 is installed OR php5-fpm-5.5.14-15.1 is installed OR php5-ftp-5.5.14-15.1 is installed OR php5-gd-5.5.14-15.1 is installed OR php5-gettext-5.5.14-15.1 is installed OR php5-gmp-5.5.14-15.1 is installed OR php5-iconv-5.5.14-15.1 is installed OR php5-intl-5.5.14-15.1 is installed OR php5-json-5.5.14-15.1 is installed OR php5-ldap-5.5.14-15.1 is installed OR php5-mbstring-5.5.14-15.1 is installed OR php5-mcrypt-5.5.14-15.1 is installed OR php5-mysql-5.5.14-15.1 is installed OR php5-odbc-5.5.14-15.1 is installed OR php5-openssl-5.5.14-15.1 is installed OR php5-pcntl-5.5.14-15.1 is installed OR php5-pdo-5.5.14-15.1 is installed OR php5-pear-5.5.14-15.1 is installed OR php5-pgsql-5.5.14-15.1 is installed OR php5-pspell-5.5.14-15.1 is installed OR php5-shmop-5.5.14-15.1 is installed OR php5-snmp-5.5.14-15.1 is installed OR php5-soap-5.5.14-15.1 is installed OR php5-sockets-5.5.14-15.1 is installed OR php5-sqlite-5.5.14-15.1 is installed OR php5-suhosin-5.5.14-15.1 is installed OR php5-sysvmsg-5.5.14-15.1 is installed OR php5-sysvsem-5.5.14-15.1 is installed OR php5-sysvshm-5.5.14-15.1 is installed OR php5-tokenizer-5.5.14-15.1 is installed OR php5-wddx-5.5.14-15.1 is installed OR php5-xmlreader-5.5.14-15.1 is installed OR php5-xmlrpc-5.5.14-15.1 is installed OR php5-xmlwriter-5.5.14-15.1 is installed OR php5-xsl-5.5.14-15.1 is installed OR php5-zip-5.5.14-15.1 is installed OR php5-zlib-5.5.14-15.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information MozillaFirefox-10.0-0.3.2 is installed OR MozillaFirefox-translations-10.0-0.3.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND libzip1-0.9-1.24.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information PackageKit-0.3.14-2.30.11 is installed OR PackageKit-lang-0.3.14-2.30.11 is installed OR hal-0.5.12-23.76.1 is installed OR hal-32bit-0.5.12-23.76.1 is installed OR hal-doc-0.5.12-23.76.1 is installed OR hal-x86-0.5.12-23.76.1 is installed OR libpackagekit-glib10-0.3.14-2.30.11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information bash-4.2-75 is installed OR bash-doc-4.2-75 is installed OR libreadline6-6.2-75 is installed OR libreadline6-32bit-6.2-75 is installed OR readline-doc-6.2-75 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information apache2-2.4.16-7.1 is installed OR apache2-doc-2.4.16-7.1 is installed OR apache2-example-pages-2.4.16-7.1 is installed OR apache2-prefork-2.4.16-7.1 is installed OR apache2-utils-2.4.16-7.1 is installed OR apache2-worker-2.4.16-7.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libmpfr4-3.1.2-7 is installed OR libmpfr4-32bit-3.1.2-7 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information crash-7.1.8-3 is installed OR crash-kmp-default-7.1.8_k4.4.73_5-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information MozillaFirefox-52.9.0esr-109.38 is installed OR MozillaFirefox-translations-52.9.0esr-109.38 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Server 12 SP5 is installed OR SUSE Linux Enterprise Server for SAP Applications 12 SP5 is installed OR SUSE Linux Enterprise Software Development Kit 12 SP5 is installed AND libsndfile-devel-1.0.25-36.23.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information kgraft-patch-3_12_55-52_42-default-2-2.2 is installed OR kgraft-patch-3_12_55-52_42-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_12-2-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information libshibsp-lite6-2.5.5-6.3 is installed OR libshibsp6-2.5.5-6.3 is installed OR shibboleth-sp-2.5.5-6.3 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information quagga-0.99.15-0.29.1 is installed OR quagga-devel-0.99.15-0.29.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND rpm-devel-4.11.2-10 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND LibVNCServer-devel-0.9.9-16 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information DirectFB-devel-1.7.1-6 is installed OR lib++dfb-devel-1.7.1-6 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information libxerces-c-3_1-3.1.1-4.1 is installed OR libxerces-c-3_1-32bit-3.1.1-4.1 is installed OR xerces-c-3.1.1-4.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information gimp-2.8.10-7.8 is installed OR gimp-lang-2.8.10-7.8 is installed OR gimp-plugins-python-2.8.10-7.8 is installed OR libgimp-2_0-0-2.8.10-7.8 is installed OR libgimpui-2_0-0-2.8.10-7.8 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information libpcsclite1-32bit-1.8.10-6.1 is installed OR pcsc-lite-1.8.10-6.1 is installed

BACK