Oval Definition:	oval:org.opensuse.security:def:51070
Revision Date: 2020-12-01 Version: 1 Title: Security update for libopenmpt (Moderate) Description: This update for libopenmpt to version 0.3.9 fixes the following issues: These security issues were fixed: - CVE-2018-11710: Prevent write near address 0 in out-of-memory situations when reading AMS files (bsc#1095644) - CVE-2018-10017: Preven out-of-bounds memory read with IT/ITP/MO3 files containing pattern loops (bsc#1089080) These non-security issues were fixed: - [Bug] openmpt123: Fixed build failure in C++17 due to use of removed feature std::random_shuffle. - STM: Having both Bxx and Cxx commands in a pattern imported the Bxx command incorrectly. - STM: Last character of sample name was missing. - Speed up reading of truncated ULT files. - ULT: Portamento import was sometimes broken. - The resonant filter was sometimes unstable when combining low-volume samples, low cutoff and high mixing rates. - Keep track of active SFx macro during seeking. - The 'note cut' duplicate note action did not volume-ramp the previously playing sample. - A song starting with non-existing patterns could not be played. - DSM: Support restart position and 16-bit samples. - DTM: Import global volume. Family: unix Class: patch Status: Reference(s): 1024288 1024291 1083689 1089080 1092187 1095644 1099465 1105606 1106531 1107832 1108674 1109609 1110233 1120189 1128525 1132385 1136936 1144348 1144352 1144797 1149742 1154091 1154862 1163764 1170200 1170498 1171746 1172140 1172437 1172524 1173079 1174230 1174466 1174529 1174633 1174635 1174638 1174644 1174922 1174923 1175120 1175161 1175169 1176384 1176451 1176499 1176638 1176756 1176899 1177078 1177151 1177319 1177344 1177450 1177643 1177676 1177843 1177933 1177977 1178073 1178531 991201 CVE-2009-0037 CVE-2009-2417 CVE-2012-4510 CVE-2013-0249 CVE-2013-1944 CVE-2013-2174 CVE-2013-4545 CVE-2014-0015 CVE-2014-0138 CVE-2014-0139 CVE-2014-3613 CVE-2014-3620 CVE-2016-5416 CVE-2017-2579 CVE-2017-2580 CVE-2018-1000199 CVE-2018-10017 CVE-2018-1054 CVE-2018-10871 CVE-2018-1089 CVE-2018-10935 CVE-2018-11710 CVE-2018-14633 CVE-2018-14638 CVE-2018-14648 CVE-2018-16140 CVE-2018-17182 CVE-2019-14491 CVE-2019-14492 CVE-2019-15666 CVE-2019-15939 CVE-2019-17498 CVE-2019-3883 CVE-2019-8936 CVE-2020-10757 CVE-2020-12673 CVE-2020-12674 CVE-2020-12861 CVE-2020-12862 CVE-2020-12863 CVE-2020-12864 CVE-2020-12865 CVE-2020-12866 CVE-2020-12867 CVE-2020-14345 CVE-2020-14346 CVE-2020-14347 CVE-2020-15673 CVE-2020-15676 CVE-2020-15677 CVE-2020-15678 CVE-2020-15683 CVE-2020-15969 CVE-2020-25660 SUSE-SU-2018:1951-1 SUSE-SU-2019:0777-1 SUSE-SU-2019:1291-1 SUSE-SU-2019:1525-1 SUSE-SU-2019:2155-1 SUSE-SU-2019:2900-2 SUSE-SU-2019:3192-2 SUSE-SU-2020:2267-1 SUSE-SU-2020:3091-1 Platform(s): SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 SUSE Linux Enterprise Module for Server Applications 15 SUSE Linux Enterprise Module for Server Applications 15 SP1 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND sudo-1.7.6p2-0.2.12 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information augeas-0.9.0-3.17 is installed OR libaugeas0-0.9.0-3.17 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information cups-pk-helper-0.2.5-3 is installed OR cups-pk-helper-lang-0.2.5-3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND argyllcms-1.6.3-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND cifs-utils-6.5-8 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information fontconfig-2.11.1-7 is installed OR fontconfig-32bit-2.11.1-7 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information icu-52.1-8.7 is installed OR libicu52_1-52.1-8.7 is installed OR libicu52_1-32bit-52.1-8.7 is installed OR libicu52_1-data-52.1-8.7 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 SP2 is installed AND Package Information opencv-3.3.1-6.6 is installed OR python2-opencv-3.3.1-6.6 is installed OR python3-opencv-3.3.1-6.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information libmodplug-devel-0.3.9-3.3 is installed OR libmodplug1-0.3.9-3.3 is installed OR libopenmpt-0.3.9-3.3 is installed OR libopenmpt-devel-0.3.9-3.3 is installed OR libopenmpt0-0.3.9-3.3 is installed OR libopenmpt_modplug1-0.3.9-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND ntp-4.2.8p13-4.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND Package Information kernel-livepatch-4_12_14-25_6-default-5-2 is installed OR kernel-livepatch-SLE15_Update_2-5-2 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed AND Package Information xorg-x11-server-1.20.3-22.5 is installed OR xorg-x11-server-source-1.20.3-22.5 is installed OR xorg-x11-server-wayland-1.20.3-22.5 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 is installed AND Package Information 389-ds-1.4.0.26~git0.8a2d3de6f-4.14 is installed OR 389-ds-devel-1.4.0.26~git0.8a2d3de6f-4.14 is installed Definition Synopsis SUSE Linux Enterprise Module for Server Applications 15 SP1 is installed AND Package Information dovecot23-2.3.10-16 is installed OR dovecot23-backend-mysql-2.3.10-16 is installed OR dovecot23-backend-pgsql-2.3.10-16 is installed OR dovecot23-backend-sqlite-2.3.10-16 is installed OR dovecot23-devel-2.3.10-16 is installed OR dovecot23-fts-2.3.10-16 is installed OR dovecot23-fts-lucene-2.3.10-16 is installed OR dovecot23-fts-solr-2.3.10-16 is installed OR dovecot23-fts-squat-2.3.10-16 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libarchive-3.1.2-22 is installed OR libarchive13-3.1.2-22 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information kgraft-patch-3_12_74-60_64_57-default-9-2 is installed OR kgraft-patch-3_12_74-60_64_57-xen-9-2 is installed OR kgraft-patch-SLE12-SP1_Update_20-9-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information colord-gtk-lang-0.1.26-6 is installed OR libcolord-gtk1-0.1.26-6 is installed OR libcolord2-1.3.3-10 is installed OR libcolord2-32bit-1.3.3-10 is installed OR libcolorhug2-1.3.3-10 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND ucode-intel-20180425-13.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information libvirt-2.0.0-27.42 is installed OR libvirt-client-2.0.0-27.42 is installed OR libvirt-daemon-2.0.0-27.42 is installed OR libvirt-daemon-config-network-2.0.0-27.42 is installed OR libvirt-daemon-config-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-interface-2.0.0-27.42 is installed OR libvirt-daemon-driver-libxl-2.0.0-27.42 is installed OR libvirt-daemon-driver-lxc-2.0.0-27.42 is installed OR libvirt-daemon-driver-network-2.0.0-27.42 is installed OR libvirt-daemon-driver-nodedev-2.0.0-27.42 is installed OR libvirt-daemon-driver-nwfilter-2.0.0-27.42 is installed OR libvirt-daemon-driver-qemu-2.0.0-27.42 is installed OR libvirt-daemon-driver-secret-2.0.0-27.42 is installed OR libvirt-daemon-driver-storage-2.0.0-27.42 is installed OR libvirt-daemon-hooks-2.0.0-27.42 is installed OR libvirt-daemon-lxc-2.0.0-27.42 is installed OR libvirt-daemon-qemu-2.0.0-27.42 is installed OR libvirt-daemon-xen-2.0.0-27.42 is installed OR libvirt-doc-2.0.0-27.42 is installed OR libvirt-lock-sanlock-2.0.0-27.42 is installed OR libvirt-nss-2.0.0-27.42 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND ucode-intel-20180425-13.20 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information coreutils-8.25-12 is installed OR coreutils-lang-8.25-12 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND ucode-intel-20190618-13.47 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information libpolkit0-0.113-5.18 is installed OR polkit-0.113-5.18 is installed OR typelib-1_0-Polkit-1_0-0.113-5.18 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information rsyslog-8.24.0-3.7 is installed OR rsyslog-diag-tools-8.24.0-3.7 is installed OR rsyslog-doc-8.24.0-3.7 is installed OR rsyslog-module-gssapi-8.24.0-3.7 is installed OR rsyslog-module-gtls-8.24.0-3.7 is installed OR rsyslog-module-mysql-8.24.0-3.7 is installed OR rsyslog-module-pgsql-8.24.0-3.7 is installed OR rsyslog-module-relp-8.24.0-3.7 is installed OR rsyslog-module-snmp-8.24.0-3.7 is installed OR rsyslog-module-udpspoof-8.24.0-3.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information cpio-2.11-36.3 is installed OR cpio-lang-2.11-36.3 is installed Definition Synopsis SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information libssh2-1-1.8.0-4.10 is installed OR libssh2-1-32bit-1.8.0-4.10 is installed OR libssh2-devel-1.8.0-4.10 is installed OR libssh2_org-1.8.0-4.10 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND transfig-3.2.6a-4.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information MozillaThunderbird-78.4.0-3.99 is installed OR MozillaThunderbird-translations-common-78.4.0-3.99 is installed OR MozillaThunderbird-translations-other-78.4.0-3.99 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND Package Information openstack-dashboard-8.0.2~a0~dev7-2 is installed OR python-horizon-8.0.2~a0~dev7-2 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND python-PyJWT-1.4.2-3.3 is installed Definition Synopsis SUSE OpenStack Cloud 8 is installed AND Package Information ghostscript-9.27-23.28 is installed OR ghostscript-x11-9.27-23.28 is installed Definition Synopsis SUSE OpenStack Cloud Crowbar 8 is installed AND nodejs6-6.16.0-11.21 is installed
BACK