Oval Definition:	oval:org.opensuse.security:def:55227
Revision Date: 2021-08-05 Version: 1 Title: Security update for libsndfile (Critical) Description: This update for libsndfile fixes the following issues: - CVE-2018-13139: Fixed a stack-based buffer overflow in psf_memset in common.c in libsndfile 1.0.28allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact. (bsc#1100167) - CVE-2018-19432: Fixed a NULL pointer dereference in the function sf_write_int in sndfile.c, which will lead to a denial of service. (bsc#1116993) - CVE-2021-3246: Fixed a heap buffer overflow vulnerability in msadpcm_decode_block. (bsc#1188540) - CVE-2018-19758: Fixed a heap-based buffer over-read at wav.c in wav_write_header in libsndfile 1.0.28 that will cause a denial of service. (bsc#1117954) Family: unix Class: patch Status: Reference(s): 1005778 1005780 1005781 1009062 1011920 1012382 1012422 1015336 1015337 1015340 1015342 1015343 1020645 1022604 1022743 1024296 1031392 1031492 1035053 1036215 1041744 1042422 1043591 1043598 1044596 1046821 1047277 1047729 1048129 1048155 1050256 1050431 1050549 1053043 1054239 1055493 1056415 1056427 1057199 1060799 1065600 1065726 1066175 1067906 1068032 1073579 1075087 1075091 1075994 1076263 1076393 1076537 1077885 1078788 1079524 1080157 1082153 1082299 1082485 1082519 1082962 1083125 1083215 1083242 1083275 1083527 1083635 1083650 1083900 1084536 1084721 1084760 1085058 1085185 1085279 1085331 1085511 1085958 1086162 1086194 1087082 1087088 1087260 1088147 1088242 1088260 1088261 1088865 1089023 1089115 1089198 1089343 1089393 1089608 1089644 1089752 1089895 1089925 1090225 1090643 1090658 1090663 1090708 1090718 1090734 1090953 1091041 1091158 1091325 1091728 1091925 1091960 1092100 1092289 1092497 1092566 1092904 1093008 1093118 1093144 1093215 1094019 1094244 1094825 1095805 1096052 1098050 1098996 1099597 1100167 1101555 1101644 1101645 1101651 1101656 1103308 1103405 1104124 1105025 1105428 1105795 1105931 1106105 1106110 1106240 1106293 1106359 1106434 1106594 1106913 1106929 1107060 1107299 1107318 1107535 1107829 1107870 1108315 1108377 1108498 1109158 1109333 1109772 1109784 1109806 1109818 1109907 1109919 1109923 1110006 1110363 1110468 1110600 1110601 1110602 1110603 1110604 1110605 1110606 1110611 1110612 1110613 1110614 1110615 1110616 1110618 1110619 1111363 1111516 1111870 1112007 1112142 1112143 1112144 1112146 1112147 1112152 1112153 1112262 1112263 1112894 1112902 1112903 1112905 1113667 1113751 1113769 1114178 1114229 1114648 1116993 1117954 1125230 1188540 774666 796628 802154 854367 857544 917427 939367 946148 952539 954126 954519 954980 955493 955609 956631 966170 966172 966186 966191 969476 969477 981083 981348 997172 CVE-2012-2150 CVE-2013-6370 CVE-2013-6371 CVE-2014-0209 CVE-2014-0210 CVE-2014-0211 CVE-2014-3499 CVE-2014-5277 CVE-2014-6407 CVE-2014-6408 CVE-2014-8178 CVE-2014-8179 CVE-2014-9356 CVE-2014-9357 CVE-2014-9358 CVE-2015-0247 CVE-2015-1572 CVE-2015-3627 CVE-2015-3629 CVE-2015-3630 CVE-2015-3631 CVE-2015-8126 CVE-2015-8370 CVE-2016-5104 CVE-2017-0861 CVE-2017-10810 CVE-2017-11089 CVE-2017-13220 CVE-2017-18203 CVE-2018-1000199 CVE-2018-10087 CVE-2018-10087 CVE-2018-10124 CVE-2018-10124 CVE-2018-1065 CVE-2018-1087 CVE-2018-1122 CVE-2018-1123 CVE-2018-1124 CVE-2018-1125 CVE-2018-1126 CVE-2018-1130 CVE-2018-13139 CVE-2018-13785 CVE-2018-14633 CVE-2018-15587 CVE-2018-16435 CVE-2018-18281 CVE-2018-18386 CVE-2018-18690 CVE-2018-18710 CVE-2018-19432 CVE-2018-19758 CVE-2018-2938 CVE-2018-2940 CVE-2018-2952 CVE-2018-2973 CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3214 CVE-2018-3639 CVE-2018-5803 CVE-2018-7492 CVE-2018-7757 CVE-2018-8781 CVE-2018-8781 CVE-2018-8822 CVE-2018-8897 CVE-2018-9516 CVE-2021-3246 SUSE-SU-2015:0674-1 SUSE-SU-2015:2384-1 SUSE-SU-2015:2387-1 SUSE-SU-2016:0061-1 SUSE-SU-2018:0509-1 SUSE-SU-2018:1220-1 SUSE-SU-2018:1366-1 SUSE-SU-2018:2451-2 SUSE-SU-2018:3689-1 SUSE-SU-2019:0049-1 SUSE-SU-2019:1391-1 SUSE-SU-2021:2615-1 Platform(s): openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP1-LTSS SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 6 SUSE OpenStack Cloud 7 Product(s): Definition Synopsis openSUSE Leap 15.0 is installed AND binutils-2.29.1-lp150.4 is installed Definition Synopsis openSUSE Leap 15.1 is installed AND Package Information curl-7.60.0-lp151.5.3 is installed OR curl-mini-7.60.0-lp151.5.3 is installed OR libcurl-devel-7.60.0-lp151.5.3 is installed OR libcurl-devel-32bit-7.60.0-lp151.5.3 is installed OR libcurl-mini-devel-7.60.0-lp151.5.3 is installed OR libcurl4-7.60.0-lp151.5.3 is installed OR libcurl4-32bit-7.60.0-lp151.5.3 is installed OR libcurl4-mini-7.60.0-lp151.5.3 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND openssl-certs-1.95-0.4 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information libpng12-0-1.2.31-5.38 is installed OR libpng12-0-32bit-1.2.31-5.38 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information libprocps3-3.3.9-11.14 is installed OR procps-3.3.9-11.14 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information libjson-c2-0.11-2 is installed OR libjson-c2-32bit-0.11-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information e2fsprogs-1.42.11-7 is installed OR libcom_err2-1.42.11-7 is installed OR libcom_err2-32bit-1.42.11-7 is installed OR libext2fs2-1.42.11-7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1-LTSS is installed AND Package Information xen-4.5.5_16-22.28 is installed OR xen-doc-html-4.5.5_16-22.28 is installed OR xen-kmp-default-4.5.5_16_k3.12.74_60.64.57-22.28 is installed OR xen-libs-4.5.5_16-22.28 is installed OR xen-libs-32bit-4.5.5_16-22.28 is installed OR xen-tools-4.5.5_16-22.28 is installed OR xen-tools-domU-4.5.5_16-22.28 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information dbus-1-1.8.16-19 is installed OR dbus-1-x11-1.8.16-19 is installed OR libdbus-1-3-1.8.16-19 is installed OR libdbus-1-3-32bit-1.8.16-19 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-BCL is installed AND Package Information libsndfile1-1.0.25-36.23.1 is installed OR libsndfile1-32bit-1.0.25-36.23.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information MozillaFirefox-68.1.0-109.89 is installed OR MozillaFirefox-branding-SLE-68-32.8 is installed OR MozillaFirefox-devel-68.1.0-109.89 is installed OR MozillaFirefox-translations-common-68.1.0-109.89 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_121-92_73-default-2-2 is installed OR kgraft-patch-SLE12-SP2_Update_21-2-2 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 12 SP3 is installed AND libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed OR Package Information SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND libssh2-1-1.4.3-20.9 is installed OR libssh2-1-32bit-1.4.3-20.9 is installed OR libssh2_org-1.4.3-20.9 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information crash-7.1.8-3 is installed OR crash-kmp-default-7.1.8_k4.4.73_5-3 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information MozillaFirefox-68.1.0-109.89 is installed OR MozillaFirefox-branding-SLE-68-32.8 is installed OR MozillaFirefox-translations-common-68.1.0-109.89 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_97-default-7-2 is installed OR kgraft-patch-SLE12-SP3_Update_26-7-2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information lcms2-2.7-9.7 is installed OR liblcms2-2-2.7-9.7 is installed OR liblcms2-2-32bit-2.7-9.7 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information audiofile-0.3.6-10 is installed OR libaudiofile1-0.3.6-10 is installed OR libaudiofile1-32bit-0.3.6-10 is installed Definition Synopsis SUSE OpenStack Cloud 6 is installed AND docker-1.9.1-58 is installed Definition Synopsis SUSE OpenStack Cloud 7 is installed AND Package Information openstack-nova-14.0.10~dev13-4.11 is installed OR openstack-nova-api-14.0.10~dev13-4.11 is installed OR openstack-nova-cells-14.0.10~dev13-4.11 is installed OR openstack-nova-cert-14.0.10~dev13-4.11 is installed OR openstack-nova-compute-14.0.10~dev13-4.11 is installed OR openstack-nova-conductor-14.0.10~dev13-4.11 is installed OR openstack-nova-console-14.0.10~dev13-4.11 is installed OR openstack-nova-consoleauth-14.0.10~dev13-4.11 is installed OR openstack-nova-doc-14.0.10~dev13-4.11 is installed OR openstack-nova-novncproxy-14.0.10~dev13-4.11 is installed OR openstack-nova-placement-api-14.0.10~dev13-4.11 is installed OR openstack-nova-scheduler-14.0.10~dev13-4.11 is installed OR openstack-nova-serialproxy-14.0.10~dev13-4.11 is installed OR openstack-nova-vncproxy-14.0.10~dev13-4.11 is installed OR python-nova-14.0.10~dev13-4.11 is installed
BACK