Oval Definition:oval:org.opensuse.security:def:56340
Revision Date:2020-12-01Version:1
Title:Security update for libvorbis (Moderate)
Description:

This update for libvorbis fixes the following issues:

- CVE-2017-14633: out-of-bounds array read vulnerability exists in function mapping0_forward() could lead to remote denial of service (bsc#1059811) - CVE-2017-14632: Remote Code Execution upon freeing uninitialized memory in function vorbis_analysis_headerout(bsc#1059809)
Family:unixClass:patch
Status:Reference(s):1018128
1030263
1032114
1032120
1036453
1052311
1052368
1053911
1058297
1059809
1059811
1068003
1068032
1090638
1138459
1141853
1153674
CVE-2009-0037
CVE-2009-1886
CVE-2009-1888
CVE-2009-2417
CVE-2009-2813
CVE-2009-2906
CVE-2009-2948
CVE-2010-0547
CVE-2010-0728
CVE-2010-0787
CVE-2010-0926
CVE-2010-1205
CVE-2010-1635
CVE-2010-1642
CVE-2010-2063
CVE-2010-3069
CVE-2011-0719
CVE-2011-2186
CVE-2011-2501
CVE-2011-2522
CVE-2011-2690
CVE-2011-2691
CVE-2011-2692
CVE-2011-2694
CVE-2011-3026
CVE-2011-3048
CVE-2011-3328
CVE-2011-3464
CVE-2012-0817
CVE-2012-0870
CVE-2012-1182
CVE-2012-2111
CVE-2012-3386
CVE-2012-3449
CVE-2012-6150
CVE-2013-0172
CVE-2013-0213
CVE-2013-0214
CVE-2013-0249
CVE-2013-0262
CVE-2013-0263
CVE-2013-0454
CVE-2013-1863
CVE-2013-1944
CVE-2013-2174
CVE-2013-4124
CVE-2013-4408
CVE-2013-4475
CVE-2013-4476
CVE-2013-4496
CVE-2013-4545
CVE-2013-6442
CVE-2014-0015
CVE-2014-0138
CVE-2014-0139
CVE-2014-0178
CVE-2014-0239
CVE-2014-0244
CVE-2014-1829
CVE-2014-1830
CVE-2014-3493
CVE-2014-3560
CVE-2014-3613
CVE-2014-3620
CVE-2014-3707
CVE-2014-8104
CVE-2014-8143
CVE-2014-8150
CVE-2014-9390
CVE-2015-0240
CVE-2015-3143
CVE-2015-3144
CVE-2015-3145
CVE-2015-3148
CVE-2015-3153
CVE-2015-3225
CVE-2016-10220
CVE-2016-2315
CVE-2016-2324
CVE-2016-5104
CVE-2016-9601
CVE-2017-1000112
CVE-2017-14632
CVE-2017-14633
CVE-2017-17833
CVE-2017-5715
CVE-2017-5951
CVE-2017-7207
CVE-2017-8291
CVE-2018-20852
CVE-2019-10160
CVE-2019-14287
SUSE-SU-2017:1404-1
SUSE-SU-2017:2424-1
SUSE-SU-2018:0008-1
SUSE-SU-2018:0015-1
SUSE-SU-2018:2991-1
SUSE-SU-2019:2091-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE OpenStack Cloud 6
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • coreutils-8.29-lp150.2 is installed
  • OR coreutils-lang-8.29-lp150.2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • libruby2_5-2_5-2.5.5-lp151.4.3 is installed
  • OR ruby-bundled-gems-rpmhelper-0.0.2-lp151.2 is installed
  • OR ruby2.5-2.5.5-lp151.4.3 is installed
  • OR ruby2.5-devel-2.5.5-lp151.4.3 is installed
  • OR ruby2.5-devel-extra-2.5.5-lp151.4.3 is installed
  • OR ruby2.5-doc-2.5.5-lp151.4.3 is installed
  • OR ruby2.5-doc-ri-2.5.5-lp151.4.3 is installed
  • OR ruby2.5-stdlib-2.5.5-lp151.4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • libvorbis-1.3.3-10.3 is installed
  • OR libvorbis0-1.3.3-10.3 is installed
  • OR libvorbis0-32bit-1.3.3-10.3 is installed
  • OR libvorbisenc2-1.3.3-10.3 is installed
  • OR libvorbisenc2-32bit-1.3.3-10.3 is installed
  • OR libvorbisfile3-1.3.3-10.3 is installed
  • OR libvorbisfile3-32bit-1.3.3-10.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • curl-7.37.0-15 is installed
  • OR libcurl4-7.37.0-15 is installed
  • OR libcurl4-32bit-7.37.0-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_67-60_64_21-default-9-2 is installed
  • OR kgraft-patch-3_12_67-60_64_21-xen-9-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_10-9-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND git-core-1.8.5.6-18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • openssh-7.2p2-74.25 is installed
  • OR openssh-askpass-gnome-7.2p2-74.25 is installed
  • OR openssh-fips-7.2p2-74.25 is installed
  • OR openssh-helpers-7.2p2-74.25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_120-92_70-default-9-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_20-9-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kernel-default-4.4.121-92.85 is installed
  • OR kernel-default-base-4.4.121-92.85 is installed
  • OR kernel-default-devel-4.4.121-92.85 is installed
  • OR kernel-default-man-4.4.121-92.85 is installed
  • OR kernel-devel-4.4.121-92.85 is installed
  • OR kernel-macros-4.4.121-92.85 is installed
  • OR kernel-source-4.4.121-92.85 is installed
  • OR kernel-syms-4.4.121-92.85 is installed
  • OR kgraft-patch-4_4_121-92_85-default-1-3.5 is installed
  • OR kgraft-patch-SLE12-SP2_Update_23-1-3.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • apache-commons-daemon-1.0.15-6 is installed
  • OR apache-commons-daemon-javadoc-1.0.15-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_162-94_72-default-7-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_22-7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND squid-3.5.21-26.17 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND dosfstools-3.0.26-6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND ruby2.1-rubygem-rack-1.6.4-2 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • xen-4.7.6_05-43.42 is installed
  • OR xen-doc-html-4.7.6_05-43.42 is installed
  • OR xen-libs-4.7.6_05-43.42 is installed
  • OR xen-libs-32bit-4.7.6_05-43.42 is installed
  • OR xen-tools-4.7.6_05-43.42 is installed
  • OR xen-tools-domU-4.7.6_05-43.42 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND Package Information
  • mariadb-10.2.25-3.19 is installed
  • OR mariadb-galera-10.2.25-3.19 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND squid-3.5.21-26.17 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • ruby2.1-rubygem-rails-html-sanitizer-1.0.3-8.8 is installed
  • OR rubygem-rails-html-sanitizer-1.0.3-8.8 is installed
    • BACK