Oval Definition:oval:org.opensuse.security:def:5732
Revision Date:2021-06-09Version:1
Title:Security update for libopenmpt (Moderate)
Description:
This update for libopenmpt fixes the following issues:

Various bugfix and stability issues were fixed, some of those
might have security impact.

libopenmpt was updated to 0.3.28:

* Fixed excessive memory consumption with malformed files in
various formats.

Changes in 0.3.27:

* AMS: Avoid allocating excessive amount of memory for compressed
song message in malformed files.
* S3M: Some samples were imported with a too high sample rate if
module was saved with Scream Tracker 3.

Changes in 0.3.26:

* DMF: Improve import of finetune effect with parameters larger
than +/-15.

Changes in 0.3.25:

* AMS: An upper bound for uncompressed sample size is now
established to avoid memory exhaustion from malformed files.
* MO3: Avoid certain ModPlug hacks from being fixed up twice,
which could lead to e.g. very narrow pan swing range for old
OpenMPT IT files saved with a recent MO3 encoder version.
* IMF: Instrument sample mapping was off by one octave, notable
in the guitar part of Astaris by Karsten Koch.
* PLM: Percentage offset (Mxx) was slightly off.

Changes in 0.3.24:

* PP20: The first few bytes of some files were not decompressed
properly, making some files unplayable (depending on the
original format).

Changes in 0.3.23:

* IT: Global volume slides with both nibbles set preferred the
“slide up” nibble over the “slide down” nibble in old OpenMPT
versions, unlike other slides. Such old files are now imported
correctly again.
* IT: Fixed an edge case where, if the filter hit full cutoff /
no resonance on the first tick of a row where a new delayed
note would be triggered, the filter would be disabled even
though it should stay active. Fixes trace.it by maddie.
* XM: Out-of-range arpeggio clamping behaviour broke in OpenMPT
1.23.05.00. The arpeggios in Binary World by Dakota now play
correctly again.
* S3M: Support old-style sample pre-amp value in very early
S3M files.
* S3M: Only force-enable fast slides for files ST 3.00.
Previously, any S3M file made with an ST3 version older than
3.20 enabled them.
* M15: Improve tracker detection heuristics to never assume
SoundTracker 2.0 if there is a huge number of Dxx commands,
as that is a definite hint that they should be treated as
volume slides. Fixes Monty On The Run by Master Blaster.

Changes in 0.3.22:

* IT: Disable retrigger with short notes quirk for modules saved
with Chibi Tracker, as it does not implement that quirk.
* MOD: Fix early song ending due to ProTracker pattern jump quirk
(EEx + Dxx on same row) if infinite looping is disabled.
Fixes Haunted Tracks.mod by Triace.
* MOD: Vibrato type “ramp down” was upside down.

Changes in 0.3.21:

* IT: Vibrato was too fast in Old Effects mode since
libopenmpt 0.3.
* XM: Treat 8bitbubsy’s FT2 clone exactly like Fasttracker 2 with
respect to compatibility and playback flags. For example,
FT2 Pan Law was not applied.
* DMF: Some files had a wrong tempo since libopenmpt
0.2.5705-beta15.
Family:unixClass:patch
Status:Reference(s):1174321
1186663
CVE-2006-4197
CVE-2008-3522
CVE-2008-4225
CVE-2008-4226
CVE-2008-4409
CVE-2010-0407
CVE-2010-4494
CVE-2010-4531
CVE-2011-0461
CVE-2011-1006
CVE-2011-1022
CVE-2011-1521
CVE-2011-1944
CVE-2011-3389
CVE-2011-4516
CVE-2011-4517
CVE-2011-4944
CVE-2012-0845
CVE-2012-1150
CVE-2012-2669
CVE-2012-5134
CVE-2012-5532
CVE-2013-0338
CVE-2013-1752
CVE-2013-1753
CVE-2013-1969
CVE-2013-4238
CVE-2014-0191
CVE-2014-1912
CVE-2014-3230
CVE-2014-3660
CVE-2014-4650
CVE-2014-7185
CVE-2014-7204
CVE-2014-8137
CVE-2014-8138
CVE-2014-8157
CVE-2014-8158
CVE-2014-9029
CVE-2014-9092
CVE-2015-0247
CVE-2015-1545
CVE-2015-1546
CVE-2015-1572
CVE-2015-1819
CVE-2015-5203
CVE-2015-5221
CVE-2015-5312
CVE-2015-6908
CVE-2015-7497
CVE-2015-7498
CVE-2015-7499
CVE-2015-7500
CVE-2015-7747
CVE-2015-7941
CVE-2015-7942
CVE-2015-8035
CVE-2015-8241
CVE-2015-8242
CVE-2015-8317
CVE-2015-8710
CVE-2016-0772
CVE-2016-1000110
CVE-2016-10251
CVE-2016-1577
CVE-2016-1762
CVE-2016-1833
CVE-2016-1834
CVE-2016-1835
CVE-2016-1836
CVE-2016-1837
CVE-2016-1838
CVE-2016-1839
CVE-2016-1840
CVE-2016-1867
CVE-2016-2089
CVE-2016-2116
CVE-2016-3627
CVE-2016-3705
CVE-2016-4483
CVE-2016-5636
CVE-2016-5699
CVE-2016-8654
CVE-2016-8690
CVE-2016-8691
CVE-2016-8692
CVE-2016-8693
CVE-2016-8880
CVE-2016-8881
CVE-2016-8882
CVE-2016-8883
CVE-2016-8884
CVE-2016-8885
CVE-2016-8886
CVE-2016-8887
CVE-2016-9395
CVE-2016-9398
CVE-2016-9560
CVE-2016-9583
CVE-2016-9591
CVE-2016-9600
CVE-2017-5498
CVE-2017-6827
CVE-2017-6828
CVE-2017-6829
CVE-2017-6830
CVE-2017-6831
CVE-2017-6832
CVE-2017-6833
CVE-2017-6834
CVE-2017-6835
CVE-2017-6836
CVE-2017-6837
CVE-2017-6838
CVE-2017-6839
CVE-2017-6850
CVE-2017-9287
CVE-2020-15103
SUSE-SU-2020:2408-1
Platform(s):openSUSE 13.1
openSUSE 13.1 NonFree
openSUSE 13.2
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Build System Kit 12
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise for SAP 12
SUSE Linux Enterprise for SAP 12 SP1
SUSE Linux Enterprise High Availability 12
SUSE Linux Enterprise High Availability 12 SP1
SUSE Linux Enterprise High Availability 12 SP2
SUSE Linux Enterprise High Availability 12 SP3
SUSE Linux Enterprise High Performance Computing 12 SP5
SUSE Linux Enterprise Live Patching 12
SUSE Linux Enterprise Module for Containers 12
SUSE Linux Enterprise Module for Legacy Software 12
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Real Time Extension 12 SP1
SUSE Linux Enterprise Server 11
SUSE Linux Enterprise Server 11 SP1-LTSS
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP3-LTSS
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server 12
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12-LTSS
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2
SUSE Linux Enterprise Server for SAP Applications 12 SP1
SUSE Linux Enterprise Server for VMWare 11 SP2
SUSE Linux Enterprise Server for VMWare 11 SP3
SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP3
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
SUSE Linux Enterprise Software Development Kit 12 SP2
SUSE Linux Enterprise Software Development Kit 12 SP4
SUSE Linux Enterprise Workstation Extension 12
SUSE Linux Enterprise Workstation Extension 12 SP1
SUSE Linux Enterprise Workstation Extension 12 SP2
SUSE Linux Enterprise Workstation Extension 12 SP3
SUSE Linux Enterprise Workstation Extension 12 SP4
SUSE Linux Enterprise Workstation Extension 15 SP2
SUSE OpenStack Cloud 5
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Build System Kit 12 is installed
  • AND Package Information
  • libreoffice-4.3.3.2-6 is installed
  • OR libreoffice-sdk-4.3.3.2-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • aaa_base-13.2+git20140911.61c1681-1 is installed
  • OR aaa_base-extras-13.2+git20140911.61c1681-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • libjpeg-turbo-1.3.1-30 is installed
  • OR libjpeg62-62.1.0-30 is installed
  • OR libjpeg62-32bit-62.1.0-30 is installed
  • OR libjpeg62-turbo-1.3.1-30 is installed
  • OR libjpeg8-8.0.2-30 is installed
  • OR libjpeg8-32bit-8.0.2-30 is installed
  • OR libturbojpeg0-8.0.2-30 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • audiofile-0.3.6-10 is installed
  • OR libaudiofile1-0.3.6-10 is installed
  • OR libaudiofile1-32bit-0.3.6-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • audiofile-0.3.6-10 is installed
  • OR libaudiofile1-0.3.6-10 is installed
  • OR libaudiofile1-32bit-0.3.6-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 is installed
  • AND Package Information
  • compat-libldap-2_3-0-2.3.37-16.1 is installed
  • OR openldap2-2.4.39-16.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise for SAP 12 SP1 is installed
  • AND Package Information
  • compat-openssl098-0.9.8j-102.1 is installed
  • OR libopenssl0_9_8-0.9.8j-102.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 is installed
  • AND python-requests-2.8.1-6.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP1 is installed
  • AND lighttpd-1.4.35-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP2 is installed
  • AND Package Information
  • libpacemaker3-1.1.15-21 is installed
  • OR pacemaker-1.1.15-21 is installed
  • OR pacemaker-cli-1.1.15-21 is installed
  • OR pacemaker-cts-1.1.15-21 is installed
  • OR pacemaker-remote-1.1.15-21 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Availability 12 SP3 is installed
  • AND haproxy-1.6.11-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise High Performance Computing 12 SP5 is installed
  • AND Package Information
  • DirectFB-1.7.1-6 is installed
  • OR lib++dfb-1_7-1-1.7.1-6 is installed
  • OR libdirectfb-1_7-1-1.7.1-6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Live Patching 12 is installed
  • AND Package Information
  • kgraft-patch-3_12_32-33-default-2-3 is installed
  • OR kgraft-patch-3_12_32-33-xen-2-3 is installed
  • OR kgraft-patch-3_12_36-38-default-2-3 is installed
  • OR kgraft-patch-3_12_36-38-xen-2-3 is installed
  • OR kgraft-patch-SLE12_Update_1-2-3 is installed
  • OR kgraft-patch-SLE12_Update_2-2-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Containers 12 is installed
  • AND docker-1.6.2-31 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Legacy Software 12 is installed
  • AND Package Information
  • java-1_6_0-ibm-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-fonts-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-jdbc-1.6.0_sr16.1-5 is installed
  • OR java-1_6_0-ibm-plugin-1.6.0_sr16.1-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Real Time Extension 12 SP1 is installed
  • AND Package Information
  • kernel-compute-3.12.67-60.27.1 is installed
  • OR kernel-compute-base-3.12.67-60.27.1 is installed
  • OR kernel-compute-devel-3.12.67-60.27.1 is installed
  • OR kernel-compute_debug-3.12.67-60.27.1 is installed
  • OR kernel-compute_debug-devel-3.12.67-60.27.1 is installed
  • OR kernel-devel-rt-3.12.67-60.27.1 is installed
  • OR kernel-rt-3.12.67-60.27.1 is installed
  • OR kernel-rt-base-3.12.67-60.27.1 is installed
  • OR kernel-rt-devel-3.12.67-60.27.1 is installed
  • OR kernel-rt_debug-3.12.67-60.27.1 is installed
  • OR kernel-rt_debug-devel-3.12.67-60.27.1 is installed
  • OR kernel-source-rt-3.12.67-60.27.1 is installed
  • OR kernel-syms-rt-3.12.67-60.27.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 is installed
  • AND wireshark-1.0.5-1.27.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP1-LTSS is installed
  • AND Package Information
  • libfreebl3-3.15.2-0.3.1 is installed
  • OR libfreebl3-32bit-3.15.2-0.3.1 is installed
  • OR mozilla-nspr-4.10.1-0.3.1 is installed
  • OR mozilla-nspr-32bit-4.10.1-0.3.1 is installed
  • OR mozilla-nss-3.15.2-0.3.1 is installed
  • OR mozilla-nss-32bit-3.15.2-0.3.1 is installed
  • OR mozilla-nss-tools-3.15.2-0.3.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND wireshark-1.8.12-0.2.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for VMWare 11 SP2 is installed
  • AND wireshark-1.8.12-0.2.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND Package Information
  • dbus-1-glib-0.76-34.22.1 is installed
  • OR dbus-1-glib-32bit-0.76-34.22.1 is installed
  • OR dbus-1-glib-x86-0.76-34.22.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • bind-9.9.6P1-0.22.1 is installed
  • OR bind-chrootenv-9.9.6P1-0.22.1 is installed
  • OR bind-doc-9.9.6P1-0.22.1 is installed
  • OR bind-libs-9.9.6P1-0.22.1 is installed
  • OR bind-libs-32bit-9.9.6P1-0.22.1 is installed
  • OR bind-libs-x86-9.9.6P1-0.22.1 is installed
  • OR bind-utils-9.9.6P1-0.22.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server for VMWare 11 SP3 is installed
  • AND
  • bind-9.9.6P1-0.22.1 is installed
  • OR bind-chrootenv-9.9.6P1-0.22.1 is installed
  • OR bind-doc-9.9.6P1-0.22.1 is installed
  • OR bind-libs-9.9.6P1-0.22.1 is installed
  • OR bind-libs-32bit-9.9.6P1-0.22.1 is installed
  • OR bind-libs-x86-9.9.6P1-0.22.1 is installed
  • OR bind-utils-9.9.6P1-0.22.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • NetworkManager-0.7.1_git20090811-3.28.2 is installed
  • OR NetworkManager-glib-0.7.1_git20090811-3.28.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND Package Information
  • Mesa-9.0.3-0.28.29.2 is installed
  • OR Mesa-32bit-9.0.3-0.28.29.2 is installed
  • OR Mesa-x86-9.0.3-0.28.29.2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 is installed
  • AND Package Information
  • alsa-1.0.27.2-11 is installed
  • OR alsa-docs-1.0.27.2-11 is installed
  • OR libasound2-1.0.27.2-11 is installed
  • OR libasound2-32bit-1.0.27.2-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND Package Information
  • bash-4.2-75 is installed
  • OR bash-doc-4.2-75 is installed
  • OR libreadline6-6.2-75 is installed
  • OR libreadline6-32bit-6.2-75 is installed
  • OR readline-doc-6.2-75 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND Package Information
  • MozillaFirefox-45.4.0esr-81 is installed
  • OR MozillaFirefox-translations-45.4.0esr-81 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND libass5-0.10.2-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_60-52_57-default-7-3.1 is installed
  • OR kgraft-patch-3_12_60-52_57-xen-7-3.1 is installed
  • OR kgraft-patch-SLE12_Update_16-7-3.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed
  • AND Package Information
  • alsa-1.0.27.2-11 is installed
  • OR alsa-docs-1.0.27.2-11 is installed
  • OR libasound2-1.0.27.2-11 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 12 SP1 is installed
  • AND Package Information
  • kgraft-patch-3_12_74-60_64_40-default-9-2 is installed
  • OR kgraft-patch-3_12_74-60_64_40-xen-9-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_15-9-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP2 is installed
  • AND Package Information
  • libpcp3-3.6.10-0.3.1 is installed
  • OR pcp-3.6.10-0.3.1 is installed
  • OR pcp-devel-3.6.10-0.3.1 is installed
  • OR pcp-import-iostat2pcp-3.6.10-0.3.1 is installed
  • OR pcp-import-mrtg2pcp-3.6.10-0.3.1 is installed
  • OR pcp-import-sar2pcp-3.6.10-0.3.1 is installed
  • OR pcp-import-sheet2pcp-3.6.10-0.3.1 is installed
  • OR perl-PCP-LogImport-3.6.10-0.3.1 is installed
  • OR perl-PCP-LogSummary-3.6.10-0.3.1 is installed
  • OR perl-PCP-MMV-3.6.10-0.3.1 is installed
  • OR perl-PCP-PMDA-3.6.10-0.3.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP3 is installed
  • AND MozillaFirefox-devel-31.6.0esr-0.8.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 is installed
  • AND libXcursor-devel-1.1.14-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP1 is installed
  • AND MozillaFirefox-devel-38.4.0esr-51 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP2 is installed
  • AND Package Information
  • FastCGI-2.4.0-167 is installed
  • OR perl-FastCGI-2.4.0-167 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 12 SP4 is installed
  • AND libmicrohttpd-devel-0.9.30-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 is installed
  • AND Package Information
  • colord-1.1.7-2 is installed
  • OR colord-lang-1.1.7-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP1 is installed
  • AND argyllcms-1.6.3-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP2 is installed
  • AND argyllcms-1.6.3-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP3 is installed
  • AND Package Information
  • colord-1.3.3-12 is installed
  • OR colord-lang-1.3.3-12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 12 SP4 is installed
  • AND Package Information
  • java-1_7_0-openjdk-plugin-1.6.2-2.8 is installed
  • OR java-1_8_0-openjdk-plugin-1.6.2-2.10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP2 is installed
  • AND Package Information
  • freerdp-2.1.2-15.10 is installed
  • OR freerdp-devel-2.1.2-15.10 is installed
  • OR libfreerdp2-2.1.2-15.10 is installed
  • OR libwinpr2-2.1.2-15.10 is installed
  • OR winpr2-devel-2.1.2-15.10 is installed
    • BACK