Oval Definition:oval:org.opensuse.security:def:64556
Revision Date:2021-08-17Version:1
Title:Security update for libsndfile (Critical)
Description:

This update for libsndfile fixes the following issues:

- CVE-2018-13139: Fixed a stack-based buffer overflow in psf_memset in common.c in libsndfile 1.0.28allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact. (bsc#1100167) - CVE-2018-19432: Fixed a NULL pointer dereference in the function sf_write_int in sndfile.c, which will lead to a denial of service. (bsc#1116993) - CVE-2021-3246: Fixed a heap buffer overflow vulnerability in msadpcm_decode_block. (bsc#1188540) - CVE-2018-19758: Fixed a heap-based buffer over-read at wav.c in wav_write_header in libsndfile 1.0.28 that will cause a denial of service. (bsc#1117954)
Family:unixClass:patch
Status:Reference(s):1100167
1116993
1117954
1127838
1162198
1167126
1167128
1167209
1167462
1169511
1171572
1171579
1172743
1174457
1177346
1188540
CVE-2012-2812
CVE-2012-2813
CVE-2012-2814
CVE-2012-2836
CVE-2012-2837
CVE-2012-2840
CVE-2012-2841
CVE-2016-6328
CVE-2017-7544
CVE-2018-13139
CVE-2018-19211
CVE-2018-19432
CVE-2018-19758
CVE-2019-0804
CVE-2020-10648
CVE-2020-13867
CVE-2020-15917
CVE-2020-2754
CVE-2020-2755
CVE-2020-2756
CVE-2020-2757
CVE-2020-2767
CVE-2020-2773
CVE-2020-2778
CVE-2020-2781
CVE-2020-2800
CVE-2020-2803
CVE-2020-2805
CVE-2020-2816
CVE-2020-2830
CVE-2020-8154
CVE-2020-8155
CVE-2020-8183
CVE-2020-8228
CVE-2020-8233
CVE-2020-8432
CVE-2021-3246
openSUSE-SU-2020:0261-1
openSUSE-SU-2020:0490-1
openSUSE-SU-2020:0757-1
openSUSE-SU-2020:1139-1
openSUSE-SU-2020:1144-1
openSUSE-SU-2020:1652-1
openSUSE-SU-2020:1869-1
SUSE-SU-2021:2764-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.2
SUSE Linux Enterprise Desktop 15 SP2
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP2
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for Development Tools 15 SP1
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND nextcloud-20.0.0-25 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • claws-mail-3.17.6-lp152.3.3 is installed
  • OR claws-mail-devel-3.17.6-lp152.3.3 is installed
  • OR claws-mail-lang-3.17.6-lp152.3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed
  • AND Package Information
  • libsndfile-devel-1.0.28-5.12.1 is installed
  • OR libsndfile1-1.0.28-5.12.1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • libexif-devel-0.6.21-3 is installed
  • OR libexif12-0.6.21-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed
  • AND ncurses-devel-32bit-6.1-5.3 is installed
    • BACK