Oval Definition:oval:org.opensuse.security:def:65174
Revision Date:2020-12-01Version:1
Title:Security update for wavpack (Low)
Description:

This update for wavpack fixes the following issues:

Security issues fixed:

- CVE-2019-1010319: Fixed use of uninitialized variable in ParseWave64HeaderConfig that can result in unexpected control flow, crashes, and segfaults (bsc#1141334). - CVE-2019-11498: Fixed possible denial of service (application crash) in WavpackSetConfiguration64 via a DFF file that lacks valid sample-rate data (bsc#1133384).
Family:unixClass:patch
Status:Reference(s):1117993
1123710
1127223
1127308
1131330
1133384
1141334
CVE-2009-5155
CVE-2019-1010319
CVE-2019-11498
CVE-2019-9169
SUSE-SU-2019:1877-1
SUSE-SU-2019:2191-1
Platform(s):SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for Development Tools 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • wavpack-5.1.0-4.6 is installed
  • OR wavpack-devel-5.1.0-4.6 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed
  • AND Package Information
  • glibc-2.26-13.24 is installed
  • OR glibc-devel-32bit-2.26-13.24 is installed
  • OR glibc-devel-static-2.26-13.24 is installed
  • OR glibc-utils-2.26-13.24 is installed
  • OR glibc-utils-src-2.26-13.24 is installed
    • BACK