Oval Definition:oval:org.opensuse.security:def:68567
Revision Date:2021-08-17Version:1
Title:Security update for libsndfile (Critical)
Description:

This update for libsndfile fixes the following issues:

- CVE-2018-13139: Fixed a stack-based buffer overflow in psf_memset in common.c in libsndfile 1.0.28allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact. (bsc#1100167) - CVE-2018-19432: Fixed a NULL pointer dereference in the function sf_write_int in sndfile.c, which will lead to a denial of service. (bsc#1116993) - CVE-2021-3246: Fixed a heap buffer overflow vulnerability in msadpcm_decode_block. (bsc#1188540) - CVE-2018-19758: Fixed a heap-based buffer over-read at wav.c in wav_write_header in libsndfile 1.0.28 that will cause a denial of service. (bsc#1117954)
Family:unixClass:patch
Status:Reference(s):1055014
1061843
1065600
1065729
1066382
1077428
1100167
1112178
1116993
1117954
1131277
1134760
1170415
1171558
1173432
1174091
1174748
1176354
1176485
1176560
1176713
1176723
1177086
1177101
1177271
1177281
1177410
1177411
1177470
1177687
1177719
1177740
1177749
1177750
1177753
1177754
1177755
1177766
1177855
1177856
1177861
1178003
1178027
1178166
1178185
1178187
1178188
1178202
1178234
1178330
1188540
CVE-2018-13139
CVE-2018-19432
CVE-2018-19758
CVE-2019-20907
CVE-2020-0430
CVE-2020-14351
CVE-2020-16120
CVE-2020-25285
CVE-2020-25656
CVE-2020-27673
CVE-2020-27675
CVE-2020-8694
CVE-2021-3246
SUSE-SU-2020:2276-1
SUSE-SU-2020:3272-1
SUSE-SU-2021:2764-1
Platform(s):SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Module for additional PackageHub packages 15 SP3
SUSE Linux Enterprise Module for Desktop Applications 15 SP1
SUSE Linux Enterprise Module for Development Tools 15 SP1
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Manager Proxy 4.2
SUSE Manager Server 4.2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed
  • AND Package Information
  • python-2.7.17-7.41 is installed
  • OR python-tk-2.7.17-7.41 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed
  • AND Package Information
  • kernel-docs-4.12.14-197.67 is installed
  • OR kernel-obs-build-4.12.14-197.67 is installed
  • OR kernel-source-4.12.14-197.67 is installed
  • OR kernel-syms-4.12.14-197.67 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for additional PackageHub packages 15 SP3 is installed
  • AND libsndfile1-32bit-1.0.28-5.12.1 is installed
    • BACK