Lucene search
SuseOPENSUSE-SU-2021:2764-1HistoryAug 17, 2021 - 12:00 a.m.
Security update for libsndfile (critical)
2021-08-1700:00:00
lists.opensuse.org
44
0.009 Low
EPSS
Percentile
82.9%
An update that fixes four vulnerabilities is now available.
Description:
This update for libsndfile fixes the following issues:
- CVE-2018-13139: Fixed a stack-based buffer overflow in psf_memset in
common.c in libsndfile 1.0.28allows remote attackers to cause a denial
of service (application crash) or possibly have unspecified other
impact. (bsc#1100167) - CVE-2018-19432: Fixed a NULL pointer dereference in the function
sf_write_int in sndfile.c, which will lead to a denial of service.
(bsc#1116993) - CVE-2021-3246: Fixed a heap buffer overflow vulnerability in
msadpcm_decode_block. (bsc#1188540) - CVE-2018-19758: Fixed a heap-based buffer over-read at wav.c in
wav_write_header in libsndfile 1.0.28 that will cause a denial of
service. (bsc#1117954)
Patch Instructions:
To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
-
openSUSE Leap 15.3:
zypper in -t patch openSUSE-SLE-15.3-2021-2764=1
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE Leap | 15.3 | aarch64 | < - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): | - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):.aarch64.rpm | |
| openSUSE Leap | 15.3 | ppc64le | < - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): | - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):.ppc64le.rpm | |
| openSUSE Leap | 15.3 | s390x | < - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): | - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):.s390x.rpm | |
| openSUSE Leap | 15.3 | x86_64 | < - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): | - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64):.x86_64.rpm | |
| openSUSE Leap | 15.3 | x86_64 | < - openSUSE Leap 15.3 (x86_64): | - openSUSE Leap 15.3 (x86_64):.x86_64.rpm |
Related
nessus
nessus
openSUSE 15 Security Update : libsndfile (openSUSE-SU-2021:1166-1)
2021-08-20 00:00:00
SUSE SLED12 / SLES12 Security Update : libsndfile (SUSE-SU-2021:2615-1)
2021-08-06 00:00:00
openSUSE 15 Security Update : libsndfile (openSUSE-SU-2021:2764-1)
2021-08-18 00:00:00
openvas
openvas
openSUSE: Security Advisory for libsndfile (openSUSE-SU-2021:1166-1)
2021-08-20 00:00:00
openSUSE: Security Advisory for libsndfile (openSUSE-SU-2021:2764-1)
2021-08-18 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:2615-1)
2021-08-05 00:00:00
suse
suse
Security update for libsndfile (critical)
2021-08-19 00:00:00
cvelist
cvelist
debiancve
debiancve
nvd
nvd
cbl_mariner
cbl_mariner
CVE-2018-19758 affecting package libsndfile 1.0.28-14
2021-04-07 00:22:54
CVE-2018-19758 affecting package libsndfile 1.0.28-14
2021-04-07 00:22:54
CVE-2018-19432 affecting package libsndfile 1.0.28-14
2021-04-07 00:22:54
cve
cve
redhatcve
redhatcve
prion
prion
Heap overflow
2018-11-30 03:29:00
Null pointer dereference
2018-11-22 05:29:00
Stack overflow
2018-07-04 14:29:00
ubuntucve
ubuntucve
osv
osv
CVE-2018-19432
2018-11-22 05:29:00
libsndfile - security update
2019-01-10 00:00:00
CVE-2018-19758
2018-11-30 03:29:00
alpinelinux
alpinelinux
mageia
mageia
Updated libsndfile packages fix security vulnerability
2019-05-19 14:27:30
Updated libsndfile packages fix security vulnerability
2021-08-06 12:33:48
Updated libsndfile packages fix security vulnerabilities
2018-08-12 23:39:12
debian
debian
[SECURITY] [DLA 1632-1] libsndfile security update
2019-01-10 15:41:57
[SECURITY] [DLA 2722-1] libsndfile security update
2021-07-29 22:33:14
[SECURITY] [DSA 4947-1] libsndfile security update
2021-07-30 20:55:57
veracode
veracode
Denial Of Service (DoS) Via Out-of-bound(OOB) Reads
2018-11-23 02:44:31
Heap-based Buffer Over-read
2018-12-03 01:17:17
Denial Of Service (DoS)
2018-07-05 01:59:22
amazon
amazon
Medium: libsndfile
2020-06-16 18:01:00
Important: libsndfile
2021-10-04 20:17:00
redhat
redhat
(RHSA-2020:1185) Moderate: libsndfile security update
2020-03-31 09:29:33
(RHSA-2021:3298) Important: libsndfile security update
2021-08-30 07:58:18
(RHSA-2021:3295) Important: libsndfile security update
2021-08-30 07:55:02
oraclelinux
oraclelinux
libsndfile security update
2020-04-06 00:00:00
libsndfile security update
2021-08-24 00:00:00
libsndfile security update
2021-08-30 00:00:00
centos
centos
libsndfile security update
2020-04-08 18:38:36
libsndfile security update
2021-08-30 17:32:13
ubuntu
ubuntu
libsndfile vulnerability
2021-07-29 00:00:00
libsndfile vulnerability
2021-07-29 00:00:00
libsndfile vulnerabilities
2019-06-10 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: libsndfile-1.0.31-5.fc34.fc34
2021-08-16 01:17:19
[SECURITY] Fedora 33 Update: libsndfile-1.0.31-5.fc33.fc33
2021-08-19 01:11:04
rocky
rocky
libsndfile security update
2021-08-24 07:29:56
libsndfile security update
2020-04-28 08:59:15
freebsd
freebsd
libsndfile -- out-of-bounds read memory access
2019-02-14 00:00:00
almalinux
almalinux
Important: libsndfile security update
2021-08-24 07:29:56
Moderate: libsndfile security update
2020-04-28 08:59:15
gentoo
gentoo
libsndfile: Multiple Vulnerabilities
2023-09-29 00:00:00