Описание
Security update for libsndfile
This update for libsndfile fixes the following issues:
- CVE-2022-33065: Fixed an integer overflow that could cause memory safety issues when reading a MAT4 file (bsc#1213451).
Список пакетов
Container containers/milvus:2.4
libsndfile1-1.0.28-150000.5.20.1
Container containers/open-webui:0
libsndfile1-1.0.28-150000.5.20.1
SUSE Enterprise Storage 7.1
libsndfile-devel-1.0.28-150000.5.20.1
libsndfile1-1.0.28-150000.5.20.1
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
libsndfile-devel-1.0.28-150000.5.20.1
libsndfile1-1.0.28-150000.5.20.1
libsndfile1-32bit-1.0.28-150000.5.20.1
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
libsndfile-devel-1.0.28-150000.5.20.1
libsndfile1-1.0.28-150000.5.20.1
SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS
libsndfile-devel-1.0.28-150000.5.20.1
libsndfile1-1.0.28-150000.5.20.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
libsndfile-devel-1.0.28-150000.5.20.1
libsndfile1-1.0.28-150000.5.20.1
SUSE Linux Enterprise Module for Basesystem 15 SP4
libsndfile-devel-1.0.28-150000.5.20.1
libsndfile1-1.0.28-150000.5.20.1
SUSE Linux Enterprise Module for Basesystem 15 SP5
libsndfile-devel-1.0.28-150000.5.20.1
libsndfile1-1.0.28-150000.5.20.1
SUSE Linux Enterprise Module for Package Hub 15 SP4
libsndfile1-32bit-1.0.28-150000.5.20.1
SUSE Linux Enterprise Module for Package Hub 15 SP5
libsndfile1-32bit-1.0.28-150000.5.20.1
SUSE Linux Enterprise Server 15 SP1-LTSS
libsndfile-devel-1.0.28-150000.5.20.1
libsndfile1-1.0.28-150000.5.20.1
libsndfile1-32bit-1.0.28-150000.5.20.1
SUSE Linux Enterprise Server 15 SP2-LTSS
libsndfile-devel-1.0.28-150000.5.20.1
libsndfile1-1.0.28-150000.5.20.1
SUSE Linux Enterprise Server 15 SP3-LTSS
libsndfile-devel-1.0.28-150000.5.20.1
libsndfile1-1.0.28-150000.5.20.1
SUSE Linux Enterprise Server for SAP Applications 15 SP1
libsndfile-devel-1.0.28-150000.5.20.1
libsndfile1-1.0.28-150000.5.20.1
libsndfile1-32bit-1.0.28-150000.5.20.1
SUSE Linux Enterprise Server for SAP Applications 15 SP2
libsndfile-devel-1.0.28-150000.5.20.1
libsndfile1-1.0.28-150000.5.20.1
SUSE Linux Enterprise Server for SAP Applications 15 SP3
libsndfile-devel-1.0.28-150000.5.20.1
libsndfile1-1.0.28-150000.5.20.1
SUSE Manager Proxy 4.2
libsndfile-devel-1.0.28-150000.5.20.1
libsndfile1-1.0.28-150000.5.20.1
SUSE Manager Server 4.2
libsndfile-devel-1.0.28-150000.5.20.1
libsndfile1-1.0.28-150000.5.20.1
openSUSE Leap 15.4
libsndfile-devel-1.0.28-150000.5.20.1
libsndfile-progs-1.0.28-150000.5.20.1
libsndfile1-1.0.28-150000.5.20.1
libsndfile1-32bit-1.0.28-150000.5.20.1
openSUSE Leap 15.5
libsndfile-devel-1.0.28-150000.5.20.1
libsndfile-progs-1.0.28-150000.5.20.1
libsndfile1-1.0.28-150000.5.20.1
libsndfile1-32bit-1.0.28-150000.5.20.1
Ссылки
- Link for SUSE-SU-2023:4330-1
- E-Mail link for SUSE-SU-2023:4330-1
- SUSE Security Ratings
- SUSE Bug 1213451
- SUSE CVE CVE-2022-33065 page
Описание
Multiple signed integers overflow in function au_read_header in src/au.c and in functions mat4_open and mat4_read_header in src/mat4.c in Libsndfile, allows an attacker to cause Denial of Service or other unspecified impacts.
Затронутые продукты
Container containers/milvus:2.4:libsndfile1-1.0.28-150000.5.20.1
Container containers/open-webui:0:libsndfile1-1.0.28-150000.5.20.1
SUSE Enterprise Storage 7.1:libsndfile-devel-1.0.28-150000.5.20.1
SUSE Enterprise Storage 7.1:libsndfile1-1.0.28-150000.5.20.1
Ссылки
- CVE-2022-33065
- SUSE Bug 1213451
- SUSE Bug 1217517
- SUSE Bug 1217558
- SUSE Bug 1217605