Security update for libsndfile SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2018:0388-1 Final 1 1 2018-02-07T19:31:10Z current 2018-02-07T19:31:10Z 2018-02-07T19:31:10Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for libsndfile This update for libsndfile fixes the following issues: - CVE-2017-16942: Divide-by-zero in the function wav_w64_read_fmt_chunk(), which may lead to Denial of service (bsc#1069874). - CVE-2017-6892: Fixed an out-of-bounds read memory access in the aiff_read_chanmap() (bsc#1043978). - CVE-2017-14634: In libsndfile 1.0.28, a divide-by-zero error exists in the function double64_init() in double64.c, which may lead to DoS when playing a crafted audio file. (bsc#1059911) - CVE-2017-14245: An out of bounds read in the function d2alaw_array() in alaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of the NAN and INFINITY floating-point values. (bsc#1059912) - CVE-2017-14246: An out of bounds read in the function d2ulaw_array() in ulaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of the NAN and INFINITY floating-point values.(bsc#1059913) This update was imported from the SUSE:SLE-12:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-updates/2018-02/msg00018.html E-Mail link for openSUSE-SU-2018:0388-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.3 libsndfile-1.0.25-31.1 libsndfile-devel-1.0.25-31.1 libsndfile-progs-1.0.25-31.1 libsndfile1-1.0.25-31.1 libsndfile1-32bit-1.0.25-31.1 libsndfile-1.0.25-31.1 as a component of openSUSE Leap 42.3 libsndfile-devel-1.0.25-31.1 as a component of openSUSE Leap 42.3 libsndfile-progs-1.0.25-31.1 as a component of openSUSE Leap 42.3 libsndfile1-1.0.25-31.1 as a component of openSUSE Leap 42.3 libsndfile1-32bit-1.0.25-31.1 as a component of openSUSE Leap 42.3 An out of bounds read in the function d2alaw_array() in alaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of the NAN and INFINITY floating-point values. CVE-2017-14245 openSUSE Leap 42.3:libsndfile-1.0.25-31.1 openSUSE Leap 42.3:libsndfile-devel-1.0.25-31.1 openSUSE Leap 42.3:libsndfile-progs-1.0.25-31.1 openSUSE Leap 42.3:libsndfile1-1.0.25-31.1 openSUSE Leap 42.3:libsndfile1-32bit-1.0.25-31.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-02/msg00018.html https://www.suse.com/security/cve/CVE-2017-14245.html CVE-2017-14245 https://bugzilla.suse.com/1059912 SUSE Bug 1059912 https://bugzilla.suse.com/1071777 SUSE Bug 1071777 An out of bounds read in the function d2ulaw_array() in ulaw.c of libsndfile 1.0.28 may lead to a remote DoS attack or information disclosure, related to mishandling of the NAN and INFINITY floating-point values. CVE-2017-14246 openSUSE Leap 42.3:libsndfile-1.0.25-31.1 openSUSE Leap 42.3:libsndfile-devel-1.0.25-31.1 openSUSE Leap 42.3:libsndfile-progs-1.0.25-31.1 openSUSE Leap 42.3:libsndfile1-1.0.25-31.1 openSUSE Leap 42.3:libsndfile1-32bit-1.0.25-31.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-02/msg00018.html https://www.suse.com/security/cve/CVE-2017-14246.html CVE-2017-14246 https://bugzilla.suse.com/1059913 SUSE Bug 1059913 https://bugzilla.suse.com/1071767 SUSE Bug 1071767 In libsndfile 1.0.28, a divide-by-zero error exists in the function double64_init() in double64.c, which may lead to DoS when playing a crafted audio file. CVE-2017-14634 openSUSE Leap 42.3:libsndfile-1.0.25-31.1 openSUSE Leap 42.3:libsndfile-devel-1.0.25-31.1 openSUSE Leap 42.3:libsndfile-progs-1.0.25-31.1 openSUSE Leap 42.3:libsndfile1-1.0.25-31.1 openSUSE Leap 42.3:libsndfile1-32bit-1.0.25-31.1 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-02/msg00018.html https://www.suse.com/security/cve/CVE-2017-14634.html CVE-2017-14634 https://bugzilla.suse.com/1059911 SUSE Bug 1059911 In libsndfile 1.0.25 (fixed in 1.0.26), a divide-by-zero error exists in the function wav_w64_read_fmt_chunk() in wav_w64.c, which may lead to DoS when playing a crafted audio file. CVE-2017-16942 openSUSE Leap 42.3:libsndfile-1.0.25-31.1 openSUSE Leap 42.3:libsndfile-devel-1.0.25-31.1 openSUSE Leap 42.3:libsndfile-progs-1.0.25-31.1 openSUSE Leap 42.3:libsndfile1-1.0.25-31.1 openSUSE Leap 42.3:libsndfile1-32bit-1.0.25-31.1 moderate 4.9 AV:L/AC:L/Au:N/C:N/I:N/A:C Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-02/msg00018.html https://www.suse.com/security/cve/CVE-2017-16942.html CVE-2017-16942 https://bugzilla.suse.com/1069874 SUSE Bug 1069874 In libsndfile version 1.0.28, an error in the "aiff_read_chanmap()" function (aiff.c) can be exploited to cause an out-of-bounds read memory access via a specially crafted AIFF file. CVE-2017-6892 openSUSE Leap 42.3:libsndfile-1.0.25-31.1 openSUSE Leap 42.3:libsndfile-devel-1.0.25-31.1 openSUSE Leap 42.3:libsndfile-progs-1.0.25-31.1 openSUSE Leap 42.3:libsndfile1-1.0.25-31.1 openSUSE Leap 42.3:libsndfile1-32bit-1.0.25-31.1 moderate Please Install the update. https://lists.opensuse.org/opensuse-updates/2018-02/msg00018.html https://www.suse.com/security/cve/CVE-2017-6892.html CVE-2017-6892 https://bugzilla.suse.com/1043978 SUSE Bug 1043978