libvorbis-devel-1.3.7-1.6 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:11009-1 Final 1 1 2024-06-15T00:00:00Z current 2024-06-15T00:00:00Z 2024-06-15T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z libvorbis-devel-1.3.7-1.6 on GA media These are all security issues fixed in the libvorbis-devel-1.3.7-1.6 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-11009 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2007-3106/ SUSE CVE CVE-2007-3106 page https://www.suse.com/security/cve/CVE-2008-1419/ SUSE CVE CVE-2008-1419 page https://www.suse.com/security/cve/CVE-2008-1423/ SUSE CVE CVE-2008-1423 page https://www.suse.com/security/cve/CVE-2017-14160/ SUSE CVE CVE-2017-14160 page https://www.suse.com/security/cve/CVE-2017-14632/ SUSE CVE CVE-2017-14632 page https://www.suse.com/security/cve/CVE-2017-14633/ SUSE CVE CVE-2017-14633 page https://www.suse.com/security/cve/CVE-2018-10392/ SUSE CVE CVE-2018-10392 page https://www.suse.com/security/cve/CVE-2018-10393/ SUSE CVE CVE-2018-10393 page https://www.suse.com/security/cve/CVE-2018-5146/ SUSE CVE CVE-2018-5146 page openSUSE Tumbleweed libvorbis-devel-1.3.7-1.6 libvorbis-devel-32bit-1.3.7-1.6 libvorbis0-1.3.7-1.6 libvorbis0-32bit-1.3.7-1.6 libvorbisenc2-1.3.7-1.6 libvorbisenc2-32bit-1.3.7-1.6 libvorbisfile3-1.3.7-1.6 libvorbisfile3-32bit-1.3.7-1.6 libvorbis-devel-1.3.7-1.6 as a component of openSUSE Tumbleweed libvorbis-devel-32bit-1.3.7-1.6 as a component of openSUSE Tumbleweed libvorbis0-1.3.7-1.6 as a component of openSUSE Tumbleweed libvorbis0-32bit-1.3.7-1.6 as a component of openSUSE Tumbleweed libvorbisenc2-1.3.7-1.6 as a component of openSUSE Tumbleweed libvorbisenc2-32bit-1.3.7-1.6 as a component of openSUSE Tumbleweed libvorbisfile3-1.3.7-1.6 as a component of openSUSE Tumbleweed libvorbisfile3-32bit-1.3.7-1.6 as a component of openSUSE Tumbleweed lib/info.c in libvorbis 1.1.2, and possibly other versions before 1.2.0, allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via invalid (1) blocksize_0 and (2) blocksize_1 values, which trigger a "heap overwrite" in the _01inverse function in res0.c. NOTE: this issue has been RECAST so that CVE-2007-4029 handles additional vectors. CVE-2007-3106 openSUSE Tumbleweed:libvorbis-devel-1.3.7-1.6 openSUSE Tumbleweed:libvorbis-devel-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbis0-1.3.7-1.6 openSUSE Tumbleweed:libvorbis0-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbisenc2-1.3.7-1.6 openSUSE Tumbleweed:libvorbisenc2-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbisfile3-1.3.7-1.6 openSUSE Tumbleweed:libvorbisfile3-32bit-1.3.7-1.6 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2007-3106.html CVE-2007-3106 https://bugzilla.suse.com/287124 SUSE Bug 287124 Xiph.org libvorbis 1.2.0 and earlier does not properly handle a zero value for codebook.dim, which allows remote attackers to cause a denial of service (crash or infinite loop) or trigger an integer overflow. CVE-2008-1419 openSUSE Tumbleweed:libvorbis-devel-1.3.7-1.6 openSUSE Tumbleweed:libvorbis-devel-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbis0-1.3.7-1.6 openSUSE Tumbleweed:libvorbis0-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbisenc2-1.3.7-1.6 openSUSE Tumbleweed:libvorbisenc2-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbisfile3-1.3.7-1.6 openSUSE Tumbleweed:libvorbisfile3-32bit-1.3.7-1.6 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2008-1419.html CVE-2008-1419 https://bugzilla.suse.com/372246 SUSE Bug 372246 Integer overflow in a certain quantvals and quantlist calculation in Xiph.org libvorbis 1.2.0 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted OGG file with a large virtual space for its codebook, which triggers a heap overflow. CVE-2008-1423 openSUSE Tumbleweed:libvorbis-devel-1.3.7-1.6 openSUSE Tumbleweed:libvorbis-devel-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbis0-1.3.7-1.6 openSUSE Tumbleweed:libvorbis0-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbisenc2-1.3.7-1.6 openSUSE Tumbleweed:libvorbisenc2-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbisfile3-1.3.7-1.6 openSUSE Tumbleweed:libvorbisfile3-32bit-1.3.7-1.6 moderate 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2008-1423.html CVE-2008-1423 https://bugzilla.suse.com/372246 SUSE Bug 372246 The bark_noise_hybridmp function in psy.c in Xiph.Org libvorbis 1.3.5 allows remote attackers to cause a denial of service (out-of-bounds access and application crash) or possibly have unspecified other impact via a crafted mp4 file. CVE-2017-14160 openSUSE Tumbleweed:libvorbis-devel-1.3.7-1.6 openSUSE Tumbleweed:libvorbis-devel-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbis0-1.3.7-1.6 openSUSE Tumbleweed:libvorbis0-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbisenc2-1.3.7-1.6 openSUSE Tumbleweed:libvorbisenc2-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbisfile3-1.3.7-1.6 openSUSE Tumbleweed:libvorbisfile3-32bit-1.3.7-1.6 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-14160.html CVE-2017-14160 https://bugzilla.suse.com/1059812 SUSE Bug 1059812 https://bugzilla.suse.com/1091072 SUSE Bug 1091072 Xiph.Org libvorbis 1.3.5 allows Remote Code Execution upon freeing uninitialized memory in the function vorbis_analysis_headerout() in info.c when vi->channels<=0, a similar issue to Mozilla bug 550184. CVE-2017-14632 openSUSE Tumbleweed:libvorbis-devel-1.3.7-1.6 openSUSE Tumbleweed:libvorbis-devel-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbis0-1.3.7-1.6 openSUSE Tumbleweed:libvorbis0-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbisenc2-1.3.7-1.6 openSUSE Tumbleweed:libvorbisenc2-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbisfile3-1.3.7-1.6 openSUSE Tumbleweed:libvorbisfile3-32bit-1.3.7-1.6 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-14632.html CVE-2017-14632 https://bugzilla.suse.com/1059809 SUSE Bug 1059809 In Xiph.Org libvorbis 1.3.5, an out-of-bounds array read vulnerability exists in the function mapping0_forward() in mapping0.c, which may lead to DoS when operating on a crafted audio file with vorbis_analysis(). CVE-2017-14633 openSUSE Tumbleweed:libvorbis-devel-1.3.7-1.6 openSUSE Tumbleweed:libvorbis-devel-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbis0-1.3.7-1.6 openSUSE Tumbleweed:libvorbis0-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbisenc2-1.3.7-1.6 openSUSE Tumbleweed:libvorbisenc2-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbisfile3-1.3.7-1.6 openSUSE Tumbleweed:libvorbisfile3-32bit-1.3.7-1.6 moderate 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2017-14633.html CVE-2017-14633 https://bugzilla.suse.com/1059811 SUSE Bug 1059811 https://bugzilla.suse.com/1081833 SUSE Bug 1081833 mapping0_forward in mapping0.c in Xiph.Org libvorbis 1.3.6 does not validate the number of channels, which allows remote attackers to cause a denial of service (heap-based buffer overflow or over-read) or possibly have unspecified other impact via a crafted file. CVE-2018-10392 openSUSE Tumbleweed:libvorbis-devel-1.3.7-1.6 openSUSE Tumbleweed:libvorbis-devel-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbis0-1.3.7-1.6 openSUSE Tumbleweed:libvorbis0-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbisenc2-1.3.7-1.6 openSUSE Tumbleweed:libvorbisenc2-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbisfile3-1.3.7-1.6 openSUSE Tumbleweed:libvorbisfile3-32bit-1.3.7-1.6 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-10392.html CVE-2018-10392 https://bugzilla.suse.com/1091070 SUSE Bug 1091070 bark_noise_hybridmp in psy.c in Xiph.Org libvorbis 1.3.6 has a stack-based buffer over-read. CVE-2018-10393 openSUSE Tumbleweed:libvorbis-devel-1.3.7-1.6 openSUSE Tumbleweed:libvorbis-devel-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbis0-1.3.7-1.6 openSUSE Tumbleweed:libvorbis0-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbisenc2-1.3.7-1.6 openSUSE Tumbleweed:libvorbisenc2-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbisfile3-1.3.7-1.6 openSUSE Tumbleweed:libvorbisfile3-32bit-1.3.7-1.6 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-10393.html CVE-2018-10393 https://bugzilla.suse.com/1091072 SUSE Bug 1091072 An out of bounds memory write while processing Vorbis audio data was reported through the Pwn2Own contest. This vulnerability affects Firefox < 59.0.1, Firefox ESR < 52.7.2, and Thunderbird < 52.7. CVE-2018-5146 openSUSE Tumbleweed:libvorbis-devel-1.3.7-1.6 openSUSE Tumbleweed:libvorbis-devel-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbis0-1.3.7-1.6 openSUSE Tumbleweed:libvorbis0-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbisenc2-1.3.7-1.6 openSUSE Tumbleweed:libvorbisenc2-32bit-1.3.7-1.6 openSUSE Tumbleweed:libvorbisfile3-1.3.7-1.6 openSUSE Tumbleweed:libvorbisfile3-32bit-1.3.7-1.6 important 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-5146.html CVE-2018-5146 https://bugzilla.suse.com/1085671 SUSE Bug 1085671 https://bugzilla.suse.com/1085687 SUSE Bug 1085687 https://bugzilla.suse.com/1180395 SUSE Bug 1180395