libwavpack1-32bit-5.4.0-1.6 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2024:11505 Final 1 1 2024-06-17T21:45:33Z current 2024-06-17T21:45:33Z 2024-06-17T21:45:33Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z libwavpack1-32bit-5.4.0-1.6 on GA media These are all security issues fixed in the libwavpack1-32bit-5.4.0-1.6 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2024-11505 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) E-Mail link for openSUSE-SU-2024:11505 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2018-19840/ SUSE CVE CVE-2018-19840 page https://www.suse.com/security/cve/CVE-2018-19841/ SUSE CVE CVE-2018-19841 page https://www.suse.com/security/cve/CVE-2018-6767/ SUSE CVE CVE-2018-6767 page https://www.suse.com/security/cve/CVE-2018-7253/ SUSE CVE CVE-2018-7253 page https://www.suse.com/security/cve/CVE-2018-7254/ SUSE CVE CVE-2018-7254 page https://www.suse.com/security/cve/CVE-2019-1010315/ SUSE CVE CVE-2019-1010315 page https://www.suse.com/security/cve/CVE-2019-1010317/ SUSE CVE CVE-2019-1010317 page https://www.suse.com/security/cve/CVE-2019-1010318/ SUSE CVE CVE-2019-1010318 page https://www.suse.com/security/cve/CVE-2019-1010319/ SUSE CVE CVE-2019-1010319 page https://www.suse.com/security/cve/CVE-2019-11498/ SUSE CVE CVE-2019-11498 page https://www.suse.com/security/cve/CVE-2020-35738/ SUSE CVE CVE-2020-35738 page openSUSE Tumbleweed libwavpack1-5.4.0-1.6 libwavpack1-32bit-5.4.0-1.6 wavpack-5.4.0-1.6 wavpack-devel-5.4.0-1.6 libwavpack1-5.4.0-1.6 as a component of openSUSE Tumbleweed libwavpack1-32bit-5.4.0-1.6 as a component of openSUSE Tumbleweed wavpack-5.4.0-1.6 as a component of openSUSE Tumbleweed wavpack-devel-5.4.0-1.6 as a component of openSUSE Tumbleweed The function WavpackPackInit in pack_utils.c in libwavpack.a in WavPack through 5.1.0 allows attackers to cause a denial-of-service (resource exhaustion caused by an infinite loop) via a crafted wav audio file because WavpackSetConfiguration64 mishandles a sample rate of zero. CVE-2018-19840 openSUSE Tumbleweed:libwavpack1-32bit-5.4.0-1.6 openSUSE Tumbleweed:libwavpack1-5.4.0-1.6 openSUSE Tumbleweed:wavpack-5.4.0-1.6 openSUSE Tumbleweed:wavpack-devel-5.4.0-1.6 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-19840.html CVE-2018-19840 https://bugzilla.suse.com/1120930 SUSE Bug 1120930 The function WavpackVerifySingleBlock in open_utils.c in libwavpack.a in WavPack through 5.1.0 allows attackers to cause a denial-of-service (out-of-bounds read and application crash) via a crafted WavPack Lossless Audio file, as demonstrated by wvunpack. CVE-2018-19841 openSUSE Tumbleweed:libwavpack1-32bit-5.4.0-1.6 openSUSE Tumbleweed:libwavpack1-5.4.0-1.6 openSUSE Tumbleweed:wavpack-5.4.0-1.6 openSUSE Tumbleweed:wavpack-devel-5.4.0-1.6 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-19841.html CVE-2018-19841 https://bugzilla.suse.com/1120929 SUSE Bug 1120929 A stack-based buffer over-read in the ParseRiffHeaderConfig function of cli/riff.c file of WavPack 5.1.0 allows a remote attacker to cause a denial-of-service attack or possibly have unspecified other impact via a maliciously crafted RF64 file. CVE-2018-6767 openSUSE Tumbleweed:libwavpack1-32bit-5.4.0-1.6 openSUSE Tumbleweed:libwavpack1-5.4.0-1.6 openSUSE Tumbleweed:wavpack-5.4.0-1.6 openSUSE Tumbleweed:wavpack-devel-5.4.0-1.6 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-6767.html CVE-2018-6767 https://bugzilla.suse.com/1079746 SUSE Bug 1079746 The ParseDsdiffHeaderConfig function of the cli/dsdiff.c file of WavPack 5.1.0 allows a remote attacker to cause a denial-of-service (heap-based buffer over-read) or possibly overwrite the heap via a maliciously crafted DSDIFF file. CVE-2018-7253 openSUSE Tumbleweed:libwavpack1-32bit-5.4.0-1.6 openSUSE Tumbleweed:libwavpack1-5.4.0-1.6 openSUSE Tumbleweed:wavpack-5.4.0-1.6 openSUSE Tumbleweed:wavpack-devel-5.4.0-1.6 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7253.html CVE-2018-7253 https://bugzilla.suse.com/1081692 SUSE Bug 1081692 The ParseCaffHeaderConfig function of the cli/caff.c file of WavPack 5.1.0 allows a remote attacker to cause a denial-of-service (global buffer over-read), or possibly trigger a buffer overflow or incorrect memory allocation, via a maliciously crafted CAF file. CVE-2018-7254 openSUSE Tumbleweed:libwavpack1-32bit-5.4.0-1.6 openSUSE Tumbleweed:libwavpack1-5.4.0-1.6 openSUSE Tumbleweed:wavpack-5.4.0-1.6 openSUSE Tumbleweed:wavpack-devel-5.4.0-1.6 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2018-7254.html CVE-2018-7254 https://bugzilla.suse.com/1081693 SUSE Bug 1081693 WavPack 5.1 and earlier is affected by: CWE 369: Divide by Zero. The impact is: Divide by zero can lead to sudden crash of a software/service that tries to parse a .wav file. The component is: ParseDsdiffHeaderConfig (dsdiff.c:282). The attack vector is: Maliciously crafted .wav file. The fixed version is: After commit https://github.com/dbry/WavPack/commit/4c0faba32fddbd0745cbfaf1e1aeb3da5d35b9fc. CVE-2019-1010315 openSUSE Tumbleweed:libwavpack1-32bit-5.4.0-1.6 openSUSE Tumbleweed:libwavpack1-5.4.0-1.6 openSUSE Tumbleweed:wavpack-5.4.0-1.6 openSUSE Tumbleweed:wavpack-devel-5.4.0-1.6 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-1010315.html CVE-2019-1010315 https://bugzilla.suse.com/1141337 SUSE Bug 1141337 WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is: Unexpected control flow, crashes, and segfaults. The component is: ParseCaffHeaderConfig (caff.c:486). The attack vector is: Maliciously crafted .wav file. The fixed version is: After commit https://github.com/dbry/WavPack/commit/f68a9555b548306c5b1ee45199ccdc4a16a6101b. CVE-2019-1010317 openSUSE Tumbleweed:libwavpack1-32bit-5.4.0-1.6 openSUSE Tumbleweed:libwavpack1-5.4.0-1.6 openSUSE Tumbleweed:wavpack-5.4.0-1.6 openSUSE Tumbleweed:wavpack-devel-5.4.0-1.6 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-1010317.html CVE-2019-1010317 https://bugzilla.suse.com/1141339 SUSE Bug 1141339 ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-11498. Reason: This candidate is a reservation duplicate of CVE-2019-11498. Notes: All CVE users should reference CVE-2019-11498 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. CVE-2019-1010318 openSUSE Tumbleweed:libwavpack1-32bit-5.4.0-1.6 openSUSE Tumbleweed:libwavpack1-5.4.0-1.6 openSUSE Tumbleweed:wavpack-5.4.0-1.6 openSUSE Tumbleweed:wavpack-devel-5.4.0-1.6 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-1010318.html CVE-2019-1010318 https://bugzilla.suse.com/1141338 SUSE Bug 1141338 WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is: Unexpected control flow, crashes, and segfaults. The component is: ParseWave64HeaderConfig (wave64.c:211). The attack vector is: Maliciously crafted .wav file. The fixed version is: After commit https://github.com/dbry/WavPack/commit/33a0025d1d63ccd05d9dbaa6923d52b1446a62fe. CVE-2019-1010319 openSUSE Tumbleweed:libwavpack1-32bit-5.4.0-1.6 openSUSE Tumbleweed:libwavpack1-5.4.0-1.6 openSUSE Tumbleweed:wavpack-5.4.0-1.6 openSUSE Tumbleweed:wavpack-devel-5.4.0-1.6 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-1010319.html CVE-2019-1010319 https://bugzilla.suse.com/1141334 SUSE Bug 1141334 WavpackSetConfiguration64 in pack_utils.c in libwavpack.a in WavPack through 5.1.0 has a "Conditional jump or move depends on uninitialised value" condition, which might allow attackers to cause a denial of service (application crash) via a DFF file that lacks valid sample-rate data. CVE-2019-11498 openSUSE Tumbleweed:libwavpack1-32bit-5.4.0-1.6 openSUSE Tumbleweed:libwavpack1-5.4.0-1.6 openSUSE Tumbleweed:wavpack-5.4.0-1.6 openSUSE Tumbleweed:wavpack-devel-5.4.0-1.6 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2019-11498.html CVE-2019-11498 https://bugzilla.suse.com/1133384 SUSE Bug 1133384 WavPack 5.3.0 has an out-of-bounds write in WavpackPackSamples in pack_utils.c because of an integer overflow in a malloc argument. NOTE: some third-parties claim that there are later "unofficial" releases through 5.3.2, which are also affected. CVE-2020-35738 openSUSE Tumbleweed:libwavpack1-32bit-5.4.0-1.6 openSUSE Tumbleweed:libwavpack1-5.4.0-1.6 openSUSE Tumbleweed:wavpack-5.4.0-1.6 openSUSE Tumbleweed:wavpack-devel-5.4.0-1.6 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2020-35738.html CVE-2020-35738 https://bugzilla.suse.com/1180414 SUSE Bug 1180414