Test Kennung:	1.3.6.1.4.1.25623.1.0.851833
Kategorie:	SuSE Local Security Checks
Titel:	openSUSE: Security Advisory for libsndfile (openSUSE-SU-2018:2214-1)
Zusammenfassung:	The remote host is missing an update for the 'libsndfile'; package(s) announced via the referenced advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'libsndfile' package(s) announced via the referenced advisory. Vulnerability Insight: This update for libsndfile fixes the following issues: Security issues fixed: - CVE-2018-13139: Fix a stack-based buffer overflow in psf_memset in common.c that allows remote attackers to cause a denial of service (bsc#1100167). - CVE-2017-17456: Prevent segmentation fault in the function d2alaw_array() that may have lead to a remote DoS (bsc#1071777) - CVE-2017-17457: Prevent segmentation fault in the function d2ulaw_array() that may have lead to a remote DoS, a different vulnerability than CVE-2017-14246 (bsc#1071767) This update was imported from the SUSE:SLE-12:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or 'zypper patch'. Alternatively you can run the command listed for your product: - openSUSE Leap 42.3: zypper in -t patch openSUSE-2018-804=1 Affected Software/OS: libsndfile on openSUSE Leap 42.3 Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-17456 Common Vulnerability Exposure (CVE) ID: CVE-2017-17457 Common Vulnerability Exposure (CVE) ID: CVE-2018-13139 Common Vulnerability Exposure (CVE) ID: CVE-2017-14246
Copyright	Copyright (C) 2018 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.