Vulnerability-Lookup

CVE-2025-52194 (GCVE-0-2025-52194)

Vulnerability from cvelistv5 – Published: 2025-08-21 00:00 – Updated: 2025-08-21 19:56

Summary

A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions when processing malformed IRCAM audio files. The vulnerability occurs in the ircam_read_header function at src/ircam.c:164 during sample rate processing, leading to memory corruption and potential code execution.

Severity

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

Assigner

mitre

References

3 references

URL	Tags
https://github.com/libsndfile/libsndfile/issues/1082
https://github.com/libsndfile
https://bushido-sec.com/index.php/2025/08/08/libs…

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 7.5,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2025-52194",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-08-21T19:55:51.782461Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-121",
                "description": "CWE-121 Stack-based Buffer Overflow",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-08-21T19:56:46.362Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions when processing malformed IRCAM audio files. The vulnerability occurs in the ircam_read_header function at src/ircam.c:164 during sample rate processing, leading to memory corruption and potential code execution."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-08-21T14:23:41.760Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "url": "https://github.com/libsndfile/libsndfile/issues/1082"
        },
        {
          "url": "https://github.com/libsndfile"
        },
        {
          "url": "https://bushido-sec.com/index.php/2025/08/08/libsndfile-buffer-overflow/"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2025-52194",
    "datePublished": "2025-08-21T00:00:00.000Z",
    "dateReserved": "2025-06-16T00:00:00.000Z",
    "dateUpdated": "2025-08-21T19:56:46.362Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2025-52194",
      "date": "2026-05-26",
      "epss": "0.00321",
      "percentile": "0.55191"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-52194\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2025-08-21T15:15:33.110\",\"lastModified\":\"2025-09-11T18:17:03.153\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions when processing malformed IRCAM audio files. The vulnerability occurs in the ircam_read_header function at src/ircam.c:164 during sample rate processing, leading to memory corruption and potential code execution.\"},{\"lang\":\"es\",\"value\":\"Existe una vulnerabilidad de desbordamiento de b\u00fafer en libsndfile versi\u00f3n 1.2.2 y posiblemente versiones anteriores al procesar archivos de audio IRCAM malformados. La vulnerabilidad se produce en la funci\u00f3n ircam_read_header en src/ircam.c:164 durante el procesamiento de la frecuencia de muestreo, lo que provoca corrupci\u00f3n de memoria y posible ejecuci\u00f3n de c\u00f3digo.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-121\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:libsndfile_project:libsndfile:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.2.2\",\"matchCriteriaId\":\"9E71DB9F-FE9E-4369-8473-8D7B860D03DE\"}]}]}],\"references\":[{\"url\":\"https://bushido-sec.com/index.php/2025/08/08/libsndfile-buffer-overflow/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Broken Link\"]},{\"url\":\"https://github.com/libsndfile\",\"source\":\"cve@mitre.org\",\"tags\":[\"Product\"]},{\"url\":\"https://github.com/libsndfile/libsndfile/issues/1082\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Issue Tracking\",\"Patch\",\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-52194\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-08-21T19:55:51.782461Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-121\", \"description\": \"CWE-121 Stack-based Buffer Overflow\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-08-21T19:56:24.144Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"n/a\", \"product\": \"n/a\", \"versions\": [{\"status\": \"affected\", \"version\": \"n/a\"}]}], \"references\": [{\"url\": \"https://github.com/libsndfile/libsndfile/issues/1082\"}, {\"url\": \"https://github.com/libsndfile\"}, {\"url\": \"https://bushido-sec.com/index.php/2025/08/08/libsndfile-buffer-overflow/\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions when processing malformed IRCAM audio files. The vulnerability occurs in the ircam_read_header function at src/ircam.c:164 during sample rate processing, leading to memory corruption and potential code execution.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"n/a\"}]}], \"providerMetadata\": {\"orgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"shortName\": \"mitre\", \"dateUpdated\": \"2025-08-21T14:23:41.760Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2025-52194\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-08-21T19:56:46.362Z\", \"dateReserved\": \"2025-06-16T00:00:00.000Z\", \"assignerOrgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"datePublished\": \"2025-08-21T00:00:00.000Z\", \"assignerShortName\": \"mitre\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

CERTFR-2025-AVI-0938

Vulnerability from certfr_avis - Published: 2025-10-30 - Updated: 2025-10-30

De multiples vulnérabilités ont été découvertes dans les produits VMware. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
VMware	Tanzu	Tanzu pour Postgres versions antérieures à 4.3.1 sur Kubernetes
VMware	Tanzu Greenplum	Tanzu Greenplum versions antérieures à 6.31.0
VMware	Tanzu	Tanzu pour Postgres versions antérieures à 13.22.0, 14.19.0, 15.14.0, 16.10.0 et 17.6.0
VMware	Tanzu Greenplum	Tanzu Greenplum versions antérieures à 7.6.0

References

Title

Publication Time

CERTFR-2025-AVI-0938

Vulnerability from certfr_avis - Published: 2025-10-30 - Updated: 2025-10-30

De multiples vulnérabilités ont été découvertes dans les produits VMware. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
VMware	Tanzu	Tanzu pour Postgres versions antérieures à 4.3.1 sur Kubernetes
VMware	Tanzu Greenplum	Tanzu Greenplum versions antérieures à 6.31.0
VMware	Tanzu	Tanzu pour Postgres versions antérieures à 13.22.0, 14.19.0, 15.14.0, 16.10.0 et 17.6.0
VMware	Tanzu Greenplum	Tanzu Greenplum versions antérieures à 7.6.0

References

Title

Publication Time

FKIE_CVE-2025-52194

Vulnerability from fkie_nvd - Published: 2025-08-21 15:15 - Updated: 2025-09-11 18:17

Severity

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Summary

References

URL	Tags
cve@mitre.org	https://bushido-sec.com/index.php/2025/08/08/libsndfile-buffer-overflow/	Broken Link
cve@mitre.org	https://github.com/libsndfile	Product
cve@mitre.org	https://github.com/libsndfile/libsndfile/issues/1082	Exploit, Issue Tracking, Patch, Vendor Advisory

Impacted products

	Vendor	Product	Version
	libsndfile_project	libsndfile	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:libsndfile_project:libsndfile:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9E71DB9F-FE9E-4369-8473-8D7B860D03DE",
              "versionEndIncluding": "1.2.2",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions when processing malformed IRCAM audio files. The vulnerability occurs in the ircam_read_header function at src/ircam.c:164 during sample rate processing, leading to memory corruption and potential code execution."
    },
    {
      "lang": "es",
      "value": "Existe una vulnerabilidad de desbordamiento de b\u00fafer en libsndfile versi\u00f3n 1.2.2 y posiblemente versiones anteriores al procesar archivos de audio IRCAM malformados. La vulnerabilidad se produce en la funci\u00f3n ircam_read_header en src/ircam.c:164 durante el procesamiento de la frecuencia de muestreo, lo que provoca corrupci\u00f3n de memoria y posible ejecuci\u00f3n de c\u00f3digo."
    }
  ],
  "id": "CVE-2025-52194",
  "lastModified": "2025-09-11T18:17:03.153",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2025-08-21T15:15:33.110",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Broken Link"
      ],
      "url": "https://bushido-sec.com/index.php/2025/08/08/libsndfile-buffer-overflow/"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Product"
      ],
      "url": "https://github.com/libsndfile"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Issue Tracking",
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://github.com/libsndfile/libsndfile/issues/1082"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-121"
        }
      ],
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "type": "Secondary"
    }
  ]
}

GHSA-3W6G-VV96-4PH6

Vulnerability from github – Published: 2025-08-21 15:30 – Updated: 2025-08-21 21:32

Details

Severity

7.5 (High)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2025-52194"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-121"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-08-21T15:15:33Z",
    "severity": "HIGH"
  },
  "details": "A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions when processing malformed IRCAM audio files. The vulnerability occurs in the ircam_read_header function at src/ircam.c:164 during sample rate processing, leading to memory corruption and potential code execution.",
  "id": "GHSA-3w6g-vv96-4ph6",
  "modified": "2025-08-21T21:32:04Z",
  "published": "2025-08-21T15:30:35Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-52194"
    },
    {
      "type": "WEB",
      "url": "https://github.com/libsndfile/libsndfile/issues/1082"
    },
    {
      "type": "WEB",
      "url": "https://bushido-sec.com/index.php/2025/08/08/libsndfile-buffer-overflow"
    },
    {
      "type": "WEB",
      "url": "https://github.com/libsndfile"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
      "type": "CVSS_V3"
    }
  ]
}

MSRC_CVE-2025-52194

Vulnerability from csaf_microsoft - Published: 2025-08-02 00:00 - Updated: 2026-02-18 14:05

Summary

Notes

Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle

Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.

CVE-2025-52194

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-121 - Stack-based Buffer Overflow

Affected products

Known affected 4 products

Product	Version	Remediation
Unresolved product id: 17086-3	—	None Available
Unresolved product id: 17084-4	—	None Available
Unresolved product id: 17086-2	—	None Available
Unresolved product id: 17084-1	—	None Available

References

4 references

URL	Category
https://msrc.microsoft.com/csaf/vex/2025/msrc_cve…	self
https://support.microsoft.com/lifecycle	external
https://www.first.org/cvss	external
https://msrc.microsoft.com/csaf/vex/2025/msrc_cve…	self

JSON

To clipboard

{
  "document": {
    "category": "csaf_vex",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Public",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en-US",
    "notes": [
      {
        "category": "general",
        "text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
        "title": "Additional Resources"
      },
      {
        "category": "legal_disclaimer",
        "text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
        "title": "Disclaimer"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "secure@microsoft.com",
      "name": "Microsoft Security Response Center",
      "namespace": "https://msrc.microsoft.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "CVE-2025-52194 A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions when processing malformed IRCAM audio files. The vulnerability occurs in the ircam_read_header function at src/ircam.c:164 during sample rate processing, leading to memory corruption and potential code execution. - VEX",
        "url": "https://msrc.microsoft.com/csaf/vex/2025/msrc_cve-2025-52194.json"
      },
      {
        "category": "external",
        "summary": "Microsoft Support Lifecycle",
        "url": "https://support.microsoft.com/lifecycle"
      },
      {
        "category": "external",
        "summary": "Common Vulnerability Scoring System",
        "url": "https://www.first.org/cvss"
      }
    ],
    "title": "A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions when processing malformed IRCAM audio files. The vulnerability occurs in the ircam_read_header function at src/ircam.c:164 during sample rate processing, leading to memory corruption and potential code execution.",
    "tracking": {
      "current_release_date": "2026-02-18T14:05:25.000Z",
      "generator": {
        "date": "2026-02-24T08:07:46.162Z",
        "engine": {
          "name": "MSRC Generator",
          "version": "1.0"
        }
      },
      "id": "msrc_CVE-2025-52194",
      "initial_release_date": "2025-08-02T00:00:00.000Z",
      "revision_history": [
        {
          "date": "2025-09-03T23:34:47.000Z",
          "legacy_version": "1",
          "number": "1",
          "summary": "Information published."
        },
        {
          "date": "2026-02-18T14:05:25.000Z",
          "legacy_version": "2",
          "number": "2",
          "summary": "Information published."
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "2.0",
                "product": {
                  "name": "CBL Mariner 2.0",
                  "product_id": "17086"
                }
              },
              {
                "category": "product_version",
                "name": "3.0",
                "product": {
                  "name": "Azure Linux 3.0",
                  "product_id": "17084"
                }
              }
            ],
            "category": "product_name",
            "name": "Azure Linux"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "cbl2 libsndfile 1.0.31-3",
                "product": {
                  "name": "cbl2 libsndfile 1.0.31-3",
                  "product_id": "3"
                }
              },
              {
                "category": "product_version_range",
                "name": "azl3 libsndfile 1.2.2-3",
                "product": {
                  "name": "azl3 libsndfile 1.2.2-3",
                  "product_id": "4"
                }
              },
              {
                "category": "product_version_range",
                "name": "cbl2 libsndfile 1.0.31-4",
                "product": {
                  "name": "cbl2 libsndfile 1.0.31-4",
                  "product_id": "2"
                }
              },
              {
                "category": "product_version_range",
                "name": "azl3 libsndfile 1.2.2-4",
                "product": {
                  "name": "azl3 libsndfile 1.2.2-4",
                  "product_id": "1"
                }
              }
            ],
            "category": "product_name",
            "name": "libsndfile"
          }
        ],
        "category": "vendor",
        "name": "Microsoft"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cbl2 libsndfile 1.0.31-3 as a component of CBL Mariner 2.0",
          "product_id": "17086-3"
        },
        "product_reference": "3",
        "relates_to_product_reference": "17086"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "azl3 libsndfile 1.2.2-3 as a component of Azure Linux 3.0",
          "product_id": "17084-4"
        },
        "product_reference": "4",
        "relates_to_product_reference": "17084"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cbl2 libsndfile 1.0.31-4 as a component of CBL Mariner 2.0",
          "product_id": "17086-2"
        },
        "product_reference": "2",
        "relates_to_product_reference": "17086"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "azl3 libsndfile 1.2.2-4 as a component of Azure Linux 3.0",
          "product_id": "17084-1"
        },
        "product_reference": "1",
        "relates_to_product_reference": "17084"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-52194",
      "cwe": {
        "id": "CWE-121",
        "name": "Stack-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "general",
          "text": "mitre",
          "title": "Assigning CNA"
        }
      ],
      "product_status": {
        "known_affected": [
          "17086-3",
          "17084-4",
          "17086-2",
          "17084-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2025-52194 A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions when processing malformed IRCAM audio files. The vulnerability occurs in the ircam_read_header function at src/ircam.c:164 during sample rate processing, leading to memory corruption and potential code execution. - VEX",
          "url": "https://msrc.microsoft.com/csaf/vex/2025/msrc_cve-2025-52194.json"
        }
      ],
      "remediations": [
        {
          "category": "none_available",
          "date": "2025-09-03T23:34:47.000Z",
          "details": "There is no fix available for this vulnerability as of now",
          "product_ids": [
            "17086-3"
          ]
        },
        {
          "category": "none_available",
          "date": "2025-09-03T23:34:47.000Z",
          "details": "There is no fix available for this vulnerability as of now",
          "product_ids": [
            "17084-4"
          ]
        },
        {
          "category": "none_available",
          "date": "2025-09-03T23:34:47.000Z",
          "details": "There is no fix available for this vulnerability as of now",
          "product_ids": [
            "17086-2"
          ]
        },
        {
          "category": "none_available",
          "date": "2025-09-03T23:34:47.000Z",
          "details": "There is no fix available for this vulnerability as of now",
          "product_ids": [
            "17084-1"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "environmentalsScore": 0.0,
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "temporalScore": 7.5,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "17086-3",
            "17084-4",
            "17086-2",
            "17084-1"
          ]
        }
      ],
      "title": "A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions when processing malformed IRCAM audio files. The vulnerability occurs in the ircam_read_header function at src/ircam.c:164 during sample rate processing, leading to memory corruption and potential code execution."
    }
  ]
}

OPENSUSE-SU-2026:10730-1

Vulnerability from csaf_opensuse - Published: 2026-05-08 00:00 - Updated: 2026-05-08 00:00

Summary

libsndfile-devel-1.2.2-5.1 on GA media

Severity

Moderate

Notes

Title of the patch: libsndfile-devel-1.2.2-5.1 on GA media

Description of the patch: These are all security issues fixed in the libsndfile-devel-1.2.2-5.1 package on the GA media of openSUSE Tumbleweed.

Patchnames: openSUSE-Tumbleweed-2026-10730

CVE-2025-52194

8.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2026-37555

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 12 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.x86_64	—	Vendor Fix

Threats

Impact important

References

8 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://www.suse.com/security/cve/CVE-2025-52194/	self
https://www.suse.com/security/cve/CVE-2026-37555/	self
https://www.suse.com/security/cve/CVE-2025-52194	external
https://bugzilla.suse.com/1248458	external
https://www.suse.com/security/cve/CVE-2026-37555	external
https://bugzilla.suse.com/1263695	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "libsndfile-devel-1.2.2-5.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the libsndfile-devel-1.2.2-5.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2026-10730",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2026_10730-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-52194 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-52194/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-37555 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-37555/"
      }
    ],
    "title": "libsndfile-devel-1.2.2-5.1 on GA media",
    "tracking": {
      "current_release_date": "2026-05-08T00:00:00Z",
      "generator": {
        "date": "2026-05-08T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2026:10730-1",
      "initial_release_date": "2026-05-08T00:00:00Z",
      "revision_history": [
        {
          "date": "2026-05-08T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libsndfile-devel-1.2.2-5.1.aarch64",
                "product": {
                  "name": "libsndfile-devel-1.2.2-5.1.aarch64",
                  "product_id": "libsndfile-devel-1.2.2-5.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-1.2.2-5.1.aarch64",
                "product": {
                  "name": "libsndfile1-1.2.2-5.1.aarch64",
                  "product_id": "libsndfile1-1.2.2-5.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-32bit-1.2.2-5.1.aarch64",
                "product": {
                  "name": "libsndfile1-32bit-1.2.2-5.1.aarch64",
                  "product_id": "libsndfile1-32bit-1.2.2-5.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libsndfile-devel-1.2.2-5.1.ppc64le",
                "product": {
                  "name": "libsndfile-devel-1.2.2-5.1.ppc64le",
                  "product_id": "libsndfile-devel-1.2.2-5.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-1.2.2-5.1.ppc64le",
                "product": {
                  "name": "libsndfile1-1.2.2-5.1.ppc64le",
                  "product_id": "libsndfile1-1.2.2-5.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-32bit-1.2.2-5.1.ppc64le",
                "product": {
                  "name": "libsndfile1-32bit-1.2.2-5.1.ppc64le",
                  "product_id": "libsndfile1-32bit-1.2.2-5.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libsndfile-devel-1.2.2-5.1.s390x",
                "product": {
                  "name": "libsndfile-devel-1.2.2-5.1.s390x",
                  "product_id": "libsndfile-devel-1.2.2-5.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-1.2.2-5.1.s390x",
                "product": {
                  "name": "libsndfile1-1.2.2-5.1.s390x",
                  "product_id": "libsndfile1-1.2.2-5.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-32bit-1.2.2-5.1.s390x",
                "product": {
                  "name": "libsndfile1-32bit-1.2.2-5.1.s390x",
                  "product_id": "libsndfile1-32bit-1.2.2-5.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libsndfile-devel-1.2.2-5.1.x86_64",
                "product": {
                  "name": "libsndfile-devel-1.2.2-5.1.x86_64",
                  "product_id": "libsndfile-devel-1.2.2-5.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-1.2.2-5.1.x86_64",
                "product": {
                  "name": "libsndfile1-1.2.2-5.1.x86_64",
                  "product_id": "libsndfile1-1.2.2-5.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-32bit-1.2.2-5.1.x86_64",
                "product": {
                  "name": "libsndfile1-32bit-1.2.2-5.1.x86_64",
                  "product_id": "libsndfile1-32bit-1.2.2-5.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.2.2-5.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.aarch64"
        },
        "product_reference": "libsndfile-devel-1.2.2-5.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.2.2-5.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.ppc64le"
        },
        "product_reference": "libsndfile-devel-1.2.2-5.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.2.2-5.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.s390x"
        },
        "product_reference": "libsndfile-devel-1.2.2-5.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.2.2-5.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.x86_64"
        },
        "product_reference": "libsndfile-devel-1.2.2-5.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.2.2-5.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.aarch64"
        },
        "product_reference": "libsndfile1-1.2.2-5.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.2.2-5.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.ppc64le"
        },
        "product_reference": "libsndfile1-1.2.2-5.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.2.2-5.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.s390x"
        },
        "product_reference": "libsndfile1-1.2.2-5.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.2.2-5.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.x86_64"
        },
        "product_reference": "libsndfile1-1.2.2-5.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-32bit-1.2.2-5.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.aarch64"
        },
        "product_reference": "libsndfile1-32bit-1.2.2-5.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-32bit-1.2.2-5.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.ppc64le"
        },
        "product_reference": "libsndfile1-32bit-1.2.2-5.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-32bit-1.2.2-5.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.s390x"
        },
        "product_reference": "libsndfile1-32bit-1.2.2-5.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-32bit-1.2.2-5.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.x86_64"
        },
        "product_reference": "libsndfile1-32bit-1.2.2-5.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-52194",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-52194"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions when processing malformed IRCAM audio files. The vulnerability occurs in the ircam_read_header function at src/ircam.c:164 during sample rate processing, leading to memory corruption and potential code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.aarch64",
          "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.ppc64le",
          "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.s390x",
          "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.x86_64",
          "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.aarch64",
          "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.ppc64le",
          "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.s390x",
          "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.x86_64",
          "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.aarch64",
          "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.ppc64le",
          "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.s390x",
          "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-52194",
          "url": "https://www.suse.com/security/cve/CVE-2025-52194"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1248458 for CVE-2025-52194",
          "url": "https://bugzilla.suse.com/1248458"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.aarch64",
            "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.ppc64le",
            "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.s390x",
            "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.x86_64",
            "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.aarch64",
            "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.ppc64le",
            "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.s390x",
            "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.x86_64",
            "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.aarch64",
            "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.ppc64le",
            "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.s390x",
            "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.aarch64",
            "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.ppc64le",
            "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.s390x",
            "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.x86_64",
            "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.aarch64",
            "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.ppc64le",
            "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.s390x",
            "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.x86_64",
            "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.aarch64",
            "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.ppc64le",
            "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.s390x",
            "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-05-08T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2025-52194"
    },
    {
      "cve": "CVE-2026-37555",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-37555"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in libsndfile 1.2.2 IMA ADPCM codec. The AIFF code path (line 241) was fixed with (sf_count_t) cast, but the WAV code path (line 235) and close path (line 167) were not. When samplesperblock (int) * blocks (int) exceeds INT_MAX, the 32-bit multiplication overflows before being assigned to sf.frames (sf_count_t/int64). With samplesperblock=50000 and blocks=50000, the product 2500000000 overflows to -1794967296. This causes incorrect frame count leading to heap buffer overflow or denial of service. Both values come from the WAV file header and are attacker-controlled. This issue was discovered after an incomplete fix for CVE-2022-33065.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.aarch64",
          "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.ppc64le",
          "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.s390x",
          "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.x86_64",
          "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.aarch64",
          "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.ppc64le",
          "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.s390x",
          "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.x86_64",
          "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.aarch64",
          "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.ppc64le",
          "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.s390x",
          "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-37555",
          "url": "https://www.suse.com/security/cve/CVE-2026-37555"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1263695 for CVE-2026-37555",
          "url": "https://bugzilla.suse.com/1263695"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.aarch64",
            "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.ppc64le",
            "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.s390x",
            "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.x86_64",
            "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.aarch64",
            "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.ppc64le",
            "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.s390x",
            "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.x86_64",
            "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.aarch64",
            "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.ppc64le",
            "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.s390x",
            "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.aarch64",
            "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.ppc64le",
            "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.s390x",
            "openSUSE Tumbleweed:libsndfile-devel-1.2.2-5.1.x86_64",
            "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.aarch64",
            "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.ppc64le",
            "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.s390x",
            "openSUSE Tumbleweed:libsndfile1-1.2.2-5.1.x86_64",
            "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.aarch64",
            "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.ppc64le",
            "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.s390x",
            "openSUSE Tumbleweed:libsndfile1-32bit-1.2.2-5.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-05-08T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2026-37555"
    }
  ]
}

SUSE-SU-2026:1968-1

Vulnerability from csaf_suse - Published: 2026-05-18 08:14 - Updated: 2026-05-18 08:14

Summary

Security update for libsndfile

Severity

Important

Notes

Title of the patch: Security update for libsndfile

Description of the patch: This update for libsndfile fixes the following issues - CVE-2025-52194: buffer overflow in the ircam_read_header function of file src/ircam.c when processing malformed IRCAM audio files (bsc#1248458). - CVE-2026-37555: IMA-ADPCM integer overflow (bsc#1263695).

Patchnames: SUSE-2026-1968,SUSE-SLE-Module-Basesystem-15-SP7-2026-1968,SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1968,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-1968,SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-1968,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-1968,SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-1968,SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-1968,SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-1968,SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-1968,SUSE-SLE-Product-SLES_SAP-15-SP4-2026-1968,SUSE-SLE-Product-SLES_SAP-15-SP5-2026-1968,SUSE-SLE-Product-SLES_SAP-15-SP6-2026-1968

CVE-2025-52194

8.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

Affected products

Recommended 61 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile1-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile1-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:libsndfile1-32bit-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile1-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile1-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile1-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2026-37555

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 61 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile1-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile1-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Package Hub 15 SP7:libsndfile1-32bit-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile1-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile1-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile-devel-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile1-1.0.28-150000.5.23.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile1-1.0.28-150000.5.23.1.x86_64	—	Vendor Fix

Threats

Impact important

References

12 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-updates/2026…	self
https://bugzilla.suse.com/1248458	self
https://bugzilla.suse.com/1263695	self
https://www.suse.com/security/cve/CVE-2025-52194/	self
https://www.suse.com/security/cve/CVE-2026-37555/	self
https://www.suse.com/security/cve/CVE-2025-52194	external
https://bugzilla.suse.com/1248458	external
https://www.suse.com/security/cve/CVE-2026-37555	external
https://bugzilla.suse.com/1263695	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for libsndfile",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for libsndfile fixes the following issues\n\n- CVE-2025-52194: buffer overflow in the ircam_read_header function of file src/ircam.c when processing malformed IRCAM\n  audio files (bsc#1248458).\n- CVE-2026-37555: IMA-ADPCM integer overflow (bsc#1263695).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2026-1968,SUSE-SLE-Module-Basesystem-15-SP7-2026-1968,SUSE-SLE-Module-Packagehub-Subpackages-15-SP7-2026-1968,SUSE-SLE-Product-HPC-15-SP4-ESPOS-2026-1968,SUSE-SLE-Product-HPC-15-SP4-LTSS-2026-1968,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-1968,SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-1968,SUSE-SLE-Product-SLES-15-SP4-LTSS-2026-1968,SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-1968,SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-1968,SUSE-SLE-Product-SLES_SAP-15-SP4-2026-1968,SUSE-SLE-Product-SLES_SAP-15-SP5-2026-1968,SUSE-SLE-Product-SLES_SAP-15-SP6-2026-1968",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_1968-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2026:1968-1",
        "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261968-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2026:1968-1",
        "url": "https://lists.suse.com/pipermail/sle-updates/2026-May/046556.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1248458",
        "url": "https://bugzilla.suse.com/1248458"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1263695",
        "url": "https://bugzilla.suse.com/1263695"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-52194 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-52194/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-37555 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-37555/"
      }
    ],
    "title": "Security update for libsndfile",
    "tracking": {
      "current_release_date": "2026-05-18T08:14:45Z",
      "generator": {
        "date": "2026-05-18T08:14:45Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2026:1968-1",
      "initial_release_date": "2026-05-18T08:14:45Z",
      "revision_history": [
        {
          "date": "2026-05-18T08:14:45Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
                "product": {
                  "name": "libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
                  "product_id": "libsndfile-devel-1.0.28-150000.5.23.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile-progs-1.0.28-150000.5.23.1.aarch64",
                "product": {
                  "name": "libsndfile-progs-1.0.28-150000.5.23.1.aarch64",
                  "product_id": "libsndfile-progs-1.0.28-150000.5.23.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-1.0.28-150000.5.23.1.aarch64",
                "product": {
                  "name": "libsndfile1-1.0.28-150000.5.23.1.aarch64",
                  "product_id": "libsndfile1-1.0.28-150000.5.23.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libsndfile1-64bit-1.0.28-150000.5.23.1.aarch64_ilp32",
                "product": {
                  "name": "libsndfile1-64bit-1.0.28-150000.5.23.1.aarch64_ilp32",
                  "product_id": "libsndfile1-64bit-1.0.28-150000.5.23.1.aarch64_ilp32"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64_ilp32"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libsndfile-devel-1.0.28-150000.5.23.1.i586",
                "product": {
                  "name": "libsndfile-devel-1.0.28-150000.5.23.1.i586",
                  "product_id": "libsndfile-devel-1.0.28-150000.5.23.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile-progs-1.0.28-150000.5.23.1.i586",
                "product": {
                  "name": "libsndfile-progs-1.0.28-150000.5.23.1.i586",
                  "product_id": "libsndfile-progs-1.0.28-150000.5.23.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-1.0.28-150000.5.23.1.i586",
                "product": {
                  "name": "libsndfile1-1.0.28-150000.5.23.1.i586",
                  "product_id": "libsndfile1-1.0.28-150000.5.23.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
                "product": {
                  "name": "libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
                  "product_id": "libsndfile-devel-1.0.28-150000.5.23.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile-progs-1.0.28-150000.5.23.1.ppc64le",
                "product": {
                  "name": "libsndfile-progs-1.0.28-150000.5.23.1.ppc64le",
                  "product_id": "libsndfile-progs-1.0.28-150000.5.23.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-1.0.28-150000.5.23.1.ppc64le",
                "product": {
                  "name": "libsndfile1-1.0.28-150000.5.23.1.ppc64le",
                  "product_id": "libsndfile1-1.0.28-150000.5.23.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libsndfile-devel-1.0.28-150000.5.23.1.s390x",
                "product": {
                  "name": "libsndfile-devel-1.0.28-150000.5.23.1.s390x",
                  "product_id": "libsndfile-devel-1.0.28-150000.5.23.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile-progs-1.0.28-150000.5.23.1.s390x",
                "product": {
                  "name": "libsndfile-progs-1.0.28-150000.5.23.1.s390x",
                  "product_id": "libsndfile-progs-1.0.28-150000.5.23.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-1.0.28-150000.5.23.1.s390x",
                "product": {
                  "name": "libsndfile1-1.0.28-150000.5.23.1.s390x",
                  "product_id": "libsndfile1-1.0.28-150000.5.23.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
                "product": {
                  "name": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
                  "product_id": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile-progs-1.0.28-150000.5.23.1.x86_64",
                "product": {
                  "name": "libsndfile-progs-1.0.28-150000.5.23.1.x86_64",
                  "product_id": "libsndfile-progs-1.0.28-150000.5.23.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-1.0.28-150000.5.23.1.x86_64",
                "product": {
                  "name": "libsndfile1-1.0.28-150000.5.23.1.x86_64",
                  "product_id": "libsndfile1-1.0.28-150000.5.23.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-32bit-1.0.28-150000.5.23.1.x86_64",
                "product": {
                  "name": "libsndfile1-32bit-1.0.28-150000.5.23.1.x86_64",
                  "product_id": "libsndfile1-32bit-1.0.28-150000.5.23.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
                  "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
                  "product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:packagehub:15:sp7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp5"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp5"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15 SP4-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:15:sp4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15 SP5-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:15:sp5"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15 SP6-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:15:sp6"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:15:sp4"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:15:sp5"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:15:sp6"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.aarch64"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.s390x"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.aarch64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.aarch64"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.ppc64le as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.ppc64le"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.s390x as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.s390x"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise Module for Basesystem 15 SP7",
          "product_id": "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Basesystem 15 SP7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-32bit-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP7",
          "product_id": "SUSE Linux Enterprise Module for Package Hub 15 SP7:libsndfile1-32bit-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile1-32bit-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Package Hub 15 SP7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile1-1.0.28-150000.5.23.1.aarch64"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile1-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile1-1.0.28-150000.5.23.1.aarch64"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile1-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.s390x as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP4-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP4-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.s390x as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.s390x as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP6-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP6-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile-devel-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile1-1.0.28-150000.5.23.1.ppc64le"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP4",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile1-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile-devel-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile1-1.0.28-150000.5.23.1.ppc64le"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile1-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile-devel-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile1-1.0.28-150000.5.23.1.ppc64le"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.28-150000.5.23.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP6",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile1-1.0.28-150000.5.23.1.x86_64"
        },
        "product_reference": "libsndfile1-1.0.28-150000.5.23.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP6"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-52194",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-52194"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions when processing malformed IRCAM audio files. The vulnerability occurs in the ircam_read_header function at src/ircam.c:164 during sample rate processing, leading to memory corruption and potential code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Module for Package Hub 15 SP7:libsndfile1-32bit-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
          "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x",
          "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
          "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x",
          "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
          "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x",
          "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile1-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile1-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile1-1.0.28-150000.5.23.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-52194",
          "url": "https://www.suse.com/security/cve/CVE-2025-52194"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1248458 for CVE-2025-52194",
          "url": "https://bugzilla.suse.com/1248458"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Module for Package Hub 15 SP7:libsndfile1-32bit-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile1-1.0.28-150000.5.23.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Module for Package Hub 15 SP7:libsndfile1-32bit-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile1-1.0.28-150000.5.23.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-05-18T08:14:45Z",
          "details": "important"
        }
      ],
      "title": "CVE-2025-52194"
    },
    {
      "cve": "CVE-2026-37555",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-37555"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in libsndfile 1.2.2 IMA ADPCM codec. The AIFF code path (line 241) was fixed with (sf_count_t) cast, but the WAV code path (line 235) and close path (line 167) were not. When samplesperblock (int) * blocks (int) exceeds INT_MAX, the 32-bit multiplication overflows before being assigned to sf.frames (sf_count_t/int64). With samplesperblock=50000 and blocks=50000, the product 2500000000 overflows to -1794967296. This causes incorrect frame count leading to heap buffer overflow or denial of service. Both values come from the WAV file header and are attacker-controlled. This issue was discovered after an incomplete fix for CVE-2022-33065.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.s390x",
          "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Module for Package Hub 15 SP7:libsndfile1-32bit-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
          "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x",
          "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
          "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x",
          "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
          "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x",
          "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile1-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile1-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile1-1.0.28-150000.5.23.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-37555",
          "url": "https://www.suse.com/security/cve/CVE-2026-37555"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1263695 for CVE-2026-37555",
          "url": "https://bugzilla.suse.com/1263695"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Module for Package Hub 15 SP7:libsndfile1-32bit-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile1-1.0.28-150000.5.23.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Module for Basesystem 15 SP7:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Module for Package Hub 15 SP7:libsndfile1-32bit-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP4-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP5-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.s390x",
            "SUSE Linux Enterprise Server 15 SP6-LTSS:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP4:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP5:libsndfile1-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile-devel-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile-devel-1.0.28-150000.5.23.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile1-1.0.28-150000.5.23.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP6:libsndfile1-1.0.28-150000.5.23.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-05-18T08:14:45Z",
          "details": "important"
        }
      ],
      "title": "CVE-2026-37555"
    }
  ]
}

SUSE-SU-2026:1969-1

Vulnerability from csaf_suse - Published: 2026-05-18 08:15 - Updated: 2026-05-18 08:15

Summary

Security update for libsndfile

Severity

Important

Notes

Title of the patch: Security update for libsndfile

Patchnames: SUSE-2026-1969,SUSE-SLE-SERVER-12-SP5-LTSS-2026-1969,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-1969

CVE-2025-52194

8.2 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

Affected products

Recommended 13 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-32bit-1.0.25-36.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-32bit-1.0.25-36.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile-devel-1.0.25-36.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile1-1.0.25-36.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile1-32bit-1.0.25-36.32.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2026-37555

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 13 products

Product	Version	Remediation
Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-32bit-1.0.25-36.32.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-32bit-1.0.25-36.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile-devel-1.0.25-36.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile1-1.0.25-36.32.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile1-32bit-1.0.25-36.32.1.x86_64	—	Vendor Fix

Threats

Impact important

References

12 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-updates/2026…	self
https://bugzilla.suse.com/1248458	self
https://bugzilla.suse.com/1263695	self
https://www.suse.com/security/cve/CVE-2025-52194/	self
https://www.suse.com/security/cve/CVE-2026-37555/	self
https://www.suse.com/security/cve/CVE-2025-52194	external
https://bugzilla.suse.com/1248458	external
https://www.suse.com/security/cve/CVE-2026-37555	external
https://bugzilla.suse.com/1263695	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for libsndfile",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for libsndfile fixes the following issues\n\n- CVE-2025-52194: buffer overflow in the ircam_read_header function of file src/ircam.c when processing malformed IRCAM\n  audio files (bsc#1248458).\n- CVE-2026-37555: IMA-ADPCM integer overflow (bsc#1263695).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2026-1969,SUSE-SLE-SERVER-12-SP5-LTSS-2026-1969,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2026-1969",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_1969-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2026:1969-1",
        "url": "https://www.suse.com/support/update/announcement/2026/suse-su-20261969-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2026:1969-1",
        "url": "https://lists.suse.com/pipermail/sle-updates/2026-May/046555.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1248458",
        "url": "https://bugzilla.suse.com/1248458"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1263695",
        "url": "https://bugzilla.suse.com/1263695"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2025-52194 page",
        "url": "https://www.suse.com/security/cve/CVE-2025-52194/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2026-37555 page",
        "url": "https://www.suse.com/security/cve/CVE-2026-37555/"
      }
    ],
    "title": "Security update for libsndfile",
    "tracking": {
      "current_release_date": "2026-05-18T08:15:08Z",
      "generator": {
        "date": "2026-05-18T08:15:08Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2026:1969-1",
      "initial_release_date": "2026-05-18T08:15:08Z",
      "revision_history": [
        {
          "date": "2026-05-18T08:15:08Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libsndfile-devel-1.0.25-36.32.1.aarch64",
                "product": {
                  "name": "libsndfile-devel-1.0.25-36.32.1.aarch64",
                  "product_id": "libsndfile-devel-1.0.25-36.32.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile-progs-1.0.25-36.32.1.aarch64",
                "product": {
                  "name": "libsndfile-progs-1.0.25-36.32.1.aarch64",
                  "product_id": "libsndfile-progs-1.0.25-36.32.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-1.0.25-36.32.1.aarch64",
                "product": {
                  "name": "libsndfile1-1.0.25-36.32.1.aarch64",
                  "product_id": "libsndfile1-1.0.25-36.32.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libsndfile1-64bit-1.0.25-36.32.1.aarch64_ilp32",
                "product": {
                  "name": "libsndfile1-64bit-1.0.25-36.32.1.aarch64_ilp32",
                  "product_id": "libsndfile1-64bit-1.0.25-36.32.1.aarch64_ilp32"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64_ilp32"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libsndfile-devel-1.0.25-36.32.1.i586",
                "product": {
                  "name": "libsndfile-devel-1.0.25-36.32.1.i586",
                  "product_id": "libsndfile-devel-1.0.25-36.32.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile-progs-1.0.25-36.32.1.i586",
                "product": {
                  "name": "libsndfile-progs-1.0.25-36.32.1.i586",
                  "product_id": "libsndfile-progs-1.0.25-36.32.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-1.0.25-36.32.1.i586",
                "product": {
                  "name": "libsndfile1-1.0.25-36.32.1.i586",
                  "product_id": "libsndfile1-1.0.25-36.32.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libsndfile-devel-1.0.25-36.32.1.ppc64le",
                "product": {
                  "name": "libsndfile-devel-1.0.25-36.32.1.ppc64le",
                  "product_id": "libsndfile-devel-1.0.25-36.32.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile-progs-1.0.25-36.32.1.ppc64le",
                "product": {
                  "name": "libsndfile-progs-1.0.25-36.32.1.ppc64le",
                  "product_id": "libsndfile-progs-1.0.25-36.32.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-1.0.25-36.32.1.ppc64le",
                "product": {
                  "name": "libsndfile1-1.0.25-36.32.1.ppc64le",
                  "product_id": "libsndfile1-1.0.25-36.32.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libsndfile-devel-1.0.25-36.32.1.s390",
                "product": {
                  "name": "libsndfile-devel-1.0.25-36.32.1.s390",
                  "product_id": "libsndfile-devel-1.0.25-36.32.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile-progs-1.0.25-36.32.1.s390",
                "product": {
                  "name": "libsndfile-progs-1.0.25-36.32.1.s390",
                  "product_id": "libsndfile-progs-1.0.25-36.32.1.s390"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-1.0.25-36.32.1.s390",
                "product": {
                  "name": "libsndfile1-1.0.25-36.32.1.s390",
                  "product_id": "libsndfile1-1.0.25-36.32.1.s390"
                }
              }
            ],
            "category": "architecture",
            "name": "s390"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libsndfile-devel-1.0.25-36.32.1.s390x",
                "product": {
                  "name": "libsndfile-devel-1.0.25-36.32.1.s390x",
                  "product_id": "libsndfile-devel-1.0.25-36.32.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile-progs-1.0.25-36.32.1.s390x",
                "product": {
                  "name": "libsndfile-progs-1.0.25-36.32.1.s390x",
                  "product_id": "libsndfile-progs-1.0.25-36.32.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-1.0.25-36.32.1.s390x",
                "product": {
                  "name": "libsndfile1-1.0.25-36.32.1.s390x",
                  "product_id": "libsndfile1-1.0.25-36.32.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-32bit-1.0.25-36.32.1.s390x",
                "product": {
                  "name": "libsndfile1-32bit-1.0.25-36.32.1.s390x",
                  "product_id": "libsndfile1-32bit-1.0.25-36.32.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "libsndfile-devel-1.0.25-36.32.1.x86_64",
                "product": {
                  "name": "libsndfile-devel-1.0.25-36.32.1.x86_64",
                  "product_id": "libsndfile-devel-1.0.25-36.32.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile-progs-1.0.25-36.32.1.x86_64",
                "product": {
                  "name": "libsndfile-progs-1.0.25-36.32.1.x86_64",
                  "product_id": "libsndfile-progs-1.0.25-36.32.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-1.0.25-36.32.1.x86_64",
                "product": {
                  "name": "libsndfile1-1.0.25-36.32.1.x86_64",
                  "product_id": "libsndfile1-1.0.25-36.32.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "libsndfile1-32bit-1.0.25-36.32.1.x86_64",
                "product": {
                  "name": "libsndfile1-32bit-1.0.25-36.32.1.x86_64",
                  "product_id": "libsndfile1-32bit-1.0.25-36.32.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 12 SP5-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 12 SP5-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:12:sp5"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
                "product": {
                  "name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
                  "product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss-extended-security:12:sp5"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.25-36.32.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.aarch64"
        },
        "product_reference": "libsndfile-devel-1.0.25-36.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.25-36.32.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.ppc64le"
        },
        "product_reference": "libsndfile-devel-1.0.25-36.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.25-36.32.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.s390x"
        },
        "product_reference": "libsndfile-devel-1.0.25-36.32.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.25-36.32.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.x86_64"
        },
        "product_reference": "libsndfile-devel-1.0.25-36.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.25-36.32.1.aarch64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.aarch64"
        },
        "product_reference": "libsndfile1-1.0.25-36.32.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.25-36.32.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.ppc64le"
        },
        "product_reference": "libsndfile1-1.0.25-36.32.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.25-36.32.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.s390x"
        },
        "product_reference": "libsndfile1-1.0.25-36.32.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.25-36.32.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.x86_64"
        },
        "product_reference": "libsndfile1-1.0.25-36.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-32bit-1.0.25-36.32.1.s390x as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-32bit-1.0.25-36.32.1.s390x"
        },
        "product_reference": "libsndfile1-32bit-1.0.25-36.32.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-32bit-1.0.25-36.32.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5-LTSS",
          "product_id": "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-32bit-1.0.25-36.32.1.x86_64"
        },
        "product_reference": "libsndfile1-32bit-1.0.25-36.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile-devel-1.0.25-36.32.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
          "product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile-devel-1.0.25-36.32.1.x86_64"
        },
        "product_reference": "libsndfile-devel-1.0.25-36.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-1.0.25-36.32.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
          "product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile1-1.0.25-36.32.1.x86_64"
        },
        "product_reference": "libsndfile1-1.0.25-36.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "libsndfile1-32bit-1.0.25-36.32.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
          "product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile1-32bit-1.0.25-36.32.1.x86_64"
        },
        "product_reference": "libsndfile1-32bit-1.0.25-36.32.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-52194",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2025-52194"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions when processing malformed IRCAM audio files. The vulnerability occurs in the ircam_read_header function at src/ircam.c:164 during sample rate processing, leading to memory corruption and potential code execution.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-32bit-1.0.25-36.32.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-32bit-1.0.25-36.32.1.x86_64",
          "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile-devel-1.0.25-36.32.1.x86_64",
          "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile1-1.0.25-36.32.1.x86_64",
          "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile1-32bit-1.0.25-36.32.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2025-52194",
          "url": "https://www.suse.com/security/cve/CVE-2025-52194"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1248458 for CVE-2025-52194",
          "url": "https://bugzilla.suse.com/1248458"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-32bit-1.0.25-36.32.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-32bit-1.0.25-36.32.1.x86_64",
            "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile-devel-1.0.25-36.32.1.x86_64",
            "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile1-1.0.25-36.32.1.x86_64",
            "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile1-32bit-1.0.25-36.32.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-32bit-1.0.25-36.32.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-32bit-1.0.25-36.32.1.x86_64",
            "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile-devel-1.0.25-36.32.1.x86_64",
            "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile1-1.0.25-36.32.1.x86_64",
            "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile1-32bit-1.0.25-36.32.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-05-18T08:15:08Z",
          "details": "important"
        }
      ],
      "title": "CVE-2025-52194"
    },
    {
      "cve": "CVE-2026-37555",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2026-37555"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in libsndfile 1.2.2 IMA ADPCM codec. The AIFF code path (line 241) was fixed with (sf_count_t) cast, but the WAV code path (line 235) and close path (line 167) were not. When samplesperblock (int) * blocks (int) exceeds INT_MAX, the 32-bit multiplication overflows before being assigned to sf.frames (sf_count_t/int64). With samplesperblock=50000 and blocks=50000, the product 2500000000 overflows to -1794967296. This causes incorrect frame count leading to heap buffer overflow or denial of service. Both values come from the WAV file header and are attacker-controlled. This issue was discovered after an incomplete fix for CVE-2022-33065.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.aarch64",
          "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.ppc64le",
          "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.x86_64",
          "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-32bit-1.0.25-36.32.1.s390x",
          "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-32bit-1.0.25-36.32.1.x86_64",
          "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile-devel-1.0.25-36.32.1.x86_64",
          "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile1-1.0.25-36.32.1.x86_64",
          "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile1-32bit-1.0.25-36.32.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2026-37555",
          "url": "https://www.suse.com/security/cve/CVE-2026-37555"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1263695 for CVE-2026-37555",
          "url": "https://bugzilla.suse.com/1263695"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-32bit-1.0.25-36.32.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-32bit-1.0.25-36.32.1.x86_64",
            "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile-devel-1.0.25-36.32.1.x86_64",
            "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile1-1.0.25-36.32.1.x86_64",
            "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile1-32bit-1.0.25-36.32.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile-devel-1.0.25-36.32.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.aarch64",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.ppc64le",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-1.0.25-36.32.1.x86_64",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-32bit-1.0.25-36.32.1.s390x",
            "SUSE Linux Enterprise Server 12 SP5-LTSS:libsndfile1-32bit-1.0.25-36.32.1.x86_64",
            "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile-devel-1.0.25-36.32.1.x86_64",
            "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile1-1.0.25-36.32.1.x86_64",
            "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:libsndfile1-32bit-1.0.25-36.32.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2026-05-18T08:15:08Z",
          "details": "important"
        }
      ],
      "title": "CVE-2026-37555"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-52194 (GCVE-0-2025-52194)

Solutions

Solutions

Tags

Sightings

Nomenclature