Security update for netcdf SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2021:3815-1 Final 1 1 2021-11-30T10:47:44Z current 2021-11-30T10:47:44Z 2021-11-30T10:47:44Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for netcdf This update for netcdf fixes the following issues: - Fixed multiple vulnerabilities in ezXML: CVE-2019-20007, CVE-2019-20006, CVE-2019-20201, CVE-2019-20202, CVE-2019-20199, CVE-2019-20200, CVE-2019-20198, CVE-2021-26221, CVE-2021-26222, CVE-2021-30485, CVE-2021-31229, CVE-2021-31347, CVE-2021-31348, CVE-2021-31598 (bsc#1191856) Note: * CVE-2021-26220 https://sourceforge.net/p/ezxml/bugs/23 not relevant for netcdf: code isn't used. * CVE-2019-20005 https://sourceforge.net/p/ezxml/bugs/14 Issue cannot be reproduced and no patch is available upstream. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2021-3815,SUSE-SLE-Product-HPC-15-SP1-ESPOS-2021-3815,SUSE-SLE-Product-HPC-15-SP1-LTSS-2021-3815 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2021/suse-su-20213815-1/ Link for SUSE-SU-2021:3815-1 https://lists.suse.com/pipermail/sle-security-updates/2021-November/009780.html E-Mail link for SUSE-SU-2021:3815-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1191856 SUSE Bug 1191856 https://www.suse.com/security/cve/CVE-2019-20005/ SUSE CVE CVE-2019-20005 page https://www.suse.com/security/cve/CVE-2019-20006/ SUSE CVE CVE-2019-20006 page https://www.suse.com/security/cve/CVE-2019-20007/ SUSE CVE CVE-2019-20007 page https://www.suse.com/security/cve/CVE-2019-20198/ SUSE CVE CVE-2019-20198 page https://www.suse.com/security/cve/CVE-2019-20199/ SUSE CVE CVE-2019-20199 page https://www.suse.com/security/cve/CVE-2019-20200/ SUSE CVE CVE-2019-20200 page https://www.suse.com/security/cve/CVE-2019-20201/ SUSE CVE CVE-2019-20201 page https://www.suse.com/security/cve/CVE-2019-20202/ SUSE CVE CVE-2019-20202 page https://www.suse.com/security/cve/CVE-2021-26220/ SUSE CVE CVE-2021-26220 page https://www.suse.com/security/cve/CVE-2021-26221/ SUSE CVE CVE-2021-26221 page https://www.suse.com/security/cve/CVE-2021-26222/ SUSE CVE CVE-2021-26222 page https://www.suse.com/security/cve/CVE-2021-30485/ SUSE CVE CVE-2021-30485 page https://www.suse.com/security/cve/CVE-2021-31229/ SUSE CVE CVE-2021-31229 page https://www.suse.com/security/cve/CVE-2021-31347/ SUSE CVE CVE-2021-31347 page https://www.suse.com/security/cve/CVE-2021-31348/ SUSE CVE CVE-2021-31348 page https://www.suse.com/security/cve/CVE-2021-31598/ SUSE CVE CVE-2021-31598 page SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS libnetcdf-gnu-hpc-4.6.1-10.7.2 libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 libnetcdf-gnu-openmpi1-hpc-4.6.1-10.7.2 libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-openmpi1-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 netcdf-gnu-hpc-4.6.1-10.7.2 netcdf-gnu-hpc-devel-4.6.1-10.7.2 netcdf-gnu-mpich-hpc-4.6.1-10.7.2 netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 netcdf-gnu-openmpi1-hpc-4.6.1-10.7.2 netcdf-gnu-openmpi1-hpc-devel-4.6.1-10.7.2 netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 netcdf_4_6_1-gnu-hpc-devel-data-4.6.1-10.7.2 netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi1-hpc-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi1-hpc-devel-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi1-hpc-devel-static-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 libnetcdf-gnu-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS netcdf-gnu-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS netcdf-gnu-hpc-devel-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS netcdf-gnu-mpich-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS libnetcdf-gnu-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS netcdf-gnu-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS netcdf-gnu-hpc-devel-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS netcdf-gnu-mpich-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 as a component of SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxml_decode, while parsing a crafted XML file, performs incorrect memory handling, leading to a heap-based buffer over-read while running strchr() starting with a pointer after a '\0' character (where the processing of a string was finished). CVE-2019-20005 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213815-1/ https://www.suse.com/security/cve/CVE-2019-20005.html CVE-2019-20005 https://bugzilla.suse.com/1191856 SUSE Bug 1191856 An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxml_char_content puts a pointer to the internal address of a larger block as xml->txt. This is later deallocated (using free), leading to a segmentation fault. CVE-2019-20006 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213815-1/ https://www.suse.com/security/cve/CVE-2019-20006.html CVE-2019-20006 https://bugzilla.suse.com/1191856 SUSE Bug 1191856 An issue was discovered in ezXML 0.8.2 through 0.8.6. The function ezxml_str2utf8, while parsing a crafted XML file, performs zero-length reallocation in ezxml.c, leading to returning a NULL pointer (in some compilers). After this, the function ezxml_parse_str does not check whether the s variable is not NULL in ezxml.c, leading to a NULL pointer dereference and crash (segmentation fault). CVE-2019-20007 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213815-1/ https://www.suse.com/security/cve/CVE-2019-20007.html CVE-2019-20007 https://bugzilla.suse.com/1191856 SUSE Bug 1191856 An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxml_ent_ok() mishandles recursion, leading to stack consumption for a crafted XML file. CVE-2019-20198 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213815-1/ https://www.suse.com/security/cve/CVE-2019-20198.html CVE-2019-20198 https://bugzilla.suse.com/1191856 SUSE Bug 1191856 An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxml_decode, while parsing a crafted XML file, performs incorrect memory handling, leading to NULL pointer dereference while running strlen() on a NULL pointer. CVE-2019-20199 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213815-1/ https://www.suse.com/security/cve/CVE-2019-20199.html CVE-2019-20199 https://bugzilla.suse.com/1191856 SUSE Bug 1191856 An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxml_decode, while parsing crafted a XML file, performs incorrect memory handling, leading to a heap-based buffer over-read in the "normalize line endings" feature. CVE-2019-20200 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213815-1/ https://www.suse.com/security/cve/CVE-2019-20200.html CVE-2019-20200 https://bugzilla.suse.com/1191856 SUSE Bug 1191856 An issue was discovered in ezXML 0.8.3 through 0.8.6. The ezxml_parse_* functions mishandle XML entities, leading to an infinite loop in which memory allocations occur. CVE-2019-20201 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213815-1/ https://www.suse.com/security/cve/CVE-2019-20201.html CVE-2019-20201 https://bugzilla.suse.com/1191856 SUSE Bug 1191856 An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxml_char_content() tries to use realloc on a block that was not allocated, leading to an invalid free and segmentation fault. CVE-2019-20202 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213815-1/ https://www.suse.com/security/cve/CVE-2019-20202.html CVE-2019-20202 https://bugzilla.suse.com/1191856 SUSE Bug 1191856 The ezxml_toxml function in ezxml 0.8.6 and earlier is vulnerable to OOB write when opening XML file after exhausting the memory pool. CVE-2021-26220 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 moderate 5.8 AV:N/AC:M/Au:N/C:N/I:P/A:P 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213815-1/ https://www.suse.com/security/cve/CVE-2021-26220.html CVE-2021-26220 https://bugzilla.suse.com/1191856 SUSE Bug 1191856 The ezxml_new function in ezXML 0.8.6 and earlier is vulnerable to OOB write when opening XML file after exhausting the memory pool. CVE-2021-26221 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 moderate 5.8 AV:N/AC:M/Au:N/C:N/I:P/A:P 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213815-1/ https://www.suse.com/security/cve/CVE-2021-26221.html CVE-2021-26221 https://bugzilla.suse.com/1191856 SUSE Bug 1191856 The ezxml_new function in ezXML 0.8.6 and earlier is vulnerable to OOB write when opening XML file after exhausting the memory pool. CVE-2021-26222 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 moderate 5.8 AV:N/AC:M/Au:N/C:N/I:P/A:P 6 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213815-1/ https://www.suse.com/security/cve/CVE-2021-26222.html CVE-2021-26222 https://bugzilla.suse.com/1191856 SUSE Bug 1191856 An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_internal_dtd(), while parsing a crafted XML file, performs incorrect memory handling, leading to a NULL pointer dereference while running strcmp() on a NULL pointer. CVE-2021-30485 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213815-1/ https://www.suse.com/security/cve/CVE-2021-30485.html CVE-2021-30485 https://bugzilla.suse.com/1191856 SUSE Bug 1191856 An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_internal_dtd() performs incorrect memory handling while parsing crafted XML files, which leads to an out-of-bounds write of a one byte constant. CVE-2021-31229 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213815-1/ https://www.suse.com/security/cve/CVE-2021-31229.html CVE-2021-31229 https://bugzilla.suse.com/1191856 SUSE Bug 1191856 An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_parse_str() performs incorrect memory handling while parsing crafted XML files (writing outside a memory region created by mmap). CVE-2021-31347 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213815-1/ https://www.suse.com/security/cve/CVE-2021-31347.html CVE-2021-31347 https://bugzilla.suse.com/1191856 SUSE Bug 1191856 An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_parse_str() performs incorrect memory handling while parsing crafted XML files (out-of-bounds read after a certain strcspn failure). CVE-2021-31348 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 moderate 4.3 AV:N/AC:M/Au:N/C:N/I:N/A:P 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213815-1/ https://www.suse.com/security/cve/CVE-2021-31348.html CVE-2021-31348 https://bugzilla.suse.com/1191856 SUSE Bug 1191856 An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxml_decode() performs incorrect memory handling while parsing crafted XML files, leading to a heap-based buffer overflow. CVE-2021-31598 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS:netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2021/suse-su-20213815-1/ https://www.suse.com/security/cve/CVE-2021-31598.html CVE-2021-31598 https://bugzilla.suse.com/1191856 SUSE Bug 1191856