Stay Vigilant with Timely Linux Security Advisories

security advisoryupdateimportant

SUSE: 2024:3144-1 Important: HDF5, NetCDF, Trilinos Security Fixes

* bsc#1011205 * bsc#1093641 * bsc#1125882 * bsc#1133222 * bsc#1167400 . # Security update for hdf5, netcdf, trilinos Announcement ID: SUSE-SU-2024:3144-1 Rating: important References: * bsc#1011205 * bsc#1093641 * bsc#1125882 * bsc#1133222 * bsc#1167400 * bsc#1207973 * bsc#1209548 * bsc#1210049 * bsc#1224158 Cross-References: * CVE-2016-4332 * CVE-2017-17507 * CVE-2018-11202 * CVE-2018-11205 * CVE-2019-8396 * CVE-2020-10812 * CVE-2021-37501 * CVE-2024-29158 * CVE-2024-29161 * CVE-2024-29166 * CVE-2024-32608 * CVE-2024-32610 * CVE-2024-32614 * CVE-2024-32619 * CVE-2024-32620 * CVE-2024-33873 * CVE-2024-33874 * CVE-2024-33875 CVSS scores: * CVE-2016-4332 ( NVD ): 8.6 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H * CVE-2017-17507 ( SUSE ): 4.4 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L * CVE-2017-17507 ( NVD ): 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2018-11202 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2018-11202 ( NVD ): 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2018-11205 ( SUSE ): 5.1 CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L * CVE-2018-11205 ( NVD ): 8.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H * CVE-2019-8396 ( SUSE ): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2019-8396 ( NVD ): 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2020-10812 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L * CVE-2020-10812 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2021-37501 ( SUSE ): 6.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H * CVE-2021-37501 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-29158 ( SUSE ): 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2024-29161 ( SUSE ): 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2024-29166 ( SUSE ): 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2024-32608 ( SUSE ): 5.7CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2024-32610 ( SUSE ): 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2024-32614 ( SUSE ): 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2024-32619 ( SUSE ): 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2024-32620 ( SUSE ): 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2024-33873 ( SUSE ): 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2024-33874 ( SUSE ): 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2024-33875 ( SUSE ): 5.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H Affected Products: * openSUSE Leap 15.3 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 An update that solves 18 vulnerabilities can now be installed. ## Description: This update for hdf5, netcdf, trilinos fixes the following issues: hdf5 was updated from version 1.10.8 to 1.10.11: * Security issues fixed: * CVE-2019-8396: Fixed problems with malformed HDF5 files where content does not match expected size. (bsc#1125882) * CVE-2018-11202: Fixed that a malformed file could result in chunk index memory leaks. (bsc#1093641) * CVE-2016-4332: Fixed an assertion in a previous fix for this issue (bsc#1011205). * CVE-2020-10812: Fixed a segfault on file close in h5debug which fails with a core dump on a file that has an illegal file size in its cache image.Fixes HDFFV-11052, (bsc#1167400). * CVE-2021-37501: Fixed buffer overflow in hdf5-h5dump (bsc#1207973) * Other security issues fixed (bsc#1224158): * CVE-2024-29158, CVE-2024-29161, CVE-2024-29166, CVE-2024-32608, * CVE-2024-32610, CVE-2024-32614, CVE-2024-32619, CVE-2024-32620, * CVE-2024-33873, CVE-2024-33874, CVE-2024-33875 * Additionally, these fixes resolve crashes triggered by the reproducers for CVE-2017-17507, CVE-2018-11205. These crashes appear to be unrelated to the original problems * Other issues fixed: * Removetimestamp/buildhost/kernel version from libhdf5.settings (bsc#1209548) * Changed the error handling for a not found path in the find plugin process. * Fixed a file space allocation bug in the parallel library for chunked datasets. * Fixed an assertion failure in Parallel HDF5 when a file can't be created due to an invalid library version bounds setting. * Fixed memory leaks that could occur when reading a dataset from a malformed file. * Fixed a bug in H5Ocopy that could generate invalid HDF5 files * Fixed potential heap buffer overflow in decoding of link info message. * Fixed potential buffer overrun issues in some object header decode routines. * Fixed a heap buffer overflow that occurs when reading from a dataset with a compact layout within a malformed HDF5 file. * Fixed memory leak when running h5dump with proof of vulnerability file. * Added option --no-compact-subset to h5diff * Several improvements to parallel compression feature, including: * Improved support for collective I/O (for both writes and reads). * Reduction of copying of application data buffers passed to H5Dwrite. * Addition of support for incremental file space allocation for filtered datasets created in parallel. * Addition of support for HDF5's "don't filter partial edge chunks" flag * Addition of proper support for HDF5 fill values with the feature. * Addition of 'H5_HAVE_PARALLEL_FILTERED_WRITES' macro toH5pubconf.h so HDF5 applications can determine at compile-time whether the feature is available. * Addition of simple examples * h5repack added an optional verbose value for reporting R/W timing. * Fixed a metadata cache bug when resizing a pinned/protected cache entry. * Fixed a problem with the H5_VERS_RELEASE check in the H5check_version function. * Unified handling of collective metadata reads to correctly fix old bugs. * Fixed several potential MPI deadlocks in library failure conditions. * Fixed an issue with collective metadata reads beingpermanently disabled after a dataset chunk lookup operation. netcdf was updated to fix: * rebuild against new hdf5 library version. trilinos was updated to fix: * Rebuild against new hdf5 library version. * Fix dependency in module file for MPI version of Trilinos to depend on the correct version of netcdf (bsc#1210049). This prevents the error message: "Lmod has detected the following error: These module(s) or extension(s) exist but cannot be loaded as requested: "trilinos" ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-3144=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-3144=1 ## Package List: * openSUSE Leap 15.3 (noarch) * hdf5-gnu-mpich-hpc-1.10.11-150300.4.16.15 * hdf5-gnu-openmpi3-hpc-devel-1.10.11-150300.4.16.15 * hdf5-gnu-hpc-1.10.11-150300.4.16.15 * netcdf-gnu-openmpi3-hpc-devel-4.7.4-150300.4.7.17 * hdf5-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * hdf5-gnu-openmpi4-hpc-devel-1.10.11-150300.4.16.15 * netcdf-gnu-mpich-hpc-devel-4.7.4-150300.4.7.19 * netcdf-gnu-openmpi2-hpc-4.7.4-150300.4.7.10 * hdf5-hpc-examples-1.10.11-150300.4.16.15 * adios-gnu-mvapich2-hpc-devel-static-1.13.1-150300.12.4.2 * hdf5-gnu-mvapich2-hpc-devel-1.10.11-150300.4.16.15 * netcdf-gnu-hpc-4.7.4-150300.4.7.19 * netcdf-gnu-mvapich2-hpc-devel-4.7.4-150300.4.7.20 * trilinos-gnu-openmpi4-hpc-devel-13.2.0-150300.3.12.18 * adios-gnu-mpich-hpc-devel-static-1.13.1-150300.12.4.2 * netcdf-gnu-hpc-devel-4.7.4-150300.4.7.19 * netcdf-gnu-openmpi3-hpc-4.7.4-150300.4.7.17 * adios-gnu-mpich-hpc-devel-1.13.1-150300.12.4.2 * hdf5-gnu-hpc-devel-1.10.11-150300.4.16.15 * adios-gnu-openmpi3-hpc-1.13.1-150300.12.4.2 *adios-gnu-openmpi2-hpc-devel-static-1.13.1-150300.12.4.1 * adios-gnu-openmpi4-hpc-devel-static-1.13.1-150300.12.4.2 * adios-gnu-mvapich2-hpc-devel-1.13.1-150300.12.4.2 * adios-gnu-openmpi2-hpc-1.13.1-150300.12.4.1 * petsc-doc-3.14.5-150300.3.4.3 * trilinos-gnu-openmpi2-hpc-devel-13.2.0-150300.3.12.9 * adios-gnu-mvapich2-hpc-1.13.1-150300.12.4.2 * netcdf-gnu-mvapich2-hpc-4.7.4-150300.4.7.20 * netcdf-gnu-openmpi4-hpc-devel-4.7.4-150300.4.7.21 * trilinos-hpc-doc-13.2.0-150300.3.12.9 * trilinos-gnu-mpich-hpc-devel-13.2.0-150300.3.12.18 * adios-gnu-mpich-hpc-1.13.1-150300.12.4.2 * trilinos-gnu-mvapich2-hpc-devel-13.2.0-150300.3.12.18 * netcdf-gnu-mpich-hpc-4.7.4-150300.4.7.19 * adios-gnu-openmpi4-hpc-1.13.1-150300.12.4.2 * hdf5-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * hdf5-gnu-mpich-hpc-devel-1.10.11-150300.4.16.15 * adios-gnu-openmpi2-hpc-devel-1.13.1-150300.12.4.1 * netcdf-gnu-openmpi2-hpc-devel-4.7.4-150300.4.7.10 * trilinos-gnu-openmpi3-hpc-devel-13.2.0-150300.3.12.16 * adios-gnu-openmpi3-hpc-devel-static-1.13.1-150300.12.4.2 * netcdf-gnu-openmpi4-hpc-4.7.4-150300.4.7.21 * trilinos_13_2_0-hpc-doc-13.2.0-150300.3.12.9 * hdf5-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * adios-gnu-openmpi4-hpc-devel-1.13.1-150300.12.4.2 * adios-gnu-openmpi3-hpc-devel-1.13.1-150300.12.4.2 * openSUSE Leap 15.3 (aarch64 ppc64le x86_64 i586) * petsc_3_14_5-gnu-mpich-hpc-debugsource-3.14.5-150300.3.4.4 * adios_1_13_1-gnu-openmpi2-hpc-debuginfo-1.13.1-150300.12.4.1 * adios_1_13_1-gnu-openmpi3-hpc-1.13.1-150300.12.4.2 * libpetsc_3_14_5-gnu-openmpi4-hpc-3.14.5-150300.3.4.4 * petsc_3_14_5-gnu-openmpi4-hpc-debugsource-3.14.5-150300.3.4.4 * libpetsc_3_14_5-gnu-openmpi2-hpc-debuginfo-3.14.5-150300.3.4.4 * petsc-gnu-openmpi4-hpc-devel-3.14.5-150300.3.4.4 * adios_1_13_1-gnu-openmpi3-hpc-devel-1.13.1-150300.12.4.2 * petsc-gnu-mvapich2-hpc-devel-3.14.5-150300.3.4.4 *petsc_3_14_5-gnu-mpich-hpc-devel-3.14.5-150300.3.4.4 * petsc-gnu-mpich-hpc-devel-3.14.5-150300.3.4.4 * adios_1_13_1-gnu-openmpi4-hpc-debugsource-1.13.1-150300.12.4.2 * libpetsc_3_14_5-gnu-mvapich2-hpc-3.14.5-150300.3.4.4 * libpetsc_3_14_5-gnu-openmpi3-hpc-3.14.5-150300.3.4.4 * adios_1_13_1-gnu-openmpi4-hpc-devel-static-1.13.1-150300.12.4.2 * adios_1_13_1-gnu-openmpi4-hpc-1.13.1-150300.12.4.2 * adios_1_13_1-gnu-mvapich2-hpc-devel-1.13.1-150300.12.4.2 * petsc_3_14_5-gnu-openmpi2-hpc-devel-3.14.5-150300.3.4.4 * petsc_3_14_5-gnu-openmpi3-hpc-debugsource-3.14.5-150300.3.4.4 * adios_1_13_1-gnu-openmpi4-hpc-devel-1.13.1-150300.12.4.2 * petsc_3_14_5-gnu-openmpi3-hpc-devel-3.14.5-150300.3.4.4 * adios_1_13_1-gnu-mvapich2-hpc-1.13.1-150300.12.4.2 * libpetsc-gnu-mpich-hpc-3.14.5-150300.3.4.4 * libpetsc_3_14_5-gnu-mpich-hpc-3.14.5-150300.3.4.4 * libpetsc_3_14_5-gnu-openmpi3-hpc-debuginfo-3.14.5-150300.3.4.4 * petsc_3_14_5-gnu-openmpi3-hpc-saws-3.14.5-150300.3.4.4 * adios_1_13_1-gnu-openmpi3-hpc-debuginfo-1.13.1-150300.12.4.2 * adios_1_13_1-gnu-mpich-hpc-devel-1.13.1-150300.12.4.2 * adios_1_13_1-gnu-mpich-hpc-debugsource-1.13.1-150300.12.4.2 * libpetsc-gnu-openmpi3-hpc-3.14.5-150300.3.4.4 * petsc-gnu-openmpi2-hpc-devel-3.14.5-150300.3.4.4 * adios_1_13_1-gnu-openmpi2-hpc-debugsource-1.13.1-150300.12.4.1 * petsc_3_14_5-gnu-openmpi4-hpc-devel-3.14.5-150300.3.4.4 * petsc_3_14_5-gnu-mvapich2-hpc-debugsource-3.14.5-150300.3.4.4 * libpetsc-gnu-openmpi4-hpc-3.14.5-150300.3.4.4 * adios_1_13_1-gnu-mvapich2-hpc-debuginfo-1.13.1-150300.12.4.2 * adios_1_13_1-gnu-mpich-hpc-devel-static-1.13.1-150300.12.4.2 * petsc_3_14_5-gnu-openmpi2-hpc-saws-3.14.5-150300.3.4.4 * petsc-gnu-openmpi3-hpc-devel-3.14.5-150300.3.4.4 * libpetsc_3_14_5-gnu-mpich-hpc-debuginfo-3.14.5-150300.3.4.4 * libpetsc_3_14_5-gnu-openmpi2-hpc-3.14.5-150300.3.4.4 * adios_1_13_1-gnu-openmpi2-hpc-devel-1.13.1-150300.12.4.1 *adios_1_13_1-gnu-mpich-hpc-debuginfo-1.13.1-150300.12.4.2 * libpetsc_3_14_5-gnu-mvapich2-hpc-debuginfo-3.14.5-150300.3.4.4 * adios_1_13_1-gnu-openmpi4-hpc-debuginfo-1.13.1-150300.12.4.2 * adios_1_13_1-gnu-openmpi3-hpc-debugsource-1.13.1-150300.12.4.2 * adios_1_13_1-gnu-mpich-hpc-1.13.1-150300.12.4.2 * petsc_3_14_5-gnu-mvapich2-hpc-saws-3.14.5-150300.3.4.4 * libpetsc-gnu-openmpi2-hpc-3.14.5-150300.3.4.4 * libpetsc-gnu-mvapich2-hpc-3.14.5-150300.3.4.4 * adios_1_13_1-gnu-openmpi2-hpc-devel-static-1.13.1-150300.12.4.1 * adios_1_13_1-gnu-openmpi3-hpc-devel-static-1.13.1-150300.12.4.2 * adios_1_13_1-gnu-mvapich2-hpc-devel-static-1.13.1-150300.12.4.2 * adios_1_13_1-gnu-mvapich2-hpc-debugsource-1.13.1-150300.12.4.2 * petsc_3_14_5-gnu-openmpi4-hpc-saws-3.14.5-150300.3.4.4 * libpetsc_3_14_5-gnu-openmpi4-hpc-debuginfo-3.14.5-150300.3.4.4 * petsc_3_14_5-gnu-mvapich2-hpc-devel-3.14.5-150300.3.4.4 * adios_1_13_1-gnu-openmpi2-hpc-1.13.1-150300.12.4.1 * petsc_3_14_5-gnu-mpich-hpc-saws-3.14.5-150300.3.4.4 * petsc_3_14_5-gnu-openmpi2-hpc-debugsource-3.14.5-150300.3.4.4 * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * libnetcdf_4_7_4-gnu-openmpi4-hpc-debuginfo-4.7.4-150300.4.7.21 * netcdf-debuginfo-4.7.4-150300.4.7.9 * libnetcdf18-4.7.4-150300.4.7.9 * netcdf-openmpi3-devel-static-4.7.4-150300.4.7.9 * libnetcdf-gnu-openmpi4-hpc-4.7.4-150300.4.7.21 * netcdf_4_7_4-gnu-openmpi3-hpc-debugsource-4.7.4-150300.4.7.17 * netcdf_4_7_4-gnu-hpc-4.7.4-150300.4.7.19 * netcdf_4_7_4-gnu-openmpi4-hpc-debugsource-4.7.4-150300.4.7.21 * netcdf-openmpi4-4.7.4-150300.4.7.9 * netcdf-openmpi2-4.7.4-150300.4.7.9 * netcdf-devel-data-4.7.4-150300.4.7.9 * libnetcdf_4_7_4-gnu-mpich-hpc-debuginfo-4.7.4-150300.4.7.19 * netcdf-openmpi4-debuginfo-4.7.4-150300.4.7.9 * libnetcdf_4_7_4-gnu-mvapich2-hpc-debuginfo-4.7.4-150300.4.7.20 * libnetcdf-gnu-hpc-4.7.4-150300.4.7.19 * netcdf-openmpi3-debuginfo-4.7.4-150300.4.7.9 *netcdf_4_7_4-gnu-openmpi3-hpc-debuginfo-4.7.4-150300.4.7.17 * netcdf_4_7_4-gnu-openmpi4-hpc-debuginfo-4.7.4-150300.4.7.21 * netcdf-openmpi3-devel-4.7.4-150300.4.7.9 * libnetcdf18-openmpi4-debuginfo-4.7.4-150300.4.7.9 * netcdf_4_7_4-gnu-openmpi2-hpc-devel-static-4.7.4-150300.4.7.10 * libnetcdf18-openmpi4-4.7.4-150300.4.7.9 * netcdf_4_7_4-gnu-openmpi2-hpc-debugsource-4.7.4-150300.4.7.10 * libnetcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-150300.4.7.17 * netcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-150300.4.7.17 * netcdf_4_7_4-gnu-openmpi3-hpc-devel-4.7.4-150300.4.7.17 * netcdf_4_7_4-gnu-openmpi4-hpc-devel-static-4.7.4-150300.4.7.21 * netcdf_4_7_4-gnu-mpich-hpc-devel-debuginfo-4.7.4-150300.4.7.19 * netcdf_4_7_4-gnu-openmpi4-hpc-devel-debuginfo-4.7.4-150300.4.7.21 * libnetcdf18-openmpi3-4.7.4-150300.4.7.9 * libnetcdf-gnu-mpich-hpc-4.7.4-150300.4.7.19 * libnetcdf_4_7_4-gnu-hpc-debuginfo-4.7.4-150300.4.7.19 * netcdf_4_7_4-gnu-hpc-debuginfo-4.7.4-150300.4.7.19 * libnetcdf-gnu-openmpi3-hpc-4.7.4-150300.4.7.17 * netcdf_4_7_4-gnu-mvapich2-hpc-devel-static-4.7.4-150300.4.7.20 * netcdf-openmpi2-debuginfo-4.7.4-150300.4.7.9 * netcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-150300.4.7.10 * netcdf-openmpi4-devel-debuginfo-4.7.4-150300.4.7.9 * libnetcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-150300.4.7.10 * libnetcdf_4_7_4-gnu-openmpi2-hpc-debuginfo-4.7.4-150300.4.7.10 * netcdf_4_7_4-gnu-openmpi2-hpc-devel-4.7.4-150300.4.7.10 * netcdf_4_7_4-gnu-mpich-hpc-devel-4.7.4-150300.4.7.19 * netcdf_4_7_4-gnu-openmpi2-hpc-debuginfo-4.7.4-150300.4.7.10 * netcdf_4_7_4-gnu-mpich-hpc-devel-static-4.7.4-150300.4.7.19 * netcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-150300.4.7.20 * netcdf-openmpi4-devel-static-4.7.4-150300.4.7.9 * netcdf_4_7_4-gnu-mpich-hpc-debugsource-4.7.4-150300.4.7.19 * netcdf-openmpi3-4.7.4-150300.4.7.9 * netcdf-openmpi3-devel-debuginfo-4.7.4-150300.4.7.9 * libnetcdf18-openmpi3-debuginfo-4.7.4-150300.4.7.9 *netcdf-openmpi2-devel-debuginfo-4.7.4-150300.4.7.9 * netcdf_4_7_4-gnu-hpc-devel-static-4.7.4-150300.4.7.19 * libnetcdf18-openmpi2-debuginfo-4.7.4-150300.4.7.9 * netcdf-openmpi3-debugsource-4.7.4-150300.4.7.9 * netcdf_4_7_4-gnu-openmpi3-hpc-devel-debuginfo-4.7.4-150300.4.7.17 * netcdf-devel-4.7.4-150300.4.7.9 * netcdf_4_7_4-gnu-mvapich2-hpc-debuginfo-4.7.4-150300.4.7.20 * netcdf-devel-debuginfo-4.7.4-150300.4.7.9 * netcdf_4_7_4-gnu-hpc-devel-4.7.4-150300.4.7.19 * netcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-150300.4.7.21 * netcdf-openmpi2-debugsource-4.7.4-150300.4.7.9 * libnetcdf_4_7_4-gnu-hpc-4.7.4-150300.4.7.19 * netcdf_4_7_4-gnu-mvapich2-hpc-devel-debuginfo-4.7.4-150300.4.7.20 * libnetcdf-gnu-openmpi2-hpc-4.7.4-150300.4.7.10 * netcdf-openmpi4-devel-4.7.4-150300.4.7.9 * netcdf_4_7_4-gnu-mpich-hpc-debuginfo-4.7.4-150300.4.7.19 * libnetcdf-gnu-mvapich2-hpc-4.7.4-150300.4.7.20 * libnetcdf18-openmpi2-4.7.4-150300.4.7.9 * netcdf_4_7_4-gnu-openmpi3-hpc-devel-static-4.7.4-150300.4.7.17 * netcdf-devel-static-4.7.4-150300.4.7.9 * netcdf_4_7_4-gnu-openmpi2-hpc-devel-debuginfo-4.7.4-150300.4.7.10 * libnetcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-150300.4.7.20 * netcdf_4_7_4-gnu-hpc-devel-debuginfo-4.7.4-150300.4.7.19 * libnetcdf_4_7_4-gnu-mpich-hpc-4.7.4-150300.4.7.19 * netcdf_4_7_4-gnu-mpich-hpc-4.7.4-150300.4.7.19 * netcdf-openmpi2-devel-4.7.4-150300.4.7.9 * netcdf-openmpi2-devel-static-4.7.4-150300.4.7.9 * netcdf_4_7_4-gnu-hpc-debugsource-4.7.4-150300.4.7.19 * netcdf-4.7.4-150300.4.7.9 * netcdf-debugsource-4.7.4-150300.4.7.9 * libnetcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-150300.4.7.21 * netcdf_4_7_4-gnu-mvapich2-hpc-debugsource-4.7.4-150300.4.7.20 * netcdf_4_7_4-gnu-mvapich2-hpc-devel-4.7.4-150300.4.7.20 * netcdf-openmpi4-debugsource-4.7.4-150300.4.7.9 * netcdf_4_7_4-gnu-openmpi4-hpc-devel-4.7.4-150300.4.7.21 * libnetcdf18-debuginfo-4.7.4-150300.4.7.9 *libnetcdf_4_7_4-gnu-openmpi3-hpc-debuginfo-4.7.4-150300.4.7.17 * openSUSE Leap 15.3 (x86_64) * libnetcdf18-openmpi3-32bit-4.7.4-150300.4.7.9 * libnetcdf18-32bit-4.7.4-150300.4.7.9 * libnetcdf18-32bit-debuginfo-4.7.4-150300.4.7.9 * libnetcdf18-openmpi2-32bit-4.7.4-150300.4.7.9 * libnetcdf18-openmpi4-32bit-4.7.4-150300.4.7.9 * libnetcdf18-openmpi4-32bit-debuginfo-4.7.4-150300.4.7.9 * libnetcdf18-openmpi2-32bit-debuginfo-4.7.4-150300.4.7.9 * libnetcdf18-openmpi3-32bit-debuginfo-4.7.4-150300.4.7.9 * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64) * hdf5_1_10_11-gnu-openmpi4-hpc-debugsource-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-openmpi4-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_1_10_11-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * libhdf5hl_fortran_1_10_11-gnu-mvapich2-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_hl_cpp-gnu-hpc-1.10.11-150300.4.16.15 * libhdf5_hl_cpp_1_10_11-gnu-mpich-hpc-debuginfo-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-mpich-hpc-devel-static-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-openmpi4-hpc-devel-static-1.10.11-150300.4.16.15 * libhdf5_1_10_11-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * libhdf5_1_10_11-gnu-mpich-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5hl_fortran_1_10_11-gnu-openmpi4-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_hl_1_10_11-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * libhdf5_cpp-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5_fortran_1_10_11-gnu-openmpi4-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_hl_cpp_1_10_11-gnu-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_cpp_1_10_11-gnu-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_hl_1_10_11-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-mvapich2-hpc-devel-1.10.11-150300.4.16.15 * libhdf5_fortran_1_10_11-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 *libhdf5_hl_cpp-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5_hl_cpp_1_10_11-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5_hl-gnu-hpc-1.10.11-150300.4.16.15 * libhdf5_hl_fortran-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * libhdf5_hl_1_10_11-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5_cpp-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * libhdf5_1_10_11-gnu-hpc-1.10.11-150300.4.16.15 * libhdf5_hl_fortran-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5hl_fortran_1_10_11-gnu-hpc-1.10.11-150300.4.16.15 * libhdf5_1_10_11-gnu-mvapich2-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_hl_cpp_1_10_11-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * libhdf5_fortran-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * libhdf5_1_10_11-gnu-openmpi4-hpc-debuginfo-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-hpc-debuginfo-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-mpich-hpc-module-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-mvapich2-hpc-debugsource-1.10.11-150300.4.16.15 * libhdf5_cpp_1_10_11-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5_cpp_1_10_11-gnu-mpich-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5-gnu-mpich-hpc-1.10.11-150300.4.16.15 * libhdf5_hl-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * libhdf5_cpp_1_10_11-gnu-openmpi3-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_cpp_1_10_11-gnu-mpich-hpc-1.10.11-150300.4.16.15 * libhdf5_hl-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * libhdf5-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5_cpp-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * libhdf5_fortran_1_10_11-gnu-mpich-hpc-1.10.11-150300.4.16.15 * libhdf5hl_fortran_1_10_11-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * libhdf5_cpp_1_10_11-gnu-hpc-1.10.11-150300.4.16.15 * libhdf5_fortran_1_10_11-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * libhdf5-gnu-hpc-1.10.11-150300.4.16.15 * libhdf5_1_10_11-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 *libhdf5hl_fortran_1_10_11-gnu-openmpi3-hpc-debuginfo-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-hpc-debugsource-1.10.11-150300.4.16.15 * libhdf5hl_fortran_1_10_11-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * libhdf5_hl_cpp_1_10_11-gnu-openmpi3-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_fortran-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5_hl_fortran-gnu-mpich-hpc-1.10.11-150300.4.16.15 * libhdf5_hl-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5_hl_cpp_1_10_11-gnu-openmpi4-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_cpp_1_10_11-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-mpich-hpc-debugsource-1.10.11-150300.4.16.15 * libhdf5_fortran_1_10_11-gnu-mvapich2-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_cpp-gnu-hpc-1.10.11-150300.4.16.15 * libhdf5_fortran-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5_1_10_11-gnu-openmpi3-hpc-debuginfo-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-openmpi3-hpc-debugsource-1.10.11-150300.4.16.15 * libhdf5_cpp_1_10_11-gnu-mvapich2-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_hl_1_10_11-gnu-openmpi4-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_hl_cpp-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * libhdf5_hl_1_10_11-gnu-mpich-hpc-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-hpc-1.10.11-150300.4.16.15 * hdf5_1_10_11-hpc-examples-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-mvapich2-hpc-module-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-mpich-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_hl_cpp_1_10_11-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * libhdf5_hl_cpp-gnu-mpich-hpc-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-openmpi4-hpc-devel-1.10.11-150300.4.16.15 * libhdf5_hl_cpp-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-mvapich2-hpc-devel-static-1.10.11-150300.4.16.15 * libhdf5_hl_1_10_11-gnu-mpich-hpc-debuginfo-1.10.11-150300.4.16.15 *libhdf5_hl_cpp_1_10_11-gnu-mpich-hpc-1.10.11-150300.4.16.15 * libhdf5_fortran-gnu-hpc-1.10.11-150300.4.16.15 * libhdf5hl_fortran_1_10_11-gnu-mpich-hpc-debuginfo-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-openmpi3-hpc-devel-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-hpc-devel-static-1.10.11-150300.4.16.15 * libhdf5_fortran-gnu-mpich-hpc-1.10.11-150300.4.16.15 * libhdf5-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * libhdf5_1_10_11-gnu-hpc-debuginfo-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-mpich-hpc-devel-1.10.11-150300.4.16.15 * libhdf5_fortran_1_10_11-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5_hl_cpp_1_10_11-gnu-hpc-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-mpich-hpc-1.10.11-150300.4.16.15 * libhdf5_hl_fortran-gnu-hpc-1.10.11-150300.4.16.15 * libhdf5_cpp_1_10_11-gnu-openmpi4-hpc-debuginfo-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-openmpi3-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5hl_fortran_1_10_11-gnu-hpc-debuginfo-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-mvapich2-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_hl_cpp_1_10_11-gnu-mvapich2-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_1_10_11-gnu-mpich-hpc-1.10.11-150300.4.16.15 * libhdf5hl_fortran_1_10_11-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5_fortran_1_10_11-gnu-hpc-1.10.11-150300.4.16.15 * libhdf5_hl-gnu-mpich-hpc-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-hpc-module-1.10.11-150300.4.16.15 * libhdf5_hl_1_10_11-gnu-hpc-1.10.11-150300.4.16.15 * libhdf5_hl_fortran-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * libhdf5hl_fortran_1_10_11-gnu-mpich-hpc-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-hpc-devel-1.10.11-150300.4.16.15 * libhdf5_cpp_1_10_11-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * libhdf5_fortran_1_10_11-gnu-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_hl_1_10_11-gnu-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_cpp-gnu-mpich-hpc-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-openmpi4-hpc-module-1.10.11-150300.4.16.15 *hdf5_1_10_11-gnu-openmpi3-hpc-module-1.10.11-150300.4.16.15 * libhdf5_hl_1_10_11-gnu-openmpi3-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_hl_1_10_11-gnu-mvapich2-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_fortran_1_10_11-gnu-openmpi3-hpc-debuginfo-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-openmpi3-hpc-devel-static-1.10.11-150300.4.16.15 * libhdf5_fortran_1_10_11-gnu-mpich-hpc-debuginfo-1.10.11-150300.4.16.15 * openSUSE Leap 15.3 (aarch64 ppc64le x86_64) * libtrilinos-gnu-openmpi2-hpc-13.2.0-150300.3.12.9 * libtrilinos_13_2_0-gnu-openmpi3-hpc-debuginfo-13.2.0-150300.3.12.16 * libtrilinos_13_2_0-gnu-mpich-hpc-debuginfo-13.2.0-150300.3.12.18 * libtrilinos_13_2_0-gnu-mpich-hpc-13.2.0-150300.3.12.18 * trilinos_13_2_0-gnu-mpich-hpc-devel-13.2.0-150300.3.12.18 * trilinos_13_2_0-gnu-mvapich2-hpc-debugsource-13.2.0-150300.3.12.18 * libtrilinos_13_2_0-gnu-openmpi4-hpc-13.2.0-150300.3.12.18 * trilinos_13_2_0-gnu-openmpi3-hpc-debugsource-13.2.0-150300.3.12.16 * libtrilinos_13_2_0-gnu-openmpi2-hpc-debuginfo-13.2.0-150300.3.12.9 * libtrilinos_13_2_0-gnu-openmpi3-hpc-13.2.0-150300.3.12.16 * libtrilinos_13_2_0-gnu-openmpi2-hpc-13.2.0-150300.3.12.9 * libtrilinos_13_2_0-gnu-mvapich2-hpc-13.2.0-150300.3.12.18 * trilinos_13_2_0-gnu-mvapich2-hpc-devel-13.2.0-150300.3.12.18 * libtrilinos-gnu-mvapich2-hpc-13.2.0-150300.3.12.18 * trilinos_13_2_0-gnu-mpich-hpc-debugsource-13.2.0-150300.3.12.18 * trilinos_13_2_0-gnu-openmpi2-hpc-debugsource-13.2.0-150300.3.12.9 * libtrilinos_13_2_0-gnu-openmpi4-hpc-debuginfo-13.2.0-150300.3.12.18 * libtrilinos_13_2_0-gnu-mvapich2-hpc-debuginfo-13.2.0-150300.3.12.18 * libtrilinos-gnu-openmpi4-hpc-13.2.0-150300.3.12.18 * libtrilinos-gnu-openmpi3-hpc-13.2.0-150300.3.12.16 * trilinos_13_2_0-gnu-openmpi4-hpc-debugsource-13.2.0-150300.3.12.18 * libtrilinos-gnu-mpich-hpc-13.2.0-150300.3.12.18 * trilinos_13_2_0-gnu-openmpi2-hpc-devel-13.2.0-150300.3.12.9 *trilinos_13_2_0-gnu-openmpi3-hpc-devel-13.2.0-150300.3.12.16 * trilinos_13_2_0-gnu-openmpi4-hpc-devel-13.2.0-150300.3.12.18 * trilinos_13_2_0-hpc-debugsource-13.2.0-150300.3.12.9 * openSUSE Leap 15.3 (aarch64_ilp32) * libnetcdf18-64bit-4.7.4-150300.4.7.9 * libnetcdf18-openmpi2-64bit-4.7.4-150300.4.7.9 * libnetcdf18-openmpi2-64bit-debuginfo-4.7.4-150300.4.7.9 * libnetcdf18-64bit-debuginfo-4.7.4-150300.4.7.9 * libnetcdf18-openmpi4-64bit-debuginfo-4.7.4-150300.4.7.9 * libnetcdf18-openmpi3-64bit-debuginfo-4.7.4-150300.4.7.9 * libnetcdf18-openmpi3-64bit-4.7.4-150300.4.7.9 * libnetcdf18-openmpi4-64bit-4.7.4-150300.4.7.9 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * hdf5-gnu-mpich-hpc-1.10.11-150300.4.16.15 * hdf5-gnu-openmpi3-hpc-devel-1.10.11-150300.4.16.15 * hdf5-gnu-hpc-1.10.11-150300.4.16.15 * hdf5-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * netcdf-gnu-openmpi3-hpc-devel-4.7.4-150300.4.7.17 * hdf5-gnu-openmpi4-hpc-devel-1.10.11-150300.4.16.15 * netcdf-gnu-mpich-hpc-devel-4.7.4-150300.4.7.19 * hdf5-hpc-examples-1.10.11-150300.4.16.15 * hdf5-gnu-mvapich2-hpc-devel-1.10.11-150300.4.16.15 * adios-gnu-mvapich2-hpc-devel-static-1.13.1-150300.12.4.2 * netcdf-gnu-hpc-4.7.4-150300.4.7.19 * netcdf-gnu-mvapich2-hpc-devel-4.7.4-150300.4.7.20 * trilinos-gnu-openmpi4-hpc-devel-13.2.0-150300.3.12.18 * adios-gnu-mpich-hpc-devel-static-1.13.1-150300.12.4.2 * netcdf-gnu-hpc-devel-4.7.4-150300.4.7.19 * netcdf-gnu-openmpi3-hpc-4.7.4-150300.4.7.17 * adios-gnu-mpich-hpc-devel-1.13.1-150300.12.4.2 * hdf5-gnu-hpc-devel-1.10.11-150300.4.16.15 * adios-gnu-openmpi3-hpc-1.13.1-150300.12.4.2 * adios-gnu-openmpi4-hpc-devel-static-1.13.1-150300.12.4.2 * adios-gnu-mvapich2-hpc-devel-1.13.1-150300.12.4.2 * petsc-doc-3.14.5-150300.3.4.3 * adios-gnu-mvapich2-hpc-1.13.1-150300.12.4.2 * netcdf-gnu-mvapich2-hpc-4.7.4-150300.4.7.20 * netcdf-gnu-openmpi4-hpc-devel-4.7.4-150300.4.7.21 * trilinos-hpc-doc-13.2.0-150300.3.12.9 * trilinos-gnu-mpich-hpc-devel-13.2.0-150300.3.12.18 * adios-gnu-mpich-hpc-1.13.1-150300.12.4.2 * trilinos-gnu-mvapich2-hpc-devel-13.2.0-150300.3.12.18 * netcdf-gnu-mpich-hpc-4.7.4-150300.4.7.19 * adios-gnu-openmpi4-hpc-1.13.1-150300.12.4.2 * hdf5-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * hdf5-gnu-mpich-hpc-devel-1.10.11-150300.4.16.15 * trilinos-gnu-openmpi3-hpc-devel-13.2.0-150300.3.12.16 * adios-gnu-openmpi3-hpc-devel-static-1.13.1-150300.12.4.2 * netcdf-gnu-openmpi4-hpc-4.7.4-150300.4.7.21 * trilinos_13_2_0-hpc-doc-13.2.0-150300.3.12.9 * hdf5-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * adios-gnu-openmpi4-hpc-devel-1.13.1-150300.12.4.2 * adios-gnu-openmpi3-hpc-devel-1.13.1-150300.12.4.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * hdf5_1_10_11-gnu-openmpi4-hpc-debugsource-1.10.11-150300.4.16.15 * libnetcdf_4_7_4-gnu-openmpi4-hpc-debuginfo-4.7.4-150300.4.7.21 * hdf5_1_10_11-gnu-openmpi4-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_1_10_11-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-openmpi3-hpc-devel-static-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * libhdf5hl_fortran_1_10_11-gnu-mvapich2-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_hl_cpp-gnu-hpc-1.10.11-150300.4.16.15 * petsc_3_14_5-gnu-openmpi4-hpc-debugsource-3.14.5-150300.3.4.4 * libtrilinos_13_2_0-gnu-mpich-hpc-13.2.0-150300.3.12.18 * libhdf5_hl_cpp_1_10_11-gnu-mpich-hpc-debuginfo-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-mpich-hpc-devel-static-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-openmpi4-hpc-devel-static-1.10.11-150300.4.16.15 * libhdf5_1_10_11-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * libpetsc_3_14_5-gnu-openmpi3-hpc-3.14.5-150300.3.4.4 * hdf5_1_10_11-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * libnetcdf-gnu-openmpi4-hpc-4.7.4-150300.4.7.21 *libhdf5_1_10_11-gnu-mpich-hpc-debuginfo-1.10.11-150300.4.16.15 * adios_1_13_1-gnu-openmpi4-hpc-devel-1.13.1-150300.12.4.2 * netcdf_4_7_4-gnu-hpc-4.7.4-150300.4.7.19 * libhdf5hl_fortran_1_10_11-gnu-openmpi4-hpc-debuginfo-1.10.11-150300.4.16.15 * netcdf_4_7_4-gnu-openmpi3-hpc-debugsource-4.7.4-150300.4.7.17 * netcdf_4_7_4-gnu-openmpi4-hpc-debugsource-4.7.4-150300.4.7.21 * libhdf5_hl_1_10_11-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * libhdf5_cpp-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5_fortran_1_10_11-gnu-openmpi4-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_hl_cpp_1_10_11-gnu-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_cpp_1_10_11-gnu-hpc-debuginfo-1.10.11-150300.4.16.15 * libnetcdf_4_7_4-gnu-mpich-hpc-debuginfo-4.7.4-150300.4.7.19 * libhdf5_hl_1_10_11-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * petsc_3_14_5-gnu-openmpi4-hpc-devel-3.14.5-150300.3.4.4 * hdf5_1_10_11-gnu-mvapich2-hpc-devel-1.10.11-150300.4.16.15 * libnetcdf-gnu-hpc-4.7.4-150300.4.7.19 * libnetcdf_4_7_4-gnu-mvapich2-hpc-debuginfo-4.7.4-150300.4.7.20 * netcdf_4_7_4-gnu-openmpi3-hpc-debuginfo-4.7.4-150300.4.7.17 * netcdf_4_7_4-gnu-openmpi4-hpc-debuginfo-4.7.4-150300.4.7.21 * libhdf5_fortran_1_10_11-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * libtrilinos_13_2_0-gnu-openmpi4-hpc-debuginfo-13.2.0-150300.3.12.18 * libpetsc_3_14_5-gnu-mvapich2-hpc-debuginfo-3.14.5-150300.3.4.4 * adios_1_13_1-gnu-openmpi4-hpc-debuginfo-1.13.1-150300.12.4.2 * libhdf5_hl_cpp-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libnetcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-150300.4.7.17 * netcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-150300.4.7.17 * netcdf_4_7_4-gnu-openmpi3-hpc-devel-4.7.4-150300.4.7.17 * adios_1_13_1-gnu-openmpi3-hpc-devel-static-1.13.1-150300.12.4.2 * libhdf5_hl_cpp_1_10_11-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * adios_1_13_1-gnu-mvapich2-hpc-debugsource-1.13.1-150300.12.4.2 * petsc_3_14_5-gnu-mvapich2-hpc-devel-3.14.5-150300.3.4.4 *libhdf5_hl-gnu-hpc-1.10.11-150300.4.16.15 * netcdf_4_7_4-gnu-openmpi4-hpc-devel-static-4.7.4-150300.4.7.21 * netcdf_4_7_4-gnu-mpich-hpc-devel-debuginfo-4.7.4-150300.4.7.19 * libhdf5_hl_fortran-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * netcdf_4_7_4-gnu-openmpi4-hpc-devel-debuginfo-4.7.4-150300.4.7.21 * libhdf5_hl_1_10_11-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5_cpp-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * libnetcdf-gnu-mpich-hpc-4.7.4-150300.4.7.19 * libnetcdf_4_7_4-gnu-hpc-debuginfo-4.7.4-150300.4.7.19 * libtrilinos_13_2_0-gnu-openmpi4-hpc-13.2.0-150300.3.12.18 * libhdf5_1_10_11-gnu-hpc-1.10.11-150300.4.16.15 * trilinos_13_2_0-gnu-openmpi3-hpc-debugsource-13.2.0-150300.3.12.16 * libhdf5_hl_fortran-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libtrilinos_13_2_0-gnu-openmpi3-hpc-13.2.0-150300.3.12.16 * netcdf_4_7_4-gnu-hpc-debuginfo-4.7.4-150300.4.7.19 * libhdf5_1_10_11-gnu-mvapich2-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5hl_fortran_1_10_11-gnu-hpc-1.10.11-150300.4.16.15 * libhdf5_hl_cpp_1_10_11-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * libnetcdf-gnu-openmpi3-hpc-4.7.4-150300.4.7.17 * libhdf5_1_10_11-gnu-openmpi4-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_fortran-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * adios_1_13_1-gnu-openmpi4-hpc-devel-static-1.13.1-150300.12.4.2 * adios_1_13_1-gnu-mvapich2-hpc-devel-1.13.1-150300.12.4.2 * netcdf_4_7_4-gnu-mvapich2-hpc-devel-static-4.7.4-150300.4.7.20 * hdf5_1_10_11-gnu-hpc-debuginfo-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-mpich-hpc-module-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-mvapich2-hpc-debugsource-1.10.11-150300.4.16.15 * libpetsc-gnu-mpich-hpc-3.14.5-150300.3.4.4 * libpetsc_3_14_5-gnu-mpich-hpc-3.14.5-150300.3.4.4 * libhdf5_cpp_1_10_11-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5_cpp_1_10_11-gnu-mpich-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5-gnu-mpich-hpc-1.10.11-150300.4.16.15 *libhdf5_hl-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * libtrilinos_13_2_0-gnu-mvapich2-hpc-13.2.0-150300.3.12.18 * netcdf_4_7_4-gnu-mpich-hpc-devel-4.7.4-150300.4.7.19 * trilinos_13_2_0-gnu-mvapich2-hpc-devel-13.2.0-150300.3.12.18 * libhdf5_cpp_1_10_11-gnu-openmpi3-hpc-debuginfo-1.10.11-150300.4.16.15 * libpetsc-gnu-openmpi4-hpc-3.14.5-150300.3.4.4 * libhdf5_cpp_1_10_11-gnu-mpich-hpc-1.10.11-150300.4.16.15 * libhdf5_hl-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * libhdf5-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5_cpp-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * libpetsc_3_14_5-gnu-mpich-hpc-debuginfo-3.14.5-150300.3.4.4 * libhdf5_fortran_1_10_11-gnu-mpich-hpc-1.10.11-150300.4.16.15 * libhdf5hl_fortran_1_10_11-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * netcdf_4_7_4-gnu-mpich-hpc-devel-static-4.7.4-150300.4.7.19 * netcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-150300.4.7.20 * libhdf5_cpp_1_10_11-gnu-hpc-1.10.11-150300.4.16.15 * libtrilinos_13_2_0-gnu-mvapich2-hpc-debuginfo-13.2.0-150300.3.12.18 * libhdf5_fortran_1_10_11-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * netcdf_4_7_4-gnu-mpich-hpc-debugsource-4.7.4-150300.4.7.19 * libhdf5-gnu-hpc-1.10.11-150300.4.16.15 * libtrilinos-gnu-mpich-hpc-13.2.0-150300.3.12.18 * libhdf5-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * libhdf5hl_fortran_1_10_11-gnu-openmpi3-hpc-debuginfo-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-hpc-debugsource-1.10.11-150300.4.16.15 * netcdf_4_7_4-gnu-hpc-devel-static-4.7.4-150300.4.7.19 * petsc_3_14_5-gnu-mpich-hpc-debugsource-3.14.5-150300.3.4.4 * libhdf5hl_fortran_1_10_11-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * adios_1_13_1-gnu-openmpi3-hpc-1.13.1-150300.12.4.2 * libpetsc_3_14_5-gnu-openmpi4-hpc-3.14.5-150300.3.4.4 * libhdf5_hl_cpp_1_10_11-gnu-openmpi3-hpc-debuginfo-1.10.11-150300.4.16.15 * libtrilinos_13_2_0-gnu-openmpi3-hpc-debuginfo-13.2.0-150300.3.12.16 * petsc-gnu-openmpi4-hpc-devel-3.14.5-150300.3.4.4 *adios_1_13_1-gnu-openmpi3-hpc-devel-1.13.1-150300.12.4.2 * trilinos_13_2_0-gnu-mpich-hpc-devel-13.2.0-150300.3.12.18 * hdf5_1_10_11-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5_fortran-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * netcdf_4_7_4-gnu-openmpi3-hpc-devel-debuginfo-4.7.4-150300.4.7.17 * petsc-gnu-mvapich2-hpc-devel-3.14.5-150300.3.4.4 * trilinos_13_2_0-gnu-mvapich2-hpc-debugsource-13.2.0-150300.3.12.18 * libhdf5_hl-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5_hl_cpp_1_10_11-gnu-openmpi4-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_hl_fortran-gnu-mpich-hpc-1.10.11-150300.4.16.15 * netcdf_4_7_4-gnu-mvapich2-hpc-debuginfo-4.7.4-150300.4.7.20 * libhdf5_cpp_1_10_11-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-mpich-hpc-debugsource-1.10.11-150300.4.16.15 * libhdf5_fortran_1_10_11-gnu-mvapich2-hpc-debuginfo-1.10.11-150300.4.16.15 * petsc_3_14_5-gnu-openmpi3-hpc-debugsource-3.14.5-150300.3.4.4 * libhdf5_cpp-gnu-hpc-1.10.11-150300.4.16.15 * libhdf5_fortran-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * petsc_3_14_5-gnu-openmpi3-hpc-devel-3.14.5-150300.3.4.4 * libhdf5_1_10_11-gnu-openmpi3-hpc-debuginfo-1.10.11-150300.4.16.15 * libpetsc_3_14_5-gnu-openmpi3-hpc-debuginfo-3.14.5-150300.3.4.4 * adios_1_13_1-gnu-openmpi3-hpc-debuginfo-1.13.1-150300.12.4.2 * adios_1_13_1-gnu-mpich-hpc-devel-1.13.1-150300.12.4.2 * netcdf_4_7_4-gnu-hpc-devel-4.7.4-150300.4.7.19 * hdf5_1_10_11-gnu-openmpi3-hpc-debugsource-1.10.11-150300.4.16.15 * adios_1_13_1-gnu-mpich-hpc-debugsource-1.13.1-150300.12.4.2 * netcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-150300.4.7.21 * libhdf5_cpp_1_10_11-gnu-mvapich2-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_hl_1_10_11-gnu-openmpi4-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_hl_cpp-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * libpetsc-gnu-openmpi3-hpc-3.14.5-150300.3.4.4 * libhdf5_hl_1_10_11-gnu-mpich-hpc-1.10.11-150300.4.16.15 *hdf5_1_10_11-gnu-hpc-1.10.11-150300.4.16.15 * libnetcdf_4_7_4-gnu-hpc-4.7.4-150300.4.7.19 * adios_1_13_1-gnu-mvapich2-hpc-debuginfo-1.13.1-150300.12.4.2 * hdf5_1_10_11-gnu-mvapich2-hpc-module-1.10.11-150300.4.16.15 * hdf5_1_10_11-hpc-examples-1.10.11-150300.4.16.15 * libtrilinos-gnu-mvapich2-hpc-13.2.0-150300.3.12.18 * trilinos_13_2_0-gnu-mpich-hpc-debugsource-13.2.0-150300.3.12.18 * netcdf_4_7_4-gnu-mvapich2-hpc-devel-debuginfo-4.7.4-150300.4.7.20 * hdf5_1_10_11-gnu-mpich-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_hl_cpp_1_10_11-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * petsc-gnu-openmpi3-hpc-devel-3.14.5-150300.3.4.4 * netcdf_4_7_4-gnu-mpich-hpc-debuginfo-4.7.4-150300.4.7.19 * libhdf5_hl_cpp-gnu-mpich-hpc-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-openmpi4-hpc-devel-1.10.11-150300.4.16.15 * adios_1_13_1-gnu-mpich-hpc-debuginfo-1.13.1-150300.12.4.2 * libhdf5_hl_cpp-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-mvapich2-hpc-devel-static-1.10.11-150300.4.16.15 * libnetcdf-gnu-mvapich2-hpc-4.7.4-150300.4.7.20 * netcdf_4_7_4-gnu-openmpi3-hpc-devel-static-4.7.4-150300.4.7.17 * trilinos_13_2_0-gnu-openmpi3-hpc-devel-13.2.0-150300.3.12.16 * libhdf5_hl_1_10_11-gnu-mpich-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_fortran-gnu-hpc-1.10.11-150300.4.16.15 * libhdf5_hl_cpp_1_10_11-gnu-mpich-hpc-1.10.11-150300.4.16.15 * trilinos_13_2_0-gnu-openmpi4-hpc-devel-13.2.0-150300.3.12.18 * libhdf5hl_fortran_1_10_11-gnu-mpich-hpc-debuginfo-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-openmpi3-hpc-devel-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-hpc-devel-static-1.10.11-150300.4.16.15 * libhdf5_fortran-gnu-mpich-hpc-1.10.11-150300.4.16.15 * libtrilinos_13_2_0-gnu-mpich-hpc-debuginfo-13.2.0-150300.3.12.18 * libhdf5-gnu-mvapich2-hpc-1.10.11-150300.4.16.15 * petsc_3_14_5-gnu-mpich-hpc-devel-3.14.5-150300.3.4.4 * hdf5_1_10_11-gnu-mpich-hpc-devel-1.10.11-150300.4.16.15 *libhdf5_1_10_11-gnu-hpc-debuginfo-1.10.11-150300.4.16.15 * libnetcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-150300.4.7.20 * petsc-gnu-mpich-hpc-devel-3.14.5-150300.3.4.4 * adios_1_13_1-gnu-openmpi4-hpc-debugsource-1.13.1-150300.12.4.2 * libpetsc_3_14_5-gnu-mvapich2-hpc-3.14.5-150300.3.4.4 * libhdf5_fortran_1_10_11-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5_hl_cpp_1_10_11-gnu-hpc-1.10.11-150300.4.16.15 * netcdf_4_7_4-gnu-hpc-devel-debuginfo-4.7.4-150300.4.7.19 * hdf5_1_10_11-gnu-mpich-hpc-1.10.11-150300.4.16.15 * libhdf5_hl_fortran-gnu-hpc-1.10.11-150300.4.16.15 * libhdf5_cpp_1_10_11-gnu-openmpi4-hpc-debuginfo-1.10.11-150300.4.16.15 * adios_1_13_1-gnu-openmpi4-hpc-1.13.1-150300.12.4.2 * hdf5_1_10_11-gnu-openmpi3-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5hl_fortran_1_10_11-gnu-hpc-debuginfo-1.10.11-150300.4.16.15 * libnetcdf_4_7_4-gnu-mpich-hpc-4.7.4-150300.4.7.19 * hdf5_1_10_11-gnu-mvapich2-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_hl_cpp_1_10_11-gnu-mvapich2-hpc-debuginfo-1.10.11-150300.4.16.15 * adios_1_13_1-gnu-mvapich2-hpc-1.13.1-150300.12.4.2 * libpetsc_3_14_5-gnu-openmpi4-hpc-debuginfo-3.14.5-150300.3.4.4 * libhdf5_1_10_11-gnu-mpich-hpc-1.10.11-150300.4.16.15 * libhdf5hl_fortran_1_10_11-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5_fortran_1_10_11-gnu-hpc-1.10.11-150300.4.16.15 * netcdf_4_7_4-gnu-mpich-hpc-4.7.4-150300.4.7.19 * libhdf5_hl-gnu-mpich-hpc-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-hpc-module-1.10.11-150300.4.16.15 * petsc_3_14_5-gnu-mvapich2-hpc-debugsource-3.14.5-150300.3.4.4 * libhdf5_hl_1_10_11-gnu-hpc-1.10.11-150300.4.16.15 * adios_1_13_1-gnu-mpich-hpc-devel-static-1.13.1-150300.12.4.2 * libhdf5_hl_fortran-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * netcdf_4_7_4-gnu-hpc-debugsource-4.7.4-150300.4.7.19 * libhdf5hl_fortran_1_10_11-gnu-mpich-hpc-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-hpc-devel-1.10.11-150300.4.16.15 *libhdf5_cpp_1_10_11-gnu-openmpi3-hpc-1.10.11-150300.4.16.15 * libhdf5_fortran_1_10_11-gnu-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_hl_1_10_11-gnu-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_cpp-gnu-mpich-hpc-1.10.11-150300.4.16.15 * hdf5_1_10_11-gnu-openmpi4-hpc-module-1.10.11-150300.4.16.15 * libnetcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-150300.4.7.21 * hdf5_1_10_11-gnu-openmpi3-hpc-module-1.10.11-150300.4.16.15 * adios_1_13_1-gnu-openmpi3-hpc-debugsource-1.13.1-150300.12.4.2 * adios_1_13_1-gnu-mpich-hpc-1.13.1-150300.12.4.2 * libhdf5_hl_1_10_11-gnu-openmpi3-hpc-debuginfo-1.10.11-150300.4.16.15 * libhdf5_hl_1_10_11-gnu-mvapich2-hpc-debuginfo-1.10.11-150300.4.16.15 * netcdf_4_7_4-gnu-mvapich2-hpc-debugsource-4.7.4-150300.4.7.20 * libpetsc-gnu-mvapich2-hpc-3.14.5-150300.3.4.4 * libtrilinos-gnu-openmpi4-hpc-13.2.0-150300.3.12.18 * libtrilinos-gnu-openmpi3-hpc-13.2.0-150300.3.12.16 * netcdf_4_7_4-gnu-mvapich2-hpc-devel-4.7.4-150300.4.7.20 * adios_1_13_1-gnu-mvapich2-hpc-devel-static-1.13.1-150300.12.4.2 * libhdf5_fortran_1_10_11-gnu-openmpi3-hpc-debuginfo-1.10.11-150300.4.16.15 * netcdf_4_7_4-gnu-openmpi4-hpc-devel-4.7.4-150300.4.7.21 * trilinos_13_2_0-gnu-openmpi4-hpc-debugsource-13.2.0-150300.3.12.18 * libhdf5_1_10_11-gnu-openmpi4-hpc-1.10.11-150300.4.16.15 * libhdf5_fortran_1_10_11-gnu-mpich-hpc-debuginfo-1.10.11-150300.4.16.15 * trilinos_13_2_0-hpc-debugsource-13.2.0-150300.3.12.9 * libnetcdf_4_7_4-gnu-openmpi3-hpc-debuginfo-4.7.4-150300.4.7.17 ## References: * https://www.suse.com/security/cve/CVE-2016-4332.html * https://www.suse.com/security/cve/CVE-2017-17507.html * https://www.suse.com/security/cve/CVE-2018-11202.html * https://www.suse.com/security/cve/CVE-2018-11205.html * https://www.suse.com/security/cve/CVE-2019-8396.html * https://www.suse.com/security/cve/CVE-2020-10812.html * https://www.suse.com/security/cve/CVE-2021-37501.html * https://www.suse.com/security/cve/CVE-2024-29158.html *https://www.suse.com/security/cve/CVE-2024-29161.html * https://www.suse.com/security/cve/CVE-2024-29166.html * https://www.suse.com/security/cve/CVE-2024-32608.html * https://www.suse.com/security/cve/CVE-2024-32610.html * https://www.suse.com/security/cve/CVE-2024-32614.html * https://www.suse.com/security/cve/CVE-2024-32619.html * https://www.suse.com/security/cve/CVE-2024-32620.html * https://www.suse.com/security/cve/CVE-2024-33873.html * https://www.suse.com/security/cve/CVE-2024-33874.html * https://www.suse.com/security/cve/CVE-2024-33875.html * https://bugzilla.suse.com/show_bug.cgi?id=1011205 * https://bugzilla.suse.com/show_bug.cgi?id=1093641 * https://bugzilla.suse.com/show_bug.cgi?id=1125882 * https://bugzilla.suse.com/show_bug.cgi?id=1133222 * https://bugzilla.suse.com/show_bug.cgi?id=1167400 * https://bugzilla.suse.com/show_bug.cgi?id=1207973 * https://bugzilla.suse.com/show_bug.cgi?id=1209548 * https://bugzilla.suse.com/show_bug.cgi?id=1210049 * https://bugzilla.suse.com/show_bug.cgi?id=1224158 . Crucial safety enhancement roll-out for hdf5, netcdf, trilinos that addresses multiple critical flaws with considerable ramifications.. hdf5 security update, netcdf vulnerabilities, trilinos patch, SUSE Linux updates, openSUSE security advisory. . Severity: Important. LinuxSecurity.com Team

Sep 05, 2024 •Important SuSE

security advisorysecurity issuecritical

Mageia: 2021-0580 Critical Update for NetCDF ezXML Security Issues

Multiple security issues found in ezXML, bundled in netcdf References: - https://bugs.mageia.org/show_bug.cgi?id=29241 - https://lists.debian.org/debian-lts-announce/2021/07/msg00005.html . MGASA-2021-0580 - Updated netcdf packages fix security vulnerability Publication date: 23 Dec 2021 URL: https://advisories.mageia.org/MGASA-2021-0580.html Type: security Affected Mageia releases: 8 CVE: CVE-2019-20005, CVE-2019-20006, CVE-2019-20007, CVE-2019-20198, CVE-2019-20199, CVE-2019-20200, CVE-2019-20201, CVE-2019-20202, CVE-2021-26220, CVE-2021-26221, CVE-2021-26222, CVE-2021-30485, CVE-2021-31229, CVE-2021-31347, CVE-2021-31348, CVE-2021-31598 Multiple security issues found in ezXML, bundled in netcdf References: - https://bugs.mageia.org/show_bug.cgi?id=29241 - https://lists.debian.org/debian-lts-announce/2021/07/msg00005.html - https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989360 - - https://www.cve.org/CVERecord?id=CVE-2019-20005 - https://www.cve.org/CVERecord?id=CVE-2019-20006 - https://www.cve.org/CVERecord?id=CVE-2019-20007 - https://www.cve.org/CVERecord?id=CVE-2019-20198 - https://www.cve.org/CVERecord?id=CVE-2019-20199 - https://www.cve.org/CVERecord?id=CVE-2019-20200 - https://www.cve.org/CVERecord?id=CVE-2019-20201 - https://www.cve.org/CVERecord?id=CVE-2019-20202 - https://www.cve.org/CVERecord?id=CVE-2021-26220 - https://www.cve.org/CVERecord?id=CVE-2021-26221 - https://www.cve.org/CVERecord?id=CVE-2021-26222 - https://www.cve.org/CVERecord?id=CVE-2021-30485 - https://www.cve.org/CVERecord?id=CVE-2021-31229 - https://www.cve.org/CVERecord?id=CVE-2021-31347 - https://www.cve.org/CVERecord?id=CVE-2021-31348 - https://www.cve.org/CVERecord?id=CVE-2021-31598 SRPMS: - 8/core/netcdf-4.7.4-3.1.mga8 . Mageia 2021-0590 addresses various vulnerabilities in netcdf impacting version 8. Comprehensive update information and resource links provided.. Mageia NetCDF Security Fix, ezXML Issues, Critical Security Update, MageiaSecurity Advisory. . Severity: Critical. LinuxSecurity.com Team

Dec 23, 2021 •Critical Mageia

Banner 2 1028x280 1708121730 1 1771599631

security advisoryupdateimportant

openSUSE Leap 15.3 Security Update: Important NetCDF Threat Resolved

An update that fixes 16 vulnerabilities is now available. . openSUSE Security Update: Security update for netcdf ______________________________________________________________________________ Announcement ID: openSUSE-SU-2021:3873-1 Rating: important References: #1191856 Cross-References: CVE-2019-20005 CVE-2019-20006 CVE-2019-20007 CVE-2019-20198 CVE-2019-20199 CVE-2019-20200 CVE-2019-20201 CVE-2019-20202 CVE-2021-26220 CVE-2021-26221 CVE-2021-26222 CVE-2021-30485 CVE-2021-31229 CVE-2021-31347 CVE-2021-31348 CVE-2021-31598 CVSS scores: CVE-2019-20005 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20005 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20006 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2019-20006 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20007 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20007 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20198 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20198 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20199 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20199 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20200 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20200 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20201 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20201 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20202 (NVD) : 6.5CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20202 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-26220 (SUSE): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-26221 (SUSE): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-26222 (SUSE): 6 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:H CVE-2021-30485 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-30485 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31229 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31347 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31348 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31348 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31598 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-31598 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: openSUSE Leap 15.3 ______________________________________________________________________________ An update that fixes 16 vulnerabilities is now available. Description: This update for netcdf fixes the following issues: - Fixed multiple vulnerabilities in ezXML: CVE-2019-20007, CVE-2019-20006, CVE-2019-20201, CVE-2019-20202, CVE-2019-20199, CVE-2019-20200, CVE-2019-20198, CVE-2021-26221, CVE-2021-26222, CVE-2021-30485, CVE-2021-31229, CVE-2021-31347, CVE-2021-31348, CVE-2021-31598 (bsc#1191856) Note: * CVE-2021-26220 not relevant for netcdf: code isn't used. * CVE-2019-20005 Issue cannot be reproduced and no patch is available upstream. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypperpatch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2021-3873=1 Package List: - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): libnetcdf-gnu-hpc-4.7.4-4.3.2 libnetcdf-gnu-mpich-hpc-4.7.4-4.3.2 libnetcdf-gnu-mvapich2-hpc-4.7.4-4.3.2 libnetcdf-gnu-openmpi2-hpc-4.7.4-4.3.2 libnetcdf-gnu-openmpi3-hpc-4.7.4-4.3.2 libnetcdf-gnu-openmpi4-hpc-4.7.4-4.3.2 libnetcdf18-4.7.4-4.3.2 libnetcdf18-debuginfo-4.7.4-4.3.2 libnetcdf18-openmpi2-4.7.4-4.3.2 libnetcdf18-openmpi2-debuginfo-4.7.4-4.3.2 libnetcdf18-openmpi3-4.7.4-4.3.2 libnetcdf18-openmpi3-debuginfo-4.7.4-4.3.2 libnetcdf18-openmpi4-4.7.4-4.3.2 libnetcdf18-openmpi4-debuginfo-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-hpc-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-hpc-debuginfo-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-mpich-hpc-debuginfo-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-mvapich2-hpc-debuginfo-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-openmpi2-hpc-debuginfo-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-openmpi3-hpc-debuginfo-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-openmpi4-hpc-debuginfo-4.7.4-4.3.2 netcdf-4.7.4-4.3.2 netcdf-debuginfo-4.7.4-4.3.2 netcdf-debugsource-4.7.4-4.3.2 netcdf-devel-4.7.4-4.3.2 netcdf-devel-data-4.7.4-4.3.2 netcdf-devel-debuginfo-4.7.4-4.3.2 netcdf-devel-static-4.7.4-4.3.2 netcdf-openmpi2-4.7.4-4.3.2 netcdf-openmpi2-debuginfo-4.7.4-4.3.2 netcdf-openmpi2-debugsource-4.7.4-4.3.2 netcdf-openmpi2-devel-4.7.4-4.3.2 netcdf-openmpi2-devel-debuginfo-4.7.4-4.3.2 netcdf-openmpi2-devel-static-4.7.4-4.3.2 netcdf-openmpi3-4.7.4-4.3.2 netcdf-openmpi3-debuginfo-4.7.4-4.3.2 netcdf-openmpi3-debugsource-4.7.4-4.3.2 netcdf-openmpi3-devel-4.7.4-4.3.2 netcdf-openmpi3-devel-debuginfo-4.7.4-4.3.2 netcdf-openmpi3-devel-static-4.7.4-4.3.2 netcdf-openmpi4-4.7.4-4.3.2 netcdf-openmpi4-debuginfo-4.7.4-4.3.2 netcdf-openmpi4-debugsource-4.7.4-4.3.2 netcdf-openmpi4-devel-4.7.4-4.3.2 netcdf-openmpi4-devel-debuginfo-4.7.4-4.3.2 netcdf-openmpi4-devel-static-4.7.4-4.3.2 netcdf_4_7_4-gnu-hpc-4.7.4-4.3.2 netcdf_4_7_4-gnu-hpc-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-hpc-debugsource-4.7.4-4.3.2 netcdf_4_7_4-gnu-hpc-devel-4.7.4-4.3.2 netcdf_4_7_4-gnu-hpc-devel-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-hpc-devel-static-4.7.4-4.3.2 netcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2 netcdf_4_7_4-gnu-mpich-hpc-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-mpich-hpc-debugsource-4.7.4-4.3.2 netcdf_4_7_4-gnu-mpich-hpc-devel-4.7.4-4.3.2 netcdf_4_7_4-gnu-mpich-hpc-devel-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-mpich-hpc-devel-static-4.7.4-4.3.2 netcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2 netcdf_4_7_4-gnu-mvapich2-hpc-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-mvapich2-hpc-debugsource-4.7.4-4.3.2 netcdf_4_7_4-gnu-mvapich2-hpc-devel-4.7.4-4.3.2 netcdf_4_7_4-gnu-mvapich2-hpc-devel-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-mvapich2-hpc-devel-static-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi2-hpc-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi2-hpc-debugsource-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi2-hpc-devel-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi2-hpc-devel-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi2-hpc-devel-static-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi3-hpc-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi3-hpc-debugsource-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi3-hpc-devel-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi3-hpc-devel-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi3-hpc-devel-static-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi4-hpc-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi4-hpc-debugsource-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi4-hpc-devel-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi4-hpc-devel-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi4-hpc-devel-static-4.7.4-4.3.2 - openSUSE Leap 15.3 (x86_64): libnetcdf18-32bit-4.7.4-4.3.2 libnetcdf18-32bit-debuginfo-4.7.4-4.3.2 libnetcdf18-openmpi2-32bit-4.7.4-4.3.2 libnetcdf18-openmpi2-32bit-debuginfo-4.7.4-4.3.2 libnetcdf18-openmpi3-32bit-4.7.4-4.3.2 libnetcdf18-openmpi3-32bit-debuginfo-4.7.4-4.3.2 libnetcdf18-openmpi4-32bit-4.7.4-4.3.2 libnetcdf18-openmpi4-32bit-debuginfo-4.7.4-4.3.2 - openSUSE Leap 15.3 (noarch): netcdf-gnu-hpc-4.7.4-4.3.2 netcdf-gnu-hpc-devel-4.7.4-4.3.2 netcdf-gnu-mpich-hpc-4.7.4-4.3.2 netcdf-gnu-mpich-hpc-devel-4.7.4-4.3.2 netcdf-gnu-mvapich2-hpc-4.7.4-4.3.2 netcdf-gnu-mvapich2-hpc-devel-4.7.4-4.3.2 netcdf-gnu-openmpi2-hpc-4.7.4-4.3.2 netcdf-gnu-openmpi2-hpc-devel-4.7.4-4.3.2 netcdf-gnu-openmpi3-hpc-4.7.4-4.3.2 netcdf-gnu-openmpi3-hpc-devel-4.7.4-4.3.2 netcdf-gnu-openmpi4-hpc-4.7.4-4.3.2 netcdf-gnu-openmpi4-hpc-devel-4.7.4-4.3.2 References: https://www.suse.com/security/cve/CVE-2019-20005.html https://www.suse.com/security/cve/CVE-2019-20006.html https://www.suse.com/security/cve/CVE-2019-20007.html https://www.suse.com/security/cve/CVE-2019-20198.html https://www.suse.com/security/cve/CVE-2019-20199.html https://www.suse.com/security/cve/CVE-2019-20200.html https://www.suse.com/security/cve/CVE-2019-20201.html https://www.suse.com/security/cve/CVE-2019-20202.html https://www.suse.com/security/cve/CVE-2021-26220.html https://www.suse.com/security/cve/CVE-2021-26221.html https://www.suse.com/security/cve/CVE-2021-26222.html https://www.suse.com/security/cve/CVE-2021-30485.html https://www.suse.com/security/cve/CVE-2021-31229.html https://www.suse.com/security/cve/CVE-2021-31347.html https://www.suse.com/security/cve/CVE-2021-31348.html https://www.suse.com/security/cve/CVE-2021-31598.html https://bugzilla.suse.com/1191856 . A significant announcement for openSUSE has been made regarding 16 vulnerabilities in netcdf. Essential updates guarantee the security of the system.. openSUSE Update, netcdf Security Fixes, Software Patch, Vulnerability Management, Critical Update. . Severity: Important. LinuxSecurity.com Team

Dec 02, 2021 •Important OpenSUSE

security advisorysecurity issueimportant

SUSE 15-SP3: 2021:3873-1 Important: Security Update for Netcdf

An update that fixes 16 vulnerabilities is now available. . SUSE Security Update: Security update for netcdf ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:3873-1 Rating: important References: #1191856 Cross-References: CVE-2019-20005 CVE-2019-20006 CVE-2019-20007 CVE-2019-20198 CVE-2019-20199 CVE-2019-20200 CVE-2019-20201 CVE-2019-20202 CVE-2021-26220 CVE-2021-26221 CVE-2021-26222 CVE-2021-30485 CVE-2021-31229 CVE-2021-31347 CVE-2021-31348 CVE-2021-31598 CVSS scores: CVE-2019-20005 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20005 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20006 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2019-20006 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20007 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20007 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20198 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20198 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20199 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20199 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20200 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20200 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20201 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20201 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20202 (NVD) : 6.5CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20202 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-26220 (SUSE): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-26221 (SUSE): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-26222 (SUSE): 6 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:H CVE-2021-30485 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-30485 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31229 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31347 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31348 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31348 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31598 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-31598 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3 SUSE Linux Enterprise Module for HPC 15-SP3 ______________________________________________________________________________ An update that fixes 16 vulnerabilities is now available. Description: This update for netcdf fixes the following issues: - Fixed multiple vulnerabilities in ezXML: CVE-2019-20007, CVE-2019-20006, CVE-2019-20201, CVE-2019-20202, CVE-2019-20199, CVE-2019-20200, CVE-2019-20198, CVE-2021-26221, CVE-2021-26222, CVE-2021-30485, CVE-2021-31229, CVE-2021-31347, CVE-2021-31348, CVE-2021-31598 (bsc#1191856) Note: * CVE-2021-26220 not relevant for netcdf: code isn't used. * CVE-2019-20005 Issue cannot be reproduced and no patch is available upstream. Patch Instructions: To install thisSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3: zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP3-2021-3873=1 - SUSE Linux Enterprise Module for HPC 15-SP3: zypper in -t patch SUSE-SLE-Module-HPC-15-SP3-2021-3873=1 Package List: - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3 (ppc64le s390x): libnetcdf-gnu-hpc-4.7.4-4.3.2 libnetcdf-gnu-mpich-hpc-4.7.4-4.3.2 libnetcdf-gnu-mvapich2-hpc-4.7.4-4.3.2 libnetcdf-gnu-openmpi3-hpc-4.7.4-4.3.2 libnetcdf-gnu-openmpi4-hpc-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-hpc-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-hpc-debuginfo-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-mpich-hpc-debuginfo-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-mvapich2-hpc-debuginfo-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-openmpi3-hpc-debuginfo-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-openmpi4-hpc-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-hpc-4.7.4-4.3.2 netcdf_4_7_4-gnu-hpc-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-hpc-debugsource-4.7.4-4.3.2 netcdf_4_7_4-gnu-hpc-devel-4.7.4-4.3.2 netcdf_4_7_4-gnu-hpc-devel-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-hpc-devel-static-4.7.4-4.3.2 netcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2 netcdf_4_7_4-gnu-mpich-hpc-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-mpich-hpc-debugsource-4.7.4-4.3.2 netcdf_4_7_4-gnu-mpich-hpc-devel-4.7.4-4.3.2 netcdf_4_7_4-gnu-mpich-hpc-devel-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-mpich-hpc-devel-static-4.7.4-4.3.2 netcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2 netcdf_4_7_4-gnu-mvapich2-hpc-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-mvapich2-hpc-debugsource-4.7.4-4.3.2 netcdf_4_7_4-gnu-mvapich2-hpc-devel-4.7.4-4.3.2 netcdf_4_7_4-gnu-mvapich2-hpc-devel-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-mvapich2-hpc-devel-static-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi3-hpc-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi3-hpc-debugsource-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi3-hpc-devel-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi3-hpc-devel-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi3-hpc-devel-static-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi4-hpc-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi4-hpc-debugsource-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi4-hpc-devel-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi4-hpc-devel-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi4-hpc-devel-static-4.7.4-4.3.2 - SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3 (noarch): netcdf-gnu-hpc-4.7.4-4.3.2 netcdf-gnu-hpc-devel-4.7.4-4.3.2 netcdf-gnu-mpich-hpc-4.7.4-4.3.2 netcdf-gnu-mpich-hpc-devel-4.7.4-4.3.2 netcdf-gnu-mvapich2-hpc-4.7.4-4.3.2 netcdf-gnu-mvapich2-hpc-devel-4.7.4-4.3.2 netcdf-gnu-openmpi3-hpc-4.7.4-4.3.2 netcdf-gnu-openmpi3-hpc-devel-4.7.4-4.3.2 netcdf-gnu-openmpi4-hpc-4.7.4-4.3.2 netcdf-gnu-openmpi4-hpc-devel-4.7.4-4.3.2 - SUSE Linux Enterprise Module for HPC 15-SP3 (aarch64 x86_64): libnetcdf-gnu-hpc-4.7.4-4.3.2 libnetcdf-gnu-mpich-hpc-4.7.4-4.3.2 libnetcdf-gnu-mvapich2-hpc-4.7.4-4.3.2 libnetcdf-gnu-openmpi3-hpc-4.7.4-4.3.2 libnetcdf-gnu-openmpi4-hpc-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-hpc-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-hpc-debuginfo-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-mpich-hpc-debuginfo-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-mvapich2-hpc-debuginfo-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-openmpi3-hpc-debuginfo-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2 libnetcdf_4_7_4-gnu-openmpi4-hpc-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-hpc-4.7.4-4.3.2 netcdf_4_7_4-gnu-hpc-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-hpc-debugsource-4.7.4-4.3.2 netcdf_4_7_4-gnu-hpc-devel-4.7.4-4.3.2 netcdf_4_7_4-gnu-hpc-devel-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-hpc-devel-static-4.7.4-4.3.2 netcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2 netcdf_4_7_4-gnu-mpich-hpc-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-mpich-hpc-debugsource-4.7.4-4.3.2 netcdf_4_7_4-gnu-mpich-hpc-devel-4.7.4-4.3.2 netcdf_4_7_4-gnu-mpich-hpc-devel-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-mpich-hpc-devel-static-4.7.4-4.3.2 netcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2 netcdf_4_7_4-gnu-mvapich2-hpc-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-mvapich2-hpc-debugsource-4.7.4-4.3.2 netcdf_4_7_4-gnu-mvapich2-hpc-devel-4.7.4-4.3.2 netcdf_4_7_4-gnu-mvapich2-hpc-devel-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-mvapich2-hpc-devel-static-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi3-hpc-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi3-hpc-debugsource-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi3-hpc-devel-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi3-hpc-devel-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi3-hpc-devel-static-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi4-hpc-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi4-hpc-debugsource-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi4-hpc-devel-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi4-hpc-devel-debuginfo-4.7.4-4.3.2 netcdf_4_7_4-gnu-openmpi4-hpc-devel-static-4.7.4-4.3.2 - SUSE Linux Enterprise Module for HPC 15-SP3 (noarch): netcdf-gnu-hpc-4.7.4-4.3.2 netcdf-gnu-hpc-devel-4.7.4-4.3.2 netcdf-gnu-mpich-hpc-4.7.4-4.3.2 netcdf-gnu-mpich-hpc-devel-4.7.4-4.3.2 netcdf-gnu-mvapich2-hpc-4.7.4-4.3.2 netcdf-gnu-mvapich2-hpc-devel-4.7.4-4.3.2 netcdf-gnu-openmpi3-hpc-4.7.4-4.3.2 netcdf-gnu-openmpi3-hpc-devel-4.7.4-4.3.2 netcdf-gnu-openmpi4-hpc-4.7.4-4.3.2 netcdf-gnu-openmpi4-hpc-devel-4.7.4-4.3.2 References: https://www.suse.com/security/cve/CVE-2019-20005.html https://www.suse.com/security/cve/CVE-2019-20006.html https://www.suse.com/security/cve/CVE-2019-20007.html https://www.suse.com/security/cve/CVE-2019-20198.html https://www.suse.com/security/cve/CVE-2019-20199.html https://www.suse.com/security/cve/CVE-2019-20200.html https://www.suse.com/security/cve/CVE-2019-20201.html https://www.suse.com/security/cve/CVE-2019-20202.html https://www.suse.com/security/cve/CVE-2021-26220.html https://www.suse.com/security/cve/CVE-2021-26221.html https://www.suse.com/security/cve/CVE-2021-26222.html https://www.suse.com/security/cve/CVE-2021-30485.html https://www.suse.com/security/cve/CVE-2021-31229.html https://www.suse.com/security/cve/CVE-2021-31347.html https://www.suse.com/security/cve/CVE-2021-31348.html https://www.suse.com/security/cve/CVE-2021-31598.html https://bugzilla.suse.com/1191856 . SUSE released critical patches for netcdf that tackle several security vulnerabilities. Make sure your system is updated without delay.. SUSE Security Update, Netcdf Fixes, Linux Security Updates. . Severity: Important. LinuxSecurity.com Team

Dec 02, 2021 •Important SuSE

security advisorysecurity updatevulnerability

openSUSE Leap 15.3: 2021:3815-1 Important: NetCDF Multiple Threats

An update that fixes 16 vulnerabilities is now available. . openSUSE Security Update: Security update for netcdf ______________________________________________________________________________ Announcement ID: openSUSE-SU-2021:3815-1 Rating: important References: #1191856 Cross-References: CVE-2019-20005 CVE-2019-20006 CVE-2019-20007 CVE-2019-20198 CVE-2019-20199 CVE-2019-20200 CVE-2019-20201 CVE-2019-20202 CVE-2021-26220 CVE-2021-26221 CVE-2021-26222 CVE-2021-30485 CVE-2021-31229 CVE-2021-31347 CVE-2021-31348 CVE-2021-31598 CVSS scores: CVE-2019-20005 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20005 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20006 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2019-20006 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20007 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20007 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20198 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20198 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20199 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20199 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20200 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20200 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20201 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20201 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20202 (NVD) : 6.5CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20202 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-26220 (SUSE): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-26221 (SUSE): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-26222 (SUSE): 6 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:H CVE-2021-30485 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-30485 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31229 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31347 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31348 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31348 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31598 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-31598 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: openSUSE Leap 15.3 ______________________________________________________________________________ An update that fixes 16 vulnerabilities is now available. Description: This update for netcdf fixes the following issues: - Fixed multiple vulnerabilities in ezXML: CVE-2019-20007, CVE-2019-20006, CVE-2019-20201, CVE-2019-20202, CVE-2019-20199, CVE-2019-20200, CVE-2019-20198, CVE-2021-26221, CVE-2021-26222, CVE-2021-30485, CVE-2021-31229, CVE-2021-31347, CVE-2021-31348, CVE-2021-31598 (bsc#1191856) Note: * CVE-2021-26220 not relevant for netcdf: code isn't used. * CVE-2019-20005 Issue cannot be reproduced and no patch is available upstream. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypperpatch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2021-3815=1 Package List: - openSUSE Leap 15.3 (aarch64 ppc64le x86_64): libnetcdf-gnu-openmpi1-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-hpc-debuginfo-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-mpich-hpc-debuginfo-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-mvapich2-hpc-debuginfo-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-openmpi1-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-openmpi1-hpc-debuginfo-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-openmpi2-hpc-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 netcdf_4_6_1-gnu-hpc-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 netcdf_4_6_1-gnu-hpc-devel-data-4.6.1-10.7.2 netcdf_4_6_1-gnu-hpc-devel-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-debugsource-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-devel-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-debugsource-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-devel-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi1-hpc-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi1-hpc-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi1-hpc-devel-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi1-hpc-devel-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi1-hpc-devel-static-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi2-hpc-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi2-hpc-devel-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 - openSUSE Leap 15.3 (noarch): netcdf-gnu-openmpi1-hpc-4.6.1-10.7.2 netcdf-gnu-openmpi1-hpc-devel-4.6.1-10.7.2 References: https://www.suse.com/security/cve/CVE-2019-20005.html https://www.suse.com/security/cve/CVE-2019-20006.html https://www.suse.com/security/cve/CVE-2019-20007.html https://www.suse.com/security/cve/CVE-2019-20198.html https://www.suse.com/security/cve/CVE-2019-20199.html https://www.suse.com/security/cve/CVE-2019-20200.html https://www.suse.com/security/cve/CVE-2019-20201.html https://www.suse.com/security/cve/CVE-2019-20202.html https://www.suse.com/security/cve/CVE-2021-26220.html https://www.suse.com/security/cve/CVE-2021-26221.html https://www.suse.com/security/cve/CVE-2021-26222.html https://www.suse.com/security/cve/CVE-2021-30485.html https://www.suse.com/security/cve/CVE-2021-31229.html https://www.suse.com/security/cve/CVE-2021-31347.html https://www.suse.com/security/cve/CVE-2021-31348.html https://www.suse.com/security/cve/CVE-2021-31598.html https://bugzilla.suse.com/1191856 . The latest openSUSE netcdf update tackles various critical security vulnerabilities to ensure enhanced system protection.. openSUSE Update, netcdf Security, Patch Important, Security Issue Fix. . Severity: Important. LinuxSecurity.com Team

Nov 30, 2021 •Important OpenSUSE

security advisorycritical issuesoftware update

SUSE: 2021:3815-1 Important Security Advisory on NetCDF Software

An update that fixes 16 vulnerabilities is now available. . SUSE Security Update: Security update for netcdf ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:3815-1 Rating: important References: #1191856 Cross-References: CVE-2019-20005 CVE-2019-20006 CVE-2019-20007 CVE-2019-20198 CVE-2019-20199 CVE-2019-20200 CVE-2019-20201 CVE-2019-20202 CVE-2021-26220 CVE-2021-26221 CVE-2021-26222 CVE-2021-30485 CVE-2021-31229 CVE-2021-31347 CVE-2021-31348 CVE-2021-31598 CVSS scores: CVE-2019-20005 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20005 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20006 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2019-20006 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20007 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20007 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20198 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20198 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20199 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20199 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20200 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20200 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20201 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20201 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20202 (NVD) : 6.5CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20202 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-26220 (SUSE): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-26221 (SUSE): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-26222 (SUSE): 6 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:H CVE-2021-30485 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-30485 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31229 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31347 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31348 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31348 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31598 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-31598 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS ______________________________________________________________________________ An update that fixes 16 vulnerabilities is now available. Description: This update for netcdf fixes the following issues: - Fixed multiple vulnerabilities in ezXML: CVE-2019-20007, CVE-2019-20006, CVE-2019-20201, CVE-2019-20202, CVE-2019-20199, CVE-2019-20200, CVE-2019-20198, CVE-2021-26221, CVE-2021-26222, CVE-2021-30485, CVE-2021-31229, CVE-2021-31347, CVE-2021-31348, CVE-2021-31598 (bsc#1191856) Note: * CVE-2021-26220 not relevant for netcdf: code isn't used. * CVE-2019-20005 Issue cannot be reproduced and no patch is available upstream. Patch Instructions: Toinstall this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-LTSS-2021-3815=1 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-SP1-ESPOS-2021-3815=1 Package List: - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS (aarch64 x86_64): libnetcdf-gnu-hpc-4.6.1-10.7.2 libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-hpc-debuginfo-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-mpich-hpc-debuginfo-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-mvapich2-hpc-debuginfo-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-openmpi2-hpc-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 netcdf_4_6_1-gnu-hpc-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 netcdf_4_6_1-gnu-hpc-devel-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-debugsource-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-devel-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-debugsource-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-devel-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi2-hpc-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi2-hpc-devel-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 - SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS (noarch): netcdf-gnu-hpc-4.6.1-10.7.2 netcdf-gnu-hpc-devel-4.6.1-10.7.2 netcdf-gnu-mpich-hpc-4.6.1-10.7.2 netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (aarch64 x86_64): libnetcdf-gnu-hpc-4.6.1-10.7.2 libnetcdf-gnu-mpich-hpc-4.6.1-10.7.2 libnetcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 libnetcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-hpc-debuginfo-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-mpich-hpc-debuginfo-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-mvapich2-hpc-debuginfo-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 libnetcdf_4_6_1-gnu-openmpi2-hpc-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2 netcdf_4_6_1-gnu-hpc-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2 netcdf_4_6_1-gnu-hpc-devel-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-debugsource-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-devel-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-debugsource-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-devel-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi2-hpc-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi2-hpc-devel-debuginfo-4.6.1-10.7.2 netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2 - SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS (noarch): netcdf-gnu-hpc-4.6.1-10.7.2 netcdf-gnu-hpc-devel-4.6.1-10.7.2 netcdf-gnu-mpich-hpc-4.6.1-10.7.2 netcdf-gnu-mpich-hpc-devel-4.6.1-10.7.2 netcdf-gnu-mvapich2-hpc-4.6.1-10.7.2 netcdf-gnu-mvapich2-hpc-devel-4.6.1-10.7.2 netcdf-gnu-openmpi2-hpc-4.6.1-10.7.2 netcdf-gnu-openmpi2-hpc-devel-4.6.1-10.7.2 References: https://www.suse.com/security/cve/CVE-2019-20005.html https://www.suse.com/security/cve/CVE-2019-20006.html https://www.suse.com/security/cve/CVE-2019-20007.html https://www.suse.com/security/cve/CVE-2019-20198.html https://www.suse.com/security/cve/CVE-2019-20199.html https://www.suse.com/security/cve/CVE-2019-20200.html https://www.suse.com/security/cve/CVE-2019-20201.html https://www.suse.com/security/cve/CVE-2019-20202.html https://www.suse.com/security/cve/CVE-2021-26220.html https://www.suse.com/security/cve/CVE-2021-26221.html https://www.suse.com/security/cve/CVE-2021-26222.html https://www.suse.com/security/cve/CVE-2021-30485.html https://www.suse.com/security/cve/CVE-2021-31229.html https://www.suse.com/security/cve/CVE-2021-31347.html https://www.suse.com/security/cve/CVE-2021-31348.html https://www.suse.com/security/cve/CVE-2021-31598.html https://bugzilla.suse.com/1191856 . SUSE Linux hasreleased a security update that addresses 16 critical vulnerabilities in the netcdf library. Essential updates are now ready for application on various distributions.. SUSE Security, NetCDF Update, Patches, Linux Fixes, Software Issues. . Severity: Important. LinuxSecurity.com Team

Nov 30, 2021 •Important SuSE

security advisoryupdatepatch

SUSE Linux Enterprise HPC: 2021:3804-1 Important: NetCDF Issues

An update that fixes 16 vulnerabilities is now available. . SUSE Security Update: Security update for netcdf ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:3804-1 Rating: important References: #1191856 Cross-References: CVE-2019-20005 CVE-2019-20006 CVE-2019-20007 CVE-2019-20198 CVE-2019-20199 CVE-2019-20200 CVE-2019-20201 CVE-2019-20202 CVE-2021-26220 CVE-2021-26221 CVE-2021-26222 CVE-2021-30485 CVE-2021-31229 CVE-2021-31347 CVE-2021-31348 CVE-2021-31598 CVSS scores: CVE-2019-20005 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20005 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20006 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2019-20006 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20007 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20007 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20198 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20198 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20199 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20199 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20200 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20200 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20201 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20201 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20202 (NVD) : 6.5CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20202 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-26220 (SUSE): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-26221 (SUSE): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-26222 (SUSE): 6 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:H CVE-2021-30485 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-30485 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31229 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31347 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31348 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31348 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31598 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-31598 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise High Performance Computing 15-ESPOS ______________________________________________________________________________ An update that fixes 16 vulnerabilities is now available. Description: This update for netcdf fixes the following issues: - Fixed multiple vulnerabilities in ezXML: CVE-2019-20007, CVE-2019-20006, CVE-2019-20201, CVE-2019-20202, CVE-2019-20199, CVE-2019-20200, CVE-2019-20198, CVE-2021-26221, CVE-2021-26222, CVE-2021-30485, CVE-2021-31229, CVE-2021-31347, CVE-2021-31348, CVE-2021-31598 (bsc#1191856) Note: * CVE-2021-26220 not relevant for netcdf: code isn't used. * CVE-2019-20005 Issue cannot be reproduced and no patch is available upstream. Patch Instructions: To installthis SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise High Performance Computing 15-LTSS: zypper in -t patch SUSE-SLE-Product-HPC-15-2021-3804=1 - SUSE Linux Enterprise High Performance Computing 15-ESPOS: zypper in -t patch SUSE-SLE-Product-HPC-15-2021-3804=1 Package List: - SUSE Linux Enterprise High Performance Computing 15-LTSS (aarch64 x86_64): libnetcdf-gnu-hpc-4.6.1-5.7.1 libnetcdf-gnu-mpich-hpc-4.6.1-5.7.1 libnetcdf-gnu-mvapich2-hpc-4.6.1-5.7.1 libnetcdf-gnu-openmpi2-hpc-4.6.1-5.7.1 libnetcdf_4_6_1-gnu-hpc-4.6.1-5.7.1 libnetcdf_4_6_1-gnu-hpc-debuginfo-4.6.1-5.7.1 libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-5.7.1 libnetcdf_4_6_1-gnu-mpich-hpc-debuginfo-4.6.1-5.7.1 libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-5.7.1 libnetcdf_4_6_1-gnu-mvapich2-hpc-debuginfo-4.6.1-5.7.1 libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-5.7.1 libnetcdf_4_6_1-gnu-openmpi2-hpc-debuginfo-4.6.1-5.7.1 netcdf_4_6_1-gnu-hpc-4.6.1-5.7.1 netcdf_4_6_1-gnu-hpc-debuginfo-4.6.1-5.7.1 netcdf_4_6_1-gnu-hpc-devel-4.6.1-5.7.1 netcdf_4_6_1-gnu-hpc-devel-debuginfo-4.6.1-5.7.1 netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-5.7.1 netcdf_4_6_1-gnu-mpich-hpc-4.6.1-5.7.1 netcdf_4_6_1-gnu-mpich-hpc-debuginfo-4.6.1-5.7.1 netcdf_4_6_1-gnu-mpich-hpc-debugsource-4.6.1-5.7.1 netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-5.7.1 netcdf_4_6_1-gnu-mpich-hpc-devel-debuginfo-4.6.1-5.7.1 netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-5.7.1 netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-5.7.1 netcdf_4_6_1-gnu-mvapich2-hpc-debuginfo-4.6.1-5.7.1 netcdf_4_6_1-gnu-mvapich2-hpc-debugsource-4.6.1-5.7.1 netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-5.7.1 netcdf_4_6_1-gnu-mvapich2-hpc-devel-debuginfo-4.6.1-5.7.1 netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-5.7.1 netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-5.7.1 netcdf_4_6_1-gnu-openmpi2-hpc-debuginfo-4.6.1-5.7.1 netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-5.7.1 netcdf_4_6_1-gnu-openmpi2-hpc-devel-debuginfo-4.6.1-5.7.1 netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-5.7.1 - SUSE Linux Enterprise High Performance Computing 15-LTSS (noarch): netcdf-gnu-hpc-4.6.1-5.7.1 netcdf-gnu-hpc-devel-4.6.1-5.7.1 netcdf-gnu-mpich-hpc-4.6.1-5.7.1 netcdf-gnu-mpich-hpc-devel-4.6.1-5.7.1 netcdf-gnu-mvapich2-hpc-4.6.1-5.7.1 netcdf-gnu-mvapich2-hpc-devel-4.6.1-5.7.1 netcdf-gnu-openmpi2-hpc-4.6.1-5.7.1 netcdf-gnu-openmpi2-hpc-devel-4.6.1-5.7.1 - SUSE Linux Enterprise High Performance Computing 15-ESPOS (aarch64 x86_64): libnetcdf-gnu-hpc-4.6.1-5.7.1 libnetcdf-gnu-mpich-hpc-4.6.1-5.7.1 libnetcdf-gnu-mvapich2-hpc-4.6.1-5.7.1 libnetcdf-gnu-openmpi2-hpc-4.6.1-5.7.1 libnetcdf_4_6_1-gnu-hpc-4.6.1-5.7.1 libnetcdf_4_6_1-gnu-hpc-debuginfo-4.6.1-5.7.1 libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-5.7.1 libnetcdf_4_6_1-gnu-mpich-hpc-debuginfo-4.6.1-5.7.1 libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-5.7.1 libnetcdf_4_6_1-gnu-mvapich2-hpc-debuginfo-4.6.1-5.7.1 libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-5.7.1 libnetcdf_4_6_1-gnu-openmpi2-hpc-debuginfo-4.6.1-5.7.1 netcdf_4_6_1-gnu-hpc-4.6.1-5.7.1 netcdf_4_6_1-gnu-hpc-debuginfo-4.6.1-5.7.1 netcdf_4_6_1-gnu-hpc-devel-4.6.1-5.7.1 netcdf_4_6_1-gnu-hpc-devel-debuginfo-4.6.1-5.7.1 netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-5.7.1 netcdf_4_6_1-gnu-mpich-hpc-4.6.1-5.7.1 netcdf_4_6_1-gnu-mpich-hpc-debuginfo-4.6.1-5.7.1 netcdf_4_6_1-gnu-mpich-hpc-debugsource-4.6.1-5.7.1 netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-5.7.1 netcdf_4_6_1-gnu-mpich-hpc-devel-debuginfo-4.6.1-5.7.1 netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-5.7.1 netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-5.7.1 netcdf_4_6_1-gnu-mvapich2-hpc-debuginfo-4.6.1-5.7.1 netcdf_4_6_1-gnu-mvapich2-hpc-debugsource-4.6.1-5.7.1 netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-5.7.1 netcdf_4_6_1-gnu-mvapich2-hpc-devel-debuginfo-4.6.1-5.7.1 netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-5.7.1 netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-5.7.1 netcdf_4_6_1-gnu-openmpi2-hpc-debuginfo-4.6.1-5.7.1 netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-5.7.1 netcdf_4_6_1-gnu-openmpi2-hpc-devel-debuginfo-4.6.1-5.7.1 netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-5.7.1 - SUSE Linux Enterprise High Performance Computing 15-ESPOS (noarch): netcdf-gnu-hpc-4.6.1-5.7.1 netcdf-gnu-hpc-devel-4.6.1-5.7.1 netcdf-gnu-mpich-hpc-4.6.1-5.7.1 netcdf-gnu-mpich-hpc-devel-4.6.1-5.7.1 netcdf-gnu-mvapich2-hpc-4.6.1-5.7.1 netcdf-gnu-mvapich2-hpc-devel-4.6.1-5.7.1 netcdf-gnu-openmpi2-hpc-4.6.1-5.7.1 netcdf-gnu-openmpi2-hpc-devel-4.6.1-5.7.1 References: https://www.suse.com/security/cve/CVE-2019-20005.html https://www.suse.com/security/cve/CVE-2019-20006.html https://www.suse.com/security/cve/CVE-2019-20007.html https://www.suse.com/security/cve/CVE-2019-20198.html https://www.suse.com/security/cve/CVE-2019-20199.html https://www.suse.com/security/cve/CVE-2019-20200.html https://www.suse.com/security/cve/CVE-2019-20201.html https://www.suse.com/security/cve/CVE-2019-20202.html https://www.suse.com/security/cve/CVE-2021-26220.html https://www.suse.com/security/cve/CVE-2021-26221.html https://www.suse.com/security/cve/CVE-2021-26222.html https://www.suse.com/security/cve/CVE-2021-30485.html https://www.suse.com/security/cve/CVE-2021-31229.html https://www.suse.com/security/cve/CVE-2021-31347.html https://www.suse.com/security/cve/CVE-2021-31348.html https://www.suse.com/security/cve/CVE-2021-31598.html https://bugzilla.suse.com/1191856 . The latest netcdf release rectifies 16 concerns, bolstering protection for SUSE High-Performance Computing distributions.. SUSE Security Update,netcdf issues, High Performance Computing. . Severity: Important. LinuxSecurity.com Team

Nov 25, 2021 •Important SuSE

security advisoryissueimportant

SUSE: 2021:3805-1 Critical: High-Risk Issue with Netcdf Detected

An update that fixes 16 vulnerabilities is now available. . SUSE Security Update: Security update for netcdf ______________________________________________________________________________ Announcement ID: SUSE-SU-2021:3805-1 Rating: important References: #1191856 Cross-References: CVE-2019-20005 CVE-2019-20006 CVE-2019-20007 CVE-2019-20198 CVE-2019-20199 CVE-2019-20200 CVE-2019-20201 CVE-2019-20202 CVE-2021-26220 CVE-2021-26221 CVE-2021-26222 CVE-2021-30485 CVE-2021-31229 CVE-2021-31347 CVE-2021-31348 CVE-2021-31598 CVSS scores: CVE-2019-20005 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20005 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20006 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2019-20006 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20007 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20007 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20198 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20198 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20199 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20199 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20200 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20200 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20201 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20201 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20202 (NVD) : 6.5CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-20202 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-26220 (SUSE): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-26221 (SUSE): 4.7 CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-26222 (SUSE): 6 CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:H CVE-2021-30485 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-30485 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31229 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31347 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31348 (NVD) : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31348 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2021-31598 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2021-31598 (SUSE): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: SUSE Linux Enterprise Module for HPC 15-SP2 ______________________________________________________________________________ An update that fixes 16 vulnerabilities is now available. Description: This update for netcdf fixes the following issues: - Fixed multiple vulnerabilities in ezXML: CVE-2019-20007, CVE-2019-20006, CVE-2019-20201, CVE-2019-20202, CVE-2019-20199, CVE-2019-20200, CVE-2019-20198, CVE-2021-26221, CVE-2021-26222, CVE-2021-30485, CVE-2021-31229, CVE-2021-31347, CVE-2021-31348, CVE-2021-31598 (bsc#1191856) Note: * CVE-2021-26220 not relevant for netcdf: code isn't used. * CVE-2019-20005 Issue cannot be reproduced and no patch is available upstream. Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaSTonline_update or "zypper patch". Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Module for HPC 15-SP2: zypper in -t patch SUSE-SLE-Module-HPC-15-SP2-2021-3805=1 Package List: - SUSE Linux Enterprise Module for HPC 15-SP2 (aarch64 x86_64): libnetcdf-gnu-hpc-4.7.3-3.7.2 libnetcdf-gnu-mpich-hpc-4.7.3-3.7.2 libnetcdf-gnu-mvapich2-hpc-4.7.3-3.7.2 libnetcdf-gnu-openmpi2-hpc-4.7.3-3.7.2 libnetcdf-gnu-openmpi3-hpc-4.7.3-3.7.2 libnetcdf_4_7_3-gnu-hpc-4.7.3-3.7.2 libnetcdf_4_7_3-gnu-hpc-debuginfo-4.7.3-3.7.2 libnetcdf_4_7_3-gnu-mpich-hpc-4.7.3-3.7.2 libnetcdf_4_7_3-gnu-mpich-hpc-debuginfo-4.7.3-3.7.2 libnetcdf_4_7_3-gnu-mvapich2-hpc-4.7.3-3.7.2 libnetcdf_4_7_3-gnu-mvapich2-hpc-debuginfo-4.7.3-3.7.2 libnetcdf_4_7_3-gnu-openmpi2-hpc-4.7.3-3.7.2 libnetcdf_4_7_3-gnu-openmpi2-hpc-debuginfo-4.7.3-3.7.2 libnetcdf_4_7_3-gnu-openmpi3-hpc-4.7.3-3.7.2 libnetcdf_4_7_3-gnu-openmpi3-hpc-debuginfo-4.7.3-3.7.2 netcdf_4_7_3-gnu-hpc-4.7.3-3.7.2 netcdf_4_7_3-gnu-hpc-debuginfo-4.7.3-3.7.2 netcdf_4_7_3-gnu-hpc-debugsource-4.7.3-3.7.2 netcdf_4_7_3-gnu-hpc-devel-4.7.3-3.7.2 netcdf_4_7_3-gnu-hpc-devel-debuginfo-4.7.3-3.7.2 netcdf_4_7_3-gnu-hpc-devel-static-4.7.3-3.7.2 netcdf_4_7_3-gnu-mpich-hpc-4.7.3-3.7.2 netcdf_4_7_3-gnu-mpich-hpc-debuginfo-4.7.3-3.7.2 netcdf_4_7_3-gnu-mpich-hpc-debugsource-4.7.3-3.7.2 netcdf_4_7_3-gnu-mpich-hpc-devel-4.7.3-3.7.2 netcdf_4_7_3-gnu-mpich-hpc-devel-debuginfo-4.7.3-3.7.2 netcdf_4_7_3-gnu-mpich-hpc-devel-static-4.7.3-3.7.2 netcdf_4_7_3-gnu-mvapich2-hpc-4.7.3-3.7.2 netcdf_4_7_3-gnu-mvapich2-hpc-debuginfo-4.7.3-3.7.2 netcdf_4_7_3-gnu-mvapich2-hpc-debugsource-4.7.3-3.7.2 netcdf_4_7_3-gnu-mvapich2-hpc-devel-4.7.3-3.7.2 netcdf_4_7_3-gnu-mvapich2-hpc-devel-debuginfo-4.7.3-3.7.2 netcdf_4_7_3-gnu-mvapich2-hpc-devel-static-4.7.3-3.7.2 netcdf_4_7_3-gnu-openmpi2-hpc-4.7.3-3.7.2 netcdf_4_7_3-gnu-openmpi2-hpc-debuginfo-4.7.3-3.7.2 netcdf_4_7_3-gnu-openmpi2-hpc-debugsource-4.7.3-3.7.2 netcdf_4_7_3-gnu-openmpi2-hpc-devel-4.7.3-3.7.2 netcdf_4_7_3-gnu-openmpi2-hpc-devel-debuginfo-4.7.3-3.7.2 netcdf_4_7_3-gnu-openmpi2-hpc-devel-static-4.7.3-3.7.2 netcdf_4_7_3-gnu-openmpi3-hpc-4.7.3-3.7.2 netcdf_4_7_3-gnu-openmpi3-hpc-debuginfo-4.7.3-3.7.2 netcdf_4_7_3-gnu-openmpi3-hpc-debugsource-4.7.3-3.7.2 netcdf_4_7_3-gnu-openmpi3-hpc-devel-4.7.3-3.7.2 netcdf_4_7_3-gnu-openmpi3-hpc-devel-debuginfo-4.7.3-3.7.2 netcdf_4_7_3-gnu-openmpi3-hpc-devel-static-4.7.3-3.7.2 - SUSE Linux Enterprise Module for HPC 15-SP2 (noarch): netcdf-gnu-hpc-4.7.3-3.7.2 netcdf-gnu-hpc-devel-4.7.3-3.7.2 netcdf-gnu-mpich-hpc-4.7.3-3.7.2 netcdf-gnu-mpich-hpc-devel-4.7.3-3.7.2 netcdf-gnu-mvapich2-hpc-4.7.3-3.7.2 netcdf-gnu-mvapich2-hpc-devel-4.7.3-3.7.2 netcdf-gnu-openmpi2-hpc-4.7.3-3.7.2 netcdf-gnu-openmpi2-hpc-devel-4.7.3-3.7.2 netcdf-gnu-openmpi3-hpc-4.7.3-3.7.2 netcdf-gnu-openmpi3-hpc-devel-4.7.3-3.7.2 References: https://www.suse.com/security/cve/CVE-2019-20005.html https://www.suse.com/security/cve/CVE-2019-20006.html https://www.suse.com/security/cve/CVE-2019-20007.html https://www.suse.com/security/cve/CVE-2019-20198.html https://www.suse.com/security/cve/CVE-2019-20199.html https://www.suse.com/security/cve/CVE-2019-20200.html https://www.suse.com/security/cve/CVE-2019-20201.html https://www.suse.com/security/cve/CVE-2019-20202.html https://www.suse.com/security/cve/CVE-2021-26220.html https://www.suse.com/security/cve/CVE-2021-26221.html https://www.suse.com/security/cve/CVE-2021-26222.html https://www.suse.com/security/cve/CVE-2021-30485.html https://www.suse.com/security/cve/CVE-2021-31229.html https://www.suse.com/security/cve/CVE-2021-31347.html https://www.suse.com/security/cve/CVE-2021-31348.html https://www.suse.com/security/cve/CVE-2021-31598.html https://bugzilla.suse.com/1191856 . A series of security issues in netcdf have been addressed with this crucial update from SUSE.. SUSE Security Update, netcdf Issues, Linux Enterprise Module. . Severity: Important. LinuxSecurity.com Team

Nov 25, 2021 •Important SuSE

Community Poll

More Polls

Stay Secure with the Latest Linux Advisories

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

SUSE: 2024:3144-1 Important: HDF5, NetCDF, Trilinos Security Fixes

Mageia: 2021-0580 Critical Update for NetCDF ezXML Security Issues

openSUSE Leap 15.3 Security Update: Important NetCDF Threat Resolved

SUSE 15-SP3: 2021:3873-1 Important: Security Update for Netcdf

openSUSE Leap 15.3: 2021:3815-1 Important: NetCDF Multiple Threats

SUSE: 2021:3815-1 Important Security Advisory on NetCDF Software

SUSE Linux Enterprise HPC: 2021:3804-1 Important: NetCDF Issues

SUSE: 2021:3805-1 Critical: High-Risk Issue with Netcdf Detected

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!