Pufferüberlauf in libsndfile
ID: | FEDORA-2015-5afed1aad2 |
Distribution: | Fedora |
Plattformen: | Fedora 23 |
Datum: | Sa, 14. November 2015, 11:00 |
Referenzen: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-7805 |
Applikationen: | libsndfile |
Originalnachricht |
|
Name : libsndfile Product : Fedora 23 Version : 1.0.25 Release : 17.fc23 URL : http://www.mega-nerd.com/libsndfile/ Summary : Library for reading and writing sound files Description : libsndfile is a C library for reading and writing sound files such as AIFF, AU, WAV, and others through one standard interface. It can currently read/write 8, 16, 24 and 32-bit PCM files as well as 32 and 64-bit floating point WAV files and a number of compressed formats. It compiles and runs on *nix, MacOS, and Win32. -------------------------------------------------------------------------------- Update Information: libsndfile-1.0.25-17.fc22 - fix CVE-2015-7805: Heap overflow vulnerability when parsing specially crafted AIFF header libsndfile-1.0.25-16.fc21 - fix CVE-2015-7805: Heap overflow vulnerability when parsing specially crafted AIFF header libsndfile-1.0.25-17.fc23 - fix CVE-2015-7805: Heap overflow vulnerability when parsing specially crafted AIFF header -------------------------------------------------------------------------------- References: [ 1 ] Bug #1277897 - CVE-2015-7805 libsndfile: Heap overflow vulnerability when parsing specially crafted AIFF header https://bugzilla.redhat.com/show_bug.cgi?id=1277897 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update libsndfile' at the command line. For more information, refer to "Managing Software with yum", available at https://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/package-announce |