libsndfile 1.0.17-4ubuntu0.8.10.2 source package in Ubuntu
Changelog
libsndfile (1.0.17-4ubuntu0.8.10.2) intrepid-security; urgency=low
* SECURITY UPDATE: fix heap overflows when processing crafted VOC and AIFF
headers
- debian/patches/security_CVE-2009-1788+1791.dpatch: adjust
voc_read_header() in voc.c to verify the user controlled size before
using psf_binheader_readf(). Do the same for aiff_read_header() in
aiff.c for pstr_len.
- CVE-2009-1788
- CVE-2009-1791
-- Jamie Strandboge <email address hidden> Wed, 07 Oct 2009 15:42:23 -0500
Upload details
- Uploaded by:
- Jamie Strandboge
- Uploaded to:
- Intrepid
- Original maintainer:
- Ubuntu Development Team
- Architectures:
- any
- Section:
- devel
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| libsndfile_1.0.17.orig.tar.gz | 800.2 KiB | 1792e4e60386b450ef8ec07c756e8f3ecfe96ebda7d0b09148da5f436d065ef2 |
| libsndfile_1.0.17-4ubuntu0.8.10.2.diff.gz | 10.7 KiB | 7668316f2c8772f4467d84edea5a3d319ef204565373f56643bd7ac1c23c11e7 |
| libsndfile_1.0.17-4ubuntu0.8.10.2.dsc | 1.2 KiB | 1dcb98c62f99b5bf008325af65c4e8972efb9b7371084814187f01401645cf52 |
Available diffs
Binary packages built by this source
- libsndfile1: No summary available for libsndfile1 in ubuntu intrepid.
No description available for libsndfile1 in ubuntu intrepid.
- libsndfile1-dev: No summary available for libsndfile1-dev in ubuntu intrepid.
No description available for libsndfile1-dev in ubuntu intrepid.
- sndfile-programs: No summary available for sndfile-programs in ubuntu intrepid.
No description available for sndfile-programs in ubuntu intrepid.
