libsndfile 1.0.17-4ubuntu1.1 source package in Ubuntu
Changelog
libsndfile (1.0.17-4ubuntu1.1) jaunty-security; urgency=low
* SECURITY UPDATE: fix heap overflows when processing crafted VOC and AIFF
headers
- debian/patches/security_CVE-2009-1788+1791.dpatch: adjust
voc_read_header() in voc.c to verify the user controlled size before
using psf_binheader_readf(). Do the same for aiff_read_header() in
aiff.c for pstr_len.
- CVE-2009-1788
- CVE-2009-1791
-- Jamie Strandboge <email address hidden> Wed, 07 Oct 2009 15:24:35 -0500
Upload details
- Uploaded by:
- Jamie Strandboge
- Uploaded to:
- Jaunty
- Original maintainer:
- Ubuntu Development Team
- Architectures:
- any
- Section:
- devel
- Urgency:
- Low Urgency
See full publishing history Publishing
| Series | Published | Component | Section |
|---|
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| libsndfile_1.0.17.orig.tar.gz | 800.2 KiB | 1792e4e60386b450ef8ec07c756e8f3ecfe96ebda7d0b09148da5f436d065ef2 |
| libsndfile_1.0.17-4ubuntu1.1.diff.gz | 10.7 KiB | 79611aa5fb45a3ffee41fc0f9d8b959939434efd6bbe4ba6b451e5f7c4a3db22 |
| libsndfile_1.0.17-4ubuntu1.1.dsc | 1.2 KiB | 33f58ac6f61f1561aeec984ad07855e56eda626cddd8384816a2bcba5507c1a4 |
Available diffs
Binary packages built by this source
- libsndfile1: No summary available for libsndfile1 in ubuntu jaunty.
No description available for libsndfile1 in ubuntu jaunty.
- libsndfile1-dev: No summary available for libsndfile1-dev in ubuntu jaunty.
No description available for libsndfile1-dev in ubuntu jaunty.
- sndfile-programs: No summary available for sndfile-programs in ubuntu jaunty.
No description available for sndfile-programs in ubuntu jaunty.
