* SECURITY UPDATE: Heap-based buffer overflow in msadpcm.c in libaudiofile
in audiofile 0.2.6 allows context-dependent attackers to cause a denial
of service (application crash) or possibly execute arbitrary code via a
crafted WAV file. (LP: #527033)
- debian/patches/22_CVE-2008-5824.dpatch: Fix buffer overflow when
decompressing MS ADPCM .wav files.
- CVE-2008-5824
-- Stefan Lesicnik <email address hidden> Tue, 02 Mar 2010 15:59:08 +0200
This bug was fixed in the package audiofile - 0.2.6-7ubuntu1. 8.04.1
--------------- 7ubuntu1. 8.04.1) hardy-security; urgency=low
audiofile (0.2.6-
* SECURITY UPDATE: Heap-based buffer overflow in msadpcm.c in libaudiofile patches/ 22_CVE- 2008-5824. dpatch: Fix buffer overflow when
in audiofile 0.2.6 allows context-dependent attackers to cause a denial
of service (application crash) or possibly execute arbitrary code via a
crafted WAV file. (LP: #527033)
- debian/
decompressing MS ADPCM .wav files.
- CVE-2008-5824
-- Stefan Lesicnik <email address hidden> Tue, 02 Mar 2010 15:59:08 +0200