Debian LTS: DLA-2845-1: libsamplerate security update | LinuxSecuri...

Advisories


- -------------------------------------------------------------------------
Debian LTS Advisory DLA-2845-1                [email protected]
https://www.debian.org/lts/security/                    Thorsten Alteholz
December 14, 2021                             https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package        : libsamplerate
Version        : 0.1.8-8+deb9u1
CVE ID         : CVE-2017-7697


An issue has been found in libsamplerate, an audio sample rate conversion 
library. Using a crafted audio file a buffer over-read might happen in 
calc_output_single() in src_sinc.c.


For Debian 9 stretch, this problem has been fixed in version
0.1.8-8+deb9u1.

We recommend that you upgrade your libsamplerate packages.

For the detailed security status of libsamplerate please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/libsamplerate

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

Debian LTS: DLA-2845-1: libsamplerate security update

December 13, 2021
An issue has been found in libsamplerate, an audio sample rate conversion library

Summary

An issue has been found in libsamplerate, an audio sample rate conversion
library. Using a crafted audio file a buffer over-read might happen in
calc_output_single() in src_sinc.c.


For Debian 9 stretch, this problem has been fixed in version
0.1.8-8+deb9u1.

We recommend that you upgrade your libsamplerate packages.

For the detailed security status of libsamplerate please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/libsamplerate

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS


Severity
Package : libsamplerate
Version : 0.1.8-8+deb9u1
CVE ID : CVE-2017-7697

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.