Mageia 9: MGASA-2023-0347 critical: audiofile DoS vulnerability update

mageia

December 15, 2023

2 patches are added to audiofile source to correct a vulnerability

Summary

2 patches are added to audiofile source to correct a vulnerability. In Audio File Library (aka audiofile) 0.3.6, there exists one NULL pointer dereference bug in ulaw2linear_buf in G711.cpp in libmodules.a that allows an attacker to cause a denial of service via a crafted file. (CVE-2019-13147)

References

- https://bugs.mageia.org/show_bug.cgi?id=32608

- https://www.cve.org/CVERecord?id=CVE-2019-13147

Topics Covered

security advisory denial of service security update critical patch audiofile Mageia

Resolution

SRPMS

- 9/core/audiofile-0.3.6-14.mga9

Severity

critical

Lowest

Low

Medium

High

Critical

Publication date: 15 Dec 2023

URL: https://advisories.mageia.org/MGASA-2023-0347.html

Type: security

CVE: CVE-2019-13147

Topics Covered

security advisory denial of service security update critical patch audiofile Mageia

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Mageia 9: MGASA-2023-0347 critical: audiofile DoS vulnerability update

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Mageia 9: MGASA-2023-0347 critical: audiofile DoS vulnerability update

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!