Slackware: 2022-191-01: wavpack Security Update | LinuxSecurity.com

Advisories

What Are You Looking For?

Popular Tags

Contribute

Advisories This Week: 209


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

[slackware-security]  wavpack (SSA:2022-191-01)

New wavpack packages are available for Slackware 14.0, 14.1, 14.2, 15.0,
and -current to fix a security issue.


Here are the details from the Slackware 15.0 ChangeLog:
+--------------------------+
patches/packages/wavpack-5.5.0-i586-1_slack15.0.txz:  Upgraded.
  WavPack 5.5.0 contains a fix for CVE-2021-44269 wherein encoding a specially
  crafted DSD file causes an out-of-bounds read exception.
  For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44269
  (* Security fix *)
+--------------------------+


Where to find the new packages:
+-----------------------------+

Thanks to the friendly folks at the OSU Open Source Lab
(https://osuosl.org) for donating FTP and rsync hosting
to the Slackware project!  :-)

Also see the "Get Slack" section on https://slackware.com for
additional mirror sites near you.

Updated package for Slackware 14.0:
ftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/wavpack-5.5.0-i486-1_slack14.0.txz

Updated package for Slackware x86_64 14.0:
ftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/wavpack-5.5.0-x86_64-1_slack14.0.txz

Updated package for Slackware 14.1:
ftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/wavpack-5.5.0-i486-1_slack14.1.txz

Updated package for Slackware x86_64 14.1:
ftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/wavpack-5.5.0-x86_64-1_slack14.1.txz

Updated package for Slackware 14.2:
ftp://ftp.slackware.com/pub/slackware/slackware-14.2/patches/packages/wavpack-5.5.0-i586-1_slack14.2.txz

Updated package for Slackware x86_64 14.2:
ftp://ftp.slackware.com/pub/slackware/slackware64-14.2/patches/packages/wavpack-5.5.0-x86_64-1_slack14.2.txz

Updated package for Slackware 15.0:
ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/wavpack-5.5.0-i586-1_slack15.0.txz

Updated package for Slackware x86_64 15.0:
ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/wavpack-5.5.0-x86_64-1_slack15.0.txz

Updated package for Slackware -current:
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/l/wavpack-5.5.0-i586-1.txz

Updated package for Slackware x86_64 -current:
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/l/wavpack-5.5.0-x86_64-1.txz


MD5 signatures:
+-------------+

Slackware 14.0 package:
4d97f44a0f99ca2ddd53cc8864dd6dab  wavpack-5.5.0-i486-1_slack14.0.txz

Slackware x86_64 14.0 package:
9fbe9d56ff27767fe8b494fe96434313  wavpack-5.5.0-x86_64-1_slack14.0.txz

Slackware 14.1 package:
3cf2d5d1156fb59366076d7cc3262c4d  wavpack-5.5.0-i486-1_slack14.1.txz

Slackware x86_64 14.1 package:
ee37ca7a495d98192f0aba082ad03745  wavpack-5.5.0-x86_64-1_slack14.1.txz

Slackware 14.2 package:
157ad3932d09a4a5b2bba92cfb5b370d  wavpack-5.5.0-i586-1_slack14.2.txz

Slackware x86_64 14.2 package:
cb626c3d1df0fb746ded5817c0ac3831  wavpack-5.5.0-x86_64-1_slack14.2.txz

Slackware 15.0 package:
d831c02fbc3c75841fbfd80e4220274c  wavpack-5.5.0-i586-1_slack15.0.txz

Slackware x86_64 15.0 package:
45c10ceb6b182d3d22eef4b21f8acf5d  wavpack-5.5.0-x86_64-1_slack15.0.txz

Slackware -current package:
0d5a9b71ac42b2d13975725242fd1cca  l/wavpack-5.5.0-i586-1.txz

Slackware x86_64 -current package:
a4437aa0e2d2aa17f09beed447082675  l/wavpack-5.5.0-x86_64-1.txz


Installation instructions:
+------------------------+

Upgrade the package as root:
# upgradepkg wavpack-5.5.0-i586-1_slack15.0.txz


+-----+

Slackware: 2022-191-01: wavpack Security Update

July 10, 2022
New wavpack packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix a security issue

Summary

Here are the details from the Slackware 15.0 ChangeLog: patches/packages/wavpack-5.5.0-i586-1_slack15.0.txz: Upgraded. WavPack 5.5.0 contains a fix for CVE-2021-44269 wherein encoding a specially crafted DSD file causes an out-of-bounds read exception. For more information, see: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-44269 (* Security fix *)

Where Find New Packages

Thanks to the friendly folks at the OSU Open Source Lab (https://osuosl.org) for donating FTP and rsync hosting to the Slackware project! :-)
Also see the "Get Slack" section on https://slackware.com for additional mirror sites near you.
Updated package for Slackware 14.0: ftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/wavpack-5.5.0-i486-1_slack14.0.txz
Updated package for Slackware x86_64 14.0: ftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/wavpack-5.5.0-x86_64-1_slack14.0.txz
Updated package for Slackware 14.1: ftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/wavpack-5.5.0-i486-1_slack14.1.txz
Updated package for Slackware x86_64 14.1: ftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/wavpack-5.5.0-x86_64-1_slack14.1.txz
Updated package for Slackware 14.2: ftp://ftp.slackware.com/pub/slackware/slackware-14.2/patches/packages/wavpack-5.5.0-i586-1_slack14.2.txz
Updated package for Slackware x86_64 14.2: ftp://ftp.slackware.com/pub/slackware/slackware64-14.2/patches/packages/wavpack-5.5.0-x86_64-1_slack14.2.txz
Updated package for Slackware 15.0: ftp://ftp.slackware.com/pub/slackware/slackware-15.0/patches/packages/wavpack-5.5.0-i586-1_slack15.0.txz
Updated package for Slackware x86_64 15.0: ftp://ftp.slackware.com/pub/slackware/slackware64-15.0/patches/packages/wavpack-5.5.0-x86_64-1_slack15.0.txz
Updated package for Slackware -current: ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/l/wavpack-5.5.0-i586-1.txz
Updated package for Slackware x86_64 -current: ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/l/wavpack-5.5.0-x86_64-1.txz

MD5 Signatures

Slackware 14.0 package: 4d97f44a0f99ca2ddd53cc8864dd6dab wavpack-5.5.0-i486-1_slack14.0.txz
Slackware x86_64 14.0 package: 9fbe9d56ff27767fe8b494fe96434313 wavpack-5.5.0-x86_64-1_slack14.0.txz
Slackware 14.1 package: 3cf2d5d1156fb59366076d7cc3262c4d wavpack-5.5.0-i486-1_slack14.1.txz
Slackware x86_64 14.1 package: ee37ca7a495d98192f0aba082ad03745 wavpack-5.5.0-x86_64-1_slack14.1.txz
Slackware 14.2 package: 157ad3932d09a4a5b2bba92cfb5b370d wavpack-5.5.0-i586-1_slack14.2.txz
Slackware x86_64 14.2 package: cb626c3d1df0fb746ded5817c0ac3831 wavpack-5.5.0-x86_64-1_slack14.2.txz
Slackware 15.0 package: d831c02fbc3c75841fbfd80e4220274c wavpack-5.5.0-i586-1_slack15.0.txz
Slackware x86_64 15.0 package: 45c10ceb6b182d3d22eef4b21f8acf5d wavpack-5.5.0-x86_64-1_slack15.0.txz
Slackware -current package: 0d5a9b71ac42b2d13975725242fd1cca l/wavpack-5.5.0-i586-1.txz
Slackware x86_64 -current package: a4437aa0e2d2aa17f09beed447082675 l/wavpack-5.5.0-x86_64-1.txz

Severity
[slackware-security] wavpack (SSA:2022-191-01)
New wavpack packages are available for Slackware 14.0, 14.1, 14.2, 15.0, and -current to fix a security issue.

Installation Instructions

Installation instructions: Upgrade the package as root: # upgradepkg wavpack-5.5.0-i586-1_slack15.0.txz

News

Advisories

HOWTOs

Features

Open Source OSINT Tools and Techniques
The Story Behind the Linux Security Quick Reference Guide
Benefits & Drawbacks of Using a VPN on Linux
How a WAF Could Improve the Security of Your Linux Web Applications
Installing SurfShark VPN On Kali Linux: The Authoritative Guide

About Us

Powered By

Footer Logo

We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy. 

Learn More About Our Cookie Policy