Stay Secure with the Latest Linux Advisories

security advisorybuffer overflowcritical

Debian: 2021-2feeb6874 Alert: libpng Memory Leak Detected in System

Fixes **CVE-2017-18189**.. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2020-1dfaa1963b 2020-02-03 01:21:44.589768 --------------------------------------------------------------------------------Name : sox Product : Fedora 31 Version : 14.4.2.0 Release : 28.fc31 URL : https://sourceforge.net/projects/sox/ Summary : A general purpose sound file conversion tool Description : SoX (Sound eXchange) is a sound file format converter. SoX can convert between many different digitized sound formats and perform simple sound manipulation functions, including sound effects. --------------------------------------------------------------------------------Update Information: Fixes **CVE-2017-18189**. --------------------------------------------------------------------------------ChangeLog: * Wed Jan 29 2020 Jiri Kucera - 14.4.2.0-28 - fix CVE-2017-18189 resolves #1545867 * Wed Jan 29 2020 Jiri Kucera - 14.4.2.0-27 - remove %check (we use Fedora CI instead in a future) --------------------------------------------------------------------------------References: [ 1 ] Bug #1545867 - CVE-2017-18189 sox: Null pointer dereference in startread function in xa.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1545867 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2020-1dfaa1963b' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ . Ubuntu Security Alert for sox responding to CVE-2017-18188, incorporating vital security upgrades for audio file processing.. sox update,Fedora security advisory,sound file conversion,CVE-2017-18189. . Severity: Critical. LinuxSecurity.com Team

Feb 02, 2020 •Critical Fedora