Fedora 23: libsndfile Security Update

    Date20 Dec 2015
    CategoryFedora
    22
    Posted ByLinuxSecurity Advisories
    fix CVE-2015-7805 libsndfile: Heap overflow vulnerability when parsing specially crafted AIFF header
    --------------------------------------------------------------------------------
    Fedora Update Notification
    FEDORA-2015-71b291686c
    2015-12-20 04:11:41.366648
    --------------------------------------------------------------------------------
    
    Name        : libsndfile
    Product     : Fedora 23
    Version     : 1.0.25
    Release     : 18.fc23
    URL         : http://www.mega-nerd.com/libsndfile/
    Summary     : Library for reading and writing sound files
    Description :
    libsndfile is a C library for reading and writing sound files such as
    AIFF, AU, WAV, and others through one standard interface. It can
    currently read/write 8, 16, 24 and 32-bit PCM files as well as 32 and
    64-bit floating point WAV files and a number of compressed formats. It
    compiles and runs on *nix, MacOS, and Win32.
    
    --------------------------------------------------------------------------------
    Update Information:
    
    fix CVE-2015-7805 libsndfile: Heap overflow vulnerability when parsing specially
    crafted AIFF header
    --------------------------------------------------------------------------------
    References:
    
      [ 1 ] Bug #1277915 - CVE-2015-8075 libsndfile: Out of bounds memory access in psf_strlcpy_crlf
            https://bugzilla.redhat.com/show_bug.cgi?id=1277915
    --------------------------------------------------------------------------------
    
    This update can be installed with the "yum" update program. Use
    su -c 'yum update libsndfile' at the command line.
    For more information, refer to "Managing Software with yum",
    available at https://docs.fedoraproject.org/yum/.
    
    All packages are signed with the Fedora Project GPG key.  More details on the
    GPG keys used by the Fedora Project can be found at
    https://fedoraproject.org/keys
    --------------------------------------------------------------------------------
    _______________________________________________
    package-announce mailing list
    This email address is being protected from spambots. You need JavaScript enabled to view it.
    https://admin.fedoraproject.org/mailman/listinfo/package-announce
    
    You are not authorised to post comments.

    LinuxSecurity Poll

    In your opinion, what is the biggest advantage associated with choosing open-source software/products?

    Message!

    Poll results are hidden from public viewing.

    You are not authorized to vote on this poll.

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 4 answer(s).
    /component/communitypolls/?task=poll.vote
    8
    radio
    bottom200

    Advisories

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.