[ubuntu/artful-security] wavpack 5.1.0-2ubuntu0.2 (Accepted)
Leonidas S. Barbosa
leo.barbosa at canonical.com
Thu Feb 22 01:57:53 UTC 2018
wavpack (5.1.0-2ubuntu0.2) artful-security; urgency=medium
* SECURITY UPDATE: Maliciously crafted DSDIFF can result
in a denial of service
- debian/patches/CVE-2018-7253.patch: do not overwrite
heap on corrupt DSDIFF file in cli/dsdiff.c
- CVE-2018-7253
* SECURITY UPDATE: Denial of service through maliciously
crafted CAF file
- debian/patches/CVE-2018-7254.patch: fix buffer overflows
and bad allocs in cli/caff.c.
- CVE-2018-7254
Date: 2018-02-21 16:38:12.369970+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
https://launchpad.net/ubuntu/+source/wavpack/5.1.0-2ubuntu0.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the Artful-changes
mailing list