[ubuntu/artful-security] wavpack 5.1.0-2ubuntu0.2 (Accepted)

Leonidas S. Barbosa leo.barbosa at canonical.com
Thu Feb 22 01:57:53 UTC 2018

wavpack (5.1.0-2ubuntu0.2) artful-security; urgency=medium

  * SECURITY UPDATE: Maliciously crafted DSDIFF can result
    in a denial of service
    - debian/patches/CVE-2018-7253.patch: do not overwrite
      heap on corrupt DSDIFF file in cli/dsdiff.c
    - CVE-2018-7253
  * SECURITY UPDATE: Denial of service through maliciously
    crafted CAF file
    - debian/patches/CVE-2018-7254.patch: fix buffer overflows
      and bad allocs in cli/caff.c.
    - CVE-2018-7254

Date: 2018-02-21 16:38:12.369970+00:00
Changed-By: leo.barbosa at canonical.com (Leonidas S. Barbosa)
-------------- next part --------------
Sorry, changesfile not available.

More information about the Artful-changes mailing list