[ubuntu/bionic-updates] libsndfile 1.0.28-4ubuntu0.18.04.2 (Accepted)

Ubuntu Archive Robot ubuntu-archive-robot at lists.canonical.com
Thu Jul 29 02:28:15 UTC 2021


libsndfile (1.0.28-4ubuntu0.18.04.2) bionic-security; urgency=medium

  * SECURITY UPDATE: heap buffer overflow in msadpcm_decode_block allows
    arbitrary code execution via crafted WAV file.
    - debian/patches/CVE-2021-3246.patch: upstream patch to src/ms_adpcm.c
      to validate samples per block
    - CVE-2021-3246

Date: 2021-07-28 01:44:09.339546+00:00
Changed-By: Alex Murray <alex.murray at canonical.com>
Signed-By: Ubuntu Archive Robot <ubuntu-archive-robot at lists.canonical.com>
https://launchpad.net/ubuntu/+source/libsndfile/1.0.28-4ubuntu0.18.04.2
-------------- next part --------------
Sorry, changesfile not available.


More information about the Bionic-changes mailing list