[ubuntu/hirsute-security] libsndfile 1.0.31-1ubuntu1.1 (Accepted)
Alex Murray
alex.murray at canonical.com
Thu Jul 29 01:54:19 UTC 2021
libsndfile (1.0.31-1ubuntu1.1) hirsute-security; urgency=medium
* SECURITY UPDATE: heap buffer overflow in msadpcm_decode_block allows
arbitrary code execution via crafted WAV file.
- debian/patches/CVE-2021-3246.patch: upstream patch to src/ms_adpcm.c
to validate samples per block
- CVE-2021-3246
Date: 2021-07-28 01:44:15.575861+00:00
Changed-By: Alex Murray <alex.murray at canonical.com>
https://launchpad.net/ubuntu/+source/libsndfile/1.0.31-1ubuntu1.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Hirsute-changes
mailing list