[ubuntu/oneiric] libsndfile 1.0.24-1ubuntu1 (Accepted)

Jamie Strandboge jamie at ubuntu.com
Thu Jul 21 22:00:17 UTC 2011


libsndfile (1.0.24-1ubuntu1) oneiric; urgency=low

  * SECURITY UPDATE: integer overflow leading to heap-based overflow
    - debian/CVE-2011-2696.patch: verify paf header length and paf channels.
      This can be dropped with 1.0.25.
    - CVE-2011-2696

Date: Thu, 21 Jul 2011 15:29:06 -0500
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/oneiric/+source/libsndfile/1.0.24-1ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Thu, 21 Jul 2011 15:29:06 -0500
Source: libsndfile
Binary: libsndfile1-dev libsndfile1 sndfile-programs
Architecture: source
Version: 1.0.24-1ubuntu1
Distribution: oneiric
Urgency: low
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Jamie Strandboge <jamie at ubuntu.com>
Description: 
 libsndfile1 - Library for reading/writing audio files
 libsndfile1-dev - Development files for libsndfile; a library for reading/writing a
 sndfile-programs - Sample programs that use libsndfile
Changes: 
 libsndfile (1.0.24-1ubuntu1) oneiric; urgency=low
 .
   * SECURITY UPDATE: integer overflow leading to heap-based overflow
     - debian/CVE-2011-2696.patch: verify paf header length and paf channels.
       This can be dropped with 1.0.25.
     - CVE-2011-2696
Checksums-Sha1: 
 777fbb674f4290c4eb75f8ded86b1d9e5bd14da7 1991 libsndfile_1.0.24-1ubuntu1.dsc
 0d230609d3f59c91cac2a3eb1d6906ca353c9f15 10382 libsndfile_1.0.24-1ubuntu1.debian.tar.gz
Checksums-Sha256: 
 e1339d864e018de8521f799f45c50236d0b7060d5069a4bea4b517fe35ce1ef9 1991 libsndfile_1.0.24-1ubuntu1.dsc
 2e4570bdc99050f73a671a2ea841175843da0972174f45177b5f88fae69207be 10382 libsndfile_1.0.24-1ubuntu1.debian.tar.gz
Files: 
 312fd5eb7b537f1344d44ffd82a12d84 1991 devel optional libsndfile_1.0.24-1ubuntu1.dsc
 67357ae45256e9470233659628e37834 10382 devel optional libsndfile_1.0.24-1ubuntu1.debian.tar.gz
Original-Maintainer: Erik de Castro Lopo <erikd at mega-nerd.com>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iQIcBAEBCgAGBQJOKJTlAAoJEFHb3FjMVZVzwrgQAJ26hLBALDFnOm+uE/4DDinE
N4sO9QXKFgCKogWSirVL97muoEAY/v9nKUtbHuvOLghiul0V4Z46ZNmfindCC7Hu
NWVvvSnc1jIIFzZhuKkZNPoNWKCmeAOxg+/wUDcoqelPg9kRW5aI0ysDqTkhY+C7
f2k2Z7jsCoTqR14C05AfDLgt7/ZgiUcGFN8tQEXIKCBPdsqyfDucfnmxJOplrdKp
RWCBUke73kc5Y6r1CnSSDT0qFpy+j1gxxnE5Tjb9S7oh0ORYwaZRrxNUF4Q1uWdO
13U9bIuG4VJfOkiXEJpv1EQFeig7uu6C0PpSSQt2VPK1C1sDnyGmwuMhIJGCJxpu
KJQkn/3hwEQIDuPK2gtfISC+T7kGYRD/8n4wRlGmI7X03oeVZVW8HsV6deUK81Er
TchltW0H+gJ38lgsxtt7uRc4mT1yNSkQn9HFWGzIm6FKklM6yHk3NZLHAuveMZjD
XK1ZPEUzFeDrq6Xvcb8SIrLSbc7MAI22Ai/1AzOCIrWHWtYOqoVCKjXA6GIXfmP1
H1cPCa0jIVY/Ar3eEHuhmPcM8QVvHc1EootEQyp+EjnPC51d1aF5GdI/XhOupqwx
6w3vgsc7fsdeJAx/KAjNDSJhDj4CDeAdRGCqy36sDfr6dcSveAL1tyt3oo2FHerS
kWOmRrj9EYIwFQE3FXYu
=aoBu
-----END PGP SIGNATURE-----


More information about the Oneiric-changes mailing list