Univention Bugzilla – Bug 55237
libsndfile: Multiple issues (5.0)
Last modified: 2022-10-06 09:49:58 CEST
New Debian libsndfile 1.0.28-6+deb10u2 fixes: This update addresses the following issue: * heap out-of-bounds read in src/flac.c in flac_buffer_copy (CVE-2021-4156)
--- mirror/ftp/pool/main/libs/libsndfile/libsndfile_1.0.28-6+deb10u1.dsc +++ apt/ucs_5.0-0-errata5.0-2/source/libsndfile_1.0.28-6+deb10u2.dsc @@ -1,3 +1,9 @@ +1.0.28-6+deb10u2 [Thu, 29 Sep 2022 19:03:02 +0200] Thorsten Alteholz <debian@alteholz.de>: + + * Non-maintainer upload by the LTS Team. + * CVE-2021-4156 + heap out-of-bounds read + 1.0.28-6+deb10u1 [Fri, 30 Jul 2021 00:14:25 +0200] Moritz Mühlenhoff <jmm@debian.org>: * CVE-021-3246 (Closes: #991496) <http://piuparts.knut.univention.de/5.0-2/#4569528372502683451>
OK: yaml OK: announce_errata OK: patch OK: piuparts [5.0-2] 5b567b1a17 Bug #55237: libsndfile 1.0.28-6+deb10u2 doc/errata/staging/libsndfile.yaml | 12 ++++++++++++ 1 file changed, 12 insertions(+)
<https://errata.software-univention.de/#/?erratum=5.0x442>