Описание
Security update for soundtouch
This update for soundtouch fixes the following issues:
- CVE-2018-17098: The WavFileBase class allowed remote attackers to cause a denial of service (heap corruption from size inconsistency) or possibly have unspecified other impact, as demonstrated by SoundStretch. (bsc#1108632)
- CVE-2018-17097: The WavFileBase class allowed remote attackers to cause a denial of service (double free) or possibly have unspecified other impact, as demonstrated by SoundStretch. (double free) (bsc#1108631)
- CVE-2018-17096: The BPMDetect class allowed remote attackers to cause a denial of service (assertion failure and application exit), as demonstrated by SoundStretch. (bsc#1108630)
Список пакетов
SUSE Linux Enterprise Module for Desktop Applications 15
Ссылки
- Link for SUSE-SU-2018:3610-1
- E-Mail link for SUSE-SU-2018:3610-1
- SUSE Security Ratings
- SUSE Bug 1108630
- SUSE Bug 1108631
- SUSE Bug 1108632
- SUSE CVE CVE-2018-17096 page
- SUSE CVE CVE-2018-17097 page
- SUSE CVE CVE-2018-17098 page
Описание
The BPMDetect class in BPMDetect.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (assertion failure and application exit), as demonstrated by SoundStretch.
Затронутые продукты
Ссылки
- CVE-2018-17096
- SUSE Bug 1108630
Описание
The WavFileBase class in WavFile.cpp in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (double free) or possibly have unspecified other impact, as demonstrated by SoundStretch.
Затронутые продукты
Ссылки
- CVE-2018-17097
- SUSE Bug 1108631
Описание
The WavFileBase class in WavFile.cpp in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (heap corruption from size inconsistency) or possibly have unspecified other impact, as demonstrated by SoundStretch.
Затронутые продукты
Ссылки
- CVE-2018-17098
- SUSE Bug 1108632