Описание
Security update for libsndfile
This update for libsndfile fixes the following issues:
- CVE-2021-3246: Fixed a heap buffer overflow vulnerability in msadpcm_decode_block. (bsc#1188540)
Список пакетов
SUSE Linux Enterprise Point of Sale 11 SP3
libsndfile-1.0.20-2.19.15.1
SUSE Linux Enterprise Server 11 SP4-LTSS
libsndfile-1.0.20-2.19.15.1
libsndfile-32bit-1.0.20-2.19.15.1
Ссылки
- Link for SUSE-SU-2021:14769-1
- E-Mail link for SUSE-SU-2021:14769-1
- SUSE Security Ratings
- SUSE Bug 1188540
- SUSE CVE CVE-2021-3246 page
Описание
A heap buffer overflow vulnerability in msadpcm_decode_block of libsndfile 1.0.30 allows attackers to execute arbitrary code via a crafted WAV file.
Затронутые продукты
SUSE Linux Enterprise Point of Sale 11 SP3:libsndfile-1.0.20-2.19.15.1
SUSE Linux Enterprise Server 11 SP4-LTSS:libsndfile-1.0.20-2.19.15.1
SUSE Linux Enterprise Server 11 SP4-LTSS:libsndfile-32bit-1.0.20-2.19.15.1
Ссылки
- CVE-2021-3246
- SUSE Bug 1188540