Описание
Security update for speex
This update for speex fixes the following issues:
- CVE-2020-23903: Fixed zero division error in read_samples (bsc#1192580).
Список пакетов
Container containers/milvus:2.4
libspeex1-1.2-3.3.1
Container containers/open-webui:0
libspeex1-1.2-3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP2
libspeex1-1.2-3.3.1
speex-devel-1.2-3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP3
libspeex1-1.2-3.3.1
speex-devel-1.2-3.3.1
SUSE Linux Enterprise Module for Package Hub 15 SP2
libspeex1-32bit-1.2-3.3.1
SUSE Linux Enterprise Module for Package Hub 15 SP3
libspeex1-32bit-1.2-3.3.1
Ссылки
- Link for SUSE-SU-2021:3860-1
- E-Mail link for SUSE-SU-2021:3860-1
- SUSE Security Ratings
- SUSE Bug 1192580
- SUSE CVE CVE-2020-23903 page
Описание
A Divide by Zero vulnerability in the function static int read_samples of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file.
Затронутые продукты
Container containers/milvus:2.4:libspeex1-1.2-3.3.1
Container containers/open-webui:0:libspeex1-1.2-3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP2:libspeex1-1.2-3.3.1
SUSE Linux Enterprise Module for Basesystem 15 SP2:speex-devel-1.2-3.3.1
Ссылки
- CVE-2020-23903
- SUSE Bug 1192580