Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2023:4331-1

Опубликовано: 01 нояб. 2023
Источник: suse-cvrf

Описание

Security update for libsndfile

This update for libsndfile fixes the following issues:

  • CVE-2022-33065: Fixed an integer overflow that could cause memory safety issues when reading a MAT4 file (bsc#1213451).

Список пакетов

SUSE Linux Enterprise Server 12 SP5
libsndfile1-1.0.25-36.29.1
libsndfile1-32bit-1.0.25-36.29.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libsndfile1-1.0.25-36.29.1
libsndfile1-32bit-1.0.25-36.29.1
SUSE Linux Enterprise Software Development Kit 12 SP5
libsndfile-devel-1.0.25-36.29.1

Ссылки

Описание

Multiple signed integers overflow in function au_read_header in src/au.c and in functions mat4_open and mat4_read_header in src/mat4.c in Libsndfile, allows an attacker to cause Denial of Service or other unspecified impacts.

Затронутые продукты
SUSE Linux Enterprise Server 12 SP5:libsndfile1-1.0.25-36.29.1
SUSE Linux Enterprise Server 12 SP5:libsndfile1-32bit-1.0.25-36.29.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5:libsndfile1-1.0.25-36.29.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5:libsndfile1-32bit-1.0.25-36.29.1
Ссылки