openSUSE-SU-2018:0856-1

Опубликовано: 30 мар. 2018

Источник: suse-cvrf

Описание

Security update for aubio

This update for aubio fixes the following issues:

CVE-2017-17054: Specially crafted wav files could have been used to cause an application crash (boo#1070399)

Список пакетов

openSUSE Leap 42.3

aubio-0.4.1-9.3.1

aubio-tools-0.4.1-9.3.1

libaubio-devel-0.4.1-9.3.1

libaubio4-0.4.1-9.3.1

libaubio4-32bit-0.4.1-9.3.1

Ссылки

https://lists.opensuse.org/opensuse-updates/2018-03/msg00118.html
E-Mail link for openSUSE-SU-2018:0856-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

In aubio 0.4.6, a divide-by-zero error exists in the function new_aubio_source_wavread() in source_wavread.c, which may lead to DoS when playing a crafted audio file.

Затронутые продукты

openSUSE Leap 42.3:aubio-0.4.1-9.3.1

openSUSE Leap 42.3:aubio-tools-0.4.1-9.3.1

openSUSE Leap 42.3:libaubio-devel-0.4.1-9.3.1

openSUSE Leap 42.3:libaubio4-0.4.1-9.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-17054.html
CVE-2017-17054
https://bugzilla.suse.com/1070399
SUSE Bug 1070399

openSUSE-SU-2018:0856-1

Описание

Список пакетов

openSUSE Leap 42.3

Ссылки

Уязвимость: CVE-2017-17054

Описание

Затронутые продукты

Ссылки