openSUSE-SU-2018:1734-1

Опубликовано: 19 июн. 2018

Источник: suse-cvrf

Описание

Security update for aubio

This update for aubio fixes the following security issue:

CVE-2017-17554: Prevent NULL pointer dereference in the function aubio_source_avcodec_readframe which may have lead to DoS when playing a crafted audio file (bsc#1072317).

Список пакетов

openSUSE Leap 15.0

aubio-0.4.6-lp150.3.3.1

aubio-tools-0.4.6-lp150.3.3.1

libaubio-devel-0.4.6-lp150.3.3.1

libaubio5-0.4.6-lp150.3.3.1

libaubio5-32bit-0.4.6-lp150.3.3.1

python-aubio-0.4.6-lp150.3.3.1

python2-aubio-0.4.6-lp150.3.3.1

python3-aubio-0.4.6-lp150.3.3.1

Ссылки

http://lists.opensuse.org/opensuse-security-announce/2018-06/msg00037.html
E-Mail link for openSUSE-SU-2018:1734-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings

Описание

A NULL pointer dereference (DoS) Vulnerability was found in the function aubio_source_avcodec_readframe in io/source_avcodec.c of aubio 0.4.6, which may lead to DoS when playing a crafted audio file.

Затронутые продукты

openSUSE Leap 15.0:aubio-0.4.6-lp150.3.3.1

openSUSE Leap 15.0:aubio-tools-0.4.6-lp150.3.3.1

openSUSE Leap 15.0:libaubio-devel-0.4.6-lp150.3.3.1

openSUSE Leap 15.0:libaubio5-0.4.6-lp150.3.3.1

Ссылки

https://www.suse.com/security/cve/CVE-2017-17554.html
CVE-2017-17554
https://bugzilla.suse.com/1072317
SUSE Bug 1072317
https://bugzilla.suse.com/1102352
SUSE Bug 1102352

openSUSE-SU-2018:1734-1

Описание

Список пакетов

openSUSE Leap 15.0

Ссылки

Уязвимость: CVE-2017-17554

Описание

Затронутые продукты

Ссылки