Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2018:3692-1

Опубликовано: 09 нояб. 2018
Источник: suse-cvrf

Описание

Security update for soundtouch

This update for soundtouch fixes the following issues:

  • CVE-2018-17098: The WavFileBase class allowed remote attackers to cause a denial of service (heap corruption from size inconsistency) or possibly have unspecified other impact, as demonstrated by SoundStretch. (bsc#1108632)
  • CVE-2018-17097: The WavFileBase class allowed remote attackers to cause a denial of service (double free) or possibly have unspecified other impact, as demonstrated by SoundStretch. (double free) (bsc#1108631)
  • CVE-2018-17096: The BPMDetect class allowed remote attackers to cause a denial of service (assertion failure and application exit), as demonstrated by SoundStretch. (bsc#1108630)
  • CVE-2018-1000223: soundtouch contained a Buffer Overflow vulnerability in SoundStretch/WavFile.cpp:WavInFile::readHeaderBlock() that can result in arbitrary code execution. This attack appear to be exploitable via victim must open maliocius file in soundstretch utility. (boo#1103676)

Список пакетов

openSUSE Leap 42.3
libSoundTouch0-1.8.0-6.3.1
libSoundTouch0-32bit-1.8.0-6.3.1
soundtouch-1.8.0-6.3.1
soundtouch-devel-1.8.0-6.3.1

Ссылки

Описание

soundtouch version up to and including 2.0.0 contains a Buffer Overflow vulnerability in SoundStretch/WavFile.cpp:WavInFile::readHeaderBlock() that can result in arbitrary code execution. This attack appear to be exploitable via victim must open maliocius file in soundstretch utility.

Затронутые продукты
openSUSE Leap 42.3:libSoundTouch0-1.8.0-6.3.1
openSUSE Leap 42.3:libSoundTouch0-32bit-1.8.0-6.3.1
openSUSE Leap 42.3:soundtouch-1.8.0-6.3.1
openSUSE Leap 42.3:soundtouch-devel-1.8.0-6.3.1
Ссылки

Описание

The BPMDetect class in BPMDetect.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (assertion failure and application exit), as demonstrated by SoundStretch.

Затронутые продукты
openSUSE Leap 42.3:libSoundTouch0-1.8.0-6.3.1
openSUSE Leap 42.3:libSoundTouch0-32bit-1.8.0-6.3.1
openSUSE Leap 42.3:soundtouch-1.8.0-6.3.1
openSUSE Leap 42.3:soundtouch-devel-1.8.0-6.3.1
Ссылки

Описание

The WavFileBase class in WavFile.cpp in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (double free) or possibly have unspecified other impact, as demonstrated by SoundStretch.

Затронутые продукты
openSUSE Leap 42.3:libSoundTouch0-1.8.0-6.3.1
openSUSE Leap 42.3:libSoundTouch0-32bit-1.8.0-6.3.1
openSUSE Leap 42.3:soundtouch-1.8.0-6.3.1
openSUSE Leap 42.3:soundtouch-devel-1.8.0-6.3.1
Ссылки

Описание

The WavFileBase class in WavFile.cpp in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (heap corruption from size inconsistency) or possibly have unspecified other impact, as demonstrated by SoundStretch.

Затронутые продукты
openSUSE Leap 42.3:libSoundTouch0-1.8.0-6.3.1
openSUSE Leap 42.3:libSoundTouch0-32bit-1.8.0-6.3.1
openSUSE Leap 42.3:soundtouch-1.8.0-6.3.1
openSUSE Leap 42.3:soundtouch-devel-1.8.0-6.3.1
Ссылки
Уязвимость openSUSE-SU-2018:3692-1