Описание
Security update for speex
This update for speex fixes the following issues:
- CVE-2020-23903: Fixed zero division error in read_samples (bsc#1192580).
This update was imported from the SUSE:SLE-15:Update update project.
Список пакетов
openSUSE Leap 15.2
libspeex1-1.2-lp152.4.3.1
libspeex1-32bit-1.2-lp152.4.3.1
speex-1.2-lp152.4.3.1
speex-devel-1.2-lp152.4.3.1
Ссылки
- E-Mail link for openSUSE-SU-2021:1538-1
- SUSE Security Ratings
- SUSE Bug 1192580
- SUSE CVE CVE-2020-23903 page
Описание
A Divide by Zero vulnerability in the function static int read_samples of Speex v1.2 allows attackers to cause a denial of service (DoS) via a crafted WAV file.
Затронутые продукты
openSUSE Leap 15.2:libspeex1-1.2-lp152.4.3.1
openSUSE Leap 15.2:libspeex1-32bit-1.2-lp152.4.3.1
openSUSE Leap 15.2:speex-1.2-lp152.4.3.1
openSUSE Leap 15.2:speex-devel-1.2-lp152.4.3.1
Ссылки
- CVE-2020-23903
- SUSE Bug 1192580