ELSA-2020-1636

ELSA-2020-1636 - libsndfile security update

Type:SECURITY
Severity:MODERATE
Release Date:2020-05-05

Description


[1.0.28-10]
- fix CVE-2018-19661 and CVE-2018-19662 - buffer over-read in the function
i2alaw_array in alaw (#1673085)

[1.0.28-9]
- fix CVE-2018-13139 - stack-based buffer overflow in sndfile-deinterleave utility (#1598482)


Related CVEs


CVE-2018-13139
CVE-2018-19662

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 8 (aarch64) libsndfile-1.0.28-10.el8.src.rpm9521cb3b19ad9301bdd678144efbd8ec-
libsndfile-1.0.28-10.el8.aarch64.rpma824903debe5d80784242c8b04960746-
Oracle Linux 8 (x86_64) libsndfile-1.0.28-10.el8.src.rpm9521cb3b19ad9301bdd678144efbd8ec-
libsndfile-1.0.28-10.el8.i686.rpm2361888a41012bb7b26143c87fd045ee-
libsndfile-1.0.28-10.el8.x86_64.rpm2593db279a1ea375001fe78e068ae4a8-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete