ELSA-2020-1636

ULN >
Oracle Linux Errata repository >
ELSA-2020-1636

ELSA-2020-1636 - libsndfile security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2020-05-05

Description

[1.0.28-10]
- fix CVE-2018-19661 and CVE-2018-19662 - buffer over-read in the function
i2alaw_array in alaw (#1673085)

[1.0.28-9]
- fix CVE-2018-13139 - stack-based buffer overflow in sndfile-deinterleave utility (#1598482)

Related CVEs

CVE-2018-13139

CVE-2018-19662

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	libsndfile-1.0.28-10.el8.src.rpm	e7bbe996a02f2c1094a7e348f205c656063939972804d5be3c4a1314bd436db3	-	ol8_aarch64_appstream
	libsndfile-1.0.28-10.el8.src.rpm	e7bbe996a02f2c1094a7e348f205c656063939972804d5be3c4a1314bd436db3	-	ol8_aarch64_codeready_builder
	libsndfile-1.0.28-10.el8.aarch64.rpm	5e67a3b130ba55f282d0851ec805e273beb64b3e158337305bb736e909d6a40c	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	libsndfile-1.0.28-10.el8.src.rpm	e7bbe996a02f2c1094a7e348f205c656063939972804d5be3c4a1314bd436db3	-	ol8_x86_64_appstream
	libsndfile-1.0.28-10.el8.src.rpm	e7bbe996a02f2c1094a7e348f205c656063939972804d5be3c4a1314bd436db3	-	ol8_x86_64_codeready_builder
	libsndfile-1.0.28-10.el8.i686.rpm	bf2ef72c1bbe051534a4250a6fe8eff463a9065fd6b8817e3d0482d6a32d246e	-	ol8_x86_64_appstream
	libsndfile-1.0.28-10.el8.x86_64.rpm	8b1c62b1c1d324bfa3b81230a6086c425ea4726eec32e13378038047e15e0d70	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691