ELSA-2022-1968

ELSA-2022-1968 - libsndfile security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2022-05-17

Description

[1.0.28-12]
- fix heap buffer overflow in flac (#2030507)

[1.0.28-11]
- a crafted wav file could cause heap buffer overflow that allowed an arbitrary code execution(#1985028)

Related CVEs

CVE-2021-4156

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 8 (aarch64)	libsndfile-1.0.28-12.el8.src.rpm	6c10e9eba217c216d1634787254203a6d06ac19e3c4bc4303e649ba069948b25	-	ol8_aarch64_appstream
	libsndfile-1.0.28-12.el8.src.rpm	6c10e9eba217c216d1634787254203a6d06ac19e3c4bc4303e649ba069948b25	-	ol8_aarch64_codeready_builder
	libsndfile-1.0.28-12.el8.aarch64.rpm	735304c27af94525422a9ac42a83b22bdee90c1907b5786fab0eb71e2743395d	-	ol8_aarch64_appstream
	libsndfile-devel-1.0.28-12.el8.aarch64.rpm	55d86ce16db24f3620bc70f658156c78572b2dd8b49af37774491d817d008cb0	-	ol8_aarch64_codeready_builder
Oracle Linux 8 (x86_64)	libsndfile-1.0.28-12.el8.src.rpm	6c10e9eba217c216d1634787254203a6d06ac19e3c4bc4303e649ba069948b25	-	ol8_x86_64_appstream
	libsndfile-1.0.28-12.el8.src.rpm	6c10e9eba217c216d1634787254203a6d06ac19e3c4bc4303e649ba069948b25	-	ol8_x86_64_codeready_builder
	libsndfile-1.0.28-12.el8.i686.rpm	3a8cb8362ee7cee023eb0b10727a0f91acf63add5d24f8e9b7647bdaad476143	-	ol8_x86_64_appstream
	libsndfile-1.0.28-12.el8.x86_64.rpm	67a976601d0b66d6e3b567817c255264ead5591fce802765f93e9382cec430b0	-	ol8_x86_64_appstream
	libsndfile-devel-1.0.28-12.el8.i686.rpm	303b21087dc925fa501c39ef25197adb8fadf5c297fc043367fe90920ff73ffe	-	ol8_x86_64_codeready_builder
	libsndfile-devel-1.0.28-12.el8.x86_64.rpm	d00d6d8ed17eac306a6453e86e3d4b4d5b2a8a29b09042e18ac815b8a497b06d	-	ol8_x86_64_codeready_builder

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team