SUSE-SU-2017:1182-1 -- SLES audiofileID: oval:org.secpod.oval:def:89044803 | Date: (C)2021-07-20 (M)2022-10-10 |
Class: PATCH | Family: unix |
This update for audiofile fixes the following issues: Security issues fixed: - CVE-2017-6827: heap-based buffer overflow in MSADPCM::initializeCoefficients - CVE-2017-6828: heap-based buffer overflow in readValue - CVE-2017-6829: global buffer overflow in decodeSample - CVE-2017-6830: heap-based buffer overflow in alaw2linear_buf - CVE-2017-6831: heap-based buffer overflow in IMA::decodeBlockWAVE - CVE-2017-6832: heap-based buffer overflow in MSADPCM::decodeBlock - CVE-2017-6833: divide-by-zero in BlockCodec::runPull - CVE-2017-6834: heap-based buffer overflow in ulaw2linear_buf - CVE-2017-6835: divide-by-zero in BlockCodec::reset1 - CVE-2017-6836: heap-based buffer overflow in Expand3To4Module::run - CVE-2017-6837, CVE-2017-6838, CVE-2017-6839: multiple ubsan crashes
Platform: |
SUSE Linux Enterprise Server 11 SP4 |