MDVSA-2009:132 -- Mandriva libsndfileID: oval:org.secpod.oval:def:300755 | Date: (C)2012-01-07 (M)2021-11-24 |
Class: PATCH | Family: unix |
Multiple vulnerabilities has been found and corrected in libsndfile: Heap-based buffer overflow in voc_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a VOC file with an invalid header value . Heap-based buffer overflow in aiff_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service and possibly execute arbitrary code via an AIFF file with an invalid header value . This update provides fixes for these vulnerabilities.
Platform: |
Mandriva Linux 2009.0 |
Mandriva Linux 2009.1 |
Mandriva Linux 2008.1 |