libsndfile-1.0.25-12.el7.1
エラータID: AXSA:2021-2390:02
Release date:
Monday, August 30, 2021 - 12:48
Subject:
libsndfile-1.0.25-12.el7.1
Affected Channels:
Asianux Server 7 for x86_64
Severity:
High
Description:
libsndfile is a C library for reading and writing files containing sampled
sound, such as AIFF, AU, or WAV.
Security Fix(es):
libsndfile: Heap buffer overflow via crafted WAV file allows arbitrary code
execution (CVE-2021-3246)
CVE(s):
CVE-2021-3246
Solution:
Update packages.
CVEs:
CVE-2021-3246
A heap buffer overflow vulnerability in msadpcm_decode_block of libsndfile 1.0.30 allows attackers to execute arbitrary code via a crafted WAV file.
A heap buffer overflow vulnerability in msadpcm_decode_block of libsndfile 1.0.30 allows attackers to execute arbitrary code via a crafted WAV file.
Additional Info:
N/A
Download:
SRPMS
- libsndfile-1.0.25-12.el7.1.src.rpm
MD5: 5eb7d6002b7e116b4b08469d2b21c813
SHA-256: 80d8643ee297f4771cb52b60406fb31460a6ae0d81dfa014bae708cee8be798e
Size: 1.03 MB
Asianux Server 7 for x86_64
- libsndfile-1.0.25-12.el7.1.x86_64.rpm
MD5: fbdfc8ba939cd64845606f804e149b13
SHA-256: 25f59a13b0771197b2a600b5fc2c311abf7a110f7483f1d79c04448f6f47b0b6
Size: 148.85 kB - libsndfile-1.0.25-12.el7.1.i686.rpm
MD5: 948dc9f99061515b7476e7ab2f203210
SHA-256: 56542f6b1c67f69dea2e851ba3301b2206ebb456e4e35226df0fef6965c831fe
Size: 159.04 kB