20051 2009-05-15 10:33:07 +0400 heap overflow in VOC and AIFF file parsers (CVE-2009-1788, CVE-2009-1791) 2009-05-26 22:26:29 +0400 1 1 4 Development Sisyphus libsndfile unstable all Linux CLOSED FIXED http://www.mega-nerd.com/erikd/Blog/CodeHacking/libsndfile/rel_20.html security P3 blocker --- 1 crux shrek aris shrek qa-sisyphus oldest_to_newest 91207 0 crux 2009-05-15 10:33:07 +0400 Обнаружены ошибки переполнения буфера в парсере VOC-файлов (Tobias Klein, http://www.trapkit.de/ ) и парсере AIFF-файлов (Erik de Castro Lopo, http://www.mega-nerd.com/erikd/Blog/ ) Upstream выпустил исправления в новой версии 1.0.20 91254 1 repository-robot 2009-05-15 18:51:38 +0400 libsndfile-1.0.20-alt1 -> sisyphus: * Fri May 15 2009 Valery Inozemtsev <shrek@altlinux> 1.0.20-alt1 - fixed potential heap overflow in VOC file parser (closes: #20051) 91298 2 crux 2009-05-17 00:18:59 +0400 ok 91809 3 crux 2009-05-25 20:19:40 +0400 closed