MDVSA-2009:132-1 -- Mandriva libsndfileID: oval:org.secpod.oval:def:300959 | Date: (C)2012-01-07 (M)2021-11-24 |
Class: PATCH | Family: unix |
Multiple vulnerabilities has been found and corrected in libsndfile: Heap-based buffer overflow in voc_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a VOC file with an invalid header value . Heap-based buffer overflow in aiff_read_header in libsndfile 1.0.15 through 1.0.19, as used in Winamp 5.552 and possibly other media programs, allows remote attackers to cause a denial of service and possibly execute arbitrary code via an AIFF file with an invalid header value . This update provides fixes for these vulnerabilities. Update: Packages for 2008.0 are being provided due to extended support for Corporate products.
Platform: |
Mandriva Linux 2008.0 |