ELA-1008-1 audiofile security update

Debian 9937 Published 2023-11-28 07:31 by Philipp Esselbach

News

An audiofile security update has been released for Debian GNU/Linux 9 Extended LTS to address multiple security issues.

ELA-1008-1 audiofile security update
Package : audiofile
Version : 0.3.6-4+deb9u2 (stretch)

Related CVEs :
CVE-2019-13147
CVE-2022-24599

The audiofile library allows the processing of audio data to and from audio
files of many common formats (currently AIFF, AIFF-C, WAVE, NeXT/Sun, BICS, and
raw data).

CVE-2019-13147
Audiofile was vulnerable due to an integer overflow. The program quits
early if NeXT audio files include too many channels now.

CVE-2022-24599
A memory leak was found due to reading a not null terminated copyright field.
Preallocate zeroed memory and always NUL terminate C strings from now on.
ELA-1008-1 audiofile security update

USN-6502-2: Linux kernel (Oracle) vulnerabilities

Corsair Vengeance i7500 Gaming PC Review and more

Windows

Software 42354
WSL2 Distro Manager 1.8.14 released
2024-05-17 05:30 by Philipp Esselbach
Drivers 2882
AMD Radeon Software Adrenalin 24.5.1 released
2024-05-16 09:11 by Philipp Esselbach
Windows 11 415
Windows 11 Insider Preview Build 26217 (Canary Channel) released
2024-05-15 22:31 by Philipp Esselbach

Linux

GNOME 3594
GNOME 47 Release Schedule available
2024-05-17 07:34 by Philipp Esselbach
Software 42354
AM 6.7.1 released
2024-05-17 07:26 by Philipp Esselbach
Debian 9937
Firefox-ESR security update for Debian 10
2024-05-17 07:14 by Philipp Esselbach

macOS

Apple 10169
tvOS 17.5 released
2024-05-14 07:14 by Philipp Esselbach
Apple 10169
HomePod Software 17.5 released
2024-05-14 07:14 by Philipp Esselbach
Apple 10169
watchOS 10.5 released
2024-05-14 07:14 by Philipp Esselbach

Community

dhamu
Hello Phil, I have a Linux Tutorial website that curre ...
StephanX
Hi friends, i am new in the Linux universe but i try to ...
Philipp
I would try the XanMod kernel: https://xanmod.org I ...