Summary: | <media-libs/libsndfile-1.0.28-r3: stack-based buffer overflow in psf_memset in common.c | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Florian Schuhmacher <mynt1aa> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | sound |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://github.com/erikd/libsndfile/issues/397 | ||
Whiteboard: | A3 [glsa+ cve] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | |||
Bug Blocks: | 618016, 624814, 627152, 631634 |
Description
Florian Schuhmacher
2018-07-05 15:43:57 UTC
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=e2ec2c790cf28858ec8dd4da007ca7ca12ffeca1 commit e2ec2c790cf28858ec8dd4da007ca7ca12ffeca1 Author: Andreas Sturmlechner <asturm@gentoo.org> AuthorDate: 2018-09-18 21:23:22 +0000 Commit: Andreas Sturmlechner <asturm@gentoo.org> CommitDate: 2018-09-18 21:24:08 +0000 media-libs/libsndfile: Fix CVE-2018-13139 Bug: https://bugs.gentoo.org/660452 Package-Manager: Portage-2.3.49, Repoman-2.3.10 .../files/libsndfile-1.0.28-CVE-2018-13139.patch | 31 ++++++++++ media-libs/libsndfile/libsndfile-1.0.28-r3.ebuild | 67 ++++++++++++++++++++++ 2 files changed, 98 insertions(+) This issue was resolved and addressed in GLSA 201811-23 at https://security.gentoo.org/glsa/201811-23 by GLSA coordinator Aaron Bauman (b-man). |