Been there for a while; no bug. Thanks. Version 0.1.4 (2008-07-02) * Fix bug which causes a segfault with extremely low conversion ratios. Version 0.1.3 (2008-03-23) * Huge improvement to the quality of conversion with the SRC_SINC_MEDIUM_QUALITY and SRC_SINC_BEST_QUALITY converters. * Minor bug fixes.
amd64/x86 stable
ppc stable
alpha/ia64/sparc stable
Stable for HPPA.
ppc64 stable
Pınar Yanardağ wrote: From libsamplerate's changelog [1] (2008-07-02): * src/src_sinc.c Fix buffer overrrun bug at extreme low conversion ratios. Thanks to Russell O'Connor for the report.
CVE-2008-5008 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-5008): Buffer overflow in src/src_sinc.c in Secret Rabbit Code (aka SRC or libsamplerate) before 0.1.4, when "extreme low conversion ratios" are used, allows user-assisted attackers to have an unknown impact via a crafted audio file.
GLSA 200812-05