[ALSA-2022:1968] Moderate: libsndfile security update
Type:
security
Severity:
moderate
Release date:
2023-03-13
Description:
libsndfile is a C library for reading and writing files containing sampled sound, such as AIFF, AU, or WAV. Security Fix(es): * libsndfile: heap out-of-bounds read in src/flac.c in flac_buffer_copy (CVE-2021-4156) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 libsndfile-1.0.28-12.el8.aarch64.rpm 6e3a8205eb9ab28b4bb78a7c0e99a510744f6920ea7d38c8e0d3ac333d164010
aarch64 libsndfile-devel-1.0.28-12.el8.aarch64.rpm ab0a24151b5ae6799ce71a191dc847a96eb04864147027a198c8087ce6d01cf6
i686 libsndfile-1.0.28-12.el8.i686.rpm 084d81660adf8f1b201d64b2d73cbe6fe93477165bee7a1d19f55b58159e5dda
ppc64le libsndfile-1.0.28-12.el8.ppc64le.rpm 6d917bf3dde10942972347afcf85ba95f9def1ddaffb70042f0f0d5d5f51ccb1
ppc64le libsndfile-devel-1.0.28-12.el8.ppc64le.rpm e8166877a3a0352f006bc71c26f6c7921e3346fbf4a2cc7009d390dc2ccf6a9d
x86_64 libsndfile-devel-1.0.28-12.el8.x86_64.rpm 721afc0fa3e04133a4618e323672f83a39e9a88932189cb029cd783bd8a90663
x86_64 libsndfile-devel-1.0.28-12.el8.x86_64.rpm 721afc0fa3e04133a4618e323672f83a39e9a88932189cb029cd783bd8a90663
x86_64 libsndfile-1.0.28-12.el8.x86_64.rpm b8981af35c6927a03c754379620a56904995e6b301c8b68f9d2366f2763803bb
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.