[ALSA-2024:3095] Moderate: vorbis-tools security update
Type:
security
Severity:
moderate
Release date:
2024-05-29
Description:
The vorbis-tools packages provide an encoder, a decoder, a playback tool, and a comment editor for Ogg Vorbis. Ogg Vorbis is a fully open, non-proprietary, patent- and royalty-free, general-purpose compressed audio format. Security Fix(es): * vorbis-tools: Buffer Overflow vulnerability (CVE-2023-43361) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 vorbis-tools-1.4.0-29.el8.aarch64.rpm 66729b223811638596d664dd902784c0dd1d2370490896cc2c39c328f7bad274
ppc64le vorbis-tools-1.4.0-29.el8.ppc64le.rpm fca8bf6e682c1f7979d32ce63b442168f532429e85db096a5c23083a7c42d2de
s390x vorbis-tools-1.4.0-29.el8.s390x.rpm 63fe770301ffba6a97271d5f196426c3e681887b1917855654d9883592915405
x86_64 vorbis-tools-1.4.0-29.el8.x86_64.rpm d53cedef220b4268921c85f3ea0cec11959a61fc625833f3528a77db6fad1961
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.