ALSA-2024:11237

[ALSA-2024:11237] Moderate: libsndfile:1.0.31 security update

Type:

security

Severity:

moderate

Release date:

2024-12-23

Description:

libsndfile is a C library for reading and writing files containing sampled sound, such as AIFF, AU, or WAV.   

Security Fix(es):  

  * libsndfile: Segmentation fault error in ogg_vorbis.c:417 vorbis_analysis_wrote() (CVE-2024-50612)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	libsndfile-utils-1.0.31-8.el9_5.2.aarch64.rpm	1b9a1a630ddf258220f21f3be437a95dba406ddc4e27fd27337c1f4940887f44
aarch64	libsndfile-devel-1.0.31-8.el9_5.2.aarch64.rpm	7cd443e05372ccf08e5d51dc52603c64f36c1b68bc656471ea62ef5d61336be4
aarch64	libsndfile-1.0.31-8.el9_5.2.aarch64.rpm	fc22af308545dd16ec2288c5348caa9aa491431fbb73422a788b431b2649037f
i686	libsndfile-devel-1.0.31-8.el9_5.2.i686.rpm	4961a02da0b383bf9f9e636ccbb1cead83347fcc1c235bd149b5f9e40d3992fa
ppc64le	libsndfile-devel-1.0.31-8.el9_5.2.ppc64le.rpm	fe86311432fdc2f6f924c66cf1609025b1cb11f79616167995b1efc2a4814c73
s390x	libsndfile-devel-1.0.31-8.el9_5.2.s390x.rpm	96e938e35849dbe0d09e57a6d2b7f83e97fb1f6511b2182c49f33e8379a1190b
x86_64	libsndfile-devel-1.0.31-8.el9_5.2.x86_64.rpm	d11ef3b3759dc1ffd8bfd497a105623c9234249d0203a4617eff489f0892c735

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.