diff options
| author | Peter Korsgaard <peter@korsgaard.com> | 2017-03-30 23:03:34 +0200 |
|---|---|---|
| committer | Peter Korsgaard <peter@korsgaard.com> | 2017-04-03 10:31:56 +0200 |
| commit | c9890cfa67a887bf24aea7043d912ee6e8e669c0 (patch) | |
| tree | 193809df1b60e696db27ec6df856dc1cda86b918 /package/python-bitstring/python-bitstring.hash | |
| parent | 16daa3c10dbba15bc1e2bec590c1489c967a59e0 (diff) | |
| download | buildroot-c9890cfa67a887bf24aea7043d912ee6e8e669c0.tar.gz buildroot-c9890cfa67a887bf24aea7043d912ee6e8e669c0.zip | |
audiofile: add security patch for CVE-2017-6831
Heap-based buffer overflow in the decodeBlockWAVE function in IMA.cpp in
Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a
denial of service (crash) via a crafted file.
https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-imadecodeblockwave-ima-cpp
https://github.com/mpruett/audiofile/issues/35
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit bd5f84d301c4e74ca200a9336eca88468ec0e1f3)
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
Diffstat (limited to 'package/python-bitstring/python-bitstring.hash')
0 files changed, 0 insertions, 0 deletions

