projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9e2128b) | patch
package/libsndfile: fix CVE-2018-19758
authorFabrice Fontaine <fontaine.fabrice@gmail.com>
Wed, 4 Mar 2020 22:21:02 +0000 (23:21 +0100)
committerPeter Korsgaard <peter@korsgaard.com>
Thu, 5 Mar 2020 15:41:57 +0000 (16:41 +0100)
commit27acdca7ee5493cc5cbd7fcf272606da43cfa896
tree4e3c3fcc653b4fcc98704ee55ebf6cc1fb36817etree
parent9e2128bf5072e5f2fd69e2fc0239558782dfc677commit | diff
package/libsndfile: fix CVE-2018-19758

There is a heap-based buffer over-read at wav.c in wav_write_header in
libsndfile 1.0.28 that will cause a denial of service.

Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/libsndfile/0004-src-wav.c-Fix-heap-read-overflow.patch [new file with mode: 0644] blob
package/libsndfile/libsndfile.mk diff | blob | history