NetCube-Systems-Austria/kumquat-buildroot
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
5286dec396
kumquat-buildroot/package/audiofile
History
Peter Korsgaard 844a7c6281 audiofile: add security patch for CVE-2017-6839 
Integer overflow in modules/MSADPCM.cpp in Audio File Library (aka
audiofile) 0.3.6 allows remote attackers to cause a denial of service
(crash) via a crafted file.

https://blogs.gentoo.org/ago/2017/02/20/audiofile-multiple-ubsan-crashes/
https://github.com/mpruett/audiofile/issues/41

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
2017-03-31 13:36:31 +02:00
..
0001-Fix-pkg-config-for-static-linking.patch
0002-cast-to-unsigned-gcc6.patch
0003-Always-check-the-number-of-coefficients.patch
0004-clamp-index-values-to-fix-index-overflow-in-IMA.cpp.patch
0005-Check-for-multiplication-overflow-in-sfconvert.patch audiofile: add security patch for CVE-2017-6830 / CVE-2017-6834 / CVE-2017-6836 / CVE-2017-6838 2017-03-31 13:36:23 +02:00
0006-Actually-fail-when-error-occurs-in-parseFormat.patch audiofile: add security patch for CVE-2017-6831 2017-03-31 13:36:26 +02:00
0007-Check-for-multiplication-overflow-in-MSADPCM-decodeS.patch audiofile: add security patch for CVE-2017-6839 2017-03-31 13:36:31 +02:00
audiofile.hash
audiofile.mk
Config.in