-
Committer:
Stefan Lesicnik
-
Date:
2010-02-24 17:44:55 UTC
-
mfrom:
(3.1.2 lenny)
-
Revision ID:
stefan@lsd.co.za-20100224174455-dy2aox2z25p29zw6
* SECURITY UPDATE: Heap-based buffer overflow in msadpcm.c in libaudiofile
in audiofile 0.2.6 allows context-dependent attackers to cause a denial
of service (application crash) or possibly execute arbitrary code via a
crafted WAV file. (LP: #527033)
- debian/patches/22_CVE-2008-5824.dpatch: Fix buffer overflow when
decompressing MS ADPCM .wav files.
- CVE-2008-5824