-
Committer:
Package Import Robot
-
Author(s):
Marc Deslauriers
-
Date:
2014-11-27 12:27:24 UTC
-
Revision ID:
package-import@ubuntu.com-20141127122724-zqkfemy0fmbe69j2
Tags: 1.2.1-6ubuntu0.1
* SECURITY UPDATE: arbitrary code execution via crafted .flac file
- debian/patches/CVE-2014-8962.patch: validate id in
src/libFLAC/stream_decoder.c.
- CVE-2014-8962
* SECURITY UPDATE: arbitrary code execution via crafted .flac file
- debian/patches/CVE-2014-9028.patch: error out to avoid heap overflow
in src/libFLAC/stream_decoder.c.
- CVE-2014-9028