[ubuntu/lucid-security] flac 1.2.1-2ubuntu0.1 (Accepted)

Marc Deslauriers Thu, 27 Nov 2014 10:54:07 -0800

flac (1.2.1-2ubuntu0.1) lucid-security; urgency=medium

  * SECURITY UPDATE: arbitrary code execution via crafted .flac file
    - debian/patches/CVE-2014-8962.dpatch: validate id in
      src/libFLAC/stream_decoder.c.
    - CVE-2014-8962
  * SECURITY UPDATE: arbitrary code execution via crafted .flac file
    - debian/patches/CVE-2014-9028.dpatch: error out to avoid heap overflow
      in src/libFLAC/stream_decoder.c.
    - CVE-2014-9028


Date: 2014-11-27 17:55:15.234340+00:00
Changed-By: Marc Deslauriers <marc.deslauri...@canonical.com>
https://launchpad.net/ubuntu/+source/flac/1.2.1-2ubuntu0.1

Sorry, changesfile not available.

-- 
Lucid-changes mailing list
Lucid-changes@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/lucid-changes

[ubuntu/lucid-security] flac 1.2.1-2ubuntu0.1 (Accepted)

Reply via email to