libvorbis (1.3.2-1.3ubuntu1.1) trusty-security; urgency=medium
* SECURITY UPDATE: Remote code execution
- debian/patches/CVE-2017-14632.patch: don't clear opb in
lib/info.c.
- CVE-2017-14632
* SECURITY UPDATE: out-of-bounds array read
- debian/patches/CVE-2017-14633.patch: don't allow for more than
256 channels in lib/info.c.
- CVE-2017-14633
Date: 2018-02-13 17:07:12.592029+00:00
Changed-By: leo.barb...@canonical.com (Leonidas S. Barbosa)
Signed-By: Ubuntu Archive Robot
<cjwatson+ubuntu-archive-ro...@chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/libvorbis/1.3.2-1.3ubuntu1.1
Sorry, changesfile not available.
--
Trusty-changes mailing list
Trusty-changes@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/trusty-changes