FEDORA-2014-16175 created by mlichvar 7 years ago for Fedora 21
stable

Security fix for CVE-2014-9028, CVE-2014-8962

How to install

sudo dnf upgrade --advisory=FEDORA-2014-16175

This update has been submitted for testing by mlichvar.

7 years ago
User Icon amigadave commented & provided feedback 7 years ago
karma

works fine here

Critical path update approved

7 years ago

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/17412/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/17412/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 21 testing updates repository.

7 years ago

This update has been pushed to testing

7 years ago
User Icon mschwendt commented & provided feedback 7 years ago
karma

Audacious flacng.so still manages to decode FLAC files, but this update ticket doesn't give a hint on what to watch out for when testing it. One bug is about ID3v2 - I don't think my .flac files have such tags. The second bug fix might be difficult to test with arbitrary .flac files.

This update has been submitted for stable by mlichvar.

7 years ago

Taskotron: upgradepath test PASSED on noarch. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/20200/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 21 stable updates repository.

7 years ago

This update has been pushed to stable

7 years ago

Please login to add feedback.

Metadata
Type
security
Karma
2
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
7 years ago
in testing
7 years ago
in stable
7 years ago
BZ#1167236 CVE-2014-8962 flac: Buffer read overflow when processing ID3V2 metadata
0
0
BZ#1167741 CVE-2014-9028 flac: Heap buffer write overflow in read_residual_partitioned_rice_
0
0
BZ#1169698 CVE-2014-9028 CVE-2014-8962 flac: various flaws [fedora-all]
0
0

Automated Test Results