FEDORA-2019-2e385f97e2 created by kalev 11 months ago for Fedora 29
stable

MinGW cross compiled libvorbis 1.3.6 + various patches backported from git.

This is a security fix for: CVE-2017-11333 CVE-2017-11735 CVE-2017-14160 CVE-2017-14632 CVE-2017-14633 CVE-2018-5146 CVE-2018-10392 CVE-2018-10393

How to install

sudo dnf upgrade --advisory=FEDORA-2019-2e385f97e2

This update has been submitted for testing by kalev.

11 months ago

This update has been pushed to testing.

11 months ago

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

11 months ago

This update has been submitted for batched by kalev.

11 months ago

This update has been submitted for stable by bodhi.

11 months ago

This update has been pushed to stable.

11 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Dates
submitted
11 months ago
in testing
11 months ago
in stable
11 months ago
BZ#1480643 CVE-2017-11333 libvorbis: Memory exhaustion in vorbis_analysis_wrote function in lib/block.c
0
0
BZ#1480645 CVE-2017-11735 libvorbis: NULL pointer dereference in vorbis_block_clear function in lib/block.c
0
0
BZ#1557221 CVE-2018-5146 Mozilla: Vorbis audio processing out of bounds write (MFSA 2018-08)
0
0
BZ#1558174 CVE-2018-5146 mingw-libvorbis: Mozilla: Vorbis audio processing out of bounds write (MFSA 2018-08) [fedora-all]
0
0
BZ#1574193 CVE-2018-10392 libvorbis: heap buffer overflow in mapping0_forward function
0
0
BZ#1574194 CVE-2018-10393 libvorbis: stack buffer overflow in bark_noise_hybridmp function
0
0
BZ#1574200 CVE-2018-10392 CVE-2018-10393 mingw-libvorbis: various flaws [fedora-all]
0
0

Automated Test Results