stable

libxmp-4.6.1-2.fc40

FEDORA-2025-c58133e520 created by rathann a month ago for Fedora 40

Latest upstream release. Changelog:

Fixes:

  • CVE-2023-45679: Attempt to free an uninitialized memory pointer in vorbis_deinit()
  • CVE-2023-45680: Null pointer dereference in vorbis_deinit()
  • CVE-2023-45681: Out of bounds heap buffer write
  • CVE-2023-45676: Multi-byte write heap buffer overflow in start_decoder()
  • CVE-2023-45677: Heap buffer out of bounds write in start_decoder()
  • CVE-2023-45682: Wild address read in vorbis_decode_packet_rest()

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2025-c58133e520

This update has been submitted for testing by rathann.

a month ago

This update's test gating status has been changed to 'ignored'.

a month ago

This update has been pushed to testing.

a month ago

This update has been submitted for stable by bodhi.

a month ago

This update has been pushed to stable.

a month ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-2
Stable by Karma
2
Stable by Time
7 days
Dates
submitted
a month ago
in testing
a month ago
in stable
a month ago
approved
a month ago
BZ#2335113 libxmp-4.6.1 is available
0
0

Automated Test Results