[SECURITY] Fedora 8 Update: libfishsound-0.9.1-1.fc8
updates at fedoraproject.org
updates at fedoraproject.org
Thu Apr 17 03:48:20 UTC 2008
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-3059
2008-04-17 03:17:45
--------------------------------------------------------------------------------
Name : libfishsound
Product : Fedora 8
Version : 0.9.1
Release : 1.fc8
URL : http://www.annodex.net/
Summary : Simple programming interface for Xiph.Org codecs
Description :
libfishsound provides a simple programming interface for decoding and
encoding audio data using Xiph.Org codecs (FLAC, Speex and Vorbis).
libfishsound by itself is designed to handle raw codec streams from a
lower level layer such as UDP datagrams. When these codecs are used in
files, they are commonly encapsulated in Ogg to produce Ogg FLAC, Speex
and Ogg Vorbis files.
--------------------------------------------------------------------------------
Update Information:
CVE-2008-1686 libfishsound: insufficient boundary checks
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 9 2008 Michel Salim <salimma at fedoraproject.org> - 0.9.1-1
- Update to 0.9.1 (CVE-2008-1686, bz #441246)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #441239 - CVE-2008-1686 speex, libfishsound: insufficient boundary checks
https://bugzilla.redhat.com/show_bug.cgi?id=441239
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update libfishsound' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the Fedora-package-announce
mailing list