[SECURITY] Fedora 8 Update: libfishsound-0.9.1-1.fc8

updates at fedoraproject.org updates at fedoraproject.org
Thu Apr 17 03:48:20 UTC 2008


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-3059
2008-04-17 03:17:45
--------------------------------------------------------------------------------

Name        : libfishsound
Product     : Fedora 8
Version     : 0.9.1
Release     : 1.fc8
URL         : http://www.annodex.net/
Summary     : Simple programming interface for Xiph.Org codecs
Description :
libfishsound provides a simple programming interface for decoding and
encoding audio data using Xiph.Org codecs (FLAC, Speex and Vorbis).

libfishsound by itself is designed to handle raw codec streams from a
lower level layer such as UDP datagrams. When these codecs are used in
files, they are commonly encapsulated in Ogg to produce Ogg FLAC, Speex
and Ogg Vorbis files.

--------------------------------------------------------------------------------
Update Information:

CVE-2008-1686 libfishsound: insufficient boundary checks
--------------------------------------------------------------------------------
ChangeLog:

* Wed Apr  9 2008 Michel Salim <salimma at fedoraproject.org> - 0.9.1-1
- Update to 0.9.1 (CVE-2008-1686, bz #441246)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #441239 - CVE-2008-1686 speex, libfishsound: insufficient boundary checks
        https://bugzilla.redhat.com/show_bug.cgi?id=441239
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update libfishsound' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------




More information about the Fedora-package-announce mailing list