libvorbis (1.3.5-3ubuntu0.1) xenial-security; urgency=medium

  * SECURITY UPDATE: Remote code execution
    - debian/patches/CVE-2017-14632.patch: don't clear opb in
      lib/info.c.
    - CVE-2017-14632
  * SECURITY UPDATE: out-of-bounds array read
    - debian/patches/CVE-2017-14633.patch: don't allow for more than
      256 channels in lib/info.c.
    - CVE-2017-14633

Date: 2018-02-13 17:17:29.628772+00:00
Changed-By: leo.barb...@canonical.com (Leonidas S. Barbosa)
https://launchpad.net/ubuntu/+source/libvorbis/1.3.5-3ubuntu0.1
Sorry, changesfile not available.
-- 
Xenial-changes mailing list
Xenial-changes@lists.ubuntu.com
Modify settings or unsubscribe at: 
https://lists.ubuntu.com/mailman/listinfo/xenial-changes

Reply via email to