Publishing details

Changelog

libsndfile (1.0.28-7ubuntu0.1) focal-security; urgency=medium

  * SECURITY UPDATE: heap buffer overflow in msadpcm_decode_block allows
    arbitrary code execution via crafted WAV file.
    - debian/patches/CVE-2021-3246.patch: upstream patch to src/ms_adpcm.c
      to validate samples per block
    - CVE-2021-3246

 -- Alex Murray <email address hidden>  Wed, 28 Jul 2021 10:22:09 +0930

Available diffs

Builds

Package files