USN-4013-1: libsndfile vulnerabilities
USN-4013-1: libsndfile vulnerabilities libsndfile vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 18.10 Ubuntu 18.04 LTS Ubuntu 16.04 LTS Summary Several security issues were fixed in libsndfile. Software Description libsndfile – Library for reading/writing audio files Details It was discovered that libsndfile incorrectly handled certain malformed files. A remote attacker could use this issue to cause libsndfile to crash, resulting in a denial of service, or possibly execute arbitrary code. Update instructions The problem can be corrected by updating your system to the following package versions: Ubuntu 18.10 libsndfile1 – 1.0.28-4ubuntu0.18.10.1 Ubuntu 18.04 LTS libsndfile1 – 1.0.28-4ubuntu0.18.04.1 Ubuntu 16.04 LTS libsndfile1 – 1.0.25-10ubuntu0.16.04.2 To update your system, please follow these instructions: https://wiki.ubuntu.com/Security/Upgrades. After a standard system update you need to restart your session to make all the necessary changes. References CVE-2017-14245 CVE-2017-14246 CVE-2017-14634 CVE-2017-16942 CVE-2017-17456 [ more… ]