[SECURITY] [DLA 128-1] sox security update

To: debian-lts-announce@lists.debian.org
Subject: [SECURITY] [DLA 128-1] sox security update
From: Thorsten Alteholz <debian@alteholz.de>
Date: Sat, 3 Jan 2015 22:31:52 +0100 (CET)
Message-id: <[🔎] alpine.DEB.2.02.1501032230470.13976@jupiter.server.alteholz.net>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : sox
Version        : 14.3.1-1+deb6u1
CVE ID         : CVE-2014-8145
Debian Bug     : 773720

Michele Spagnuolo of the Google Security Team dicovered two heap-based
buffer overflows in SoX, the Swiss Army knife of sound processing
programs. A specially crafted wav file could cause an application using
SoX to crash or, possibly, execute arbitrary code.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=xDC8
-----END PGP SIGNATURE-----

Reply to:

Prev by Date: [SECURITY] [DLA 129-1] polarssl security update
Next by Date: [SECURITY] [DLA 130-1] firebird2.1 security update
Previous by thread: [SECURITY] [DLA 129-1] polarssl security update
Next by thread: [SECURITY] [DLA 130-1] firebird2.1 security update
Index(es):
- Date
- Thread