Alibaba Cloud Linux 2.1903 Security Advisory: ALINUX2-SA-2021:0051
Issued: 2021-08-31
Updated: 2021-08-31
Summary
libsndfile security update
Severity
Important
Description
Package updates are available for Alibaba Cloud Linux 2.1903 that fix the following vulnerabilities:
CVE-2021-3246:
A heap buffer overflow vulnerability in msadpcm_decode_block of libsndfile 1.0.30 allows attackers to execute arbitrary code via a crafted WAV file.
References
Updated Packages
- aarch64
- libsndfile-1.0.25-12.1.al7.1.aarch64.rpm → (download)
- libsndfile-debuginfo-1.0.25-12.1.al7.1.aarch64.rpm → (download)
- libsndfile-devel-1.0.25-12.1.al7.1.aarch64.rpm → (download)
- libsndfile-utils-1.0.25-12.1.al7.1.aarch64.rpm → (download)
- i686
- libsndfile-1.0.25-12.1.al7.1.i686.rpm → (download)
- libsndfile-debuginfo-1.0.25-12.1.al7.1.i686.rpm → (download)
- libsndfile-devel-1.0.25-12.1.al7.1.i686.rpm → (download)
- libsndfile-utils-1.0.25-12.1.al7.1.i686.rpm → (download)
- src
- libsndfile-1.0.25-12.1.al7.1.src.rpm → (download)
- x86_64
- libsndfile-1.0.25-12.1.al7.1.x86_64.rpm → (download)
- libsndfile-debuginfo-1.0.25-12.1.al7.1.x86_64.rpm → (download)
- libsndfile-devel-1.0.25-12.1.al7.1.x86_64.rpm → (download)
- libsndfile-utils-1.0.25-12.1.al7.1.x86_64.rpm → (download)