Bug#864195: libopenmpt: Security updates libopenmpt-0.2.7386-beta20.3-p7 available
Jörn Heusipp
osmanx at problemloesungsmaschine.de
Mon Jun 5 06:03:25 UTC 2017
Source: libopenmpt
Version: 0.2.7386~beta20.3-3
Severity: important
Tags: upstream
Dear Maintainer,
A couple of security-related fixes have been released upstream as version 0.2.7386-beta20.3-p7. See https://lib.openmpt.org/libopenmpt/md_announce-2017-06-02.html .
These most importantly fix a couple of possible crashes which can be triggered by maliciously modified or malformed or truncated module files as well as denial-of-service through hangs or excessive CPU consumption which can also be triggered maliciously modfied or malformed or truncated module files.
-- System Information:
Debian Release: 9.0
APT prefers testing
APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.9.0-3-amd64 (SMP w/2 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US:en (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
More information about the pkg-multimedia-maintainers
mailing list