advisories/24752.adv

type: security
subject: Updated libsndfile packages fix security vulnerability
CVE:
 - CVE-2018-19758
src:
  6:
   core:
     - libsndfile-1.0.28-3.4.mga6
description: |
  A heap-based buffer over-read at wav.c in wav_write_header that could be
  used for a denial of service attack (CVE-2018-19758).
references:
 - https://bugs.mageia.org/show_bug.cgi?id=24752
 - http://lists.suse.com/pipermail/sle-security-updates/2019-April/005286.html
1	davidwhodgins	8561	type: security
2			subject: Updated libsndfile packages fix security vulnerability
3			CVE:
4			- CVE-2018-19758
5			src:
6			6:
7			core:
8			- libsndfile-1.0.28-3.4.mga6
9			description: \|
10			A heap-based buffer over-read at wav.c in wav_write_header that could be
11			used for a denial of service attack (CVE-2018-19758).
12			references:
13			- https://bugs.mageia.org/show_bug.cgi?id=24752
14			- http://lists.suse.com/pipermail/sle-security-updates/2019-April/005286.html