type: security
subject: Updated libsndfile packages fix security vulnerability
CVE:
 - CVE-2018-19758
src:
  6:
   core:
     - libsndfile-1.0.28-3.4.mga6
description: |
  A heap-based buffer over-read at wav.c in wav_write_header that could be
  used for a denial of service attack (CVE-2018-19758).
references:
 - https://bugs.mageia.org/show_bug.cgi?id=24752
 - http://lists.suse.com/pipermail/sle-security-updates/2019-April/005286.html