This bug was fixed in the package audiofile - 0.3.6-3ubuntu0.1
--------------- audiofile (0.3.6-3ubuntu0.1) yakkety-security; urgency=high
* SECURITY UPDATE: multiple vulnerabilities (LP: #1674005) - Apply patches from Debian 0.3.6-4: + 04_clamp-index-values-to-fix-index-overflow-in-IMA.cpp.patch + 05_Always-check-the-number-of-coefficients.patch + 06_Check-for-multiplication-overflow-in-MSADPCM-decodeSam.patch + 07_Check-for-multiplication-overflow-in-sfconvert.patch + 08_Fix-signature-of-multiplyCheckOverflow.-It-returns-a-b.patch + 09_Actually-fail-when-error-occurs-in-parseFormat.patch + 10_Check-for-division-by-zero-in-BlockCodec-runPull.patch - CVE-2017-6827, CVE-2017-6828, CVE-2017-6829, CVE-2017-6830, CVE-2017-6831, CVE-2017-6832, CVE-2017-6833, CVE-2017-6834, CVE-2017-6835, CVE-2017-6836, CVE-2017-6837, CVE-2017-6838, CVE-2017-6839
-- Jeremy Bicha <email address hidden> Thu, 16 Mar 2017 21:43:45 +0100
This bug was fixed in the package audiofile - 0.3.6-3ubuntu0.1
---------------
audiofile (0.3.6-3ubuntu0.1) yakkety-security; urgency=high
* SECURITY UPDATE: multiple vulnerabilities (LP: #1674005) index-values- to-fix- index-overflow- in-IMA. cpp.patch check-the- number- of-coefficients .patch for-multiplicat ion-overflow- in-MSADPCM- decodeSam. patch for-multiplicat ion-overflow- in-sfconvert. patch signature- of-multiplyChec kOverflow. -It-returns- a-b.patch fail-when- error-occurs- in-parseFormat. patch for-division- by-zero- in-BlockCodec- runPull. patch 2017-6831, CVE-2017-6832, CVE-2017-6833, CVE-2017-6834, 2017-6835, CVE-2017-6836, CVE-2017-6837, CVE-2017-6838,
- Apply patches from Debian 0.3.6-4:
+ 04_clamp-
+ 05_Always-
+ 06_Check-
+ 07_Check-
+ 08_Fix-
+ 09_Actually-
+ 10_Check-
- CVE-2017-6827, CVE-2017-6828, CVE-2017-6829, CVE-2017-6830,
CVE-
CVE-
CVE-2017-6839
-- Jeremy Bicha <email address hidden> Thu, 16 Mar 2017 21:43:45 +0100