FSA/F7/FEDORA-2007-1045

[SECURITY] Fedora 7 Update: flac123-0.0.11-1.fc7
Fedora Update Notification FEDORA-2007-1045 2007-07-12 16:38:00.244388

Name       : flac123 Product    : Fedora 7 Version    : 0.0.11 Release    : 1.fc7 Summary    : Command-line program for playing FLAC audio files Description : flac123 is a command-line program for playing FLAC audio files

FLAC stands for Free Lossless Audio Codec. Grossly oversimplified, FLAC is similar to Ogg Vorbis, but lossless

Update Information:

Updates package to 0.0.11, which solves vorbis comment parsing buffer overflow

ChangeLog:

- Bump to 0.0.11, this fixes #246322 and adds flac 1.1.4 support - Remove flac 1.1.3 patch, it's not needed anymore
 * Thu Jul 12 2007 Sindre Pedersen Bjørdal  - 0.0.11-1

References:

[ 1 ] Bug #246322 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=246322 [ 2 ] CVE-2007-3507 http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3507

Updated packages:

1dae8eeb808bd837bca04666d4f1bbd710608937 flac123-0.0.11-1.fc7.ppc64.rpm 95da67f83d6b77b368568025708ab649ece63bf1 flac123-debuginfo-0.0.11-1.fc7.ppc64.rpm 745a2ca63673a8563d9340ca15b4043c7c87b4aa flac123-0.0.11-1.fc7.i386.rpm 25f4366db9a61152b417dae87260d3f9bd61fb92 flac123-debuginfo-0.0.11-1.fc7.i386.rpm d00f9d354e8861c45446acbb6acba68a8a267f54 flac123-0.0.11-1.fc7.x86_64.rpm 0934fe136f3419a5c16599a4e3b66efad227c911 flac123-debuginfo-0.0.11-1.fc7.x86_64.rpm 728c32658be8c8c78eca71e52a439fbee1b44e5d flac123-0.0.11-1.fc7.ppc.rpm 6a147cf049add5deda79ea589cf5b615f7cf0c49 flac123-debuginfo-0.0.11-1.fc7.ppc.rpm 82e751e9652d9e8dc704c494de97142d0b76a4d8 flac123-0.0.11-1.fc7.src.rpm

This update can be installed with the 'yum' update program. Use 'yum update package-name' at the command line. For more information, refer to 'Managing Software with yum,' available at http://docs.fedoraproject.org/yum/.