Overview Repositories Revisions Requests Users Attributes Meta

A Library to Handle Various Audio File Formats

Edit Package libsndfile

Libsndfile is a C library for reading and writing sound files, such as
AIFF, AU, and WAV files, through one standard interface. It can
currently read and write 8, 16, 24, and 32-bit PCM files as well as
32-bit floating point WAV files and a number of compressed formats.

  • Devel package for openSUSE:Factory
  • 3 derived packages
  • Links to openSUSE:Factory / libsndfile
  • Download package
  • osc -A https://api.opensuse.org checkout multimedia:libs/libsndfile && cd $_
  • Create Badge
Refresh
Refresh
Source Files
Filename Size Changed
0001-FLAC-Fix-a-buffer-read-overrun.patch 0000002417 2.36 KB
0002-src-flac.c-Fix-a-buffer-read-overflow.patch 0000001883 1.84 KB
0010-src-aiff.c-Fix-a-buffer-read-overflow.patch 0000000790 790 Bytes
0020-src-common.c-Fix-heap-buffer-overflows-when-writing-.patch 0000004220 4.12 KB
0030-double64_init-Check-psf-sf.channels-against-upper-bo.patch 0000001221 1.19 KB
0031-sfe_copy_data_fp-check-value-of-max-variable.patch 0000003474 3.39 KB
_link 0000000145 145 Bytes
baselibs.conf 0000000109 109 Bytes
libsndfile-1.0.28.tar.gz 0001202833 1.15 MB
libsndfile-1.0.28.tar.gz.asc 0000000833 833 Bytes
libsndfile-CVE-2017-17456-alaw-range-check.patch 0000001660 1.62 KB
libsndfile-CVE-2017-17457-ulaw-range-check.patch 0000001650 1.61 KB
libsndfile-progs.changes 0000015738 15.4 KB
libsndfile-progs.spec 0000003098 3.03 KB
libsndfile.changes 0000018520 18.1 KB
libsndfile.keyring 0000003143 3.07 KB
libsndfile.spec 0000004792 4.68 KB
sndfile-deinterlace-channels-check.patch 0000000484 484 Bytes
sndfile-ocloexec.patch 0000000321 321 Bytes
Revision 71 (latest revision is 93)
Takashi Iwai's avatar Takashi Iwai (tiwai) committed (revision 71) 
- Fix potential overflow in d2alaw_array() (CVE-2017-17456,
  bsc#1071777):
  libsndfile-CVE-2017-17456-alaw-range-check.patch
- Fix potential overflow in d2ulaw_array() (CVE-2017-17457,
  bsc#1071767):
  libsndfile-CVE-2017-17457-ulaw-range-check.patch

- Fix VUL-0: divide-by-zero error exists in the function
  double64_init() in double64.c (CVE-2017-14634, bsc#1059911):
  0030-double64_init-Check-psf-sf.channels-against-upper-bo.patch
- Tentative fix for VUL-0: out of bounds read in the function
  d2alaw_array() in alaw.c (CVE-2017-14245, bsc#1059912) and
  VUL-0: out of bounds read in the function d2ulaw_array() in
  ulaw.c (CVE-2017-14246, bsc#1059913):
  0031-sfe_copy_data_fp-check-value-of-max-variable.patch

- Fix Heap-based Buffer Overflow in the psf_binheader_writef
  (CVE-2017-12562, bsc#1052476):
  0020-src-common.c-Fix-heap-buffer-overflows-when-writing-.patch

- Fix out-of-bounds read memory access in the aiff_read_chanmap()
  (CVE-2017-6892, bsc#1043978):
  0010-src-aiff.c-Fix-a-buffer-read-overflow.patch

- Fix FLAC buffer overflows (CVE-2017-8361 CVE-2017-8363
  CVE-2017-8365 CVE-2017-8362 bsc#1036944 bsc#1036945 bsc#1036946
  bsc#1036943):
  0001-FLAC-Fix-a-buffer-read-overrun.patch
  0002-src-flac.c-Fix-a-buffer-read-overflow.patch
Comments 1
Илья Индиго's avatar
Илья Индиго (13ilya) -

URL homepage und source not actualy. Development is already underway on github https://github.com/libsndfile/libsndfile with the latest version 1.30.0. I would update myself and send you an SR, but there are many patches in the purpose of which I do not understand, I think it is better to update it for you.

P.S. I'm wondering if the problem with this https://github.com/FluidSynth/fluidsynth/issues/696 will be solved after update or will remain so.

openSUSE Build Service is sponsored by
Places