Update for 00Meta, 389-ds, 389-ds.2045, BNFC, BN... security low

Security update for audiofile

This audiofile update fixes the following issue:

Security issues fixed:
- CVE-2017-6827: heap-based buffer overflow in MSADPCM::initializeCoefficients (MSADPCM.cpp) (bsc#1026979)
- CVE-2017-6828: heap-based buffer overflow in readValue (FileHandle.cpp) (bsc#1026980)
- CVE-2017-6829: global buffer overflow in decodeSample (IMA.cpp) (bsc#1026981)
- CVE-2017-6830: heap-based buffer overflow in alaw2linear_buf (G711.cpp) (bsc#1026982)
- CVE-2017-6831: heap-based buffer overflow in IMA::decodeBlockWAVE (IMA.cpp) (bsc#1026983)
- CVE-2017-6832: heap-based buffer overflow in MSADPCM::decodeBlock (MSADPCM.cpp) (bsc#1026984)
- CVE-2017-6833: divide-by-zero in BlockCodec::runPull (BlockCodec.cpp) (bsc#1026985)
- CVE-2017-6834: heap-based buffer overflow in ulaw2linear_buf (G711.cpp) (bsc#1026986)
- CVE-2017-6835: divide-by-zero in BlockCodec::reset1 (BlockCodec.cpp) (bsc#1026988)
- CVE-2017-6836: heap-based buffer overflow in Expand3To4Module::run (SimpleModule.h) (bsc#1026987)
- CVE-2017-6837, CVE-2017-6838, CVE-2017-6839: multiple ubsan crashes (bsc#1026978)

This update was imported from the SUSE:SLE-12:Update update project.

Fixed bugs
bnc#1026978
VUL-1: CVE-2017-6837, CVE-2017-6838, CVE-2017-6839: audiofile: multiple ubsan crashes
bnc#1026979
VUL-1: CVE-2017-6827: audiofile: heap-based buffer overflow in MSADPCM::initializeCoefficients (MSADPCM.cpp)
bnc#1026980
VUL-1: CVE-2017-6828: audiofile: heap-based buffer overflow in readValue (FileHandle.cpp)
bnc#1026981
VUL-1: CVE-2017-6829: audiofile: global buffer overflow in decodeSample (IMA.cpp)
bnc#1026982
VUL-1: CVE-2017-6830: audiofile: heap-based buffer overflow in alaw2linear_buf (G711.cpp)
bnc#1026983
VUL-1: CVE-2017-6831: audiofile: heap-based buffer overflow in IMA::decodeBlockWAVE (IMA.cpp)
bnc#1026984
VUL-1: CVE-2017-6832: audiofile: heap-based buffer overflow in MSADPCM::decodeBlock (MSADPCM.cpp)
bnc#1026985
VUL-1: CVE-2017-6833: audiofile: divide-by-zero in BlockCodec::runPull (BlockCodec.cpp)
bnc#1026986
VUL-1: CVE-2017-6834: audiofile: heap-based buffer overflow in ulaw2linear_buf (G711.cpp)
bnc#1026987
VUL-1: CVE-2017-6836: audiofile: heap-based buffer overflow in Expand3To4Module::run (SimpleModule.h)
bnc#1026988
VUL-1: CVE-2017-6835: audiofile: divide-by-zero in BlockCodec::reset1 (BlockCodec.cpp)
Selected Binaries
openSUSE Build Service is sponsored by