[UCI-Linux] Bill Nottingham: [SECURITY] Fedora Core 2 Update: sox-12.17.4-4.fc2

Mike Iglesias IGLESIAS at uci.edu
Wed Jul 28 09:48:20 PDT 2004

------- Forwarded Message

Return-Path: fedora-announce-list-bounces at redhat.com
Delivery-Date: Wed Jul 28 09:41:47 2004
Received: from mta4.service.uci.edu (mta4.service.uci.edu [])
	by draco.acs.uci.edu (8.12.8/8.12.8) with ESMTP id i6SGffiK029575
	for <iglesias at draco.acs.uci.edu>; Wed, 28 Jul 2004 09:41:41 -0700
Received: (from daemon at localhost)
	by mta4.service.uci.edu (8.11.4-20030923/8.11.2) id i6SGfeq19279
	for iglesias at draco.acs.uci.edu.xyzzy; Wed, 28 Jul 2004 09:41:40 -0700 (PDT)
Received: (from daemon at localhost)
	by mta4.service.uci.edu (8.11.4-20030923/8.11.2) id i6SGfeB19249
	for iglesias at uci.edu.xyzzy; Wed, 28 Jul 2004 09:41:40 -0700 (PDT)
Received: from hormel.redhat.com (hormel.redhat.com [])
	by mta4.service.uci.edu (8.11.4-20030923/8.11.2) with ESMTP id i6SGerL18409
	for <iglesias at uci.edu>; Wed, 28 Jul 2004 09:40:53 -0700 (PDT)
Received: from listman.util.phx.redhat.com (listman.util.phx.redhat.com [])
	by hormel.redhat.com (Postfix) with ESMTP
	id D5FB374473; Wed, 28 Jul 2004 12:40:10 -0400 (EDT)
Received: from int-mx1.corp.redhat.com (int-mx1.corp.redhat.com
	by listman.util.phx.redhat.com (8.12.10/8.12.10) with ESMTP id
	for <fedora-announce-list at listman.util.phx.redhat.com>;
	Wed, 28 Jul 2004 12:38:33 -0400
Received: (from mail at localhost)
	by int-mx1.corp.redhat.com (8.11.6/8.11.6) id i6SGcW302699
	for fedora-announce-list at listman.util.phx.redhat.com;
	Wed, 28 Jul 2004 12:38:32 -0400
Received: from nostromo.devel.redhat.com (nostromo.devel.redhat.com
	by int-mx1.corp.redhat.com (8.11.6/8.11.6) with ESMTP id i6SGcWa02695
	for <fedora-announce-list at redhat.com>; Wed, 28 Jul 2004 12:38:32 -0400
Received: from nostromo.devel.redhat.com (localhost.localdomain [])
	by nostromo.devel.redhat.com (8.13.0/8.12.8) with ESMTP id
	for <fedora-announce-list at redhat.com>; Wed, 28 Jul 2004 12:38:32 -0400
Received: (from notting at localhost)
	by nostromo.devel.redhat.com (8.13.0/8.13.0/Submit) id i6SGcW3x017059
	for fedora-announce-list at redhat.com; Wed, 28 Jul 2004 12:38:32 -0400
Date: Wed, 28 Jul 2004 12:38:32 -0400
From: Bill Nottingham <notting at redhat.com>
To: fedora-announce-list at redhat.com
Message-ID: <20040728163832.GB17033 at nostromo.devel.redhat.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.4.1i
X-loop: fedora-announce-list at redhat.com
X-Mailman-Approved-At: Wed, 28 Jul 2004 12:39:54 -0400
Subject: [SECURITY] Fedora Core 2 Update: sox-12.17.4-4.fc2
X-BeenThere: fedora-announce-list at redhat.com
X-Mailman-Version: 2.1.5
Precedence: junk
Reply-To: fedora-list at redhat.com
List-Id: Announcements related to the Fedora Project
List-Unsubscribe: <http://www.redhat.com/mailman/listinfo/fedora-announce-list>, 
	<mailto:fedora-announce-list-request at redhat.com?subject=unsubscribe>
List-Archive: </archives/fedora-announce-list>
List-Post: <mailto:fedora-announce-list at redhat.com>
List-Help: <mailto:fedora-announce-list-request at redhat.com?subject=help>
List-Subscribe: <http://www.redhat.com/mailman/listinfo/fedora-announce-list>, 
	<mailto:fedora-announce-list-request at redhat.com?subject=subscribe>
Sender: fedora-announce-list-bounces at redhat.com
Errors-To: fedora-announce-list-bounces at redhat.com
X-UCIRVINE-MailScanner: No viruses found
X-DRACO-MailScanner: Not checked for viruses

- ---------------------------------------------------------------------
Fedora Update Notification
- ---------------------------------------------------------------------

Product     : Fedora Core 2
Name        : sox
Version     : 12.17.4                      
Release     : 4.fc2                  
Summary     : A general purpose sound file conversion tool.
Description :
SoX (Sound eXchange) is a sound file format converter SoX can convert
between many different digitized sound formats and perform simple
sound manipulation functions, including sound effects.

- ---------------------------------------------------------------------
Update Information:

Updated sox packages that fix buffer overflows in the WAV file handling
code are now available.
Buffer overflows existed in the parsing of WAV file header fields. It
was possible that a malicious WAV file could have caused arbitrary
code to be executed when the file was played or converted.

- ---------------------------------------------------------------------
* Fri Jul 23 2004 Bill Nottingham <notting at redhat.com> 12.17.4-4.fc2

- - add patch for buffer overflow in wav code (CAN-2004-0557, #128158)

* Fri Jul 09 2004 Bill Nottingham <notting at redhat.com> 12.17.4-4

- - add patch for 64-bit problem (#127502)

* Tue Jun 15 2004 Elliot Lee <sopwith at redhat.com>

- - rebuilt

- ---------------------------------------------------------------------
This update can be downloaded from:

1020f447f7a723dab88d8bc17b364a7b  SRPMS/sox-12.17.4-4.fc2.src.rpm
7ce0bf74c84febdd8013d61a06f3d46c  x86_64/sox-12.17.4-4.fc2.x86_64.rpm
cd8c74016bf280afceb513a20184af93  x86_64/sox-devel-12.17.4-4.fc2.x86_64.rpm
d891be1475f207ce0103fdac5ef832f1  x86_64/debug/sox-debuginfo-12.17.4-4.fc2.x86_64.rpm
a4e7728468e13aa426b7433d0bafb210  i386/sox-12.17.4-4.fc2.i386.rpm
f3eb4728f9a1f20662a54a724ac99486  i386/sox-devel-12.17.4-4.fc2.i386.rpm
765a3b6f295f98448c09ffac0162a01a  i386/debug/sox-debuginfo-12.17.4-4.fc2.i386.rpm

This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.  
- ---------------------------------------------------------------------

- --
fedora-announce-list mailing list
fedora-announce-list at redhat.com

------- End of Forwarded Message

More information about the UCI-Linux mailing list