-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-6b83109e4e 2023-02-10 01:24:19.202167 -------------------------------------------------------------------------------- Name : opusfile Product : Fedora 36 Version : 0.12 Release : 9.fc36 URL : https://www.opus-codec.org/ Summary : A high-level API for decoding and seeking within .opus files Description : libopusfile provides a high-level API for decoding and seeking within .opus files. It includes: * Support for all files with at least one Opus stream (including multichannel files or Ogg files where Opus is muxed with something else). * Full support, including seeking, for chained files. * A simple stereo downmixing API (allowing chained files to be decoded with a single output format, even if the channel count changes). * Support for reading from a file, memory buffer, or over HTTP(S) (including seeking). * Support for both random access and streaming data sources. -------------------------------------------------------------------------------- Update Information: Add upstream fix for CVE-2022-47021 -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 1 2023 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> - 0.12-9 - Add upstream fix for CVE-2022-47021 * Thu Jan 19 2023 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 0.12-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild * Fri Jul 22 2022 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 0.12-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_37_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #2163902 - CVE-2022-47021 opusfile: NULL pointer dereference in op_get_data() and op_open1() in opusfile.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2163902 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-6b83109e4e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list -- package-announce@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to package-announce-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
