Bug#911584: libopenmpt: out of bounds memory read in MED files

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#911584: libopenmpt: out of bounds memory read in MED files
From: James Cowgill <jcowgill@debian.org>
Date: Mon, 22 Oct 2018 09:44:27 +0100
Message-id: <[🔎] 0036beee-de96-b46a-9d73-140fb9f70f39@debian.org>
Reply-to: James Cowgill <jcowgill@debian.org>, 911584@bugs.debian.org

Source: libopenmpt
Version: 0.2.7025~beta20.1-1
Severity: important
Tags: security upstream fixed-upstream

Hi,

Upstream 0.3.13 released a fix for an out of bound read in malformed MED
files. It affects stretch.

Announcement:
https://lib.openmpt.org/libopenmpt/2018/10/21/security-updates-0.3.13-0.2.10933-beta36-0.2.7561-beta20.5-p11-0.2.7386-beta20.3-p14/

Upstream commit which fixes this:
https://source.openmpt.org/browse/openmpt/trunk/?op=revision&rev=10903

James

Attachment: signature.asc
Description: OpenPGP digital signature

Reply to:

Follow-Ups:
- Bug#911584: marked as done (libopenmpt: out of bounds memory read in MED files)
  - From: "Debian Bug Tracking System" <owner@bugs.debian.org>
- Bug#911584: libopenmpt: out of bounds memory read in MED files
  - From: Moritz Mühlenhoff <jmm@inutil.org>

Prev by Date: terminatorx_4.0.1-2_source.changes ACCEPTED into unstable
Next by Date: Processing of libopenmpt_0.3.13-1_source.changes
Previous by thread: terminatorx_4.0.1-2_source.changes ACCEPTED into unstable
Next by thread: Bug#911584: marked as done (libopenmpt: out of bounds memory read in MED files)
Index(es):
- Date
- Thread