ELA-49-1 adplug security update

double-free vulnerability

2018-10-07
Packageadplug
Version2.2.1+dfsg3-0.1+deb7u1
Related CVEs CVE-2018-17825


It was discovered that there was a potential denial of service (DoS) attack due to double-free vulnerability in the “adplug” sound library.



For Debian 7 Wheezy, these problems have been fixed in version 2.2.1+dfsg3-0.1+deb7u1.

We recommend that you upgrade your adplug packages.

Further information about Extended LTS security advisories can be found in the dedicated section of our website.