ELA-527-1 libsamplerate security update

buffer over-read

2021-12-14
Packagelibsamplerate
Version0.1.8-8+deb8u1
Related CVEs CVE-2017-7697


An issue has been found in libsamplerate, an audio sample rate conversion library. Using a crafted audio file a buffer over-read might happen in calc_output_single() in src_sinc.c.



For Debian 8 jessie, these problems have been fixed in version 0.1.8-8+deb8u1.

We recommend that you upgrade your libsamplerate packages.

Further information about Extended LTS security advisories can be found in the dedicated section of our website.