--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-dbe9da512d
2018-11-25 02:03:23.555625
--------------------------------------------------------------------------------
Name : soundtouch
Product : Fedora 27
Version : 2.1.1
Release : 1.fc27
URL :
http://www.surina.net/soundtouch/
Summary : Audio Processing library for changing Tempo, Pitch and Playback Rates
Description :
SoundTouch is a LGPL-licensed open-source audio processing library for
changing the Tempo, Pitch and Playback Rates of audio streams or
files. The SoundTouch library is suited for application developers
writing sound processing tools that require tempo/pitch control
functionality, or just for playing around with the sound effects.
The SoundTouch library source kit includes an example utility
SoundStretch which allows processing .wav audio files from a
command-line interface.
--------------------------------------------------------------------------------
Update Information:
Security fix version for CVE-2018-17098 , CVE-2018-17096 and CVE-2018-17097
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 14 2018 S��rgio Basto <sergio(a)serjux.com> - 2.1.1-1
- Update to 2.1.1
Bugfixes: Fixed potential buffer overwrite bugs in WavFile routines. Replaced asserts
with runtime exceptions.
Android: Migrated the SoundTouch Android example to new Android Studio
Automake: unset ACLOCAL in bootstrap script to avoid error in case earlier build script
has set it
* Sat Oct 6 2018 S��rgio Basto <sergio(a)serjux.com> - 2.1.0-1
- Update to 2.1.0
* Tue Aug 14 2018 Hans de Goede <hdegoede(a)redhat.com> - 2.0.0-6
- The last round of security fixes also fixes CVE-2018-14044, CVE-2018-14045
(rhbz#1601618, rhbz#1601620, rhbz#1601624, rhbz#1601625)
* Tue Aug 14 2018 Hans de Goede <hdegoede(a)redhat.com> - 2.0.0-5
- Security fix for CVE-2018-1000223 (rhbz#1609193, rhbz#1609194)
* Sat Jul 14 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.0.0-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
* Thu Jul 5 2018 Hans de Goede <hdegoede(a)redhat.com> 2.0.0-3
- Security fix for CVE-2017-9258, CVE-2017-9259, CVE-2017-9260 (rhbz#1475759)
* Fri Feb 9 2018 Fedora Release Engineering <releng(a)fedoraproject.org> - 2.0.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild
* Thu Sep 28 2017 S��rgio Basto <sergio(a)serjux.com> - 2.0.0-1
- Update soundtouch to 2.0.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1631065 - CVE-2018-17098 soundtouch: Heap corruption in WavFileBase class in
WavFile.cpp [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1631065
[ 2 ] Bug #1631061 - CVE-2018-17096 soundtouch: Assertion failure in BPMDetect class in
BPMDetect.cpp [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1631061
[ 3 ] Bug #1631056 - CVE-2018-17097 soundtouch: Double free in WavFileBase class in
WavFile.cpp [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1631056
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2018-dbe9da512d' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------