Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Sat, 15 Apr 2017 14:38:23 +0100
From: Nick Boyce <nick.boyce@...il.com>
To: oss-security@...ts.openwall.com
Subject: Re: Re: libsamplerate: global buffer overflow in
 calc_output_single (src_sinc.c)

Hi Agostino,

Ian>>> Affected version:  1.0.8
Ian>>> Fixed version:  1.0.9
Ian>>
Ian>> Should this be 0.1.8 and 0.1.9 instead?
you>
you> I dind't understand at all what you would to change.

Perhaps Ian is referring to the fact that at the "Secret Rabbit Code"
home of libsamplerate, to which your linked blog article provides this
link:
http://www.mega-nerd.com/SRC/
there is no reference to any version numbers of the form 1.0.x, but
only numbers such as 0.1.8 (the last release [dated 15.Aug.2011]
mentioned in the changelog as I write)
http://www.mega-nerd.com/SRC/ChangeLog
and 0.1.9 (the latest version actually available for download):
http://www.mega-nerd.com/SRC/download.html

I'm just as confused as Ian.

Cheers
Nick Boyce
(just following along at home)

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ