Updated lame packages fix security vulnerabilities
Publication date: 01 Dec 2017Modification date: 04 Mar 2018
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2017-9872 , CVE-2017-11720 , CVE-2017-13712 , CVE-2017-15019 , CVE-2017-9410 , CVE-2017-9411 , CVE-2017-9412
Description
LAME 3.100 has been released including fixes to security vulnerabilities.
Note the MP3 patents have expired.
References
- https://bugs.mageia.org/show_bug.cgi?id=21170
- http://openwall.com/lists/oss-security/2017/10/21/7
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9872
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11720
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13712
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15019
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9410
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9411
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9412
SRPMS
6/core
- lame-3.100-1.mga6
5/tainted
- lame-3.100-1.mga5.tainted