Read Time:36 Second

FEDORA-2025-5ef10f8485

Packages in this update:

SDL2_sound-2.0.4-1.fc40

Update description:

Latest stable release from upstream. Changelog: https://github.com/icculus/SDL_sound/releases/tag/v2.0.4 . NOTE: dr_libs are unbundled.

Fixes:
CVE-2023-45676: Multi-byte write heap buffer overflow in start_decoder()
CVE-2023-45677: Heap buffer out of bounds write in start_decoder()
CVE-2023-45679: Attempt to free an uninitialized memory pointer in vorbis_deinit()
CVE-2023-45680: Null pointer dereference in vorbis_deinit()
CVE-2023-45679: Attempt to free an uninitialized memory pointer in vorbis_deinit()
CVE-2023-45680: Null pointer dereference in vorbis_deinit()
CVE-2023-45682: Wild address read in vorbis_decode_packet_rest()

More Stories

git-lfs-3.6.1-1.fc41

FEDORA-2025-1de066b8af Packages in this update: git-lfs-3.6.1-1.fc41 Update description: Update to latest version Fix CVE-2024-53263 Read More

January 15, 2025

git-lfs-3.6.1-1.fc40

FEDORA-2025-50deb0acd5 Packages in this update: git-lfs-3.6.1-1.fc40 Update description: Update to latest version Fix CVE-2024-53263 Read More

January 15, 2025

USN-7206-1: rsync vulnerabilities

Simon Scannell, Pedro Gallegos, and Jasiel Spelman discovered that rsync did not properly handle checksum lengths. An attacker could use...

January 14, 2025

Multiple Vulnerabilities in Fortinet Products Could Allow for Remote Code Execution

Multiple vulnerabilities have been discovered Fortinet Products, the most severe of which could allow for remote code execution. FortiManager is...

January 14, 2025

webkit2gtk4.0-2.46.5-1.fc41

FEDORA-2025-0cb4a35438 Packages in this update: webkit2gtk4.0-2.46.5-1.fc41 Update description: Update to 2.46.5 Read More

January 14, 2025

webkit2gtk4.0-2.46.5-1.fc40

FEDORA-2025-e45eecf53a Packages in this update: webkit2gtk4.0-2.46.5-1.fc40 Update description: Update to 2.46.5 Read More

January 14, 2025