Fedora Linux 8776 Published by

A wavpack security update has been released for Fedora 36.



SECURITY: Fedora 36 Update: wavpack-5.4.0-5.fc36


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2022-7df99d9f80
2022-05-07 04:08:14.311742
--------------------------------------------------------------------------------

Name : wavpack
Product : Fedora 36
Version : 5.4.0
Release : 5.fc36
URL :   http://www.wavpack.com/
Summary : A completely open audiocodec
Description :
WavPack is a completely open audio compression format providing lossless,
high-quality lossy, and a unique hybrid compression mode. Although the
technology is loosely based on previous versions of WavPack, the new
version 4 format has been designed from the ground up to offer unparalleled
performance and functionality.

--------------------------------------------------------------------------------
Update Information:

Fix for CVE-2021-44269
--------------------------------------------------------------------------------
ChangeLog:

* Wed Apr 6 2022 Peter Lemenkov - 5.4.0-5
- Fix for CVE-2021-44269
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #2067997 - CVE-2021-44269 wavpack: heap Out-of-bounds Read [fedora-all]
  https://bugzilla.redhat.com/show_bug.cgi?id=2067997
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2022-7df99d9f80' at the command
line. For more information, refer to the dnf documentation available at
  http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
  https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________