[SECURITY] [DSA 4729-1] libopenmpt security update

ID DEBIAN:DSA-4729-1:999FD
Type debian
Reporter Debian
Modified 2020-07-19T18:03:22


Debian Security Advisory DSA-4729-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff July 19, 2020 https://www.debian.org/security/faq

Package : libopenmpt CVE ID : CVE-2019-14380 CVE-2019-17113

Two security issues were found in libopenmpt, a cross-platform C++ and C library to decode tracked music files, which could result in denial of service and potentially the execution of arbitrary if malformed music files are processed.

For the stable distribution (buster), these problems have been fixed in version 0.4.3-1+deb10u1.

We recommend that you upgrade your libopenmpt packages.

For the detailed security status of libopenmpt please refer to its security tracker page at: https://security-tracker.debian.org/tracker/libopenmpt

Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org