logo
DATABASE RESOURCES PRICING ABOUT US

Updated audacious-plugins packages fix security vulnerability

Description

Chris Evans discovered that incorrect emulation of the SPC700 audio co-processor of the Super Nintendo Entertainment System allows the execution of arbitrary code if a malformed SPC music file is opened (CVE-2016-9957, CVE-2016-9958, CVE-2016-9959, CVE-2016-9960, CVE-2016-9961). These issues were previously fixed in MGASA-2016-0428 in the game-music-emu library, but audacious-plugins contains a decoder built with a bundled copy, which has been patched to fix the issues.


Affected Package


OS OS Version Package Name Package Version
Mageia 5 audacious-plugins 3.5.2-2.1
Mageia 5 audacious-plugins 3.5.2-2.1

Related