Security update for snack (important)

2015-02-26T11:04:48
ID OPENSUSE-SU-2015:0382-1
Type suse
Reporter Suse
Modified 2015-02-26T11:04:48

Description

snack was updated to fix one security issue.

This security issue was fixed: - CVE-2012-6303: Heap-based buffer overflow in the GetWavHeader function in generic/jkSoundFile.c in the Snack Sound Toolkit, as used in WaveSurfer 1.8.8p4, allowed remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large chunk size in a WAV file (bnc#793860).