Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

libsndfile1-1.2.2-2.3 RPM for x86_64

From OpenSuSE Tumbleweed for x86_64

Name: libsndfile1 Distribution: openSUSE Tumbleweed
Version: 1.2.2 Vendor: openSUSE
Release: 2.3 Build date: Fri Oct 20 13:45:14 2023
Group: System/Libraries Build host: reproducible
Size: 535892 Source RPM: libsndfile-1.2.2-2.3.src.rpm
Packager: https://bugs.opensuse.org
Url: https://libsndfile.github.io/libsndfile/
Summary: A Library to Handle Various Audio File Formats
Libsndfile is a C library for reading and writing sound files, such
as AIFF, AU, and WAV files, through one standard interface. It can
currently read and write 8, 16, 24, and 32-bit PCM files as well as
32-bit floating point WAV files and a number of compressed formats.

Provides

Requires

License

LGPL-2.1-or-later

Changelog

* Fri Oct 20 2023 Takashi Iwai <tiwai@suse.com>
  - Update to 1.2.1:
    * Various bug fixes (issue #908, #907, #934, #950, #930)
  - Update to 1.2.2:
    * Fixed invalid regex in src/create_symbols_file.py
    * Fixed passing null pointer to printf %s in tests
  - Fix signed integers overflows in au_read_header()
    (bsc#1213451, CVE-2022-33065):
    libsndfile-CVE-2022-33065.patch
* Mon Apr 24 2023 Dominique Leuenberger <dimstar@opensuse.org>
  - Add _multibuild to define 2nd spec file as additional flavor.
    Eliminates the need for source package links in OBS.
* Tue Feb 21 2023 Paolo Stivanin <info@paolostivanin.com>
  - update to 1.2.0:
    * Searching for LAME dependency with CMake build system (issue #821).
    * CMake build from Autotools tarball (issue #816).
    * Build on UWP platform (issue #824).
    * Fix signed integer overflow (issue #785).
    * Skipping large wav chunks on stdin (PR #819).
* Tue Mar 29 2022 Dirk Müller <dmueller@suse.com>
  - update to 1.1.0:
    * Added MPEG Encode/Decode Support
    * New fuzzer for OSS-Fuzz, thanks @DavidKorczynski.
    Fixed:
    * Memory leak in caf_read_header(), credit to OSS-Fuzz (issue 30375).
    * Stack overflow in guess_file_type()
    * Abort in fuzzer, thanks @bobsayshilol, credit to OSS-Fuzz
    * Infinite loop in svx_read_header(), thanks @bobsayshilol, credit to OSS-Fuzz
    * GCC and Clang pedantic warnings, thanks @bobsayshilol.
    * Normalisation issue when scaling floating point data to int in
      replace_read_f2i(), thanks @bobsayshilol, (issue #702).
    * Missing samples when doing a partial read of Ogg file from index till the
      end of file, thanks @arthurt (issue #643).
    * sndfile-salvage: Handle files > 4 GB on Windows OS
    * Undefined shift in dyn_get_32bit(), credit to OSS-Fuzz
    * Integer overflow in nms_adpcm_update(), credit to OSS-Fuzz
    * Integer overflow in psf_log_printf(), credit to OSS-Fuzz
    * ABI version incompatibility between Autotools and CMake build on Apple
      platforms.
    * Heap buffer overflow in wavlike_ima_decode_block()
    * Heap buffer overflow in msadpcm_decode_block()
    * Heap buffer overflow in psf_binheader_readf()
    * Index out of bounds in psf_nms_adpcm_decode_block()
    * Heap buffer overflow in flac_buffer_copy()
    * Heap buffer overflow in copyPredictorTo24()
    * Uninitialized variable in psf_binheader_readf()
  - drop sndfile-deinterlace-channels-check.patch ms_adpcm-Fix-and-extend-size-checks.patch,
      libsndfile-CVE-2021-4156.patch (obsolete)
* Mon Jan 03 2022 tiwai@suse.de
  - Fix heap buffer overflow in flac_buffer_copy (CVE-2021-4156,
    bsc#1194006):
    libsndfile-CVE-2021-4156.patch
* Fri Jul 23 2021 tiwai@suse.de
  - Fix heap buffer overflow vulnerability in msadpcm_decode_block
    (CVE-2021-3246, bsc#1188540):
    ms_adpcm-Fix-and-extend-size-checks.patch
* Wed Mar 17 2021 Dominique Leuenberger <dimstar@opensuse.org>
  - BuildRequire python3-base instead of the full python3 package:
    manages to break a build cycle, is cheaper, and still sufficient.
* Sun Mar 14 2021 Dirk Müller <dmueller@suse.com>
  - update to 1.0.31:
    * documentation fixes and updates
    * Change CMake's project name from sndfile to libsndfile as it should be.
    * Fix memory leak in wav_read_smpl_chunk() function, credit to OSS-Fuzz.
    * Fix aiff_read_header() memory leak(), credit to OSS-Fuzz.
    * Fix leak in wav_read_header(), credit to OSS-Fuzz.
    * Fix leak in wavlike_read_cart_chunk(), credit to OSS-Fuzz.
    * Fix memory leak in wav_read_acid_chunk(), credit to OSS-Fuzz.
    * Fix memory leak in aiff_read_basc_chunk(), credit to OSS-Fuzz.
    * Fix memory leak in wavlike_read_peak_chunk(), credit to OSS-Fuzz.
    * Fix memory leak in aiff_read_header(), credit to OSS-Fuzz.
    * Fix use of uninitialized value in exif_subchunk_parse(), credit to OSS-Fuzz.
    * Fix use of uninitialized value in endswap_int64_t_array(), credit to
    * OSS-Fuzz.
    * Fix up the fuzzer so that it can't under or overseek,
    * thanks to Max Dymond cmeister2@gmail.com.
    * Fix Autotools configure on macOS, thanks to @tmcguire and @nwh.
    * Exclude repository-configuration from git-archive, thanks to @umlaeute.
    * Use version-script when compiling with clang on Unix with Autotools, thanks
    * to @tstellar.
    * Improve handling of SMPL chunks in WAV files, thanks to @zodf0055980.
  - update to 1.0.30:
    * Move sndfile.h.in from src/ to include/ directory.
    * Huge documentation update.
    * Fix opus test failures on BE platforms
    * Fix bug when sf_open_fd() function sometimes leaves filehandle open, even if close_desc parameter is TRUE, thanks to @umläute.
    * Fix infinite loops on some pathological SD2 files
    * Switch to GitHub Actions for continuous integration.
    * Add OSS-Fuzz tests to GitHub Actions workflow
    * Fix memory leak in wavlike_read_bext_chunk() function, credit to OSS-Fuzz.
    * Fix undefined behavior in avr-read_header() function, credit to OSS-Fuzz.
  - update to 1.0.29:
    * Fixes for: CVE-2017-12562, CVE-2017-17456, CVE-2017-17457, CVE-2018-19661, CVE-2018-19662, CVE-2018-19758 and CVE-2019-3832.
    * Add BWF v2 loudness parameters.
    * Wave64: Permit and skip arbitrary chunks prior to the data chunk.
    * Fix ASAN crash in wavlike_ima_seek().
    * Fix IMA-ADPCM encoding for AIFF files.
    * sndfile-convert: Handle gsm, vox and opus extensions the same way.
    * Add SFC_SET_OGG_PAGE_LATENCY_MS command to get Ogg page latency for Ogg Opus files.
    * Fix parsing of some SD2 files.
    * Documentation updates.
    * Minor bug fixes and improvements.
  - drop libsndfile-CVE-2017-17456-alaw-range-check.patch
      libsndfile-CVE-2017-17457-ulaw-range-check.patch
      libsndfile-wav-loop-count-fix.patch
      0001-FLAC-Fix-a-buffer-read-overrun.patch
      0002-src-flac.c-Fix-a-buffer-read-overflow.patch
      0010-src-aiff.c-Fix-a-buffer-read-overflow.patch
      0020-src-common.c-Fix-heap-buffer-overflows-when-writing-.patch
      0030-double64_init-Check-psf-sf.channels-against-upper-bo.patch
      0031-sfe_copy_data_fp-check-value-of-max-variable.patch: upstream
* Tue Dec 03 2019 Stefan Brüns <stefan.bruens@rwth-aachen.de>
  - Remove build dependencies for progs subpackage from library:
    * alsa-devel, only needed for the examples
    * sqlite3-devel, only needed for the regression test
  - Only build library, pass --disable-full-suite to configure
* Tue Dec 04 2018 tiwai@suse.de
  - Fix segfault in wav conversion due to the invalid loop count
    (CVE-2018-19758, bsc#1117954):
    libsndfile-wav-loop-count-fix.patch

Files

/usr/lib64/libsndfile.so.1
/usr/lib64/libsndfile.so.1.0.37


Generated by rpm2html 1.8.1

Fabrice Bellet, Sat Nov 16 00:58:04 2024