| Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
| Name: libsndfile-devel | Distribution: openSUSE Tumbleweed |
| Version: 1.2.2 | Vendor: openSUSE |
| Release: 3.4 | Build date: Mon Nov 25 14:56:22 2024 |
| Group: Development/Libraries/C and C++ | Build host: reproducible |
| Size: 304179 | Source RPM: libsndfile-1.2.2-3.4.src.rpm |
| Packager: http://bugs.opensuse.org | |
| Url: https://libsndfile.github.io/libsndfile/ | |
| Summary: Development package for the libsndfile library | |
This package contains the files needed to compile programs that use the libsndfile library.
LGPL-2.1-or-later
* Mon Nov 25 2024 Takashi Iwai <tiwai@suse.com>
- Fix out-of-bounds read in function vorbis_analysis_wrote in
ogg_vorbis.c (CVE-2024-50612, bsc#1232438):
libsndfile-CVE-2024-50612.patch
* Fri Oct 20 2023 Takashi Iwai <tiwai@suse.com>
- Update to 1.2.1:
* Various bug fixes (issue #908, #907, #934, #950, #930)
- Update to 1.2.2:
* Fixed invalid regex in src/create_symbols_file.py
* Fixed passing null pointer to printf %s in tests
- Fix signed integers overflows in au_read_header()
(bsc#1213451, CVE-2022-33065):
libsndfile-CVE-2022-33065.patch
* Mon Apr 24 2023 Dominique Leuenberger <dimstar@opensuse.org>
- Add _multibuild to define 2nd spec file as additional flavor.
Eliminates the need for source package links in OBS.
* Tue Feb 21 2023 Paolo Stivanin <info@paolostivanin.com>
- update to 1.2.0:
* Searching for LAME dependency with CMake build system (issue #821).
* CMake build from Autotools tarball (issue #816).
* Build on UWP platform (issue #824).
* Fix signed integer overflow (issue #785).
* Skipping large wav chunks on stdin (PR #819).
* Tue Mar 29 2022 Dirk Müller <dmueller@suse.com>
- update to 1.1.0:
* Added MPEG Encode/Decode Support
* New fuzzer for OSS-Fuzz, thanks @DavidKorczynski.
Fixed:
* Memory leak in caf_read_header(), credit to OSS-Fuzz (issue 30375).
* Stack overflow in guess_file_type()
* Abort in fuzzer, thanks @bobsayshilol, credit to OSS-Fuzz
* Infinite loop in svx_read_header(), thanks @bobsayshilol, credit to OSS-Fuzz
* GCC and Clang pedantic warnings, thanks @bobsayshilol.
* Normalisation issue when scaling floating point data to int in
replace_read_f2i(), thanks @bobsayshilol, (issue #702).
* Missing samples when doing a partial read of Ogg file from index till the
end of file, thanks @arthurt (issue #643).
* sndfile-salvage: Handle files > 4 GB on Windows OS
* Undefined shift in dyn_get_32bit(), credit to OSS-Fuzz
* Integer overflow in nms_adpcm_update(), credit to OSS-Fuzz
* Integer overflow in psf_log_printf(), credit to OSS-Fuzz
* ABI version incompatibility between Autotools and CMake build on Apple
platforms.
* Heap buffer overflow in wavlike_ima_decode_block()
* Heap buffer overflow in msadpcm_decode_block()
* Heap buffer overflow in psf_binheader_readf()
* Index out of bounds in psf_nms_adpcm_decode_block()
* Heap buffer overflow in flac_buffer_copy()
* Heap buffer overflow in copyPredictorTo24()
* Uninitialized variable in psf_binheader_readf()
- drop sndfile-deinterlace-channels-check.patch ms_adpcm-Fix-and-extend-size-checks.patch,
libsndfile-CVE-2021-4156.patch (obsolete)
* Mon Jan 03 2022 tiwai@suse.de
- Fix heap buffer overflow in flac_buffer_copy (CVE-2021-4156,
bsc#1194006):
libsndfile-CVE-2021-4156.patch
* Fri Jul 23 2021 tiwai@suse.de
- Fix heap buffer overflow vulnerability in msadpcm_decode_block
(CVE-2021-3246, bsc#1188540):
ms_adpcm-Fix-and-extend-size-checks.patch
* Wed Mar 17 2021 Dominique Leuenberger <dimstar@opensuse.org>
- BuildRequire python3-base instead of the full python3 package:
manages to break a build cycle, is cheaper, and still sufficient.
* Sun Mar 14 2021 Dirk Müller <dmueller@suse.com>
- update to 1.0.31:
* documentation fixes and updates
* Change CMake's project name from sndfile to libsndfile as it should be.
* Fix memory leak in wav_read_smpl_chunk() function, credit to OSS-Fuzz.
* Fix aiff_read_header() memory leak(), credit to OSS-Fuzz.
* Fix leak in wav_read_header(), credit to OSS-Fuzz.
* Fix leak in wavlike_read_cart_chunk(), credit to OSS-Fuzz.
* Fix memory leak in wav_read_acid_chunk(), credit to OSS-Fuzz.
* Fix memory leak in aiff_read_basc_chunk(), credit to OSS-Fuzz.
* Fix memory leak in wavlike_read_peak_chunk(), credit to OSS-Fuzz.
* Fix memory leak in aiff_read_header(), credit to OSS-Fuzz.
* Fix use of uninitialized value in exif_subchunk_parse(), credit to OSS-Fuzz.
* Fix use of uninitialized value in endswap_int64_t_array(), credit to
* OSS-Fuzz.
* Fix up the fuzzer so that it can't under or overseek,
* thanks to Max Dymond cmeister2@gmail.com.
* Fix Autotools configure on macOS, thanks to @tmcguire and @nwh.
* Exclude repository-configuration from git-archive, thanks to @umlaeute.
* Use version-script when compiling with clang on Unix with Autotools, thanks
* to @tstellar.
* Improve handling of SMPL chunks in WAV files, thanks to @zodf0055980.
- update to 1.0.30:
* Move sndfile.h.in from src/ to include/ directory.
* Huge documentation update.
* Fix opus test failures on BE platforms
* Fix bug when sf_open_fd() function sometimes leaves filehandle open, even if close_desc parameter is TRUE, thanks to @umläute.
* Fix infinite loops on some pathological SD2 files
* Switch to GitHub Actions for continuous integration.
* Add OSS-Fuzz tests to GitHub Actions workflow
* Fix memory leak in wavlike_read_bext_chunk() function, credit to OSS-Fuzz.
* Fix undefined behavior in avr-read_header() function, credit to OSS-Fuzz.
- update to 1.0.29:
* Fixes for: CVE-2017-12562, CVE-2017-17456, CVE-2017-17457, CVE-2018-19661, CVE-2018-19662, CVE-2018-19758 and CVE-2019-3832.
* Add BWF v2 loudness parameters.
* Wave64: Permit and skip arbitrary chunks prior to the data chunk.
* Fix ASAN crash in wavlike_ima_seek().
* Fix IMA-ADPCM encoding for AIFF files.
* sndfile-convert: Handle gsm, vox and opus extensions the same way.
* Add SFC_SET_OGG_PAGE_LATENCY_MS command to get Ogg page latency for Ogg Opus files.
* Fix parsing of some SD2 files.
* Documentation updates.
* Minor bug fixes and improvements.
- drop libsndfile-CVE-2017-17456-alaw-range-check.patch
libsndfile-CVE-2017-17457-ulaw-range-check.patch
libsndfile-wav-loop-count-fix.patch
0001-FLAC-Fix-a-buffer-read-overrun.patch
0002-src-flac.c-Fix-a-buffer-read-overflow.patch
0010-src-aiff.c-Fix-a-buffer-read-overflow.patch
0020-src-common.c-Fix-heap-buffer-overflows-when-writing-.patch
0030-double64_init-Check-psf-sf.channels-against-upper-bo.patch
0031-sfe_copy_data_fp-check-value-of-max-variable.patch: upstream
* Tue Dec 03 2019 Stefan Brüns <stefan.bruens@rwth-aachen.de>
- Remove build dependencies for progs subpackage from library:
* alsa-devel, only needed for the examples
* sqlite3-devel, only needed for the regression test
- Only build library, pass --disable-full-suite to configure
/usr/include/sndfile.h /usr/include/sndfile.hh /usr/lib/cmake/SndFile /usr/lib/cmake/SndFile/SndFileConfig.cmake /usr/lib/cmake/SndFile/SndFileConfigVersion.cmake /usr/lib/cmake/SndFile/SndFileTargets-relwithdebinfo.cmake /usr/lib/cmake/SndFile/SndFileTargets.cmake /usr/lib/libsndfile.so /usr/lib/pkgconfig/sndfile.pc /usr/share/doc/packages/libsndfile /usr/share/doc/packages/libsndfile-devel /usr/share/doc/packages/libsndfile-devel/AUTHORS /usr/share/doc/packages/libsndfile-devel/CHANGELOG.md /usr/share/doc/packages/libsndfile-devel/README /usr/share/doc/packages/libsndfile-devel/examples /usr/share/doc/packages/libsndfile-devel/examples/generate.c /usr/share/doc/packages/libsndfile-devel/examples/list_formats.c /usr/share/doc/packages/libsndfile-devel/examples/make_sine.c /usr/share/doc/packages/libsndfile-devel/examples/sfprocess.c /usr/share/doc/packages/libsndfile-devel/examples/sndfile-loopify.c /usr/share/doc/packages/libsndfile-devel/examples/sndfile-to-text.c /usr/share/doc/packages/libsndfile-devel/examples/sndfilehandle.cc /usr/share/doc/packages/libsndfile/FAQ.md /usr/share/doc/packages/libsndfile/api.md /usr/share/doc/packages/libsndfile/bugs.md /usr/share/doc/packages/libsndfile/command.md /usr/share/doc/packages/libsndfile/embedded_files.md /usr/share/doc/packages/libsndfile/formats.md /usr/share/doc/packages/libsndfile/index.md /usr/share/doc/packages/libsndfile/libsndfile.css /usr/share/doc/packages/libsndfile/libsndfile.jpg /usr/share/doc/packages/libsndfile/lists.md /usr/share/doc/packages/libsndfile/new_file_type_howto.md /usr/share/doc/packages/libsndfile/octave.md /usr/share/doc/packages/libsndfile/print.css /usr/share/doc/packages/libsndfile/sndfile_info.md /usr/share/doc/packages/libsndfile/tutorial.md /usr/share/doc/packages/libsndfile/win32.md /usr/share/licenses/libsndfile-devel /usr/share/licenses/libsndfile-devel/COPYING
Generated by rpm2html 1.8.1
Fabrice Bellet, Thu Oct 23 22:29:00 2025