Ubuntu
flac package

Upgrade flac package to 1.3.1

Asked by Chase on 2015-12-29

I am just wondering if there are any plans to upgrade the flac package to version 1.3.1 for Ubuntu 14.04 LTS? The flac website "https://xiph.org/flac/changelog.html" mentions that the latest version fixed some security issues:

"Fix CVE-2014-9028 (heap write overflow) and CVE-2014-8962 (heap read overflow) (Erik de Castro Lopo)"

Thanks

Question information

Language:: English Edit question

Status:: Solved

For:: Ubuntu flac Edit question

Assignee:: No assignee Edit question

Solved by:: actionparsnip

Solved:: 2015-12-29

Last query:: 2015-12-29

Last reply:: 2015-12-29

Link existing bug

Revision history for this message

actionparsnip (andrew-woodhead666) said on 2015-12-29:

I suggest you report a bug. Mark it as a security bug with the CVE numbers you posted. Should get the package updated sooner.

Revision history for this message

actionparsnip (andrew-woodhead666) said on 2015-12-29:

https://launchpad.net/ubuntu/+source/flac/+changelog

Shows the version in Trusty has already been patched, so the upgrade is not necessary.

Revision history for this message

Chase (sharmalay) said on 2015-12-29:

Indeed it seems it has already been fixed. Thank you!

Revision history for this message

Chase (sharmalay) said on 2015-12-29:

Thanks actionparsnip, that solved my question.

To post a message you must log in.

Ask a question

Edit question

Ubuntuflac package

Upgrade flac package to 1.3.1

Question information

Related bugs

Related FAQ:

Subscribers

Ubuntu
flac package