USN-5025-1 fixed a vulnerability in libsndfile. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM.
Original advisory details:
It was discovered that libsndfile incorrectly handled certain malformed files. A remote attacker could use this issue to cause libsndfile to crash, resulting in a denial of service, or possibly execute arbitrary code.
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "binary_name": "libsndfile1", "binary_version": "1.0.25-7ubuntu2.2+esm2" }, { "binary_name": "libsndfile1-dbg", "binary_version": "1.0.25-7ubuntu2.2+esm2" }, { "binary_name": "libsndfile1-dbgsym", "binary_version": "1.0.25-7ubuntu2.2+esm2" }, { "binary_name": "libsndfile1-dev", "binary_version": "1.0.25-7ubuntu2.2+esm2" }, { "binary_name": "sndfile-programs", "binary_version": "1.0.25-7ubuntu2.2+esm2" }, { "binary_name": "sndfile-programs-dbg", "binary_version": "1.0.25-7ubuntu2.2+esm2" }, { "binary_name": "sndfile-programs-dbgsym", "binary_version": "1.0.25-7ubuntu2.2+esm2" } ] }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "binary_name": "libsndfile1", "binary_version": "1.0.25-10ubuntu0.16.04.3+esm1" }, { "binary_name": "libsndfile1-dbg", "binary_version": "1.0.25-10ubuntu0.16.04.3+esm1" }, { "binary_name": "libsndfile1-dbgsym", "binary_version": "1.0.25-10ubuntu0.16.04.3+esm1" }, { "binary_name": "libsndfile1-dev", "binary_version": "1.0.25-10ubuntu0.16.04.3+esm1" }, { "binary_name": "sndfile-programs", "binary_version": "1.0.25-10ubuntu0.16.04.3+esm1" }, { "binary_name": "sndfile-programs-dbg", "binary_version": "1.0.25-10ubuntu0.16.04.3+esm1" }, { "binary_name": "sndfile-programs-dbgsym", "binary_version": "1.0.25-10ubuntu0.16.04.3+esm1" } ] }