[pulseaudio-discuss] libsndfile CVE-2014-9496
mikedep333 at gmail.com
Wed Jan 21 18:42:52 PST 2015
Hi PulseAudio devs,
Can someone tell me whether PulseAudio can actually be affected by the
libsndfile vulnerability CVE-2014-9496?
"It looks like the affected code is in reading SD2 (Sound Designer II)
files and writing AIFF files".
I am thinking the answer is "no".
Currently I am maintaining both X2Go Client for Windows and my
unofficial PulseAudio builds for Windows. X2Go Client for
Windows bundles the PulseAudio builds. So I am trying to figure out
whether I urgently need to update them with the patched libsndfile
More information about the pulseaudio-discuss