{"affected":[{"ecosystem_specific":{"binaries":[{"aubio-tools":"0.4.1-bp150.3.6.1","libaubio-devel":"0.4.1-bp150.3.6.1","libaubio4":"0.4.1-bp150.3.6.1","libaubio4-64bit":"0.4.1-bp150.3.6.1"}]},"package":{"ecosystem":"SUSE:Package Hub 15","name":"aubio","purl":"pkg:rpm/suse/aubio&distro=SUSE%20Package%20Hub%2015"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"0.4.1-bp150.3.6.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for aubio fixes the following issues:\n\n- CVE-2018-14522: Fixed a crash in aubio_pitch_set_unit (bsc#1102359)\n- CVE-2018-14523: Fixed a buffer overrread resulting in crash or information leakage in new_aubio_pitchyinfft (bsc#1102364)\n\nThis update was imported from the openSUSE:Leap:15.0:Update update project.","id":"openSUSE-SU-2019:1049-1","modified":"2019-03-25T15:22:57Z","published":"2019-03-25T15:22:57Z","references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/4KHDRML2P2YUCEONGYZM2OLPQQUA2PBN/#4KHDRML2P2YUCEONGYZM2OLPQQUA2PBN"},{"type":"REPORT","url":"https://bugzilla.suse.com/1102359"},{"type":"REPORT","url":"https://bugzilla.suse.com/1102364"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-14522"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2018-14523"}],"related":["CVE-2018-14522","CVE-2018-14523"],"summary":"Security update for aubio","upstream":["CVE-2018-14522","CVE-2018-14523"]}