Register | Log in

aubio

Choose email to subscribe with

general

source: aubio (main)
version: 0.4.9-4
maintainer: Paul Brossier (DMD)
arch: all any
std-ver: 4.4.1
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 0.4.1-2
oldstable: 0.4.3-4
stable: 0.4.6-2
testing: 0.4.9-4
unstable: 0.4.9-4

versioned links

0.4.1-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.4.3-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.4.6-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.4.9-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

aubio-tools
libaubio-dev
libaubio-doc
libaubio5
python3-aubio

action needed

Debci reports failed tests high

unstable: pass (log)
The tests ran in 0:01:13
Last run: 2020-02-09 12:09:42 UTC
Previous status: pass

testing: pass (log)
The tests ran in 0:01:18
Last run: 2020-02-18 08:27:33 UTC
Previous status: pass

stable: fail (log)
The tests ran in 0:00:40
Last run: 2019-08-20 05:29:45
Previous status: fail

Created: 2019-08-20 Last update: 2020-02-18 09:37

Depends on packages which need a new maintainer normal

The packages that aubio depends on which need a new maintainer are:

mathjax (#950424)
- Build-Depends-Indep: libjs-mathjax
- Depends: libjs-mathjax

Created: 2020-02-01 Last update: 2020-02-18 08:34

3 ignored security issues in buster low

There are 3 open security issues in buster.

3 issues skipped by the security teams:

CVE-2018-19802: aubio v0.4.0 to v0.4.8 has a new_aubio_onset NULL pointer dereference.
CVE-2018-19801: aubio v0.4.0 to v0.4.8 has a NULL pointer dereference in new_aubio_filterbank via invalid n_filters.
CVE-2018-19800: aubio v0.4.0 to v0.4.8 has a Buffer Overflow in new_aubio_tempo.

Please fix them.

Created: 2019-06-07 Last update: 2020-01-22 23:30

8 ignored security issues in jessie low

There are 8 open security issues in jessie.

8 issues skipped by the security teams:

CVE-2018-19802: aubio v0.4.0 to v0.4.8 has a new_aubio_onset NULL pointer dereference.
CVE-2018-19801: aubio v0.4.0 to v0.4.8 has a NULL pointer dereference in new_aubio_filterbank via invalid n_filters.
CVE-2018-19800: aubio v0.4.0 to v0.4.8 has a Buffer Overflow in new_aubio_tempo.
CVE-2018-14523: An issue was discovered in aubio 0.4.6. A buffer over-read can occur in new_aubio_pitchyinfft in pitch/pitchyinfft.c, as demonstrated by aubionotes.
CVE-2018-14522: An issue was discovered in aubio 0.4.6. A SEGV signal can occur in aubio_pitch_set_unit in pitch/pitch.c, as demonstrated by aubionotes.
CVE-2018-14521: An issue was discovered in aubio 0.4.6. A SEGV signal can occur in aubio_source_avcodec_readframe in io/source_avcodec.c, as demonstrated by aubiomfcc.
CVE-2017-17554: A NULL pointer dereference (DoS) Vulnerability was found in the function aubio_source_avcodec_readframe in io/source_avcodec.c of aubio 0.4.6, which may lead to DoS when playing a crafted audio file.
CVE-2017-17555: The swri_audio_convert function in audioconvert.c in FFmpeg libswresample through 3.0.101, as used in FFmpeg 3.4.1, aubio 0.4.6, and other products, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted audio file.

Please fix them.

Created: 2017-12-12 Last update: 2020-01-22 23:30

9 ignored security issues in stretch low

There are 9 open security issues in stretch.

9 issues skipped by the security teams:

CVE-2018-19802: aubio v0.4.0 to v0.4.8 has a new_aubio_onset NULL pointer dereference.
CVE-2018-19801: aubio v0.4.0 to v0.4.8 has a NULL pointer dereference in new_aubio_filterbank via invalid n_filters.
CVE-2018-19800: aubio v0.4.0 to v0.4.8 has a Buffer Overflow in new_aubio_tempo.
CVE-2018-14523: An issue was discovered in aubio 0.4.6. A buffer over-read can occur in new_aubio_pitchyinfft in pitch/pitchyinfft.c, as demonstrated by aubionotes.
CVE-2018-14522: An issue was discovered in aubio 0.4.6. A SEGV signal can occur in aubio_pitch_set_unit in pitch/pitch.c, as demonstrated by aubionotes.
CVE-2018-14521: An issue was discovered in aubio 0.4.6. A SEGV signal can occur in aubio_source_avcodec_readframe in io/source_avcodec.c, as demonstrated by aubiomfcc.
CVE-2017-17054: In aubio 0.4.6, a divide-by-zero error exists in the function new_aubio_source_wavread() in source_wavread.c, which may lead to DoS when playing a crafted audio file.
CVE-2017-17554: A NULL pointer dereference (DoS) Vulnerability was found in the function aubio_source_avcodec_readframe in io/source_avcodec.c of aubio 0.4.6, which may lead to DoS when playing a crafted audio file.
CVE-2017-17555: The swri_audio_convert function in audioconvert.c in FFmpeg libswresample through 3.0.101, as used in FFmpeg 3.4.1, aubio 0.4.6, and other products, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted audio file.

Please fix them.

Created: 2017-11-29 Last update: 2020-01-22 23:30

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.5.0 instead of 4.4.1).

Created: 2020-01-21 Last update: 2020-01-21 05:06

news

[2020-01-11] aubio 0.4.9-4 MIGRATED to testing (Debian testing watch)
[2020-01-08] Accepted aubio 0.4.9-4 (source) into unstable (Paul Brossier)
[2020-01-04] Accepted aubio 0.4.9-3 (source) into unstable (Paul Brossier)
[2019-07-09] aubio 0.4.9-2 MIGRATED to testing (Debian testing watch)
[2019-06-21] Accepted aubio 0.4.9-2 (source) into unstable (Paul Brossier)
[2019-06-20] Accepted aubio 0.4.9-1 (source) into unstable (Paul Brossier)
[2018-09-20] aubio 0.4.6-2 MIGRATED to testing (Debian testing watch)
[2018-09-14] Accepted aubio 0.4.6-2 (source) into unstable (Paul Brossier)
[2018-09-10] Accepted aubio 0.4.6-1 (source) into unstable (Paul Brossier)
[2018-07-19] aubio 0.4.5-1.1 MIGRATED to testing (Debian testing watch)
[2018-07-13] Accepted aubio 0.4.5-1.1 (source) into unstable (Sebastian Ramacher)
[2017-07-31] aubio 0.4.5-1 MIGRATED to testing (Debian testing watch)
[2017-07-24] Accepted aubio 0.4.5-1 (source) into unstable (Paul Brossier)
[2017-07-08] aubio 0.4.3-4.1 MIGRATED to testing (Debian testing watch)
[2017-07-02] Accepted aubio 0.4.3-4.1 (all amd64 source) into unstable (Dr. Tobias Quathamer)
[2016-12-03] aubio 0.4.3-4 MIGRATED to testing (Debian testing watch)
[2016-11-27] Accepted aubio 0.4.3-4 (source) into unstable (Paul Brossier)
[2016-11-26] Accepted aubio 0.4.3-3 (source) into unstable (Paul Brossier)
[2016-11-14] aubio 0.4.3-2 MIGRATED to testing (Debian testing watch)
[2016-11-07] Accepted aubio 0.4.3-2 (source) into unstable (Paul Brossier)
[2016-11-06] Accepted aubio 0.4.3-1 (source amd64 all) into unstable, unstable (Paul Brossier)
[2016-08-11] aubio 0.4.1-2.2 MIGRATED to testing (Debian testing watch)
[2016-08-05] Accepted aubio 0.4.1-2.2 (source amd64 all) into unstable (Dr. Tobias Quathamer)
[2016-03-14] aubio 0.4.1-2.1 MIGRATED to testing (Debian testing watch)
[2016-03-08] Accepted aubio 0.4.1-2.1 (source all) into unstable (Sebastian Ramacher)
[2014-04-01] aubio 0.4.1-2 MIGRATED to testing (Debian testing watch)
[2014-03-26] Accepted aubio 0.4.1-2 (source amd64 all) (Paul Brossier)
[2014-03-25] aubio 0.4.1-1 MIGRATED to testing (Debian testing watch)
[2014-03-16] Accepted aubio 0.4.1-1 (source amd64 all) (Paul Brossier)
[2014-02-19] aubio 0.4.0-1 MIGRATED to testing (Debian testing watch)

1
2

bugs [bug history graph]

all: 0

links

homepage
buildd: logs, clang, reproducibility, cross
popcon
browse source code
edit tags
security tracker
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 0.4.9-4

Debian Package Tracker — Copyright 2013-2018 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing