Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2022:0814-1

Опубликовано: 14 мар. 2022
Источник: suse-cvrf

Описание

Security update for flac

This update for flac fixes the following issues:

  • CVE-2021-0561: Fixed out of bound write in append_to_verify_fifo_interleaved_ (bsc#1196660).

Список пакетов

SUSE Linux Enterprise Server 12 SP5
libFLAC++6-1.3.0-18.5.1
libFLAC8-1.3.0-18.5.1
libFLAC8-32bit-1.3.0-18.5.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libFLAC++6-1.3.0-18.5.1
libFLAC8-1.3.0-18.5.1
libFLAC8-32bit-1.3.0-18.5.1
SUSE Linux Enterprise Software Development Kit 12 SP5
flac-devel-1.3.0-18.5.1
SUSE Linux Enterprise Workstation Extension 12 SP5
libFLAC++6-32bit-1.3.0-18.5.1

Ссылки

Описание

In append_to_verify_fifo_interleaved_ of stream_encoder.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-174302683

Затронутые продукты
SUSE Linux Enterprise Server 12 SP5:libFLAC++6-1.3.0-18.5.1
SUSE Linux Enterprise Server 12 SP5:libFLAC8-1.3.0-18.5.1
SUSE Linux Enterprise Server 12 SP5:libFLAC8-32bit-1.3.0-18.5.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5:libFLAC++6-1.3.0-18.5.1
Ссылки
Уязвимость SUSE-SU-2022:0814-1