Описание
Security update for exempi
This update for exempi fixes the following issues:
- CVE-2020-18651: Fixed a buffer overflow in ID3 support (bsc#1214486).
Список пакетов
SUSE Linux Enterprise Server 12 SP5
libexempi3-2.2.1-5.10.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5
libexempi3-2.2.1-5.10.1
SUSE Linux Enterprise Software Development Kit 12 SP5
libexempi-devel-2.2.1-5.10.1
Ссылки
- Link for SUSE-SU-2023:3734-1
- E-Mail link for SUSE-SU-2023:3734-1
- SUSE Security Ratings
- SUSE Bug 1214486
- SUSE CVE CVE-2020-18651 page
Описание
Buffer Overflow vulnerability in function ID3_Support::ID3v2Frame::getFrameValue in exempi 2.5.0 and earlier allows remote attackers to cause a denial of service via opening of crafted audio file with ID3V2 frame.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP5:libexempi3-2.2.1-5.10.1
SUSE Linux Enterprise Server for SAP Applications 12 SP5:libexempi3-2.2.1-5.10.1
SUSE Linux Enterprise Software Development Kit 12 SP5:libexempi-devel-2.2.1-5.10.1
Ссылки
- CVE-2020-18651
- SUSE Bug 1214486