Описание
Security update for libmediainfo
This update for libmediainfo fixes the following issues:
- CVE-2019-11373: Fixed out-of-bounds read in function File__Analyze:Get_L8 (boo#1133156)
- CVE-2019-11372: Fixed out-of-bounds read in function MediaInfoLib:File__Tags_Helper:Synched_Test (boo#1133157)
Список пакетов
SUSE Package Hub 15
libmediainfo-devel-18.03-bp150.3.3.1
libmediainfo0-18.03-bp150.3.3.1
libmediainfo0-32bit-18.03-lp150.2.3.1
libmediainfo0-64bit-18.03-bp150.3.3.1
openSUSE Leap 15.0
libmediainfo-devel-18.03-bp150.3.3.1
libmediainfo0-18.03-bp150.3.3.1
libmediainfo0-32bit-18.03-lp150.2.3.1
libmediainfo0-64bit-18.03-bp150.3.3.1
Ссылки
- E-Mail link for openSUSE-SU-2019:1629-1
- SUSE Security Ratings
- SUSE Bug 1133156
- SUSE Bug 1133157
- SUSE CVE CVE-2019-11372 page
- SUSE CVE CVE-2019-11373 page
Описание
An out-of-bounds read in MediaInfoLib::File__Tags_Helper::Synched_Test in Tag/File__Tags.cpp in MediaInfoLib in MediaArea MediaInfo 18.12 leads to a crash.
Затронутые продукты
SUSE Package Hub 15:libmediainfo-devel-18.03-bp150.3.3.1
SUSE Package Hub 15:libmediainfo0-18.03-bp150.3.3.1
SUSE Package Hub 15:libmediainfo0-32bit-18.03-lp150.2.3.1
SUSE Package Hub 15:libmediainfo0-64bit-18.03-bp150.3.3.1
Ссылки
- CVE-2019-11372
- SUSE Bug 1133157
Описание
An out-of-bounds read in File__Analyze::Get_L8 in File__Analyze_Buffer.cpp in MediaInfoLib in MediaArea MediaInfo 18.12 leads to a crash.
Затронутые продукты
SUSE Package Hub 15:libmediainfo-devel-18.03-bp150.3.3.1
SUSE Package Hub 15:libmediainfo0-18.03-bp150.3.3.1
SUSE Package Hub 15:libmediainfo0-32bit-18.03-lp150.2.3.1
SUSE Package Hub 15:libmediainfo0-64bit-18.03-bp150.3.3.1
Ссылки
- CVE-2019-11373
- SUSE Bug 1133156