Описание
Security update for libass
This update for libass fixes the following issues:
- CVE-2020-26682: Fixed a signed integer overflow in the call to outline_stroke() (bsc#1177862).
This update was imported from the SUSE:SLE-15:Update update project.
Список пакетов
openSUSE Leap 15.2
libass-devel-0.14.0-lp152.4.3.1
libass9-0.14.0-lp152.4.3.1
libass9-32bit-0.14.0-lp152.4.3.1
Ссылки
- E-Mail link for openSUSE-SU-2021:0472-1
- SUSE Security Ratings
- SUSE Bug 1177862
- SUSE CVE CVE-2020-26682 page
Описание
In libass 0.14.0, the `ass_outline_construct`'s call to `outline_stroke` causes a signed integer overflow.
Затронутые продукты
openSUSE Leap 15.2:libass-devel-0.14.0-lp152.4.3.1
openSUSE Leap 15.2:libass9-0.14.0-lp152.4.3.1
openSUSE Leap 15.2:libass9-32bit-0.14.0-lp152.4.3.1
Ссылки
- CVE-2020-26682
- SUSE Bug 1177862