openSUSE-SU-2022:0815-1

Опубликовано: 14 мар. 2022

Источник: suse-cvrf

Описание

Security update for flac

This update for flac fixes the following issues:

CVE-2021-0561: Fixed out of bound write in append_to_verify_fifo_interleaved_ (bsc#1196660).

Список пакетов

openSUSE Leap 15.3

flac-1.3.2-3.9.1

flac-devel-1.3.2-3.9.1

flac-devel-32bit-1.3.2-3.9.1

flac-doc-1.3.2-3.9.1

libFLAC++6-1.3.2-3.9.1

libFLAC++6-32bit-1.3.2-3.9.1

libFLAC8-1.3.2-3.9.1

libFLAC8-32bit-1.3.2-3.9.1

Ссылки

https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/XL4H6UZUJ7J37CDBIJWGDOHX5XDWRWL6/
E-Mail link for openSUSE-SU-2022:0815-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1196660
SUSE Bug 1196660
https://www.suse.com/security/cve/CVE-2021-0561/
SUSE CVE CVE-2021-0561 page

Описание

In append_to_verify_fifo_interleaved_ of stream_encoder.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-174302683

Затронутые продукты

openSUSE Leap 15.3:flac-1.3.2-3.9.1

openSUSE Leap 15.3:flac-devel-1.3.2-3.9.1

openSUSE Leap 15.3:flac-devel-32bit-1.3.2-3.9.1

openSUSE Leap 15.3:flac-doc-1.3.2-3.9.1

Ссылки

https://www.suse.com/security/cve/CVE-2021-0561.html
CVE-2021-0561
https://bugzilla.suse.com/1196660
SUSE Bug 1196660

openSUSE-SU-2022:0815-1

Описание

Список пакетов

openSUSE Leap 15.3

Ссылки

Уязвимость: CVE-2021-0561

Описание

Затронутые продукты

Ссылки