Описание
Security update for multimon-ng
This update for multimon-ng fixes the following issues:
-
Update to new upstream release 1.2.0
- Separated FLEX and FLEX_NEXT. The former is identical to 1.1.9, while FLEX_NEXT gained new features, as well as known regressions. (See #168)
- Fix CVE-2020-36619 (boo#1206542)
- Several smaller POCSAG fixes.
- Fix for opening large wav files with improper header.
-
Update to new upstream release 1.1.9
- multimon-ng now has a man page, let's try to keep it updated.
- FLEX: Changes to group messages and delimiters.
- FMS: Fixed a problem with the direction of telegrams.
- POCSAG: Support for the Slovenian charset.
Список пакетов
SUSE Package Hub 15 SP3
multimon-ng-1.2.0-bp153.2.3.1
openSUSE Leap 15.3
multimon-ng-1.2.0-bp153.2.3.1
Ссылки
- E-Mail link for openSUSE-SU-2023:0004-1
- SUSE Security Ratings
- SUSE Bug 1206542
- SUSE CVE CVE-2020-36619 page
Описание
A vulnerability was found in multimon-ng. It has been rated as critical. This issue affects the function add_ch of the file demod_flex.c. The manipulation of the argument ch leads to format string. Upgrading to version 1.2.0 is able to address this issue. The name of the patch is e5a51c508ef952e81a6da25b43034dd1ed023c07. It is recommended to upgrade the affected component. The identifier VDB-216269 was assigned to this vulnerability.
Затронутые продукты
SUSE Package Hub 15 SP3:multimon-ng-1.2.0-bp153.2.3.1
openSUSE Leap 15.3:multimon-ng-1.2.0-bp153.2.3.1
Ссылки
- CVE-2020-36619
- SUSE Bug 1206542