Описание
Security update for optipng
This update for optipng fixes the following issues:
Update to 0.7.8:
- CVE-2023-43907: Fixed a global-buffer-overflow vulnerability in the GIF reader (boo#1215937).
- Fixed a stack-print-after-scope defect in the error handler.
- Fixed an assertion failure in the image reduction module.
- Fixed the command-line wildargs expansion in the Windows port.
- Refactored the structured exception handling.
Список пакетов
SUSE Package Hub 15 SP4
optipng-0.7.8-bp154.3.5.1
openSUSE Leap 15.4
optipng-0.7.8-bp154.3.5.1
Ссылки
- E-Mail link for openSUSE-SU-2023:0388-1
- SUSE Security Ratings
- SUSE Bug 1215937
- SUSE CVE CVE-2023-43907 page
Описание
OptiPNG v0.7.7 was discovered to contain a global buffer overflow via the 'buffer' variable at gifread.c.
Затронутые продукты
SUSE Package Hub 15 SP4:optipng-0.7.8-bp154.3.5.1
openSUSE Leap 15.4:optipng-0.7.8-bp154.3.5.1
Ссылки
- CVE-2023-43907
- SUSE Bug 1215937