Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2026:20022-1

Опубликовано: 11 янв. 2026
Источник: suse-cvrf

Описание

Security update for matio

This update for matio fixes the following issues:

  • update to version 1.5.29:

    • Fix printing rank-1-variable in Mat_VarPrint
    • Fix array index out of bounds in Mat_VarPrint when printing UTF-8 character data (boo#1239678, CVE-2025-2337)
    • Fix heap-based buffer overflow in strdup_vprintf (boo#1239677, CVE-2025-2338)
    • Changed Mat_VarPrint to print all values of rank-2-variable
    • Several other fixes, for example for access violations in Mat_VarPrint

  • Update to version 1.5.28:

    • Fixed bug writing MAT_T_INT8/MAT_T_UINT8 encoded character array to compressed v5 MAT file (regression of v1.5.12).
    • Fixed bug reading all-zero sparse array of v4 MAT file (regression of v1.5.18).
    • Updated C99 snprintf.c.
    • CMake: Enabled testing.
    • Several other fixes, for example for access violations in Mat_VarPrint.

Список пакетов

openSUSE Leap 16.0
libmatio-devel-1.5.29-bp160.1.1
libmatio13-1.5.29-bp160.1.1
matio-tools-1.5.29-bp160.1.1

Ссылки

Описание

A vulnerability, which was classified as critical, has been found in tbeu matio 1.5.28. This issue affects the function Mat_VarPrint of the file src/mat.c. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Затронутые продукты
openSUSE Leap 16.0:libmatio-devel-1.5.29-bp160.1.1
openSUSE Leap 16.0:libmatio13-1.5.29-bp160.1.1
openSUSE Leap 16.0:matio-tools-1.5.29-bp160.1.1
Ссылки

Описание

A vulnerability, which was classified as critical, was found in tbeu matio 1.5.28. Affected is the function strdup_vprintf of the file src/io.c. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Затронутые продукты
openSUSE Leap 16.0:libmatio-devel-1.5.29-bp160.1.1
openSUSE Leap 16.0:libmatio13-1.5.29-bp160.1.1
openSUSE Leap 16.0:matio-tools-1.5.29-bp160.1.1
Ссылки