Alerts This Week
Warning Icon 1 1,154
Alerts This Week
Warning Icon 1 1,154

Debian 9: DLA-1520-2 Important: Libarchive Memory Leak Patch

debian lts
Calendar Grey July 18, 2018
Dist Debian Esm H88
Major taglib security patch for Debian 8 addresses a heap-related buffer read vulnerability triggered by specially crafted video files.
CVE-2018-11439 Fix for a heap-based buffer over-read via a crafted audio file

Summary


For Debian 8 "Jessie", these problems have been fixed in version
1.9.1-2.1+deb8u1.

We recommend that you upgrade your taglib packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS



Severity
important
Lowest
Low
Medium
High
Critical

Package: taglib
Version: 1.9.1-2.1+deb8u1
CVE ID: CVE-2018-11439

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here