Fedora 38 High Advisory: libcmis Memory Overrun - 2023-0d971cd6aa
fedora
December 13, 2023
7.5.9.2
Summary
LibCMIS is a C/C++ client library for working with CM (content management)
interfaces. The primary supported interface (which gave the library its
name) is CMIS, which allows applications to connect to any ECM behaving
as a CMIS server (Alfresco or Nuxeo are examples of open source ones).
Another supported interface is Google Drive.
Update Information:
7.5.9.2
Topics Covered
Change Log
* Wed Nov 15 2023 Gwyn Ciesla
References
[ 1 ] Bug #2254004 - CVE-2023-6185 libreoffice: Improper Input Validation leading to arbitrary gstreamer plugin execution [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2254004
[ 2 ] Bug #2254006 - CVE-2023-6186 libreoffice: Insufficient macro permission validation leading to macro execution [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2254006
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-0d971cd6aa' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: libcmis
Product: Fedora 38
Version: 0.6.2
Release: 1.fc38
Summary: A C/C++ client library for CM interfaces
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!