Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 39: 2024-ab879eeed1 Critical: Integer Overflow In Libebml

fedora
Calendar Grey February 5, 2024
Dist Fedora Esm H88
Fedora 39 release notes announce a resolution for integer underflow vulnerabilities in libebml, ensuring seamless user experience without altering API or ABI. Discover the full details.
Fixes CVE-2023-52339

Summary

Extensible Binary Meta Language access library A library for reading

and writing files with the Extensible Binary Meta Language, a binary

pendant to XML.

Update Information:

Fixes CVE-2023-52339. No API or ABI changes.

Topics%20covered

Topics Covered

security advisory fedora critical software update integer overflow attack vector libebml

Change Log

* Fri Feb 2 2024 Dominik Mierzejewski - 1.4.5-1 - update to 1.4.5 (#2254413) - fixes CVE-2023-52339 (#2258046, #2258047)

References


[ 1 ] Bug #2258046 - CVE-2023-52339 libebml: integer overflow in MemIOCallback::read https://bugzilla.redhat.com/show_bug.cgi?id=2258046

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-ab879eeed1' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Severity
critical
Lowest
Low
Medium
High
Critical

Name: libebml
Product: Fedora 39
Version: 1.4.5
Release: 1.fc39
URL: https://www.matroska.org/index.html
Summary: Extensible Binary Meta Language library

Topics%20covered

Topics Covered

security advisory fedora critical software update integer overflow attack vector libebml

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here