Mageia 7: 2021-0333 Moderate: libcroco Stack Consumption Issue

mageia

July 10, 2021

libcroco through 0.6.13 has excessive recursion in cr_parser_parse_any_core in cr-parser.c, leading to stack consumption (CVE-2020-12825)

libcroco through 0.6.13 has excessive recursion in cr_parser_parse_any_core in cr-parser.c, leading to stack consumption (CVE-2020-12825).

- https://bugs.mageia.org/show_bug.cgi?id=27108

- https://access.redhat.com/errata/RHSA-2020:4072

- https://gitlab.gnome.org/Archive/libcroco/-/issues/8

- https://www.cve.org/CVERecord?id=CVE-2020-12825

Topics Covered

- 7/core/libcroco-0.6.13-1.2.mga7

- 7/core/gettext-0.19.8.1-4.1.mga7

Publication date: 10 Jul 2021

URL: https://advisories.mageia.org/MGASA-2021-0333.html

Type: security

CVE: CVE-2020-12825

Get the latest Linux and open source security news straight to your inbox.

Like staying secure? So do we.
Sign up for updates, tips, and alerts!