Mageia 8: 2021-0413 Moderate: Libass Heap-Based Overflow Fix

mageia

August 27, 2021

Updated libass packages fix security vulnerability: libass 0.15.x before 0.15.1 has a heap-based buffer overflow in decode_chars (called from decode_font and process_text) because...

Summary

Updated libass packages fix security vulnerability:
libass 0.15.x before 0.15.1 has a heap-based buffer overflow in decode_chars(called from decode_font and process_text) because the wrong integer data type is used for subtraction (CVE-2020-36430).

References

- https://bugs.mageia.org/show_bug.cgi?id=29392

- https://lists.suse.com/pipermail/sle-security-updates/2021-August/009325.html

- https://www.cve.org/CVERecord?id=CVE-2020-36430

Topics Covered

security advisory moderate update buffer overflow heap overflow libass Mageia

Resolution

SRPMS

- 8/core/libass-0.15.1-1.mga8

Severity

important

Lowest

Low

Medium

High

Critical

Publication date: 27 Aug 2021

URL: https://advisories.mageia.org/MGASA-2021-0413.html

Type: security

CVE: CVE-2020-36430

Topics Covered

security advisory moderate update buffer overflow heap overflow libass Mageia

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Mageia 8: 2021-0413 Moderate: Libass Heap-Based Overflow Fix

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Mageia 8: 2021-0413 Moderate: Libass Heap-Based Overflow Fix

Summary

References

Topics Covered

Resolution

SRPMS

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!