Mageia 8: 2023-0046 Critical: libzen Null Pointer Dereference Advisory
mageia
February 14, 2023
A vulnerability classified as problematic has been found in MediaArea ZenLib up to 0.4.38
Summary
A vulnerability classified as problematic has been found in MediaArea
ZenLib up to 0.4.38. This affects the function
Ztring::Date_From_Seconds_1970_Local of the file Source/ZenLib/Ztring.cpp.
The manipulation of the argument Value leads to unchecked return value to
null pointer dereference. (CVE-2020-36646)
References
- https://bugs.mageia.org/show_bug.cgi?id=31492
- https://lists.debian.org/debian-lts-announce/2023/01/msg00029.html
- https://www.cve.org/CVERecord?id=CVE-2020-36646
Resolution
SRPMS
- 8/core/libzen-0.4.38-1.1.mga8
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Publication date: 14 Feb 2023
URL: https://advisories.mageia.org/MGASA-2023-0046.html
Type: security
CVE: CVE-2020-36646
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!