libcaca could be made to execute arbitrary code if it received a specially crafted
image.
Software Description:
- libcaca: None
Details:
It was discovered that libcaca incorrectly handled certain images.
An attacker could possibly use this issue to execute arbitrary code.
The problem can be corrected by updating your system to the following package versions: Ubuntu 20.10: caca-utils 0.99.beta19-2.1ubuntu1.20.10.1 libcaca0 0.99.beta19-2.1ubuntu1.20.10.1 Ubuntu 20.04 LTS: caca-utils 0.99.beta19-2.1ubuntu1.20.04.1 libcaca0 0.99.beta19-2.1ubuntu1.20.04.1 Ubuntu 18.04 LTS: caca-utils 0.99.beta19-2ubuntu0.18.04.2 libcaca0 0.99.beta19-2ubuntu0.18.04.2 Ubuntu 16.04 LTS: caca-utils 0.99.beta19-2ubuntu0.16.04.2 libcaca0 0.99.beta19-2ubuntu0.16.04.2 Ubuntu 14.04 ESM: caca-utils 0.99.beta18-1ubuntu5.1+esm1 libcaca0 0.99.beta18-1ubuntu5.1+esm1 In general, a standard system update will make all the necessary changes.
https://ubuntu.com/security/notices/USN-4921-1
CVE-2021-3410
Get the latest Linux and open source security news straight to your inbox.