Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -1 articles for you...
89
security advisoryfedorasoftware updateFedora 27 Bchunk Security Update: Fixes for Multiple Threats
- spec cleanup, silent rpmlint - remove upstreamed patches, fixes rhbz #1507577 - update to 1.2.2. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2018-1217b02061 2018-04-06 15:00:04.587742 --------------------------------------------------------------------------------Name : bchunk Product : Fedora 27 Version : 1.2.2 Release : 1.fc27 URL : http://he.fi/bchunk/ Summary : CD image format converter from .bin/.cue to .iso/.cdr Description : The bchunk package contains a UNIX/C rewrite of the BinChunker program. BinChunker converts a CD image in a .bin/.cue format (sometimes .raw/.cue) into a set of .iso and .cdr tracks. The .bin/.cue format is used by some non-UNIX CD-writing software, but is not supported on most other CD-writing programs. --------------------------------------------------------------------------------Update Information: - spec cleanup, silent rpmlint - remove upstreamed patches, fixes rhbz #1507577 - update to 1.2.2 --------------------------------------------------------------------------------References: [ 1 ] Bug #1507577 - CVE-2017-15953 CVE-2017-15954 CVE-2017-15955 bchunk: Multiple vulnerabilities [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1507577 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade bchunk' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Apr 06, 2018
•Critical
Fedora
89
security advisoryfedorasoftware updateFedora 27: 2018-1217b02061 Moderate: bchunk Multiple Flaws
- spec cleanup, silent rpmlint - remove upstreamed patches, fixes rhbz #1507577 - update to 1.2.2. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2018-1217b02061 2018-04-06 15:00:04.587742 --------------------------------------------------------------------------------Name : bchunk Product : Fedora 27 Version : 1.2.2 Release : 1.fc27 URL : http://he.fi/bchunk/ Summary : CD image format converter from .bin/.cue to .iso/.cdr Description : The bchunk package contains a UNIX/C rewrite of the BinChunker program. BinChunker converts a CD image in a .bin/.cue format (sometimes .raw/.cue) into a set of .iso and .cdr tracks. The .bin/.cue format is used by some non-UNIX CD-writing software, but is not supported on most other CD-writing programs. --------------------------------------------------------------------------------Update Information: - spec cleanup, silent rpmlint - remove upstreamed patches, fixes rhbz #1507577 - update to 1.2.2 --------------------------------------------------------------------------------References: [ 1 ] Bug #1507577 - CVE-2017-15953 CVE-2017-15954 CVE-2017-15955 bchunk: Multiple vulnerabilities [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1507577 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade bchunk' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Apr 06, 2018
Fedora
89
security advisorysecurity updatefedoraFedora 26: bchunk Security Update - Critical Multiple Issues Resolved
- spec cleanup, silent rpmlint - remove upstreamed patches, fixes rhbz #1507577 - update to 1.2.2. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2018-d5aa3e1d90 2018-04-06 14:35:29.807625 --------------------------------------------------------------------------------Name : bchunk Product : Fedora 26 Version : 1.2.2 Release : 1.fc26 URL : http://he.fi/bchunk/ Summary : CD image format converter from .bin/.cue to .iso/.cdr Description : The bchunk package contains a UNIX/C rewrite of the BinChunker program. BinChunker converts a CD image in a .bin/.cue format (sometimes .raw/.cue) into a set of .iso and .cdr tracks. The .bin/.cue format is used by some non-UNIX CD-writing software, but is not supported on most other CD-writing programs. --------------------------------------------------------------------------------Update Information: - spec cleanup, silent rpmlint - remove upstreamed patches, fixes rhbz #1507577 - update to 1.2.2 --------------------------------------------------------------------------------References: [ 1 ] Bug #1507577 - CVE-2017-15953 CVE-2017-15954 CVE-2017-15955 bchunk: Multiple vulnerabilities [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1507577 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade bchunk' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Apr 06, 2018
•Critical
Fedora
89
security advisorymoderatesoftware updateFedora 27: 2018-f5b79f3d92 Low: bchunk Various Vulnerabilities
- spec cleanup, silent rpmlint - remove upstreamed patches, fixes rhbz #1507577 - update to 1.2.2. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2018-d5aa3e1d90 2018-04-06 14:35:29.807625 --------------------------------------------------------------------------------Name : bchunk Product : Fedora 26 Version : 1.2.2 Release : 1.fc26 URL : http://he.fi/bchunk/ Summary : CD image format converter from .bin/.cue to .iso/.cdr Description : The bchunk package contains a UNIX/C rewrite of the BinChunker program. BinChunker converts a CD image in a .bin/.cue format (sometimes .raw/.cue) into a set of .iso and .cdr tracks. The .bin/.cue format is used by some non-UNIX CD-writing software, but is not supported on most other CD-writing programs. --------------------------------------------------------------------------------Update Information: - spec cleanup, silent rpmlint - remove upstreamed patches, fixes rhbz #1507577 - update to 1.2.2 --------------------------------------------------------------------------------References: [ 1 ] Bug #1507577 - CVE-2017-15953 CVE-2017-15954 CVE-2017-15955 bchunk: Multiple vulnerabilities [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1507577 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade bchunk' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Apr 06, 2018
•Low
Fedora
89
security advisorycriticalsoftware updateFedora 28 Bchunk Security Update: Critical Issues Addressed
- spec cleanup, silent rpmlint - remove upstreamed patches, fixes rhbz #1507577 - update to 1.2.2. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2018-60ec960104 2018-04-06 11:07:50.698365 --------------------------------------------------------------------------------Name : bchunk Product : Fedora 28 Version : 1.2.2 Release : 1.fc28 URL : http://he.fi/bchunk/ Summary : CD image format converter from .bin/.cue to .iso/.cdr Description : The bchunk package contains a UNIX/C rewrite of the BinChunker program. BinChunker converts a CD image in a .bin/.cue format (sometimes .raw/.cue) into a set of .iso and .cdr tracks. The .bin/.cue format is used by some non-UNIX CD-writing software, but is not supported on most other CD-writing programs. --------------------------------------------------------------------------------Update Information: - spec cleanup, silent rpmlint - remove upstreamed patches, fixes rhbz #1507577 - update to 1.2.2 --------------------------------------------------------------------------------References: [ 1 ] Bug #1507577 - CVE-2017-15953 CVE-2017-15954 CVE-2017-15955 bchunk: Multiple vulnerabilities [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1507577 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade bchunk' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Apr 06, 2018
•Critical
Fedora
89
security advisorysecurity issueupdateUbuntu 20.04: 2020-78dfbca810 Critical: qt5 Security Patch
- spec cleanup, silent rpmlint - remove upstreamed patches, fixes rhbz #1507577 - update to 1.2.2. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2018-60ec960104 2018-04-06 11:07:50.698365 --------------------------------------------------------------------------------Name : bchunk Product : Fedora 28 Version : 1.2.2 Release : 1.fc28 URL : http://he.fi/bchunk/ Summary : CD image format converter from .bin/.cue to .iso/.cdr Description : The bchunk package contains a UNIX/C rewrite of the BinChunker program. BinChunker converts a CD image in a .bin/.cue format (sometimes .raw/.cue) into a set of .iso and .cdr tracks. The .bin/.cue format is used by some non-UNIX CD-writing software, but is not supported on most other CD-writing programs. --------------------------------------------------------------------------------Update Information: - spec cleanup, silent rpmlint - remove upstreamed patches, fixes rhbz #1507577 - update to 1.2.2 --------------------------------------------------------------------------------References: [ 1 ] Bug #1507577 - CVE-2017-15953 CVE-2017-15954 CVE-2017-15955 bchunk: Multiple vulnerabilities [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1507577 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade bchunk' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Apr 06, 2018
•Critical
Fedora
198
security advisorydenial of servicesoftware updateArch Linux Medium Severity Advisory: bchunk Denial Of Service Issue
The package bchunk before version 1.2.2-4 is vulnerable to denial of service. . Arch Linux Security Advisory ASA-201803-24 ========================================= Severity: Medium Date : 2018-03-25 CVE-ID : CVE-2017-15953 CVE-2017-15954 CVE-2017-15955 Package : bchunk Type : denial of service Remote : No Link : https://security.archlinux.org/AVG-475 Summary ====== The package bchunk before version 1.2.2-4 is vulnerable to denial of service. Resolution ========= Upgrade to 1.2.2-4. # pacman -Syu "bchunk> =1.2.2-4" The problems have been fixed upstream in version 1.2.2. Workaround ========= None. Description ========== - CVE-2017-15953 (denial of service) bchunk (related to BinChunker) 1.2.0 and 1.2.1 is vulnerable to a heap-based buffer overflow and crash when processing a malformed CUE (.cue) file. - CVE-2017-15954 (denial of service) bchunk (related to BinChunker) 1.2.0 and 1.2.1 is vulnerable to a heap-based buffer overflow (with a resultant invalid free) and crash when processing a malformed CUE (.cue) file. - CVE-2017-15955 (denial of service) bchunk (related to BinChunker) 1.2.0 and 1.2.1 is vulnerable to an "Access violation near NULL on destination operand" and crash when processing a malformed CUE (.cue) file. Impact ===== An attacker can cause a denial of service via a crafted CUE file. References ========= https://github.com/extramaster/bchunk/issues/2 https://github.com/extramaster/bchunk/issues/3 https://github.com/extramaster/bchunk/issues/4 https://security.archlinux.org/CVE-2017-15953 https://security.archlinux.org/CVE-2017-15954 https://security.archlinux.org/CVE-2017-15955 . Explore the recent Arch Linux advisory outlining moderate threat levels in bchunk, which uncovers potential denial of service vulnerabilities.. bchunk security advisory, Arch Linux update, denial of service, software update, package management. . Severity: Medium. LinuxSecurity.com Team
Mar 26, 2018
•Medium
ArchLinux
197
security advisorymoderateupdateDebian 7 Wheezy DLA-1158-1 Moderate: bchunk Heap Overflow Risk
Several vulnerabilities were discovered in bchunk, a tool to convert a CD image in .bin/.cue format into a set of .iso and .cdr/.wav tracks. It was possible to trigger a heap-based buffer overflow with an resultant invalid free when processing a malformed CUE (.cue) file . Hash: SHA512 Package : bchunk Version : 1.2.0-12+deb7u1 CVE ID : CVE-2017-15953 CVE-2017-15954 CVE-2017-15955 Debian Bug : 880116 Several vulnerabilities were discovered in bchunk, a tool to convert a CD image in .bin/.cue format into a set of .iso and .cdr/.wav tracks. It was possible to trigger a heap-based buffer overflow with an resultant invalid free when processing a malformed CUE (.cue) file that may lead to the execution of arbitrary code or a application crash. For Debian 7 "Wheezy", these problems have been fixed in version 1.2.0-12+deb7u1. We recommend that you upgrade your bchunk packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Several security flaws addressed in bchunk on Debian 7 Wheezy, posing risks of crashes and remote code execution. It is advisable to upgrade.. bchunk, security update, buffer overflow, Debian LTS, application crash. . LinuxSecurity.com Team
Nov 03, 2017
Debian LTS
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!