libcaca vulnerable to CVE-2021-3410

guix-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

libcaca vulnerable to CVE-2021-3410

From:	Léo Le Bouter
Subject:	libcaca vulnerable to CVE-2021-3410
Date:	Wed, 03 Mar 2021 21:48:41 +0100
User-agent:	Evolution 3.34.2

CVE-2021-3410   24.02.21 00:15
A flaw was found in libcaca v0.99.beta19. A buffer overflow issue in
caca_resize function in libcaca/caca/canvas.c may lead to local
execution of arbitrary code in the user context.

libcaca has not made a release yet, so you need to look upstream and
cherry-pick the commits.

See https://github.com/cacalabs/libcaca/issues/52

signature.asc
Description: This is a digitally signed message part

[Prev in Thread]

Current Thread

[Next in Thread]

libcaca vulnerable to CVE-2021-3410, Léo Le Bouter <=
- Re: libcaca vulnerable to CVE-2021-3410, Léo Le Bouter, 2021/03/09

Prev by Date: Zabbix packages vulnerable to CVE-2021-27927
Next by Date: Re: Getting rid of the mandb profile hook?
Previous by thread: Zabbix packages vulnerable to CVE-2021-27927
Next by thread: Re: libcaca vulnerable to CVE-2021-3410
Index(es):
- Date
- Thread