Closed dhelonious closed 2 months ago
Mansour Gashasbi discovered that libcdio incorrectly handled certain memory operations when parsing an ISO file, leading to a buffer overflow vulnerability. An attacker could use this to cause a denial of service, or possibly execute arbitrary code.
Low
https://ubuntu.com/security/notices/USN-6855-1
/rebuild 4.2.8snap2
/rebuild+publish 4.2.9snap2
4.2.8snap2 rebuild completed successfully
4.2.9snap2 rebuild completed successfully
4.2.9snap2 was published on snapcraft.io
Is there an existing issue for this?
Description
Mansour Gashasbi discovered that libcdio incorrectly handled certain memory operations when parsing an ISO file, leading to a buffer overflow vulnerability. An attacker could use this to cause a denial of service, or possibly execute arbitrary code.
Severity
Low
References
https://ubuntu.com/security/notices/USN-6855-1