USN-6855-1: libcdio vulnerability

dhelonious / mastodon-snap

Unofficial snap for Mastodon 🦣📦

GNU Affero General Public License v3.0

1 stars 0 forks source link

USN-6855-1: libcdio vulnerability #6

Closed dhelonious closed 2 months ago

dhelonious commented 2 months ago

Is there an existing issue for this?

[X] I have searched the existing issues

Description

Mansour Gashasbi discovered that libcdio incorrectly handled certain memory operations when parsing an ISO file, leading to a buffer overflow vulnerability. An attacker could use this to cause a denial of service, or possibly execute arbitrary code.

Severity

Low

References

https://ubuntu.com/security/notices/USN-6855-1

dhelonious commented 2 months ago

/rebuild 4.2.8snap2

dhelonious commented 2 months ago

/rebuild+publish 4.2.9snap2

github-actions[bot] commented 2 months ago

4.2.8snap2 rebuild completed successfully

github-actions[bot] commented 2 months ago

4.2.9snap2 rebuild completed successfully

github-actions[bot] commented 2 months ago

4.2.9snap2 was published on snapcraft.io