Updated leptonica packages fix security vulnerabilities
Publication date: 19 Mar 2018Type: security
Affected Mageia releases : 6
CVE: CVE-2018-7186 , CVE-2018-7247
Description
Package leptonica has been updated to the current stable version 1.75.3 which fixes: CVE-2018-7186 - multiple stack-based buffer overflows in gplotRead() and ptaReadStream() CVE-2018-7247 - a buffer overflow in in src/viewfiles.c with unsanitized input (rootname)
References
SRPMS
6/core
- leptonica-1.75.3-1.mga6
- mingw-leptonica-1.75.3-1.mga6