Updated advancecomp packages fix security vulnerability
Publication date: 05 Apr 2019Type: security
Affected Mageia releases : 6
CVE: CVE-2019-9210
Description
advancecomp has been updated to fix a security issue that could be triggered when pressented with a malformed PNG file. advancecomp contained an integer overflow upon encountering an invalid PNG size, which could result in a buffer overflow (CVE-2019-9210), as well as a heap-based buffer over-read.
References
SRPMS
6/core
- advancecomp-1.20-3.3.mga6