Advisories ยป MGASA-2021-0134

Updated mediainfo packages a fix security vulnerability

Publication date: 14 Mar 2021
Modification date: 14 Mar 2021
Type: security
Affected Mageia releases : 7
CVE: CVE-2020-15395

Description

In MediaInfoLib in MediaArea MediaInfo 20.03, there is a stack-based buffer
over-read in Streams_Fill_PerStream in Multiple/File_MpegPs.cpp (aka an
off-by-one during MpegPs parsing) (CVE-2020-15395).
                

References

SRPMS

7/core