Advisories ยป MGASA-2018-0300

Updated taglib packages fix security vulnerability

Publication date: 01 Jul 2018
Modification date: 01 Jul 2018
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2018-11439

Description

The TagLib::Ogg::FLAC::File::scan function in oggflacfile.cpp in TagLib
1.11.1 allows remote attackers to cause information disclosure (heap-based
buffer over-read) via a crafted audio file. (CVE-2018-11439)
                

References

SRPMS

5/core

6/core