Advisories ยป MGASA-2021-0333

Updated libcroco and gettext packages fix security vulnerability

Publication date: 10 Jul 2021
Type: security
Affected Mageia releases : 7
CVE: CVE-2020-12825

Description

libcroco through 0.6.13 has excessive recursion in cr_parser_parse_any_core
in cr-parser.c, leading to stack consumption (CVE-2020-12825).
                

References

SRPMS

7/core