RHSA-2018:3246-01 -- Redhat libcdioID: oval:org.secpod.oval:def:502517 | Date: (C)2020-11-05 (M)2023-12-20 |
Class: PATCH | Family: unix |
The libcdio library provides an interface for CD-ROM access. It can be used by applications that need OS-independent and device-independent access to CD-ROM devices. Security Fix: * libcdio: Heap-based buffer over-read in print_iso9660_recurse function in iso-info.c * libcdio: NULL pointer dereference in realloc_symlink in rock.c * libcdio: Double free in get_cdtext_generic in lib/driver/_cdio_generic.c For more details about the security issue, including the impact, a CVSS score, and other related information, refer to the CVE page listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.6 Release Notes linked from the References section.
Platform: |
Red Hat Enterprise Linux 7 |