FEDORA-EPEL-2016-58b3766907 created by rathann 3 years ago for Fedora EPEL 6
stable

New in 1.2.2 version:

  • fix usage of the DEBUG #define (use LIBEBML_DEBUG instead)
  • The EbmlCodeVersion variable now resides in the library instead of being declared static in the header file.
  • only use the test element to read once in the loop

Backported fixes for:

  • CVE-2015-8789 libebml: Usa-after-free vulnerability in EblMaster::Read()
  • CVE-2015-8790 CVE-2015-8791 libebml: information leaks in two functions

This update has been submitted for testing by rathann.

3 years ago

This update has been pushed to testing.

3 years ago

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

3 years ago

This update has been submitted for stable by rathann.

3 years ago

This update has been pushed to stable.

3 years ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-1
Stable by Karma
2
Dates
submitted
3 years ago
in testing
3 years ago
in stable
3 years ago
BZ#1276337 CVE-2015-8789 libebml: Usa-after-free vulnerability in EblMaster::Read() [epel-all]
0
0
BZ#1303854 CVE-2015-8791 CVE-2015-8790 libebml: information leaks in two functions [epel-6]
0
0

Automated Test Results