Overview

File _patchinfo of Package patchinfo.7688

<patchinfo incident="7688">
  <issue tracker="bnc" id="1096180">VUL-1: taglib: CVE-2018-11439 taglib: heap-based buffer over-read via a crafted audio file</issue>
  <issue tracker="cve" id="2018-11439"/>
  <category>security</category>
  <rating>low</rating>
  <packager>kbabioch</packager>
  <description>This update for taglib fixes the following issues:

- CVE-2018-11439: The TagLib::Ogg::FLAC::File::scan function allowed remote
  attackers to cause information disclosure (heap-based buffer over-read) via a
  crafted audio file (bsc#1096180).
</description>
  <summary>Security update for taglib</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places