File _patchinfo of Package patchinfo.9417

<patchinfo incident="9417">
  <issue tracker="bnc" id="1094809">VUL-0: CVE-2018-11468: discount: heap-based buffer over-read __mkd_trim_line function in mkdio.c</issue>
  <issue tracker="bnc" id="1098252">VUL-0: CVE-2018-12495: discount: heap-based buffer over-read via a crafted file</issue>
  <issue tracker="cve" id="2018-11468"/>
  <issue tracker="cve" id="2018-12495"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>pluskalm</packager>
  <description>This update for discount to version 2.2.4 fixes the following issues:

Security issues fixed:

- CVE-2018-11468: Fixed a heap-based buffer over-read in the __mkd_trim_line function from mkdio.c (boo#1094809)
- CVE-2018-12495: Fixed a heap-based buffer over-read via a crafted file (boo#1098252)
</description>
  <summary>Security update for discount</summary>
</patchinfo>
openSUSE Build Service is sponsored by