|
|
Log in / Subscribe / Register

Mageia alert MGASA-2016-0341 (libass)



From:
    	      Mageia Updates <buildsystem-daemon@mageia.org> 


To:
    	      updates-announce@ml.mageia.org 


Subject:
    	      [updates-announce] MGASA-2016-0341: Updated libass packages fixes security vulnerabilities 


Date:
    	      Wed, 12 Oct 2016 17:10:16 +0200


Message-ID:
    	      <20161012151017.04DC09F796@duvel.mageia.org>


MGASA-2016-0341 - Updated libass packages fixes security vulnerabilities

Publication date: 12 Oct 2016
URL: http://advisories.mageia.org/MGASA-2016-0341.html
Type: security
Affected Mageia releases: 5

Description:
Amount of memory allocated during memory reallocation in the shaper wasn't
tracked, possibly resulting in undefined behavior (CVE-2016-7972).

Illegal read in Gaussian blur coefficient calculations (CVE-2016-7970).

Mode 0/3 line wrapping equalization in specific cases could result in illegal
reads while laying out and shaping text. (CVE-2016-7969)

The libass package has been updated to version 0.13.4, fixing this issue and
several other bugs.

References:
- https://bugs.mageia.org/show_bug.cgi?id=19537
- https://github.com/libass/libass/releases

SRPMS:
- 5/core/libass-0.13.4-1.mga5
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds