SUSE Package Hub - openSUSE-2019-328

Update Info

openSUSE-2019-328

Security update for libcomps

Type: security

Severity: moderate

Issued: 2019-03-15

Description:

This update for libcomps fixes the following issue:
	  
Security issue fixed: 
- CVE-2019-3817: Fixed a use-after-free vulnerability in comps_objmradix.c:comps_objmrtree_unite() function
  where could allow to application crash or code execution (bsc#1122841).

This update was imported from the openSUSE:Leap:15.0:Update update project.

References

CVE: CVE-2019-3817
Bugzilla: 1122841 VUL-0: CVE-2019-3817: libcomps: use after free when merging two objmrtrees

Packages

libcomps-0.1.8-bp150.3.3.1