SUSE Package Hub - openSUSE-2021-570

Update Info

openSUSE-2021-570

Security update for fluidsynth

Type: security

Severity: important

Issued: 2021-04-18

Description:

This update for fluidsynth fixes the following issues:

- CVE-2021-28421: Fix use after free vulnerability in file loader (boo#1184705)

This update was imported from the openSUSE:Leap:15.2:Update update project.

References

CVE: CVE-2021-28421
Bugzilla: 1184705 VUL-0: CVE-2021-28421: fluidsynth: use after free vulnerability in sfloader/fluid_sffile.c that can result in arbitrary code execution or a denial of service

Packages

fluidsynth-1.1.11-bp152.4.3.1