SUSE Package Hub - openSUSE-2024-224

Update Info

openSUSE-2024-224

Security update for keybase-client

Type: security

Severity: moderate

Issued: 2024-07-26

Description:

This update for keybase-client fixes the following issues:

- Update the Image dependency to address CVE-2024-24792 (boo#1227167).

References

CVE: CVE-2024-24792
Bugzilla: 1227167 VUL-0: CVE-2024-24792: keybase-client: golang.org/x/image/tiff: parsing of a corrupt or malicious image with invalid color indices can cause a panic

Packages

keybase-client-6.2.8-bp156.2.6.1