Change log for libcdio package in openKylin

15 of 5 results
Published in nile-release
Published in nile-proposed
libcdio (2.1.0-ok2) nile; urgency=medium

  * SECURITY UPDATE: buffer overflow     - debian/patches/CVE-2024-36600-
    1.patch: Allocates space for       growth and additional buffer in
    lib/iso9660/rock.c     - debian/patches/CVE-2024-36600-2.patch:
    Limits the maximum read       count to prevent an overflow in
    lib/driver/_cdio_stdio.c     - debian/patches/CVE-2024-36600-
    3.patch: Adds input validation to       unicode16_decode function in
    lib/udf/udf_fs.c     - debian/patches/CVE-2024-36600-4.patch: Adds
    bounds checking for       directory buffer size and total size
    calculation in       lib/iso9660/iso9660_fs.c     -
    debian/patches/CVE-2024-36600-5.patch: Fixes overflow in iso9660
    dir read (32-bit) in lib/iso9660/iso9660_fs.c     -
    debian/patches/CVE-2024-36600-6.patch: Checks the validity of
    i_extended_attr member in udf_get_lba() in lib/udf/udf_fs.c     -
    debian/patches/CVE-2024-36600-7.patch: Adds 32-bit size test
    only when needed in lib/iso9660/iso9660_fs.c     - CVE-2024-36600

 -- liubo01 <email address hidden>  Mon, 04 Nov 2024 16:48:19 +0800

Available diffs

Published in huanghe-proposed
Published in huanghe-release
Superseded in nile-release
Superseded in nile-proposed
libcdio (2.1.0-ok1) nile; urgency=medium

  * Build for openKylin.

 -- Luoyaoming <email address hidden>  Wed, 24 Apr 2024 14:24:22 +0800

Available diffs

Superseded in nile-proposed
Superseded in nile-release
Published in yangtze-release
Published in yangtze-proposed
libcdio (2.0.0-ok3) yangtze; urgency=medium

  * Update debian/rules.

 -- Luoyaoming <email address hidden>  Thu, 16 Mar 2023 14:52:43 +0800
Superseded in yangtze-proposed
libcdio (2.0.0-ok2) yangtze; urgency=medium

  * Update debian/rules.

 -- Luoyaoming <email address hidden>  Thu, 16 Mar 2023 14:01:29 +0800
Superseded in yangtze-release
libcdio (2.0.0-ok1) yangtze; urgency=medium

  * Build for openKylin.

 -- openKylinBot <email address hidden>  Mon, 25 Apr 2022 22:03:04 +0800
15 of 5 results