UbuntuUpdates.org

Package "advancecomp"

Name: advancecomp

Description:

collection of recompression utilities

Latest version: 2.1-2.1ubuntu0.20.04.1
Release: focal (20.04)
Level: security
Repository: main
Homepage: http://www.advancemame.it/

Links


Download "advancecomp"


Other versions of "advancecomp" in Focal

Repository Area Version
base main 2.1-2.1build1
updates main 2.1-2.1ubuntu0.20.04.1

Changelog

Version: 2.1-2.1ubuntu0.20.04.1 2023-02-01 15:07:15 UTC

  advancecomp (2.1-2.1ubuntu0.20.04.1) focal-security; urgency=medium

  * SECURITY UPDATE: out-of-bound read and heap overflow vulnerabilities
    - debian/patches/CVE-2022-35014-35015-35016-35017-35018-35019-35020-*.patch:
      Fix memory issues
    - CVE-2022-35014
    - CVE-2022-35015
    - CVE-2022-35016
    - CVE-2022-35017
    - CVE-2022-35018
    - CVE-2022-35019
    - CVE-2022-35020

 -- Nishit Majithia <email address hidden> Wed, 01 Feb 2023 14:37:05 +0530

CVE-2022-35014 Advancecomp v2.3 contains a segmentation fault.
CVE-2022-35015 Advancecomp v2.3 was discovered to contain a heap buffer overflow via le_uint32_read at /lib/endianrw.h.
CVE-2022-35016 Advancecomp v2.3 was discovered to contain a heap buffer overflow.
CVE-2022-35017 Advancecomp v2.3 was discovered to contain a heap buffer overflow.
CVE-2022-35018 Advancecomp v2.3 was discovered to contain a segmentation fault.
CVE-2022-35019 Advancecomp v2.3 was discovered to contain a segmentation fault.
CVE-2022-35020 Advancecomp v2.3 was discovered to contain a heap buffer overflow via the component __interceptor_memcpy at /sanitizer_common/sanitizer_common_interc



About   -   Send Feedback to @ubuntu_updates