UbuntuUpdates.org

Package "liborc-0.4-0"

Name: liborc-0.4-0

Description:

Library of Optimized Inner Loops Runtime Compiler

Latest version: 1:0.4.31-1ubuntu0.1
Release: focal (20.04)
Level: security
Repository: main
Head package: orc
Homepage: https://cgit.freedesktop.org/gstreamer/orc

Links


Download "liborc-0.4-0"


Other versions of "liborc-0.4-0" in Focal

Repository Area Version
base main 1:0.4.31-1
updates main 1:0.4.31-1ubuntu0.1

Changelog

Version: 1:0.4.31-1ubuntu0.1 2024-08-15 22:07:13 UTC

  orc (1:0.4.31-1ubuntu0.1) focal-security; urgency=medium

  * SECURITY UPDATE: Buffer Overflow
    - debian/patches/CVE-2024-40897.patch: use vasprintf if available for
      error messages and otherwise vsnprintf in orc/orccompiler.c,
      orc/orcparse.c.
    - CVE-2024-40897

 -- Leonidas Da Silva Barbosa <email address hidden> Tue, 13 Aug 2024 07:40:52 -0300

CVE-2024-40897 Stack-based buffer overflow vulnerability exists in orcparse.c of ORC versions prior to 0.4.39. If a developer is tricked to process a specially craf



About   -   Send Feedback to @ubuntu_updates