3 matches found
openSUSE: Security Advisory for chafa (openSUSE-SU-2022:10017-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OPENSUSE-SU-2022:10017-1 Security update for chafa
This update for chafa fixes the following issues: - CVE-2022-2061: Fix heap based buffer overflow in lzwdecode boo1200510...
CVE-2022-2061
CVE-2022-2061 affects the chafa image library (hpjansson/chafa) prior to 1.12.0, with a heap-based buffer overflow in the lzw_decode path. Multiple advisories note fixes: openSUSE/SUSE backports patch to chafa-1.12.1-1.1; Debian/Ubuntu OSV entries cite a fix in 1.12.0; other listings reference th...