ROS-20240626-08

A vulnerability in the ISO 9660 Image File Handler component of the libcdio library is related to a buffer overflow. Exploitation of the vulnerability could allow an attacker to execute arbitrary code...

AZL-43630 CVE-2024-36600 affecting package libcdio 2.0.0-8

Buffer Overflow Vulnerability in libcdio 2.2.0 fixed in 2.3.0 allows an attacker to execute arbitrary code via a crafted ISO 9660 image file...

The vulnerability of the print_iso9660_recurse function in the libcdio library, which allows a attacker to cause a service failure or exert other effects

The vulnerability of the printiso9660recurse function in the iso-info.c file of the libcdio library is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures or other adverse effects from a remote...

USN-5558-1: libcdio vulnerabilities

Zhao Liang discovered that libcdio was not properly performing memory management operations when processing ISO files, which could result in a heap buffer overflow or in a NULL pointer dereference. If a user or automated system were tricked into opening a specially crafted file, an attacker could...

Low: Red Hat Security Advisory: libcdio security update

An update for libcdio is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

DEBIAN-CVE-2017-18201

An issue was discovered in GNU libcdio before 2.0.0. There is a double free in getcdtextgeneric in lib/driver/cdiogeneric.c...

DEBIAN-CVE-2007-6613

Stack-based buffer overflow in the printiso9660recurse function in iso-info src/iso-info.c in GNU Compact Disc Input and Control Library libcdio 0.79 and earlier allows context-dependent attackers to cause a denial of service core dump and possibly execute arbitrary code via a disk or image that...