Security update for libcdio (low)

ID OPENSUSE-SU-2018:2294-1
Type suse
Reporter Suse
Modified 2018-08-10T03:15:10


This update for libcdio fixes the following issues:

The following security vulnerabilities were addressed:

  • CVE-2017-18199: Fixed a NULL pointer dereference in realloc_symlink in rock.c (bsc#1082821)
  • CVE-2017-18201: Fixed a double free vulnerability in get_cdtext_generic() in _cdio_generic.c (bsc#1082877)
  • Fixed several memory leaks (bsc#1082821)

This update was imported from the SUSE:SLE-15:Update update project.