advisories/24208.adv

type: security
subject: Updated libcaca packages fix security vulnerabilities
CVE:
 - CVE-2018-20544
 - CVE-2018-20545
 - CVE-2018-20546
 - CVE-2018-20547
 - CVE-2018-20548
 - CVE-2018-20549
src:
  6:
   core:
     - libcaca-0.99-0.beta18.13.1.mga6
description: |
  It was discovered that libcaca incorrectly handled certain images. An
  attacker could possibly use this issue to cause a denial of service
  (CVE-2018-20544).

  It was discovered that libcaca incorrectly handled certain images. An
  attacker could possibly use this issue to execute arbitrary code
  (CVE-2018-20545, CVE-2018-20548, CVE-2018-20459).

  It was discovered that libcaca incorrectly handled certain images. An
  attacker could possibly use this issue to access sensitive information
  (CVE-2018-20546, CVE-2018-20547).
references:
 - https://bugs.mageia.org/show_bug.cgi?id=24208
 - https://usn.ubuntu.com/3860-1/
ID: MGASA-2019-0050
1	type: security
2	subject: Updated libcaca packages fix security vulnerabilities
3	CVE:
4	- CVE-2018-20544
5	- CVE-2018-20545
6	- CVE-2018-20546
7	- CVE-2018-20547
8	- CVE-2018-20548
9	- CVE-2018-20549
10	src:
11	6:
12	core:
13	- libcaca-0.99-0.beta18.13.1.mga6
14	description: \|
15	It was discovered that libcaca incorrectly handled certain images. An
16	attacker could possibly use this issue to cause a denial of service
17	(CVE-2018-20544).
18
19	It was discovered that libcaca incorrectly handled certain images. An
20	attacker could possibly use this issue to execute arbitrary code
21	(CVE-2018-20545, CVE-2018-20548, CVE-2018-20459).
22
23	It was discovered that libcaca incorrectly handled certain images. An
24	attacker could possibly use this issue to access sensitive information
25	(CVE-2018-20546, CVE-2018-20547).
26	references:
27	- https://bugs.mageia.org/show_bug.cgi?id=24208
28	- https://usn.ubuntu.com/3860-1/
29	ID: MGASA-2019-0050