Bugzilla – Bug 1137828
VUL-0: CVE-2018-19800: aubio: Buffer Overflow
Last modified: 2019-07-03 08:28:07 UTC
CVE-2018-19800 aubio v0.4.0 to v0.4.8 has a Buffer Overflow (issue 1 of 3). References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-19800 http://people.canonical.com/~ubuntu-security/cve/2018/CVE-2018-19800.html http://www.cvedetails.com/cve/CVE-2018-19800/ http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19800 https://github.com/aubio/aubio/blob/0.4.9/ChangeLog
Again, there is no information at all... A possible match in the commit is b1559f4c9ce2b304d8d27ffdc7128b6795ca82e5 [tempo] fix buffer overflow in method parser
The fix is submitted to Leap 42.3, Leap 15.0 and Leap 15.1. Reassigned back to security team.
This is an autogenerated message for OBS integration: This bug (1137828) was mentioned in https://build.opensuse.org/request/show/709475 15.0 / aubio https://build.opensuse.org/request/show/709476 15.1 / aubio https://build.opensuse.org/request/show/709513 42.3 / aubio
openSUSE-SU-2019:1618-1: An update that fixes three vulnerabilities is now available. Category: security (moderate) Bug References: 1137822,1137823,1137828 CVE References: CVE-2018-19800,CVE-2018-19801,CVE-2018-19802 Sources used: openSUSE Leap 42.3 (src): aubio-0.4.1-9.13.1 openSUSE Leap 15.1 (src): aubio-0.4.6-lp151.6.3.1, python-aubio-0.4.6-lp151.6.3.1 openSUSE Leap 15.0 (src): aubio-0.4.6-lp150.3.10.1, python-aubio-0.4.6-lp150.3.10.1
openSUSE-SU-2019:1624-1: An update that fixes three vulnerabilities is now available. Category: security (moderate) Bug References: 1137822,1137823,1137828 CVE References: CVE-2018-19800,CVE-2018-19801,CVE-2018-19802 Sources used: openSUSE Backports SLE-15 (src): aubio-0.4.6-bp150.3.12.1, python-aubio-0.4.6-bp150.3.12.1
relreased