openSUSE Security Update : libcdio (openSUSE-2018-857)
High Nessus Plugin ID 111638
SynopsisThe remote openSUSE host is missing a security update.
DescriptionThis update for libcdio fixes the following issues :
The following security vulnerabilities were addressed :
- CVE-2017-18199: Fixed a NULL pointer dereference in realloc_symlink in rock.c (bsc#1082821)
- CVE-2017-18201: Fixed a double free vulnerability in get_cdtext_generic() in _cdio_generic.c (bsc#1082877)
- Fixed several memory leaks (bsc#1082821)
This update was imported from the SUSE:SLE-15:Update update project.
SolutionUpdate the affected libcdio packages.