Package libspiro updated to version 20240903-alt1_1 for branch c10f2 in task 394443.

Published: 2019-12-17
Modified: 2024-11-21

CVE-2019-19847

Libspiro through 20190731 has a stack-based buffer overflow in the spiro_to_bpath0() function in spiro.c.

Severity: MEDIUM (6.8) Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Severity: HIGH (8.1) Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

libspiro: please, update to 20200505

Version: 2.1.2

Package libspiro update in c10f2 on 2025-09-15