ALT-PU-2026-1048-1

Package update libcdio in branch sisyphus_loongarch64

Version2.3.0-alt1

Task#0

Published2026-01-03

Max severityHIGH

Severity:

Closed issues (2)

HIGH7.3

Уязвимость компонента ISO 9660 Image File Handler библиотеки libcdio, позволяющая нарушителю выполнить произвольный код

Published: 2024-07-02Modified: 2026-01-27

CVSS 3.xHIGH 7.3

CVSS:3.x/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L

CVSS 2.0MEDIUM 6.8

CVSS:2.0/AV:L/AC:L/Au:N/C:C/I:C/A:P

References

CVE-2024-36600

HIGH8.4

Buffer Overflow Vulnerability in libcdio 2.2.0 (fixed in 2.3.0) allows an attacker to execute arbitrary code via a crafted ISO 9660 image file.

Published: 2024-06-14Modified: 2026-03-09

CVSS 3.xHIGH 8.4

CVSS:3.x/CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References