[Bug 1201770] VUL-0: CVE-2014-9862: libostree: bundled bsdiff Improper checking of input allows arbitrary write on heap

https://bugzilla.suse.com/show_bug.cgi?id=1201770 https://bugzilla.suse.com/show_bug.cgi?id=1201770#c11 --- Comment #11 from Swamp Workflow Management --- SUSE-SU-2022:3094-1: An update that fixes one vulnerability is now available. Category: security (important) Bug References: 1201770 CVE References: CVE-2014-9862 JIRA References: Sources used: openSUSE Leap 15.4 (src): libostree-2021.6-150400.3.3.1 SUSE Linux Enterprise Module for Desktop Applications 15-SP4 (src): libostree-2021.6-150400.3.3.1 SUSE Linux Enterprise Module for Basesystem 15-SP4 (src): libostree-2021.6-150400.3.3.1 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination. -- You are receiving this mail because: You are on the CC list for the bug.