https://bugzilla.suse.com/show_bug.cgi?id=1190121 Bug ID: 1190121 Summary: VUL-0: CVE-2021-32732: gtkpod: Stack overflow in embedded AtomicParsley code APar_read64 Classification: openSUSE Product: openSUSE Distribution Version: Leap 15.3 Hardware: Other URL: https://smash.suse.de/issue/308824/ OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: os.gnome.maintainers@gmail.com Reporter: gabriele.sonnu@suse.com QA Contact: qa-bugs@suse.de Found By: --- Blocker: --- gtkpod embeds a vulnerable version of AtomicParsley which causes a stack overflow, however the data file used to test atomicparsley upstream is not recognised by gtkpod. References: https://github.com/wez/atomicparsley/issues/32 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=993376 References: https://bugzilla.redhat.com/show_bug.cgi?id=1999793 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-32732 -- You are receiving this mail because: You are on the CC list for the bug.