AVG-1285 log

Package libass
Status Fixed
Severity Medium
Type arbitrary code execution
Affected 0.14.0-2
Fixed 0.15.0-1
Current 0.17.1-1 [extra]
Ticket None
Created Thu Nov 19 18:57:19 2020
Issue Severity Remote Type Description
CVE-2020-26682 Medium No Arbitrary code execution
In libass 0.14.0, the ass_outline_construct's call to outline_stroke causes a signed integer overflow.
Date Advisory Package Type
19 Nov 2020 ASA-202011-19 libass arbitrary code execution