libass
| Link | package | bugs open | bugs closed | Wiki | GitHub | web search |
| Description | A portable library for SSA/ASS subtitles rendering |
| Version | 0.17.4-1 [extra] |
Resolved
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-1285 | 0.14.0-2 | 0.15.0-1 | Medium | Fixed |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2020-26682 | AVG-1285 | Medium | No | Arbitrary code execution | In libass 0.14.0, the ass_outline_construct's call to outline_stroke causes a signed integer overflow. |
Advisories
| Date | Advisory | Group | Severity | Type |
|---|---|---|---|---|
| 19 Nov 2020 | ASA-202011-19 | AVG-1285 | Medium | arbitrary code execution |