Security
Security
A vulnerability has been discovered in libcaca which can lead to arbitrary code execution.
| Package | media-libs/libcaca on all architectures |
|---|---|
| Affected versions | < 0.99_beta19-r4 |
| Unaffected versions | >= 0.99_beta19-r4 |
libcaca is a library that creates colored ASCII-art graphics.
A vulnerability has been discovered in libcaca. Please review the CVE identifier referenced below for details.
A buffer overflow issue in caca_resize function in libcaca/caca/canvas.c may lead to local execution of arbitrary code in the user context.
There is no known workaround at this time.
All libcaca users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=media-libs/libcaca-0.99_beta19-r4"
Release date
February 18, 2024
Latest revision
February 18, 2024: 1
Severity
normal
Exploitable
remote
Bugzilla entries