{"id":"MGASA-2019-0050","summary":"Updated libcaca packages fix security vulnerabilities","details":"It was discovered that libcaca incorrectly handled certain images. An\nattacker could possibly use this issue to cause a denial of service\n(CVE-2018-20544).\n\nIt was discovered that libcaca incorrectly handled certain images. An\nattacker could possibly use this issue to execute arbitrary code\n(CVE-2018-20545, CVE-2018-20548, CVE-2018-20459).\n\nIt was discovered that libcaca incorrectly handled certain images. An\nattacker could possibly use this issue to access sensitive information\n(CVE-2018-20546, CVE-2018-20547).\n","modified":"2026-04-16T04:41:19.288885133Z","published":"2019-01-23T15:50:09Z","upstream":["CVE-2018-20544","CVE-2018-20545","CVE-2018-20546","CVE-2018-20547","CVE-2018-20548","CVE-2018-20549"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2019-0050.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=24208"},{"type":"WEB","url":"https://usn.ubuntu.com/3860-1/"}],"affected":[{"package":{"name":"libcaca","ecosystem":"Mageia:6","purl":"pkg:rpm/mageia/libcaca?arch=source&distro=mageia-6"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.99-0.beta18.13.1.mga6"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2019-0050.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}