{"id":"MGASA-2020-0008","summary":"Updated advancecomp packages fix security vulnerability","details":"Updated advancecomp package fixes security vulnerability:\n\nAn issue was discovered in AdvanceCOMP through 2.1. An invalid memory address\noccurs in the function adv_png_unfilter_8 in lib/png.c. It can be triggered by\nsending a crafted file to a binary. It allows an attacker to cause a Denial of\nService (Segmentation fault) or possibly have unspecified other impact when a\nvictim opens a specially crafted file (CVE-2019-8383).\n","modified":"2026-02-04T03:31:33.980827Z","published":"2020-01-05T15:37:51Z","related":["CVE-2019-8383"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2020-0008.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=25908"},{"type":"REPORT","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/J23C6QSTJMQ467KAI6QG54AE4MZRLPQV/"}],"affected":[{"package":{"name":"advancecomp","ecosystem":"Mageia:7","purl":"pkg:rpm/mageia/advancecomp?arch=source&distro=mageia-7"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.1-4.1.mga7"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2020-0008.json"}}],"schema_version":"1.7.3","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}