CVE-2017-6011

Priority
Description
An issue was discovered in icoutils 0.31.1. An out-of-bounds read leading
to a buffer overflow was observed in the "simple_vec" function in the
"extract.c" source file. This affects icotool.
Notes
mdeslaursame fixes as CVE-2017-6010
Package
Upstream:released (0.31.2-1)
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was released [0.29.1-2ubuntu0.2])
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was released [0.31.0-2+deb8u3build0.14.04.1])
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (0.31.2-1)
Ubuntu 19.04 (Disco Dingo):not-affected (0.31.2-1)
Ubuntu 19.10 (Eoan Ermine):not-affected (0.31.2-1)
Ubuntu 20.04 (Focal Fossa):not-affected (0.31.2-1)
Patches:
Upstream:http://git.savannah.gnu.org/cgit/icoutils.git/commit/?id=bf97b99109607d4367a4e57df9a37cbcac02e220
Upstream:http://git.savannah.gnu.org/cgit/icoutils.git/commit/?id=45a0207225df4cd4b82f41eee636e21f11a7db74
More Information

Updated: 2019-12-05 19:48:47 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)