Security update for discount
This update for discount to version 2.2.4 fixes the following issues:
Security issues fixed:
- CVE-2018-11468: Fixed a heap-based buffer over-read in the __mkd_trim_line function from mkdio.c (boo#1094809)
- CVE-2018-12495: Fixed a heap-based buffer over-read via a crafted file (boo#1098252)
-
Submitted by
Martin Pluskal (pluskalm)
Fixed bugs
bnc#1094809
VUL-0: CVE-2018-11468: discount: heap-based buffer over-read __mkd_trim_line function in mkdio.c
bnc#1098252
VUL-0: CVE-2018-12495: discount: heap-based buffer over-read via a crafted file
