Source: kodi Version: 2:19.3+dfsg1-1 Severity: important Tags: security upstream Forwarded: https://github.com/xbmc/xbmc/issues/20305 X-Debbugs-Cc: car...@debian.org, Debian Security Team <t...@security.debian.org>
Hi, The following vulnerability was published for kodi. CVE-2021-42917[0]: | Buffer overflow vulnerability in Kodi xbmc up to 19.0, allows | attackers to cause a denial of service due to improper length of | values passed to istream. If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2021-42917 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42917 [1] https://github.com/xbmc/xbmc/issues/20305 [2] https://github.com/xbmc/xbmc/commit/80c8138c09598e88b4ddb6dbb279fa193bbb3237 Please adjust the affected versions in the BTS as needed. Regards, Salvatore
