| Package | libcaca |
|---|---|
| Version | 0.99.beta19-2+deb8u3 (jessie), 0.99.beta19-2.2+deb9u3 (stretch) |
| Related CVEs | CVE-2021-30498 CVE-2021-30499 |
Two issues have been found in libcaca, a colour ASCII art library. Both are related to heap buffer overflow, which might lead to memory corruption.
For Debian 8 jessie, these problems have been fixed in version 0.99.beta19-2+deb8u3.
For Debian 9 stretch, these problems have been fixed in version 0.99.beta19-2.2+deb9u3.
We recommend that you upgrade your libcaca packages.
Further information about Extended LTS security advisories can be found in the dedicated section of our website.