CVE-2022-1515: A memory leak was discovered in matio 1.5.21 and earlier in Mat_VarReadNextInfo5() in mat5.c via a crafted file. This issue can potentially result in DoS. Patch: https://github.com/tbeu/matio/commit/b53b62b756920f4c1509f4ee06427f66c3b5c9c4 Please bump to at least 1.5.22.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=487b3fc529cfde6265e6c10ba0a2b1ea51f82a17 commit 487b3fc529cfde6265e6c10ba0a2b1ea51f82a17 Author: Andrew Ammerlaan <andrewammerlaan@gentoo.org> AuthorDate: 2022-05-09 17:00:50 +0000 Commit: Andrew Ammerlaan <andrewammerlaan@gentoo.org> CommitDate: 2022-05-09 17:19:28 +0000 sci-libs/matio: drop 1.5.21 Bug: https://bugs.gentoo.org/842258 Bug: https://bugs.gentoo.org/803131 Signed-off-by: Andrew Ammerlaan <andrewammerlaan@gentoo.org> sci-libs/matio/Manifest | 1 - sci-libs/matio/matio-1.5.21.ebuild | 46 -------------------------------------- 2 files changed, 47 deletions(-) https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=b978a17ecb4e1ccd62317d664e9af15fb3034f24 commit b978a17ecb4e1ccd62317d664e9af15fb3034f24 Author: Andrew Ammerlaan <andrewammerlaan@gentoo.org> AuthorDate: 2022-05-09 17:00:15 +0000 Commit: Andrew Ammerlaan <andrewammerlaan@gentoo.org> CommitDate: 2022-05-09 17:19:27 +0000 sci-libs/matio: add 1.5.23 Bug: https://bugs.gentoo.org/842258 Bug: https://bugs.gentoo.org/803131 Signed-off-by: Andrew Ammerlaan <andrewammerlaan@gentoo.org> sci-libs/matio/Manifest | 1 + sci-libs/matio/matio-1.5.23.ebuild | 46 ++++++++++++++++++++++++++++++++++++++ 2 files changed, 47 insertions(+)
Thanks, all done!