<!DOCTYPE html> <html> <head> <meta http-equiv="content-type" content="text/html; charset=UTF-8"> </head> <body> ========================================================================== Ubuntu Security Notice USN-7198-1 January 10, 2025 rlottie vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS Summary: Several security issues were fixed in rlottie. Software Description: - rlottie: library for rendering vector based animations and art Details: Paolo Giai discovered a series of stack-based overflow vulnerabilities in the blit and gray_render_cubic functions of a custom fork of the rlottie library. An attacker could possibly use this issue to leak sensitive information. This issue only affected Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. (CVE-2021-31315, CVE-2021-31321) Paolo Giai discovered a series of type confusion vulnerabilities in the VDasher constructor and the <a class="moz-txt-link-freetext" href="LOTCompLayerItem::LOTCompLayer">LOTCompLayerItem::LOTCompLayer</a>Item function of a custom fork of the rlottie library. An attacker could possibly use this issue to leak sensitive information. This issue only affected Ubuntu 20.04 LTS. (CVE-2021-31317, CVE-2021-31318) Paolo Giai discovered an integer overflow vulnerability in the <a class="moz-txt-link-freetext" href="LOTGradient::populate">LOTGradient::populate</a> function of a custom fork of the rlottie library. An attacker could possibly use this issue to leak sensitive information. This issue only affected Ubuntu 20.04 LTS. (CVE-2021-31319) Paolo Giai discovered a series of heap buffer overflow vulnerabilities in the <a class="moz-txt-link-freetext" href="VGradientCache::generateGradie">VGradientCache::generateGradie</a>ntColorTable and <a class="moz-txt-link-freetext" href="LOTGradient::populate">LOTGradient::populate</a> functions of a custom fork of the rlottie library. </body> </html>