USN-4523-1: LibOFX vulnerability
21 September 2020
LibOFX could be made to crash.
- libofx - client-side implementation of Open Financial Exchange specification
It was discovered that LibOFX did not properly check for errors in certain
situations, leading to a NULL pointer dereference. A remote attacker could
use this issue to cause a denial of service attack. (CVE-2019-9656)
The problem can be corrected by updating your system to the following package versions:
In general, a standard system update will make all the necessary changes.