USN-6423-2: CUE vulnerability
17 October 2023
CUE could be made to execute arbitrary code if it received a specially crafted file.
- libcue - CUE Sheet Parser Library - development files
USN-6423-1 fixed a vulnerability in CUE. This update provides the
corresponding updates for Ubuntu 23.10.
Original advisory details:
It was discovered that CUE incorrectly handled certain files.
An attacker could possibly use this issue to expose sensitive
information or execute arbitrary code.
- USN-6423-1: libcue, libcue2, libcue-dev