Greetings,
There is 1-Click RCE on GNOME Coordinated Disclosure: 1-Click RCE on GNOME (CVE-2023-43641) - The GitHub Blog for libcue v2.2.1
.
It has been fixed about 8 hours ago in v2.3.0
, with fairly simple fix:
diff --git a/cd.c b/cd.c
index cf77a18..4bbea19 100644
--- a/cd.c
+++ b/cd.c
@@ -339,7 +339,7 @@ track_get_rem(const Track* track)
void track_set_index(Track *track, int i, long ind)
{
- if (i > MAXINDEX) {
+ if (i < 0 || i > MAXINDEX) {
fprintf(stderr, "too many indexes\n");
return;
}