Ubuntu Security Notice USN-5671-1

=========================================================================Ubuntu Security Notice USN-5671-1October 12, 2022advancecomp vulnerabilities=========================================================================A security issue affects these releases of Ubuntu and its derivatives:- Ubuntu 18.04 LTS- Ubuntu 16.04 ESMSummary:Several security issues were fixed in AdvanceCOMP.Software Description:- advancecomp: collection of recompression utilitiesDetails:It was discovered that AdvanceCOMP did not properly manage memory of functionbe_uint32_read() under certain circumstances. If a user were tricked intoopening a specially crafted binary file, a remote attacker could possibly usethis issue to cause AdvanceCOMP to crash, resulting in a denial of service.(CVE-2019-8379)It was discovered that AdvanceCOMP did not properly manage memory of functionadv_png_unfilter_8() under certain circumstances. If a user were tricked intoopening a specially crafted PNG file, a remote attacker could possibly use thisissue to cause AdvanceCOMP to crash, resulting in a denial of service.(CVE-2019-8383)Update instructions:The problem can be corrected by updating your system to the followingpackage versions:Ubuntu 18.04 LTS:  advancecomp                     2.1-1ubuntu0.18.04.2Ubuntu 16.04 ESM:  advancecomp                     1.20-1ubuntu0.2+esm1In general, a standard system update will make all the necessary changes.References:  https://ubuntu.com/security/notices/USN-5671-1  CVE-2019-8379, CVE-2019-8383Package Information:  https://launchpad.net/ubuntu/+source/advancecomp/2.1-1ubuntu0.18.04.2