User: Password:
|
|
Subscribe / Log in / New account

Mageia alert MGASA-2014-0073 (cxxtols)

From:  Mageia Updates <buildsystem-daemon@mageia.org>
To:  updates-announce@ml.mageia.org
Subject:  [updates-announce] MGASA-2014-0073: Updated cxxtols package fixes security issue
Date:  Sun, 16 Feb 2014 14:09:36 +0100
Message-ID:  <20140216130936.7FFD95C6A9@valstar.mageia.org>

MGASA-2014-0073 - Updated cxxtols package fixes security issue Publication date: 16 Feb 2014 URL: http://advisories.mageia.org/MGASA-2014-0073.html Type: security Affected Mageia releases: 4 CVE: CVE-2013-7298 Description: A flaw in cxxtools version 2.2 allows remote attackers to cause a denial of service (infinite recursion and crash) via an HTTP query that contains %% (double percent) characters (CVE-2013-7298). This update fixes the vulnerability. References: - https://bugs.mageia.org/show_bug.cgi?id=12691 - http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7298 SRPMS: - 4/core/cxxtools-2.2-2.1.mga4


(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds