|
|
Subscribe / Log in / New account

Mageia alert MGASA-2016-0348 (openslp)



From:
    	      Mageia Updates <buildsystem-daemon@mageia.org> 


To:
    	      updates-announce@ml.mageia.org 


Subject:
    	      [updates-announce] MGASA-2016-0348: Updated openslp packages fix security vulnerability 


Date:
    	      Fri, 21 Oct 2016 00:35:45 +0200


Message-ID:
    	      <20161020223545.9D6C79F7A0@duvel.mageia.org>


MGASA-2016-0348 - Updated openslp packages fix security vulnerability

Publication date: 20 Oct 2016
URL: http://advisories.mageia.org/MGASA-2016-0348.html
Type: security
Affected Mageia releases: 5
CVE: CVE-2016-7567

Description:
A memory corruption bug was present in openslp due to lack of bounds 
checking in SLPFoldWhiteSpace() (CVE-2016-7567).

References:
- https://bugs.mageia.org/show_bug.cgi?id=19479
- http://openwall.com/lists/oss-security/2016/09/27/4
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7567

SRPMS:
- 5/core/openslp-2.0.0-5.2.mga5
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds