Advisories ยป MGASA-2014-0340

Updated gpgme packages fix CVE-2014-3564

Publication date: 21 Aug 2014
Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2014-3564

Description

Updated gpgme packages fix security vulnerability:

A heap-based buffer overflow in gpgme before 1.5.1 could allow a specially
crafted certificate to cause crashes or potentially cause arbitrary code
execution (CVE-2014-3564).
                

References

SRPMS

4/core

3/core