Advisories ยป MGASA-2015-0161

Updated potrace packages fix CVE-2013-7437

Publication date: 18 Apr 2015
Modification date: 18 Apr 2015
Type: security
Affected Mageia releases : 4
CVE: CVE-2013-7437

Description

Updated potrace packages fix security vulnerability:

Multiple integer overflows in potrace 1.11 allow remote attackers to cause a
denial of service (crash) via large dimensions in a BMP image, which triggers
a buffer overflow (CVE-2013-7437).
                

References

SRPMS

4/core