Advisories » MGASA-2015-0299

Updated remind package fixes security vulnerability

Publication date: 01 Aug 2015
Modification date: 07 Aug 2015
Type: security
Affected Mageia releases : 4 , 5
CVE: CVE-2015-5957

Description

Buffer overflow in remind before 3.1.15 in the DumpSysVar() function in
src/var.c.
                

References

• https://bugs.mageia.org/show_bug.cgi?id=16495
• http://openwall.com/lists/oss-security/2015/07/29/2
• http://lists.roaringpenguin.com/pipermail/remind-fans/2015/003172.html
• http://openwall.com/lists/oss-security/2015/08/07/1
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5957

SRPMS

5/core

• remind-03.01.13-4.1.mga5

4/core

• remind-03.01.13-2.1.mga4