Advisories ยป MGASA-2015-0333

Updated audit packages fix security vulnerability

Publication date: 30 Aug 2015
Type: security
Affected Mageia releases : 4 , 5
CVE: CVE-2015-5186

Description

When auditing the filesystem the names of files are logged. These filenames
can contain escape sequences, when viewed using the ausearch programs "-i"
option for example this can result in the escape sequences being processed
unsafely by the terminal program being used to view the data (CVE-2015-5186).
                

References

SRPMS

5/core

4/core