Advisories ยป MGASA-2015-0361

Updated xfsprogs packages fix CVE-2012-2150

Publication date: 13 Sep 2015
Type: security
Affected Mageia releases : 5
CVE: CVE-2012-2150

Description

Updated xfsprogs packages fix security vulnerability:

xfs_metadump in xfsprogs before 3.2.4 does not properly obfuscate file data,
which allows remote attackers to obtain sensitive information by reading a
generated image (CVE-2012-2150).
                

References

SRPMS

5/core