Updated zookeeper packages fix security vulnerability
Publication date: 28 Sep 2016Type: security
Affected Mageia releases : 5
CVE: CVE-2016-5017
Description
Lyon Yang discovered that the C client shells cli_st and cli_mt of Apache Zookeeper were affected by a buffer overflow vulnerability associated with parsing of the input command when using the "cmd:" batch mode syntax. If the command string exceeds 1024 characters a buffer overflow will occur (CVE-2016-5017).
References
SRPMS
5/core
- zookeeper-3.4.5-25.1.mga5