Advisories ยป MGASA-2017-0070

Updated ming packages fix security vulnerability

Publication date: 03 Mar 2017
Type: security
Affected Mageia releases : 5
CVE: CVE-2016-9264 , CVE-2016-9265 , CVE-2016-9266 , CVE-2016-9827 , CVE-2016-9828 , CVE-2016-9829 , CVE-2016-9831

Description

Global-buffer-overflow in printMP3Headers. (CVE-2016-9264)

Divide-by-zero in printMP3Headers. (CVE-2016-9265)

Left shift in listmp3.c. (CVE-2016-9266)

Heap-based buffer overflow in _iprintf. (CVE-2016-9827)

NULL pointer dereference in dumpBuffer. (CVE-2016-9828)

Heap-based buffer overflow in parseSWF_DEFINEFONT. (CVE-2016-9829)

Heap-based buffer overflow in parseSWF_RGBA. (CVE-2016-9831)
                

References

SRPMS

5/core