Updated augeas packages fix security vulnerability
Publication date: 24 Aug 2017Modification date: 24 Aug 2017
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2017-7555
Description
A vulnerability was discovered in augeas affecting the handling of escaped strings. An attacker could send crafted strings that would cause the application using augeas to copy past the end of a buffer, leading to a crash or possible code execution (CVE-2017-7555).
References
SRPMS
5/core
- augeas-1.2.0-3.1.mga5
6/core
- augeas-1.8.0-1.1.mga6