Advisories » MGASA-2017-0442

Updated libxfont/libxfont2 packages fix security vulnerability

Publication date: 06 Dec 2017
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2017-16611

Description

Fixes open files with O_NOFOLLOW. (CVE-2017-16611)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=22101
• https://usn.ubuntu.com/usn/usn-3500-1/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16611

SRPMS

6/core

• libxfont-1.5.2-1.2.mga6
• libxfont2-2.0.1-4.2.mga6

5/core

• libxfont-1.5.1-1.2.mga5