Advisories ยป MGASA-2019-0007

Updated units package fixes security vulnerability

Publication date: 05 Jan 2019
Modification date: 05 Jan 2019
Type: security
Affected Mageia releases : 6

Description

A flaw was found in units. units_cur doesn't sanitize downloaded data.
This allows a maliciously intended server to execute arbitrary code
remotely on the client (rhbz#1598913).

References

SRPMS

6/core