Updated libidn2 packages fix security vulnerabilities
Publication date: 31 Dec 2019Modification date: 31 Dec 2019
Type: security
Affected Mageia releases : 7
CVE: CVE-2019-12290 , CVE-2019-18224
Description
Updated libidn2 packages fix security vulnerabilities: It was discovered that Libidn2 incorrectly handled certain inputs. A attacker could possibly use this issue to impersonate domains (CVE-2019-12290). It was discovered that Libidn2 incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code (CVE-2019-18224).
References
SRPMS
7/core
- libidn2-2.2.0-1.mga7