Updated libidn2 packages fix security vulnerabilities
Publication date: 31 Dec 2019Modification date: 31 Dec 2019
Type: security
Affected Mageia releases : 7
CVE: CVE-2019-12290 , CVE-2019-18224
Description
Updated libidn2 packages fix security vulnerabilities:
It was discovered that Libidn2 incorrectly handled certain inputs.
A attacker could possibly use this issue to impersonate domains
(CVE-2019-12290).
It was discovered that Libidn2 incorrectly handled certain inputs.
An attacker could possibly use this issue to execute arbitrary code
(CVE-2019-18224).
References
SRPMS
7/core
- libidn2-2.2.0-1.mga7