Advisories ยป MGASA-2022-0143

Updated ruby packages fix security vulnerability

Publication date: 15 Apr 2022
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-28738 , CVE-2022-28739

Description

Double free in Regexp compilation (CVE-2022-28738).
A buffer overrun was found in String-to-Float conversion (CVE-2022-28739).
                

References

SRPMS

8/core