Advisories » MGASA-2023-0048

Updated editorconfig-core-c packages fix security vulnerability

Publication date: 14 Feb 2023
Modification date: 14 Feb 2023
Type: security
Affected Mageia releases : 8
CVE: CVE-2023-0341

Description

Mark Esler and David Fernandez Gonzalez discovered that EditorConfig Core
C incorrectly handled memory when handling certain inputs. An attacker
could possibly use this issue to cause applications using EditorConfig
Core C to crash, resulting in a denial of service, or possibly execute
arbitrary code. (CVE-2023-0341)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=31516
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0341

SRPMS

8/core

• editorconfig-core-c-0.12.6-1.mga8