Advisories » MGASA-2023-0258

Updated unrar packages fix security vulnerability

Publication date: 11 Sep 2023
Type: security
Affected Mageia releases : 8 , 9
CVE: CVE-2023-40477

Description

Recovery Volume Improper Validation of Array Index Remote Code Execution
Vulnerability. (CVE-2023-40477)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=32205
• https://www.debian.org/lts/security/2023/dla-3535
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40477

SRPMS

9/nonfree

• unrar-6.23-1.mga9.nonfree

8/nonfree

• unrar-6.23-1.mga8.nonfree