Advisories » MGASA-2024-0257

Updated znc packages fix security vulnerability

Publication date: 05 Jul 2024
Modification date: 05 Jul 2024
Type: security
Affected Mageia releases : 9
CVE: CVE-2024-39844

Description

In ZNC before 1.9.1, remote code execution can occur in modtcl via a
KICK. (CVE-2024-39844)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=33364
• https://www.openwall.com/lists/oss-security/2024/07/03/9
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39844

SRPMS

9/core

• znc-1.8.2-21.1.mga9