Advisories ยป MGASA-2014-0439

Updated [package] package fix CVE-2014-3710

Publication date: 31 Oct 2014
Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2014-3710

Description

Updated file packages fix security vulnerability:

An out-of-bounds read flaw was found in file's donote() function in the way
the file utility determined the note headers of a elf file. This could
possibly lead to file executable crash (CVE-2014-3710).
                

References

SRPMS

3/core

4/core