Updated polarssl packages fix CVE-2015-1182
Publication date: 09 Feb 2015Modification date: 09 Feb 2015
Type: security
Affected Mageia releases : 4
CVE: CVE-2015-1182
Description
Updated polarssl packages fix security vulnerability:
A vulnerability was discovered in PolarSSL in its certificate parser. A remote
attacker could exploit this flaw using specially crafted certificates to mount
a denial of service against an application linked against the library
(application crash), or potentially, to execute arbitrary code
(CVE-2015-1182).
References
SRPMS
4/core
- polarssl-1.3.9-1.1.mga4