Advisories ยป MGASA-2015-0060

Updated hivex packages fix CVE-2014-9273

Publication date: 11 Feb 2015
Modification date: 11 Feb 2015
Type: security
Affected Mageia releases : 4
CVE: CVE-2014-9273

Description

Updated hivex packages fix security vulnerability:

lib/handle.c in Hivex before 1.3.11 allows local users to execute arbitrary
code and gain privileges via a small hive files, which triggers an
out-of-bounds read or write (CVE-2014-9273).

References

SRPMS

4/core