Updated expat package fixes security vulnerability
Publication date: 27 Jul 2015Modification date: 27 Jul 2015
Type: security
Affected Mageia releases : 4 , 5
CVE: CVE-2015-1283
Description
Multiple integer overflows in the XML_GetBuffer function in Expat through 2.1.0 allow remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted XML data (CVE-2015-1283).
References
SRPMS
5/core
- expat-2.1.0-9.1.mga5
4/core
- expat-2.1.0-7.1.mga4