Advisories » MGASA-2015-0307

Updated libunwind package fixes security vulnerability

Publication date: 10 Aug 2015
Modification date: 10 Aug 2015
Type: security
Affected Mageia releases : 4 , 5
CVE: CVE-2015-3239

Description

An invalid DW_OP_bregXX opcodes can access dwarf_to_unw_regnum_map one
item past the end (CVE-2015-3239).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=16375
• https://lists.fedoraproject.org/pipermail/package-announce/2015-July/162200.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3239

SRPMS

4/core

• libunwind-1.1-2.1.mga4

5/core

• libunwind-1.1-4.1.mga5