Updated squashfs-tools packages fix security vulnerabilities
Publication date: 08 Sep 2015Modification date: 08 Sep 2015
Type: security
Affected Mageia releases : 4 , 5
CVE: CVE-2015-4645 , CVE-2015-4646
Description
Updated squashfs-tools package fixes security vulnerabilities: The unsquashfs command from squashfs-tools is vulnerable to integer (CVE-2015-4645) and stack (CVE-2015-4646) overflows.
References
SRPMS
4/core
- squashfs-tools-4.2-7.1.mga4
5/core
- squashfs-tools-4.3-4.1.mga5