Updated libquicktime packages fix security vulnerability
Publication date: 25 Mar 2017Modification date: 25 Mar 2017
Type: security
Affected Mageia releases : 5
CVE: CVE-2016-2399
Description
Integer overflow in the quicktime_read_pascal function in libquicktime
1.2.4 and earlier allows remote attackers to cause a denial of service or
possibly have other unspecified impact via a crafted hdlr MP4 atom.
(CVE-2016-2399)
References
SRPMS
5/core
- libquicktime-1.2.4-10.1.mga5
5/tainted
- libquicktime-1.2.4-10.1.mga5.tainted