Updated mxml packages fix security vulnerabilityPublication date: 04 Apr 2017
Affected Mageia releases : 5
CVE: CVE-2016-4570 , CVE-2016-4571
Two stack exhaustion issues based on uncontrolled recursion were found in mxml. A maliciously crafted xml file can cause the application to crash. * Recursion using mxmlDelete at mxml-node.c:217 (reproducer is stack-exhaustion-1.xml CVE-2016-4570). * Recursion using mxml_write_node at mxml-file.c:2739 (reproducer is stack-exhaustion-2.xml CVE-2016-4571).