Advisories » MGASA-2017-0155

Updated menu-cache packages fix security vulnerability

Publication date: 03 Jun 2017
Modification date: 03 Jun 2017
Type: security
Affected Mageia releases : 5
CVE: CVE-2017-8933

Description

Libmenu-cache 1.0.2 insecurely uses /tmp for a socket file, allowing a
local user to cause a denial of service (menu unavailability).
(CVE-2017-8933)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=20865
• http://openwall.com/lists/oss-security/2017/05/15/3
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8933

SRPMS

5/core

• menu-cache-1.0.0-5.1.mga5