Advisories » MGASA-2017-0157

Updated gc packages fix security vulnerability

Publication date: 08 Jun 2017
Modification date: 08 Jun 2017
Type: security
Affected Mageia releases : 5
CVE: CVE-2016-9427

Description

Kuang-che Wu discovered that multiple integer overflow vulnerabilities
existed in libgc. An attacker could use these to cause a denial of service
(application crash) or possibly execute arbitrary code (CVE-2016-9427).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=19844
• https://www.ubuntu.com/usn/usn-3197-1/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9427

SRPMS

5/core

• gc-7.4.2-3.1.mga5