Advisories ยป MGASA-2017-0221

Updated gsoap packages fix security vulnerability

Publication date: 25 Jul 2017
Modification date: 25 Jul 2017
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2017-9765

Description

A potential vulnerability to a large and specific XML message over 2GB
in size (greater than 2147483711 bytes to trigger the software bug). A
buffer overflow can cause an open unsecured server to crash or
malfunction after 2GB is received (CVE-2017-9765).
                

References

SRPMS

5/core

6/core