Advisories » MGASA-2017-0271

Updated mingw-nsis packages fix security vulnerability

Publication date: 16 Aug 2017
Modification date: 17 Aug 2017
Type: security
Affected Mageia releases : 5

Description

The Nullsoft Scriptable Install System version < 2.50 contains a DLL
hijacking attack which allows administrative (root) level access on the
target Windows system.
                

References

• https://bugs.mageia.org/show_bug.cgi?id=19910
• https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/H2762LYQBZ3FBEJYN5TJH55CB2C27LLI/

SRPMS

5/core

• mingw-nsis-2.50-1.mga5