Advisories ยป MGASA-2017-0306

Updated augeas packages fix security vulnerability

Publication date: 24 Aug 2017
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2017-7555

Description

A vulnerability was discovered in augeas affecting the handling of
escaped strings.  An attacker could send crafted strings that would
cause the application using augeas to copy past the end of a buffer,
leading to a crash or possible code execution (CVE-2017-7555).
                

References

SRPMS

5/core

6/core