Updated weechat packages fix security vulnerability
Publication date: 13 Oct 2017Modification date: 13 Oct 2017
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2017-14727
Description
It was discovered that logger.c in the logger plugin in WeeChat before 1.9.1 allows a crash via strftime date/time specifiers, because a buffer is not initialized (CVE-2017-14727).
References
SRPMS
5/core
- weechat-0.4.1-7.2.mga5
6/core
- weechat-1.7.1-1.1.mga6