Advisories ยป MGASA-2017-0417

Updated apr packages fix security vulnerability

Publication date: 19 Nov 2017
Modification date: 19 Nov 2017
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2017-12613

Description

An out-of-bounds array dereference was found in apr_time_exp_get(). An
attacker could abuse an unvalidated usage of this function to cause a
denial of service or potentially lead to data leak (CVE-2017-12613).

References

SRPMS

5/core

6/core