Advisories ยป MGASA-2017-0465

Updated shadow-utils packages fix security vulnerability

Publication date: 22 Dec 2017
Modification date: 22 Dec 2017
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2017-12424

Description

It was found that shadow-utils had a buffer overflow where if a buffer was
left NULL for a cycle the next cycle would happily write past the entries
buffer (CVE-2017-12424).
                

References

SRPMS

5/core

6/core