Advisories » MGASA-2018-0042

Updated fossil packages fix security vulnerability

Publication date: 03 Jan 2018
Modification date: 03 Jan 2018
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2017-17459

Description

Client-side code execution via crafted "ssh://" URLs (CVE-2017-17459).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=22186
• https://lists.opensuse.org/opensuse-updates/2017-12/msg00046.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17459

SRPMS

5/core

• fossil-2.4-1.mga5

6/core

• fossil-2.4-1.mga6