Advisories ยป MGASA-2018-0159

Updated glibc packages fix security vulnerability

Publication date: 06 Mar 2018
Modification date: 06 Mar 2018
Type: security
Affected Mageia releases : 6
CVE: CVE-2018-6485 , CVE-2018-6551

Description

An integer overflow in the implementation of the posix_memalign in memalign
functions in the GNU C Library (aka glibc or libc6) 2.26 and earlier could
cause these functions to return a pointer to a heap area that is too small,
potentially leading to heap corruption (CVE-2018-6485, CVE-2018-6551).
                

References

SRPMS

6/core