Advisories ยป MGASA-2019-0133

Updated cfitsio packages fix security vulnerability

Publication date: 05 Apr 2019
Modification date: 05 Apr 2019
Type: security
Affected Mageia releases : 6
CVE: CVE-2018-3846 , CVE-2018-3848 , CVE-2018-3849

Description

CVE-2018-3846: Unsafe use of sprintf() can allow a remote unauthenticated
attacker to execute arbitrary code
CVE-2018-3848: Stack-based buffer overflow in ffghbn() allows for
potential code execution
CVE-2018-3849: Stack-based buffer overflow in ffghtb() allows for
potential code execution
                

References

SRPMS

6/core