Advisories » MGASA-2019-0294

Updated nmap packages fix security vulnerability

Publication date: 16 Oct 2019
Modification date: 16 Oct 2019
Type: security
Affected Mageia releases : 7
CVE: CVE-2018-15173

Description

Updated nmap packages fix security vulnerability:

Nmap through 7.70, when the -sV option is used, allows remote attackers
to cause a denial of service (stack consumption and application crash)
via a crafted TCP-based service (CVE-2018-15173).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=25262
• https://lists.opensuse.org/opensuse-security-announce/2019-05/msg00067.html
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15173

SRPMS

7/core

• nmap-7.70-2.1.mga7