Advisories ยป MGASA-2019-0338

Updated bzip2 packages fix security vulnerability

Publication date: 30 Nov 2019
Modification date: 30 Nov 2019
Type: security
Affected Mageia releases : 7
CVE: CVE-2019-12900

Description

The updated packages fix a security vulnerability:

BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds
 write when there are many selectors. (CVE-2019-12900)

References

SRPMS

7/core