Updated libmirage packages fix security vulnerabilities
Publication date: 24 Dec 2019Modification date: 24 Dec 2019
Type: security
Affected Mageia releases : 7
CVE: CVE-2019-15540 , CVE-2019-15757
Description
Updated libmirage packages fix security vulnerabilities: The CSO filter in libMirage in CDemu did not validate the part size, triggering a heap-based buffer overflow that could lead to root access by a local user (CVE-2019-15540). NULL pointer dereference in the NRG parser (CVE-2019-15757).
References
SRPMS
7/core
- libmirage-3.2.3-1.mga7