Advisories ยป MGASA-2020-0117

Updated libsolv packages fix security vulnerability

Publication date: 06 Mar 2020
Type: security
Affected Mageia releases : 7
CVE: CVE-2019-20387

Description

Updated libsolv packages fix security vulnerability:

An out-of-bounds read was discovered in libsolv when the last schema
has a length that is less than the length of the input schema. A remote
attacker may abuse this flaw to crash an application that uses libsolv
(CVE-2019-20387).
                

References

SRPMS

7/core