Advisories ยป MGASA-2020-0299

Updated matio packages fix security vulnerability

Publication date: 31 Jul 2020
Type: security
Affected Mageia releases : 7
CVE: CVE-2019-17533

Description

Mat_VarReadNextInfo4 in mat4.c in MATIO 1.5.17 omits a certain '\0'
character, leading to a heap-based buffer over-read in strdup_vprintf
when uninitialized memory is accessed. (CVE-2019-17533)
                

References

SRPMS

7/core