Advisories » MGASA-2022-0389

Updated libosip2 packages fix security vulnerability

Publication date: 23 Oct 2022
Modification date: 23 Oct 2022
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-41550

Description

GNU oSIP v5.3.0 was discovered to contain an integer overflow via the
component osip_body_parse_header. (CVE-2022-41550)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=30963
• https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/HNIPYSSVD2PSQBQN44WSUXHISIIAWJFS/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41550

SRPMS

8/core

• libosip2-5.0.0-4.1.mga8