Advisories ยป MGASA-2023-0274

Updated indent package fixes security vulnerabilities

Publication date: 30 Sep 2023
Type: security
Affected Mageia releases : 8 , 9
CVE: CVE-2023--40305

Description

GNU indent 2.2.13 has a heap-based buffer overflow in search_brace in
indent.c via a crafted file. (CVE-2023-40305)

GNU indent 2.2.13 has a heap overread in lexi().
                

References

SRPMS

9/core

8/core