Advisories » MGASA-2024-0122

Updated indent packages fix security vulnerability

Publication date: 12 Apr 2024
Modification date: 12 Apr 2024
Type: security
Affected Mageia releases : 9
CVE: CVE-2024-0911

Description

A flaw was found in indent, a program for formatting C code. This issue
may allow an attacker to trick a user into processing a specially
crafted file to trigger a heap-based buffer overflow, causing the
application to crash. (CVE-2024-0911)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=33072
• https://lwn.net/Articles/968977/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0911

SRPMS

9/core

• indent-2.2.13-1.2.mga9