Advisories » MGASA-2024-0219

Updated vte packages fix security vulnerability

Publication date: 14 Jun 2024
Modification date: 14 Jun 2024
Type: security
Affected Mageia releases : 9
CVE: CVE-2024-37535

Description

GNOME VTE before 0.76.3 allows an attacker to cause a denial of service
(memory consumption) via a window resize escape sequence, a related
issue to CVE-2000-0476. (CVE-2024-37535)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=33277
• https://www.openwall.com/lists/oss-security/2024/06/09/1
• https://www.openwall.com/lists/oss-security/2024/06/09/2
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-37535

SRPMS

9/core

• vte-0.72.1-1.1.mga9