Advisories » MGASA-2025-0005

Updated rizin packages fix security vulnerability

Publication date: 12 Jan 2025
Modification date: 12 Jan 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2022-1207

Description

Command injection via RzBinInfo bclass due legacy code. (CVE-2022-1207)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=33895
• https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/YNDCM5TGWRLSMIJ74ZI6LMNSCCH5DBPL/
• https://github.com/rizinorg/rizin/security/advisories/GHSA-5jhc-frm4-p8v9
• https://www.cve.org/CVERecord?id=CVE-2022-1207

SRPMS

9/core

• rizin-0.5.2-1.1.mga9