MGASA-2014-0188

Source
https://advisories.mageia.org/MGASA-2014-0188.html
Import Source
https://advisories.mageia.org/MGASA-2014-0188.json
JSON Data
https://api.osv.dev/v1/vulns/MGASA-2014-0188
Published
2014-04-23T16:07:45Z
Modified
2026-04-16T04:29:08.064471Z
Summary
Updated systemd packages fix a buffer overflow
Details

A stack-based buffer overflow was found in systemd-ask-password, a utility used to query a system password or passphrase from the user, using a question message specified on the command line. A local user could this flaw to crash the binary or even execute arbitrary code with the permissions of the user running the program.

The systemd packages shipped with Mageia 3 and 4 have been updated to address this vulnerability.

Additionally, the Mageia 4 packages include various other general stability and performance fixed deemed appropriate for the stable updates.

References
Credits

Affected packages

Mageia:3 / systemd

Package

Name
systemd
Purl
pkg:rpm/mageia/systemd?arch=source&distro=mageia-3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
195-22.2.mga3

Ecosystem specific

{
    "section": "core"
}

Database specific

source
"https://advisories.mageia.org/MGASA-2014-0188.json"

Mageia:4 / systemd

Package

Name
systemd
Purl
pkg:rpm/mageia/systemd?arch=source&distro=mageia-4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
208-10.5.mga4

Ecosystem specific

{
    "section": "core"
}

Database specific

source
"https://advisories.mageia.org/MGASA-2014-0188.json"