MGASA-2016-0084

Source
https://advisories.mageia.org/MGASA-2016-0084.html
Import Source
https://advisories.mageia.org/MGASA-2016-0084.json
JSON Data
https://api.osv.dev/v1/vulns/MGASA-2016-0084
Related
Published
2016-03-02T18:28:46Z
Modified
2016-03-02T18:19:13Z
Summary
Updated xdelta3 packages fix CVE-2014-9765
Details

Updated xdelta3 package fixes security vulnerability:

Stepan Golosunov discovered that xdelta3, a diff utility which works with binary files, is affected by a buffer overflow vulnerability within the maingetappheader function, which may lead to the execution of arbitrary code (CVE-2014-9765).

References
Credits

Affected packages

Mageia:5 / xdelta3

Package

Name
xdelta3
Purl
pkg:rpm/mageia/xdelta3?distro=mageia-5

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
3.0.0-5.1.mga5

Ecosystem specific

{
    "section": "core"
}