MGASA-2017-0128

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2017-0128.html

Import Source

https://advisories.mageia.org/MGASA-2017-0128.json

JSON Data

https://api.osv.dev/v1/vulns/MGASA-2017-0128

Related

CVE-2017-7467

Published

2017-05-03T22:17:22Z

Modified

2017-05-03T21:56:45Z

Summary

Updated minicom packages fix security vulnerability

Details

In minicom before version 2.7.1, the escparms[] buffer in vt100.c is vulnerable to an overflow that may allow for remote code execution (CVE-2017-7467).

References

https://advisories.mageia.org/MGASA-2017-0128.html
https://bugs.mageia.org/show_bug.cgi?id=20701
http://openwall.com/lists/oss-security/2017/04/18/5

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:5 / minicom

Package

Name: minicom
Purl: pkg:rpm/mageia/minicom?distro=mageia-5

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.7.1-1.mga5

Ecosystem specific

{
    "section": "core"
}