VDB
GCVE-110-MAGEIA-2014-190
GCVE-110-MAGEIA-2014-190
Advisory Published
Updated libmms packages fix security vulnerability:
The libmms library before 0.6.4 is vulnerable to a buffer overflow in
get_answer() in src/mmsh.c. It may be triggered via an overly long line
of a MMSH (MMS over HTTP) server response, effectively overflowing the
buffer which has a static size (CVE-2014-2892).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | libmms | 0 (affected), 0.6.2-3.1.mga3 (unaffected), 0 (affected), 0.6.2-3.1.mga3 (unaffected) | — |
| Mageia | calligra-l10n | 0 (affected), 2.7.5-1.1.mga4 (unaffected) | — |
| Mageia | libmms | 0 (affected), 0.6.2-4.1.mga4 (unaffected), 0 (affected), 0.6.2-4.1.mga4 (unaffected) | — |
Aliases
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.