VDB

GCVE-110-MAGEIA-2014-190

GCVE-110-MAGEIA-2014-190
Advisory Published
Vulnetix · Advisory published April 23, 2014
Updated libmms packages fix security vulnerability: The libmms library before 0.6.4 is vulnerable to a buffer overflow in get_answer() in src/mmsh.c. It may be triggered via an overly long line of a MMSH (MMS over HTTP) server response, effectively overflowing the buffer which has a static size (CVE-2014-2892).

Affected Products

VendorProductVersionsPlatforms
Mageialibmms0 (affected), 0.6.2-3.1.mga3 (unaffected), 0 (affected), 0.6.2-3.1.mga3 (unaffected)
Mageiacalligra-l10n0 (affected), 2.7.5-1.1.mga4 (unaffected)
Mageialibmms0 (affected), 0.6.2-4.1.mga4 (unaffected), 0 (affected), 0.6.2-4.1.mga4 (unaffected)

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›