VDB

GCVE-110-MAGEIA-2015-34

GCVE-110-MAGEIA-2015-34
Advisory Published
Vulnetix · Advisory published January 21, 2015
Updated freeciv packages to latest bugfix version, also fixing security vulnerability Freeciv 2.4.1 in Mageia 4 was built against an embedded version of lua 5.1, vulnerable to the following security issue: A heap-based overflow vulnerability was found in the way Lua handles varargs functions with many fixed parameters called with few arguments, leading to application crashes or, potentially, arbitrary code execution (CVE-2014-5461, mga#14038). As of this update, Freeciv is now built against the patched system version of lua 5.1. This update also provides Freeciv 2.4.4, a maintenance release in the 2.4.x stable branch with numerous bug fixes and minor new features. See the referenced release notes for details.

Affected Products

VendorProductVersionsPlatforms
Mageiamariadb0 (affected), 5.5.42-1.mga4 (unaffected)
Mageiafreeciv0 (affected), 2.4.4-1.mga4 (unaffected), 2.4.4-1.mga4 (unaffected), 0 (affected)

Browse GCVE Records

72,580 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›