VDB
GCVE-110-MAGEIA-2015-34
GCVE-110-MAGEIA-2015-34
Advisory Published
Updated freeciv packages to latest bugfix version, also fixing security vulnerability
Freeciv 2.4.1 in Mageia 4 was built against an embedded version of lua 5.1,
vulnerable to the following security issue:
A heap-based overflow vulnerability was found in the way Lua handles varargs
functions with many fixed parameters called with few arguments, leading to
application crashes or, potentially, arbitrary code execution (CVE-2014-5461,
mga#14038).
As of this update, Freeciv is now built against the patched system version
of lua 5.1.
This update also provides Freeciv 2.4.4, a maintenance release in the 2.4.x
stable branch with numerous bug fixes and minor new features.
See the referenced release notes for details.
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | mariadb | 0 (affected), 5.5.42-1.mga4 (unaffected) | — |
| Mageia | freeciv | 0 (affected), 2.4.4-1.mga4 (unaffected), 2.4.4-1.mga4 (unaffected), 0 (affected) | — |
References
Browse GCVE Records
72,580 records in the GCVE database · Updated July 15, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.