VDB

MAGEIA-2016-400

MAGEIA-2016-400 PUBLISHED

A use-after-free flaw was found in bzip2recover, leading to a null pointer dereference, or a write to a closed file descriptor. An attacker could use this flaw by sending a specially crafted bzip2 file to recover and force the program to crash (CVE-2016-3189).

Affected Products

VendorProductVersions
Mageiabzip20, 1.0.6-7.1.mga5

Timeline

  • Nov 26, 2016 CVE Updated
  • Nov 26, 2016 CVE Published
Open in Interactive Console →
$ Console Community · 100/wk Open console ›