Alerts This Week
Warning Icon 1 646
Alerts This Week
Warning Icon 1 646

Mageia: 2018-0413 Moderate: Busybox Invalid Pointer Crash and Address Fault

mageia
Calendar Grey October 26, 2018
Dist Mageia Esm H88
New busybox updates tackle vulnerabilities linked to specially crafted zip files that could lead to crashes in Mageia.
Unziping a specially crafted zip file results in a computation of an invalid pointer and a crash reading an invalid address (CVE-2015-9261)

Summary

Unziping a specially crafted zip file results in a computation of an invalid pointer and a crash reading an invalid address (CVE-2015-9261).

References

- https://bugs.mageia.org/show_bug.cgi?id=23367

- https://www.openwall.com/lists/oss-security/2018/07/26/5

- https://www.cve.org/CVERecord?id=CVE-2015-9261

Topics%20covered

Topics Covered

security advisory busybox update mageia pointer crash zip file issue

Resolution

SRPMS

- 6/core/busybox-1.25.1-1.1.mga6

Publication date: 26 Oct 2018
URL: https://advisories.mageia.org/MGASA-2018-0413.html
Type: security
CVE: CVE-2015-9261

Topics%20covered

Topics Covered

security advisory busybox update mageia pointer crash zip file issue

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here