Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

Mageia: 2019-0319 Moderate: FreeTDS Denial Of Service Threat

mageia
Calendar Grey November 7, 2019
Dist Mageia Esm H88
Recent updates to FreeTDS packages fix a major security flaw that may allow denial of service attacks or unauthorized code execution. Learn more about this update
Updated freetds packages fix security vulnerability: Felix Wilhelm discovered that FreeTDS incorrectly handled certain types after a protocol downgrade

Summary

Updated freetds packages fix security vulnerability:
Felix Wilhelm discovered that FreeTDS incorrectly handled certain types after a protocol downgrade. A remote attacker could use this issue to cause FreeTDS to crash, resulting in a denial of service, or possibly execute arbitrary code (CVE-2019-13508).

References

- https://bugs.mageia.org/show_bug.cgi?id=25653

- https://ubuntu.com/security/notices/USN-4173-1

- https://www.cve.org/CVERecord?id=CVE-2019-13508

Resolution

SRPMS

- 7/core/freetds-1.00.83-2.1.mga7

Publication date: 07 Nov 2019
URL: https://advisories.mageia.org/MGASA-2019-0319.html
Type: security
CVE: CVE-2019-13508

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here