Описание
ELSA-2017-2788: augeas security update (IMPORTANT)
[1.4.0-2.el7_4.1]
- Fix CVE-2017-7555, improper handling of escaped strings (RHBZ#1481545)
Обновленные пакеты
Oracle Linux 7
Oracle Linux x86_64
augeas
1.4.0-2.el7_4.1
augeas-devel
1.4.0-2.el7_4.1
augeas-libs
1.4.0-2.el7_4.1
Связанные CVE
Связанные уязвимости
Augeas versions up to and including 1.8.0 are vulnerable to heap-based buffer overflow due to improper handling of escaped strings. Attacker could send crafted strings that would cause the application using augeas to copy past the end of a buffer, leading to a crash or possible code execution.
Augeas versions up to and including 1.8.0 are vulnerable to heap-based buffer overflow due to improper handling of escaped strings. Attacker could send crafted strings that would cause the application using augeas to copy past the end of a buffer, leading to a crash or possible code execution.
Augeas versions up to and including 1.8.0 are vulnerable to heap-based buffer overflow due to improper handling of escaped strings. Attacker could send crafted strings that would cause the application using augeas to copy past the end of a buffer, leading to a crash or possible code execution.
Augeas versions up to and including 1.8.0 are vulnerable to heap-based ...
