ELSA-2025-9332

Опубликовано: 08 июл. 2025

Источник: oracle-oval

Платформа: Oracle Linux 7

Описание

ELSA-2025-9332: mpfr security update (IMPORTANT)

[3.1.1-4.0.1]

Fixes buffer overflow in mpfr_strtofr (CVE-2014-9474) [Orabug: 38103811]

Обновленные пакеты

Oracle Linux 7

Oracle Linux x86_64

mpfr

3.1.1-4.0.1.el7

mpfr-devel

3.1.1-4.0.1.el7

Связанные CVE

CVE-2014-9474

Ссылки на источники

Связанные уязвимости

CVE-2014-9474

CVSS3: 9.8

ubuntu

почти 8 лет назад

Buffer overflow in the mpfr_strtofr function in GNU MPFR before 3.1.2-p11 allows context-dependent attackers to have unspecified impact via vectors related to incorrect documentation for mpn_set_str.

CVE-2014-9474

redhat

больше 11 лет назад

Buffer overflow in the mpfr_strtofr function in GNU MPFR before 3.1.2-p11 allows context-dependent attackers to have unspecified impact via vectors related to incorrect documentation for mpn_set_str.

CVE-2014-9474

CVSS3: 9.8

nvd

почти 8 лет назад

Buffer overflow in the mpfr_strtofr function in GNU MPFR before 3.1.2-p11 allows context-dependent attackers to have unspecified impact via vectors related to incorrect documentation for mpn_set_str.

CVE-2014-9474

CVSS3: 9.8

debian

почти 8 лет назад

Buffer overflow in the mpfr_strtofr function in GNU MPFR before 3.1.2- ...

GHSA-8r23-r9vm-pp93

CVSS3: 9.8

github

около 3 лет назад

Buffer overflow in the mpfr_strtofr function in GNU MPFR before 3.1.2-p11 allows context-dependent attackers to have unspecified impact via vectors related to incorrect documentation for mpn_set_str.