From Mageia wiki
MGASA-2012-0147
| Date: | July 9th, 2012 |
| Affected releases: | 1 |
Description:
Updated tftp packages fix security vulnerability:
Malicious clients could overflow a buffer in tftpd by specifying
a large value for the utimeout option (CVE-2011-2199).
Updated Packages:
tftp-5.0-7.3.mga1
tftp-server-5.0-7.3.mga1
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2199
http://lists.opensuse.org/opensuse-updates/2011-07/msg00000.html
https://bugs.mageia.org/show_bug.cgi?id=6544
