From Mageia wiki
MGASA-2012-0184
| Date: | July 29th, 2012 |
| Affected releases: | 1, 2 |
Description:
Bash has been updated to patchlevel 37 to fix several minor issues.
One of these is a buffer overflow vulnerability related to using the
test command with invalid filenames in the /dev/fd directory
(CVE-2012-3410).
Mageia is not vulnerable to a buffer overflow with this issue because
of the compiler options that were used to build it, but it can still
cause a crash.
Updated Packages:
Mageia 1:
bash-4.2-5.1.mga1
bash-doc-4.2-5.1.mga1
Mageia 2:
bash-4.2-5.1.mga2
bash-doc-4.2-5.1.mga2
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3410
http://lists.opensuse.org/opensuse-updates/2012-07/msg00038.html
https://bugs.mageia.org/show_bug.cgi?id=6859
