From Mageia wiki
Jump to: navigation, search

MGASA-2012-0187

Date: July 30th, 2012
Affected releases: 1


Description:
Updated perl-DBD-Pg package fixes security vulnerability:

Two format string flaws were found in the way perl-DBD-Pg. A
rogue server could provide a specially-crafted database warning
or specially-crafted DBD statement, which once processed by the
perl-DBD-Pg interface would lead to perl-DBD-Pg based process crash
(CVE-2012-1151).


Updated Packages:
perl-DBD-Pg-2.18.0-1.1.mga1


References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1151
http://www.mandriva.com/en/support/security/advisories/?dis=2011&name=MDVSA-2012:112
https://bugs.mageia.org/show_bug.cgi?id=6870