From Mageia wiki
MGASA-2012-0265
Date: | September 13th, 2012 |
Affected releases: | 1, 2 |
Description:
Updated bip package fixes security vulnerability:
Buffer overflow in Bip 0.8.8 and earlier might allow remote
authenticated users to execute arbitrary code via vectors
involving a series of TCP connections that triggers use
of many open file descriptors (CVE-2012-0806).
Updated Packages:
Mageia 1:
bip-0.8.8-1.2.mga1
Mageia 2:
bip-0.8.8-5.2.mga2
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0806
http://www.debian.org/security/2012/dsa-2393
https://bugs.mageia.org/show_bug.cgi?id=4319