From Mageia wiki
Jump to: navigation, search

MGASA-2012-0363

Date: December 20th, 2012
Affected releases: 2


Description:
Updated bogofilter package fixes security vulnerability:

In bogofilter before 1.2.3, bogofilter's/bogolexer's base64 could
overwrite heap memory in the character set conversion in certain
pathological cases of invalid base64 code that decodes to incomplete
multibyte characters (CVE-2012-5468).


Updated Packages:
bogofilter-1.2.2-2.2.mga2


References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5468
http://bogofilter.sourceforge.net/security/bogofilter-SA-2012-01
http://www.debian.org/security/2012/dsa-2585
https://bugs.mageia.org/show_bug.cgi?id=8376

Retrieved from "https://wiki.mageia.org/mw-en/index.php?title=Support/Advisories/MGASA-2012-0363&oldid=13147"