Main Vulnerability Database SB2018021515

SB2018021515 - Arch Linux update for GNU

Published: February 15, 2018 Updated: February 19, 2018

Security Bulletin ID SB2018021515

CSH Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 vulnerability.

1) Memory corruption (CVE-ID: CVE-2016-10713)

The vulnerability allows a local attacker to cause DoS condition on the target system.

The weakness exists due to out-of-bounds access within pch_write_line() in pch.c. A local attacker can supply a specially crafted input, trigger memory corruption and cause the system to crash.

Remediation

Install update from vendor's website.

References

https://security.archlinux.org/advisory/ASA-201802-9