MGASA-2013-0251

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2013-0251.html

Import Source

https://advisories.mageia.org/MGASA-2013-0251.json

JSON Data

https://api.test.osv.dev/v1/vulns/MGASA-2013-0251

Related

CVE-2013-2142

Published

2013-08-17T08:47:03Z

Modified

2013-08-17T08:47:00Z

Summary

Updated libimobiledevice packages fix CVE-2013-2142

Details

Updated libimobiledevice packages fix security vulnerability:

Paul Collins discovered that libimobiledevice incorrectly handled temporary files. A local attacker could possibly use this issue to overwrite arbitrary files and access device keys. In the default Ubuntu installation, this issue should be mitigated by the Yama link restrictions (CVE-2013-2142).

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:3 / libimobiledevice

Package

Name: libimobiledevice
Purl: pkg:rpm/mageia/libimobiledevice?distro=mageia-3

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

1.1.4-4.1.mga3

Ecosystem specific

{
    "section": "core"
}