MGASA-2015-0035

See a problem?
Please try reporting it to the source first.
Source
https://advisories.mageia.org/MGASA-2015-0035.html
Import Source
https://advisories.mageia.org/MGASA-2015-0035.json
JSON Data
https://api.test.osv.dev/v1/vulns/MGASA-2015-0035
Related
Published
2015-01-24T14:32:04Z
Modified
2015-01-24T14:22:32Z
Summary
Updated aircrack-ng packages fix security vulnerabilities
Details

Updated aircrack-ng package fixes security vulnerabilities:

A length parameter inconsistency in Aircrack-ng before 1.2-rc1 at aireplay tcp_test() which may lead to remote code execution (CVE-2014-8322).

A missing check for data format in Aircrack-ng before 1.2-rc1 at buddy-ng which may lead to denial of service (CVE-2014-8323).

A missing check for invalid values in Aircrack-ng before 1.2-rc1 at airserv-ng net_get() which may lead to denial of service (CVE-2014-8324).

References
Credits

Affected packages

Mageia:4 / aircrack-ng

Package

Name
aircrack-ng
Purl
pkg:rpm/mageia/aircrack-ng?distro=mageia-4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.1-7.2.mga4

Ecosystem specific 

{
    "section": "core"
}