ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2022.0465
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2022-0465)
Resumen:	The remote host is missing an update for the 'matio' package(s) announced via the MGASA-2022-0465 advisory.
Descripción:	Summary: The remote host is missing an update for the 'matio' package(s) announced via the MGASA-2022-0465 advisory. Vulnerability Insight: matio (aka MAT File I/O Library) 1.5.18 through 1.5.21 has a heap-based buffer overflow in ReadInt32DataDouble (called from ReadInt32Data and Mat_VarRead4). (CVE-2020-36428) matio (aka MAT File I/O Library) 1.5.20 and 1.5.21 has a heap-based buffer overflow in H5MM_memcpy (called from H5MM_malloc and H5C_load_entry), related to use of HDF5 1.12.0. (CVE-2021-36977) Affected Software/OS: 'matio' package(s) on Mageia 8. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2020-36428 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21421 https://github.com/google/oss-fuzz-vulns/blob/main/vulns/matio/OSV-2020-799.yaml Common Vulnerability Exposure (CVE) ID: CVE-2021-36977 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=31265 https://github.com/HDFGroup/hdf5/issues/272 https://github.com/google/oss-fuzz-vulns/blob/main/vulns/matio/OSV-2021-440.yaml https://github.com/google/oss-fuzz-vulns/commit/37b781ace1b4228fc36483bb7e30c72ea9d4c3d6 https://github.com/google/oss-fuzz/issues/4999
Copyright	Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.