-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
_______________________________________________________________________
Mandriva Linux Security Advisory MDVSA-2015:143
http://www.mandriva.com/en/support/security/
_______________________________________________________________________
Package : mpfr
Date : March 29, 2015
Affected: Business Server 2.0
_______________________________________________________________________
Problem Description:
Updated mpfr packages fix security vulnerability:
A buffer overflow was reported in mpfr. This is due to incorrect
GMP documentation for mpn_set_str about the size of a buffer
(CVE-2014-9474).
_______________________________________________________________________
References:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9474
http://advisories.mageia.org/MGASA-2015-0021.html
_______________________________________________________________________
Updated Packages:
Mandriva Business Server 2/X86_64:
d2793e520