GLSA-200903-13 : MPFR: Denial of Service
High Nessus Plugin ID 35811
SynopsisThe remote Gentoo host is missing one or more security-related patches.
DescriptionThe remote host is affected by the vulnerability described in GLSA-200903-13 (MPFR: Denial of Service)
Multiple buffer overflows have been reported in the mpfr_snprintf() and mpfr_vsnprintf() functions.
A remote user could exploit the vulnerability to cause a Denial of Service in an application using MPFR via unknown vectors.
There is no known workaround at this time.
SolutionAll MPRF users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose '>=dev-libs/mpfr-2.4.1'