Scientific Linux Security Update : fontconfig on SL7.x x86_64
Medium Nessus Plugin ID 95838
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionSecurity Fix(es) :
- It was found that cache files were insufficiently validated in fontconfig. A local attacker could create a specially crafted cache file to trigger arbitrary free() calls, which in turn could lead to arbitrary code execution. (CVE-2016-5384)
Additional Changes :
SolutionUpdate the affected packages.