{"id":"MGASA-2015-0035","summary":"Updated aircrack-ng packages fix security vulnerabilities","details":"Updated aircrack-ng package fixes security vulnerabilities:\n\nA length parameter inconsistency in Aircrack-ng before 1.2-rc1 at aireplay\ntcp_test() which may lead to remote code execution (CVE-2014-8322).\n\nA missing check for data format in Aircrack-ng before 1.2-rc1 at buddy-ng\nwhich may lead to denial of service (CVE-2014-8323).\n\nA missing check for invalid values in Aircrack-ng before 1.2-rc1 at airserv-ng\nnet_get() which may lead to denial of service (CVE-2014-8324).\n","modified":"2026-04-16T06:24:28.571801551Z","published":"2015-01-24T14:32:04Z","upstream":["CVE-2014-8322","CVE-2014-8323","CVE-2014-8324"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2015-0035.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=14557"},{"type":"ADVISORY","url":"https://www.obrela.com/home/security-labs/advisories/osi-advisory-osi-1401/"},{"type":"WEB","url":"https://lists.fedoraproject.org/pipermail/package-announce/2014-November/143595.html"}],"affected":[{"package":{"name":"aircrack-ng","ecosystem":"Mageia:4","purl":"pkg:rpm/mageia/aircrack-ng?arch=source&distro=mageia-4"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.1-7.2.mga4"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2015-0035.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}