{"id":"MGASA-2023-0274","summary":"Updated indent package fixes security vulnerabilities","details":"GNU indent 2.2.13 has a heap-based buffer overflow in search_brace in\nindent.c via a crafted file. (CVE-2023-40305)\n\nGNU indent 2.2.13 has a heap overread in lexi().\n","modified":"2026-04-16T04:41:14.118050830Z","published":"2023-09-30T19:15:40Z","upstream":["CVE-2023-40305"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2023-0274.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=32273"},{"type":"ADVISORY","url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40305"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4MIUH3F63KQJWYR3FLKRZUYYRJOY6FYX/"}],"affected":[{"package":{"name":"indent","ecosystem":"Mageia:8","purl":"pkg:rpm/mageia/indent?arch=source&distro=mageia-8"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.2.13-1.1.mga8"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2023-0274.json"}},{"package":{"name":"indent","ecosystem":"Mageia:9","purl":"pkg:rpm/mageia/indent?arch=source&distro=mageia-9"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.2.13-1.1.mga9"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2023-0274.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}