{"id":"MGASA-2025-0063","summary":"Updated ofono packages fix security vulnerabilities","details":"Sms decoder stack-based buffer overflow remote code execution\nvulnerability within the decode_deliver() function. (CVE-2023-2794)\nSms decoder stack-based buffer overflow remote code execution\nvulnerability within the decode_status_report() function.\n(CVE-2023-4232)\nSms decoder stack-based buffer overflow remote code execution\nvulnerability within the sms_decode_address_field(). (CVE-2023-4233)\nSms decoder stack-based buffer overflow remote code execution\nvulnerability within the decode_submit_report() function.\n(CVE-2023-4234)\nSms decoder stack-based buffer overflow remote code execution\nvulnerability within the decode_deliver_report() function.\n(CVE-2023-4235)\n","modified":"2026-04-16T04:43:11.064887192Z","published":"2025-02-13T19:09:12Z","upstream":["CVE-2023-2794","CVE-2023-4232","CVE-2023-4233","CVE-2023-4234","CVE-2023-4235"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2025-0063.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=33841"},{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-7141-1"},{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-7151-1"}],"affected":[{"package":{"name":"ofono","ecosystem":"Mageia:9","purl":"pkg:rpm/mageia/ofono?arch=source&distro=mageia-9"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2.1-1.1.mga9"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2025-0063.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}