AVG-310

Package libffi
Status Fixed
Severity High
Type arbitrary code execution
Affected 3.1-3
Fixed 3.2.1-1
Current 3.2.1-3 [core]
Ticket FS#54857
Created Mon Jun 19 21:25:48 2017
Issue Severity Remote Type Description
CVE-2017-1000376 High Yes Arbitrary code execution
libffi requests an executable stack allowing attackers to more easily trigger arbitrary code execution by overwriting the stack. Please note that libffi is...
References
https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt