[Technik] [SECURITY] [DSA 1368-1] New librpcsecgss packages
fix arbitrary code execution
Noèl Köthe
noel at debian.org
Mon Sep 10 10:01:36 CEST 2007
Am Dienstag, den 04.09.2007, 20:34 +0200 schrieb Moritz Muehlenhoff:
> Debian Security Advisory DSA 1368-1 security at debian.org
> http://www.debian.org/security/ Moritz Muehlenhoff
> September 4th, 2007 http://www.debian.org/security/faq
>
> Package : librpcsecgss
> Vulnerability : buffer overflow
> Problem-Type : remote
> Debian-specific: no
> CVE ID : CVE-2007-3999
librpcsecgss auf yuma und cree aktualisiert.
> For the stable distribution (etch) this problem has been fixed in
> version 0.14-2etch1.
changelog:
librpcsecgss (0.14-2etch1) stable-security; urgency=high
* Fix buffer overflow in RPCSEC_GSS (CVE-2007-3799).
-- Moritz Muehlenhoff <jmm at debian.org> Sun, 26 Aug 2007 20:54:40 +0000
--
Noèl Köthe <noel debian.org>
Debian GNU/Linux, www.debian.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
Url : /archiv/technik/attachments/20070910/eab8624a/attachment.pgp
More information about the Technik
mailing list