pjp Administrator
Joined: 16 Apr 2002 Posts: 20499
|
Posted: Fri Jan 17, 2003 6:29 pm Post subject: [gentoo-security] GLSA: fnord |
|
|
Daniel Ahlberg wrote: | - - --------------------------------------------------------------------
GENTOO LINUX SECURITY ANNOUNCEMENT 200301-9
- - --------------------------------------------------------------------
PACKAGE : fnord
SUMMARY : buffer overrun
DATE : 2003-01-17 10:01 UTC
EXPLOIT : remote
- - --------------------------------------------------------------------
- From http://www.fefe.de/fnord/ :
"fnord 1.6 contained a buffer overrun in the CGI code. However, since
the function does not return, this does not appear to be exploitable."
SOLUTION
It is recommended that all Gentoo Linux users who are running
net-www/fnord upgrade to fnord-1.7 as follows:
emerge sync
emerge -u fnord
emerge clean
- - --------------------------------------------------------------------
aliz@gentoo.org - GnuPG key is available at www.gentoo.org/~aliz
- - -------------------------------------------------------------------- |
Mailing List Archive: Unavailable _________________ Quis separabit? Quo animo? |
|