Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[PLSN-0007] new libcdaudio package available

from [Peachtree Linux Security Team] Network Security [Permanent Link]
Subject: [PLSN-0007] new libcdaudio package available
Date: Mon, 25 Apr 2005 22:14:11 -0400 
---------------------------------------------------------------------------
Peachtree Linux Security Notice PLSN-0007
April 22, 2005

Remote DoS and possible code execution in libcdaudio
CAN-2005-0706
---------------------------------------------------------------------------

The following Peachtree Linux releases are affected:

   Peachtree Linux release 1 ("Atlanta")

Description:

   CAN-2005-0706:  Buffer overflow in CDDB result handling allows
   attackers to cause a denial of service (crash) and possible execute
   arbitrary code by causing the cddb lookup to return more matches than
   expected.

   (NOTE: This vulnerability was originally found to affect grip.  We do
   not ship grip, but Mandriva found that the vulnerability affected
   libcdaudio and gnome-vfs.)

Packages:

   alpha
      7087c543031ed7c2799b047b4d8b2c24  libcdaudio-0.99.4.alpha.dist

   i386
      ca2ca9a7677148641f5c598be1d330b1  libcdaudio-0.99.4.i686.dist

   ppc
      f22c18b50e37e31437ba3ad44fc09d1e  libcdaudio-0.99.4.ppc.dist

Solution:

   Download the appropriate package for your release of Peachtree linux.
   Upgrade your system to the new package:

      distadd -u packagename

   Where package name is the name of the package file from the list above.

-- 
Peachtree Linux Security Team
http://peachtree.burdell.org/

Attachment: pgpzL75K8ZIki.pgp
Description: PGP signature

[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [PLSN-0007] new libcdaudio package available, Peachtree Linux Security Team <=
Previous by Date:  [Full-disclosure] [ GLSA 200504-26 ] Convert-UUlib: Buffer overflow, Sune Kloppenborg Jeppesen
Next by Date:  [PLSN-0006] new libexif package available, Peachtree Linux Security Team
Previous by Thread:  [Full-disclosure] [ GLSA 200504-26 ] Convert-UUlib: Buffer overflow, Sune Kloppenborg Jeppesen
Next by Thread:  [PLSN-0006] new libexif package available, Peachtree Linux Security Team
Indexes:  [Date] [Thread] [Top] [All Lists]