Debian: DSA-1529-1 Critical Advisory: Firebird Arbitrary Code Execution
debian
March 27, 2008
Multiple security problems have been discovered in the Firebird database,
which may lead to the execution of arbitrary code or denial of service.
Summary
I. Administrators running Firebird in a completely internal setup with
trusted users could leave it unchanged.
II. Everyone else should upgrade to the firebird2.0 packages available at
Version 2.0.3.12981.ds1-6~bpo40+1 fixes all known issues.
Please refer to the general backports.org documentation to add the
packages to your package management configuration:
These packages are backported to run with Debian stable. Since
firebird2.0 is not a drop-in replacement for firebird2 (which
is the source package name for the Firebird 1.5 packages)
these updates are not released through security.debian.org.
Potential future security problems affecting Debian stable will be
released through backports.org as well.
Arrangements have been made to ensure that Firebird in the upcoming
Debian 5.0 release will be supportable with regular backported
security bugfixes again.
For a more detailed descriptions of the security problems, pl...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!