Alerts This Week
Warning Icon 1 483
Alerts This Week
Warning Icon 1 483

Debian 4.0 DSA-1328 Critical: Unicon-Imc2 Buffer Overflow Risk

debian
Calendar Grey July 1, 2007
Debian Logo
The Unicon-imc2 package on Debian exhibits a buffer overflow vulnerability linked to improper handling of environmental variables. It is advised to perform an upgrade.
Steve Kemp from the Debian Security Audit project discovered that unicon-imc2, a Chinese input method library, makes unsafe use of an environmental variable, which may be exploit...

Summary


For the stable distribution (etch) this problem has been fixed in
version 3.0.4-11etch1.

For the unstable distribution (sid) this problem will be fixed shortly.

We recommend that you upgrade your unicon-imc2 package.


Upgrade instructions
- --------------------wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.



Debian GNU/Linux 4.0 alias etch

Source archives:

Size/MD5 checksum: 14966 c3a081d69f9f81055de331690bf85e70
Size/MD5 checksum: 5704272 dfb8650debe038f85270b4ad60ad313b
Size/MD5 checksum: 603 711b8ba2894e03f257f7d6a74f526563

alpha architecture (DEC Alpha)

Size/MD5 checksum: 43766...

Read the Full Advisory

Severity
critical
Lowest
Low
Medium
High
Critical

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here