Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 603
Alerts This Week
Warning Icon 1 603

Gentoo: 200304-10 Moderate: Balsa Buffer Overflow Remote Attack

gentoo
Calendar Grey April 30, 2003
Dist Gentoo Esm H88
Gentoo Security Notice concerning a severe buffer overflow vulnerability in Balsa affecting user devices. Immediate update to version balsa-2.0.10 is recommended.
Balsa suffers from the same buffer overflow as mutt.

Summary


GENTOO LINUX SECURITY ANNOUNCEMENT 200304-10


Balsa suffers from the same buffer overflow as mutt did:
http://marc.theaimsgroup.com/?l=bugtraq&m=104852190605988&w=2
SOLUTION
It is recommended that all Gentoo Linux users who are running net-mail/balsa upgrade to balsa-2.0.10 as follows:
emerge sync emerge balsa emerge clean
aliz@gentoo.org - GnuPG key is available at

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

PACKAGE : balsa
SUMMARY : buffer overflow
DATE : 2003-04-30 13:40 UTC
EXPLOIT : remote
VERSIONS AFFECTED : =balsa-2.0.10
CVE : CAN-2003-0140

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround