Alerts This Week
Warning Icon 1 916
Alerts This Week
Warning Icon 1 916

Gentoo: GLSA-200405-01 Normal: libneon Format String Code Execution

gentoo
Calendar Grey May 9, 2004
Dist Gentoo Esm H88
Gentoo GLSA-202312-01 highlights various vulnerabilities in libneon related to format strings that could compromise security. An upgrade is advised.
There are multiple format string vulnerabilities in libneon which may allow a malicious WebDAV server to execute arbitrary code.

Summary

Gentoo Linux Security Advisory GLSA 200405-01 https://security.gentoo.org/ Severity: Normal Title: Multiple format string vulnerabilities in neon 0.24.4 and earlier Date: May 09, 2004 Bugs: #48448 ID: 200405-01

Synopsis ======= There are multiple format string vulnerabilities in libneon which may allow a malicious WebDAV server to execute arbitrary code.
Background ========= neon provides an HTTP and WebDAV client library.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-misc/neon <= 0.24.4 >= 0.24.5
========== There are multiple format string vulnerabilities in libneon which may allow a malicious WebDAV server to execute arbitrary code under the context of the process using...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory Gentoo format string arbitrary code execution libneon

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory Gentoo format string arbitrary code execution libneon

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here