Gentoo GLSA-200405-13 Normal: Neon Heap-Based Buffer Overflow
gentoo
May 20, 2004
A vulnerability potentially allowing remote execution of arbitrary code has been discovered in the neon library.
Summary
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Gentoo Linux Security Advisory GLSA 200405-13
https://security.gentoo.org/
Severity: Normal
Title: neon heap-based buffer overflow
Date: May 20, 2004
Bugs: #51490
ID: 200405-13
Synopsis
=======
A vulnerability potentially allowing remote execution of arbitrary code
has been discovered in the neon library.
Background
=========
neon provides an HTTP and WebDAV client library.
Affected packages
================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 net-misc/neon <= 0.24.5 >= 0.24.6
==========
Stefan Esser discovered a vulnerability in the code of the neon library
: if a malicious date string is passed to the ne_rfc1036_parse()
function, it can trigger a string overflow in...Read the Full Advisory
Resolution
References
Availability
style>.gentoo_availability{display:block;}
Concerns
PREVIOUS
NEXT
Warning: Undefined array key "advisory_info" in /var/www/www.linuxsecurity.com-443/html/tmp/regularlabs/custom_php/3489408_4c9dbbdde36eef04251a4ced7eac4df9 on line 11
Background
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Affected Packages
Impact
Workaround
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!