Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Gentoo: 202310-07 Critical: OpenSSL TLS Vulnerability and Heartbeat Exploit

gentoo
Calendar Grey October 7, 2004
Dist Gentoo Esm H88
A recent advisory regarding Cyrus-SASL highlights severe vulnerabilities that jeopardize system integrity on Gentoo Linux distributions.
Cyrus-SASL contains two vulnerabilities that might allow an attacker to completely compromise the vulnerable system.

Summary

Gentoo Linux Security Advisory GLSA 200410-05 https://security.gentoo.org/ Severity: High Title: Cyrus-SASL: Buffer overflow and SASL_PATH vulnerabilities Date: October 07, 2004 Bugs: #56016 ID: 200410-05

Synopsis ======= Cyrus-SASL contains two vulnerabilities that might allow an attacker to completely compromise the vulnerable system.
Background ========= Cyrus-SASL is an implementation of the Simple Authentication and Security Layer.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-libs/cyrus-sasl <= 2.1.18-r1 >= 2.1.18-r2
========== Cyrus-SASL contains a remote buffer overflow in the digestmda5.c file. Additionally, under certain conditions it is possible for a local user to exploit a vu...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory high severity gentoo buffer overflow arbitrary code execution cyrus-sasl sasl_path

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory high severity gentoo buffer overflow arbitrary code execution cyrus-sasl sasl_path

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here