Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 523
Alerts This Week
Warning Icon 1 523

Gentoo: 200504-07 Update: GnomeVFS and libcdaudio Critical Buffer Overrun

gentoo
Calendar Grey April 8, 2005
Scroller Gentoo
GnomeVFS and libcdaudio experience a medium-level security risk due to a buffer overflow vulnerability that may allow for unauthorized code execution.
The GnomeVFS and libcdaudio libraries contain a buffer overflow that can be triggered by a large CDDB response, potentially allowing the execution of arbitrary code

Summary

Gentoo Linux Security Advisory GLSA 200504-07 https://security.gentoo.org/ Severity: Normal Title: GnomeVFS, libcdaudio: CDDB response overflow Date: April 08, 2005 Bugs: #84936 ID: 200504-07

Synopsis ======= The GnomeVFS and libcdaudio libraries contain a buffer overflow that can be triggered by a large CDDB response, potentially allowing the execution of arbitrary code.
Background ========= GnomeVFS is a filesystem abstraction library for the GNOME desktop environment. libcdaudio is a multi-platform CD player development library. They both include code to query CDDB servers to get Audio CD track titles.
...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround