Gentoo: GLSA-200611-24 Normal: LHa Remote Execution and DoS Threat
gentoo
November 28, 2006
LHa is affected by several vulnerabilities including the remote execution of arbitrary code.
Summary
Gentoo Linux Security Advisory GLSA 200611-24
https://security.gentoo.org/
Severity: Normal
Title: LHa: Multiple vulnerabilities
Date: November 28, 2006
Bugs: #151252
ID: 200611-24
Synopsis
=======
LHa is affected by several vulnerabilities including the remote
execution of arbitrary code.
Background
=========
LHa is a console-based program for packing and unpacking LHarc
archives.
Affected packages
================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 app-arch/lha < 114i-r6 >= 114i-r6
==========
Tavis Ormandy of the Google Security Team discovered several
vulnerabilities in the LZH decompression component used by LHa. The
make_table function of unlzh.c contains an array index...
Topics Covered
Resolution
References
Availability
style>.gentoo_availability{display:block;}
Concerns
PREVIOUS
NEXT
Warning: Undefined array key "advisory_info" in /var/www/www.linuxsecurity.com-443/html/tmp/regularlabs/custom_php/4179989_4c9dbbdde36eef04251a4ced7eac4df9 on line 11
Topics Covered
Background
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Affected Packages
Impact
Workaround
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!