Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Gentoo: GLSA-200803-02 High: Firebird Remote Code Execution Risks

gentoo
Calendar Grey March 3, 2008
Dist Gentoo Esm H88
This notice addresses significant security flaws in Firebird that allow remote code execution. Immediate updates are recommended.
Multiple vulnerabilities in Firebird may allow the remote execution of arbitrary code.

Summary

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Gentoo Linux Security Advisory                           GLSA 200803-02
                                            https://security.gentoo.org/

  Severity: High
     Title: Firebird: Multiple vulnerabilities
      Date: March 02, 2008
      Bugs: #208034
        ID: 200803-02


Synopsis
=======
Multiple vulnerabilities in Firebird may allow the remote execution of
arbitrary code.

Background
=========
Firebird is a multi-platform, open source relational database.

Affected packages
================
    -------------------------------------------------------------------
     Package          /      Vulnerable      /              Unaffected
    -------------------------------------------------------------------
  1  dev-db/firebird     < 2.0.3.12981.0-r5        >= 2.0.3.12981.0-r5

==========
Firebird does not properly handle certain types of XDR requests,
resulting in an integer overflow (CVE-2008-0387). Furthermore, it is
vulnerable to a buf...
Read the Full Advisory
Topics%20covered

Topics Covered

security advisory high severity gentoo remote execution firebird

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory high severity gentoo remote execution firebird

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here