aru Posted April 1, 2005 Report Share Posted April 1, 2005 Mandrakesoft Security Advisories MDKSA-2005:066 : grip Updated grip packages fix vulnerability April 1st, 2005 A buffer overflow bug was found by Dean Brettle in the way that grip handles data returned by CDDB servers.If a user connected to a malicious CDDB server, an attacker could execute arbitrary code on the user's machine. The updated packages have been patched to correct these issues. The released versions of Mandrake GNU/Linux affected are: 10.0 10.1 CS3.0 Full information about this advisory, including the updated packages, is available at: www.mandrakesoft.com/security/advisories?name=MDKSA-2005:066 Other references: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-0706 Posted automatically by aru (mdksec2mub v: mdksec2mub,v 0.11 2004/10/23 09:47:46 aru Exp aru $) Link to comment Share on other sites More sharing options...
Recommended Posts