Family: Debian Local Security Checks --> Category: infos
[DSA753] DSA-753-1 gedit Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
A format string vulnerability has been discovered in gedit, a
light-weight text editor for GNOME, that may allow attackers to cause
a denial of service (application crash) via a binary file with format
string specifiers in the filename. Since gedit supports opening files
via "http://" URLs (through GNOME vfs) and other schemes, this might
be a remotely exploitable vulnerability.
The old stable distribution (woody) is not vulnerable to this problem.
For the stable distribution (sarge) this problem has been fixed in
For the unstable distribution (sid) this problem has been fixed in
We recommend that you upgrade your gedit package.
Solution : http://www.debian.org/security/2005/dsa-753
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.