Family: Gentoo Local Security Checks --> Category: infos
[GLSA-200606-10] Cscope: Many buffer overflows Vulnerability Scan
Vulnerability Scan Summary
Cscope: Many buffer overflows
Detailed Explanation for this Vulnerability Test
The remote host is affected by the vulnerability described in GLSA-200606-10
(Cscope: Many buffer overflows)
Cscope does not verify the length of file names sourced in
A user could be enticed to source a carefully crafted file which
will allow the attacker to execute arbitrary code with the permissions
of the user running Cscope.
There is no known workaround at this time.
All Cscope users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=dev-util/cscope-15.5-r6"
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.