|
|
Family: Debian Local Security Checks --> Category: infos
[DSA638] DSA-638-1 gopher Vulnerability Scan
Vulnerability Scan Summary
DSA-638-1 gopher
Detailed Explanation for this Vulnerability Test
"jaguar" has discovered two security relevant problems in gopherd, the
Gopher server in Debian which is part of the gopher package. The
Common Vulnerabilities and Exposures project identifies the following
vulnerabilities:
An integer overflow can happen when posting content of a specially
calculated size.
A format string vulnerability has been found in the log routine.
For the stable distribution (woody) these problems have been fixed in
version 3.0.3woody2.
The unstable distribution (sid) does not contain a gopherd package.
It has been replaced by Pygopherd.
We recommend that you upgrade your gopherd package.
Solution : http://www.debian.org/security/2005/dsa-638
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
