|
Family: Gentoo Local Security Checks --> Category: infos
[GLSA-200506-09] gedit: Format string vulnerability Vulnerability Scan
Vulnerability Scan Summary gedit: Format string vulnerability
Detailed Explanation for this Vulnerability Test
The remote host is affected by the vulnerability described in GLSA-200506-09
(gedit: Format string vulnerability)
A format string vulnerability exists when opening files with names
containing format specifiers.
Impact
A specially crafted file with format specifiers in the filename
can cause arbitrary code execution.
Workaround
There are no known workarounds at this time.
References:
http://www.securityfocus.com/bid/13699
http://mail.gnome.org/archives/gnome-announce-list/2005-June/msg00006.html
Solution:
All gedit users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=app-editors/gedit-2.10.3"
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|