Hottest Free Downloads - DownloadPipe.com Over 197,000 downloads! Bookmark Now!
DownloadPipe.com - New Downloads Every Minute
 SEARCH:
FAQFAQ    SearchSearch      ProfileProfile    Private MessagesPrivate Messages   Log inLog in

Bug#510585: CVE-2008-5718: arbitrary command execution in ..

  
   Linux (Home) -> Bugs RC RSS
Next:  Bug#510460: xserver-xorg-core: After updating to ..  
Author Message
Stefan Fritsch

External


Since: Jan 13, 2005
Posts: 119



(Msg. 1) Posted: Sat Jan 03, 2009 1:50 pm
Post subject: Bug#510585: CVE-2008-5718: arbitrary command execution in papd in netatalk
Archived from groups: linux>debian>bugs>rc (more info?)
Package: netatalk
Version: 2.0.3-4
Severity: grave
Tags: security

Hi,
the following CVE (Common Vulnerabilities & Exposures) id was
published for netatalk.

CVE-2008-5718[0]:
| The papd daemon in Netatalk before 2.0.4-beta2 allows remote
attackers
| to execute arbitrary commands via shell metacharacters in a print
| request. NOTE: some of these details are obtained from third party
| information.

If you fix the vulnerability please also make sure to include the
CVE id in your changelog entry.

For further information see:

[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5718
http://security-tracker.debian.net/tracker/CVE-2008-5718



--
To UNSUBSCRIBE, email to debian-bugs-rc-REQUEST.DeleteThis@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster.DeleteThis@lists.debian.org
Back to top
Login to vote
Display posts from previous:   
Related Topics:
Bug#484491: CVE-2008-2098: buffer overflow allows arbitrar.. - Package: vmware-package Severity: grave Tags: security Justification: user security hole Hi The following CVE[0] has been issued against vmware products. CVE-2008-2098: Heap-based buffer overflow in the VMware Host Guest File System (HGFS) in VMware....

Bug#381538: CVE-2006-3376: arbitrary code execution in lib.. - Package: libwmf0.2-7 Version: 0.2.8.4-1 Severity: grave Tags: security Justification: user security hole CVE-2006-3376 reads: Integer overflow in player.c in libwmf 0.2.8.4, as used in multiple products including (1) wv, (2) abiword, (3) freetype, (4)....

Bug#499771: webkit: several vulnerabilities (CVE-2008-3950.. - Package: webkit Severity: grave Tags: security, patch Justification: user security hole Hi, the following CVE (Common Vulnerabilities & Exposures) ids were published for webkit. CVE-2008-3950[0]: | Off-by-one error in the |..

Bug#472361: FTBFS: arbitrary hostname check fails on buildd - Package: slrn Version: 0.9.9~pre97-1 Severity: serious On the mips buildd "ball", slrn builds correctly, but the debian/rules file does a check on the output binary objects to see if the hostname is encoded anywhere. As the compiled-in help te...

Bug#405639: xserver-xorg: installs arbitrary -input and -v.. - Package: xserver-xorg Version: 7.1.0-9 Severity: grave Justification: renders package unusable when installing xserver-xorg (by way of xorg) in a newly built LTSP chroot environment, it seems to select an arbitrary -video and -input package. i ended up...
       Linux (Home) -> Bugs RC All times are: Pacific Time (US & Canada) (change)
Page 1 of 1

 
 You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
Categories:
 Windows Forums
 Game Forums
  Linux Forums
 Mac Forums
 PDA Forums
 Mobile Forums
  Top  |  Store  |  RSS Feeds RSS  |  Data Feeds  |  Advertise  |  Submit  |  Bookmark  |  Newsletter  |  Contact