|
|
>> Fedora Security Update Fixes Tog-pegasus Buffer Overflow Vulnerability
|
Title : Fedora Security Update Fixes Tog-pegasus Buffer Overflow Vulnerability
VUPEN ID : VUPEN/ADV-2008-0139
CVE ID : CVE-2008-0003
Rated as : High Risk 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2008-01-14
|
A vulnerability has been identified in Fedora, which could be exploited by remote attackers to execute arbitrary code. This issue is caused by an error in tog-pegasus. For additional information, see : VUPEN/ADV-2008-0063
Affected Products
Fedora 7
Fedora 8
Solution
Upgrade the affected packages :
66c0f9bfb115fc0caace13224a4817ac579f255d tog-pegasus-debuginfo-2.6.0-3.fc7.ppc64.rpm
6a033d6ba4cbff0f97136728562012ffc0b0c9ca tog-pegasus-devel-2.6.0-3.fc7.ppc64.rpm
e092dc4dea84400a77063c66a12c54be970638be tog-pegasus-2.6.0-3.fc7.ppc64.rpm
c7afa8391b2a280de2b73a8fb6d6f69a62e1d1ee tog-pegasus-debuginfo-2.6.0-3.fc7.i386.rpm
3f960f807c8d187390b371ed019483efa4472e50 tog-pegasus-devel-2.6.0-3.fc7.i386.rpm
e23d46f76a9f4b78850725830e6489c733d5b58e tog-pegasus-2.6.0-3.fc7.i386.rpm
bfab4727844725f4ac2407e493af59ca0b5374d4 tog-pegasus-debuginfo-2.6.0-3.fc7.x86_64.rpm
b3ad7bfb57842770004fc26022ed733821a024d7 tog-pegasus-devel-2.6.0-3.fc7.x86_64.rpm
d2d2ea4d69a54e7ac137e227b4737305936ea473 tog-pegasus-2.6.0-3.fc7.x86_64.rpm
7bab9f53f306374756afae283f09a8cb32282002 tog-pegasus-debuginfo-2.6.0-3.fc7.ppc.rpm
ab2a25b200925b9dcf59b32f7fab98253bfbf1cf tog-pegasus-devel-2.6.0-3.fc7.ppc.rpm
7c0f00cd4eafca1aabfbc69c6e348b23dda995f8 tog-pegasus-2.6.0-3.fc7.ppc.rpm
ad7e385329febc909cb8b3b6da64f285ca54d574 tog-pegasus-2.6.0-3.fc7.src.rpm
d7c2c8bdb72bd9fd1c68c868ffa9f4ffed00cbcf tog-pegasus-debuginfo-2.6.1-3.fc8.ppc64.rpm
ba215d724b11137459f9e6494750f694f0a04e35 tog-pegasus-devel-2.6.1-3.fc8.ppc64.rpm
299c7487ce8a58598491d3dd16731d3007e2ef09 tog-pegasus-2.6.1-3.fc8.ppc64.rpm
948869525340360276d01889531af8c48924b33c tog-pegasus-debuginfo-2.6.1-3.fc8.i386.rpm
fc396a29ca0c5f1156bbcfb929b6f45937712f56 tog-pegasus-devel-2.6.1-3.fc8.i386.rpm
998d3c9f3a03a7ed8e5fc0cab950d65ac6e5b528 tog-pegasus-2.6.1-3.fc8.i386.rpm
74d55624372e336ed1e3a376a4e376b24502a13b tog-pegasus-devel-2.6.1-3.fc8.x86_64.rpm
926490c3df5f8a712125d0d54fa5c4e68a68b694 tog-pegasus-debuginfo-2.6.1-3.fc8.x86_64.rpm
091de15e4e54e96a44a5369db1451517dc135710 tog-pegasus-2.6.1-3.fc8.x86_64.rpm
86a903e3add113d64349fcb00191e9c83f9d8fed tog-pegasus-debuginfo-2.6.1-3.fc8.ppc.rpm
b2d5497c76afa34abe41d56519c2a2dd804e5594 tog-pegasus-devel-2.6.1-3.fc8.ppc.rpm
9c15d6d965ccfe4385da9ce9a58b9423ee8627c8 tog-pegasus-2.6.1-3.fc8.ppc.rpm
221642e8f404f06011d4a3d82539d117fb7265e5 tog-pegasus-2.6.1-3.fc8.src.rpm
References
http://www.vupen.com/english/advisories/2008/0139
https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00424.html
https://www.redhat.com/archives/fedora-package-announce/2008-January/msg00480.html
ChangeLog
2008-01-14 : Initial release
Vulnerability Management
Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback
If you have additional information or corrections for this security advisory please submit them via our contact form. | |
|
