bugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

rPSA-2006-0219-1 info install-info texinfo

from [rPath Update Announcements] [Permanent Link][Original]
To: security-announce@lists.rpath.com, update-announce@lists.rpath.com
Subject: rPSA-2006-0219-1 info install-info texinfo
From: rPath Update Announcements <announce-noreply@rpath.com>
Date: Mon, 27 Nov 2006 10:44:06 -0500
Cc: full-disclosure@lists.grok.org.uk, bugtraq@securityfocus.com, lwn@lwn.net
Delivered-to: sp-com-lists@consult.net
Delivered-to: bugtraq-list@securepoint.com
Delivered-to: mailing list bugtraq@securityfocus.com
Delivered-to: moderator for bugtraq@securityfocus.com
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@securityfocus.com; run by ezmlm
User-agent: nail 11.22 3/20/05 
rPath Security Advisory: 2006-0219-1
Published: 2006-11-27
Products: rPath Linux 1
Rating: Minor
Exposure Level Classification:
    Indirect User Deterministic Unauthorized Access
Updated Versions:
    info=/conary.rpath.com@rpl:devel//1/4.8-6.2-1
    install-info=/conary.rpath.com@rpl:devel//1/4.8-6.2-1
    texinfo=/conary.rpath.com@rpl:devel//1/4.8-6.2-1

References:
    http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4810
    https://issues.rpath.com/browse/RPL-810

Description:
    Previous versions of the texinfo package can be caused to execute
    arbitrary code contained in an intentionally malformed texinfo
    file.  These texinfo commands are often run automatically when
    building software packages.
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
  • rPSA-2006-0219-1 info install-info texinfo, rPath Update Announcements <=
Previous by Date:  PhpGedView 4.0.2 (DOCUMENT_ROOT) File inclusion Vulnerablity, x___ . _
Next by Date:  Re: CuteNews v1.4.5 (search.php) Remote file include vulnerability, Francesco Laurita
Previous by Thread:  PhpGedView 4.0.2 (DOCUMENT_ROOT) File inclusion Vulnerablity, x___ . _
Next by Thread:  iDefense Security Advisory 11.26.06: GNU Radius Format String Vulnerability, iDefense Labs
Indexes:  [Date] [Thread] [Top] [All Lists]