Gentoo Full Text Bug Listing

Bug 219694 - www-misc/zoneminder <1.23.3 Unspecified Code Execution Vulnerabilities (CVE-2008-1381,CVE-2008-2033)

Bug#: 219694 (CVE-2008-1381)	Product: Gentoo Security	Version: unspecified	Platform: All
OS/Version: Linux	Status: RESOLVED	Severity: trivial	Priority: P2
Resolution: FIXED	Assigned To: security@gentoo.org	Reported By: smoothp9nguin@gmail.com
Component: Vulnerabilities
URL: http://secunia.com/advisories/29995/
Summary: www-misc/zoneminder <1.23.3 Unspecified Code Execution Vulnerabilities (CVE-2008-1381,CVE-2008-2033)
Keywords:
Status Whiteboard: ~1 [noglsa]
Opened: 2008-04-29 09:05 0000

Description:

Opened: 2008-04-29 09:05 0000

Secunia:

Description:
Some vulnerabilities have been reported in ZoneMinder, which potentially can be
exploited by malicious users to compromise a vulnerable system.

The vulnerabilities are caused due to unspecified errors and can be exploited
to execute arbitrary code.

Solution:
Update to version 1.23.3.

Original Advisory:
http://www.zoneminder.com/wiki/index.php/Change_History#Release_1.23.3

------- Comment #1 From Joel 2008-04-29 09:28:48 0000 -------

http://www.awe.com/mark/blog/200804272230.html (thanks to thoger)

------- Comment #2 From Gunnar Wrobel 2008-05-06 10:01:42 0000 -------

zoneminder-1.23.3 is in the tree. All versions were marked unstable and I'm
going to remove the older versions once I got feedback that the newer ebuild
works fine.

------- Comment #3 From Robert Buchholz 2008-05-06 15:34:57 0000 -------

thanks, closing then.