Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 174429

Summary: net-proxy/3proxy Buffer overflow (CVE-2007-2031)
Product: Gentoo Security Reporter: Sune Kloppenborg Jeppesen (RETIRED) <jaervosz>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED FIXED    
Severity: major CC: net-proxy+disabled
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard: B1 [glsa] jaervosz
Package list:
Runtime testing required: ---

Description Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev 2007-04-13 11:29:28 UTC 
From Changelog:
Fuxes in 0.5.3h
!! Serious buffer overflow fixed on transparent requests handling
Comment 1 Alin Năstac (RETIRED) gentoo-dev 2007-04-13 13:28:42 UTC 
Version bumped to 0.5.3h, with amd64 keyword (tested by me).

Arches, please do your thing. 
It is easy to test, just run 3proxy-whatever -l.
Comment 2 Tobias Scherbaum (RETIRED) gentoo-dev 2007-04-13 16:30:37 UTC 
ppc stable
Comment 3 Raúl Porcel (RETIRED) gentoo-dev 2007-04-14 15:18:20 UTC 
x86 stable
Comment 4 Raphael Marichez (Falco) (RETIRED) gentoo-dev 2007-04-22 21:19:45 UTC 
GLSA 200704-17, thanks everybody