386401 – (CVE-2011-2704) <sci-geosciences/mapserver-6.0.1: Stack-based buffer overflow (CVE-2011-2704)

Bug 386401 (CVE-2011-2704) - <sci-geosciences/mapserver-6.0.1: Stack-based buffer overflow (CVE-2011-2704)

Summary: <sci-geosciences/mapserver-6.0.1: Stack-based buffer overflow (CVE-2011-2704)

Status:	RESOLVED FIXED

Alias:	CVE-2011-2704

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal trivial (vote)
Assignee:	Gentoo Security

URL:
Whiteboard:	~1 [noglsa]
Keywords:

Depends on:
Blocks:

Reported:	2011-10-08 17:13 UTC by GLSAMaker/CVETool Bot
Modified:	2011-10-11 22:23 UTC (History)
CC List:	2 users (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description GLSAMaker/CVETool Bot gentoo-dev

2011-10-08 17:13:48 UTC

CVE-2011-2704 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2011-2704):
  Stack-based buffer overflow in MapServer before 4.10.7 and 5.x before 5.6.7
  allows remote attackers to execute arbitrary code via vectors related to OGC
  filter encoding.

Comment 1 Agostino Sarubbo gentoo-dev

2011-10-11 07:18:37 UTC

In tree is available 6.0.1 that is not affected as advisory sayd;

@security:

can we close this?

Comment 2 Tim Sammut (RETIRED) gentoo-dev

2011-10-11 22:23:53 UTC

Yep, thanks. Closing noglsa.