Debian Security Advisory DSA 832-1 (gopher) Network Vulnerability

Summary

The remote host is missing an update to gopher announced via advisory DSA 832-1. Several buffer overflows have been discovered in gopher, a text-oriented client for the Gopher Distributed Hypertext protocol, that can be exploited by a malicious Gopher server. For the old stable distribution (woody) this problem has been fixed in version 3.0.3woody4.

Solution

For the stable distribution (sarge) this problem has been fixed in version 3.0.7sarge2. For the unstable distribution (sid) this problem has been fixed in version 3.0.11. We recommend that you upgrade your gopher package. https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20832-1

Severity

Classification

CVE CVE-2005-2772
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Debian Security Advisory DSA 069-1 (xloadimage)
Debian Security Advisory DSA 059-1 (man-db)
Debian Security Advisory DSA 003-1 (joe)
Debian Security Advisory DSA 1011-1 (kernel-patch-vserver, util-vserver)
Debian Security Advisory DSA 1052-1 (cgiirc)

Take action and discover your vulnerabilities