Gentoo Security Advisory GLSA 200405-01 (neon)

Summary
The remote host is missing updates announced in advisory GLSA 200405-01.
Solution
Neon users should upgrade to version 0.24.5 or later: # emerge sync # emerge -pv '>=net-misc/neon-0.24.5' # emerge '>=net-misc/neon-0.24.5' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200405-01 http://bugs.gentoo.org/show_bug.cgi?id=48448
Insight
There are multiple format string vulnerabilities in libneon which may allow a malicious WebDAV server to execute arbitrary code.