Gentoo Security Advisory GLSA 200504-10 (Gld) Network Vulnerability

Summary

The remote host is missing updates announced in advisory GLSA 200504-10.

Solution

All Gld users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=mail-filter/gld-1.5' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200504-10 http://bugs.gentoo.org/show_bug.cgi?id=88904 http://securitytracker.com/alerts/2005/Apr/1013678.html

Insight

Gld contains several serious vulnerabilities, potentially resulting in the execution of arbitrary code as the root user.

Severity

Classification

CVE CVE-2005-1099, CVE-2005-1100
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Gentoo Security Advisory GLSA 200406-17 (IPsec-Tools)
Gentoo Security Advisory GLSA 200409-03 (Python)
Gentoo Security Advisory GLSA 200404-15 (xchat)
Gentoo Security Advisory GLSA 200407-16 (Kernel)
Gentoo Security Advisory GLSA 200408-04 (PuTTY)

Take action and discover your vulnerabilities