Gentoo Security Advisory GLSA 201110-09 (Conky) Network Vulnerability

Summary

The remote host is missing updates announced in advisory GLSA 201110-09.

Solution

All Conky users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-admin/conky-1.8.1-r2' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20201110-09 http://bugs.gentoo.org/show_bug.cgi?id=354061

Insight

A privilege escalation vulnerability was found in Conky.

Severity

Classification

CVE CVE-2011-3616
CVSS Base Score: 6.3
AV:L/AC:M/Au:N/C:N/I:C/A:C

Related Vulnerabilities

Gentoo Security Advisory GLSA 200408-18 (xine-lib)
Gentoo Security Advisory GLSA 200407-03 (Apache)
Gentoo Security Advisory GLSA 200411-35 (phpwebsite)
Gentoo Security Advisory GLSA 200401-01 (Kernel)
Gentoo Security Advisory GLSA 200411-09 (shadow)

Take action and discover your vulnerabilities