TUCoPS :: Linux :: Debian :: dsa-350.htm

falconseye - buffer overflow

Debian Security Advisory

DSA-350-1 falconseye -- buffer overflow

Date Reported:
15 Jul 2003
Affected Packages:
falconseye
Vulnerable:
Yes
Security database references:
In Mitre's CVE dictionary: CAN-2003-0358.
More information:

The falconseye package is vulnerable to a buffer overflow exploited via a long -s command line option. This vulnerability could be used by an attacker to gain gid 'games' on a system where falconseye is installed.

Note that falconseye does not contain the file permission error CAN-2003-0359 which affected some other nethack packages.

For the stable distribution (woody) this problem has been fixed in version 1.9.3-7woody3.

For the unstable distribution (sid) this problem has been fixed in version 1.9.3-9.

We recommend that you update your falconseye package.

Fixed in:

Debian GNU/Linux 3.0 (woody)

Source:
http://security.debian.org/pool/updates/main/f/falconseye/falconseye_1.9.3-7woody3.dsc
http://security.debian.org/pool/updates/main/f/falconseye/falconseye_1.9.3-7woody3.diff.gz
http://security.debian.org/pool/updates/main/f/falconseye/falconseye_1.9.3.orig.tar.gz
Architecture-independent component:
http://security.debian.org/pool/updates/main/f/falconseye/falconseye-data_1.9.3-7woody3_all.deb
Alpha:
http://security.debian.org/pool/updates/main/f/falconseye/falconseye_1.9.3-7woody3_alpha.deb
ARM:
http://security.debian.org/pool/updates/main/f/falconseye/falconseye_1.9.3-7woody3_arm.deb
Intel IA-32:
http://security.debian.org/pool/updates/main/f/falconseye/falconseye_1.9.3-7woody3_i386.deb
Intel IA-64:
http://security.debian.org/pool/updates/main/f/falconseye/falconseye_1.9.3-7woody3_ia64.deb
HPPA:
http://security.debian.org/pool/updates/main/f/falconseye/falconseye_1.9.3-7woody3_hppa.deb
Motorola 680x0:
http://security.debian.org/pool/updates/main/f/falconseye/falconseye_1.9.3-7woody3_m68k.deb
Big endian MIPS:
http://security.debian.org/pool/updates/main/f/falconseye/falconseye_1.9.3-7woody3_mips.deb
Little endian MIPS:
http://security.debian.org/pool/updates/main/f/falconseye/falconseye_1.9.3-7woody3_mipsel.deb
PowerPC:
http://security.debian.org/pool/updates/main/f/falconseye/falconseye_1.9.3-7woody3_powerpc.deb
IBM S/390:
http://security.debian.org/pool/updates/main/f/falconseye/falconseye_1.9.3-7woody3_s390.deb
Sun Sparc:
http://security.debian.org/pool/updates/main/f/falconseye/falconseye_1.9.3-7woody3_sparc.deb

MD5 checksums of the listed files are available in the original advisory.

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH