firebird2.5 -- security update

2014-12-21T00:00:00
ID DSA-3109
Type debian
Reporter Debian
Modified 2014-12-21T00:00:00

Description

Dmitry Kovalenko discovered that the Firebird database server is prone to a denial of service vulnerability. An unauthenticated remote attacker could send a malformed network packet to a firebird server, which would cause the server to crash.

For the stable distribution (wheezy), this problem has been fixed in version 2.5.2.26540.ds4-1~deb7u2.

For the upcoming stable distribution (jessie), this problem has been fixed in version 2.5.3.26778.ds4-5.

For the unstable distribution (sid), this problem has been fixed in version 2.5.3.26778.ds4-5.

We recommend that you upgrade your firebird2.5 packages.