Lucene search
GoogleOSV:DSA-1957-1HistoryDec 28, 2009 - 12:00 a.m.
aria2 - arbitrary code execution
2009-12-2800:00:00
Google
osv.dev
7
EPSS
0.069
Percentile
93.9%
It was discovered that aria2, a high speed download utility, is prone
to a buffer overflow in the DHT routing code, which might lead to the
execution of arbitrary code.
The oldstable distribution (etch) is not affected by this problem.
For the stable distribution (lenny), this problem has been fixed in
version 0.14.0-1+lenny1. Binaries for powerpc, arm, ia64 and hppa will
be provided once they are available.
For the testing distribution (squeeze) and the unstable distribution
(sid), this problem has been fixed in version 1.2.0-1.
We recommend that you upgrade your aria2 packages.
References
Related
openvas
openvas
Debian Security Advisory DSA 1957-1 (aria2)
2009-12-30 00:00:00
Fedora Core 10 FEDORA-2009-10344 (aria2)
2009-10-13 00:00:00
Mandrake Security Advisory MDVSA-2009:226 (aria2)
2009-09-15 00:00:00
debiancve
debiancve
CVE-2009-3575
2009-10-07 17:30:00
nessus
nessus
Debian DSA-1957-1 : aria2 - buffer overflow
2010-02-24 00:00:00
Fedora 10 : aria2-1.3.1-2.fc10 (2009-10344)
2009-10-09 00:00:00
Mandriva Linux Security Advisory : aria2 (MDVSA-2009:226)
2009-09-10 00:00:00
nvd
nvd
CVE-2009-3575
2009-10-07 17:30:00
ubuntucve
ubuntucve
CVE-2009-3575
2009-10-07 00:00:00
prion
prion
Buffer overflow
2009-10-07 17:30:00
fedora
fedora
[SECURITY] Fedora 10 Update: aria2-1.3.1-2.fc10
2009-10-09 03:38:55
securityvulns
securityvulns
aria2 download manager buffer overflow
2009-09-10 00:00:00
debian
debian
[SECURITY] [DSA 1957-1] New aria2 packages fix arbitrary code execution
2009-12-28 09:58:08
cvelist
cvelist
CVE-2009-3575
2009-10-07 17:00:00
cve
cve
CVE-2009-3575
2009-10-07 17:30:00
gentoo
gentoo
aria2: Multiple vulnerabilities
2010-01-13 00:00:00