Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-742-1
HistoryJul 07, 2005 - 12:00 a.m.

cvs - buffer overflow

2005-07-0700:00:00
Google
osv.dev
9

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON

Derek Price, the current maintainer of CVS, discovered a buffer
overflow in the CVS server, that serves the popular Concurrent
Versions System, which could lead to the execution of arbitrary code.

For the old stable distribution (woody) this problem has been fixed in
version 1.11.1p1debian-12.

For the stable distribution (sarge) this problem has been fixed in
version 1.12.9-13.

For the unstable distribution (sid) this problem has been fixed in
version 1.12.9-13.

We recommend that you upgrade your cvs package.

Related

nessus 11
cvelist 1
openvas 8
debian 2
cve 1
centos 2
gentoo 1
debiancve 1
checkpoint_advisories 1
slackware 1
redhat 1
altlinux 1
ubuntucve 1
ubuntu 1
freebsd_advisory 1
securityvulns 1
suse 1
nessus
nessus
SUSE-SA:2005:024: cvs
2005-04-18 00:00:00
Ubuntu 4.10 / 5.04 : cvs vulnerability (USN-117-1)
2006-01-15 00:00:00
GLSA-200504-16 : CVS: Multiple vulnerabilities
2005-04-19 00:00:00
cvelist
cvelist
CVE-2005-0753
2005-04-21 04:00:00
openvas
openvas
Debian: Security Advisory (DSA-742-1)
2008-01-17 00:00:00
FreeBSD Security Advisory (FreeBSD-SA-05:05.cvs.asc)
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200504-16 (CVS)
2008-09-24 00:00:00
debian
debian
[SECURITY] [DSA 742-1] New cvs packages fix arbitrary code execution
2005-07-07 00:00:00
[SECURITY] [DSA 742-1] New cvs packages fix arbitrary code execution
2005-07-07 21:04:16
cve
cve
CVE-2005-0753
2005-04-18 04:00:00
centos
centos
cvs security update
2005-04-26 22:37:03
cvs security update
2005-04-26 13:42:59
gentoo
gentoo
CVS: Multiple vulnerabilities
2005-04-18 00:00:00
debiancve
debiancve
CVE-2005-0753
2005-04-18 04:00:00
checkpoint_advisories
checkpoint_advisories
CVS Annotate Command Revision String Buffer Overflow (CVE-2005-0753)
2009-11-15 00:00:00
slackware
slackware
CVS
2005-04-21 22:27:21
redhat
redhat
(RHSA-2005:387) cvs security update
2005-04-25 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package cvs version 1.11.19-alt1
2005-04-06 00:00:00
ubuntucve
ubuntucve
CVE-2005-0753
2005-04-18 00:00:00
ubuntu
ubuntu
cvs vulnerability
2005-05-04 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-05:05.cvs
2005-04-22 00:00:00
securityvulns
securityvulns
[Full-disclosure] SUSE Security Announcement: cvs (SUSE-SA:2005:024)
2005-04-18 00:00:00
suse
suse
remote code execution in cvs
2005-04-18 14:31:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON
Related for OSV:DSA-742-1
nessus11cvelist1openvas8debian2cve1centos2gentoo1debiancve1checkpoint_advisories1slackware1redhat1altlinux1ubuntucve1ubuntu1freebsd_advisory1securityvulns1suse1