Lucene search

GoogleOSV:DSA-812-1

HistorySep 15, 2005 - 12:00 a.m.

turqstat - buffer overflow

2005-09-1500:00:00

Google

osv.dev

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON

Peter Karlsson discovered a buffer overflow in Turquoise SuperStat, a
program for gathering statistics from Fidonet and Usenet, that can be
exploited by a specially crafted NNTP server.

For the old stable distribution (woody) this problem has been fixed in
version 2.2.1woody1.

For the stable distribution (sarge) this problem has been fixed in
version 2.2.2sarge1.

For the unstable distribution (sid) this problem has been fixed in
version 2.2.4-1.

We recommend that you upgrade your turqstat package.

CPENameOperatorVersion
turqstateq2.2.2

CPE	Name	Operator	Version
	turqstat	eq	2.2.2

References

www.debian.org/security/2005/dsa-812

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

JSON

Related for OSV:DSA-812-1