Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2009:1463
HistorySep 24, 2009 - 12:00 a.m.

(RHSA-2009:1463) Moderate: newt security update

2009-09-2400:00:00
access.redhat.com
9

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

8.6%

JSON

Newt is a programming library for color text mode, widget-based user
interfaces. Newt can be used to add stacked windows, entry widgets,
checkboxes, radio buttons, labels, plain text fields, scrollbars, and so
on, to text mode user interfaces.

A heap-based buffer overflow flaw was found in the way newt processes
content that is to be displayed in a text dialog box. A local attacker
could issue a specially-crafted text dialog box display request (direct or
via a custom application), leading to a denial of service (application
crash) or, potentially, arbitrary code execution with the privileges of the
user running the application using the newt library. (CVE-2009-2905)

Users of newt should upgrade to these updated packages, which contain a
backported patch to correct this issue. After installing the updated
packages, all applications using the newt library must be restarted for the
update to take effect.

Related

nessus 16
prion 1
fedora 2
oraclelinux 1
openvas 27
debiancve 1
osv 1
gentoo 1
cvelist 1
securityvulns 2
ubuntu 1
veracode 1
cve 1
centos 1
ubuntucve 1
debian 1
vmware 2
nessus
nessus
openSUSE Security Update : libnewt0_52 (libnewt0_52-1331)
2009-10-22 00:00:00
GLSA-201006-14 : Newt: User-assisted execution of arbitrary code
2010-06-03 00:00:00
RHEL 3 / 4 / 5 : newt (RHSA-2009:1463)
2009-09-25 00:00:00
prion
prion
Heap overflow
2009-09-29 19:30:00
fedora
fedora
[SECURITY] Fedora 11 Update: newt-0.52.10-4.fc11
2009-09-25 20:15:44
[SECURITY] Fedora 10 Update: newt-0.52.10-2.fc10
2009-09-25 20:14:51
oraclelinux
oraclelinux
newt security update
2009-09-24 00:00:00
openvas
openvas
Fedora Core 11 FEDORA-2009-9961 (newt)
2009-09-28 00:00:00
Mandrake Security Advisory MDVSA-2009:249 (newt)
2009-10-06 00:00:00
RedHat Security Advisory RHSA-2009:1463
2009-09-28 00:00:00
debiancve
debiancve
CVE-2009-2905
2009-09-29 19:30:00
osv
osv
newt - arbitrary code execution
2009-09-24 00:00:00
gentoo
gentoo
Newt: User-assisted execution of arbitrary code
2010-06-02 00:00:00
cvelist
cvelist
CVE-2009-2905
2009-09-29 19:00:00
securityvulns
securityvulns
newt library memory corruption
2009-09-24 00:00:00
[USN-837-1] Newt vulnerability
2009-09-24 00:00:00
ubuntu
ubuntu
Newt vulnerability
2009-09-24 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:41:13
cve
cve
CVE-2009-2905
2009-09-29 19:30:00
centos
centos
newt security update
2009-09-25 08:12:51
ubuntucve
ubuntucve
CVE-2009-2905
2009-09-29 00:00:00
debian
debian
[SECURITY] [DSA 1894-1] New newt packages fix arbitrary code execution
2009-09-24 12:30:21
vmware
vmware
ESX Service Console and vMA third party updates
2010-03-03 00:00:00
ESX Service Console and vMA third party updates
2010-03-03 00:00:00

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

8.6%

JSON
Related for RHSA-2009:1463
nessus16prion1fedora2oraclelinux1openvas27debiancve1osv1gentoo1cvelist1securityvulns2ubuntu1veracode1cve1centos1ubuntucve1debian1vmware2