Alerts This Week
Warning Icon 1 646
Alerts This Week
Warning Icon 1 646

Gentoo: 202310-19 Critical: Tweakpop SQL Infiltration External Risk

gentoo
Calendar Grey September 30, 2003
Dist Gentoo Esm H88
Arch Linux users are urged to upgrade their curl package to address security flaws associated with potential buffer overflows within its transfer functionalities.
teapop suffers from a sql injection in the postgresql and mysql authentication module.

Summary


GENTOO LINUX SECURITY ANNOUNCEMENT 200309-18
     GENTOO BUG # : 26730


DESCRIPTION

teapop suffers from a sql injection in the postgresql and mysql 
authentication module.

SOLUTION

it is recommended that all Gentoo Linux users who are running
net-mail/teapop upgrade to a fixed version.

make sure that the version to be installed is atleast 0.3.7.

emerge sync
emerge teapop -p
emerge teapop
emerge clean


Topics%20covered

Topics Covered

security advisory security update Gentoo remote exploit authentication issue SQL injection teapop

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Severity
critical
Lowest
Low
Medium
High
Critical

PACKAGE : teapop
SUMMARY : sql injection
DATE : 2003-09-30 20:52 UTC
EXPLOIT : remote
CVE : CAN-2003-0515

Topics%20covered

Topics Covered

security advisory security update Gentoo remote exploit authentication issue SQL injection teapop

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Related News

Your message here