FS#6772 : Warning on ekiga

FS#6772 - Warning on ekiga

Attached to Project: Arch Linux
Opened by DaNiMoTh (DaNiMoTh) - Saturday, 31 March 2007, 18:20 GMT

Task Type	Bug Report
Category	Packages: Extra
Status	Closed
Assigned To	No-one
Architecture	All
Severity	High
Priority	Normal
Reported Version	0.7.2 Gimmick
Due in Version	Undecided
Due Date	Undecided
Percent Complete
Votes	0
Private	No

Details

------------------------------------------------------------
Arch Linux Security Warning ALSW 2007-#21
------------------------------------------------------------

Name: ekiga
Date: 2007-03-31
Severity: High
Warning #: 2007-#21

------------------------------------------------------------

Product Background
===================
Ekiga is an open source VoIP and video conferencing application.

Problem Background
===================
Mu Security has discovered that Ekiga fails to implement formatted
printing correctly.

Impact
=========
An attacker could exploit this vulnerability to crash Ekiga and
potentially execute arbitrary code by sending a specially crafted Q.931
SETUP packet to a victim.

Problem Packages
===================
Package: ekiga
Repo: extra
Group: network
Unsafe: < 2.0.7
Safe: >= 2.0.7

Package Fix
===================
Upgrade to 2.0.7.

===================

Unofficial ArchLinux Security Bug Tracker:
http://jjdanimoth.netsons.org/alsw.html

Reference(s)
===================
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1006

This task depends upon

Closed by Jan de Groot (JGC)
Saturday, 31 March 2007, 19:42 GMT
Reason for closing: Fixed

Comment by DaNiMoTh (DaNiMoTh) - Saturday, 31 March 2007, 19:25 GMT

Excuse me, ekiga is just upgraded. My mirror seems to be broken.

Thank you for patience :D

	Tasks related to this task (0)

Duplicate tasks of this task (0)

Arch Linux

FS#6772 - Warning on ekiga

Details

Loading...