Weekly edition	Kernel	Security	Distributions	Contact Us	Search
Archives	Calendar	Subscribe	Write for LWN	LWN.net FAQ	Sponsors

gv: unsafe sscanf () buffer overflow vulnerability

Package(s):

CVE #(s):

CAN-2002-0838

Created:

August 12, 2004

Updated:

August 19, 2004

Description:

gv (prior to version 3.5.8-r4) has a buffer overflow vulnerability involving the sscanf() function. An attacker can execute arbitrary code with the permission of the user running gv.

Alerts:

Gentoo

200408-10

2004-08-12

(Log in to post comments)

gv: unsafe sscanf () buffer overflow vulnerability

Posted Aug 19, 2004 18:23 UTC (Thu) by scottt (subscriber, #5028) [Link]

"prior to version 2.5.8-r4" should really be 3.5.8-r4