User: Password:
|
|
Subscribe / Log in / New account

Mageia alert MGASA-2013-0362 (quassel)

From:  Mageia Updates <buildsystem-daemon@mageia.org>
To:  updates-announce@ml.mageia.org
Subject:  [updates-announce] MGASA-2013-0362: Updated quassel package fixes security vulnerability
Date:  Sat, 30 Nov 2013 22:42:21 +0100
Message-ID:  <20131130214221.43E3548CF7@valstar.mageia.org>
Archive-link:  Article, Thread

MGASA-2013-0362 - Updated quassel package fixes security vulnerability Publication date: 30 Nov 2013 URL: http://advisories.mageia.org/MGASA-2013-0362.html Type: security Affected Mageia releases: 3 CVE: CVE-2013-6404 Description: Security vulnerability in Quassel before 0.9.2 through which a manipulated, but properly authenticated client was able to retrieve the backlog of other users on the same core in some cases (CVE-2013-6404). References: - https://bugs.mageia.org/show_bug.cgi?id=11808 - http://freecode.com/projects/quassel/releases/359566 - http://quassel-irc.org/node/123 - http://www.openwall.com/lists/oss-security/2013/11/28/8 - http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6404 SRPMS: - 3/core/quassel-0.9.2-1.mga3


(Log in to post comments)


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds