[ GLSA 200408-10 ] gv: Exploitable Buffer Overflow (fwd)
eikemeier at fillmore-labs.com
Sat Aug 14 04:06:02 PDT 2004
Michael Abbott wrote:
> The vulnerability report below was published on bugtraq on Thursday,
> but I see that the print/gv port is still on the vulnerable (3.5.8-r3)
> version and that (as of last night) this vulnerability is not reported
> by portaudit.
> Am I forwarding this report to the right place?
More or less. While Gentoo decided to fix this bug now in version
3.5.8-r4, we considered it better to fix it in version 3.5.8_1 (October
18th 2002). Usually old vulnerabilites aren't added to the portaudit
database (due to the effort necessary).
More information about the freebsd-ports