Gentoo Security Advisory GLSA 200504-10 (Gld) Network Vulnerability

Summary

The remote host is missing updates announced in advisory GLSA 200504-10.

Solution

All Gld users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=mail-filter/gld-1.5' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200504-10 http://bugs.gentoo.org/show_bug.cgi?id=88904 http://securitytracker.com/alerts/2005/Apr/1013678.html

Insight

Gld contains several serious vulnerabilities, potentially resulting in the execution of arbitrary code as the root user.

Severity

Classification

CVE CVE-2005-1099, CVE-2005-1100

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Gentoo Security Advisory GLSA 200311-08 (Libnids)
Gentoo Security Advisory GLSA 200403-09 (mc)
Gentoo Security Advisory GLSA 200403-01 (libxml)
Gentoo Security Advisory GLSA 200407-16 (Kernel)
Gentoo Security Advisory GLSA 200407-05 (xdm)

Take action and discover your vulnerabilities