Gentoo Security Advisory GLSA 201209-09 (atheme) Network Vulnerability

Summary

The remote host is missing updates announced in advisory GLSA 201209-09.

Solution

All Atheme users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-irc/atheme-services-6.0.10' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20201209-09 http://bugs.gentoo.org/show_bug.cgi?id=409103

Insight

A vulnerability has been found in Atheme which may lead to Denial of Service or a bypass of security restrictions.

Severity

Classification

CVE CVE-2012-1576

CVSS	Base Score: 6.0 AV:N/AC:M/Au:S/C:P/I:P/A:P

Related Vulnerabilities

Gentoo Security Advisory GLSA 200402-04 (Gallery)
Gentoo Security Advisory GLSA 200406-11 (horde-imp)
Gentoo Security Advisory GLSA 200409-31 (jabberd)
Gentoo Security Advisory GLSA 200402-01 (PHP)
Gentoo Security Advisory GLSA 200312-07 (lftp)

Take action and discover your vulnerabilities