[Secure-testing-team] Bug#507587: CVE-2008-5282: multiple buffer overflows
Steffen Joeris
steffen.joeris at skolelinux.de
Tue Dec 2 19:20:05 UTC 2008
Package: amaya
Severity: grave
Tags: security
Justification: user security hole
Hi,
the following CVE (Common Vulnerabilities & Exposures) id was
published for amaya.
CVE-2008-5282[0]:
| Multiple stack-based buffer overflows in W3C Amaya Web Browser 10.0.1
| allow remote attackers to execute arbitrary code via (1) a link with a
| long HREF attribute, and (2) a DIV tag with a long id attribute.
If you fix the vulnerability please also make sure to include the
CVE id in your changelog entry.
Cheers
Steffen
For further information see:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-5282
http://security-tracker.debian.net/tracker/CVE-2008-5282
More information about the Secure-testing-team
mailing list