thr3ads.net - Secure testing team - [Secure-testing-team] Bug#572563: CVE-2009-4652: Denial of service through MOTD [Mar 2010]

If this information is useful, please help other people find it:
Share via:

Moritz Muehlenhoff

2010-Mar-04 21:39 UTC

[Secure-testing-team] Bug#572563: CVE-2009-4652: Denial of service through MOTD

Package: ngircd
Severity: grave
Tags: security

Please see http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4652
for patches.

Since this package is apparently both unmaintained, unused and lagging
behind the current upstream, the cleanest solution might be a removal
from the archive.

Cheers,
         Moritz

-- System Information:
Debian Release: squeeze/sid
  APT prefers unstable
  APT policy: (500, ''unstable'')
Architecture: i386 (i686)

Kernel: Linux 2.6.32-2-686 (SMP w/1 CPU core)
Locale: LANG=C, LC_CTYPE=de_DE.ISO-8859-15 at euro (charmap=ISO-8859-15)
Shell: /bin/sh linked to /bin/bash

Versions of packages ngircd depends on:
ii  libc6                   2.10.2-5         Embedded GNU C Library: Shared lib
ii  zlib1g                  1:1.2.3.4.dfsg-3 compression library - runtime

ngircd recommends no packages.

ngircd suggests no packages.

Secure testing team - Mar 2010 - Bug#572563: CVE-2009-4652: Denial of service through MOTD

[Secure-testing-team] Bug#572563: CVE-2009-4652: Denial of service through MOTD