-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2425-1 security@xxxxxxxxxx http://www.debian.org/security/ Florian Weimer March 04, 2012 http://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : plib Vulnerability : buffer overflow Problem type : remote Debian-specific: no CVE ID : CVE-2011-4620 Debian Bug : 654785 It was discovered that PLIB, a library used by TORCS, contains a buffer overflow in error message processing, which could allow remote attackers to execute arbitrary code. For the stable distribution (squeeze), this problem has been fixed in version 1.8.5-5+squeeze1. For the testing distribution (wheezy) and the unstable distribution (sid), this problem has been fixed in version 1.8.5-5.1. We recommend that you upgrade your plib packages. Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: http://www.debian.org/security/ Mailing list: debian-security-announce@xxxxxxxxxxxxxxxx -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAEBAgAGBQJPU9dGAAoJEL97/wQC1SS+2nQIAIcxUIKWilDEczBANCW2/e11 0xvJh9o60iJYSD7Ac17Owhe6EsB2Hi8r1zWiwUd9qLPq8Pa53i3VEXL4fXRQg0D5 lylg1zdA5xuTdKSGgf6IoWPoOIvym9ls0GQ+fbIPTJqC7RY07Oujzh6duFJ11iAr LGksQKJg5bU+eU3bCOV7mwBzUqZ0KWasHpYS25+fDVkcnPy18foc/wfjZO++//t6 ULMeyD2LMO/lWd2KGQ+7kHfELeY4rhEF1luejc5yIxEF0Oxep7RF/fHXmJCqvtdM 4QhZ78BbwnOXeBVqDcLei2zkvQwJglOrvYWjBR9qZHaPuamKNR8UzKcfIn3hKcU= =cTXF -----END PGP SIGNATURE-----
