Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-commits

From: "Sergey Popov (pinkbyte)" <pinkbyte@g.o>
To: gentoo-commits@l.g.o
Subject: [gentoo-commits] gentoo commit in xml/htdocs/security/en/glsa: glsa-201311-01.xml
Date: Mon, 04 Nov 2013 11:27:14
Message-Id: 20131104112710.C45112004B@flycatcher.gentoo.org
1 pinkbyte 13/11/04 11:27:10
2
3 Added: glsa-201311-01.xml
4 Log:
5 GLSA 201311-01
6
7 Revision Changes Path
8 1.1 xml/htdocs/security/en/glsa/glsa-201311-01.xml
9
10 file : http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/security/en/glsa/glsa-201311-01.xml?rev=1.1&view=markup
11 plain: http://sources.gentoo.org/viewvc.cgi/gentoo/xml/htdocs/security/en/glsa/glsa-201311-01.xml?rev=1.1&content-type=text/plain
12
13 Index: glsa-201311-01.xml
14 ===================================================================
15 <?xml version="1.0" encoding="UTF-8"?>
16 <?xml-stylesheet href="/xsl/glsa.xsl" type="text/xsl"?>
17 <?xml-stylesheet href="/xsl/guide.xsl" type="text/xsl"?>
18 <!DOCTYPE glsa SYSTEM "http://www.gentoo.org/dtd/glsa.dtd">
19 <glsa id="201311-01">
20 <title>Mednafen: Arbitrary code execution</title>
21 <synopsis>An unspecified vulnerability in Mednafen could result in the
22 execution of arbitrary code.
23 </synopsis>
24 <product type="ebuild">mednafen</product>
25 <announced>November 04, 2013</announced>
26 <revised>November 04, 2013: 1</revised>
27 <bug>326141</bug>
28 <access>remote</access>
29 <affected>
30 <package name="games-emulation/mednafen" auto="yes" arch="*">
31 <unaffected range="ge">0.8.13</unaffected>
32 <vulnerable range="lt">0.8.13</vulnerable>
33 </package>
34 </affected>
35 <background>
36 <p>Mednafen is an advanced NES, GB/GBC/GBA, TurboGrafx 16/CD, NGPC and Lynx
37 emulator.
38 </p>
39 </background>
40 <description>
41 <p>An unspecified vulnerability has been discovered in Mednafen when using
42 network play.
43 </p>
44 </description>
45 <impact type="normal">
46 <p>A remote server could execute arbitrary code with the privileges of the
47 process.
48 </p>
49 </impact>
50 <workaround>
51 <p>There is no known workaround at this time.</p>
52 </workaround>
53 <resolution>
54 <p>All Mednafen users should upgrade to the latest version:</p>
55
56 <code>
57 # emerge --sync
58 # emerge --ask --oneshot --verbose "&gt;=games-emulation/mednafen-0.8.13"
59 </code>
60 </resolution>
61 <references>
62 <uri link="http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-3085">CVE-2010-3085</uri>
63 </references>
64 <metadata tag="requester" timestamp="Fri, 07 Oct 2011 23:37:38 +0000">
65 underling
66 </metadata>
67 <metadata tag="submitter" timestamp="Mon, 04 Nov 2013 11:26:30 +0000">ackle</metadata>
68 </glsa>
Report Message
Find on MARC Find on Google Groups