Advisories:rPSA-2008-0241
From rPath Wiki
rPath Security Advisory 2008-0241-1
Published: 2008-07-30
Products
- rPath Linux 1
Rating
- Major
Exposure Level Classification
- Remote Deterministic Unauthorized Access
Updated Versions
- openssl=conary.rpath.com@rpl:1-compat/0.9.7a-0.5-2
- openssl-scripts=conary.rpath.com@rpl:1-compat/0.9.7a-0.5-2
rPath Issue Tracking System
References
Description
- Previous versions of the legacy openssl compatibility package are
- vulnerable to a buffer overflow, possibly enabling remote attackers
- to execute arbitrary code through applications that use the openssl
- libraries.
- This compatibility library was provided solely for transient
- compatibility with applications built for alpha releases of rPath
- Linux, to make it easier for alpha testers to upgrade their systems
- to rPath Linux 1. rPath is not aware of any applications that
- currently use these libraries, and so it is unlikely that any
- systems will actually be vulnerable to these attacks.
Copyright 2008 rPath, Inc. This file is distributed under the terms of the MIT License. A copy is available at http://www.rpath.com/permanent/mit-license.html