From 4f2d7949f03e1c198bc888f2d05f421d35c57e21 Mon Sep 17 00:00:00 2001 From: V3n3RiX Date: Mon, 9 Oct 2017 18:53:29 +0100 Subject: reinit the tree, so we can have metadata --- metadata/glsa/glsa-201402-20.xml | 59 ++++++++++++++++++++++++++++++++++++++++ 1 file changed, 59 insertions(+) create mode 100644 metadata/glsa/glsa-201402-20.xml (limited to 'metadata/glsa/glsa-201402-20.xml') diff --git a/metadata/glsa/glsa-201402-20.xml b/metadata/glsa/glsa-201402-20.xml new file mode 100644 index 000000000000..8425594c47b4 --- /dev/null +++ b/metadata/glsa/glsa-201402-20.xml @@ -0,0 +1,59 @@ + + + + KVIrc: Multiple vulnerabilities + Multiple vulnerabilities have been found in KVIrc, the worst of + which allows remote attackers to execute arbitrary code. + + kvirc + 2014-02-21 + 2014-02-21: 1 + 326149 + 330111 + remote + + + 4.1_pre4693 + 4.1_pre4693 + + + +

KVIrc is a free portable IRC client based on Qt.

+ + +

Multiple vulnerabilities have been discovered in KVIrc. Please review + the CVE identifiers referenced below for details. +

+ + +

A remote attacker could possibly execute arbitrary code with the + privileges of the process, cause a Denial of + Service condition, or overwrite arbitrary files. +

+ + +

There is no known workaround at this time.

+ + +

All KVIrc users should upgrade to the latest version:

+ + + # emerge --sync + # emerge --ask --oneshot --verbose ">=net-irc/kvirc-4.1_pre4693" + + +

NOTE: This is a legacy GLSA. Updates for all affected architectures are + available since July 29, 2010. It is likely that your system is already + no longer affected by this issue. +

+ + + CVE-2010-2451 + CVE-2010-2452 + CVE-2010-2785 + + craig + + pinkbyte + + -- cgit v1.2.3