public inbox for gentoo-dev@lists.gentoo.org
 help / color / mirror / Atom feed
* [gentoo-dev] Security Problems: xmule, lmule
@ 2003-08-19 22:47 Patrick Lauer
  2003-08-19 23:08 ` Rainer Groesslinger
  2003-08-27 13:43 ` Rainer Groesslinger
  0 siblings, 2 replies; 8+ messages in thread
From: Patrick Lauer @ 2003-08-19 22:47 UTC (permalink / raw
  To: gentoo-dev

Hi,

yesterday I found this:
http://www.heise.de/newsticker/data/dab-18.08.03-000/ (in german)

http://lists.netsys.com/pipermail/full-disclosure/2003-August/008449.html
(english)

short summary:
all emule, lmule and xmule versions are vulnerable to buffer overflows
including execution of malicious code.

xmule 1.4.3 (portage current) is very vulnerable.
xmule 1.5.6 (latest from xmule website) does not fix all known
vulnerabilities.

Please discourage the use of lmule and xmule until fixed versions are
available.

With best regards,
Patrick "bonsaikitten" Lauer


--
gentoo-dev@gentoo.org mailing list


^ permalink raw reply	[flat|nested] 8+ messages in thread

end of thread, other threads:[~2003-08-27 13:44 UTC | newest]

Thread overview: 8+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-08-19 22:47 [gentoo-dev] Security Problems: xmule, lmule Patrick Lauer
2003-08-19 23:08 ` Rainer Groesslinger
2003-08-19 23:19   ` Rainer Groesslinger
2003-08-19 23:25   ` Patrick Lauer
2003-08-19 23:32     ` Rainer Groesslinger
2003-08-19 23:51       ` Owen Gunden
2003-08-20  2:28     ` Georgi Georgiev
2003-08-27 13:43 ` Rainer Groesslinger

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox