Mandrake Linux Security Advisory : cvs (MDKSA-2004:058)
Critical Nessus Plugin ID 14157
SynopsisThe remote Mandrake Linux host is missing a security update.
DescriptionAnother vulnerability was discovered related to 'Entry' lines in cvs, by the development team (CVE-2004-0414).
As well, Stefan Esser and Sebastian Krahmer performed an audit on the cvs source code and discovered a number of other problems, including :
A double-free condition in the server code is exploitable (CVE-2004-0416).
By sending a large number of arguments to the CVS server, it is possible to cause it to allocate a huge amount of memory which does not fit into the address space, causing an error (CVE-2004-0417).
It was found that the serve_notify() function would write data out of bounds (CVE-2004-0418).
The provided packages update cvs to 1.11.16 and include patches to correct all of these problems.
SolutionUpdate the affected cvs package.