Package name
aria2
Date
2009-09-09
Advisory ID
MDVSA-2009:226
Affected versions
2009.0 x86_64 , MES5 i586 , 2009.1 i586 , 2009.0 i586 , 2009.1 x86_64 , MES5 x86_64

Problem description

A vulnerability has been found and corrected in aria2:

Buffer overflow in DHTRoutingTableDeserializer.cc in aria2 0.15.3,
1.2.0, and other versions allows remote attackers to cause a denial
of service (crash) and possibly execute arbitrary code via unknown
vectors (CVE-2009-3575).

This update provides a solution to this vulnerability.

Updated packages

2009.0 x86_64

 3ffda03aa513f64aae44c753723b6057  2009.0/x86_64/aria2-0.15.3-0.20080918.3.1mdv2009.0.x86_64.rpm 
 426570e80bfb4500ddfb6b614ce00b1d  2009.0/SRPMS/aria2-0.15.3-0.20080918.3.1mdv2009.0.src.rpm

MES5 i586

 3d6e5be8530d12ffd36e9e643a4e4538  mes5/i586/aria2-0.15.3-0.20080918.3.1mdvmes5.i586.rpm 
 5ffa73ba78d44cf0c61dda3042e23d00  mes5/SRPMS/aria2-0.15.3-0.20080918.3.1mdvmes5.src.rpm

2009.1 i586

 ad69905c7c6705df5e6a45c74bffef2e  2009.1/i586/aria2-1.2.0-0.20090201.3.1mdv2009.1.i586.rpm 
 50e2057ebaac0901d19ca7feb8063e53  2009.1/SRPMS/aria2-1.2.0-0.20090201.3.1mdv2009.1.src.rpm

2009.0 i586

 aca5d2cf89e66c2ce9571a92d4422fdd  2009.0/i586/aria2-0.15.3-0.20080918.3.1mdv2009.0.i586.rpm 
 426570e80bfb4500ddfb6b614ce00b1d  2009.0/SRPMS/aria2-0.15.3-0.20080918.3.1mdv2009.0.src.rpm

2009.1 x86_64

 4b5529526d974780f65a7036424b8aa5  2009.1/x86_64/aria2-1.2.0-0.20090201.3.1mdv2009.1.x86_64.rpm 
 50e2057ebaac0901d19ca7feb8063e53  2009.1/SRPMS/aria2-1.2.0-0.20090201.3.1mdv2009.1.src.rpm

MES5 x86_64

 bc874285d1ded702bded3e04767e9aa6  mes5/x86_64/aria2-0.15.3-0.20080918.3.1mdvmes5.x86_64.rpm 
 5ffa73ba78d44cf0c61dda3042e23d00  mes5/SRPMS/aria2-0.15.3-0.20080918.3.1mdvmes5.src.rpm

References