[Secure-testing-team] Bug#608288: CVE-2010-4254
Giuseppe Iuculano
iuculano at debian.org
Wed Dec 29 17:32:37 UTC 2010
Package: moon
Severity: serious
Tags: security
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi,
the following CVE (Common Vulnerabilities & Exposures) id was
published for moon.
CVE-2010-4254[0]:
| Mono, when Moonlight before 2.3.0.1 or 2.99.x before 2.99.0.10 is
| used, does not properly validate arguments to generic methods, which
| allows remote attackers to bypass generic constraints, and possibly
| execute arbitrary code, via a crafted method call.
If you fix the vulnerability please also make sure to include the
CVE id in your changelog entry.
For further information see:
[0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4254
http://security-tracker.debian.org/tracker/CVE-2010-4254
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAk0bcLIACgkQNxpp46476ar3VQCeMCkgi2LOffgbYtJ1VFi16BZY
jA4An3O+Jp9RxvLxI+JdU4RnIuJ1pru7
=Dusj
-----END PGP SIGNATURE-----
More information about the Secure-testing-team
mailing list