Lucene search
UbuntuUSN-837-1HistorySep 24, 2009 - 12:00 a.m.
Newt vulnerability
2009-09-2400:00:00
ubuntu.com
35
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
8
Confidence
High
EPSS
0
Percentile
10.1%
Releases
- Ubuntu 9.04
- Ubuntu 8.10
- Ubuntu 8.04
- Ubuntu 6.06
Packages
- newt -
Details
Miroslav Lichvar discovered that Newt incorrectly handled rendering in a
text box. An attacker could exploit this and cause a denial of service or
possibly execute arbitrary code with the privileges of the user invoking
the program.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 9.04 | noarch | libnewt0.52 | < 0.52.2-11.3ubuntu3.1 | UNKNOWN |
| Ubuntu | 9.04 | noarch | libnewt-dev | < 0.52.2-11.3ubuntu3.1 | UNKNOWN |
| Ubuntu | 9.04 | noarch | libnewt-pic | < 0.52.2-11.3ubuntu3.1 | UNKNOWN |
| Ubuntu | 9.04 | noarch | newt-tcl | < 0.52.2-11.3ubuntu3.1 | UNKNOWN |
| Ubuntu | 9.04 | noarch | python-newt | < 0.52.2-11.3ubuntu3.1 | UNKNOWN |
| Ubuntu | 9.04 | noarch | python-newt-dbg | < 0.52.2-11.3ubuntu3.1 | UNKNOWN |
| Ubuntu | 9.04 | noarch | whiptail | < 0.52.2-11.3ubuntu3.1 | UNKNOWN |
| Ubuntu | 8.10 | noarch | libnewt0.52 | < 0.52.2-11.3ubuntu1.1 | UNKNOWN |
| Ubuntu | 8.10 | noarch | libnewt-dev | < 0.52.2-11.3ubuntu1.1 | UNKNOWN |
| Ubuntu | 8.10 | noarch | libnewt-pic | < 0.52.2-11.3ubuntu1.1 | UNKNOWN |
References
Related
openvas
openvas
Fedora Core 11 FEDORA-2009-9961 (newt)
2009-09-28 00:00:00
Fedora Core 11 FEDORA-2009-9961 (newt)
2009-09-28 00:00:00
CentOS Update for newt CESA-2009:1463 centos4 i386
2011-08-09 00:00:00
prion
prion
Heap overflow
2009-09-29 19:30:00
debiancve
debiancve
CVE-2009-2905
2009-09-29 19:30:00
fedora
fedora
[SECURITY] Fedora 11 Update: newt-0.52.10-4.fc11
2009-09-25 20:15:44
[SECURITY] Fedora 10 Update: newt-0.52.10-2.fc10
2009-09-25 20:14:51
oraclelinux
oraclelinux
newt security update
2009-09-24 00:00:00
nessus
nessus
RHEL 3 / 4 / 5 : newt (RHSA-2009:1463)
2009-09-25 00:00:00
GLSA-201006-14 : Newt: User-assisted execution of arbitrary code
2010-06-03 00:00:00
openSUSE Security Update : libnewt0_52 (libnewt0_52-1331)
2009-10-22 00:00:00
securityvulns
securityvulns
newt library memory corruption
2009-09-24 00:00:00
[USN-837-1] Newt vulnerability
2009-09-24 00:00:00
gentoo
gentoo
Newt: User-assisted execution of arbitrary code
2010-06-02 00:00:00
cvelist
cvelist
CVE-2009-2905
2009-09-29 19:00:00
redhat
redhat
(RHSA-2009:1463) Moderate: newt security update
2009-09-24 00:00:00
osv
osv
newt - arbitrary code execution
2009-09-24 00:00:00
libnewt0_52-0.52.18-1.9 on GA media
2024-06-15 00:00:00
centos
centos
newt security update
2009-09-25 08:12:51
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:41:13
cve
cve
CVE-2009-2905
2009-09-29 19:30:00
nvd
nvd
CVE-2009-2905
2009-09-29 19:30:00
ubuntucve
ubuntucve
CVE-2009-2905
2009-09-29 00:00:00
debian
debian
[SECURITY] [DSA 1894-1] New newt packages fix arbitrary code execution
2009-09-24 12:30:05
vmware
vmware
ESX Service Console and vMA third party updates
2010-03-03 00:00:00
ESX Service Console and vMA third party updates
2010-03-03 00:00:00
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
8
Confidence
High
EPSS
0
Percentile
10.1%
Related for USN-837-1