Firebird News

Thursday, March 23, 2006

New Debian firebird2 packages fix denial of service

Aviram Jenik and Damyan Ivanov discovered a buffer overflow in firebird2, an RDBMS based on InterBase 6.0 code, that allows remote attackers to crash.

The old stable distribution (woody) does not contain firebird2 packages.

For the stable distribution (sarge) this problem has been fixed in version 1.5.1-4sarge1.

For the unstable distribution (sid) this problem has been fixed in version 1.5.3.4870-3

We recommend that you upgrade your firebird2 packages.



..::::..::::..

No comments: