What is the severity of CVE-2009-2905?

CVE-2009-2905 has a high severity rating due to potential for denial of service or arbitrary code execution.

How do I fix CVE-2009-2905?

To fix CVE-2009-2905, upgrade to a version of newt that is not affected, such as 0.52.3 or later.

What are the affected versions of newt for CVE-2009-2905?

The affected versions of newt for CVE-2009-2905 are 0.51.5, 0.51.6, and 0.52.2.

Is CVE-2009-2905 a remote or local vulnerability?

CVE-2009-2905 is a local vulnerability, meaning it can only be exploited by local users.

What type of vulnerability is CVE-2009-2905?

CVE-2009-2905 is classified as a heap-based buffer overflow vulnerability.

Vulnerability/
CVE-2009-2905

medium

4.6

CWE

119

17/9/2009

29/9/2009

7/8/2024

CVE-2009-2905: Buffer Overflow

First published: Thu Sep 17 2009(Updated: )

Heap-based buffer overflow in textbox.c in newt 0.51.5, 0.51.6, and 0.52.2 allows local users to cause a denial of service (application crash) or possibly execute arbitrary code via a request to display a crafted text dialog box.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
Fedorahosted Newt	=0.51.6
Fedorahosted Newt	=0.52.2
Fedorahosted Newt	=0.51.5

Remedy

http://security.debian.org/pool/updates/main/n/newt/newt_0.52.2-10+etch1.diff.gz

Remedy

http://www.debian.org/security/2009/dsa-1894

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-2905?
CVE-2009-2905 has a high severity rating due to potential for denial of service or arbitrary code execution.
How do I fix CVE-2009-2905?
To fix CVE-2009-2905, upgrade to a version of newt that is not affected, such as 0.52.3 or later.
What are the affected versions of newt for CVE-2009-2905?
The affected versions of newt for CVE-2009-2905 are 0.51.5, 0.51.6, and 0.52.2.
Is CVE-2009-2905 a remote or local vulnerability?
CVE-2009-2905 is a local vulnerability, meaning it can only be exploited by local users.
What type of vulnerability is CVE-2009-2905?
CVE-2009-2905 is classified as a heap-based buffer overflow vulnerability.

collector/nvd-historical
collector/nvd-index
agent/type
agent/first-publish-date
agent/remedy
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/severity
agent/last-modified-date
agent/references
agent/weakness
agent/event
agent/description
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2009-2905
agent/trending
agent/tags
agent/source
vendor/fedorahosted
canonical/fedorahosted newt
version/fedorahosted newt/0.51.6
version/fedorahosted newt/0.52.2
version/fedorahosted newt/0.51.5

Frequently Asked Questions

What is the severity of CVE-2009-2905?
CVE-2009-2905 has a high severity rating due to potential for denial of service or arbitrary code execution.
How do I fix CVE-2009-2905?
To fix CVE-2009-2905, upgrade to a version of newt that is not affected, such as 0.52.3 or later.
What are the affected versions of newt for CVE-2009-2905?
The affected versions of newt for CVE-2009-2905 are 0.51.5, 0.51.6, and 0.52.2.
Is CVE-2009-2905 a remote or local vulnerability?
CVE-2009-2905 is a local vulnerability, meaning it can only be exploited by local users.
What type of vulnerability is CVE-2009-2905?
CVE-2009-2905 is classified as a heap-based buffer overflow vulnerability.

CVE-2009-2905: Buffer Overflow

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2009-2905?

How do I fix CVE-2009-2905?

What are the affected versions of newt for CVE-2009-2905?

Is CVE-2009-2905 a remote or local vulnerability?

What type of vulnerability is CVE-2009-2905?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2009-2905?

How do I fix CVE-2009-2905?

What are the affected versions of newt for CVE-2009-2905?

Is CVE-2009-2905 a remote or local vulnerability?

What type of vulnerability is CVE-2009-2905?