Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Debian Security Advisory DSA 681-1 (synaesthesia)
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
The remote host is missing an update to synaesthesia announced via advisory DSA 681-1.
Insight
Insight
Erik Sjölund and Devin Carraway discovered that synaesthesia, a program for representing sounds visually, accesses user-controlled configuration and mixer files with elevated privileges. Thus, it is possible to read arbitrary files. For the stable distribution (woody) this problem has been fixed in version 2.1-2.1woody3. For the testing (sarge) and unstable (sid) distribution this problem does not exist since synaesthesia is not installed setuid root anymore. We recommend that you upgrade your synaesthesia package.
Solution
Solution
https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20681-1