Description
Buffer overflow in (1) queue.c and (2) queued.c in queue before 1.30.1 may allow remote attackers to execute arbitrary code.
Product(s):
- GNU queue 1.12.7
- GNU queue 1.12.8
- GNU queue 1.12.9
- GNU queue 1.20.0pre3
- GNU queue 1.20.1
- GNU queue 1.20.2
Question to Ask Vendors:
- Can you confirm whether your systems are affected by CVE-2004-0555, and if so, what steps are you currently taking to mitigate this vulnerability?
- What is your estimated timeline for fully resolving CVE-2004-0555 in your products or services, and how will you communicate updates on this issue to us as your customer?
Recommended Actions:
- Check out the advisory links provided below.