Security Information / 2013 / Security Information -- DSA-2647-1 firebird2.1

Debian Security Advisory

DSA-2647-1 firebird2.1 -- buffer overflow

Date Reported:

15 Mar 2013

Affected Packages:

firebird2.1

Vulnerable:

Yes

Security database references:

In the Debian bugtracking system: Bug 702735.
In Mitre's CVE dictionary: CVE-2013-2492.

More information:

A buffer overflow was discovered in the Firebird database server, which could result in the execution of arbitrary code.

For the stable distribution (squeeze), this problem has been fixed in version 2.1.3.18185-0.ds1-11+squeeze1.

For the testing distribution (wheezy), firebird2.1 will be removed in favour of firebird2.5.

For the unstable distribution (sid), firebird2.1 will be removed in favour of firebird2.5.

We recommend that you upgrade your firebird2.1 packages.