A buffer overflow in libcapsinetwork might allow remote attackers to cause a Denial of Service condition.
|Package||net-libs/libcapsinetwork on all architectures|
|Affected versions||<= 0.3.0-r2|
libCapsiNetwork is a C++ network library to allow fast development of server daemon processes.
An off-by-one buffer overflow in libcapsinetwork network handling code is discovered.
A remote attacker could send a specially crafted request to application, that is linked with libcapsinetwork, possibly resulting in a Denial of Service condition.
There is no known workaround at this time.
Gentoo discontinued support for libCapsiNetwork. We recommend that users unmerge it:
# emerge --unmerge "net-libs/libcapsinetwork"
July 10, 2015
July 11, 2015: 2