It was discovered that newsx, an NNTP news exchange utility, was affected by a buffer overflow allowing remote attackers to execute arbitrary code via a news article containing a large number of lines starting with a period. For the stable distribution (etch), this problem has been fixed in version 1.6-2etch1. For the testing (lenny) and unstable distribution (sid), this problem has been fixed in version 1.6-3. We recommend that you upgrade your newsx package.
It was discovered that newsx, an NNTP news exchange utility, was affected by a buffer overflow allowing remote attackers to execute arbitrary code via a news article containing a large number of lines starting with a period.
For the stable distribution (etch), this problem has been fixed in version 1.6-2etch4.
For the testing (lenny) and unstable distribution (sid), this problem has been fixed in version 1.6-3.
We recommend that you upgrade your newsx package.
MD5 checksums of the listed files are available in the original advisory.