CVE-2004-2265

NameCVE-2004-2265
DescriptionUUDeview 0.5.20 and earlier handles temporary files insecurely during decoding, with unknown attack vectors and impact.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
Debian Bugs320541

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
uudeview (PTS)bullseye0.5.20-12fixed
bookworm0.5.20-14fixed
trixie0.5.20+20241015-1fixed
sid0.5.20+20241111-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
uudeviewsource(unstable)0.5.20-2.1low320541

Notes

[sarge] - uudeview <no-dsa> (Hardly exploitable)
dnprogs apparetly not vulnerable, unsafe code is not called (#358500)

Search for package or bug name: Reporting problems