Debian Security Advisory

DLA-376-1 mono -- LTS security update

Date Reported:
30 Dec 2015
Affected Packages:
mono
Vulnerable:
Yes
Security database references:
In Mitre's CVE dictionary: CVE-2009-0689.
More information:

Mono's string-to-double parser may crash, on specially crafted input. This could theoretically lead to arbitrary code execution.

This issue has been fixed in Debian 6 Squeeze with the version 2.6.7-5.1+deb6u2 of mono. We recommend that you upgrade your mono packages.