Gentoo Linux Security Advisory 201001-6 – A buffer overflow and a format string vulnerability in aria2 allow remote attackers to execute arbitrary code. Tatsuhiro Tsujikawa reported a buffer overflow in DHTRoutingTableDeserializer.cc (CVE-2009-3575) and a format string vulnerability in the AbstractCommand::onAbort() function in src/AbstractCommand.cc (CVE-2009-3617). Versions less than 1.6.3 are affected.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/85092/glsa-201001-06.txt
Source: https://packetstormsecurity.com/files/85092/Gentoo-Linux-Security-Advisory-201001-6.html