Nessus Plugin #15119
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
[DSA282] DSA-282-1 glibc
- Family:
- Debian Local Security Checks
- Category:
- infos
- Copyright:
- This script is (C) 2004 Michel Arboi
- Summary:
- DSA-282-1 glibc
- Version:
- $Revision: 1.4 $
- Cve_id:
- CAN-2003-0028
- Bugtraq_id:
- 7123
- Xrefs:
- DSA:282, CERT:516825
- Description:
eEye Digital Security discovered an integer overflow in the
xdrmem_getbytes() function which is also present in GNU libc. This
function is part of the XDR (external data representation)
encoder/decoder derived from Sun's RPC implementation. Depending upon
the application, this vulnerability can cause buffer overflows and
could possibly be exploited to execute arbitrary code.
For the stable distribution (woody) this problem has been
fixed in version 2.2.5-11.5.
For the old stable distribution (potato) this problem has been
fixed in version 2.1.3-25.
For the unstable distribution (sid) this problem has been
fixed in version 2.3.1-16.
We recommend that you upgrade your libc6 packages.
Solution : http://www.debian.org/security/2003/dsa-282
Risk factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.