FreeBSD, Inc. Information for VU#192995

Integer overflow in xdr_array() function when deserializing the XDR stream

Status

Affected

Vendor Statement

Please see ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:34.rpc.asc

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

Note this is a REVISED advisory pointing to patches correct on 07/31/2002.

If you have feedback, comments, or additional information about this vulnerability, please send us email.