|
|
|
View Notes By
|
|
|
|
Other Documents
|
|
|
|
|
Openwall GNU/*/Linux Information for VU#516825
| Date Notified | 12/11/2002 |
| Date Modified | 02/11/2004 11:37:28 AM |
| Status Summary | Unknown |
Vendor StatementThe xdrmem_getbytes() integer overflow discovered by eEye Digital Security was present in the glibc package on Openwall GNU/*/Linux until 2003/03/23 when it was corrected for Owl-current (with a back-port from the glibc CVS) and documented as a security fix in the system-wide change log available at:
http://www.openwall.com/Owl/CHANGES-current.shtml
Please note that Owl does not include any RPC services (but it does include a few RPC clients). It has not been fully researched whether an Owl install with no third-party software added is affected by this vulnerability at all.US-CERT AddendumThe CERT/CC has no additional comments at this time.
If you have feedback, comments, or additional information about this vulnerability, please send us
email.
|
 |