Red Hat Inc. Information for VU#654390
ISC DHCP contains C Includes that define vsnprintf() to vsprintf() creating potential buffer overflow conditions
- Vendor Information Help Date Notified: 12 Jun 2004
- Statement Date:
- Date Updated: 22 Jun 2004
No updates are required for users of Red Hat Enterprise Linux 2.1 or 3. Both of these distributions include versions of DHCP where these issues are not exploitable.
The vendor has not provided us with any further information regarding this vulnerability.
The CERT/CC has no additional comments at this time.
If you have feedback, comments, or additional information about this vulnerability, please send us email.