Red Hat Inc. Information for VU#743092
realpath(3) function contains off-by-one buffer overflow
- Vendor Information Help Date Notified:
- Statement Date:
- Date Updated: 01 Aug 2003
Status
Affected
Vendor Statement
Red Hat Linux versions prior to version 9, and Red Hat Enterprise Linux Server ship with wu-ftpd packages that contain this bug. New wu-ftpd packages are now available along with our advisory at the URLs below. Users of the Red Hat Network can update their systems using the 'up2date'tool.
Red Hat Enterprise Linux:
Red Hat Linux:
http://rhn.redhat.com/errata/RHSA-2003-245.html
Vendor Information
The vendor has not provided us with any further information regarding this vulnerability.
Vendor References
None
Addendum
If you have feedback, comments, or additional information about this vulnerability, please send us email.