Sun Microsystems Inc. Information for VU#844360
Domain Name System (DNS) stub resolver libraries vulnerable to buffer overflows via network name or address lookups
- Vendor Information Help Date Notified: 12 Nov 2002
- Statement Date:
- Date Updated: 15 Nov 2002
Status
Affected
Vendor Statement
The Solaris DNS resolver library (libresolv(3LIB)) is affected by VU#844360 in the following supported versions of Solaris:
Solaris 2.6
Patches are being generated for all of the above releases. Sun will be publishing a Sun Alert for this issue at the following location shortly:
The patches will be available from:
- http://sunsolve.sun.com/securitypatch
Vendor Information
The vendor has not provided us with any further information regarding this vulnerability.
Vendor References
None
Addendum
The CERT/CC has no additional comments at this time.
If you have feedback, comments, or additional information about this vulnerability, please send us email.