Alerts This Week
Warning Icon 1 792
Alerts This Week
Warning Icon 1 792

Gentoo 2003-11-07 GLSA: 200311-07 Normal: Libnids Remote Code Execution

gentoo
Calendar Grey November 24, 2003
Dist Gentoo Esm H88
Important: Upgrade Gentoo's libnids to mitigate possible risks of remote code execution vulnerabilities.
There is a bug in the part of libnids code responsible for TCP reassembly.The flaw probably allows remote code execution.

Summary


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - ---------------------------------------------------------------------------
GENTOO LINUX SECURITY ANNOUNCEMENT 200311-07
- - ---------------------------------------------------------------------------

GLSA:        200311-07
package:     net-libs/libnids
summary:     Libnids remote code execution
severity:    normal
Gentoo bug:  32724
date:        2003-11-22
CVE:         CAN-2003-0850
exploit:     remote
affected:    <=1.17 fixed:>=1.18

DESCRIPTION:


There is a bug in the part of libnids code responsible for TCP reassembly.
The flaw probably allows remote code execution.


SOLUTION:


It is recommended that all Gentoo Linux users who are running
net-libs/libnids update their systems as follows:

emerge sync
emerge '>=net-libs/libnids-1.18'
emerge clean


...
Read the Full Advisory
Topics%20covered

Topics Covered

security advisory Gentoo remote code execution bug fix normal severity libnids network library

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Severity
medium
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory Gentoo remote code execution bug fix normal severity libnids network library

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here