Debian: DSA-854-1 Urgent: TCP/IP Stack Security Vulnerability Mitigation
debian
October 9, 2005
Updated package.
Topics Covered
Summary
Memory allocation errors in the LDAP dissector can cause a denial
of service.
CAN-2005-2361
Various errors in the AgentX, PER, DOCSIS, RADIUS, Telnet, IS-IS,
HTTP, DCERPC, DHCP and SCTP dissectors can cause a denial of
service.
CAN-2005-2363
Various errors in the SMPP, 802.3, H1 and DHCP dissectors can
cause a denial of service.
CAN-2005-2364
Null pointer dereferences in the WBXML and GIOP dissectors can
cause a denial of service.
CAN-2005-2365
A buffer overflow and null pointer dereferences in the SMB
dissector can cause a denial of service.
CAN-2005-2366
Wrong address calculation in the BER dissector can cause an
infinite loop or abortion.
CAN-2005-2367
Format string vulnerabilities in the several dissectors allow
remote attackers to write to arbitrary memory locations and thus
gain privileges.
For the old stable distribution (woody) these problems have been fixed in
version 0.9.4-1woody13.
For the stab...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!