what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New

Mandriva Linux Security Advisory 2007.181

Mandriva Linux Security Advisory 2007.181
Posted Sep 13, 2007
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - A stack buffer overflow vulnerability was discovered in the RPCSEC_GSS RPC library by Tenable Network Security that could potentially allow for the execution of arbitrary code.

tags | advisory, overflow, arbitrary
systems | linux, mandriva
advisories | CVE-2007-3999
SHA-256 | fcb6d093bfd1297505d92ab2f4a3e29b414561911105c5fe46ae25a93ef65eaf

Mandriva Linux Security Advisory 2007.181

Change Mirror Download

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

_______________________________________________________________________

Mandriva Linux Security Advisory MDKSA-2007:181
http://www.mandriva.com/security/
_______________________________________________________________________

Package : librpcsecgss
Date : September 12, 2007
Affected: 2007.0, 2007.1, Corporate 4.0
_______________________________________________________________________

Problem Description:

A stack buffer overflow vulnerability was discovered in the RPCSEC_GSS
RPC library by Tenable Network Security that could potentially allow
for the execution of arbitrary code.

Updated packages have been patched to prevent these issues.
_______________________________________________________________________

References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3999
_______________________________________________________________________

Updated Packages:

Mandriva Linux 2007.0:
adee4ad65f8a754f8ccc6b4c8045859a 2007.0/i586/librpcsecgss2-0.12-2.1mdv2007.0.i586.rpm
6667d2fe30b9afa56d545f41d439bab8 2007.0/i586/librpcsecgss2-devel-0.12-2.1mdv2007.0.i586.rpm
82dd8353114027f39ea40147fa65d977 2007.0/SRPMS/librpcsecgss-0.12-2.1mdv2007.0.src.rpm

Mandriva Linux 2007.0/X86_64:
aa72629dcbf7b309d1255ba8b4e9c7a8 2007.0/x86_64/lib64rpcsecgss2-0.12-2.1mdv2007.0.x86_64.rpm
d4e208540e449e43ad3a791134b34085 2007.0/x86_64/lib64rpcsecgss2-devel-0.12-2.1mdv2007.0.x86_64.rpm
82dd8353114027f39ea40147fa65d977 2007.0/SRPMS/librpcsecgss-0.12-2.1mdv2007.0.src.rpm

Mandriva Linux 2007.1:
163c85ca6bcd8fb0255f09ed6dc87d25 2007.1/i586/librpcsecgss3-0.14-1.1mdv2007.1.i586.rpm
09660ca474ed5fa9264cba9260304271 2007.1/i586/librpcsecgss3-devel-0.14-1.1mdv2007.1.i586.rpm
e0a0fe57468e16a68c106a8cab72f826 2007.1/SRPMS/librpcsecgss-0.14-1.1mdv2007.1.src.rpm

Mandriva Linux 2007.1/X86_64:
8b30c8009536197215abc9c0b5e43ae2 2007.1/x86_64/lib64rpcsecgss3-0.14-1.1mdv2007.1.x86_64.rpm
4e4d10c2f7eb72948d6baee8f9c0039d 2007.1/x86_64/lib64rpcsecgss3-devel-0.14-1.1mdv2007.1.x86_64.rpm
e0a0fe57468e16a68c106a8cab72f826 2007.1/SRPMS/librpcsecgss-0.14-1.1mdv2007.1.src.rpm

Corporate 4.0:
ecd5d4eff04e2e09f7a6850da0b4dff1 corporate/4.0/i586/librpcsecgss0-0.5-1.1.20060mlcs4.i586.rpm
7d77ed46e5427ce213987cbee409785e corporate/4.0/i586/librpcsecgss0-devel-0.5-1.1.20060mlcs4.i586.rpm
3f64577e676dfd9aa09d829fe9de24bd corporate/4.0/i586/librpcsecgss2-0.12-1.1.20060mlcs4.i586.rpm
2f5c87cc699941cb1062c00fe19e37a5 corporate/4.0/i586/librpcsecgss2-devel-0.12-1.1.20060mlcs4.i586.rpm
33512d4c9c0c349ef5a013e4b9b25332 corporate/4.0/SRPMS/librpcsecgss-0.12-1.1.20060mlcs4.src.rpm
bd310e2ed1a24a876e8b06617034408f corporate/4.0/SRPMS/librpcsecgss0-0.5-1.1.20060mlcs4.src.rpm

Corporate 4.0/X86_64:
65df0614cbc92a6135759f984001dc6f corporate/4.0/x86_64/lib64rpcsecgss0-0.5-1.1.20060mlcs4.x86_64.rpm
0b37d5b2b99606080577a6e55cd92d49 corporate/4.0/x86_64/lib64rpcsecgss0-devel-0.5-1.1.20060mlcs4.x86_64.rpm
52c1e1c4cbfe5968e360a7c953bae101 corporate/4.0/x86_64/lib64rpcsecgss2-0.12-1.1.20060mlcs4.x86_64.rpm
7f324edf9b9eba95453d3f002f3688b7 corporate/4.0/x86_64/lib64rpcsecgss2-devel-0.12-1.1.20060mlcs4.x86_64.rpm
33512d4c9c0c349ef5a013e4b9b25332 corporate/4.0/SRPMS/librpcsecgss-0.12-1.1.20060mlcs4.src.rpm
bd310e2ed1a24a876e8b06617034408f corporate/4.0/SRPMS/librpcsecgss0-0.5-1.1.20060mlcs4.src.rpm
_______________________________________________________________________

To upgrade automatically use MandrivaUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

All packages are signed by Mandriva for security. You can obtain the
GPG public key of the Mandriva Security Team by executing:

gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

You can view other update advisories for Mandriva Linux at:

http://www.mandriva.com/security/advisories

If you want to report vulnerabilities, please contact

security_(at)_mandriva.com
_______________________________________________________________________

Type Bits/KeyID Date User ID
pub 1024D/22458A98 2000-07-10 Mandriva Security Team
<security*mandriva.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)

iD8DBQFG6E7HmqjQ0CJFipgRArPRAJ9fYLAU84R61RV56hfXNc11O5NLqgCfQw4D
MNrgDMg9sKL5fNArPlz+CMc=
=sRJs
-----END PGP SIGNATURE-----

Login or Register to add favorites

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    63 Files
  • 14
    Nov 14th
    18 Files
  • 15
    Nov 15th
    8 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    18 Files
  • 19
    Nov 19th
    7 Files
  • 20
    Nov 20th
    13 Files
  • 21
    Nov 21st
    6 Files
  • 22
    Nov 22nd
    48 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    60 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    44 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close