what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New

Mandriva Linux Security Advisory 2007.181

Mandriva Linux Security Advisory 2007.181
Posted Sep 13, 2007
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - A stack buffer overflow vulnerability was discovered in the RPCSEC_GSS RPC library by Tenable Network Security that could potentially allow for the execution of arbitrary code.

tags | advisory, overflow, arbitrary
systems | linux, mandriva
advisories | CVE-2007-3999
SHA-256 | fcb6d093bfd1297505d92ab2f4a3e29b414561911105c5fe46ae25a93ef65eaf
Download | Favorite | View

Mandriva Linux Security Advisory 2007.181

Change Mirror Download

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

 _______________________________________________________________________
 
 Mandriva Linux Security Advisory                         MDKSA-2007:181
 http://www.mandriva.com/security/
 _______________________________________________________________________
 
 Package : librpcsecgss
 Date    : September 12, 2007
 Affected: 2007.0, 2007.1, Corporate 4.0
 _______________________________________________________________________
 
 Problem Description:
 
 A stack buffer overflow vulnerability was discovered in the RPCSEC_GSS
 RPC library by Tenable Network Security that could potentially allow
 for the execution of arbitrary code.
 
 Updated packages have been patched to prevent these issues.
 _______________________________________________________________________

 References:
 
 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3999
 _______________________________________________________________________
 
 Updated Packages:
 
 Mandriva Linux 2007.0:
 adee4ad65f8a754f8ccc6b4c8045859a  2007.0/i586/librpcsecgss2-0.12-2.1mdv2007.0.i586.rpm
 6667d2fe30b9afa56d545f41d439bab8  2007.0/i586/librpcsecgss2-devel-0.12-2.1mdv2007.0.i586.rpm 
 82dd8353114027f39ea40147fa65d977  2007.0/SRPMS/librpcsecgss-0.12-2.1mdv2007.0.src.rpm

 Mandriva Linux 2007.0/X86_64:
 aa72629dcbf7b309d1255ba8b4e9c7a8  2007.0/x86_64/lib64rpcsecgss2-0.12-2.1mdv2007.0.x86_64.rpm
 d4e208540e449e43ad3a791134b34085  2007.0/x86_64/lib64rpcsecgss2-devel-0.12-2.1mdv2007.0.x86_64.rpm 
 82dd8353114027f39ea40147fa65d977  2007.0/SRPMS/librpcsecgss-0.12-2.1mdv2007.0.src.rpm

 Mandriva Linux 2007.1:
 163c85ca6bcd8fb0255f09ed6dc87d25  2007.1/i586/librpcsecgss3-0.14-1.1mdv2007.1.i586.rpm
 09660ca474ed5fa9264cba9260304271  2007.1/i586/librpcsecgss3-devel-0.14-1.1mdv2007.1.i586.rpm 
 e0a0fe57468e16a68c106a8cab72f826  2007.1/SRPMS/librpcsecgss-0.14-1.1mdv2007.1.src.rpm

 Mandriva Linux 2007.1/X86_64:
 8b30c8009536197215abc9c0b5e43ae2  2007.1/x86_64/lib64rpcsecgss3-0.14-1.1mdv2007.1.x86_64.rpm
 4e4d10c2f7eb72948d6baee8f9c0039d  2007.1/x86_64/lib64rpcsecgss3-devel-0.14-1.1mdv2007.1.x86_64.rpm 
 e0a0fe57468e16a68c106a8cab72f826  2007.1/SRPMS/librpcsecgss-0.14-1.1mdv2007.1.src.rpm

 Corporate 4.0:
 ecd5d4eff04e2e09f7a6850da0b4dff1  corporate/4.0/i586/librpcsecgss0-0.5-1.1.20060mlcs4.i586.rpm
 7d77ed46e5427ce213987cbee409785e  corporate/4.0/i586/librpcsecgss0-devel-0.5-1.1.20060mlcs4.i586.rpm
 3f64577e676dfd9aa09d829fe9de24bd  corporate/4.0/i586/librpcsecgss2-0.12-1.1.20060mlcs4.i586.rpm
 2f5c87cc699941cb1062c00fe19e37a5  corporate/4.0/i586/librpcsecgss2-devel-0.12-1.1.20060mlcs4.i586.rpm 
 33512d4c9c0c349ef5a013e4b9b25332  corporate/4.0/SRPMS/librpcsecgss-0.12-1.1.20060mlcs4.src.rpm
 bd310e2ed1a24a876e8b06617034408f  corporate/4.0/SRPMS/librpcsecgss0-0.5-1.1.20060mlcs4.src.rpm

 Corporate 4.0/X86_64:
 65df0614cbc92a6135759f984001dc6f  corporate/4.0/x86_64/lib64rpcsecgss0-0.5-1.1.20060mlcs4.x86_64.rpm
 0b37d5b2b99606080577a6e55cd92d49  corporate/4.0/x86_64/lib64rpcsecgss0-devel-0.5-1.1.20060mlcs4.x86_64.rpm
 52c1e1c4cbfe5968e360a7c953bae101  corporate/4.0/x86_64/lib64rpcsecgss2-0.12-1.1.20060mlcs4.x86_64.rpm
 7f324edf9b9eba95453d3f002f3688b7  corporate/4.0/x86_64/lib64rpcsecgss2-devel-0.12-1.1.20060mlcs4.x86_64.rpm 
 33512d4c9c0c349ef5a013e4b9b25332  corporate/4.0/SRPMS/librpcsecgss-0.12-1.1.20060mlcs4.src.rpm
 bd310e2ed1a24a876e8b06617034408f  corporate/4.0/SRPMS/librpcsecgss0-0.5-1.1.20060mlcs4.src.rpm
 _______________________________________________________________________

 To upgrade automatically use MandrivaUpdate or urpmi.  The verification
 of md5 checksums and GPG signatures is performed automatically for you.

 All packages are signed by Mandriva for security.  You can obtain the
 GPG public key of the Mandriva Security Team by executing:

  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

 You can view other update advisories for Mandriva Linux at:

  http://www.mandriva.com/security/advisories

 If you want to report vulnerabilities, please contact

  security_(at)_mandriva.com
 _______________________________________________________________________

 Type Bits/KeyID     Date       User ID
 pub  1024D/22458A98 2000-07-10 Mandriva Security Team
  <security*mandriva.com>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (GNU/Linux)

iD8DBQFG6E7HmqjQ0CJFipgRArPRAJ9fYLAU84R61RV56hfXNc11O5NLqgCfQw4D
MNrgDMg9sKL5fNArPlz+CMc=
=sRJs
-----END PGP SIGNATURE-----

Login or Register to add favorites

File Archive:

April 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Apr 1st
    10 Files
  • 2
    Apr 2nd
    26 Files
  • 3
    Apr 3rd
    40 Files
  • 4
    Apr 4th
    6 Files
  • 5
    Apr 5th
    26 Files
  • 6
    Apr 6th
    0 Files
  • 7
    Apr 7th
    0 Files
  • 8
    Apr 8th
    22 Files
  • 9
    Apr 9th
    14 Files
  • 10
    Apr 10th
    10 Files
  • 11
    Apr 11th
    13 Files
  • 12
    Apr 12th
    14 Files
  • 13
    Apr 13th
    0 Files
  • 14
    Apr 14th
    0 Files
  • 15
    Apr 15th
    30 Files
  • 16
    Apr 16th
    10 Files
  • 17
    Apr 17th
    22 Files
  • 18
    Apr 18th
    45 Files
  • 19
    Apr 19th
    0 Files
  • 20
    Apr 20th
    0 Files
  • 21
    Apr 21st
    0 Files
  • 22
    Apr 22nd
    0 Files
  • 23
    Apr 23rd
    0 Files
  • 24
    Apr 24th
    0 Files
  • 25
    Apr 25th
    0 Files
  • 26
    Apr 26th
    0 Files
  • 27
    Apr 27th
    0 Files
  • 28
    Apr 28th
    0 Files
  • 29
    Apr 29th
    0 Files
  • 30
    Apr 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links
News by Month
News Tags
Files by Month
File Tags
File Directory
About Us
History & Purpose
Contact Information
Terms of Service
Privacy Statement
Copyright Information
Services
Security Services
Hosting By
Rokasec
close