Detections
Analytics

Slackware 8.1 / 9.0 : glibc XDR overflow fix (SSA:2003-141-03)

high Nessus Plugin ID 37391

Synopsis

The remote Slackware host is missing a security update.

Description

An integer overflow in the xdrmem_getbytes() function found in the glibc library has been fixed. This could allow a remote attacker to execute arbitrary code by exploiting RPC service that use xdrmem_getbytes(). None of the default RPC services provided by Slackware appear to use this function, but third-party applications may make use of it. We recommend upgrading to these new glibc packages.

Solution

Update the affected packages.

See Also

http://www.nessus.org/u?bfafb927

Plugin Details

Severity: High

ID: 37391

File Name: Slackware_SSA_2003-141-03.nasl

Version: 1.12

Type: local

Published: 4/23/2009

Updated: 1/14/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:slackware:slackware_linux:glibc, p-cpe:/a:slackware:slackware_linux:glibc-debug, p-cpe:/a:slackware:slackware_linux:glibc-i18n, p-cpe:/a:slackware:slackware_linux:glibc-profile, p-cpe:/a:slackware:slackware_linux:glibc-solibs, p-cpe:/a:slackware:slackware_linux:glibc-zoneinfo, cpe:/o:slackware:slackware_linux:8.1, cpe:/o:slackware:slackware_linux:9.0

Required KB Items: Host/local_checks_enabled, Host/Slackware/release, Host/Slackware/packages

Patch Publication Date: 5/21/2003

Reference Information

SSA: 2003-141-03