Mandrake Linux Security Advisory : glibc (MDKSA-2002:050)
High Nessus Plugin ID 13953
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionA buffer overflow vulnerability was found in the way that the glibc resolver handles the resolution of network names and addresses via DNS in glibc versions 2.2.5 and earlier. Only systems using the 'dns' entry in the 'networks' database in /etc/nsswitch.conf are vulnerable to this issue. By default, Mandrake Linux has this database set to 'files' and is not vulnerable. Likewise, a similar bug is in the glibc-compat packages which provide compatability for programs compiled against 2.0.x versions of glibc.
SolutionUpdate the affected packages.