Mandrake Linux Security Advisory : glibc (MDKSA-2003:037)
High Nessus Plugin ID 14021
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionAn integer overflow was discovered by eEye Digital Security in the xdrmem_getbytes() function of glibc 2.3.1 and earlier. This function is part of the XDR encoder/decoder derived from Sun's RPC implementation. Depending upon the application, this vulnerability can cause buffer overflows and could possibly be exploited to execute arbitrary code.
The provided packages contain patches that correct this issue and all users should upgrade. Please note that users of Mandrake Linux 9.1 already have this fix in the 9.1-released glibc packages.
SolutionUpdate the affected packages.