Mandrake Linux Security Advisory : xinetd (MDKSA-2003:056)
Medium Nessus Plugin ID 14040
SynopsisThe remote Mandrake Linux host is missing one or more security updates.
DescriptionA vulnerability was discovered in xinetd where memory was allocated and never freed if a connection was refused for any reason. Because of this bug, an attacker could crash the xinetd server, making unavailable all of the services it controls. Other flaws were also discovered that could cause incorrect operation in certain strange configurations.
These issues have been fixed upstream in xinetd version 2.3.11 which are provided in this update.
SolutionUpdate the affected xinetd and / or xinetd-ipv6 packages.