(ISC Issues Fix for BIND) FreeBSD libc Buffer Overflow in inet_network() May Let Users Deny Service or Execute Arbitrary Code
|
|
SecurityTracker Alert ID: 1019253 |
|
SecurityTracker URL: http://securitytracker.com/id/1019253
|
|
CVE Reference:
CVE-2008-0122
(Links to External Site)
|
Date: Jan 22 2008
|
Impact:
Denial of service via local system, Denial of service via network, Execution of arbitrary code via local system, Execution of arbitrary code via network, User access via local system, User access via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 8, 9
|
Description:
A vulnerability was reported in libc on FreeBSD. A user may be able to deny service or execute arbitrary code on the target system. libbind is affected.
A user may be able to supply specially crafted data to the inet_network() function to overwrite memory and execute arbitrary code with the privileges of the program calling the function.
Bjoern A. Zeeb and Nate Eldredge reported this vulnerability.
|
Impact:
A user may be able to deny service or execute arbitrary code on the target system. The specific impact depends on the program calling the vulnerable function.
|
Solution:
ISC has issued a fix for BIND. Applications that link to libbind and make a call to the vulnerable net_network() function may be affected. The vendor notes that none of the applications shipped with BIND 8 or BIND 9 make a call to the vulnerable function.
The fix is planned to be included in 9.3.5, 9.4.3, and 9.5.0b2.
A patch is available in the ISC advisory at:
http://www.isc.org/index.pl?/sw/bind/bind-security.php
|
Cause:
Boundary error
|
Underlying OS:
Linux (Any), UNIX (Any)
|
|
Message History:
This archive entry is a follow-up to the message listed below.
|
Source Message Contents
|
Date: Tue, 22 Jan 2008 12:39:03 -0500
Subject: BIND
|
http://www.isc.org/index.pl?/sw/bind/bind-security.php
CVE-2008-0122
|
|
