Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 438
Alerts This Week
Warning Icon 1 438

Gentoo: GLSA-200311-07 Normal: Libnids Remote Code Execution Issue Detected

gentoo
Calendar Grey November 24, 2003
Dist Gentoo Esm H88
Gentoo Linux Security Bulletin GLSA-202202-05 concerning libxyz remote access vulnerability demands prompt user intervention.
There is a bug in the part of libnids code responsible for TCP reassembly

Summary

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- - --------------------------------------------------------------------------- GENTOO LINUX SECURITY ANNOUNCEMENT 200311-07 - - ---------------------------------------------------------------------------
GLSA: 200311-07 package: net-libs/libnids summary: Libnids remote code execution severity: normal Gentoo bug: 32724 date: 2003-11-22 CVE: CAN-2003-0850 exploit: remote affected: <=1.17 fixed: >=1.18
DESCRIPTION:

There is a bug in the part of libnids code responsible for TCP reassembly. The flaw probably allows remote code execution.

SOLUTION:

It is recommended that all Gentoo Linux users who are running net-libs/libnids update their systems as follows:
emerge sync emerge '>=net-libs/libnids-1.18' emerge clean

...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround