Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 573
Alerts This Week
Warning Icon 1 573

Gentoo: GLSA 200701-14 Normal: Mod_auth_kerb Buffer Overflow Risk

gentoo
Calendar Grey January 22, 2007
Dist Gentoo Esm H88
The Gentoo Linux Security Advisory GLSA 200801-15 outlines a severe vulnerability in the OpenSSL library, urging users to promptly update their systems to prevent exploits
Mod_auth_kerb is vulnerable to a buffer overflow possibly allowing a Denial of Service.

Summary

Gentoo Linux Security Advisory GLSA 200701-14 https://security.gentoo.org/ Severity: Normal Title: Mod_auth_kerb: Denial of Service Date: January 22, 2007 Bugs: #155782 ID: 200701-14

Synopsis ======= Mod_auth_kerb is vulnerable to a buffer overflow possibly allowing a Denial of Service.
Background ========= Mod_auth_kerb is an Apache authentication module using Kerberos.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-www/mod_auth_kerb < 5.0_rc7-r1 >= 5.0_rc7-r1
========== Mod_auth_kerb improperly handles component byte encoding in the der_get_oid() function, allowing for a buffer overflow to occur if there are no components which require more than one byte for en...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround