Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Gentoo: 200903-22 Critical: Ganglia Remote Code Execution Vulnerability

gentoo
Calendar Grey March 10, 2009
Dist Gentoo Esm H88
The Ganglia gmetad service suffers from a critical vulnerability due to a buffer overflow, which could permit unauthorized remote code execution. Immediate upgrades are highly advised.
A buffer-overflow in Ganglia's gmetad might lead to the execution of arbitrary code.

Summary

Gentoo Linux Security Advisory GLSA 200903-22 https://security.gentoo.org/ Severity: High Title: Ganglia: Execution of arbitrary code Date: March 10, 2009 Bugs: #255366 ID: 200903-22

Synopsis ======= A buffer-overflow in Ganglia's gmetad might lead to the execution of arbitrary code.
Background ========= Ganglia is a scalable distributed monitoring system for clusters and grids.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 sys-cluster/ganglia < 3.1.1-r2 >= 3.1.1-r2
========== Spike Spiegel reported a stack-based buffer overflow in the process_path() function when processing overly long pathnames in gmetad/server.c.
Impact ===== A remote attacker could send a ...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory high severity gentoo buffer overflow remote code execution

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Severity
critical
Lowest
Low
Medium
High
Critical

Topics%20covered

Topics Covered

security advisory high severity gentoo buffer overflow remote code execution

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here