What Are You Looking For?

Sign Up

- - ---------------------------------------------------------------------
GENTOO LINUX SECURITY ANNOUNCEMENT 200307-07
- - ---------------------------------------------------------------------

          PACKAGE : nfs-utils
          SUMMARY : off by one bug
             DATE : 2003-07-19 15:13 UTC
          EXPLOIT : remote
VERSIONS AFFECTED : =nfs-utils-1.0.4
              CVE : CAN-2003-0252

- - ---------------------------------------------------------------------

quote from advisory:

"Local or remote attacker which is capable to send RPC request to
vulnerable mountd daemon could execute artitrary code or cause
denial of service."

read the full advisory at: 
https://marc.theaimsgroup.com/?l=bugtraq&m=105820223707191&w=2

SOLUTION

It is recommended that all Gentoo Linux users who are running
net-fs/nfs-utils upgrade to nfs-utils-1.0.5 as follows

emerge sync
emerge nfs-utils
emerge clean

- - ---------------------------------------------------------------------
aliz@gentoo.org - GnuPG key is available at   
- - ---------------------------------------------------------------------

Gentoo: nfs-utils Denial of service

Local or remote attacker which is capable to send RPC request tovulnerable mountd daemon could execute artitrary code or causedenial of service.

Summary


- - ---------------------------------------------------------------------
GENTOO LINUX SECURITY ANNOUNCEMENT 200307-07
- - ---------------------------------------------------------------------

- - ---------------------------------------------------------------------

quote from advisory:

"Local or remote attacker which is capable to send RPC request to
vulnerable mountd daemon could execute artitrary code or cause
denial of service."

read the full advisory at: 
https://marc.theaimsgroup.com/?l=bugtraq&m=105820223707191&w=2

SOLUTION

It is recommended that all Gentoo Linux users who are running
net-fs/nfs-utils upgrade to nfs-utils-1.0.5 as follows

emerge sync
emerge nfs-utils
emerge clean

- - ---------------------------------------------------------------------
aliz@gentoo.org - GnuPG key is available at   
- - ---------------------------------------------------------------------

Resolution

References

Availability

Concerns

Severity
PACKAGE : nfs-utils
SUMMARY : off by one bug
DATE : 2003-07-19 15:13 UTC
EXPLOIT : remote
VERSIONS AFFECTED : =nfs-utils-1.0.4
CVE : CAN-2003-0252

Synopsis

Background

Affected Packages

Impact

Workaround

Related News

OpenSSL 3.2 Adds Support for TCP Fast Open on Linux, Argon2 KDF, and More

Nov 27, 2023

Severe Chromium Bug Threatens Sensitive Data, System Availability

Nov 13, 2023

Over a Million Windows and Linux Systems Infected by This Tricky New Malware

Oct 29, 2023

Severe Chromium DoS, Info Disclosure Vulns Fixed

Oct 25, 2023

News

Advisories

HOWTOs

Features

Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024
Cloud Security Basics for Small Businesses
Scanning and Defending Networks with Nmap

About Us

Powered By

Footer Logo