Threat level definition
Search:
Home
Bugtraq
Vulnerabilities
Mailing Lists
Jobs
Tools
Vista
News
Infocus
Foundations
Microsoft
Unix
IDS
Incidents
Virus
Pen-Test
Firewalls
Columnists
Mailing Lists
Newsletters
Bugtraq
Focus on IDS
Focus on Linux
Focus on Microsoft
Forensics
Pen-test
Security Basics
Vuln Dev
Vulnerabilities
Jobs
Job Opportunities
Resumes
Job Seekers
Employers
Tools
RSS
News
Vulns
Security Research
Back to list
|
Post reply
OpenBSD 4.1 - Heap overflow vulnerabillity
Aug 25 2007 08:18PM
acheddamiman gmail com
(1 replies)
Re: OpenBSD 4.1 - Heap overflow vulnerabillity
Aug 28 2007 06:14PM
Steve Shockley (steve shockley shockley net)
acheddamiman (at) gmail (dot) com [email concealed] wrote:
> The command "file" is vulnerable to heap overflow.
>
> Solution:
>
> Patch the kernel source with:
> ftp://ftp.openbsd.org/pub/OpenBSD/patches/4.1/common/009_file.patch
>
> By AchedDamiman
This is CVE-2007-1536, discovered by Jean-Sebastien Guay-Leroux.
Patches are also available for OpenBSD 4.0:
http://openbsd.org/errata40.html#015_file
[ reply ]
Privacy Statement
Copyright 2008, SecurityFocus
> The command "file" is vulnerable to heap overflow.
>
> Solution:
>
> Patch the kernel source with:
> ftp://ftp.openbsd.org/pub/OpenBSD/patches/4.1/common/009_file.patch
>
> By AchedDamiman
This is CVE-2007-1536, discovered by Jean-Sebastien Guay-Leroux.
Patches are also available for OpenBSD 4.0:
http://openbsd.org/errata40.html#015_file
[ reply ]