• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

OpenSLP Multiple Unspecified Buffer Overflow Vulnerabilities

Solution:
The vendor has addressed the issue in OpenSLP 1.2.1.

Please see the referenced advisories for more information.


HP HP-UX B.11.11

• HP B.11.11 SLP Revision 1.2
  ftp://hpuxslp:hpuxslp@hprc.external.hp.com/upgrade_SLP.depot

HP HP-UX B.11.23

• HP PHNE_33508
  http://itrc.hp.com

OpenSLP OpenSLP 1.0 .0

• OpenSLP OpenSLP 1.2.1
  http://sourceforge.net/project/showfiles.php?group_id=1730

OpenSLP OpenSLP 1.0.1

• OpenSLP OpenSLP 1.2.1
  http://sourceforge.net/project/showfiles.php?group_id=1730

OpenSLP OpenSLP 1.0.10

• OpenSLP OpenSLP 1.2.1
  http://sourceforge.net/project/showfiles.php?group_id=1730

OpenSLP OpenSLP 1.0.11

• Mandrake lib64openslp1-1.0.11-5.1.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64openslp1-1.0.11-5.1.101mdk.x86_64.rpm
  Mandrake Linux 10.1/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64openslp1-1.0.11-5.1.C30mdk.x86_64.rpm
  Mandrake Corporate Server 3.0/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64openslp1-devel-1.0.11-5.1.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64openslp1-devel-1.0.11-5.1.101mdk.x86_64.rpm
  Mandrake Linux 10.1/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake lib64openslp1-devel-1.0.11-5.1.C30mdk.x86_64.rpm
  Mandrake Corporate Server 3.0/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libopenslp1-1.0.11-5.1.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libopenslp1-1.0.11-5.1.101mdk.i586.rpm
  Mandrake Linux 10.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libopenslp1-1.0.11-5.1.C30mdk.i586.rpm
  Mandrake Corporate Server 3.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libopenslp1-devel-1.0.11-5.1.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libopenslp1-devel-1.0.11-5.1.101mdk.i586.rpm
  Mandrake Linux 10.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake libopenslp1-devel-1.0.11-5.1.C30mdk.i586.rpm
  Mandrake Corporate Server 3.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake openslp-1.0.11-5.1.100mdk.amd64.rpm
  Mandrake Linux 10.0/AMD64
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake openslp-1.0.11-5.1.100mdk.i586.rpm
  Mandrake Linux 10.0
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake openslp-1.0.11-5.1.101mdk.i586.rpm
  Mandrake Linux 10.1
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake openslp-1.0.11-5.1.101mdk.x86_64.rpm
  Mandrake Linux 10.1/x86_64
  http://www.mandrakesecure.net/en/ftp.php


• OpenSLP OpenSLP 1.2.1
  http://sourceforge.net/project/showfiles.php?group_id=1730


• Ubuntu libslp-dev_1.0.11-7ubuntu0.1_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/o/openslp/libslp-dev_1.0.1 1-7ubuntu0.1_amd64.deb


• Ubuntu libslp-dev_1.0.11-7ubuntu0.1_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/o/openslp/libslp-dev_1.0.1 1-7ubuntu0.1_i386.deb


• Ubuntu libslp-dev_1.0.11-7ubuntu0.1_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/o/openslp/libslp-dev_1.0.1 1-7ubuntu0.1_powerpc.deb


• Ubuntu libslp1_1.0.11-7ubuntu0.1_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/o/openslp/libslp1_1.0.11-7 ubuntu0.1_amd64.deb


• Ubuntu libslp1_1.0.11-7ubuntu0.1_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/o/openslp/libslp1_1.0.11-7 ubuntu0.1_i386.deb


• Ubuntu libslp1_1.0.11-7ubuntu0.1_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/o/openslp/libslp1_1.0.11-7 ubuntu0.1_powerpc.deb


• Ubuntu openslp-doc_1.0.11-7ubuntu0.1_all.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/main/o/openslp/openslp-doc_1.0. 11-7ubuntu0.1_all.deb


• Ubuntu slpd_1.0.11-7ubuntu0.1_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/o/openslp/slpd_1.0.11- 7ubuntu0.1_amd64.deb


• Ubuntu slpd_1.0.11-7ubuntu0.1_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/o/openslp/slpd_1.0.11- 7ubuntu0.1_i386.deb


• Ubuntu slpd_1.0.11-7ubuntu0.1_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/o/openslp/slpd_1.0.11- 7ubuntu0.1_powerpc.deb


• Ubuntu slptool_1.0.11-7ubuntu0.1_amd64.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/o/openslp/slptool_1.0. 11-7ubuntu0.1_amd64.deb


• Ubuntu slptool_1.0.11-7ubuntu0.1_i386.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/o/openslp/slptool_1.0. 11-7ubuntu0.1_i386.deb


• Ubuntu slptool_1.0.11-7ubuntu0.1_powerpc.deb
  Ubuntu 4.10 (Warty Warthog)
  http://security.ubuntu.com/ubuntu/pool/universe/o/openslp/slptool_1.0. 11-7ubuntu0.1_powerpc.deb

OpenSLP OpenSLP 1.0.2

• OpenSLP OpenSLP 1.2.1
  http://sourceforge.net/project/showfiles.php?group_id=1730

OpenSLP OpenSLP 1.0.3

• OpenSLP OpenSLP 1.2.1
  http://sourceforge.net/project/showfiles.php?group_id=1730

OpenSLP OpenSLP 1.0.4

• OpenSLP OpenSLP 1.2.1
  http://sourceforge.net/project/showfiles.php?group_id=1730

OpenSLP OpenSLP 1.0.5

• OpenSLP OpenSLP 1.2.1
  http://sourceforge.net/project/showfiles.php?group_id=1730

OpenSLP OpenSLP 1.0.6

• OpenSLP OpenSLP 1.2.1
  http://sourceforge.net/project/showfiles.php?group_id=1730

OpenSLP OpenSLP 1.0.7

• OpenSLP OpenSLP 1.2.1
  http://sourceforge.net/project/showfiles.php?group_id=1730

OpenSLP OpenSLP 1.0.8 a

• OpenSLP OpenSLP 1.2.1
  http://sourceforge.net/project/showfiles.php?group_id=1730

OpenSLP OpenSLP 1.0.9 a

• OpenSLP OpenSLP 1.2.1
  http://sourceforge.net/project/showfiles.php?group_id=1730

OpenSLP OpenSLP 1.1.5

• OpenSLP OpenSLP 1.2.1
  http://sourceforge.net/project/showfiles.php?group_id=1730


• SuSE openslp-1.1.5-73.15.i586.patch.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/openslp-1.1.5-73. 15.i586.patch.rpm


• SuSE openslp-1.1.5-73.15.x86_64.patch.rpm
  ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/openslp-1.1.5 -73.15.x86_64.patch.rpm


• SuSE openslp-1.1.5-80.4.i586.patch.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/openslp-1.1.5-80. 4.i586.patch.rpm


• SuSE openslp-1.1.5-80.4.x86_64.patch.rpm
  ftp://ftp.suse.com/pub/suse/x86_64/update/9.2/rpm/x86_64/openslp-1.1.5 -80.4.x86_64.patch.rpm


• SuSE openslp-devel-1.1.5-73.15.i586.patch.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/openslp-devel-1.1 .5-73.15.i586.patch.rpm


• SuSE openslp-devel-1.1.5-73.15.x86_64.patch.rpm
  ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/openslp-devel -1.1.5-73.15.x86_64.patch.rpm


• SuSE openslp-devel-1.1.5-80.4.i586.patch.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/openslp-devel-1.1 .5-80.4.i586.patch.rpm


• SuSE openslp-devel-1.1.5-80.4.x86_64.patch.rpm
  ftp://ftp.suse.com/pub/suse/x86_64/update/9.2/rpm/x86_64/openslp-devel -1.1.5-80.4.x86_64.patch.rpm


• SuSE openslp-server-1.1.5-73.15.i586.patch.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/openslp-server-1. 1.5-73.15.i586.patch.rpm


• SuSE openslp-server-1.1.5-73.15.x86_64.patch.rpm
  ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/openslp-serve r-1.1.5-73.15.x86_64.patch.rpm


• SuSE openslp-server-1.1.5-80.4.i586.patch.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/openslp-server-1. 1.5-80.4.i586.patch.rpm


• SuSE openslp-server-1.1.5-80.4.x86_64.patch.rpm
  ftp://ftp.suse.com/pub/suse/x86_64/update/9.2/rpm/x86_64/openslp-serve r-1.1.5-80.4.x86_64.patch.rpm


• SuSE openslp-1.1.5-73.15.i586.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/openslp-1.1.5-73. 15.i586.rpm


• SuSE openslp-1.1.5-73.15.x86_64.rpm
  ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/openslp-1.1.5 -73.15.x86_64.rpm


• SuSE openslp-1.1.5-80.4.i586.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/openslp-1.1.5-80. 4.i586.rpm


• SuSE openslp-1.1.5-80.4.x86_64.rpm
  ftp://ftp.suse.com/pub/suse/x86_64/update/9.2/rpm/x86_64/openslp-1.1.5 -80.4.x86_64.rpm


• SuSE openslp-devel-1.1.5-73.15.i586.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/openslp-devel-1.1 .5-73.15.i586.rpm


• SuSE openslp-devel-1.1.5-73.15.x86_64.rpm
  ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/openslp-devel -1.1.5-73.15.x86_64.rpm


• SuSE openslp-devel-1.1.5-80.4.i586.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/openslp-devel-1.1 .5-80.4.i586.rpm


• SuSE openslp-devel-1.1.5-80.4.x86_64.rpm
  ftp://ftp.suse.com/pub/suse/x86_64/update/9.2/rpm/x86_64/openslp-devel -1.1.5-80.4.x86_64.rpm


• SuSE openslp-server-1.1.5-73.15.i586.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/openslp-server-1. 1.5-73.15.i586.rpm


• SuSE openslp-server-1.1.5-73.15.x86_64.rpm
  ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/openslp-serve r-1.1.5-73.15.x86_64.rpm


• SuSE openslp-server-1.1.5-80.4.i586.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/openslp-server-1. 1.5-80.4.i586.rpm


• SuSE openslp-server-1.1.5-80.4.x86_64.rpm
  ftp://ftp.suse.com/pub/suse/x86_64/update/9.2/rpm/x86_64/openslp-serve r-1.1.5-80.4.x86_64.rpm

OpenSLP OpenSLP 1.2 .0

• OpenSLP OpenSLP 1.2.1
  http://sourceforge.net/project/showfiles.php?group_id=1730