cfingerd Format String Vulnerability

Threat level definition

cfingerd Format String Vulnerability

Solution:
Patches are available against cfingerd 1.4.3 that address the syslog format-string bugs and a single NULL-byte buffer overflow issue:

Infodrom cfingerd 1.4 .1

Debian cfingerd_1.4.1-1.1 Source diff
Source patch to cfingerd 1.4.1
http://security.debian.org/dists/stable/updates/main/source/cfingerd_1 .4.1-1.1.diff.gz

Debian cfingerd_1.4.1-1.1 alpha
Patched release of cfingerd 1.4.1
http://security.debian.org/dists/stable/updates/main/binary-alpha/cfin gerd_1.4.1-1.1_alpha.deb

Debian cfingerd_1.4.1-1.1 arm
Patched release of cfingerd 1.4.1
http://security.debian.org/dists/stable/updates/main/binary-arm/cfinge rd_1.4.1-1.1_arm.deb

Debian cfingerd_1.4.1-1.1 i386
Patched release of cfingerd 1.4.1
http://security.debian.org/dists/stable/updates/main/binary-i386/cfing erd_1.4.1-1.1_i386.deb

Debian cfingerd_1.4.1-1.1 m68k
Patched release of cfingerd 1.4.1
http://security.debian.org/dists/stable/updates/main/binary-m68k/cfing erd_1.4.1-1.1_m68k.deb

Debian cfingerd_1.4.1-1.1 powerpc
Patched release of cfingerd 1.4.1
http://security.debian.org/dists/stable/updates/main/binary-powerpc/cf ingerd_1.4.1-1.1_powerpc.deb

Debian cfingerd_1.4.1-1.1 sparc
Patched release of cfingerd 1.4.1
http://security.debian.org/dists/stable/updates/main/binary-sparc/cfin gerd_1.4.1-1.1_sparc.deb

Progeny cfingerd_1.4.1-1.1
http://archive.progeny.com/progeny/updates/newton/cfingerd_1.4.1-1.1_i 386.deb

Infodrom cfingerd 1.4 .3

Megyer Laszlo cfingerd patch
http://www.securityfocus.com/data/vulnerabilities/patches/cfingerd-1.4 .3.diff

Privacy Statement
Copyright 2008, SecurityFocus