Debian GNU/Linux netstd Multiple Buffer Overflow Vulnerabilities
The netstd package, included with the Debian GNU/Linux distribution, is a collection of networking utilities and daemons. Reportedly, version 3.07 of netstd is vulnerable to a buffer overflow attack. The vulnerability affects multiple utilities included with netstd. The affected utilities are:
The condition is believed to be related to handling of resolved hostnames.
Versions of Debian post-2.2 release do not include this program as a binary package. This program is however distributed as source code through the source tree. Versions pre-2.2 may have to binary package installed.