ISC INN Control Message Handling Buffer Overrun Vulnerability

ISC INN Control Message Handling Buffer Overrun Vulnerability

Solution:
OpenPKG has released an advisory (OpenPKG-SA-2004.001) to address this issue. inn-2.4.0-20040108 for OpenPKG CURRENT includes fixes as does inn-2.4.0-1.3.1 for OpenPKG 1.3. Please see the attached advisory for further details.

Slackware has released an advisory and fixes to address this issue.

This issue has been addressed in ISC INN 2.4.1.

ISC INN 2.4 .0

ISC inn-2.4.1.tar.gz
ftp://ftp.isc.org/isc/inn/inn-2.4.1.tar.gz

OpenPKG inn-2.4.0-1.3.1.src.rpm
ftp://ftp.openpkg.org/release/1.3/UPD/inn-2.4.0-1.3.1.src.rpm

Slackware inn-2.4.1-i386-1.tgz
ftp://ftp.slackware.com/pub/slackware/slackware-9.0/patches/packages/i nn-2.4.1-i386-1.tgz

Slackware inn-2.4.1-i486-1.tgz
ftp://ftp.slackware.com/pub/slackware/slackware-9.1/patches/packages/i nn-2.4.1-i486-1.tgz

Slackware inn-2.4.1-i486-1.tgz
ftp://ftp.slackware.com/pub/slackware/slackware-current/extra/inn/inn- 2.4.1-i486-1.tgz