BSD exec C Library Standard I/O File Descriptor Closure Vulnerability

Solution:
This problem is fixed in the OpenBSD cvs as of July 02, 1998.

HP has released an advisory, and made fixes available to address this issue.

FreeBSD has announced that their original patch contained an error. Patched systems using procfs or linprocfs may still be vulnerable to this issue. A new patch has been issued:


Compaq Tru64 4.0 f PK6 (BL17)

Compaq Tru64 4.0 f

Compaq Tru64 4.0 g PK3 (BL17)

Compaq Tru64 4.0 g

Compaq Tru64 4.0 f PK7 (BL18)

FreeBSD FreeBSD 4.4 -RELENG

FreeBSD FreeBSD 4.5 -STABLE

FreeBSD FreeBSD 4.5 -RELEASE

FreeBSD FreeBSD 4.6 -RELEASE

FreeBSD FreeBSD 4.6 -STABLE

Compaq Tru64 5.0 a PK3 (BL17)

Compaq Tru64 5.0 a

Compaq Tru64 5.1 PK6 (BL20)

Compaq Tru64 5.1 a PK1 (BL1)

Compaq Tru64 5.1 a PK2 (BL2)

Compaq Tru64 5.1 PK3 (BL17)

Compaq Tru64 5.1 PK4 (BL18)

Compaq Tru64 5.1 a

Compaq Tru64 5.1

Compaq Tru64 5.1 PK5 (BL19)

Compaq Tru64 5.1 a PK3 (BL3)


 

Privacy Statement
Copyright 2010, SecurityFocus