Pantek Library

Hosting Provided By

CybrHost

High Speed Hosting

Re: OpenBSD 4.1 - Heap overflow vulnerabillity

From: Steve Shockley <steve.shockley(at)shockley.net>
Date: Tue Aug 28 2007 - 14:14:22 EDT

acheddamiman@gmail.com wrote:
> The command "file" is vulnerable to heap overflow.
>
> Solution:
>
> Patch the kernel source with:
> ftp://ftp.openbsd.org/pub/OpenBSD/patches/4.1/common/009_file.patch
>
> By AchedDamiman

This is CVE-2007-1536, discovered by Jean-Sebastien Guay-Leroux.

Patches are also available for OpenBSD 4.0: http://openbsd.org/errata40.html#015_file Received on Tue Aug 28 14:47:58 2007

This message: [ Message body ]
Next message: Jerome Athias: "Re: n.runs, Sophos, German laws, and customer safety"
Previous message: Steve Kemp: "[SECURITY] [DSA 1360-1] New rsync packages fix arbitrary code execution"
In reply to: acheddamiman(at)gmail.com: "OpenBSD 4.1 - Heap overflow vulnerabillity"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Sun Oct 28 2007 - 06:13:46 EDT

Contact Us Legal Notices Order Services Online
Pantek Home Privacy Policy IT news Site Map Pantek Library