From: Secunia Security Advisories (sec-advsecunia.com)
Date: Mon Nov 17 2003 - 06:44:41 CST

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

TITLE:
Red Hat update for glibc

SECUNIA ADVISORY ID:
SA10229

VERIFY ADVISORY:
http://www.secunia.com/advisories/10229/

CRITICAL:
Not critical

IMPACT:
DoS

WHERE:
Local system

OPERATING SYSTEM:
RedHat Enterprise Linux AS 3
RedHat Enterprise Linux ES 3
RedHat Enterprise Linux WS 3

DESCRIPTION:
Red Hat has issued updated packages for glibc. These fix a
vulnerability allowing malicious users to cause a Denial of Service
against certain applications.

It is possible to spoof messages sent to the kernel netlink
interface. This affects the "getifaddrs()" function in glibc and
could potentially lead to a Denial of Service against applications
using the function.

Other bugs are also fixed in this update.

SOLUTION:
Updated packages are available via Red Hat Network.
http://rhn.redhat.com

ORIGINAL ADVISORY:
Updated glibc packages provide security and bug fixes
http://rhn.redhat.com/errata/RHSA-2003-334.html

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://www.secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://www.secunia.com/about_secunia_advisories/

Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]