diff options
author | wxs <wxs@FreeBSD.org> | 2009-07-16 02:34:19 +0800 |
---|---|---|
committer | wxs <wxs@FreeBSD.org> | 2009-07-16 02:34:19 +0800 |
commit | 6a348208702c3eff8156b31ec82803f4f015a70c (patch) | |
tree | 515aefbb73e09d0a7119cc403e806e12f9a8f984 /security | |
parent | 45ad4d4efee986ca9cf8a14cf6b0f77c4a9e3b42 (diff) | |
download | freebsd-ports-gnome-6a348208702c3eff8156b31ec82803f4f015a70c.tar.gz freebsd-ports-gnome-6a348208702c3eff8156b31ec82803f4f015a70c.tar.zst freebsd-ports-gnome-6a348208702c3eff8156b31ec82803f4f015a70c.zip |
- Document isc-dhcp*-client stack overflow.
Diffstat (limited to 'security')
-rw-r--r-- | security/vuxml/vuln.xml | 34 |
1 files changed, 34 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index 6097a28a357e..eccabacd1a59 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -34,6 +34,40 @@ Note: Please add new entries to the beginning of this file. --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1"> + <vuln vid="c444c8b7-7169-11de-9ab7-000c29a67389"> + <topic>isc-dhcp-client -- Stack overflow vulnerability</topic> + <affects> + <package> + <name>isc-dhcp31-client</name> + <range><le>3.1.1</le></range> + </package> + <package> + <name>isc-dhcp30-client</name> + <range><le>3.0.7</le></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml"> + <p>US-CERT reports:</p> + <blockquote cite="http://www.kb.cert.org/vuls/id/410676"> + <p>The ISC DHCP dhclient application contains a stack buffer + overflow, which may allow a remote, unauthenticated attacker to + execute arbitrary code with root privileges.</p> + </blockquote> + </body> + </description> + <references> + <cvename>CVE-2009-0692</cvename> + <url>https://www.isc.org/node/468</url> + <url>http://secunia.com/advisories/35785</url> + <url>http://www.kb.cert.org/vuls/id/410676</url> + </references> + <dates> + <discovery>2009-07-14</discovery> + <entry>2009-07-15</entry> + </dates> + </vuln> + <vuln vid="be927298-6f97-11de-b444-001372fd0af2"> <topic>drupal -- multiple vulnerabilities</topic> <affects> |