Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-146
HistoryAug 08, 2002 - 12:00 a.m.

dietlibc - integer overflow

2002-08-0800:00:00
Google
osv.dev
10

0.85 High

EPSS

Percentile

98.5%

JSON

An integer overflow bug has been discovered in the RPC library used by
dietlibc, a libc optimized for small size, which is derived from the
SunRPC library. This bug could be exploited to gain unauthorized root
access to software linking to this code. The packages below also fix
integer overflows in the calloc, fread and fwrite code. They are also
more strict regarding hostile DNS packets that could lead to a
vulnerability otherwise.

These problems have been fixed in version 0.12-2.4 for the current
stable distribution (woody) and in version 0.20-0cvs20020808 for the
unstable distribution (sid). Debian 2.2 (potato) is not affected
since it doesn’t contain dietlibc packages.

We recommend that you upgrade your dietlibc packages immediately.

Related

suse 1
openvas 16
nvd 2
debian 9
nessus 11
osv 4
securityvulns 2
canvas 2
cvelist 2
debiancve 2
cve 2
cert 1
suse
suse
local/remote privilege escalation in glibc
2002-08-30 17:06:11
openvas
openvas
Debian Security Advisory DSA 146-2 (dietlibc)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-142)
2008-01-17 00:00:00
Debian Security Advisory DSA 149-1 (glibc)
2008-01-17 00:00:00
nvd
nvd
CVE-2002-0391
2002-08-12 04:00:00
CVE-2003-0028
2003-03-25 05:00:00
debian
debian
[SECURITY] [DSA-333-1] New acm packages fix integer overflow
2003-06-29 01:44:27
[SECURITY] [DSA 149-2] New glibc packages fix
2002-09-26 17:01:24
[SECURITY] [DSA 146-1] New dietlibc packages fix integer overflows
2002-08-08 09:46:59
nessus
nessus
SUSE-SA:2002:031: glibc
2004-07-25 00:00:00
Debian DSA-146-2 : dietlibc - integer overflow
2004-09-29 00:00:00
Debian DSA-149-1 : glibc - integer overflow
2004-09-29 00:00:00
osv
osv
acm - integer overflow
2003-06-27 00:00:00
krb5 - integer overflow
2002-08-05 00:00:00
glibc - integer overflow
2002-08-13 00:00:00
securityvulns
securityvulns
Advisory CA-2002-25 Integer Overflow In XDR Library
2002-08-06 00:00:00
RUS-CERT Advisory 2002-08:02: Flaw in calloc and similar routines
2002-08-08 00:00:00
canvas
canvas
Immunity Canvas: TTDB_XDRARRAY
2002-08-12 04:00:00
Immunity Canvas: CMSD_XDRARRAY
2002-08-12 00:00:00
cvelist
cvelist
CVE-2002-0391
2003-04-02 05:00:00
CVE-2003-0028
2003-03-21 05:00:00
debiancve
debiancve
CVE-2002-0391
2003-04-02 05:00:00
CVE-2003-0028
2003-03-25 05:00:00
cve
cve
CVE-2002-0391
2003-04-02 05:00:00
CVE-2003-0028
2003-03-25 05:00:00
cert
cert
Integer overflow in xdr_array() function when deserializing the XDR stream
2002-08-01 00:00:00

0.85 High

EPSS

Percentile

98.5%

JSON
Related for OSV:DSA-146
suse1openvas16nvd2debian9nessus11osv4securityvulns2canvas2cvelist2debiancve2cve2cert1