Bugtraq mailing list archives
Re: klogd 1.3-22 buffer overflow
From: ncb () CC GATECH EDU (Neil Bright)
Date: Wed, 11 Nov 1998 11:12:09 -0500
-----BEGIN PGP SIGNED MESSAGE----- Michal Zalewski wrote the following:
Good morning, This time - buffer overflow in Linux klogd daemon from sysklogd-1.3 package (up to release 22 - affects Red Hat 5.x and Slackware 3.x, no data about other distributions).
[snip] This does appear to affect a (fairly) stock RH5.2 box also. In my test, The supplied module code did cause klogd to die... Relevant RPMS: sysklogd-1.3-25 kernel-2.0.36-0.7 (stock, no kernel rebuild) +============ 24 68 BF F6 0E 73 53 47 80 E9 27 7D F9 35 58 4B ============+ Neil Bright ncb () cc gatech edu IHPCL administrator (404) 385-0448 College of Computing http://www.cc.gatech.edu/projects/ihpcl Georgia Institute of Technology -----BEGIN PGP SIGNATURE----- Version: 2.6.2 iQCVAwUBNkm3SPYNylcsgopZAQHiTwP/RNlnm5qp6QzDsNdSu7qOXIWautgAtfWE geiXigHgqMNt9++pMm0Rev8IHI6tFJgIyZi6yFoXEhAlBoDdbCV5tLa50v8xv9mQ oSEpGSXsuEPRsf4j1mpr+E2QDsB6ePfZSMQfHywugEbTmbxYds4e60f2kY8P7e79 95NsP6yaJns= =ijNd -----END PGP SIGNATURE-----
Current thread:
- WWWBoard Vulnerability Samuel Sparling (Nov 09)
- [Linux] klogd 1.3-22 buffer overflow Michal Zalewski (Sep 10)
- catdoc-0.90 buffer overruns Duncan Simpson (Nov 10)
- Re: catdoc-0.90 buffer overruns Kragen (Nov 12)
- Re: klogd 1.3-22 buffer overflow Neil Bright (Nov 11)
- Re: klogd 1.3-22 buffer overflow Peter van Dijk (Nov 11)
- Re: [Linux] klogd 1.3-22 buffer overflow Cory Visi (Nov 11)
- Re: [Linux] klogd 1.3-22 buffer overflow Martin Schulze (Nov 17)
- Re: [Linux] klogd 1.3-22 buffer overflow Michal Zalewski (Sep 12)
- Re: [Linux] klogd 1.3-22 buffer overflow security () PENGUIN NET AU (Nov 17)
- Update to Microsoft Security Bulletin (MS98-015) Aleph One (Nov 18)
- Multiple KDE security vulnerabilities (root compromise) David G. Andersen (Nov 18)
- Sun Security Bulletin #00179 Aleph One (Nov 18)
- Re: Sun Security Bulletin #00179 Jonathan A. Zdziarski (Nov 19)
- catdoc-0.90 buffer overruns Duncan Simpson (Nov 10)
- [Linux] klogd 1.3-22 buffer overflow Michal Zalewski (Sep 10)
- Re: WWWBoard Vulnerability Spartak Radchenko (Nov 10)