oval:org.mitre.oval:def:8333

Definition Id: oval:org.mitre.oval:def:8333

Oval ID:	oval:org.mitre.oval:def:8333
Title:	DSA-1807 cyrus-sasl2, cyrus-sasl2-heimdal -- buffer overflow
Description:	James Ralston discovered that the sasl_encode64() function of cyrus-sasl2, a free library implementing the Simple Authentication and Security Layer, suffers from a missing null termination in certain situations. This causes several buffer overflows in situations where cyrus-sasl2 itself requires the string to be null terminated which can lead to denial of service or arbitrary code execution. Important notice (Quoting from US-CERT): While this patch will fix currently vulnerable code, it can cause non-vulnerable existing code to break. Here's a function prototype from include/saslutil.h to clarify my explanation: Assume a scenario where calling code has been written in such a way that it calculates the exact size required for base64 encoding in advance, then allocates a buffer of that exact size, passing a pointer to the buffer into sasl_encode64() as *out. As long as this code does not anticipate that the buffer is NUL-terminated (does not call any string-handling functions like strlen(), for example) the code will work and it will not be vulnerable. Once this patch is applied, that same code will break because sasl_encode64() will begin to return SASL_BUFOVER.
Family:	unix	Class:	patch
Reference(s):	DSA-1807 CVE-2009-0688	Version:	3
Platform(s):	Debian GNU/Linux 5.0	Product(s):	cyrus-sasl2 cyrus-sasl2-heimdal
Definition Synopsis:
Debian GNU/Linux 5.0 is installed Architecture section Architecture independent section Installed architecture is all AND cyrus-sasl2-doc is earlier than 2.1.22.dfsg1-23+lenny1 OR Architecture dependent section Supported architectures section Installed architecture is s390 AND Installed architecture is amd64 AND Installed architecture is sparc AND Installed architecture is arm AND Installed architecture is i386 AND Installed architecture is armel AND Installed architecture is mips AND Installed architecture is ia64 AND Installed architecture is alpha AND Installed architecture is powerpc AND Installed architecture is mipsel AND Installed architecture is hppa AND Packages section libsasl2-2 is earlier than 2.1.22.dfsg1-23+lenny1 AND libsasl2-modules-gssapi-heimdal is earlier than 2.1.22.dfsg1-23+lenny1 AND cyrus-sasl2-heimdal-dbg is earlier than 2.1.22.dfsg1-23+lenny1 AND sasl2-bin is earlier than 2.1.22.dfsg1-23+lenny1 AND cyrus-sasl2-dbg is earlier than 2.1.22.dfsg1-23+lenny1 AND libsasl2-modules-gssapi-mit is earlier than 2.1.22.dfsg1-23+lenny1 AND libsasl2-dev is earlier than 2.1.22.dfsg1-23+lenny1 AND libsasl2-modules-sql is earlier than 2.1.22.dfsg1-23+lenny1 AND libsasl2-modules is earlier than 2.1.22.dfsg1-23+lenny1 AND libsasl2-modules-ldap is earlier than 2.1.22.dfsg1-23+lenny1 AND libsasl2-modules-otp is earlier than 2.1.22.dfsg1-23+lenny1

Definition Id: oval:org.mitre.oval:def:6513

Oval ID:	oval:org.mitre.oval:def:6513
Title:	Debian GNU/Linux 5.0 is installed
Description:	Debian GNU/Linux 5.0 (lenny) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux:5.0	Version:	7
Platform(s):	Debian GNU/Linux 5.0	Product(s):
Definition Synopsis:
Debian GNU/Linux 5.0 is installed
Referenced By:
oval:org.mitre.oval:def:8333

Copyright Security-Database 2006-2024 - Powered by themself ;) in 0.0278s

Facebook rss twitter linkedin mail