Linux gpm拒绝服务漏洞

漏洞信息详情

Linux gpm拒绝服务漏洞

• CNNVD编号：CNNVD-199911-068
• 危害等级： 低危
  
  
• CVE编号：
  CVE-2000-0531
  
• 漏洞类型：
  
  
  其他
  
• 发布时间：
  
  1999-11-23
  
• 威胁类型：
  
  
  本地
  
• 更新时间：
  
  2006-09-05
  
• 厂        商：
  
  caldera
• 漏洞来源：
  Discovered by Toma…

Linux gpm程序存在漏洞。本地用户可以利用具有STREAM套接字/dev/gpmctl设备导致服务拒绝。

This was patched in RedHat’s “Rawhide” release and a fixed version of gpm is available at:
ftp://ftp.redhat.com/pub/Linux/redhat-rawhide/i386/RedHat/RPMS/gpm-1.19.2-1.i386.rpm
Updates for OpenLinux 2.3 and 2.4 are also available from Caldera.
Caldera OpenLinux 2.3

• Caldera gpm-1.17.8-5
  ftp://ftp.calderasystems.com/pub/updates/OpenLinux/2.3/current/RPMS/gp
  m-1.17.8-5.i386.rpm

SCO eServer 2.3

• Caldera eServer 2.3: gpm-1.17.8-5
  ftp://ftp.calderasystems.com/pub/updates/eServer/2.3/current/RPMS/gpm-
  1.17.8-5.i386.rpm

Caldera OpenLinux 2.4

• Caldera gpm-1.19.2-4
  ftp://ftp.calderasystems.com/pub/updates/eDesktop/2.4/current/RPMS/gpm
  -1.19.2-4.i386.rpm

来源: XF
名称: linux-gpm-gpmctl-dos
链接:http://xforce.iss.net/static/5010.php

来源: BID
名称: 1377
链接:http://www.securityfocus.com/bid/1377

来源: BUGTRAQ
名称: 20000620 Bug in gpm
链接:http://www.securityfocus.com/templates/archive.pike?list=1&msg=Pine.LNX.4.10.10006201453090.1812-200000@apollo.aci.com.pl

来源: REDHAT
名称: RHSA-2000:045
链接:http://www.redhat.com/support/errata/RHSA-2000-045.html

来源: BUGTRAQ
名称: 20000728 MDKSA:2000-025 gpm update
链接:http://archives.neohapsis.com/archives/bugtraq/2000-07/0409.html