多个ManDB效用本地缓冲区溢出漏洞

漏洞信息详情

多个ManDB效用本地缓冲区溢出漏洞

• CNNVD编号：CNNVD-200308-115
• 危害等级： 中危
  
  
• CVE编号：
  CVE-2003-0620
  
• 漏洞类型：
  
  
  缓冲区溢出
  
• 发布时间：
  
  2003-08-27
  
• 威胁类型：
  
  
  本地
  
• 更新时间：
  
  2006-09-21
  
• 厂        商：
  
  andries_brouwer
• 漏洞来源：
  Discovery of this …

man-db 2.4.1版本及之前版本在安装setuid时存在多个缓冲区溢出漏洞。本地用户可以借助(1)manp.c中add_to_dirlist的MANDATORY_MANPATH、MANPATH_MAP和MANDB_MAP参数，（2）ult_src.c中ult_src的超长路径名，（3）ult_src.c中test_for_include的超长.so参数，（4）超长MANPATH环境变量，或者（5）超长PATH环境变量来提升特权。

It has been reported that fixes to address these issues are available via the following CVS server:
savannah.nongnu.org
The fixes provided in Debian advisory DSA 364-1 introduced another issue. Debian has released a revised advisory (DSA 364-3) with new fixes. Please see DSA 364-3 for details on obtaining and applying updated fixes.
man man 2.3.20

• Debian man-db_2.3.20-18.woody.4_alpha.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/m/man-db/man-db_2.3.20-18
  .woody.4_alpha.deb
• Debian man-db_2.3.20-18.woody.4_arm.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/m/man-db/man-db_2.3.20-18
  .woody.4_arm.deb
• Debian man-db_2.3.20-18.woody.4_hppa.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/m/man-db/man-db_2.3.20-18
  .woody.4_hppa.deb
• Debian man-db_2.3.20-18.woody.4_i386.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/m/man-db/man-db_2.3.20-18
  .woody.4_i386.deb
• Debian man-db_2.3.20-18.woody.4_ia64.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/m/man-db/man-db_2.3.20-18
  .woody.4_ia64.deb
• Debian man-db_2.3.20-18.woody.4_m68k.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/m/man-db/man-db_2.3.20-18
  .woody.4_m68k.deb
• Debian man-db_2.3.20-18.woody.4_mips.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/m/man-db/man-db_2.3.20-18
  .woody.4_mips.deb
• Debian man-db_2.3.20-18.woody.4_mipsel.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/m/man-db/man-db_2.3.20-18
  .woody.4_mipsel.deb
• Debian man-db_2.3.20-18.woody.4_powerpc.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/m/man-db/man-db_2.3.20-18
  .woody.4_powerpc.deb
• Debian man-db_2.3.20-18.woody.4_s390.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/m/man-db/man-db_2.3.20-18
  .woody.4_s390.deb
• Debian man-db_2.3.20-18.woody.4_sparc.debDebian GNU/Linux 3.0 alias woody.
  
  http://security.debian.org/pool/updates/main/m/man-db/man-db_2.3.20-18
  .woody.4_sparc.deb

来源: DEBIAN
名称: DSA-364
链接:http://www.debian.org/security/2003/dsa-364

来源: BUGTRAQ
名称: 20030730 Re: man-db[] multiple(4) vulnerabilities.
链接:http://marc.theaimsgroup.com/?l=bugtraq&m=105960276803617&w=2

来源: BUGTRAQ
名称: 20030729 man-db[] multiple(4) vulnerabilities.
链接:http://marc.theaimsgroup.com/?l=bugtraq&m=105951284512898&w=2