GDB多个漏洞

漏洞信息详情

GDB多个漏洞

• CNNVD编号：CNNVD-200505-1170
• 危害等级： 中危
  
  
• CVE编号：
  CVE-2005-1704
  
• 漏洞类型：
  
  
  数字错误
  
• 发布时间：
  
  2005-05-24
  
• 威胁类型：
  
  
  本地
  
• 更新时间：
  
  2007-02-08
  
• 厂        商：
  
  gnu
• 漏洞来源：
  Discovery is credi…

gdb的6.3之前版本、binutils、elfutils和可能其它软件包的二进制文件描述符(BFD)库存在整数溢出，用户辅助式攻击者可以通过一个指定大量节头的特制的对象文件，造成基于堆的缓冲区溢出，来执行任意代码。

目前厂商已经发布了升级补丁以修复这个安全问题，补丁下载链接：

Turbolinux Home

Turbolinux gdb-5.3-3.i586.rpm

Turbolinux 10 Desktop, Turbolinux 10 F…, Turbolinux Home

ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/u pdates/RPMS/gdb-5.3-3.i586.rpm

GNU Binutils 2.15.92.0.2

RedHat binutils-2.15.92.0.2-5.1.i386.rpm

Fedora Core 3

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/

RedHat binutils-2.15.92.0.2-5.1.src.rpm

Fedora Core 3

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/

RedHat binutils-2.15.92.0.2-5.1.x86_64.rpm

Fedora Core 3

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/

RedHat binutils-debuginfo-2.15.92.0.2-5.1.i386.rpm

Fedora Core 3

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/

RedHat binutils-debuginfo-2.15.92.0.2-5.1.x86_64.rpm

Fedora Core 3

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/

GNU Binutils 2.15.94.0.2.2

RedHat binutils-2.15.94.0.2.2-2.1.i386.rpm

Fedora Core 4

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/

RedHat binutils-2.15.94.0.2.2-2.1.ppc.rpm

Fedora Core 4

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/

RedHat binutils-2.15.94.0.2.2-2.1.src.rpm

Fedora Core 4

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/

RedHat binutils-2.15.94.0.2.2-2.1.x86_64.rpm

Fedora Core 4

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/

RedHat binutils-debuginfo-2.15.94.0.2.2-2.1.i386.rpm

Fedora Core 4

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/

RedHat binutils-debuginfo-2.15.94.0.2.2-2.1.ppc.rpm

Fedora Core 4

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/

RedHat binutils-debuginfo-2.15.94.0.2.2-2.1.x86_64.rpm

Fedora Core 4

http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/

Turbolinux Appliance Server 1.0 Hosting Edition

Turbolinux gdb-5.2.1-2.i586.rpm

Turbolinux Appliance Server 1.0 Hosting Edition

ftp://ftp.turbolinux.co.jp/pub/TurboLinux/

Turbolinux Appliance Server 1.0 Workgroup Edition

Turbolinux gdb-5.2.1-2.i586.rpm

Turbolinux Appliance Server 1.0 Workgroup Edition

ftp://ftp.turbolinux.co.jp/pub/TurboLinux/

MandrakeSoft Linux Mandrake 10.0 AMD64

Mandriva gdb-6.0-2.1.100mdk.amd64.rpm

Mandrakelinux 10.0/AMD64:

http://www.mandriva.com/en/download

Mandriva gdb-6.0-2.1.100mdk.src.rpm

Mandrakelinux 10.0/AMD64:

http://www.mandriva.com/en/download

MandrakeSoft Linux Mandrake 10.0

Mandriva gdb-6.0-2.1.100mdk.i586.rpm

Mandrakelinux 10.0:

http://www.mandriva.com/en/download

Mandriva gdb-6.0-2.1.100mdk.src.rpm

Mandrakelinux 10.0:

http://www.mandriva.com/en/download

Turbolinux Turbolinux Desktop 10.0

Turbolinux gdb-5.3-3.i586.rpm

Turbolinux 10 Desktop, Turbolinux 10 F…, Turbolinux Home

ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/u pdates/RPMS/gdb-5.3-3.i586.rpm

MandrakeSoft Linux Mandrake 10.1

Mandriva gdb-6.2-2.1.101mdk.i586.rpm

Mandrakelinux 10.1:

http://www.mandriva.com/en/download

Mandriva gdb-6.2-2.1.101mdk.src.rpm

Mandrakelinux 10.1:

http://www.mandriva.com/en/download

MandrakeSoft Linux Mandrake 10.1 x86_64

Mandriva gdb-6.2-2.1.101mdk.src.rpm

Mandrakelinux 10.1/X86_64:

http://www.mandriva.com/en/download

Mandriva gdb-6.2-2.1.101mdk.x86_64.rpm

Mandrakelinux 10.1/X86_64:

http://www.mandriva.com/en/download

MandrakeSoft Linux Mandrake 10.2

Mandriva gdb-6.3-3.1.102mdk.i586.rpm

Mandrakelinux 10.2:

http://www.mandriva.com/en/download

Mandriva gdb-6.3-3.1.102mdk.src.rpm

Mandrakelinux 10.2:

http://www.mandriva.com/en/download

MandrakeSoft Linux Mandrake 10.2 x86_64

Mandriva gdb-6.3-3.1.102mdk.src.rpm

Mandrakelinux 10.2/X86_64:

http://www.mandriva.com/en/download

Mandriva gdb-6.3-3.1.102mdk.x86_64.rpm

Mandrakelinux 10.2/X86_64:

http://www.mandriva.com/en/download

MandrakeSoft Corporate Server 2.1 x86_64

Mandriva gdb-5.3-24.1.C21mdk.src.rpm

Corporate Server 2.1/X86_64:

http://www.mandriva.com/en/download

Mandriva gdb-5.3-24.1.C21mdk.x86_64.rpm

Corporate Server 2.1/X86_64:

http://www.man

来源: UBUNTU

名称: USN-136-1

链接:http://www.ubuntulinux.org/support/documentation/usn/usn-136-1

来源: TRUSTIX

名称: 2005-0025

链接:http://www.trustix.org/errata/2005/0025/

来源: BID

名称: 13697

链接:http://www.securityfocus.com/bid/13697

来源: REDHAT

名称: RHSA-2006:0368

链接:http://www.redhat.com/support/errata/RHSA-2006-0368.html

来源: REDHAT

名称: RHSA-2006:0354

链接:http://www.redhat.com/support/errata/RHSA-2006-0354.html

来源: REDHAT

名称: RHSA-2005:801

链接:http://www.redhat.com/support/errata/RHSA-2005-801.html

来源: REDHAT

名称: RHSA-2005:763

链接:http://www.redhat.com/support/errata/RHSA-2005-763.html

来源: REDHAT

名称: RHSA-2005:709

链接:http://www.redhat.com/support/errata/RHSA-2005-709.html

来源: REDHAT

名称: RHSA-2005:673

链接:http://www.redhat.com/support/errata/RHSA-2005-673.html

来源: REDHAT

名称: RHSA-2005:659

链接:http://www.redhat.com/support/errata/RHSA-2005-659.html

来源: OSVDB

名称: 16757

链接:http://www.osvdb.org/16757

来源: MANDRAKE

名称: MDKSA-2005:095

链接:http://www.mandriva.com/security/advisories?name=MDKSA-2005:095

来源: GENTOO

名称: GLSA-200506-01

链接:http://www.gentoo.org/security/en/glsa/glsa-200506-01.xml

来源: support.avaya.com

链接:http://support.avaya.com/elmodocs2/security/ASA-2006-178.htm

来源: SECUNIA

名称: 18506

链接:http://support.avaya.com/elmodocs2/security/ASA-2006-015.htm

来源: support.avaya.com

链接:http://support.avaya.com/elmodocs2/security/ASA-2005-222.pdf

来源: SECTRACK

名称: 1016544

链接:http://securitytracker.com/id?1016544

来源: GENTOO

名称: GLSA-200505-15

链接:http://security.gentoo.org/glsa/glsa-200505-15.xml

来源: SECUNIA

名称: 21717

链接:http://secunia.com/advisories/21717

来源: SECUNIA

名称: 21262

链接:http://secunia.com/advisories/21262

来源: SECUNIA

名称: 21122

链接:http://secunia.com/advisories/21122

来源: SECUNIA

名称: 17718

链接:http://secunia.com/advisories/17718

来源: SECUNIA

名称: 17356

链接:http://secunia.com/advisories/17356

来源: SECUNIA

名称: 17257

链接:http://secunia.com/advisories/17257

来源: SECUNIA

名称: 17135

链接:http://secunia.com/advisories/17135

来源: SECUNIA

名称: 17072

链接:http://secunia.com/advisories/17072

来源: SECUNIA

名称: 17001

链接:http://secunia.com/advisories/17001

来源: SECUNIA

名称: 15527

链接:http://secunia.com/advisories/15527

来源: MANDRAKE

名称: MDKSA-2005:215

链接:http://frontal2.mandriva.com/security/advisories?name=MDKSA-2005:215

来源: CONECTIVA

名称: CLA-2006:1060

链接:http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=001060

来源: bugs.gentoo.org

链接:http://bugs.gentoo.org/show_bug.cgi?id=91398

来源: SGI

名称: 20060703-01-P

链接:ftp://patches.sgi.com/support/free/security/advisories/20060703-01-U.asc

来源: www.vmware.com

链接:http://www.vmware.com/support/vi3/doc/esx-55052-patch.html

来源: BUGTRAQ

名称: 20070404 VMSA-2007-0003 VMware ESX 3.0.1 and 3.0.0 server security updates

链接:http://www.securityfocus.com/archive/1/archive/1/464745/100/0/threaded

来源: MANDRAKE

名称: MDKSA-2005:215

链接:http://www.mandriva.com/security/advisories?name=MDKSA-2005:215

来源: VUPEN

名称: ADV-2007-1267

链接:http://www.frsirt.com/english/advisories/2007/1267

来源: SECUNIA

名称: 24788

链接:http://secunia.com/advisories/24788