[Bug 203476] [NEW] [libbind9] [CVE-2008-0122] off-by-one error in the inet_network function
hk47
bugtracker at slideomania.com
Tue Mar 18 08:46:09 GMT 2008
*** This bug is a security vulnerability ***
Public security bug reported:
Binary package hint: libbind9-0
References:
SUSE-SR:2008:006
Quoting CVE-2008-0122:
"Off-by-one error in the inet_network function in libbind in ISC BIND 9.4.2 and earlier, as used in libc in FreeBSD 6.2 through 7.0-PRERELEASE, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted input that triggers memory corruption."
** Affects: bind9 (Ubuntu)
Importance: Undecided
Status: New
** Visibility changed to: Public
** CVE added: http://www.cve.mitre.org/cgi-
bin/cvename.cgi?name=2008-0122
--
[libbind9] [CVE-2008-0122] off-by-one error in the inet_network function
https://bugs.launchpad.net/bugs/203476
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to bind9 in ubuntu.
More information about the Ubuntu-server-bugs
mailing list