[4044] in bugtraq
Re: Linux NLSPATH buffer overflow
daemon@ATHENA.MIT.EDU (Dan Stromberg)
Fri Feb 14 15:56:32 1997
Date: Fri, 14 Feb 1997 11:52:27 -0800
Reply-To: strombrg@NIS.ACS.UCI.EDU
From: Dan Stromberg <strombrg@NIS.ACS.UCI.EDU>
X-To: solar@IDEAL.RU
To: BUGTRAQ@NETSPACE.ORG
This is unofficial information.
Debian 1.2 and up are not vulnerable. The current release is 1.2.5.
Debian 1.1.13 is the last release that was vulnerable.
1.1.13 uses libc 5.2.18, while 1.2 uses libc 5.4.7. The hole was
probably fixed between these two releases of linux libc.
solar@IDEAL.RU wrote:
>
> Hi!
>
> I'm sorry if the information I'm going to tell about was already known, but
> I hope it wasn't...
