FrSIRT - Fedora Security Update Fixes Inotify-tools Buffer Overflow Vulnerability / Exploit

French Security Incident Response Team

Français

English

Fedora Security Update Fixes Inotify-tools Buffer Overflow Vulnerability

Date de Publication : 2007-11-12 © FrSIRT.COM
Titre : Fedora Security Update Fixes Inotify-tools Buffer Overflow Vulnerability
Identifiant : FrSIRT/AVIS-2007-3831
CVE ID : CVE-2007-5037
Risque : Modéré (2/4) -

Exploitable à distance : Oui
Exploitable en local : Oui

En savoir plus

Description

Produits affectés

Solution

Références

Description Technique

Une vulnérabilité a été identifiée dans Fedora, elle pourrait être exploitée par des attaquants afin de compromettre un système vulnérable [...]

Solution

Installer les mises à jour :

2e2312863c6dacd8cce2957f781bad17c98f30da inotify-tools-devel-3.11-1.fc7.ppc64.rpm
f95157e1afc3fc63ade33c43705888d7e4f6b2ff inotify-tools-debuginfo-3.11-1.fc7.ppc64.rpm
8bc30e9362876e9b42b550a9e0244d27b5def322 inotify-tools-3.11-1.fc7.ppc64.rpm
e3ad0fa64196062ad17937aeef72afc5aae276be inotify-tools-3.11-1.fc7.i386.rpm
f672a5ab3cda48829a73a9d3448768c765f8ac1e inotify-tools-debuginfo-3.11-1.fc7.i386.rpm
62b8dec724acf521c43963ba3f70e5ef78018929 inotify-tools-devel-3.11-1.fc7.i386.rpm
e365b0a88b8c5f81adbfc448665c1294b7912cc3 inotify-tools-3.11-1.fc7.x86_64.rpm
547d36e971883a1b15f1aa72954abd09fc2bea1d inotify-tools-debuginfo-3.11-1.fc7.x86_64.rpm
39dc900b1924af6ef90e7ca0f033adb1fe0cb5c8 inotify-tools-devel-3.11-1.fc7.x86_64.rpm
fc59c2a1756120614d3ea6a765153df4fe68c641 inotify-tools-debuginfo-3.11-1.fc7.ppc.rpm
bc580b1c329c13dc157ca06e8c38d69efb7d2d4a inotify-tools-devel-3.11-1.fc7.ppc.rpm
340a5eab4e13a493cf00ba81ab5f3bfb637547b3 inotify-tools-3.11-1.fc7.ppc.rpm
85953da330a6b93607112ba57f98f985bf2de880 inotify-tools-3.11-1.fc7.src.rpm

Historique

2007-11-12 : Version Initiale

Recevez les bulletins FrSIRT

Le service FrSIRT VNS permet aux professionnels de la sécurité (RSSI, DSI, administrateurs et consultants) de recevoir en temps-réel, par email, SMS et flux RSS/XML, des bulletins de vulnérabilités complets, détaillés et personnalisés.

Recherche

Newsletter

	Cisco Unity Security Bypass and Denial of Service
	Cisco UCM SIP Remote Denial of Service
	Cisco IOS Denial of Service Vulnerabilities
	Cisco PIX and ASA Information Disclosure and DoS Vulnerabilities
	Cisco Secure ACS EAP Remote Denial Of Service Vulnerability
	Cisco Products Remote DNS Cache Poisoning Vulnerability
	Cisco Wide Area Application Services CUPS Remote Vulnerability

	IBM Lotus Quickr Denial of Service Vulnerabilities
	IBM Tivoli Netcool/Webtop Multiple Security Bypass Vulnerabilities
	IBM WebSphere Application Server Security Exposure Vulnerabilities
	IBM DB2 Universal Database Multiple Denial of Service
	IBM AIX "swcons" Insecure Permission Privilege Escalation Vulnerability
	IBM WebSphere Application Server Cross Site Scripting Vulnerability
	IBM DB2 CLR Stored Procedures Unspecified Vulnerability

	Sun Java System Web Proxy Server FTP Heap Overflow
	Sun Solaris ACL UFS File Systems Denial of Service Vulnerability
	Sun Solaris Text Editors Tag Files Local Code Execution Vulnerability
	Sun Management Center Remote Denial of Service Vulnerability
	Sun Solaris Bzip2 Archive Handling Denial of Service Vulnerability
	Sun Solaris GNU Tar Headers Handling Buffer Overflow Vulnerability
	Sun Solaris Covert Channel Local Security Bypass Vulnerability