FrSIRT - Fedora Security Update Fixes Link Grammar Buffer Overflow Vulnerability / Exploit (Security Advisories)

French Security Incident Response Team

French

English

Fedora Security Update Fixes Link Grammar Buffer Overflow Vulnerability

Title : Fedora Security Update Fixes Link Grammar Buffer Overflow Vulnerability
Advisory ID : FrSIRT/ADV-2007-3863
CVE ID : CVE-2007-5395
Rated as : Moderate Risk

Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2007-11-15

Advisory Details

Description

Affected Products

Solution

References

Technical Description

A vulnerability has been identified in Fedora, which could be exploited by remote attackers to cause a denial of service or compromise a vulnerable system [...]

Solution

Upgrade the affected packages :

34ae8c6bf6f45d9ce50694daa6c0761bd589de97 link-grammar-debuginfo-4.2.5-1.fc7.ppc64.rpm
c3feb02b1d679ff8d65e6a8962a276dc41108e37 link-grammar-devel-4.2.5-1.fc7.ppc64.rpm
0875048bc733eaa8612c6aa12eeb02d70386b4eb link-grammar-4.2.5-1.fc7.ppc64.rpm
bd2d0b0e2f10cf194787236a660605f19307fea0 link-grammar-debuginfo-4.2.5-1.fc7.i386.rpm
83aff35a2b3e9d76e1460aff70aad49fe1814280 link-grammar-4.2.5-1.fc7.i386.rpm
c927f211d1cd5679f1815f7137765af320d1172b link-grammar-devel-4.2.5-1.fc7.i386.rpm
4f7ace323dd0f01d87692752dfc01b958588fb1d link-grammar-4.2.5-1.fc7.x86_64.rpm
b60ad4a5d09a8f123de6f5eb3681785da425428c link-grammar-devel-4.2.5-1.fc7.x86_64.rpm
84c486eb1e991e1468ed9ef3eae637a19504a284 link-grammar-debuginfo-4.2.5-1.fc7.x86_64.rpm
92b96df32e56f1b09466fda2cce87367b3dac2b0 link-grammar-4.2.5-1.fc7.ppc.rpm
df6b2cbd6b3cfb4d108765a770d2aae1094742d1 link-grammar-devel-4.2.5-1.fc7.ppc.rpm
654b391ee47b2aa8448a31b0cd0578f82e1385f8 link-grammar-debuginfo-4.2.5-1.fc7.ppc.rpm
8ef3f7da2218084e294f54941ad04854df6dc2b6 link-grammar-4.2.5-1.fc7.src.rpm

ChangeLog

2007-11-15 : Initial release

Vulnerability Management

Subscribe to FrSIRT VNS and receive real-time e-mail and SMS alerts when new vulnerabilities, exploits, or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form or by email to updates@frsirt.com.

Mailinglist

	Cisco IOS/CatOS VLAN Trunking Protocol DoS Vulnerability
	Cisco PIX and ASA Security Bypass and Denial of Service
	Cisco Unity Security Bypass and Denial of Service
	Cisco UCM SIP Remote Denial of Service
	Cisco IOS Denial of Service and Security Bypass Vulnerabilities
	Cisco PIX and ASA Information Disclosure and DoS Vulnerabilities
	Cisco Secure ACS EAP Remote Denial Of Service Vulnerability

	IBM AIX Sendmail Header Lines Denial of Service Vulnerability
	IBM Metrica Multiple Parameter Cross Site Scripting Vulnerabilities
	IBM Lotus Quickr Unspecified Cross Site Scripting Vulnerabilities
	IBM Hardware Management Console Denial of Service Vulnerability
	IBM Tivoli Storage Manager Client Buffer Overflow Vulnerability
	IBM DB2 Denial of Service and Information Disclosure Vulnerabilities
	IBM Lotus Quickr Denial of Service and Security Bypass Vulnerabilities

	Mozilla Products Code Execution and Security Bypass Vulnerabilities
	Mozilla Firefox Shortcut Handlingg Information Disclosure Vulnerability
	Mozilla Products Code Execution and Security Bypass Vulnerabilities
	Mozilla Firefox for Mac OS X GIF Rendering Code Execution Vulnerability
	Mozilla Products Remote Code Execution and Security Bypass Issues
	Mozilla Products Code Execution and Injection Vulnerabilities
	Mozilla JavaScript Garbage Collector Code Execution Vulnerability