Gentoo Full Text Bug Listing

Bug 167730 - net-analyzer/snort < 2.6.1.3 DCE/RPC preprocessor Buffer Overflow CVE-2006-5276

Bug#: 167730	Product: Gentoo Security	Version: unspecified	Platform: All
OS/Version: Linux	Status: RESOLVED	Severity: major	Priority: P2
Resolution: FIXED	Assigned To: security@gentoo.org	Reported By: keith@email.arizona.edu
Component: Vulnerabilities
URL: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-5276
Summary: net-analyzer/snort < 2.6.1.3 DCE/RPC preprocessor Buffer Overflow CVE-2006-5276
Keywords:
Status Whiteboard: B1 [glsa] Executioner
Opened: 2007-02-20 09:55 0000

Description:

Opened: 2007-02-20 09:55 0000

Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before
2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote
attackers to execute arbitrary code via crafted SMB traffic.

Consequences:

Gain Access

Reproducible: Didn't try




http://xforce.iss.net/xforce/xfdb/31275
http://www.snort.org/docs/advisory-2007-02-19.html
http://iss.net/threats/257.html

------- Comment #1 From Markus Ullmann 2007-02-20 10:56:59 0000 -------

ebuild in CVS

------- Comment #2 From Stefan Cornelius (RETIRED) 2007-02-20 12:57:37 0000 -------

arches, please test and stable 2.6.1.3, thx

------- Comment #3 From Tobias Scherbaum 2007-02-20 19:07:50 0000 -------

(In reply to comment #1)
> ebuild in CVS
> 

Fails to apply snort-2.6.1.1-gre.patch.

------- Comment #4 From Daniel Black 2007-02-21 12:22:11 0000 -------

> Fails to apply snort-2.6.1.1-gre.patch.
Thanks - patch wasn't needed - removed in latest ebuild

------- Comment #5 From Markus Rothe 2007-02-21 20:25:32 0000 -------

ppc64 stable

------- Comment #6 From Stefan Cornelius (RETIRED) 2007-02-25 22:17:25 0000 -------

https://forums.gentoo.org/viewtopic.php?p=3927648#3927648

c'mon

------- Comment #7 From Steve Dibb 2007-02-27 02:39:27 0000 -------

amd64 stable

------- Comment #8 From Jose Luis Rivero (yoswink) 2007-02-27 12:12:13 0000 -------

If I'm not wrong, alpha doesn't have got any stable keyword in snort, so you
don't  need the alpha love.

------- Comment #9 From Tobias Scherbaum 2007-02-27 19:09:35 0000 -------

ppc stable

------- Comment #10 From Raphael Marichez 2007-03-02 00:36:19 0000 -------

GLSA 200703-01, thanks everybody