Bug 203328 (CVE-2007-6562)

Summary:

net-analyzer/tcpreen < 1.4.4 FD_SET Buffer Overflow Vulnerability (CVE-2007-6562)

Product:

Gentoo Security

Reporter:

Tobias Heinlein (RETIRED) <keytoaster>

Component:

Vulnerabilities

Assignee:

Gentoo Security <security>

Status:

RESOLVED FIXED

Severity:

minor

CC:

netmon

Priority:

High

Version:

unspecified

Hardware:

All

OS:

Linux

URL:

http://secunia.com/advisories/28217/

Whiteboard:

B3 [noglsa]

Package list:

Runtime testing required:

---

Attachments:

Description	Flags
tcpreen-FD_SETSIZE-197-198.patch	none

Description Tobias Heinlein (RETIRED) gentoo-dev

2007-12-25 20:51:24 UTC

Secunia:

A vulnerability has been reported in TCPreen, which can be exploited by malicious people to cause a DoS (Denial of Service).

The vulnerability is caused due to a boundary error when calling "FD_SET()" within the "SocketAddress::Connect()" method in libsolve/sockprot.cpp. This can be exploited to cause a stack-based buffer overflow in certain configurations by establishing multiple concurrent connections.

The vulnerability is reported in versions prior to 1.4.4.

Solution:
Update to version 1.4.4.

Comment 1 Tobias Heinlein (RETIRED) gentoo-dev

2007-12-25 20:52:59 UTC

Netmon, please bump.

Comment 2 Martin Jackson (RETIRED) gentoo-dev

2007-12-25 21:14:08 UTC

Bump committed.

Comment 3 Robert Buchholz (RETIRED) gentoo-dev

2007-12-25 23:41:09 UTC

Arches, please test and mark stable net-analyzer/tcpreen-1.4.4.
Target keywords : "x86"

Comment 4 Robert Buchholz (RETIRED) gentoo-dev

2007-12-25 23:55:02 UTC

Created attachment 139320 [details, diff]
tcpreen-FD_SETSIZE-197-198.patch

Comment 5 Markus Meier gentoo-dev

2007-12-26 10:20:00 UTC

x86 stable, last arch!

Comment 6 Tobias Heinlein (RETIRED) gentoo-dev

2007-12-26 11:39:37 UTC

Thanks. Vote opened.

Comment 7 Sune Kloppenborg Jeppesen (RETIRED) gentoo-dev

2008-01-06 18:10:05 UTC

I vote NO.

Comment 8 Pierre-Yves Rofes (RETIRED) gentoo-dev

2008-01-06 19:58:50 UTC

voting NO too, and closing.