Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
gentooGentoo FoundationGLSA-200704-23
HistoryApr 27, 2007 - 12:00 a.m.

capi4k-utils: Buffer overflow

2007-04-2700:00:00
Gentoo Foundation
security.gentoo.org
11

0.017 Low

EPSS

Percentile

87.6%

JSON

Background

capi4k-utils is a set of utilities for accessing COMMON-ISDN-API software interfaces for ISDN devices.

Description

The bufprint() function in capi4k-utils fails to properly check boundaries of data coming from CAPI packets.

Impact

A local attacker could possibly escalate privileges or cause a Denial of Service by sending a crafted CAPI packet.

Workaround

There is no known workaround at this time.

Resolution

All capi4k-utils users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=net-dialup/capi4k-utils-20050718-r3"
OSVersionArchitecturePackageVersionFilename
Gentooanyallnet-dialup/capi4k-utils< 20050718-r3UNKNOWN

Related

nessus 15
openvas 5
f5 2
cvelist 1
ubuntucve 1
prion 1
veracode 1
cve 1
debiancve 1
securityvulns 1
oraclelinux 2
redhat 5
centos 4
nessus
nessus
GLSA-200704-23 : capi4k-utils: Buffer overflow
2007-04-30 00:00:00
RHEL 3 : kernel (RHSA-2007:0671)
2007-08-21 00:00:00
Oracle Linux 4 : kernel (ELSA-2007-0774)
2013-07-12 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200704-23 (capi4k-utils)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200704-23 (capi4k-utils)
2008-09-24 00:00:00
Oracle: Security Advisory (ELSA-2007-0705)
2015-10-08 00:00:00
f5
f5
SOL8917 - Linux kernel vulnerability CVE-2007-1217
2008-06-30 00:00:00
K8917 : Linux kernel vulnerability CVE-2007-1217
2013-03-18 00:00:00
cvelist
cvelist
CVE-2007-1217
2007-03-02 19:00:00
ubuntucve
ubuntucve
CVE-2007-1217
2007-03-02 00:00:00
prion
prion
Buffer overflow
2007-03-02 21:18:00
veracode
veracode
Privilege Escalation
2020-04-10 00:19:58
cve
cve
CVE-2007-1217
2007-03-02 21:18:00
debiancve
debiancve
CVE-2007-1217
2007-03-02 21:18:00
securityvulns
securityvulns
Linux CAPI library buffer overflow
2007-03-03 00:00:00
oraclelinux
oraclelinux
Moderate: kernel security and bugfix update
2007-09-05 00:00:00
Important: kernel security update
2007-09-14 00:00:00
redhat
redhat
(RHSA-2007:0774) Moderate: kernel security and bugfix update
2007-09-04 00:00:00
(RHSA-2007:0671) Moderate: kernel security and bugfix update
2007-08-16 00:00:00
(RHSA-2007:0673) Important: kernel security update
2007-08-08 00:00:00
centos
centos
kernel security update
2007-09-07 08:36:09
kernel security update
2007-08-16 22:01:30
kernel security update
2007-08-09 04:54:35

0.017 Low

EPSS

Percentile

87.6%

JSON
Related for GLSA-200704-23
nessus15openvas5f52cvelist1ubuntucve1prion1veracode1cve1debiancve1securityvulns1oraclelinux2redhat5centos4