Lucene search
GoogleOSV:DSA-174HistoryOct 14, 2002 - 12:00 a.m.
heartbeat - buffer overflow
2002-10-1400:00:00
Google
osv.dev
10
0.077 Low
EPSS
Percentile
94.2%
Nathan Wallwork
discovered a buffer overflow in heartbeat, a subsystem
for High-Availability Linux. A remote attacker could send a specially
crafted UDP packet that overflows a buffer, leaving heartbeat to
execute arbitrary code as root.
This problem has been fixed in version 0.4.9.0l-7.2 for the current
stable distribution (woody) and version 0.4.9.2-1 for the unstable
distribution (sid). The old stable distribution (potato) doesn’t
contain a heartbeat package.
We recommend that you upgrade your heartbeat package immediately if
you run internet connected servers that are heartbeat-monitored.
References
Related
cvelist
cvelist
CVE-2002-1215
2002-10-21 04:00:00
nvd
nvd
CVE-2002-1215
2002-10-28 05:00:00
cve
cve
CVE-2002-1215
2002-10-28 05:00:00
openvas
openvas
Debian Security Advisory DSA 174-1 (heartbeat)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-174)
2008-01-17 00:00:00
debiancve
debiancve
CVE-2002-1215
2002-10-28 05:00:00
nessus
nessus
Debian DSA-174-1 : heartbeat - buffer overflow
2004-09-29 00:00:00
suse
suse
remote root in heartbeat
2002-10-14 16:23:14