fsplib fsplib.c fsp_readdir Function d_name Directory (dirent) Field Overflow

2007-07-23T17:06:40
ID OSVDB:38570
Type osvdb
Reporter OSVDB
Modified 2007-07-23T17:06:40

Description

Solution Description

Upgrade to version 0.9 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor Specific News/Changelog Entry: http://bugs.gentoo.org/show_bug.cgi?id=188252 Vendor Specific News/Changelog Entry: http://fsp.cvs.sourceforge.net/fsp/fsplib/ChangeLog?revision=1.17&view=markup Vendor Specific News/Changelog Entry: http://fsp.cvs.sourceforge.net/fsp/fsplib/fsplib.c?r1=1.17&r2=1.18 Vendor Specific News/Changelog Entry: http://fsp.cvs.sourceforge.net/fsp/fsplib/fsplib.c?r1=1.21&r2=1.22 Secunia Advisory ID:26184 Secunia Advisory ID:26378 Secunia Advisory ID:27501 Related OSVDB ID: 38569 Related OSVDB ID: 38568 Other Advisory URL: http://security.gentoo.org/glsa/glsa-200711-01.xml Other Advisory URL: http://www.gentoo.org/security/en/glsa/glsa-200711-01.xml Other Advisory URL: http://fsp.cvs.sourceforge.net/fsp/fsplib/ChangeLog?revision=1.17&view=markup CVE-2007-3962 Bugtraq ID: 25034